{
  "@context": "https://spdx.org/rdf/3.0.1/spdx-context.jsonld",
  "@graph": [
    {
      "@id": "_:creationInfo_1",
      "type": "CreationInfo",
      "specVersion": "3.0.1",
      "createdBy": [
        "https://anchore.com/syft/dir/repo/openeuler/openEuler-24.03-LTS-SP4/EPOL/main/x86_64-f564cbdc-f776-4454-88c1-914c6d644e96-specv3/SPDXRef-gnrtd2"
      ],
      "createdUsing": [
        "https://anchore.com/syft/dir/repo/openeuler/openEuler-24.03-LTS-SP4/EPOL/main/x86_64-f564cbdc-f776-4454-88c1-914c6d644e96-specv3/additionalToolSPDXRef-gnrtd3"
      ],
      "created": "2026-07-04T06:18:35Z"
    },
    {
      "@id": "_:creationInfo_0",
      "type": "CreationInfo",
      "specVersion": "3.0.1",
      "createdBy": [
        "https://anchore.com/syft/dir/repo/openeuler/openEuler-24.03-LTS-SP4/EPOL/main/x86_64-f564cbdc-f776-4454-88c1-914c6d644e96-specv3/SPDXRef-gnrtd0"
      ],
      "createdUsing": [
        "https://anchore.com/syft/dir/repo/openeuler/openEuler-24.03-LTS-SP4/EPOL/main/x86_64-f564cbdc-f776-4454-88c1-914c6d644e96-specv3/additionalToolSPDXRef-gnrtd1"
      ],
      "created": "2026-07-04T06:18:35Z"
    },
    {
      "spdxId": "https://anchore.com/syft/dir/repo/openeuler/openEuler-24.03-LTS-SP4/EPOL/main/x86_64-f564cbdc-f776-4454-88c1-914c6d644e96-specv3/SPDXRef-gnrtd5395",
      "type": "Relationship",
      "relationshipType": "hasDeclaredLicense",
      "to": [
        "https://anchore.com/syft/dir/repo/openeuler/openEuler-24.03-LTS-SP4/EPOL/main/x86_64-f564cbdc-f776-4454-88c1-914c6d644e96-specv3/SPDXRef-gnrtd5396"
      ],
      "from": "https://anchore.com/syft/dir/repo/openeuler/openEuler-24.03-LTS-SP4/EPOL/main/x86_64-f564cbdc-f776-4454-88c1-914c6d644e96-specv3/SPDXRef-gnrtd5391",
      "creationInfo": "_:creationInfo_0"
    },
    {
      "spdxId": "https://anchore.com/syft/dir/repo/openeuler/openEuler-24.03-LTS-SP4/EPOL/main/x86_64-f564cbdc-f776-4454-88c1-914c6d644e96-specv3/SPDXRef-gnrtd5392",
      "type": "Relationship",
      "relationshipType": "hasConcludedLicense",
      "to": [
        "https://anchore.com/syft/dir/repo/openeuler/openEuler-24.03-LTS-SP4/EPOL/main/x86_64-f564cbdc-f776-4454-88c1-914c6d644e96-specv3/SPDXRef-gnrtd5393"
      ],
      "from": "https://anchore.com/syft/dir/repo/openeuler/openEuler-24.03-LTS-SP4/EPOL/main/x86_64-f564cbdc-f776-4454-88c1-914c6d644e96-specv3/SPDXRef-gnrtd5391",
      "creationInfo": "_:creationInfo_0"
    },
    {
      "spdxId": "https://anchore.com/syft/dir/repo/openeuler/openEuler-24.03-LTS-SP4/EPOL/main/x86_64-f564cbdc-f776-4454-88c1-914c6d644e96-specv3/SPDXRef-gnrtd5393",
      "type": "simplelicensing_LicenseExpression",
      "simplelicensing_licenseExpression": "Mulan PSL v2",
      "creationInfo": "_:creationInfo_0"
    },
    {
      "spdxId": "https://anchore.com/syft/dir/repo/openeuler/openEuler-24.03-LTS-SP4/EPOL/main/x86_64-f564cbdc-f776-4454-88c1-914c6d644e96-specv3/SPDXRef-gnrtd5396",
      "type": "simplelicensing_LicenseExpression",
      "simplelicensing_licenseExpression": "Mulan PSL v2",
      "creationInfo": "_:creationInfo_0"
    },
    {
      "spdxId": "https://anchore.com/syft/dir/repo/openeuler/openEuler-24.03-LTS-SP4/EPOL/main/x86_64-f564cbdc-f776-4454-88c1-914c6d644e96-specv3/SPDXRef-gnrtd5394",
      "type": "Organization",
      "name": "http://openeuler.org",
      "creationInfo": "_:creationInfo_0"
    },
    {
      "spdxId": "https://anchore.com/syft/dir/repo/openeuler/openEuler-24.03-LTS-SP4/EPOL/main/x86_64-f564cbdc-f776-4454-88c1-914c6d644e96-specv3/SPDXRef-gnrtd5391",
      "type": "software_Package",
      "software_copyrightText": "",
      "suppliedBy": "https://anchore.com/syft/dir/repo/openeuler/openEuler-24.03-LTS-SP4/EPOL/main/x86_64-f564cbdc-f776-4454-88c1-914c6d644e96-specv3/SPDXRef-gnrtd5394",
      "software_downloadLocation": "NOASSERTION",
      "summary": "A tool for convert csaf file to oval format xml file.",
      "software_packageVersion": "0:1.0-1.oe2403sp4",
      "description": "cu-scanner is a tool specifically designed for the field of cybersecurity. Its core function is to collect, organize, and uniquely process relevant information based on files or data interfaces related to CVE (Common Vulnerabilities and Exposures) and security advisories, thereby rapidly generating XML files in OVAL (Open Vulnerability and Assessment Language) format.",
      "name": "cu-scanner",
      "software_sourceInfo": "acquired package info from repodata DB: repodata/1878cc60a19e65efc93d1a539275c5a6799b0acbd7796ee105712c44cae47ab4-primary.sqlite.bz2",
      "software_packageUrl": "pkg:rpm/cu-scanner@1.0-1.oe2403sp4?arch=x86_64&epoch=0&upstream=cu-scanner-1.0-1.oe2403sp4.src.rpm",
      "creationInfo": "_:creationInfo_0"
    },
    {
      "spdxId": "https://anchore.com/syft/dir/repo/openeuler/openEuler-24.03-LTS-SP4/EPOL/main/x86_64-f564cbdc-f776-4454-88c1-914c6d644e96-specv3/additionalToolSPDXRef-gnrtd3",
      "type": "Tool",
      "name": "syft-[not provided]",
      "creationInfo": "_:creationInfo_1"
    },
    {
      "spdxId": "https://anchore.com/syft/dir/repo/openeuler/openEuler-24.03-LTS-SP4/EPOL/main/x86_64-f564cbdc-f776-4454-88c1-914c6d644e96-specv3/additionalToolSPDXRef-gnrtd1",
      "type": "Tool",
      "name": "syft-[not provided]",
      "creationInfo": "_:creationInfo_0"
    }
  ]
}