From patchwork Wed Apr  1 14:36:04 2026
Content-Type: text/plain; charset="utf-8"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
X-Patchwork-Submitter: auh@yoctoproject.org
X-Patchwork-Id: 84988
Return-Path: <auh@yoctoproject.org>
X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on
	aws-us-west-2-korg-lkml-1.web.codeaurora.org
Received: from aws-us-west-2-korg-lkml-1.web.codeaurora.org
 (localhost.localdomain [127.0.0.1])
	by smtp.lore.kernel.org (Postfix) with ESMTP id E213D10FCAD5
	for <webhook@archiver.kernel.org>; Wed,  1 Apr 2026 14:36:06 +0000 (UTC)
Received: from a27-33.smtp-out.us-west-2.amazonses.com
 (a27-33.smtp-out.us-west-2.amazonses.com [54.240.27.33])
 by mx.groups.io with SMTP id smtpd.msgproc02-g2.14738.1775054152306804574
 for <openembedded-core@lists.openembedded.org>;
 Wed, 01 Apr 2026 07:36:05 -0700
Authentication-Results: mx.groups.io;
 dkim=pass header.i=@yoctoproject.org
 header.s=j46ser6a2yusdzubpv7m7ewqgesde2ie header.b=oXHgsERG;
 dkim=pass header.i=@amazonses.com header.s=hsbnp7p3ensaochzwyq5wwmceodymuwv
 header.b=hkFgt8+r;
 spf=pass (domain: us-west-2.amazonses.com, ip: 54.240.27.33,
 mailfrom:
 0101019d49791322-98eaa3eb-deea-41b0-805b-61fe6816e385-000000@us-west-2.amazonses.com)
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/simple;
	s=j46ser6a2yusdzubpv7m7ewqgesde2ie; d=yoctoproject.org;
	t=1775054164;
	h=Content-Type:MIME-Version:From:To:Cc:Subject:Message-Id:Date;
	bh=Iy2dSPcgZEm8IXx+j8LeYAujl40RV7PzawWS8Loxak8=;
	b=oXHgsERG6GbKQ2K/3ZB+wQFejYmekhwNHJACQboW9X9ZH0n/6wFyssoRnLts71rt
	Qbzpgntqx3aZfdcpXMZX9P1oI6Wj2/WSvjO83L0N4cm1GJRgvt8iJmBp9mxY1Hg9UHb
	dqlCXt4e1hoDSBDN5XXX+jzHYa1gmjnkurOOsqCw=
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/simple;
	s=hsbnp7p3ensaochzwyq5wwmceodymuwv; d=amazonses.com; t=1775054164;
	h=Content-Type:MIME-Version:From:To:Cc:Subject:Message-Id:Date:Feedback-ID;
	bh=Iy2dSPcgZEm8IXx+j8LeYAujl40RV7PzawWS8Loxak8=;
	b=hkFgt8+rGRFSyUtRghduyvQkTKd6jnQ9IJ12tRWQeRrUonRSraeuFYIcWsVGE8PY
	TLFjaMYuRvoqtR6NOKTIYZS3/JiBiirPCyO3hNtQ1U2r9jWBCcw1NQ5R1A08eK63BCb
	lyaZAKKXfJvkxpLulL45Nnf61T+ttCT63hcvxwZk=
MIME-Version: 1.0
From: auh@yoctoproject.org
To: Benjamin Robin <benjamin.robin@bootlin.com>
Cc: openembedded-core@lists.openembedded.org
Subject: [AUH] python3-sbom-cve-check: upgrading to 1.2.1 SUCCEEDED
Message-ID: 
 <0101019d49791322-98eaa3eb-deea-41b0-805b-61fe6816e385-000000@us-west-2.amazonses.com>
Date: Wed, 1 Apr 2026 14:36:04 +0000
Feedback-ID: 
 ::1.us-west-2.9np3MYPs3fEaOBysGKSlUD4KtcmPijcmS9Az2Hwf7iQ=:AmazonSES
X-SES-Outgoing: 2026.04.01-54.240.27.33
List-Id: <openembedded-core.lists.openembedded.org>
X-Webhook-Received: from 45-33-107-173.ip.linodeusercontent.com
 [45.33.107.173] by
 aws-us-west-2-korg-lkml-1.web.codeaurora.org with HTTPS for
 <openembedded-core@lists.openembedded.org>; Wed, 01 Apr 2026 14:36:06 -0000
X-Groupsio-URL: 
 https://lists.openembedded.org/g/openembedded-core/message/234389

Hello,

this email is a notification from the Auto Upgrade Helper
that the automatic attempt to upgrade the recipe(s) *python3-sbom-cve-check* to *1.2.1* has Succeeded.

Next steps:
    - apply the patch: git am 0001-python3-sbom-cve-check-upgrade-1.2.0-1.2.1.patch
    - check the changes to upstream patches and summarize them in the commit message,
    - compile an image that contains the package
    - perform some basic sanity tests
    - amend the patch and sign it off: git commit -s --reset-author --amend
    - send it to the appropriate mailing list

Alternatively, if you believe the recipe should not be upgraded at this time,
you can fill RECIPE_NO_UPDATE_REASON in respective recipe file so that
automatic upgrades would no longer be attempted.

Please review the attached files for further information and build/update failures.
Any problem please file a bug at https://bugzilla.yoctoproject.org/enter_bug.cgi?product=Automated%20Update%20Handler

Regards,
The Upgrade Helper

-- >8 --
From 127d51e7c5199ebb43efc7e575d0c6e994db9d55 Mon Sep 17 00:00:00 2001
From: Upgrade Helper <auh@yoctoproject.org>
Date: Wed, 1 Apr 2026 10:26:41 +0000
Subject: [PATCH] python3-sbom-cve-check: upgrade 1.2.0 -> 1.2.1
---
 ...-sbom-cve-check_1.2.0.bb => python3-sbom-cve-check_1.2.1.bb} | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)
 rename meta/recipes-devtools/python/{python3-sbom-cve-check_1.2.0.bb => python3-sbom-cve-check_1.2.1.bb} (82%)

diff --git a/meta/recipes-devtools/python/python3-sbom-cve-check_1.2.0.bb b/meta/recipes-devtools/python/python3-sbom-cve-check_1.2.1.bb
similarity index 82%
rename from meta/recipes-devtools/python/python3-sbom-cve-check_1.2.0.bb
rename to meta/recipes-devtools/python/python3-sbom-cve-check_1.2.1.bb
index 070e878971..e8791b6a3a 100644
--- a/meta/recipes-devtools/python/python3-sbom-cve-check_1.2.0.bb
+++ b/meta/recipes-devtools/python/python3-sbom-cve-check_1.2.1.bb
@@ -5,7 +5,7 @@ LICENSE = "GPL-2.0-only"
 LIC_FILES_CHKSUM = "file://LICENSE;md5=570a9b3749dd0463a1778803b12a6dce"
 
 PYPI_PACKAGE = "sbom_cve_check"
-SRC_URI[sha256sum] = "0b01474c541fb4b9d29d36f86fae6d0f27ff2b991fcb59b2fbeb70c1eaa09664"
+SRC_URI[sha256sum] = "d7dfca05cf0cee6b439802fe10689790b9395d436d0d9af6170e23603c2ea5cb"
 
 inherit pypi python_hatchling