{
  "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json",
  "bomFormat": "CycloneDX",
  "specVersion": "1.6",
  "serialNumber": "urn:uuid:048247a9-3f3f-55bb-bfd4-e8b918877be5",
  "version": 1,
  "metadata": {
    "tools": [
      {
        "name": "tuxcare-vex-generator",
        "version": "1.0.0"
      }
    ]
  },
  "components": [
    {
      "bom-ref": "pkg:npm/angular-upgrade@14.3.0-tuxcare.7",
      "type": "library",
      "name": "angular-upgrade",
      "version": "14.3.0-tuxcare.7",
      "purl": "pkg:npm/angular-upgrade@14.3.0-tuxcare.7"
    }
  ],
  "vulnerabilities": [
    {
      "bom-ref": "urn:uuid:5966c7b3-31a9-5645-b46b-ab0bd31184f9",
      "id": "CVE-2025-66035",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2025-66035 is fixed in version 14.3.0-tuxcare.7 of angular-upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/angular-upgrade@14.3.0-tuxcare.7"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:68e7dfdb-3d02-5d24-a0e9-d4f94dfbd873",
      "id": "CVE-2025-66412",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2025-66412 is fixed in version 14.3.0-tuxcare.7 of angular-upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/angular-upgrade@14.3.0-tuxcare.7"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:5f4ba8db-f70f-543c-a02c-0c5bd9f84b68",
      "id": "CVE-2026-22610",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2026-22610 is fixed in version 14.3.0-tuxcare.7 of angular-upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/angular-upgrade@14.3.0-tuxcare.7"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:5cee43bf-eff4-526f-b71b-1c8f01cb279f",
      "id": "CVE-2026-27970",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2026-27970 is fixed in version 14.3.0-tuxcare.7 of angular-upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/angular-upgrade@14.3.0-tuxcare.7"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:f71a89af-7172-50e6-b403-7c1096e2005a",
      "id": "CVE-2026-41423",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2026-41423 is fixed in version 14.3.0-tuxcare.7 of angular-upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/angular-upgrade@14.3.0-tuxcare.7"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:c38bf879-fc11-50c5-92be-cbc50a0f5ab1",
      "id": "CVE-2026-46417",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-46417 affects version 14.3.0-tuxcare.7 of angular-upgrade."
      },
      "affects": [
        {
          "ref": "pkg:npm/angular-upgrade@14.3.0-tuxcare.7"
        }
      ]
    }
  ],
  "dependencies": [
    {
      "ref": "pkg:npm/angular-upgrade@14.3.0-tuxcare.7"
    }
  ]
}