{
  "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json",
  "bomFormat": "CycloneDX",
  "specVersion": "1.6",
  "serialNumber": "urn:uuid:dc65849a-8383-5de4-89f1-359435cf4396",
  "version": 1,
  "metadata": {
    "tools": [
      {
        "name": "tuxcare-vex-generator",
        "version": "1.0.0"
      }
    ]
  },
  "components": [
    {
      "bom-ref": "pkg:npm/fastify@4.29.1-tuxcare.1",
      "type": "library",
      "name": "fastify",
      "version": "4.29.1-tuxcare.1",
      "purl": "pkg:npm/fastify@4.29.1-tuxcare.1"
    }
  ],
  "vulnerabilities": [
    {
      "bom-ref": "urn:uuid:38ab7883-2180-53f5-9527-1a7359404ef1",
      "id": "CVE-2025-32442",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2025-32442 affects version 4.29.1-tuxcare.1 of fastify."
      },
      "affects": [
        {
          "ref": "pkg:npm/fastify@4.29.1-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:9473665b-302f-5d67-af4c-9f4f5194b3eb",
      "id": "CVE-2026-25223",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2026-25223 is fixed in version 4.29.1-tuxcare.1 of fastify."
      },
      "affects": [
        {
          "ref": "pkg:npm/fastify@4.29.1-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:f43a7d43-3eb1-51da-bc21-626bd8832623",
      "id": "CVE-2026-25224",
      "analysis": {
        "state": "resolved",
        "detail": "Vulnerability CVE-2026-25224 is fixed in version 4.29.1-tuxcare.1 of fastify."
      },
      "affects": [
        {
          "ref": "pkg:npm/fastify@4.29.1-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:7dc4e286-296a-56a6-8519-0bba8daa85ca",
      "id": "CVE-2026-33806",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-33806 affects version 4.29.1-tuxcare.1 of fastify."
      },
      "affects": [
        {
          "ref": "pkg:npm/fastify@4.29.1-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:4b2679a5-9d56-59dc-b464-d53f8719c5fc",
      "id": "CVE-2026-3419",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-3419 affects version 4.29.1-tuxcare.1 of fastify."
      },
      "affects": [
        {
          "ref": "pkg:npm/fastify@4.29.1-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:55f4ff1d-2494-50eb-a1bc-9c6af4e692bd",
      "id": "CVE-2026-3635",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-3635 affects version 4.29.1-tuxcare.1 of fastify."
      },
      "affects": [
        {
          "ref": "pkg:npm/fastify@4.29.1-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:d719b1be-9645-533b-a5a2-88876ad8495b",
      "id": "CVE-2026-6321",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-6321 affects version 4.29.1-tuxcare.1 of fastify."
      },
      "affects": [
        {
          "ref": "pkg:npm/fastify@4.29.1-tuxcare.1"
        }
      ]
    },
    {
      "bom-ref": "urn:uuid:9f8b4305-2a4f-553c-86fc-fb30323e4d70",
      "id": "CVE-2026-6322",
      "analysis": {
        "state": "exploitable",
        "detail": "Vulnerability CVE-2026-6322 affects version 4.29.1-tuxcare.1 of fastify."
      },
      "affects": [
        {
          "ref": "pkg:npm/fastify@4.29.1-tuxcare.1"
        }
      ]
    }
  ],
  "dependencies": [
    {
      "ref": "pkg:npm/fastify@4.29.1-tuxcare.1"
    }
  ]
}