{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:238c3ea2-ec09-5f05-82ce-4b9f6deafdbe", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:npm/dompurify@3.2.3-tuxcare.1", "type": "library", "name": "dompurify", "version": "3.2.3-tuxcare.1", "purl": "pkg:npm/dompurify@3.2.3-tuxcare.1" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:025dcdb6-81a7-5bd0-8dc0-dfb09dc20686", "id": "CVE-2025-15599", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-15599 is fixed in version 3.2.3-tuxcare.1 of dompurify." }, "affects": [ { "ref": "pkg:npm/dompurify@3.2.3-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:3104decc-b3a3-5f09-9ca2-c00bc9e77d2a", "id": "CVE-2025-26791", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-26791 is fixed in version 3.2.3-tuxcare.1 of dompurify." }, "affects": [ { "ref": "pkg:npm/dompurify@3.2.3-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:6acc4949-be53-5f9b-89b9-8824a48fdc2f", "id": "CVE-2026-0540", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-0540 is fixed in version 3.2.3-tuxcare.1 of dompurify." }, "affects": [ { "ref": "pkg:npm/dompurify@3.2.3-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:35bb6329-140a-5ca7-b296-6894dd3989a9", "id": "CVE-2026-41238", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-41238 is fixed in version 3.2.3-tuxcare.1 of dompurify." }, "affects": [ { "ref": "pkg:npm/dompurify@3.2.3-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:1d2807cf-c60e-5514-a268-8739f50f2428", "id": "CVE-2026-41239", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-41239 is fixed in version 3.2.3-tuxcare.1 of dompurify." }, "affects": [ { "ref": "pkg:npm/dompurify@3.2.3-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:4c475b3b-6dfe-53b5-aa79-bc86447bb935", "id": "CVE-2026-41240", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2026-41240 is fixed in version 3.2.3-tuxcare.1 of dompurify." }, "affects": [ { "ref": "pkg:npm/dompurify@3.2.3-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:062fffe4-9786-59ea-8f43-deaecea46f35", "id": "GHSA-39q2-94rc-95cp", "analysis": { "state": "resolved", "detail": "Vulnerability GHSA-39q2-94rc-95cp is fixed in version 3.2.3-tuxcare.1 of dompurify." }, "affects": [ { "ref": "pkg:npm/dompurify@3.2.3-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:fcd220a9-1c01-5317-8fcb-7d70dcfb5d4f", "id": "GHSA-cj63-jhhr-wcxv", "analysis": { "state": "resolved", "detail": "Vulnerability GHSA-cj63-jhhr-wcxv is fixed in version 3.2.3-tuxcare.1 of dompurify." }, "affects": [ { "ref": "pkg:npm/dompurify@3.2.3-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:cb9c0f8e-579b-5900-bcf8-a1ef856d1540", "id": "GHSA-cjmm-f4jc-qw8r", "analysis": { "state": "resolved", "detail": "Vulnerability GHSA-cjmm-f4jc-qw8r is fixed in version 3.2.3-tuxcare.1 of dompurify." }, "affects": [ { "ref": "pkg:npm/dompurify@3.2.3-tuxcare.1" } ] }, { "bom-ref": "urn:uuid:eb97b41b-a96a-59be-a0e6-97ec782dd9ee", "id": "GHSA-h8r8-wccr-v5f2", "analysis": { "state": "resolved", "detail": "Vulnerability GHSA-h8r8-wccr-v5f2 is fixed in version 3.2.3-tuxcare.1 of dompurify." }, "affects": [ { "ref": "pkg:npm/dompurify@3.2.3-tuxcare.1" } ] } ], "dependencies": [ { "ref": "pkg:npm/dompurify@3.2.3-tuxcare.1" } ] }