From 62a5845b7d15c2c57a1c105953aa0d0bdbb25391 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 9 Mar 2026 16:05:45 +0000 Subject: [PATCH] chore(deps-dev): Bump @cyclonedx/cyclonedx-npm from 4.1.2 to 4.2.1 Bumps [@cyclonedx/cyclonedx-npm](https://github.com/CycloneDX/cyclonedx-node-npm) from 4.1.2 to 4.2.1. - [Release notes](https://github.com/CycloneDX/cyclonedx-node-npm/releases) - [Changelog](https://github.com/CycloneDX/cyclonedx-node-npm/blob/main/HISTORY.md) - [Commits](https://github.com/CycloneDX/cyclonedx-node-npm/compare/v4.1.2...v4.2.1) --- updated-dependencies: - dependency-name: "@cyclonedx/cyclonedx-npm" dependency-version: 4.2.1 dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] --- package-lock.json | 47 +++++++++++++++++++++++++++-------------------- package.json | 2 +- 2 files changed, 28 insertions(+), 21 deletions(-) diff --git a/package-lock.json b/package-lock.json index eef3a66..c88dc59 100644 --- a/package-lock.json +++ b/package-lock.json @@ -13,7 +13,7 @@ ], "devDependencies": { "@cspell/dict-de-de": "4.1.2", - "@cyclonedx/cyclonedx-npm": "4.1.2", + "@cyclonedx/cyclonedx-npm": "4.2.1", "@prantlf/jsonlint": "17.0.1", "alex": "11.0.1", "cloc": "2.11.0", @@ -755,9 +755,9 @@ } }, "node_modules/@cyclonedx/cyclonedx-library": { - "version": "9.2.0", - "resolved": "https://registry.npmjs.org/@cyclonedx/cyclonedx-library/-/cyclonedx-library-9.2.0.tgz", - "integrity": "sha512-ylwMFPjuOVKaRuQtEKFwPiJaygPZhkjvzDcSrtH8oZl2oCUTWwH2dEu692W4MjKLu5QgsnITLSDPc6149inyvg==", + "version": "10.0.0", + "resolved": "https://registry.npmjs.org/@cyclonedx/cyclonedx-library/-/cyclonedx-library-10.0.0.tgz", + "integrity": "sha512-xDXf2eqzeFHdjamj6oBV3duRSfrlmsJ5+2z9tXp7q5qxJP5Awmjf4ABSutS4qkVHHj7JzKFL/EM0V0Nihc7zPg==", "dev": true, "funding": [ { @@ -766,10 +766,6 @@ } ], "license": "Apache-2.0", - "dependencies": { - "packageurl-js": "^2.0.1", - "spdx-expression-parse": "^3.0.1 || ^4" - }, "engines": { "node": ">=20.18.0" }, @@ -778,6 +774,8 @@ "ajv-formats": "^3.0.1", "ajv-formats-draft2019": "^1.6.1", "libxmljs2": "^0.35||^0.37", + "packageurl-js": "*", + "spdx-expression-parse": "*", "xmlbuilder2": "^3.0.2||^4.0.0" }, "peerDependenciesMeta": { @@ -793,15 +791,21 @@ "libxmljs2": { "optional": true }, + "packageurl-js": { + "optional": true + }, + "spdx-expression-parse": { + "optional": true + }, "xmlbuilder2": { "optional": true } } }, "node_modules/@cyclonedx/cyclonedx-npm": { - "version": "4.1.2", - "resolved": "https://registry.npmjs.org/@cyclonedx/cyclonedx-npm/-/cyclonedx-npm-4.1.2.tgz", - "integrity": "sha512-SYabtTOgXQeiwTDSnXVqwDEKmcyF7tcMdH62roCacxqfIey0HOxdh1L0JkjM45t6WO9Z8QnA/hQ8FQzLU03AMA==", + "version": "4.2.1", + "resolved": "https://registry.npmjs.org/@cyclonedx/cyclonedx-npm/-/cyclonedx-npm-4.2.1.tgz", + "integrity": "sha512-SOA/96sf0wsgUYCRtFkLFm6WoFhG+q1BxdC84hPSn9J3xWlH1e7OnTPJT+WNUzTqzX1nSm5JhjRX4krozu2X+g==", "dev": true, "funding": [ { @@ -811,9 +815,11 @@ ], "license": "Apache-2.0", "dependencies": { - "@cyclonedx/cyclonedx-library": "^8.4.0||^9.0.0", + "@cyclonedx/cyclonedx-library": "^10.0.0", "commander": "^14.0.0", "normalize-package-data": "^7.0.0 || ^8.0.0", + "packageurl-js": "^2.0.1", + "spdx-expression-parse": "^3.0.1 || ^4.0.0", "xmlbuilder2": "^3.0.2 || ^4.0.3" }, "bin": { @@ -12868,9 +12874,9 @@ } }, "node_modules/node-abi": { - "version": "3.85.0", - "resolved": "https://registry.npmjs.org/node-abi/-/node-abi-3.85.0.tgz", - "integrity": "sha512-zsFhmbkAzwhTft6nd3VxcG0cvJsT70rL+BIGHWVq5fi6MwGrHwzqKaxXE+Hl2GmnGItnDKPPkO5/LQqjVkIdFg==", + "version": "3.87.0", + "resolved": "https://registry.npmjs.org/node-abi/-/node-abi-3.87.0.tgz", + "integrity": "sha512-+CGM1L1CgmtheLcBuleyYOn7NWPVu0s0EJH2C4puxgEZb9h8QpR9G2dBfZJOAUhi7VQxuBPMd0hiISWcTyiYyQ==", "dev": true, "license": "MIT", "optional": true, @@ -12929,14 +12935,14 @@ } }, "node_modules/node-gyp/node_modules/isexe": { - "version": "3.1.1", - "resolved": "https://registry.npmjs.org/isexe/-/isexe-3.1.1.tgz", - "integrity": "sha512-LpB/54B+/2J5hqQ7imZHfdU31OlgQqx7ZicVlkm9kzg9/w8GKLEcFfJl/t7DCEDueOyBAD6zCCwTO6Fzs0NoEQ==", + "version": "3.1.5", + "resolved": "https://registry.npmjs.org/isexe/-/isexe-3.1.5.tgz", + "integrity": "sha512-6B3tLtFqtQS4ekarvLVMZ+X+VlvQekbe4taUkf/rhVO3d/h0M2rfARm/pXLcPEsjjMsFgrFgSrhQIxcSVrBz8w==", "dev": true, - "license": "ISC", + "license": "BlueOak-1.0.0", "optional": true, "engines": { - "node": ">=16" + "node": ">=18" } }, "node_modules/node-gyp/node_modules/which": { @@ -14020,6 +14026,7 @@ "version": "7.1.3", "resolved": "https://registry.npmjs.org/prebuild-install/-/prebuild-install-7.1.3.tgz", "integrity": "sha512-8Mf2cbV7x1cXPUILADGI3wuhfqWvtiLA1iclTDbFRZkgRQS0NqsPZphna9V+HyTEadheuPmjaJMsbzKQFOzLug==", + "deprecated": "No longer maintained. Please contact the author of the relevant native addon; alternatives are available.", "dev": true, "license": "MIT", "optional": true, diff --git a/package.json b/package.json index 090db33..0b4f872 100644 --- a/package.json +++ b/package.json @@ -26,7 +26,7 @@ "license": "CC-BY-SA-4.0", "author": "i-doit GmbH (https://i-doit.com/)", "devDependencies": { - "@cyclonedx/cyclonedx-npm": "4.1.2", + "@cyclonedx/cyclonedx-npm": "4.2.1", "@prantlf/jsonlint": "17.0.1", "alex": "11.0.1", "cloc": "2.11.0",