chore: update SBOM for Python 3.11

Author: web-flow

sbom/cve-bin-tool-py3.11.json

@@ -2,10 +2,10 @@
   "$schema": "http://cyclonedx.org/schema/bom-1.5.schema.json",
   "bomFormat": "CycloneDX",
   "specVersion": "1.5",
-  "serialNumber": "urn:uuid:d207333a-18dd-4549-9979-6b7f093bf0f4",
+  "serialNumber": "urn:uuid:fd540fe5-735c-4d5a-add6-70ce9991d205",
   "version": 1,
   "metadata": {
-    "timestamp": "2023-10-16T00:26:13Z",
+    "timestamp": "2023-10-30T00:27:00Z",
     "tools": {
       "components": [
         {
@@ -218,7 +218,7 @@
       "type": "library",
       "bom-ref": "7-charset-normalizer",
       "name": "charset-normalizer",
-      "version": "3.3.0",
+      "version": "3.3.1",
       "supplier": {
         "name": "Ahmed TAHRI",
         "contact": [
@@ -227,7 +227,7 @@
           }
         ]
       },
-      "cpe": "cpe:2.3:a:ahmed_tahri:charset-normalizer:3.3.0:*:*:*:*:*:*:*",
+      "cpe": "cpe:2.3:a:ahmed_tahri:charset-normalizer:3.3.1:*:*:*:*:*:*:*",
       "description": "The Real First Universal Charset Detector. Open, modern and actively maintained alternative to Chardet.",
       "licenses": [
         {
@@ -239,12 +239,12 @@
       ],
       "externalReferences": [
         {
-          "url": "https://pypi.org/project/charset-normalizer/3.3.0",
+          "url": "https://pypi.org/project/charset-normalizer/3.3.1",
           "type": "distribution",
           "comment": "Download location for component"
         }
       ],
-      "purl": "pkg:pypi/[email protected].0"
+      "purl": "pkg:pypi/[email protected].1"
     },
     {
       "type": "library",
@@ -506,7 +506,7 @@
       "type": "library",
       "bom-ref": "16-gsutil",
       "name": "gsutil",
-      "version": "5.26",
+      "version": "5.27",
       "supplier": {
         "name": "Google Inc .",
         "contact": [
@@ -515,7 +515,7 @@
           }
         ]
       },
-      "cpe": "cpe:2.3:a:google_inc.:gsutil:5.26:*:*:*:*:*:*:*",
+      "cpe": "cpe:2.3:a:google_inc.:gsutil:5.27:*:*:*:*:*:*:*",
       "description": "A command line tool for interacting with cloud storage services.",
       "licenses": [
         {
@@ -527,12 +527,12 @@
       ],
       "externalReferences": [
         {
-          "url": "https://pypi.org/project/gsutil/5.26",
+          "url": "https://pypi.org/project/gsutil/5.27",
           "type": "distribution",
           "comment": "Download location for component"
         }
       ],
-      "purl": "pkg:pypi/gsutil@5.26",
+      "purl": "pkg:pypi/gsutil@5.27",
       "properties": [
         {
           "name": "License Comments",
@@ -1021,7 +1021,7 @@
       "type": "library",
       "bom-ref": "31-pyopenssl",
       "name": "pyopenssl",
-      "version": "23.2.0",
+      "version": "23.3.0",
       "supplier": {
         "name": "The pyOpenSSL developers",
         "contact": [
@@ -1030,7 +1030,7 @@
           }
         ]
       },
-      "cpe": "cpe:2.3:a:the_pyopenssl_developers:pyopenssl:23.2.0:*:*:*:*:*:*:*",
+      "cpe": "cpe:2.3:a:the_pyopenssl_developers:pyopenssl:23.3.0:*:*:*:*:*:*:*",
       "description": "Python wrapper module around the OpenSSL library",
       "licenses": [
         {
@@ -1042,12 +1042,12 @@
       ],
       "externalReferences": [
         {
-          "url": "https://pypi.org/project/pyOpenSSL/23.2.0",
+          "url": "https://pypi.org/project/pyOpenSSL/23.3.0",
           "type": "distribution",
           "comment": "Download location for component"
         }
       ],
-      "purl": "pkg:pypi/pyopenssl@23.2.0",
+      "purl": "pkg:pypi/pyopenssl@23.3.0",
       "properties": [
         {
           "name": "License Comments",
@@ -1059,7 +1059,7 @@
       "type": "library",
       "bom-ref": "32-cryptography",
       "name": "cryptography",
-      "version": "41.0.4",
+      "version": "41.0.5",
       "supplier": {
         "name": "The Python Cryptographic Authority and individual contributors",
         "contact": [
@@ -1068,7 +1068,7 @@
           }
         ]
       },
-      "cpe": "cpe:2.3:a:the_python_cryptographic_authority_and_individual_contributors:cryptography:41.0.4:*:*:*:*:*:*:*",
+      "cpe": "cpe:2.3:a:the_python_cryptographic_authority_and_individual_contributors:cryptography:41.0.5:*:*:*:*:*:*:*",
       "description": "cryptography is a package which provides cryptographic recipes and primitives to Python developers.",
       "licenses": [
         {
@@ -1077,12 +1077,12 @@
       ],
       "externalReferences": [
         {
-          "url": "https://pypi.org/project/cryptography/41.0.4",
+          "url": "https://pypi.org/project/cryptography/41.0.5",
           "type": "distribution",
           "comment": "Download location for component"
         }
       ],
-      "purl": "pkg:pypi/[email protected].4"
+      "purl": "pkg:pypi/[email protected].5"
     },
     {
       "type": "library",
@@ -1266,7 +1266,7 @@
       "type": "library",
       "bom-ref": "38-cachetools",
       "name": "cachetools",
-      "version": "5.3.1",
+      "version": "5.3.2",
       "supplier": {
         "name": "Thomas Kemmer",
         "contact": [
@@ -1275,7 +1275,7 @@
           }
         ]
       },
-      "cpe": "cpe:2.3:a:thomas_kemmer:cachetools:5.3.1:*:*:*:*:*:*:*",
+      "cpe": "cpe:2.3:a:thomas_kemmer:cachetools:5.3.2:*:*:*:*:*:*:*",
       "description": "Extensible memoizing collections and decorators",
       "licenses": [
         {
@@ -1287,12 +1287,12 @@
       ],
       "externalReferences": [
         {
-          "url": "https://pypi.org/project/cachetools/5.3.1",
+          "url": "https://pypi.org/project/cachetools/5.3.2",
           "type": "distribution",
           "comment": "Download location for component"
         }
       ],
-      "purl": "pkg:pypi/[email protected].1"
+      "purl": "pkg:pypi/[email protected].2"
     },
     {
       "type": "library",
@@ -1667,7 +1667,7 @@
       "type": "library",
       "bom-ref": "51-plotly",
       "name": "plotly",
-      "version": "5.17.0",
+      "version": "5.18.0",
       "supplier": {
         "name": "Chris P",
         "contact": [
@@ -1676,7 +1676,7 @@
           }
         ]
       },
-      "cpe": "cpe:2.3:a:chris_p:plotly:5.17.0:*:*:*:*:*:*:*",
+      "cpe": "cpe:2.3:a:chris_p:plotly:5.18.0:*:*:*:*:*:*:*",
       "description": "An open-source, interactive data visualization library for Python",
       "licenses": [
         {
@@ -1688,12 +1688,12 @@
       ],
       "externalReferences": [
         {
-          "url": "https://pypi.org/project/plotly/5.17.0",
+          "url": "https://pypi.org/project/plotly/5.18.0",
           "type": "distribution",
           "comment": "Download location for component"
         }
       ],
-      "purl": "pkg:pypi/plotly@5.17.0"
+      "purl": "pkg:pypi/plotly@5.18.0"
     },
     {
       "type": "library",
@@ -1845,7 +1845,7 @@
       "type": "library",
       "bom-ref": "56-urllib3",
       "name": "urllib3",
-      "version": "2.0.6",
+      "version": "2.0.7",
       "supplier": {
         "name": "Andrey Petrov",
         "contact": [
@@ -1854,16 +1854,16 @@
           }
         ]
       },
-      "cpe": "cpe:2.3:a:andrey_petrov:urllib3:2.0.6:*:*:*:*:*:*:*",
+      "cpe": "cpe:2.3:a:andrey_petrov:urllib3:2.0.7:*:*:*:*:*:*:*",
       "description": "HTTP library with thread-safe connection pooling, file post, and more.",
       "externalReferences": [
         {
-          "url": "https://pypi.org/project/urllib3/2.0.6",
+          "url": "https://pypi.org/project/urllib3/2.0.7",
           "type": "distribution",
           "comment": "Download location for component"
         }
       ],
-      "purl": "pkg:pypi/[email protected].6"
+      "purl": "pkg:pypi/[email protected].7"
     },
     {
       "type": "library",