diff --git a/security/config/Third_Party_Open_Source_Software_List.yaml b/security/config/Third_Party_Open_Source_Software_List.yaml index d33b408..f53d604 100644 --- a/security/config/Third_Party_Open_Source_Software_List.yaml +++ b/security/config/Third_Party_Open_Source_Software_List.yaml @@ -349,12 +349,6 @@ mindspore: milestone: B-SIG-FrontEnd Khronos Group - OpenCL - Headers: cpeName: Khronos Group - OpenCL - Headers - version: v2020.06.16 - url: https://github.com/KhronosGroup/OpenCL-Headers/ - handler: - milestone: B-SIG-MSLite - Khronos Group - OpenCL - Headers: - cpeName: Khronos Group - OpenCL - Headers version: v2020.12.18 url: https://github.com/KhronosGroup/OpenCL-Headers/ handler: @@ -528,275 +522,276 @@ mindarmour: mindinsight: Flask-Cors: cpeName: Flask-Cors - version: 3.0.8 - url: - handler: shenwei41 - milestone: B-SIG-Data + version: 3.0.10 + language: python + license: MIT License + url: https://github.com/corydolphin/flask-cors + handler: zhujiaxing itsdangerous: cpeName: itsdangerous - version: 1.1.0 - url: - handler: shenwei41 - milestone: B-SIG-Data + version: >=1.1.0 + language: python + license: BSD 3-Clause License + url: https://itsdangerous.palletsprojects.com + handler: zhujiaxing Jinja2: cpeName: Jinja2 - version: 2.10.1 - url: - handler: shenwei41 - milestone: B-SIG-Data + version: >=2.10.1 + language: python + license: BSD 3-Clause License + url: https://pypi.org/project/MarkupSafe/ + handler: zhujiaxing MarkupSafe: cpeName: MarkupSafe - version: 1.1.1 - url: - handler: shenwei41 - milestone: B-SIG-Data - python-dateutil: - cpeName: python-dateutil - version: 2.8.1 - url: - handler: shenwei41 - milestone: B-SIG-Data - pytz: - cpeName: pytz - version: 2020.1 - url: - handler: shenwei41 - milestone: B-SIG-Data - future: - cpeName: future - version: 0.18.2 - url: - handler: shenwei41 - milestone: B-SIG-Data + version: >=1.1.1 + language: python + license: BSD 3-Clause License + url: https://pypi.org/project/MarkupSafe/ + handler: zhujiaxing SPIRV-Tools: cpeName: SPIRV-Tools version: 2020.6 - url: - handler: shenwei41 - milestone: B-SIG-Data + language: python + license: Apache License V2.0 + url: https://github.com/KhronosGroup/SPIRV-Tools + handler: zhujiaxing Vulkan-ValidationLayers: cpeName: Vulkan-ValidationLayers version: 1.2.162.0 - url: - handler: shenwei41 - milestone: B-SIG-Data + language: python + license: Apache License V2.0 + url: https://github.com/KhronosGroup/Vulkan-ValidationLayers + handler: zhujiaxing SPIRV-Headers: cpeName: SPIRV-Headers version: 1.5.4 - url: - handler: shenwei41 - milestone: B-SIG-Data + language: python + license: MIT License + url: https://github.com/KhronosGroup/SPIRV-Headers + handler: zhujiaxing Flask: cpeName: Flask - url: http://flask.pocoo.org/ - version: 1.1.1 - handler: - milestone: B-SIG-Data + version: >=2.1.0 + language: python + license: BSD 3-Clause License + url: https://flask.palletsprojects.com + handler: zhujiaxing Pillow: cpeName: Pillow + version: >=6.2.0 + language: python + license: Historical Permission Notice and Disclaimer url: https://python-pillow.org - version: 7.1.2 - handler: - milestone: B-SIG-Data - PyTorch: - cpeName: PyTorch - url: https://pytorch.org/ - version: 1.5.0 - handler: - milestone: B-SIG-Data + handler: zhujiaxing SlickGrid: cpeName: SlickGrid - url: http://slickgrid.net version: 2.4.22 - handler: - milestone: B-SIG-Data - TensorFlow: - cpeName: TensorFlow - url: https://www.tensorflow.org/; https://github.com/tensorflow/tensorflow - version: 1.15.2 - handler: - milestone: B-SIG-Data + language: python + license: MIT License + url: https://github.com/6pac/SlickGrid + handler: zhujiaxing Werkzeug: cpeName: Werkzeug - url: https://github.com/pallets/werkzeug - version: 1.0.0 - handler: - milestone: B-SIG-Data + version: >2.1.0 + language: python + license: BSD 3-Clause License + url: https://werkzeug.palletsprojects.com/ + handler: zhujiaxing XlsxWriter: cpeName: XlsxWriter + version: >=1.3.2 + language: python + license: BSD 3-Clause License url: https://xlsxwriter.readthedocs.io/ - version: 1.3.2 - handler: - milestone: B-SIG-Data + handler: zhujiaxing axios: cpeName: axios - url: https://github.com/mzabriskie/axios version: 0.21.4 - handler: - milestone: B-SIG-Data + language: js + license: MIT License + url: https://github.com/mzabriskie/axios + handler: zhujiaxing core-js: cpeName: core-js - url: https://github.com/zloirock/core-js version: 3.6.5 - handler: - milestone: B-SIG-Data + language: js + license: MIT License + url: https://github.com/zloirock/core-js + handler: zhujiaxing d3: cpeName: d3 + version: 5.15.0 + language: js + license: ISC License url: https://d3js.org - version: 5.9.7 - handler: - milestone: B-SIG-Data + handler: zhujiaxing d3-graphviz: cpeName: d3-graphviz - url: https://github.com/magjac/d3-graphviz version: 3.0.4 - handler: - milestone: B-SIG-Data + language: js + license: BSD 3-Clause License + url: https://github.com/magjac/d3-graphviz + handler: zhujiaxing echarts: cpeName: echarts + version: 5.2.1 + language: js + license: BSD 3-Clause License url: http://echarts.apache.org/ - version: 5.0.2 - handler: - milestone: B-SIG-Data + handler: zhujiaxing element-ui: cpeName: element-ui - url: http://element.eleme.io version: 2.13.0 - handler: - milestone: B-SIG-Data + language: js + license: MIT License + url: http://element.eleme.io + handler: zhujiaxing google-pasta: cpeName: google-pasta + version: >=0.1.8 + language: python + license: Apache License Version 2.0 url: https://github.com/google/pasta/ - version: 0.1.8 - handler: - milestone: B-SIG-Data + handler: zhujiaxing grpc: cpeName: grpc + version: >=1.39.0 + language: python + license: Apache License Version 2.0 url: https://github.com/grpc/grpc - version: v1.36.1 - handler: - milestone: B-SIG-Data + handler: zhujiaxing gunicorn: cpeName: gunicorn + version: >=20.0.4 + language: python + license: MIT License url: http://gunicorn.org/ - version: 20.0.4 - handler: - milestone: B-SIG-Data + handler: zhujiaxing jquery: cpeName: jquery - url: http://jquery.com version: 3.5.0 - handler: - milestone: B-SIG-Data + language: js + license: MIT License + url: http://jquery.com + handler: zhujiaxing marshmallow: cpeName: marshmallow + version: >=3.10.0 + language: python + license: MIT License url: https://github.com/marshmallow-code/marshmallow - version: 3.10.0 - handler: - milestone: B-SIG-Data + handler: zhujiaxing networkx: cpeName: networkx - url: https://github.com/networkx/networkx version: 2.5 - handler: - milestone: B-SIG-Data + language: python + license: MIT License + url: https://github.com/networkx/networkx + handler: zhujiaxing numpy: cpeName: numpy + version: numpy>=1.17.0 + language: python + license: BSD 3-Clause License url: https://www.numpy.org - version: 1.17.0 - handler: - milestone: B-SIG-Data + handler: zhujiaxing onnx: cpeName: onnx - url: https://onnx.ai/ version: 1.8.0 - handler: - milestone: B-SIG-Data + language: python + license: Apache License Version 2.0 + url: https://onnx.ai/ + handler: zhujiaxing onnxruntime: cpeName: onnxruntime + language: python + license: MIT License url: https://github.com/microsoft/onnxruntime - version: 1.5.2 - handler: - milestone: B-SIG-Data + handler: zhujiaxing psutil: cpeName: psutil + version: >=5.7.0 + language: python + license: BSD 3-Clause License url: https://github.com/giampaolo/psutil - version: 5.7.0 - handler: - milestone: B-SIG-Data - pybind11: - cpeName: pybind11 - url: https://pybind11.readthedocs.io/en/latest/ - version: 2.4.3 - handler: - milestone: B-SIG-Data + handler: zhujiaxing pyyaml: cpeName: pyyaml + version: >=5.3.1 + language: python + license: MIT License url: https://pypi.org/project/PyYAML/ - version: 5.3.1 - version: 41.1.0 - handler: - milestone: B-SIG-Data + handler: zhujiaxing tensorflow-onnx: cpeName: tensorflow-onnx - url: https://github.com/onnx/tensorflow-onnx/tree/v1.7.1 version: 1.7.1 - handler: - milestone: B-SIG-Data + language: python + license: Apache License V2.0 + url: https://github.com/onnx/tensorflow-onnx/tree/v1.7.1 + handler: zhujiaxing treelib: cpeName: treelib + version: >=1.6.1 + language: python + license: Apache License V2.0 url: https://github.com/caesar0301/treelib - version: 1.6.1 - handler: - milestone: B-SIG-Data + handler: zhujiaxing vue: cpeName: vue + version: 2.6.14 + language: js + license: MIT License url: https://vuejs.org/ - version: 2.6.11 - handler: - milestone: B-SIG-Data + handler: zhujiaxing vue-cli: cpeName: vue-cli - url: https://cli.vuejs.org/ version: 4.5.7 - handler: shenwei41 - milestone: B-SIG-Data + language: js + license: MIT License + url: https://cli.vuejs.org/ + handler: zhujiaxing vue-cli-plugin-i18n: cpeName: vue-cli-plugin-i18n - url: https://github.com/kazupon/vue-cli-plugin-i18n version: 0.6.1 - handler: - milestone: B-SIG-Data + language: js + license: MIT License + url: https://github.com/kazupon/vue-cli-plugin-i18n + handler: zhujiaxing vue-i18n: cpeName: vue-i18n + version: 8.25.0 + language: js + license: MIT License url: http://kazupon.github.io/vue-i18n/ - version: 8.15.0 - handler: - milestone: B-SIG-Data + handler: zhujiaxing vue-i18n-loader: cpeName: vue-i18n-loader - url: https://www.patreon.com/kazupon version: 0.6.1 - handler: - milestone: B-SIG-Data + language: js + license: MIT License + url: https://www.patreon.com/kazupon + handler: zhujiaxing vue-router: cpeName: vue-router + version: 3.5.2 + language: js + license: MIT License url: http://router.vuejs.org/ - version: 05836LFC - handler: - milestone: B-SIG-Data + handler: zhujiaxing vuex: cpeName: vuex + version: 3.6.2 + language: js + license: MIT License url: https://vuex.vuejs.org/ - version: 3.1.1 - handler: - milestone: B-SIG-Data + handler: zhujiaxing yapf: cpeName: yapf + version: >=0.30.0 + language: js + license: Apache License V2.0 url: https://github.com/google/yapf - version: 0.30.0 - handler: - milestone: B-SIG-Data + handler: zhujiaxing mindelec: pyevtk: cpeName: pyevtk @@ -815,7 +810,6 @@ mindelec: version: 1.17.0 url: https://www.numpy.org handler: - handler: milestone: B-SIG-FrontEnd matplotlib: cpeName: matplotlib