diff --git a/security/config/Third_Party_Open_Source_Software_List.yaml b/security/config/Third_Party_Open_Source_Software_List.yaml index f4b13a9..9206c22 100644 --- a/security/config/Third_Party_Open_Source_Software_List.yaml +++ b/security/config/Third_Party_Open_Source_Software_List.yaml @@ -2,26 +2,34 @@ mindspore: cffi: cpeName: cffi version: 1.12.3 - url: - handler: + language: Python + license: MIT License + url: http://cffi.readthedocs.org + handler: henryshi1 milestone: B-SIG-FrontEnd onednn: cpeName: Onednn version: 2.2 - url: - handler: + language: C/C++ + license: Apache License V2.0 + url: https://github.com/oneapi-src/oneDNN + handler: henryshi1 milestone: B-SIG-FrontEnd flatbuffers: cpeName: flatbuffers version: 1.11.0 + language: C/C++ + license: Apache License V2.0 url: https://google.github.io/flatbuffers/ - handler: + handler: YeFeng_24 milestone: B-SIG-MSLite gensim: cpeName: gensim version: 3.8.1 + language: Python + license: LGPL V2.1 url: http://radimrehurek.com/gensim - handler: + handler: zhao_ting_v milestone: B-SIG-ModelZoo sentencepiece: cpeName: sentencepiece @@ -33,69 +41,91 @@ mindspore: milestone: B-SIG-Data Eigen: cpeName: Eigen - version: 3.3.7 + version: 3.4.0 + language: C/C++ + license: Mozilla Public License (MPL) V2.0 url: http://eigen.tuxfamily.org/index.php?title=Main_Page handler: henryshi1 milestone: B-SIG-FrontEnd ProjectQ: cpeName: ProjectQ version: 0.5.1 + language: Python + license: Apache License V2.0 url: https://projectq.ch/ - handler: + handler: kangyangzc milestone: B-MBA google/glog: cpeName: google/glog version: 0.4.0 + language: Python + license: BSD 3-Clause License url: https://github.com/google/glog handler: henryshi1 milestone: B-SIG-FrontEnd googletest: cpeName: googletest version: 1.8.1 + language: C/C++ + license: BSD 3-Clause License url: http://code.google.com/p/googletest/ handler: henryshi1 milestone: B-SIG-FrontEnd opencv-python: cpeName: opencv-python version: 4.1.2.30 + language: Python + license: MIT License url: https://github.com/skvark/opencv-python - handler: + handler: zhao_ting_v milestone: B-SIG-ModelZoo Scipy: cpeName: Scipy version: 1.5.4 + language: Python + license: BSD 3-Clause License url: http://scipy.org/ handler: henryshi1 milestone: B-SIG-FrontEnd robin_hood_hashing: cpeName: robin_hood_hashing version: 3.11.5 + language: C++ + license: MIT License url: https://github.com/martinus/robin_hood_hashing handler: henryshi1 milestone: B-SIG-FrontEnd astunparse: cpeName: astunparse version: 1.6.3 + language: Python + license: BSD 3-Clause License url: https://github.com/simonpercivall/astunparse handler: henryshi1 milestone: B-SIG-FrontEnd dirent: cpeName: dirent version: 1.23.2 + language: C/C++ + license: MIT license url: https://github.com/tronkko/dirent handler: herryshi1 milestone: B-SIG-FrontEnd fast_transfromer: cpeName: fast_transfromer version: 0.5.0 + language: C/C++ + license: Apache License V2.0 url: https://github.com/NVIDIA/FasterTransformer handler: herryshi1 milestone: B-SIG-FrontEnd Cython: cpeName: Cython version: 0.29.15 + language: C/C++ + license: Apache License V2.0 url: http://cython.org/ - handler: + handler: zhao_ting_v milestone: B-SIG-ModelZoo Pillow: cpeName: Pillow @@ -113,36 +143,38 @@ mindspore: url: https://github.com/abseil/abseil-cpp handler: shenwei41 milestone: B-SIG-Data - mkl-dnn: - cpeName: mkl-dnn - version: '1.6' - url: https://github.com/intel/mkl-dnn;https://github.com/oneapi-src/oneDNN - handler: henryshi1 - milestone: B-SIG-FrontEnd JSON for Modern C++: cpeName: JSON for Modern C++ version: 3.6.1 + language: C++ + license: MIT License url: https://github.com/nlohmann/json - handler: + handler: nicholas_yhr milestone: B-Deploy dataclasses: cpeName: dataclasses version: '0.7' + language: Python + license: Apache License V2.0 url: https://github.com/ericvsmith/dataclasses handler: henryshi1 milestone: B-SIG-FrontEnd onnx: cpeName: onnx version: 1.6.0 + language: C/C++ + license: MIT License url: https://onnx.ai/ handler: henryshi1 milestone: B-SIG-FrontEnd SymPy: cpeName: SymPy version: '1.4' + language: Python + license: BSD 3-Clause License url: http://www.sympy.org/en/index.html - handler: - milestone: + handler: henryshi1 + milestone: B-SIG-FrontEnd pybind11: cpeName: pybind11 version: 2.6.1 @@ -162,30 +194,40 @@ mindspore: QuTiP: cpeName: QuTiP version: 4.5.3 + language: Python + license: BSD 3-Clause License url: http://qutip.org/ - handler: - milestone: + handler: henryshi1 + milestone: B-SIG-FrontEnd numpy: cpeName: numpy version: 1.17.0 url: https://www.numpy.org + language: Python + license: BSD 3-Clause License handler: henryshi1 milestone: B-SIG-FrontEnd matplotlib: cpeName: matplotlib version: 3.2.1 + language: Python + license: Python PSF License url: https://matplotlib.org - handler: + handler: jxlang910 milestone: B-SIG-Security CMSIS: cpeName: CMSIS version: 5.7.0 + language: C + license: Apache License V2.0 url: http://www.arm.com/zh/products/processors/cortex-m/cortex-microcontroller-software-interface-standard.php - handler: + handler: zhanghaibo5 milestone: B-SIG-MSLite asttokens: cpeName: asttokens version: 2.0.4 + language: Python + license: Apache License V2.0 url: https://github.com/gristlabs/asttokens handler: henryshi1 milestone: B-SIG-FrontEnd @@ -200,34 +242,48 @@ mindspore: openmpi: cpeName: openmpi version: 4.0.3 + language: C/C++ + license: BSD 3-Clause License url: https://www.open-mpi.org/ - handler: - milestone: + handler: henryshi1 + milestone: B-SIG-FrontEnd libevent: cpeName: libevent version: 2.1.12 + language: C/C++ + license: BSD 3-Clause License;MIT License;ISC License;BSD 2-Clause License;Creative Commons Public Domain Certification url: https://libevent.org/ - handler: + handler: henryshi1 milestone: B-SIG-FrontEnd pyzmq: cpeName: pyzmq version: 19.0.1 + language: C/C++ + license: BSD 3-Clause License url: https://pypi.python.org/pypi/defusedxml - handler: - milestone: + handler: henryshi1 + milestone: B-SIG-FrontEnd pycocotools: cpeName: pycocotools version: 2.0.1 + language: Python + license: Apache License V2.0 url: https://github.com/cocodataset/cocoapi/tree/master/PythonAPI + handler: zhao_ting_v milestone: B-SIG-ModelZoo OpenCL-CLHPP: cpeName: OpenCL-CLHPP version: 2.0.12 + language: C/C++ + license: Apache License V2.0 url: https://github.com/KhronosGroup/OpenCL-CLHPP + handler: greatpanc milestone: B-SIG-MSLite google/protobuf: cpeName: google/protobuf version: 3.13.0 + language: C/C++ + license: Apache License V2.0;BSD 3-Clause License;MIT License;FSF All Permissive License;GPL V3.0 With Autoconf Macro Exception url: https://github.com/protocolbuffers/protobuf handler: henryshi1 milestone: B-SIG-FrontEnd @@ -250,12 +306,16 @@ mindspore: sacrebleu: cpeName: sacrebleu version: 1.4.14 + language: Python + license: Apache License V2.0 url: https://github.com/mjpost/sacrebleu - handler: + handler: zhao_ting_v milestone: B-SIG-ModelZoo pandas: cpeName: pandas version: 1.0.4 + language: Python + license: BSD 3-Clause License url: https://pandas.pydata.org/ handler: shenwei41 milestone: B-SIG-Data @@ -270,8 +330,10 @@ mindspore: easydict: cpeName: easydict version: '1.9' + language: Python + license: LGPL V3.0 url: https://github.com/makinacorpus/easydict - handler: + handler: zhao_ting_v milestone: B-SIG-ModelZoo libjpeg-turbo: cpeName: libjpeg-turbo @@ -292,26 +354,34 @@ mindspore: six: cpeName: six version: 1.12.0 + language: Python + license: Python Software Foundation License V2 url: https://six.readthedocs.io/ handler: shenwei41 milestone: B-SIG-Data Khronos Group - Vulkan: cpeName: Khronos Group - Vulkan version: 1.2.144 + language: Python + license: Apache License V2.0 url: https://www.khronos.org/vulkan/ - handler: + handler: xu-yfei milestone: B-SIG-MSLite OpenFermion: cpeName: OpenFermion version: 1.0.0 + language: Python + license: Apache License V2.0 url: https://github.com/quantumlib/OpenFermion - handler: - milestone: + handler: henryshi1 + milestone: B-SIG-FrontEnd subword-nmt: cpeName: subword-nmt version: 0.3.7 + language: Python + license: MIT License url: https://github.com/rsennrich/subword-nmt - handler: + handler: zhao_ting_v milestone: B-SIG-ModelZoo zlib: cpeName: zlib @@ -324,14 +394,18 @@ mindspore: nccl: cpeName: nccl version: 2.7.6-1 + language: Python + license: BSD 3-Clause License url: https://github.com/NVIDIA/nccl/ - handler: + handler: zpac milestone: B-SIG-Runtime sacremoses: cpeName: sacremoses version: 0.0.35 + language: Python + license: MIT License url: https://github.com/alvations/sacremoses - handler: + handler: zhao_ting_v milestone: B-SIG-ModelZoo Cppjieba: cpeName: Cppjieba @@ -344,26 +418,34 @@ mindspore: pytest: cpeName: pytest version: 5.4.3 + language: Python + license: MIT License url: https://docs.pytest.org/en/latest/ handler: henryshi1 milestone: B-SIG-FrontEnd Khronos Group - OpenCL - Headers: cpeName: Khronos Group - OpenCL - Headers version: v2020.12.18 + language: Python + license: Apache License V2.0 url: https://github.com/KhronosGroup/OpenCL-Headers/ - handler: + handler: xu-yfei milestone: B-SIG-MSLite okhttp: cpeName: okhttp version: 3.14.9 + language: Java + license: Apache License V2.0 url: https://square.github.io/okhttp/ - handler: + handler: yangxixin milestone: B-SIG-FL The Legion of the Bouncy Castle: cpeName: The Legion of the Bouncy Castle version: 1.68 + language: Java + license: MIT License url: http://www.bouncycastle.org/ - handler: + handler: yangxixin milestone: B-SIG-FL re2: cpeName: re2