From patchwork Wed Apr 15 14:04:45 2026 Content-Type: text/plain; charset="utf-8" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit X-Patchwork-Submitter: auh@yoctoproject.org X-Patchwork-Id: 86090 Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on aws-us-west-2-korg-lkml-1.web.codeaurora.org Received: from aws-us-west-2-korg-lkml-1.web.codeaurora.org (localhost.localdomain [127.0.0.1]) by smtp.lore.kernel.org (Postfix) with ESMTP id E6179F428DB for ; Wed, 15 Apr 2026 14:04:51 +0000 (UTC) Received: from a27-31.smtp-out.us-west-2.amazonses.com (a27-31.smtp-out.us-west-2.amazonses.com [54.240.27.31]) by mx.groups.io with SMTP id smtpd.msgproc02-g2.19826.1776261883261738456 for ; Wed, 15 Apr 2026 07:04:45 -0700 Authentication-Results: mx.groups.io; dkim=pass header.i=@yoctoproject.org header.s=j46ser6a2yusdzubpv7m7ewqgesde2ie header.b=aJWzflWn; dkim=pass header.i=@amazonses.com header.s=hsbnp7p3ensaochzwyq5wwmceodymuwv header.b=s1RX6nEL; spf=pass (domain: us-west-2.amazonses.com, ip: 54.240.27.31, mailfrom: 0101019d91756cce-1f290cab-1822-41b5-9ca0-f336fa69fc70-000000@us-west-2.amazonses.com) DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/simple; s=j46ser6a2yusdzubpv7m7ewqgesde2ie; d=yoctoproject.org; t=1776261885; h=Content-Type:MIME-Version:From:To:Cc:Subject:Message-Id:Date; bh=Je3sX25NuAC0g27dzqlQlyS2ioJoER6O+43OUBX6apw=; b=aJWzflWnufQtHSNUnZVv0aup+HMyrnu1jWicF+m3GSBHd/mkbTp0ngnlBIEksw6d Z87cB2UgrvsfIFC2M10Bnzh2OrXy1MHxjH0+cRfaWRn7oNHvVqLr7AIFuwD0diuKVdv 1Uh8/IkXs1qc2jJZ26hrxieqRKkrS/g8fwZb38mA= DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/simple; s=hsbnp7p3ensaochzwyq5wwmceodymuwv; d=amazonses.com; t=1776261885; h=Content-Type:MIME-Version:From:To:Cc:Subject:Message-Id:Date:Feedback-ID; bh=Je3sX25NuAC0g27dzqlQlyS2ioJoER6O+43OUBX6apw=; b=s1RX6nELMditUJtZLhDtC53Dx8MEEJBsgAINsAuDO8fA5w6RqcMAvLyCX6rhS+Dq uH0hARSi80U1IH6NLicA7/wuWGoXjyRjGquSTvy9IqQps6i3jb0DA8HS9UiAPUSD5yN UVi/yuMVsCk7iJsUJuUgME7yy7ov+i1ZVBKMxwxU= MIME-Version: 1.0 From: auh@yoctoproject.org To: Benjamin Robin Cc: openembedded-core@lists.openembedded.org Subject: [AUH] python3-sbom-cve-check: upgrading to 1.2.1 SUCCEEDED Message-ID: <0101019d91756cce-1f290cab-1822-41b5-9ca0-f336fa69fc70-000000@us-west-2.amazonses.com> Date: Wed, 15 Apr 2026 14:04:45 +0000 Feedback-ID: ::1.us-west-2.9np3MYPs3fEaOBysGKSlUD4KtcmPijcmS9Az2Hwf7iQ=:AmazonSES X-SES-Outgoing: 2026.04.15-54.240.27.31 List-Id: X-Webhook-Received: from 45-33-107-173.ip.linodeusercontent.com [45.33.107.173] by aws-us-west-2-korg-lkml-1.web.codeaurora.org with HTTPS for ; Wed, 15 Apr 2026 14:04:51 -0000 X-Groupsio-URL: https://lists.openembedded.org/g/openembedded-core/message/235258 Hello, this email is a notification from the Auto Upgrade Helper that the automatic attempt to upgrade the recipe(s) *python3-sbom-cve-check* to *1.2.1* has Succeeded. Next steps: - apply the patch: git am 0001-python3-sbom-cve-check-upgrade-1.2.0-1.2.1.patch - check the changes to upstream patches and summarize them in the commit message, - compile an image that contains the package - perform some basic sanity tests - amend the patch and sign it off: git commit -s --reset-author --amend - send it to the appropriate mailing list Alternatively, if you believe the recipe should not be upgraded at this time, you can fill RECIPE_NO_UPDATE_REASON in respective recipe file so that automatic upgrades would no longer be attempted. Please review the attached files for further information and build/update failures. Any problem please file a bug at https://bugzilla.yoctoproject.org/enter_bug.cgi?product=Automated%20Update%20Handler Regards, The Upgrade Helper -- >8 -- From 5ed4ef03252f29b71f47336cd499e4f04379d495 Mon Sep 17 00:00:00 2001 From: Upgrade Helper Date: Wed, 15 Apr 2026 09:32:50 +0000 Subject: [PATCH] python3-sbom-cve-check: upgrade 1.2.0 -> 1.2.1 --- ...xport_yocto-use-correct-type-for-the-version-attrib.patch | 5 +---- ...om-cve-check_1.2.0.bb => python3-sbom-cve-check_1.2.1.bb} | 2 +- 2 files changed, 2 insertions(+), 5 deletions(-) rename meta/recipes-devtools/sbom-cve-check/{python3-sbom-cve-check_1.2.0.bb => python3-sbom-cve-check_1.2.1.bb} (84%) diff --git a/meta/recipes-devtools/sbom-cve-check/files/0001-export_yocto-use-correct-type-for-the-version-attrib.patch b/meta/recipes-devtools/sbom-cve-check/files/0001-export_yocto-use-correct-type-for-the-version-attrib.patch index 392f0b99ea..c6423ab233 100644 --- a/meta/recipes-devtools/sbom-cve-check/files/0001-export_yocto-use-correct-type-for-the-version-attrib.patch +++ b/meta/recipes-devtools/sbom-cve-check/files/0001-export_yocto-use-correct-type-for-the-version-attrib.patch @@ -1,4 +1,4 @@ -From 1a5ae49c520d3569ed12f0c6373b4223d428f92b Mon Sep 17 00:00:00 2001 +From 1a1f0c740464b2a423f8bea68176d93d58db77e5 Mon Sep 17 00:00:00 2001 From: Ross Burton Date: Thu, 9 Apr 2026 11:55:19 +0100 Subject: [PATCH] export_yocto: use correct type for the version attribute @@ -26,6 +26,3 @@ index c8261f4..78d72c0 100644 with self._open_output_as_text() as f: json.dump(json_obj, f, indent=2) --- -2.43.0 - diff --git a/meta/recipes-devtools/sbom-cve-check/python3-sbom-cve-check_1.2.0.bb b/meta/recipes-devtools/sbom-cve-check/python3-sbom-cve-check_1.2.1.bb similarity index 84% rename from meta/recipes-devtools/sbom-cve-check/python3-sbom-cve-check_1.2.0.bb rename to meta/recipes-devtools/sbom-cve-check/python3-sbom-cve-check_1.2.1.bb index 2a09d8ea4c..6717874998 100644 --- a/meta/recipes-devtools/sbom-cve-check/python3-sbom-cve-check_1.2.0.bb +++ b/meta/recipes-devtools/sbom-cve-check/python3-sbom-cve-check_1.2.1.bb @@ -5,7 +5,7 @@ LICENSE = "GPL-2.0-only" LIC_FILES_CHKSUM = "file://LICENSE;md5=570a9b3749dd0463a1778803b12a6dce" PYPI_PACKAGE = "sbom_cve_check" -SRC_URI[sha256sum] = "0b01474c541fb4b9d29d36f86fae6d0f27ff2b991fcb59b2fbeb70c1eaa09664" +SRC_URI[sha256sum] = "d7dfca05cf0cee6b439802fe10689790b9395d436d0d9af6170e23603c2ea5cb" SRC_URI += "file://0001-export_yocto-use-correct-type-for-the-version-attrib.patch"