{
  "@context": "https://spdx.org/rdf/3.0.1/spdx-context.jsonld",
  "@graph": [
    {
      "@id": "_:creationInfo_1",
      "type": "CreationInfo",
      "specVersion": "3.0.1",
      "createdBy": [
        "https://anchore.com/syft/dir/repo/openeuler/openEuler-24.03-LTS-SP4/EPOL/main/aarch64-a81892d8-2d31-4c01-871d-ea68d5d8a00c-specv3/SPDXRef-gnrtd2"
      ],
      "createdUsing": [
        "https://anchore.com/syft/dir/repo/openeuler/openEuler-24.03-LTS-SP4/EPOL/main/aarch64-a81892d8-2d31-4c01-871d-ea68d5d8a00c-specv3/additionalToolSPDXRef-gnrtd3"
      ],
      "created": "2026-07-04T06:27:27Z"
    },
    {
      "@id": "_:creationInfo_0",
      "type": "CreationInfo",
      "specVersion": "3.0.1",
      "createdBy": [
        "https://anchore.com/syft/dir/repo/openeuler/openEuler-24.03-LTS-SP4/EPOL/main/aarch64-a81892d8-2d31-4c01-871d-ea68d5d8a00c-specv3/SPDXRef-gnrtd0"
      ],
      "createdUsing": [
        "https://anchore.com/syft/dir/repo/openeuler/openEuler-24.03-LTS-SP4/EPOL/main/aarch64-a81892d8-2d31-4c01-871d-ea68d5d8a00c-specv3/additionalToolSPDXRef-gnrtd1"
      ],
      "created": "2026-07-04T06:27:27Z"
    },
    {
      "spdxId": "https://anchore.com/syft/dir/repo/openeuler/openEuler-24.03-LTS-SP4/EPOL/main/aarch64-a81892d8-2d31-4c01-871d-ea68d5d8a00c-specv3/SPDXRef-gnrtd5414",
      "type": "Relationship",
      "relationshipType": "hasConcludedLicense",
      "to": [
        "https://anchore.com/syft/dir/repo/openeuler/openEuler-24.03-LTS-SP4/EPOL/main/aarch64-a81892d8-2d31-4c01-871d-ea68d5d8a00c-specv3/SPDXRef-gnrtd5415"
      ],
      "from": "https://anchore.com/syft/dir/repo/openeuler/openEuler-24.03-LTS-SP4/EPOL/main/aarch64-a81892d8-2d31-4c01-871d-ea68d5d8a00c-specv3/SPDXRef-gnrtd5413",
      "creationInfo": "_:creationInfo_0"
    },
    {
      "spdxId": "https://anchore.com/syft/dir/repo/openeuler/openEuler-24.03-LTS-SP4/EPOL/main/aarch64-a81892d8-2d31-4c01-871d-ea68d5d8a00c-specv3/SPDXRef-gnrtd5417",
      "type": "Relationship",
      "relationshipType": "hasDeclaredLicense",
      "to": [
        "https://anchore.com/syft/dir/repo/openeuler/openEuler-24.03-LTS-SP4/EPOL/main/aarch64-a81892d8-2d31-4c01-871d-ea68d5d8a00c-specv3/SPDXRef-gnrtd5418"
      ],
      "from": "https://anchore.com/syft/dir/repo/openeuler/openEuler-24.03-LTS-SP4/EPOL/main/aarch64-a81892d8-2d31-4c01-871d-ea68d5d8a00c-specv3/SPDXRef-gnrtd5413",
      "creationInfo": "_:creationInfo_0"
    },
    {
      "spdxId": "https://anchore.com/syft/dir/repo/openeuler/openEuler-24.03-LTS-SP4/EPOL/main/aarch64-a81892d8-2d31-4c01-871d-ea68d5d8a00c-specv3/SPDXRef-gnrtd5418",
      "type": "simplelicensing_LicenseExpression",
      "simplelicensing_licenseExpression": "Mulan PSL v2",
      "creationInfo": "_:creationInfo_0"
    },
    {
      "spdxId": "https://anchore.com/syft/dir/repo/openeuler/openEuler-24.03-LTS-SP4/EPOL/main/aarch64-a81892d8-2d31-4c01-871d-ea68d5d8a00c-specv3/SPDXRef-gnrtd5415",
      "type": "simplelicensing_LicenseExpression",
      "simplelicensing_licenseExpression": "Mulan PSL v2",
      "creationInfo": "_:creationInfo_0"
    },
    {
      "spdxId": "https://anchore.com/syft/dir/repo/openeuler/openEuler-24.03-LTS-SP4/EPOL/main/aarch64-a81892d8-2d31-4c01-871d-ea68d5d8a00c-specv3/SPDXRef-gnrtd5416",
      "type": "Organization",
      "name": "http://openeuler.org",
      "creationInfo": "_:creationInfo_0"
    },
    {
      "spdxId": "https://anchore.com/syft/dir/repo/openeuler/openEuler-24.03-LTS-SP4/EPOL/main/aarch64-a81892d8-2d31-4c01-871d-ea68d5d8a00c-specv3/SPDXRef-gnrtd5413",
      "type": "software_Package",
      "software_copyrightText": "",
      "suppliedBy": "https://anchore.com/syft/dir/repo/openeuler/openEuler-24.03-LTS-SP4/EPOL/main/aarch64-a81892d8-2d31-4c01-871d-ea68d5d8a00c-specv3/SPDXRef-gnrtd5416",
      "software_downloadLocation": "NOASSERTION",
      "summary": "A tool for convert csaf file to oval format xml file.",
      "software_packageVersion": "0:1.0-1.oe2403sp4",
      "description": "cu-scanner is a tool specifically designed for the field of cybersecurity. Its core function is to collect, organize, and uniquely process relevant information based on files or data interfaces related to CVE (Common Vulnerabilities and Exposures) and security advisories, thereby rapidly generating XML files in OVAL (Open Vulnerability and Assessment Language) format.",
      "name": "cu-scanner",
      "software_sourceInfo": "acquired package info from repodata DB: repodata/f0b2606f1dc0294014b17bb8ea9231f0129611b4c9610b9db40f82da2b1f63da-primary.sqlite.bz2",
      "software_packageUrl": "pkg:rpm/cu-scanner@1.0-1.oe2403sp4?arch=aarch64&epoch=0&upstream=cu-scanner-1.0-1.oe2403sp4.src.rpm",
      "creationInfo": "_:creationInfo_0"
    },
    {
      "spdxId": "https://anchore.com/syft/dir/repo/openeuler/openEuler-24.03-LTS-SP4/EPOL/main/aarch64-a81892d8-2d31-4c01-871d-ea68d5d8a00c-specv3/additionalToolSPDXRef-gnrtd1",
      "type": "Tool",
      "name": "syft-[not provided]",
      "creationInfo": "_:creationInfo_0"
    },
    {
      "spdxId": "https://anchore.com/syft/dir/repo/openeuler/openEuler-24.03-LTS-SP4/EPOL/main/aarch64-a81892d8-2d31-4c01-871d-ea68d5d8a00c-specv3/additionalToolSPDXRef-gnrtd3",
      "type": "Tool",
      "name": "syft-[not provided]",
      "creationInfo": "_:creationInfo_1"
    }
  ]
}