{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:32fdf8e2-892e-56d0-852c-e11c48111869", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/braces@2.3.1-tuxcare.1", "type": "library", "name": "braces", "version": "2.3.1-tuxcare.1", "purl": "pkg:npm/braces@2.3.1-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:e166018d-a6ae-585d-8663-b9807c3d8271", "id": "CVE-2016-2515", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2016-2515 is fixed in version 2.3.1-tuxcare.1 of braces." }, "affects": [ { "ref": "pkg:npm/braces@2.3.1-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:17a797e6-cb17-543f-8e58-bc8934a6185a", "id": "CVE-2022-29167", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2022-29167 is fixed in version 2.3.1-tuxcare.1 of braces." }, "affects": [ { "ref": "pkg:npm/braces@2.3.1-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1037b97c-654b-517d-932a-7112a919ee28", "id": "CVE-2024-4068", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2024-4068 is fixed in version 2.3.1-tuxcare.1 of braces." }, "affects": [ { "ref": "pkg:npm/braces@2.3.1-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:083f05c6-f08b-59c4-80b3-44102d2e11cb", "id": "CVE-2026-33671", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-33671 is fixed in version 2.3.1-tuxcare.1 of braces." }, "affects": [ { "ref": "pkg:npm/braces@2.3.1-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6a3158f0-fed6-547e-87b5-6a79e0aac20c", "id": "CVE-2026-33672", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-33672 is fixed in version 2.3.1-tuxcare.1 of braces." }, "affects": [ { "ref": "pkg:npm/braces@2.3.1-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:npm/braces@2.3.1-tuxcare.1" } ] }