diff --git a/.gitattributes b/.gitattributes
new file mode 100644
index 0000000..2ee63f0
--- /dev/null
+++ b/.gitattributes
@@ -0,0 +1,21 @@
+# by default use heuristics
+*		text=auto
+
+# standard text files
+*.java		text
+*.properties	text
+*.gradle	text
+*.cfg		text
+*.xml		text
+*.json		text
+
+# binary file
+*.png		-text
+*.jpg		-text
+*.pdf		-text
+
+# special text files
+# NB: we must undo effect of "* text=auto" here
+*.bat		!text eol=crlf
+*.sh		!text eol=lf
+gradlew		!text eof=lf
diff --git a/.github/workflows/build-dev-release.yml b/.github/workflows/build-dev-release.yml
new file mode 100644
index 0000000..23f155a
--- /dev/null
+++ b/.github/workflows/build-dev-release.yml
@@ -0,0 +1,65 @@
+on: 
+  push: 
+    branches:
+      - '**'
+
+env:
+  DIST_DIR: ${{ github.workspace }}/build/dist
+
+name: Build development release
+jobs:
+  build:
+    runs-on: ubuntu-latest
+    steps:
+      - name: Check-out source code
+        uses: actions/checkout@v2
+      
+      - name: Define development release info
+        if: startsWith(github.ref, 'refs/heads/')
+        run: |
+          branch="${GITHUB_REF#refs/heads/}"
+          tag="dev_${branch//[^a-zA-Z0-9_.-]/.}" # Replace all special characters by a dot
+          echo DO_BUILD=true >> $GITHUB_ENV # We always want to do a build if we're building a branch
+          echo BRANCH=${branch} >> $GITHUB_ENV
+          echo RELEASE_TAG=${tag} >> $GITHUB_ENV
+          
+          if git ls-remote --exit-code origin refs/tags/${tag} >/dev/null 2>&1; then
+            echo "Found tag ${tag}, development release will be published"
+            echo DO_RELEASE=true >> $GITHUB_ENV
+          else 
+            echo "Tag ${tag} does not exist, no development release will be published"
+          fi
+          
+      - name: Build development release
+        if: env.DO_BUILD
+        run: ./gradlew dist distThirdParty
+        
+      - name: Publish build artifacts
+        if: env.DO_BUILD
+        uses: actions/upload-artifact@v2
+        with:
+          name: build_artifacts
+          path: ${{ env.DIST_DIR }}
+          
+      - name: Update development release tag
+        uses: richardsimko/update-tag@v1
+        if: env.DO_RELEASE
+        with:
+          tag_name: ${{ env.RELEASE_TAG }}
+        env:
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} 
+        
+      - name: Create pre-release
+        if: env.DO_RELEASE
+        run: |
+          files=$(find "${{ env.DIST_DIR }}" -type f -printf "%p ")
+          gh release delete ${{ env.RELEASE_TAG }} -y || true
+          gh release create ${{ env.RELEASE_TAG }} -p -t "Development Release - ${{ env.BRANCH }} branch" -n 'See `Assets` section below for latest build artifacts' ${files}
+        env:
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} 
+          
+      
+          
+      
+
+      
\ No newline at end of file
diff --git a/.github/workflows/build-prod-release.yml b/.github/workflows/build-prod-release.yml
new file mode 100644
index 0000000..60191a1
--- /dev/null
+++ b/.github/workflows/build-prod-release.yml
@@ -0,0 +1,48 @@
+on:
+  push:
+    branches:
+      - main
+      
+env:
+  DIST_DIR: ${{ github.workspace }}/build/dist
+      
+name: Build production release
+jobs:
+  build-and-release:
+    runs-on: ubuntu-latest
+    steps:
+      - name: Check-out source code
+        uses: actions/checkout@v2
+      
+      - name: Generate and process release PR
+        id: release_please
+        uses: GoogleCloudPlatform/release-please-action@v2
+        with:
+          release-type: simple
+          package-name: ${{ github.event.repository.name }}
+          
+      - name: Define production release info
+        if: steps.release_please.outputs.release_created
+        run: |
+          tag=${{steps.release_please.outputs.tag_name}}
+          version=${{steps.release_please.outputs.version}}
+          major=${{steps.release_please.outputs.major}}
+          minor=${{steps.release_please.outputs.minor}}
+          patch=${{steps.release_please.outputs.patch}}
+          echo DO_RELEASE=true >> $GITHUB_ENV
+          echo RELEASE_TAG=${tag} >> $GITHUB_ENV
+          echo RELEASE_VERSION=${version} >> $GITHUB_ENV
+          
+      - name: Build production release
+        if: env.DO_RELEASE
+        run: ./gradlew dist distThirdParty -Pversion=${{env.RELEASE_VERSION}}
+      
+      - name: Upload assets to release
+        if: env.DO_RELEASE
+        run: |
+          tag=${{ steps.release_please.outputs.tag_name }}
+          files=$(find "${{ env.DIST_DIR }}" -type f -printf "%p ")
+          gh release upload "${tag}" $files --clobber
+        env:
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+          
\ No newline at end of file
diff --git a/.github/workflows/update-repo-docs.yml b/.github/workflows/update-repo-docs.yml
new file mode 100644
index 0000000..6b92f1b
--- /dev/null
+++ b/.github/workflows/update-repo-docs.yml
@@ -0,0 +1,25 @@
+name: doc-resource-updater
+
+on:
+  workflow_dispatch:
+  schedule:
+    - cron: '5 4 * * *'
+  push:
+    branches:
+      - main
+
+jobs:
+  update-repo-doc-resources:
+    runs-on: ubuntu-latest
+
+    steps:
+    - uses: actions/checkout@v2
+      with:
+        ref: ${{ github.head_ref }}
+
+    - name: Update documentation resources
+      run: bash doc-resources/update-repo-docs.sh
+
+    - uses: stefanzweifel/git-auto-commit-action@v4
+      with:
+        commit_message: 'docs: Auto-update documentation resources' 
\ No newline at end of file
diff --git a/.gitignore b/.gitignore
new file mode 100644
index 0000000..6e845dd
--- /dev/null
+++ b/.gitignore
@@ -0,0 +1,17 @@
+.gradle/
+.shelf/
+build/
+bin/
+out/
+dist/
+*.iml
+*.iws
+*.ipr
+.settings/
+.classpath
+.settings
+.project
+*~
+rebel.xml
+.idea/
+/fortifyRepository
diff --git a/CODE_OF_CONDUCT.md b/CODE_OF_CONDUCT.md
new file mode 100644
index 0000000..6ec7149
--- /dev/null
+++ b/CODE_OF_CONDUCT.md
@@ -0,0 +1,39 @@
+# Contributor Covenant Code of Conduct
+
+## Our Pledge
+We as contributors and maintainers pledge to make participation in our project and community a harassment-free experience for everyone, regardless of age, body size, disability, ethnicity, sex characteristics, gender identity and expression, level of experience, education, socio-economic status, nationality, personal appearance, race, religion, or sexual identity
+and orientation. We pledge to act and interact in ways that contribute to an open, welcoming, diverse, inclusive, and healthy community.
+
+## Our Standards
+Examples of behavior that contributes to a positive environment for our community include:
+
+* Demonstrating empathy and kindness toward other people
+* Being respectful of differing opinions, viewpoints, and experiences
+* Giving and gracefully accepting constructive feedback
+* Accepting responsibility and apologizing to those affected by our mistakes, and learning from the experience
+* Focusing on what is best not just for us as individuals, but for the overall community
+
+Examples of unacceptable behavior include:
+
+* The use of sexualized language or imagery, and sexual attention or advances of any kind
+* Trolling, insulting or derogatory comments, and personal or political attacks
+* Public or private harassment
+* Publishing others’ private information, such as a physical or email address, without their explicit permission
+* Other conduct which could reasonably be considered inappropriate in a professional setting
+
+## Enforcement Responsibilities
+Project maintainers are responsible for clarifying and enforcing our standards of acceptable behavior and will take appropriate and fair corrective action in response to any behavior that they deem inappropriate, threatening, offensive,
+or harmful. Project maintainers have the right and responsibility to remove, edit, or reject comments, commits, code, wiki edits, issues, and other contributions that are not aligned to this Code of Conduct, or to ban temporarily or permanently any contributor for other behaviors that they deem inappropriate, threatening, offensive, or harmful.
+
+## Scope
+This Code of Conduct applies within all community spaces, and also applies when an individual is officially representing the community in public spaces. Examples of representing our community include using an official e-mail address, posting via an official social media account, or acting as an appointed representative at an online or offline event.
+
+## Enforcement
+Instances of abusive, harassing, or otherwise unacceptable behavior may be reported to the project maintainers. All complaints will be reviewed and investigated promptly and fairly. The project maintainers are obligated to respect the privacy and security of the reporter of any incident.
+
+## Attribution
+This Code of Conduct is adapted from the Contributor Covenant, version 2.0, available at https://www.contributor-covenant.org/version/2/0/code_of_conduct.html. Community Impact Guidelines were inspired by Mozilla’s code of conduct enforcement ladder. For answers to common questions about this code of conduct, see the FAQ at https://www.contributor-covenant.org/faq. Translations are available at https://www.contributor-covenant.org/translations.
+
+---
+
+*This document was auto-generated from CODE_OF_CONDUCT.template.md; do not edit by hand*
diff --git a/CONTRIBUTING.md b/CONTRIBUTING.md
new file mode 100644
index 0000000..5094f05
--- /dev/null
+++ b/CONTRIBUTING.md
@@ -0,0 +1,96 @@
+# Contributing to Fortify SSC Parser Plugin for Debricked results
+
+## Contribution Agreement
+
+Contributions like bug fixes and enhancements may be submitted through Pull Requests on this repository. Before we can accept 3<sup>rd</sup>-party pull requests, you will first need to sign and submit the [Micro Focus Contribution Agreement](https://github.com/fortify/repo-resources/raw/main/static/Open%20Source%20Contribution%20Agreement%20Jan2020v1.pdf). Please make sure to mention your GitHub username when submitting the form, to allow us to verify that the author of a pull request has accepted this agreement. 
+
+
+<!-- START-INCLUDE:repo-devinfo.md -->
+
+
+<!-- START-INCLUDE:devinfo/h2.standard-parser-devinfo.md -->
+
+## Information for Developers
+
+The following sections provide information that may be useful for developers of this parser plugin.
+
+
+<!-- START-INCLUDE:devinfo/h3.release-please.md -->
+
+### Conventional commits & versioning
+
+Versioning is handled automatically by [`release-please-action`](https://github.com/google-github-actions/release-please-action) based on [Conventional Commits](https://www.conventionalcommits.org/). Every commit to the `main`
+branch should follow the Conventional Commits convention. Following are some examples; these can be combined in a single commit message (separated by empty lines), or you can have commit messages describing just a single fix or feature.
+
+```
+chore: Won't show up in changelog
+
+ci: Change to GitHub Actions workflow; won't show up in changelog
+
+docs: Change to documentation; won't show up in changelog
+
+fix: Some fix (#2)
+
+feat: New feature (#3)
+
+feat!: Some feature that breaks backward compatibility
+
+feat: Some feature
+  BREAKING-CHANGE: No longer supports xyz
+```
+
+See the output of `git log` to view some sample commit messages.
+
+`release-please-action` invoked from the GitHub CI workflow generates pull requests containing updated `CHANGELOG.md` and `version.txt` files based on these commit messages. Merging the pull request will result in a new release version being published; this includes publishing the image to Docker Hub, and creating a GitHub release describing the changes.
+
+<!-- END-INCLUDE:devinfo/h3.release-please.md -->
+
+
+
+<!-- START-INCLUDE:devinfo/h3.lombok.md -->
+
+### Lombok
+
+This project uses Lombok. Gradle builds will automatically handle Lombok annotations, but to have your IDE compile this project without errors, you may need to add Lombok support to your IDE. Please see https://projectlombok.org/setup/overview for more information.
+
+<!-- END-INCLUDE:devinfo/h3.lombok.md -->
+
+
+
+<!-- START-INCLUDE:devinfo/h3.gradle-wrapper.md -->
+
+### Gradle Wrapper
+
+It is strongly recommended to build this project using the included Gradle Wrapper scripts; using other Gradle versions may result in build errors and other issues.
+
+<!-- END-INCLUDE:devinfo/h3.gradle-wrapper.md -->
+
+
+
+<!-- START-INCLUDE:devinfo/p.gradle-helpers.md -->
+
+The Gradle build uses various helper scripts from https://github.com/fortify-ps/shared-gradle-helpers; please refer to the documentation and comments in included scripts for more information. 
+
+<!-- END-INCLUDE:devinfo/p.gradle-helpers.md -->
+
+
+### Common Commands
+
+All commands listed below use Linux/bash notation; adjust accordingly if you are running on a different platform. All commands are to be executed from the main project directory.
+
+* `./gradlew tasks --all`: List all available tasks
+* Build: (plugin binary will be stored in `build/libs`)
+	* `./gradlew clean build`: Clean and build the project
+	* `./gradlew build`: Build the project without cleaning
+	* `./gradlew dist distThirdParty`: Build distribution zip and third-party information bundle
+* `./fortify-scan.sh`: Run a Fortify scan; requires Fortify SCA to be installed
+
+<!-- END-INCLUDE:devinfo/h2.standard-parser-devinfo.md -->
+
+
+<!-- END-INCLUDE:repo-devinfo.md -->
+
+
+---
+
+*This document was auto-generated from CONTRIBUTING.template.md; do not edit by hand*
diff --git a/LICENSE.txt b/LICENSE.txt
new file mode 100644
index 0000000..0dc2f8b
--- /dev/null
+++ b/LICENSE.txt
@@ -0,0 +1,25 @@
+MIT License
+
+Copyright 2023 Micro Focus or one of its affiliates
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is furnished
+to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.
+
+---
+
+*This document was auto-generated from LICENSE.MIT.template.txt; do not edit by hand*
diff --git a/README.md b/README.md
new file mode 100644
index 0000000..d81d4f9
--- /dev/null
+++ b/README.md
@@ -0,0 +1,57 @@
+# Fortify SSC Parser Plugin for Debricked results 
+
+
+<!-- START-INCLUDE:p.marketing-intro.md -->
+
+Build secure software fast with [Fortify](https://www.microfocus.com/en-us/solutions/application-security). Fortify offers end-to-end application security solutions with the flexibility of testing on-premises and on-demand to scale and cover the entire software development lifecycle.  With Fortify, find security issues early and fix at the speed of DevOps. 
+
+<!-- END-INCLUDE:p.marketing-intro.md -->
+
+
+
+<!-- START-INCLUDE:repo-intro.md -->
+
+This Fortify SSC parser plugin allows for importing [CycloneDX](https://cyclonedx.org/) SBOM files generated by [Debricked](https://debricked.com/) into SSC. Two versions of this plugin are available:
+
+* `fortify-ssc-parser-debricked-cyclonedx.jar`
+	 * Parser plugin compatible with all recent SSC versions
+	 * Debricked issues are displayed on the SSC Audit page only
+* `fortify-ssc-22.2+-parser-debricked-cyclonedx.jar`
+	 * Parser plugin compatible with SSC 22.2 and above
+	 * Debricked issues are displayed on both SSC Audit page and SSC Open Source page
+	 
+
+<!-- END-INCLUDE:repo-intro.md -->
+
+
+## Resources
+
+
+<!-- START-INCLUDE:repo-resources.md -->
+
+* **Usage**: [USAGE.md](USAGE.md)
+* **Releases**: https://github.com/fortify/fortify-ssc-parser-debricked-cyclonedx/releases
+    * _Development releases may be unstable or non-functional. The `*-thirdparty.zip` file is for informational purposes only and does not need to be downloaded._
+* **Sample input files**: [sampleData](sampleData)
+* **Source code**: https://github.com/fortify/fortify-ssc-parser-debricked-cyclonedx
+* **Automated builds**: https://github.com/fortify/fortify-ssc-parser-debricked-cyclonedx/actions
+* **Contributing Guidelines**: [CONTRIBUTING.md](CONTRIBUTING.md)
+* **Code of Conduct**: [CODE_OF_CONDUCT.md](CODE_OF_CONDUCT.md)
+* **License**: [LICENSE.txt](LICENSE.txt)
+* **Debricked website**: https://debricked.com/
+* **CycloneDX website**: https://cyclonedx.org/
+
+<!-- END-INCLUDE:repo-resources.md -->
+
+
+## Support
+
+The software is provided "as is", without warranty of any kind, and is not supported through the regular Micro Focus Support channels. Support requests may be submitted through the [GitHub Issues](https://github.com/fortify/fortify-ssc-parser-debricked-cyclonedx/issues) page for this repository. A (free) GitHub account is required to submit new issues or to comment on existing issues. 
+
+Support requests created through the GitHub Issues page may include bug reports, enhancement requests and general usage questions. Please avoid creating duplicate issues by checking whether there is any existing issue, either open or closed, that already addresses your question, bug or enhancement request. If an issue already exists, please add a comment to provide additional details if applicable.
+
+Support requests on the GitHub Issues page are handled on a best-effort basis; there is no guaranteed response time, no guarantee that reported bugs will be fixed, and no guarantee that enhancement requests will be implemented. If you require dedicated support for this and other Fortify software, please consider purchasing Micro Focus Fortify Professional Services. Micro Focus Fortify Professional Services can assist with general usage questions, integration of the software into your processes, and implementing customizations, bug fixes, and feature requests (subject to feasibility analysis). Please contact your Micro Focus Sales representative or fill in the [Professional Services Contact Form](https://www.microfocus.com/en-us/cyberres/contact/professional-services) to obtain more information on pricing and the services that Micro Focus Fortify Professional Services can provide.
+
+---
+
+*This document was auto-generated from README.template.md; do not edit by hand*
diff --git a/USAGE.md b/USAGE.md
new file mode 100644
index 0000000..eb888ba
--- /dev/null
+++ b/USAGE.md
@@ -0,0 +1,139 @@
+
+<!-- START-INCLUDE:repo-usage.md -->
+
+
+<!-- START-INCLUDE:usage/h1.standard-parser-usage.md -->
+
+<x-tag-head>
+<x-tag-meta http-equiv="X-UA-Compatible" content="IE=edge"/>
+
+<x-tag-script language="JavaScript"><!--
+<X-INCLUDE url="https://cdn.jsdelivr.net/gh/highlightjs/cdn-release@10.0.0/build/highlight.min.js"/>
+--></x-tag-script>
+
+<x-tag-script language="JavaScript"><!--
+<X-INCLUDE url="https://ajax.googleapis.com/ajax/libs/jquery/3.4.1/jquery.min.js" />
+--></x-tag-script>
+
+<x-tag-script language="JavaScript"><!--
+<X-INCLUDE url="${gradleHelpersLocation}/spa_readme.js" />
+--></x-tag-script>
+
+<x-tag-style><!--
+<X-INCLUDE url="https://cdn.jsdelivr.net/gh/highlightjs/cdn-release@10.0.0/build/styles/github.min.css" />
+--></x-tag-style>
+
+<x-tag-style><!--
+<X-INCLUDE url="${gradleHelpersLocation}/spa_readme.css" />
+--></x-tag-style>
+</x-tag-head>
+
+# Fortify SSC Parser Plugin for Debricked results - Usage
+
+## Introduction
+
+
+<!-- START-INCLUDE:p.marketing-intro.md -->
+
+Build secure software fast with [Fortify](https://www.microfocus.com/en-us/solutions/application-security). Fortify offers end-to-end application security solutions with the flexibility of testing on-premises and on-demand to scale and cover the entire software development lifecycle.  With Fortify, find security issues early and fix at the speed of DevOps. 
+
+<!-- END-INCLUDE:p.marketing-intro.md -->
+
+
+
+<!-- START-INCLUDE:repo-intro.md -->
+
+This Fortify SSC parser plugin allows for importing [CycloneDX](https://cyclonedx.org/) SBOM files generated by [Debricked](https://debricked.com/) into SSC. Two versions of this plugin are available:
+
+* `fortify-ssc-parser-debricked-cyclonedx.jar`
+	 * Parser plugin compatible with all recent SSC versions
+	 * Debricked issues are displayed on the SSC Audit page only
+* `fortify-ssc-22.2+-parser-debricked-cyclonedx.jar`
+	 * Parser plugin compatible with SSC 22.2 and above
+	 * Debricked issues are displayed on both SSC Audit page and SSC Open Source page
+	 
+
+<!-- END-INCLUDE:repo-intro.md -->
+
+
+## Plugin Installation
+
+These sections describe how to install, upgrade and uninstall the parser plugin in SSC.
+
+### Install & Upgrade
+
+* Obtain the plugin binary jar file; either:
+     * Download from the repository release page: https://github.com/fortify/fortify-ssc-parser-debricked-cyclonedx/releases
+     * Build the plugin from source: https://github.com/fortify/fortify-ssc-parser-debricked-cyclonedx/CONTRIB.md
+* If you already have another version of the plugin installed, first uninstall the previously  installed version of the plugin by following the steps under [Uninstall](#uninstall) below
+* In Fortify Software Security Center:
+	* Navigate to Administration->Plugins->Parsers
+	* Click the `NEW` button
+	* Accept the warning
+	* Upload the plugin jar file
+	* Enable the plugin by clicking the `ENABLE` button
+  
+### Uninstall
+
+* In Fortify Software Security Center:
+     * Navigate to Administration->Plugins->Parsers
+     * Select the parser plugin that you want to uninstall
+     * Click the `DISABLE` button
+     * Click the `REMOVE` button 
+
+## Obtain results
+
+
+<!-- START-INCLUDE:parser-obtain-results.md -->
+
+### Automated import
+
+The easiest approach for importing Debricked results into SSC is through [fcli](https://github.com/fortify-ps/fcli), using the `fcli ssc appversion-artifact import debricked command`. This command will download the Debricked CycloneDX SBOM file using the Debricked REST API, and then upload the SBOM file to SSC for processing by this parser plugin. 
+
+When using fcli, there is no need to manually obtain the SBOM file, preparing a proper SSC third-party results zip-file, and uploading this zip-file to SSC. With this approach, the information in the remainder of this document can be disregarded.
+
+### Manually obtaining the SBOM file from Debricked
+
+The Debricked website allows for generating a report in CycloneDX SBOM format using the following steps:
+
+* Navigate to the repository for which you want to generate the SBOM
+* Click on the 'Generate report' button on the top-right
+* Select 'SBOM'
+* Click the 'Generate' button
+* Extract the zip-file that is sent to your registered email address to obtain the raw CycloneDX SBOM file
+    * **Note**: The instructions below for uploading the SBOM file to SSC are based on the raw CycloneDX SBOM `.json` file
+
+These steps can also be automated through the Debricked REST API, allowing the generated SBOM either being sent to an email address, or downloaded directly through the REST API.
+
+<!-- END-INCLUDE:parser-obtain-results.md -->
+
+
+## Upload results
+
+Results can be uploaded through the SSC web interface, REST API, or SSC client utilities like FortifyClient or [fcli](https://github.com/fortify-ps/fcli). The SSC web interface, FortifyClient and most other Fortify clients require the raw results to be packaged into a zip-file; REST API and fcli allow for uploading raw results directly.
+
+To upload results through the SSC web interface or most clients:
+
+* Create a `scan.info` file containing a single line as follows:   
+     `engineType=DEBRICKED`
+* Create a zip file containing the following:
+	* The scan.info file generated in the previous step
+	* The raw results file as obtained from the target system (see [Obtain results](#obtain-results) section above)
+* Upload the zip file generated in the previous step to SSC
+	* Using any SSC client, for example FortifyClient or Maven plugin
+	* Or using the SSC web interface
+	* Similar to how you would upload an FPR file
+	
+Both SSC REST API and fcli provide options for specifying the engine type directly, and as such it is not necessary to package the raw results into a zip-file with accompanying `scan.info` file. For example, fcli allows for uploading raw scan results using a command like the following:
+
+`fcli ssc appversion-artifact upload <raw-results-file> --appversion MyApp:MyVersion --engine-type DEBRICKED`
+
+<!-- END-INCLUDE:usage/h1.standard-parser-usage.md -->
+
+
+<!-- END-INCLUDE:repo-usage.md -->
+
+
+---
+
+*This document was auto-generated from USAGE.template.md; do not edit by hand*
diff --git a/build.gradle b/build.gradle
new file mode 100644
index 0000000..ba697f5
--- /dev/null
+++ b/build.gradle
@@ -0,0 +1,77 @@
+plugins {
+  id "io.freefair.lombok" version "6.4.3" apply false
+  id 'com.github.jk1.dependency-license-report' version '2.1' apply false
+  id "org.kordamp.gradle.markdown" version "2.2.0" apply false
+}
+
+group 'com.fortify.ssc.parser.generic.cyclonedx'
+ext.getVersion = {
+	def result = project.findProperty('version');
+	return !result || result=='unspecified' ? new Date().format('0.yyyyMMdd.HHmmss') : result;
+}
+version = ext.getVersion();
+
+configurations.all {
+    // Don't cache modules that may change (i.e. snapshots)
+        resolutionStrategy.cacheChangingModulesFor 0, 'seconds'
+}
+
+subprojects {
+	apply plugin: 'java'
+	apply plugin: 'io.freefair.lombok'
+	apply plugin: 'org.kordamp.gradle.markdown'
+	apply plugin: 'com.github.jk1.dependency-license-report'
+	version = rootProject.version;
+	sourceCompatibility = 1.8
+	ext {
+		gradleHelpersLocation = "https://raw.githubusercontent.com/fortify-ps/gradle-helpers/1.8"
+		thirdPartyBaseName = "${project.name}-${project.version}"
+	}
+	apply from: "${gradleHelpersLocation}/repo-helper.gradle"
+	ext.sscParserPluginVersion = project.version
+	apply from: "${gradleHelpersLocation}/ssc-parser-plugin-helper.gradle"
+	apply from: "${gradleHelpersLocation}/markdown2html.gradle"
+	apply from: "${gradleHelpersLocation}/thirdparty-helper.gradle"
+	dependencies {
+		implementationExport('com.fortify.ssc.parser.util:fortify-ssc-parser-util-cyclonedx:1.7.0.RELEASE') {
+			// Make sure that we don't bundle Fortify plugin API and SLF4J in the plugin jar
+			exclude group: 'com.fortify.plugin' 
+			exclude group: 'org.slf4j'
+		}
+	}
+	task copyMarkdown(type: Copy) {
+		from("${rootProject.projectDir}") {
+			include "USAGE.md"
+		}
+		into "${m2hSourceDir}"
+	 }
+	task dist(type: Zip) {
+		dependsOn 'build', 'markdownToHtml'
+		archiveFileName = "${project.name}-${project.version}.zip"
+		destinationDirectory = file("${rootProject.buildDir}/dist")
+		from("${buildDir}/${libsDirName}") {
+			include "${project.name}-${project.version}.jar"
+		}
+		from("${rootProject.projectDir}/sampleData/${parserType}") {
+			into "sampleData"
+		}
+		from "${m2hOutputDir}"
+		from("${rootProject.projectDir}") {
+			include "LICENSE.txt"
+		}
+	}
+	
+	task copyThirdParty(type: Copy) {
+		from("${buildDir}/dist") {
+			include "*-thirdparty.zip"
+		}
+		into "${rootProject.buildDir}/dist"
+	}
+	distThirdParty.finalizedBy copyThirdParty
+}
+
+// For some reason Gradle doesn't clean the root project, so we define a clean task here
+task clean(type: Delete) {
+	delete "${buildDir}"
+	followSymlinks = true
+}
diff --git a/doc-resources/parser-obtain-results.md b/doc-resources/parser-obtain-results.md
new file mode 100644
index 0000000..9f6a90e
--- /dev/null
+++ b/doc-resources/parser-obtain-results.md
@@ -0,0 +1,20 @@
+### Automated import
+
+The easiest approach for importing Debricked results into SSC is through [fcli](https://github.com/fortify-ps/fcli), using the `fcli ssc appversion-artifact import debricked command`. This command will download the Debricked CycloneDX SBOM file using the Debricked REST API, and then upload the SBOM file to SSC for processing by this parser plugin. 
+
+When using fcli, there is no need to manually obtain the SBOM file, preparing a proper SSC third-party results zip-file, and uploading this zip-file to SSC. With this approach, the information in the remainder of this document can be disregarded.
+
+### Manually obtaining the SBOM file from Debricked
+
+The Debricked website allows for generating a report in CycloneDX SBOM format using the following steps:
+
+* Navigate to the repository for which you want to generate the SBOM
+* Click on the 'Generate report' button on the top-right
+* Select 'SBOM'
+* Click the 'Generate' button
+* Extract the zip-file that is sent to your registered email address to obtain the raw CycloneDX SBOM file
+    * **Note**: The instructions below for uploading the SBOM file to SSC are based on the raw CycloneDX SBOM `.json` file
+
+These steps can also be automated through the Debricked REST API, allowing the generated SBOM either being sent to an email address, or downloaded directly through the REST API.
+
+
diff --git a/doc-resources/repo-devinfo.md b/doc-resources/repo-devinfo.md
new file mode 100644
index 0000000..1ff8048
--- /dev/null
+++ b/doc-resources/repo-devinfo.md
@@ -0,0 +1 @@
+{{include:devinfo/h2.standard-parser-devinfo.md}}
\ No newline at end of file
diff --git a/doc-resources/repo-intro.md b/doc-resources/repo-intro.md
new file mode 100644
index 0000000..058932c
--- /dev/null
+++ b/doc-resources/repo-intro.md
@@ -0,0 +1,9 @@
+This Fortify SSC parser plugin allows for importing [CycloneDX](https://cyclonedx.org/) SBOM files generated by [Debricked](https://debricked.com/) into SSC. Two versions of this plugin are available:
+
+* `fortify-ssc-parser-debricked-cyclonedx.jar`
+	 * Parser plugin compatible with all recent SSC versions
+	 * Debricked issues are displayed on the SSC Audit page only
+* `fortify-ssc-22.2+-parser-debricked-cyclonedx.jar`
+	 * Parser plugin compatible with SSC 22.2 and above
+	 * Debricked issues are displayed on both SSC Audit page and SSC Open Source page
+	 
\ No newline at end of file
diff --git a/doc-resources/repo-resources.md b/doc-resources/repo-resources.md
new file mode 100644
index 0000000..6cfbcae
--- /dev/null
+++ b/doc-resources/repo-resources.md
@@ -0,0 +1,3 @@
+{{include:resources/nocomments.li.standard-parser-resources.md}}
+* **Debricked website**: https://debricked.com/
+* **CycloneDX website**: https://cyclonedx.org/
\ No newline at end of file
diff --git a/doc-resources/repo-usage.md b/doc-resources/repo-usage.md
new file mode 100644
index 0000000..61a7e30
--- /dev/null
+++ b/doc-resources/repo-usage.md
@@ -0,0 +1,2 @@
+{{include:usage/h1.standard-parser-usage.md}}
+
diff --git a/doc-resources/template-values.md b/doc-resources/template-values.md
new file mode 100644
index 0000000..f7846c7
--- /dev/null
+++ b/doc-resources/template-values.md
@@ -0,0 +1,8 @@
+# repo-title
+Fortify SSC Parser Plugin for Debricked results
+
+# repo-url
+https://github.com/fortify/fortify-ssc-parser-debricked-cyclonedx
+
+# engine-type
+DEBRICKED
diff --git a/doc-resources/update-repo-docs.sh b/doc-resources/update-repo-docs.sh
new file mode 100755
index 0000000..99d067e
--- /dev/null
+++ b/doc-resources/update-repo-docs.sh
@@ -0,0 +1,2 @@
+#! /bin/bash
+source <(curl -s https://raw.githubusercontent.com/fortify/shared-doc-resources/main/scripts/update-doc-resources.sh)
diff --git a/fortify-ssc-22.2+-parser-debricked-cyclonedx/README.md b/fortify-ssc-22.2+-parser-debricked-cyclonedx/README.md
new file mode 100644
index 0000000..5f61e6e
--- /dev/null
+++ b/fortify-ssc-22.2+-parser-debricked-cyclonedx/README.md
@@ -0,0 +1,92 @@
+<x-tag-head>
+<x-tag-meta http-equiv="X-UA-Compatible" content="IE=edge"/>
+
+<x-tag-script language="JavaScript"><!--
+<X-INCLUDE url="https://cdn.jsdelivr.net/gh/highlightjs/cdn-release@10.0.0/build/highlight.min.js"/>
+--></x-tag-script>
+
+<x-tag-script language="JavaScript"><!--
+<X-INCLUDE url="https://ajax.googleapis.com/ajax/libs/jquery/3.4.1/jquery.min.js" />
+--></x-tag-script>
+
+<x-tag-script language="JavaScript"><!--
+<X-INCLUDE url="${gradleHelpersLocation}/spa_readme.js" />
+--></x-tag-script>
+
+<x-tag-style><!--
+<X-INCLUDE url="https://cdn.jsdelivr.net/gh/highlightjs/cdn-release@10.0.0/build/styles/github.min.css" />
+--></x-tag-style>
+
+<x-tag-style><!--
+<X-INCLUDE url="${gradleHelpersLocation}/spa_readme.css" />
+--></x-tag-style>
+</x-tag-head>
+
+# Fortify SSC 22.2+ Parser Plugin for Debricked
+
+## Introduction
+
+This Fortify SSC parser plugin allows for importing [Debricked](https://debricked.com/) files in [CycloneDX](https://cyclonedx.org/) SBOM format into SSC. This version of the plugin can be used on Fortify SSC version 22.2 and above, and allows for displaying CycloneDX results on SSC's Open Source page.
+
+### Related Links
+
+* **Downloads**: https://github.com/fortify-ps/fortify-ssc-parser-cyclonedx/releases
+    * _Development releases may be unstable or non-functional. The `thirdparty.zip` file is for informational purposes only and does not need to be downloaded._
+* **Sample input files**: [sampleData](sampleData)
+* **GitHub**: https://github.com/fortify-ps/fortify-ssc-parser-cyclonedx
+* **Automated builds**: https://github.com/fortify-ps/fortify-ssc-parser-cyclonedx/actions
+* **Debricked website**: https://debricked.com/
+* **CycloneDX website**: https://cyclonedx.org/
+
+## Plugin Installation
+
+These sections describe how to install, upgrade and uninstall the plugin.
+
+### Install & Upgrade
+
+* Obtain the plugin binary jar file
+	* Either download from GitHub Releases page (see [Related Links](#related-links)) 
+	* Or by building yourself (see [Developers](https://github.com/fortify-ps/fortify-ssc-parser-cyclonedx#developers))
+* If you already have another version of the plugin installed, first uninstall the previously installed version of the plugin by following the steps under [Uninstall](#uninstall) below
+* In Fortify Software Security Center:
+	* Navigate to Administration->Plugins->Parsers
+	* Click the `NEW` button
+	* Accept the warning
+	* Upload the plugin jar file
+	* Enable the plugin by clicking the `ENABLE` button
+  
+### Uninstall
+
+* In Fortify Software Security Center:
+	* Navigate to Administration->Plugins->Parsers
+	* Select the parser plugin that you want to uninstall
+	* Click the `DISABLE` button
+	* Click the `REMOVE` button 
+
+## Obtain results
+
+You will need to download results in CycloneDX format from Debricked, after which these results can be uploaded to Fortify SSC. SSC parser plugins cannot retrieve results from 3<sup>rd</sup>-party systems directly.
+
+## Upload results
+
+As a 3<sup>rd</sup>-party results zip bundle:
+
+* Generate a scan.info file containing a single line as follows:  
+          `engineType=DEBRICKED`
+* Generate a zip file containing the following:
+	* The scan.info file generated in the previous step
+	* The JSON file containing scan results
+* Upload the zip file generated in the previous step to SSC
+	* Using any SSC client, for example FortifyClient or Maven plugin
+	* Or using the SSC web interface
+	* Similar to how you would upload an FPR file
+
+## License
+<x-insert text="<!--"/>
+
+See [LICENSE.TXT](../LICENSE.TXT)
+
+<x-insert text="-->"/>
+
+<x-include url="file:LICENSE.TXT"/>
+
diff --git a/fortify-ssc-22.2+-parser-debricked-cyclonedx/gradle.properties b/fortify-ssc-22.2+-parser-debricked-cyclonedx/gradle.properties
new file mode 100644
index 0000000..3230ac2
--- /dev/null
+++ b/fortify-ssc-22.2+-parser-debricked-cyclonedx/gradle.properties
@@ -0,0 +1 @@
+parserType=debricked
\ No newline at end of file
diff --git a/fortify-ssc-22.2+-parser-debricked-cyclonedx/sampleData/README.md b/fortify-ssc-22.2+-parser-debricked-cyclonedx/sampleData/README.md
new file mode 100644
index 0000000..9b899f6
--- /dev/null
+++ b/fortify-ssc-22.2+-parser-debricked-cyclonedx/sampleData/README.md
@@ -0,0 +1 @@
+Please see [Debricked sampleData](../../sampleData/debricked) in the main project directory.
\ No newline at end of file
diff --git a/fortify-ssc-22.2+-parser-debricked-cyclonedx/src/main/resources/images/debricked-icon.png b/fortify-ssc-22.2+-parser-debricked-cyclonedx/src/main/resources/images/debricked-icon.png
new file mode 100644
index 0000000..1a4c0d8
Binary files /dev/null and b/fortify-ssc-22.2+-parser-debricked-cyclonedx/src/main/resources/images/debricked-icon.png differ
diff --git a/fortify-ssc-22.2+-parser-debricked-cyclonedx/src/main/resources/images/debricked-logo.png b/fortify-ssc-22.2+-parser-debricked-cyclonedx/src/main/resources/images/debricked-logo.png
new file mode 100644
index 0000000..40976b0
Binary files /dev/null and b/fortify-ssc-22.2+-parser-debricked-cyclonedx/src/main/resources/images/debricked-logo.png differ
diff --git a/fortify-ssc-22.2+-parser-debricked-cyclonedx/src/main/resources/plugin.xml b/fortify-ssc-22.2+-parser-debricked-cyclonedx/src/main/resources/plugin.xml
new file mode 100644
index 0000000..168a9fc
--- /dev/null
+++ b/fortify-ssc-22.2+-parser-debricked-cyclonedx/src/main/resources/plugin.xml
@@ -0,0 +1,31 @@
+<?xml version="1.0" encoding="utf-8" ?>
+<plugin xmlns="xmlns://www.fortify.com/schema/pluginmanifest-1.1.xsd"
+        xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="PluginDescriptor"
+        id="com.fortify.ssc.parser.cyclonedx.debricked" api-version="1.1">
+    <plugin-info>
+        <name>Debricked parser plugin for SSC 22.2+</name>
+        <version><!--VERSION-->0.0<!--/VERSION--></version>
+        <data-version>1</data-version>
+        <vendor name="Micro Focus" url="https://www.microfocus.com"/>
+        <description>Parser plugin for Debricked vulnerability data in CycloneDX format (results shown on SSC Audit and Open Source pages)</description>
+        <resources>
+            <localization>
+                <language id="default" location="/resources/cyclonedx_en.properties"/>
+                <language id="en" location="/resources/cyclonedx_en.properties"/>
+            </localization>
+            <images>
+                <image imageType="icon" location="/images/debricked-icon.png"/>
+                <image imageType="logo" location="/images/debricked-logo.png"/>
+            </images>
+        </resources>
+    </plugin-info>
+    <issue-parser xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance">
+        <engine-type>DEBRICKED</engine-type>
+        <supported-engine-versions>[1.2, 1.4]</supported-engine-versions>
+        <view-template location="/viewtemplate/ViewTemplate.json">
+            <description>Default CycloneDX vulnerability view template.</description>
+        </view-template>
+        <parser-type>DEPENDENCY_SCAN</parser-type>
+    </issue-parser>
+</plugin>
+
diff --git a/fortify-ssc-parser-debricked-cyclonedx/README.md b/fortify-ssc-parser-debricked-cyclonedx/README.md
new file mode 100644
index 0000000..cdace9a
--- /dev/null
+++ b/fortify-ssc-parser-debricked-cyclonedx/README.md
@@ -0,0 +1,102 @@
+<x-tag-head>
+<x-tag-meta http-equiv="X-UA-Compatible" content="IE=edge"/>
+
+<x-tag-script language="JavaScript"><!--
+<X-INCLUDE url="https://cdn.jsdelivr.net/gh/highlightjs/cdn-release@10.0.0/build/highlight.min.js"/>
+--></x-tag-script>
+
+<x-tag-script language="JavaScript"><!--
+<X-INCLUDE url="https://ajax.googleapis.com/ajax/libs/jquery/3.4.1/jquery.min.js" />
+--></x-tag-script>
+
+<x-tag-script language="JavaScript"><!--
+<X-INCLUDE url="${gradleHelpersLocation}/spa_readme.js" />
+--></x-tag-script>
+
+<x-tag-style><!--
+<X-INCLUDE url="https://cdn.jsdelivr.net/gh/highlightjs/cdn-release@10.0.0/build/styles/github.min.css" />
+--></x-tag-style>
+
+<x-tag-style><!--
+<X-INCLUDE url="${gradleHelpersLocation}/spa_readme.css" />
+--></x-tag-style>
+</x-tag-head>
+
+# Fortify SSC Parser Plugin for Debricked
+
+## Introduction
+
+This Fortify SSC parser plugin allows for importing [Debricked](https://debricked.com/) files in [CycloneDX](https://cyclonedx.org/) SBOM format into SSC. This plugin has been tested with SSC 22.1, but should be compatible with all recent SSC versions. Although this version of the plugin should function fine on SSC 22.2 and above, please note that there is a dedicated SSC 22.2+ version of the plugin that allows for displaying CycloneDX results on SSC's Open Source page.
+
+### Related Links
+
+* **Downloads**: https://github.com/fortify-ps/fortify-ssc-parser-cyclonedx/releases
+    * _Development releases may be unstable or non-functional. The `thirdparty.zip` file is for informational purposes only and does not need to be downloaded._
+* **Sample input files**: [sampleData](sampleData)
+* **GitHub**: https://github.com/fortify-ps/fortify-ssc-parser-cyclonedx
+* **Automated builds**: https://github.com/fortify-ps/fortify-ssc-parser-cyclonedx/actions
+* **Debricked website**: https://debricked.com/
+* **CycloneDX website**: https://cyclonedx.org/
+
+## Plugin Installation
+
+These sections describe how to install, upgrade and uninstall the plugin.
+
+### Install & Upgrade
+
+* Obtain the plugin binary jar file
+	* Either download from GitHub Releases page (see [Related Links](#related-links)) 
+	* Or by building yourself (see [Developers](https://github.com/fortify-ps/fortify-ssc-parser-cyclonedx#developers))
+* If you already have another version of the plugin installed, first uninstall the previously installed version of the plugin by following the steps under [Uninstall](#uninstall) below
+* In Fortify Software Security Center:
+	* Navigate to Administration->Plugins->Parsers
+	* Click the `NEW` button
+	* Accept the warning
+	* Upload the plugin jar file
+	* Enable the plugin by clicking the `ENABLE` button
+  
+### Uninstall
+
+* In Fortify Software Security Center:
+	* Navigate to Administration->Plugins->Parsers
+	* Select the parser plugin that you want to uninstall
+	* Click the `DISABLE` button
+	* Click the `REMOVE` button 
+
+## Obtain results
+
+You will need to download results in CycloneDX format from Debricked, after which these results can be uploaded to Fortify SSC. SSC parser plugins cannot retrieve results from 3<sup>rd</sup>-party systems directly.
+
+## Upload results
+
+As a 3<sup>rd</sup>-party results zip bundle:
+
+* Generate a scan.info file containing a single line as follows:  
+          `engineType=DEBRICKED`
+* Generate a zip file containing the following:
+	* The scan.info file generated in the previous step
+	* The JSON file containing scan results
+* Upload the zip file generated in the previous step to SSC
+	* Using any SSC client, for example FortifyClient or Maven plugin
+	* Or using the SSC web interface
+	* Similar to how you would upload an FPR file
+
+As raw scan results:  
+
+* Navigate to the Artifacts tab of your application version
+* Click the `UPLOAD` button
+* Click the `ADD FILES` button, and select the JSON file to upload
+* Enable the `3rd party results` check box
+* Select the `DEBRICKED` type
+
+*Note that uploading raw scan results is only supported for manual uploads through the SSC web interface, and this functionality was removed in SSC 20.2 so no longer available in recent SSC versions. Please submit a feature request if you'd like to see this easier process for ad-hoc uploading of 3<sup>rd</sup>-party results restored, referencing Octane id #448174.*
+
+## License
+<x-insert text="<!--"/>
+
+See [LICENSE.TXT](../LICENSE.TXT)
+
+<x-insert text="-->"/>
+
+<x-include url="file:LICENSE.TXT"/>
+
diff --git a/fortify-ssc-parser-debricked-cyclonedx/gradle.properties b/fortify-ssc-parser-debricked-cyclonedx/gradle.properties
new file mode 100644
index 0000000..3230ac2
--- /dev/null
+++ b/fortify-ssc-parser-debricked-cyclonedx/gradle.properties
@@ -0,0 +1 @@
+parserType=debricked
\ No newline at end of file
diff --git a/fortify-ssc-parser-debricked-cyclonedx/sampleData/README.md b/fortify-ssc-parser-debricked-cyclonedx/sampleData/README.md
new file mode 100644
index 0000000..9b899f6
--- /dev/null
+++ b/fortify-ssc-parser-debricked-cyclonedx/sampleData/README.md
@@ -0,0 +1 @@
+Please see [Debricked sampleData](../../sampleData/debricked) in the main project directory.
\ No newline at end of file
diff --git a/fortify-ssc-parser-debricked-cyclonedx/src/main/resources/images/debricked-icon.png b/fortify-ssc-parser-debricked-cyclonedx/src/main/resources/images/debricked-icon.png
new file mode 100644
index 0000000..1a4c0d8
Binary files /dev/null and b/fortify-ssc-parser-debricked-cyclonedx/src/main/resources/images/debricked-icon.png differ
diff --git a/fortify-ssc-parser-debricked-cyclonedx/src/main/resources/images/debricked-logo.png b/fortify-ssc-parser-debricked-cyclonedx/src/main/resources/images/debricked-logo.png
new file mode 100644
index 0000000..40976b0
Binary files /dev/null and b/fortify-ssc-parser-debricked-cyclonedx/src/main/resources/images/debricked-logo.png differ
diff --git a/fortify-ssc-parser-debricked-cyclonedx/src/main/resources/plugin.xml b/fortify-ssc-parser-debricked-cyclonedx/src/main/resources/plugin.xml
new file mode 100644
index 0000000..4f9dbb4
--- /dev/null
+++ b/fortify-ssc-parser-debricked-cyclonedx/src/main/resources/plugin.xml
@@ -0,0 +1,30 @@
+<?xml version="1.0" encoding="utf-8" ?>
+<plugin xmlns="xmlns://www.fortify.com/schema/pluginmanifest-1.0.xsd"
+        xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:type="PluginDescriptor"
+        id="com.fortify.ssc.parser.cyclonedx.debricked" api-version="1.0">
+    <plugin-info>
+        <name>Debricked parser plugin</name>
+        <version><!--VERSION-->0.0<!--/VERSION--></version>
+        <data-version>1</data-version>
+        <vendor name="Micro Focus" url="https://www.microfocus.com"/>
+        <description>Parser plugin for Debricked vulnerability data in CycloneDX format (results shown on SSC Audit page only)</description>
+        <resources>
+            <localization>
+                <language id="default" location="/resources/cyclonedx_en.properties"/>
+                <language id="en" location="/resources/cyclonedx_en.properties"/>
+            </localization>
+            <images>
+                <image imageType="icon" location="/images/debricked-icon.png"/>
+                <image imageType="logo" location="/images/debricked-logo.png"/>
+            </images>
+        </resources>
+    </plugin-info>
+    <issue-parser xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance">
+        <engine-type>DEBRICKED</engine-type>
+        <supported-engine-versions>[1.2, 1.4]</supported-engine-versions>
+        <view-template location="/viewtemplate/ViewTemplate.json">
+            <description>Default CycloneDX vulnerability view template.</description>
+        </view-template>
+    </issue-parser>
+</plugin>
+
diff --git a/gradle/wrapper/gradle-wrapper.jar b/gradle/wrapper/gradle-wrapper.jar
new file mode 100644
index 0000000..e708b1c
Binary files /dev/null and b/gradle/wrapper/gradle-wrapper.jar differ
diff --git a/gradle/wrapper/gradle-wrapper.properties b/gradle/wrapper/gradle-wrapper.properties
new file mode 100644
index 0000000..aa991fc
--- /dev/null
+++ b/gradle/wrapper/gradle-wrapper.properties
@@ -0,0 +1,5 @@
+distributionBase=GRADLE_USER_HOME
+distributionPath=wrapper/dists
+distributionUrl=https\://services.gradle.org/distributions/gradle-7.4.2-bin.zip
+zipStoreBase=GRADLE_USER_HOME
+zipStorePath=wrapper/dists
diff --git a/gradlew b/gradlew
new file mode 100755
index 0000000..4f906e0
--- /dev/null
+++ b/gradlew
@@ -0,0 +1,185 @@
+#!/usr/bin/env sh
+
+#
+# Copyright 2015 the original author or authors.
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#      https://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+#
+
+##############################################################################
+##
+##  Gradle start up script for UN*X
+##
+##############################################################################
+
+# Attempt to set APP_HOME
+# Resolve links: $0 may be a link
+PRG="$0"
+# Need this for relative symlinks.
+while [ -h "$PRG" ] ; do
+    ls=`ls -ld "$PRG"`
+    link=`expr "$ls" : '.*-> \(.*\)$'`
+    if expr "$link" : '/.*' > /dev/null; then
+        PRG="$link"
+    else
+        PRG=`dirname "$PRG"`"/$link"
+    fi
+done
+SAVED="`pwd`"
+cd "`dirname \"$PRG\"`/" >/dev/null
+APP_HOME="`pwd -P`"
+cd "$SAVED" >/dev/null
+
+APP_NAME="Gradle"
+APP_BASE_NAME=`basename "$0"`
+
+# Add default JVM options here. You can also use JAVA_OPTS and GRADLE_OPTS to pass JVM options to this script.
+DEFAULT_JVM_OPTS='"-Xmx64m" "-Xms64m"'
+
+# Use the maximum available, or set MAX_FD != -1 to use that value.
+MAX_FD="maximum"
+
+warn () {
+    echo "$*"
+}
+
+die () {
+    echo
+    echo "$*"
+    echo
+    exit 1
+}
+
+# OS specific support (must be 'true' or 'false').
+cygwin=false
+msys=false
+darwin=false
+nonstop=false
+case "`uname`" in
+  CYGWIN* )
+    cygwin=true
+    ;;
+  Darwin* )
+    darwin=true
+    ;;
+  MINGW* )
+    msys=true
+    ;;
+  NONSTOP* )
+    nonstop=true
+    ;;
+esac
+
+CLASSPATH=$APP_HOME/gradle/wrapper/gradle-wrapper.jar
+
+
+# Determine the Java command to use to start the JVM.
+if [ -n "$JAVA_HOME" ] ; then
+    if [ -x "$JAVA_HOME/jre/sh/java" ] ; then
+        # IBM's JDK on AIX uses strange locations for the executables
+        JAVACMD="$JAVA_HOME/jre/sh/java"
+    else
+        JAVACMD="$JAVA_HOME/bin/java"
+    fi
+    if [ ! -x "$JAVACMD" ] ; then
+        die "ERROR: JAVA_HOME is set to an invalid directory: $JAVA_HOME
+
+Please set the JAVA_HOME variable in your environment to match the
+location of your Java installation."
+    fi
+else
+    JAVACMD="java"
+    which java >/dev/null 2>&1 || die "ERROR: JAVA_HOME is not set and no 'java' command could be found in your PATH.
+
+Please set the JAVA_HOME variable in your environment to match the
+location of your Java installation."
+fi
+
+# Increase the maximum file descriptors if we can.
+if [ "$cygwin" = "false" -a "$darwin" = "false" -a "$nonstop" = "false" ] ; then
+    MAX_FD_LIMIT=`ulimit -H -n`
+    if [ $? -eq 0 ] ; then
+        if [ "$MAX_FD" = "maximum" -o "$MAX_FD" = "max" ] ; then
+            MAX_FD="$MAX_FD_LIMIT"
+        fi
+        ulimit -n $MAX_FD
+        if [ $? -ne 0 ] ; then
+            warn "Could not set maximum file descriptor limit: $MAX_FD"
+        fi
+    else
+        warn "Could not query maximum file descriptor limit: $MAX_FD_LIMIT"
+    fi
+fi
+
+# For Darwin, add options to specify how the application appears in the dock
+if $darwin; then
+    GRADLE_OPTS="$GRADLE_OPTS \"-Xdock:name=$APP_NAME\" \"-Xdock:icon=$APP_HOME/media/gradle.icns\""
+fi
+
+# For Cygwin or MSYS, switch paths to Windows format before running java
+if [ "$cygwin" = "true" -o "$msys" = "true" ] ; then
+    APP_HOME=`cygpath --path --mixed "$APP_HOME"`
+    CLASSPATH=`cygpath --path --mixed "$CLASSPATH"`
+
+    JAVACMD=`cygpath --unix "$JAVACMD"`
+
+    # We build the pattern for arguments to be converted via cygpath
+    ROOTDIRSRAW=`find -L / -maxdepth 1 -mindepth 1 -type d 2>/dev/null`
+    SEP=""
+    for dir in $ROOTDIRSRAW ; do
+        ROOTDIRS="$ROOTDIRS$SEP$dir"
+        SEP="|"
+    done
+    OURCYGPATTERN="(^($ROOTDIRS))"
+    # Add a user-defined pattern to the cygpath arguments
+    if [ "$GRADLE_CYGPATTERN" != "" ] ; then
+        OURCYGPATTERN="$OURCYGPATTERN|($GRADLE_CYGPATTERN)"
+    fi
+    # Now convert the arguments - kludge to limit ourselves to /bin/sh
+    i=0
+    for arg in "$@" ; do
+        CHECK=`echo "$arg"|egrep -c "$OURCYGPATTERN" -`
+        CHECK2=`echo "$arg"|egrep -c "^-"`                                 ### Determine if an option
+
+        if [ $CHECK -ne 0 ] && [ $CHECK2 -eq 0 ] ; then                    ### Added a condition
+            eval `echo args$i`=`cygpath --path --ignore --mixed "$arg"`
+        else
+            eval `echo args$i`="\"$arg\""
+        fi
+        i=`expr $i + 1`
+    done
+    case $i in
+        0) set -- ;;
+        1) set -- "$args0" ;;
+        2) set -- "$args0" "$args1" ;;
+        3) set -- "$args0" "$args1" "$args2" ;;
+        4) set -- "$args0" "$args1" "$args2" "$args3" ;;
+        5) set -- "$args0" "$args1" "$args2" "$args3" "$args4" ;;
+        6) set -- "$args0" "$args1" "$args2" "$args3" "$args4" "$args5" ;;
+        7) set -- "$args0" "$args1" "$args2" "$args3" "$args4" "$args5" "$args6" ;;
+        8) set -- "$args0" "$args1" "$args2" "$args3" "$args4" "$args5" "$args6" "$args7" ;;
+        9) set -- "$args0" "$args1" "$args2" "$args3" "$args4" "$args5" "$args6" "$args7" "$args8" ;;
+    esac
+fi
+
+# Escape application args
+save () {
+    for i do printf %s\\n "$i" | sed "s/'/'\\\\''/g;1s/^/'/;\$s/\$/' \\\\/" ; done
+    echo " "
+}
+APP_ARGS=`save "$@"`
+
+# Collect all arguments for the java command, following the shell quoting and substitution rules
+eval set -- $DEFAULT_JVM_OPTS $JAVA_OPTS $GRADLE_OPTS "\"-Dorg.gradle.appname=$APP_BASE_NAME\"" -classpath "\"$CLASSPATH\"" org.gradle.wrapper.GradleWrapperMain "$APP_ARGS"
+
+exec "$JAVACMD" "$@"
diff --git a/gradlew.bat b/gradlew.bat
new file mode 100644
index 0000000..107acd3
--- /dev/null
+++ b/gradlew.bat
@@ -0,0 +1,89 @@
+@rem
+@rem Copyright 2015 the original author or authors.
+@rem
+@rem Licensed under the Apache License, Version 2.0 (the "License");
+@rem you may not use this file except in compliance with the License.
+@rem You may obtain a copy of the License at
+@rem
+@rem      https://www.apache.org/licenses/LICENSE-2.0
+@rem
+@rem Unless required by applicable law or agreed to in writing, software
+@rem distributed under the License is distributed on an "AS IS" BASIS,
+@rem WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+@rem See the License for the specific language governing permissions and
+@rem limitations under the License.
+@rem
+
+@if "%DEBUG%" == "" @echo off
+@rem ##########################################################################
+@rem
+@rem  Gradle startup script for Windows
+@rem
+@rem ##########################################################################
+
+@rem Set local scope for the variables with windows NT shell
+if "%OS%"=="Windows_NT" setlocal
+
+set DIRNAME=%~dp0
+if "%DIRNAME%" == "" set DIRNAME=.
+set APP_BASE_NAME=%~n0
+set APP_HOME=%DIRNAME%
+
+@rem Resolve any "." and ".." in APP_HOME to make it shorter.
+for %%i in ("%APP_HOME%") do set APP_HOME=%%~fi
+
+@rem Add default JVM options here. You can also use JAVA_OPTS and GRADLE_OPTS to pass JVM options to this script.
+set DEFAULT_JVM_OPTS="-Xmx64m" "-Xms64m"
+
+@rem Find java.exe
+if defined JAVA_HOME goto findJavaFromJavaHome
+
+set JAVA_EXE=java.exe
+%JAVA_EXE% -version >NUL 2>&1
+if "%ERRORLEVEL%" == "0" goto execute
+
+echo.
+echo ERROR: JAVA_HOME is not set and no 'java' command could be found in your PATH.
+echo.
+echo Please set the JAVA_HOME variable in your environment to match the
+echo location of your Java installation.
+
+goto fail
+
+:findJavaFromJavaHome
+set JAVA_HOME=%JAVA_HOME:"=%
+set JAVA_EXE=%JAVA_HOME%/bin/java.exe
+
+if exist "%JAVA_EXE%" goto execute
+
+echo.
+echo ERROR: JAVA_HOME is set to an invalid directory: %JAVA_HOME%
+echo.
+echo Please set the JAVA_HOME variable in your environment to match the
+echo location of your Java installation.
+
+goto fail
+
+:execute
+@rem Setup the command line
+
+set CLASSPATH=%APP_HOME%\gradle\wrapper\gradle-wrapper.jar
+
+
+@rem Execute Gradle
+"%JAVA_EXE%" %DEFAULT_JVM_OPTS% %JAVA_OPTS% %GRADLE_OPTS% "-Dorg.gradle.appname=%APP_BASE_NAME%" -classpath "%CLASSPATH%" org.gradle.wrapper.GradleWrapperMain %*
+
+:end
+@rem End local scope for the variables with windows NT shell
+if "%ERRORLEVEL%"=="0" goto mainEnd
+
+:fail
+rem Set variable GRADLE_EXIT_CONSOLE if you need the _script_ return code instead of
+rem the _cmd.exe /c_ return code!
+if  not "" == "%GRADLE_EXIT_CONSOLE%" exit 1
+exit /b 1
+
+:mainEnd
+if "%OS%"=="Windows_NT" endlocal
+
+:omega
diff --git a/lombok.config b/lombok.config
new file mode 100644
index 0000000..6aa51d7
--- /dev/null
+++ b/lombok.config
@@ -0,0 +1,2 @@
+# This file is generated by the 'io.freefair.lombok' Gradle plugin
+config.stopBubbling = true
diff --git a/sampleData/owasp-nodejs-goat-with-vulns.json b/sampleData/owasp-nodejs-goat-with-vulns.json
new file mode 100644
index 0000000..c54be38
--- /dev/null
+++ b/sampleData/owasp-nodejs-goat-with-vulns.json
@@ -0,0 +1,36734 @@
+{
+  "bomFormat": "CycloneDX",
+  "specVersion": "1.4",
+  "version": 1,
+  "serialNumber": "urn:uuid:91ac2a10-715f-4261-82db-e03598378891",
+  "metadata": {
+    "timestamp": "2022-07-06T10:26:02+00:00",
+    "tools": [
+      {
+        "vendor": "Micro Focus",
+        "name": "Debricked",
+        "version": "1.0.1",
+        "component": "component",
+        "supplier": "tenant/company_name"
+      }
+    ]
+  },
+  "components": [
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::bcrypt-nodejs:0.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/bcrypt-nodejs@0.0.3",
+      "name": "bcrypt-nodejs",
+      "version": "0.0.3",
+      "bom-ref": "cpe:2.3:a::bcrypt-nodejs:0.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::console-browserify:1.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/console-browserify@1.1.0",
+      "name": "console-browserify",
+      "version": "1.1.0",
+      "bom-ref": "cpe:2.3:a::console-browserify:1.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::date-now:0.1.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/date-now@0.1.4",
+      "name": "date-now",
+      "version": "0.1.4",
+      "bom-ref": "cpe:2.3:a::date-now:0.1.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::consolidate:0.14.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/consolidate@0.14.5",
+      "name": "consolidate",
+      "version": "0.14.5",
+      "bom-ref": "cpe:2.3:a::consolidate:0.14.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::bluebird:3.5.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/bluebird@3.5.3",
+      "name": "bluebird",
+      "version": "3.5.3",
+      "bom-ref": "cpe:2.3:a::bluebird:3.5.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::cross-env:7.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/cross-env@7.0.2",
+      "name": "cross-env",
+      "version": "7.0.2",
+      "bom-ref": "cpe:2.3:a::cross-env:7.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::cross-spawn:7.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/cross-spawn@7.0.3",
+      "name": "cross-spawn",
+      "version": "7.0.3",
+      "bom-ref": "cpe:2.3:a::cross-spawn:7.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::path-key:3.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/path-key@3.1.1",
+      "name": "path-key",
+      "version": "3.1.1",
+      "bom-ref": "cpe:2.3:a::path-key:3.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::shebang-command:2.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/shebang-command@2.0.0",
+      "name": "shebang-command",
+      "version": "2.0.0",
+      "bom-ref": "cpe:2.3:a::shebang-command:2.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::shebang-regex:3.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/shebang-regex@3.0.0",
+      "name": "shebang-regex",
+      "version": "3.0.0",
+      "bom-ref": "cpe:2.3:a::shebang-regex:3.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::which:2.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/which@2.0.2",
+      "name": "which",
+      "version": "2.0.2",
+      "bom-ref": "cpe:2.3:a::which:2.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::isexe:2.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/isexe@2.0.0",
+      "name": "isexe",
+      "version": "2.0.0",
+      "bom-ref": "cpe:2.3:a::isexe:2.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::cryptiles:2.0.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/cryptiles@2.0.5",
+      "name": "cryptiles",
+      "version": "2.0.5",
+      "bom-ref": "cpe:2.3:a::cryptiles:2.0.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::boom:2.10.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/boom@2.10.1",
+      "name": "boom",
+      "version": "2.10.1",
+      "bom-ref": "cpe:2.3:a::boom:2.10.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::hoek:2.16.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/hoek@2.16.3",
+      "name": "hoek",
+      "version": "2.16.3",
+      "bom-ref": "cpe:2.3:a::hoek:2.16.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::csurf:1.9.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/csurf@1.9.0",
+      "name": "csurf",
+      "version": "1.9.0",
+      "bom-ref": "cpe:2.3:a::csurf:1.9.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::cookie:0.3.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/cookie@0.3.1",
+      "name": "cookie",
+      "version": "0.3.1",
+      "bom-ref": "cpe:2.3:a::cookie:0.3.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::cookie-signature:1.0.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/cookie-signature@1.0.6",
+      "name": "cookie-signature",
+      "version": "1.0.6",
+      "bom-ref": "cpe:2.3:a::cookie-signature:1.0.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::csrf:3.0.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/csrf@3.0.6",
+      "name": "csrf",
+      "version": "3.0.6",
+      "bom-ref": "cpe:2.3:a::csrf:3.0.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::rndm:1.2.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/rndm@1.2.0",
+      "name": "rndm",
+      "version": "1.2.0",
+      "bom-ref": "cpe:2.3:a::rndm:1.2.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::tsscmp:1.0.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/tsscmp@1.0.5",
+      "name": "tsscmp",
+      "version": "1.0.5",
+      "bom-ref": "cpe:2.3:a::tsscmp:1.0.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::uid-safe:2.1.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/uid-safe@2.1.4",
+      "name": "uid-safe",
+      "version": "2.1.4",
+      "bom-ref": "cpe:2.3:a::uid-safe:2.1.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::random-bytes:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/random-bytes@1.0.0",
+      "name": "random-bytes",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::random-bytes:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::http-errors:1.5.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/http-errors@1.5.1",
+      "name": "http-errors",
+      "version": "1.5.1",
+      "bom-ref": "cpe:2.3:a::http-errors:1.5.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::inherits:2.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/inherits@2.0.3",
+      "name": "inherits",
+      "version": "2.0.3",
+      "bom-ref": "cpe:2.3:a::inherits:2.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::setprototypeof:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/setprototypeof@1.0.2",
+      "name": "setprototypeof",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::setprototypeof:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::statuses:1.5.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/statuses@1.5.0",
+      "name": "statuses",
+      "version": "1.5.0",
+      "bom-ref": "cpe:2.3:a::statuses:1.5.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::cypress:3.3.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/cypress@3.3.1",
+      "name": "cypress",
+      "version": "3.3.1",
+      "bom-ref": "cpe:2.3:a::cypress:3.3.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a:cypress:listr-verbose-renderer:0.4.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/cypress/listr-verbose-renderer@0.4.1",
+      "name": "@cypress/listr-verbose-renderer",
+      "version": "0.4.1",
+      "bom-ref": "cpe:2.3:a:cypress:listr-verbose-renderer:0.4.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::chalk:1.1.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/chalk@1.1.3",
+      "name": "chalk",
+      "version": "1.1.3",
+      "bom-ref": "cpe:2.3:a::chalk:1.1.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::ansi-styles:2.2.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/ansi-styles@2.2.1",
+      "name": "ansi-styles",
+      "version": "2.2.1",
+      "bom-ref": "cpe:2.3:a::ansi-styles:2.2.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::escape-string-regexp:1.0.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/escape-string-regexp@1.0.5",
+      "name": "escape-string-regexp",
+      "version": "1.0.5",
+      "bom-ref": "cpe:2.3:a::escape-string-regexp:1.0.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::has-ansi:2.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/has-ansi@2.0.0",
+      "name": "has-ansi",
+      "version": "2.0.0",
+      "bom-ref": "cpe:2.3:a::has-ansi:2.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::ansi-regex:2.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/ansi-regex@2.1.1",
+      "name": "ansi-regex",
+      "version": "2.1.1",
+      "bom-ref": "cpe:2.3:a::ansi-regex:2.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::strip-ansi:3.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/strip-ansi@3.0.1",
+      "name": "strip-ansi",
+      "version": "3.0.1",
+      "bom-ref": "cpe:2.3:a::strip-ansi:3.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::ansi-regex:2.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/ansi-regex@2.1.1",
+      "name": "ansi-regex",
+      "version": "2.1.1",
+      "bom-ref": "cpe:2.3:a::ansi-regex:2.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::supports-color:2.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/supports-color@2.0.0",
+      "name": "supports-color",
+      "version": "2.0.0",
+      "bom-ref": "cpe:2.3:a::supports-color:2.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::cli-cursor:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/cli-cursor@1.0.2",
+      "name": "cli-cursor",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::cli-cursor:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::restore-cursor:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/restore-cursor@1.0.1",
+      "name": "restore-cursor",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::restore-cursor:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::exit-hook:1.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/exit-hook@1.1.1",
+      "name": "exit-hook",
+      "version": "1.1.1",
+      "bom-ref": "cpe:2.3:a::exit-hook:1.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::onetime:1.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/onetime@1.1.0",
+      "name": "onetime",
+      "version": "1.1.0",
+      "bom-ref": "cpe:2.3:a::onetime:1.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::date-fns:1.30.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/date-fns@1.30.1",
+      "name": "date-fns",
+      "version": "1.30.1",
+      "bom-ref": "cpe:2.3:a::date-fns:1.30.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::figures:1.7.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/figures@1.7.0",
+      "name": "figures",
+      "version": "1.7.0",
+      "bom-ref": "cpe:2.3:a::figures:1.7.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::escape-string-regexp:1.0.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/escape-string-regexp@1.0.5",
+      "name": "escape-string-regexp",
+      "version": "1.0.5",
+      "bom-ref": "cpe:2.3:a::escape-string-regexp:1.0.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::object-assign:4.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/object-assign@4.1.1",
+      "name": "object-assign",
+      "version": "4.1.1",
+      "bom-ref": "cpe:2.3:a::object-assign:4.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a:cypress:xvfb:1.2.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/cypress/xvfb@1.2.4",
+      "name": "@cypress/xvfb",
+      "version": "1.2.4",
+      "bom-ref": "cpe:2.3:a:cypress:xvfb:1.2.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::debug:3.2.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/debug@3.2.6",
+      "name": "debug",
+      "version": "3.2.6",
+      "bom-ref": "cpe:2.3:a::debug:3.2.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::ms:2.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/ms@2.1.2",
+      "name": "ms",
+      "version": "2.1.2",
+      "bom-ref": "cpe:2.3:a::ms:2.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::lodash.once:4.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/lodash.once@4.1.1",
+      "name": "lodash.once",
+      "version": "4.1.1",
+      "bom-ref": "cpe:2.3:a::lodash.once:4.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::arch:2.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/arch@2.1.1",
+      "name": "arch",
+      "version": "2.1.1",
+      "bom-ref": "cpe:2.3:a::arch:2.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::bluebird:3.5.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/bluebird@3.5.0",
+      "name": "bluebird",
+      "version": "3.5.0",
+      "bom-ref": "cpe:2.3:a::bluebird:3.5.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::cachedir:1.3.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/cachedir@1.3.0",
+      "name": "cachedir",
+      "version": "1.3.0",
+      "bom-ref": "cpe:2.3:a::cachedir:1.3.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::os-homedir:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/os-homedir@1.0.2",
+      "name": "os-homedir",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::os-homedir:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::chalk:2.4.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/chalk@2.4.2",
+      "name": "chalk",
+      "version": "2.4.2",
+      "bom-ref": "cpe:2.3:a::chalk:2.4.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::ansi-styles:3.2.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/ansi-styles@3.2.1",
+      "name": "ansi-styles",
+      "version": "3.2.1",
+      "bom-ref": "cpe:2.3:a::ansi-styles:3.2.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::color-convert:1.9.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/color-convert@1.9.3",
+      "name": "color-convert",
+      "version": "1.9.3",
+      "bom-ref": "cpe:2.3:a::color-convert:1.9.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::color-name:1.1.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/color-name@1.1.3",
+      "name": "color-name",
+      "version": "1.1.3",
+      "bom-ref": "cpe:2.3:a::color-name:1.1.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::escape-string-regexp:1.0.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/escape-string-regexp@1.0.5",
+      "name": "escape-string-regexp",
+      "version": "1.0.5",
+      "bom-ref": "cpe:2.3:a::escape-string-regexp:1.0.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::supports-color:5.5.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/supports-color@5.5.0",
+      "name": "supports-color",
+      "version": "5.5.0",
+      "bom-ref": "cpe:2.3:a::supports-color:5.5.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::has-flag:3.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/has-flag@3.0.0",
+      "name": "has-flag",
+      "version": "3.0.0",
+      "bom-ref": "cpe:2.3:a::has-flag:3.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::check-more-types:2.24.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/check-more-types@2.24.0",
+      "name": "check-more-types",
+      "version": "2.24.0",
+      "bom-ref": "cpe:2.3:a::check-more-types:2.24.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::commander:2.15.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/commander@2.15.1",
+      "name": "commander",
+      "version": "2.15.1",
+      "bom-ref": "cpe:2.3:a::commander:2.15.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::common-tags:1.8.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/common-tags@1.8.0",
+      "name": "common-tags",
+      "version": "1.8.0",
+      "bom-ref": "cpe:2.3:a::common-tags:1.8.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::debug:3.2.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/debug@3.2.6",
+      "name": "debug",
+      "version": "3.2.6",
+      "bom-ref": "cpe:2.3:a::debug:3.2.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::ms:2.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/ms@2.1.2",
+      "name": "ms",
+      "version": "2.1.2",
+      "bom-ref": "cpe:2.3:a::ms:2.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::execa:0.10.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/execa@0.10.0",
+      "name": "execa",
+      "version": "0.10.0",
+      "bom-ref": "cpe:2.3:a::execa:0.10.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::cross-spawn:6.0.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/cross-spawn@6.0.5",
+      "name": "cross-spawn",
+      "version": "6.0.5",
+      "bom-ref": "cpe:2.3:a::cross-spawn:6.0.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::nice-try:1.0.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/nice-try@1.0.5",
+      "name": "nice-try",
+      "version": "1.0.5",
+      "bom-ref": "cpe:2.3:a::nice-try:1.0.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::path-key:2.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/path-key@2.0.1",
+      "name": "path-key",
+      "version": "2.0.1",
+      "bom-ref": "cpe:2.3:a::path-key:2.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::semver:5.6.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/semver@5.6.0",
+      "name": "semver",
+      "version": "5.6.0",
+      "bom-ref": "cpe:2.3:a::semver:5.6.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::shebang-command:1.2.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/shebang-command@1.2.0",
+      "name": "shebang-command",
+      "version": "1.2.0",
+      "bom-ref": "cpe:2.3:a::shebang-command:1.2.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::shebang-regex:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/shebang-regex@1.0.0",
+      "name": "shebang-regex",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::shebang-regex:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::which:1.3.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/which@1.3.1",
+      "name": "which",
+      "version": "1.3.1",
+      "bom-ref": "cpe:2.3:a::which:1.3.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::isexe:2.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/isexe@2.0.0",
+      "name": "isexe",
+      "version": "2.0.0",
+      "bom-ref": "cpe:2.3:a::isexe:2.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::get-stream:3.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/get-stream@3.0.0",
+      "name": "get-stream",
+      "version": "3.0.0",
+      "bom-ref": "cpe:2.3:a::get-stream:3.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-stream:1.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-stream@1.1.0",
+      "name": "is-stream",
+      "version": "1.1.0",
+      "bom-ref": "cpe:2.3:a::is-stream:1.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::npm-run-path:2.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/npm-run-path@2.0.2",
+      "name": "npm-run-path",
+      "version": "2.0.2",
+      "bom-ref": "cpe:2.3:a::npm-run-path:2.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::path-key:2.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/path-key@2.0.1",
+      "name": "path-key",
+      "version": "2.0.1",
+      "bom-ref": "cpe:2.3:a::path-key:2.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::p-finally:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/p-finally@1.0.0",
+      "name": "p-finally",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::p-finally:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::signal-exit:3.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/signal-exit@3.0.2",
+      "name": "signal-exit",
+      "version": "3.0.2",
+      "bom-ref": "cpe:2.3:a::signal-exit:3.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::strip-eof:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/strip-eof@1.0.0",
+      "name": "strip-eof",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::strip-eof:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::executable:4.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/executable@4.1.1",
+      "name": "executable",
+      "version": "4.1.1",
+      "bom-ref": "cpe:2.3:a::executable:4.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::pify:2.3.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/pify@2.3.0",
+      "name": "pify",
+      "version": "2.3.0",
+      "bom-ref": "cpe:2.3:a::pify:2.3.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::extract-zip:1.6.7::*:*:*:*:*:*",
+      "purl": "pkg:npm/extract-zip@1.6.7",
+      "name": "extract-zip",
+      "version": "1.6.7",
+      "bom-ref": "cpe:2.3:a::extract-zip:1.6.7::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::concat-stream:1.6.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/concat-stream@1.6.2",
+      "name": "concat-stream",
+      "version": "1.6.2",
+      "bom-ref": "cpe:2.3:a::concat-stream:1.6.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::buffer-from:1.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/buffer-from@1.1.1",
+      "name": "buffer-from",
+      "version": "1.1.1",
+      "bom-ref": "cpe:2.3:a::buffer-from:1.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::inherits:2.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/inherits@2.0.3",
+      "name": "inherits",
+      "version": "2.0.3",
+      "bom-ref": "cpe:2.3:a::inherits:2.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::readable-stream:2.3.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/readable-stream@2.3.6",
+      "name": "readable-stream",
+      "version": "2.3.6",
+      "bom-ref": "cpe:2.3:a::readable-stream:2.3.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::core-util-is:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/core-util-is@1.0.2",
+      "name": "core-util-is",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::core-util-is:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::inherits:2.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/inherits@2.0.3",
+      "name": "inherits",
+      "version": "2.0.3",
+      "bom-ref": "cpe:2.3:a::inherits:2.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::isarray:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/isarray@1.0.0",
+      "name": "isarray",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::isarray:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::process-nextick-args:2.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/process-nextick-args@2.0.0",
+      "name": "process-nextick-args",
+      "version": "2.0.0",
+      "bom-ref": "cpe:2.3:a::process-nextick-args:2.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::safe-buffer:5.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/safe-buffer@5.1.2",
+      "name": "safe-buffer",
+      "version": "5.1.2",
+      "bom-ref": "cpe:2.3:a::safe-buffer:5.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::string_decoder:1.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/string_decoder@1.1.1",
+      "name": "string_decoder",
+      "version": "1.1.1",
+      "bom-ref": "cpe:2.3:a::string_decoder:1.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::safe-buffer:5.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/safe-buffer@5.1.2",
+      "name": "safe-buffer",
+      "version": "5.1.2",
+      "bom-ref": "cpe:2.3:a::safe-buffer:5.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::util-deprecate:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/util-deprecate@1.0.2",
+      "name": "util-deprecate",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::util-deprecate:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::typedarray:0.0.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/typedarray@0.0.6",
+      "name": "typedarray",
+      "version": "0.0.6",
+      "bom-ref": "cpe:2.3:a::typedarray:0.0.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::debug:2.6.9::*:*:*:*:*:*",
+      "purl": "pkg:npm/debug@2.6.9",
+      "name": "debug",
+      "version": "2.6.9",
+      "bom-ref": "cpe:2.3:a::debug:2.6.9::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::ms:2.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/ms@2.0.0",
+      "name": "ms",
+      "version": "2.0.0",
+      "bom-ref": "cpe:2.3:a::ms:2.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::mkdirp:0.5.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/mkdirp@0.5.1",
+      "name": "mkdirp",
+      "version": "0.5.1",
+      "bom-ref": "cpe:2.3:a::mkdirp:0.5.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::minimist:0.0.8::*:*:*:*:*:*",
+      "purl": "pkg:npm/minimist@0.0.8",
+      "name": "minimist",
+      "version": "0.0.8",
+      "bom-ref": "cpe:2.3:a::minimist:0.0.8::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::yauzl:2.4.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/yauzl@2.4.1",
+      "name": "yauzl",
+      "version": "2.4.1",
+      "bom-ref": "cpe:2.3:a::yauzl:2.4.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::fd-slicer:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/fd-slicer@1.0.1",
+      "name": "fd-slicer",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::fd-slicer:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::pend:1.2.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/pend@1.2.0",
+      "name": "pend",
+      "version": "1.2.0",
+      "bom-ref": "cpe:2.3:a::pend:1.2.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::fs-extra:4.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/fs-extra@4.0.1",
+      "name": "fs-extra",
+      "version": "4.0.1",
+      "bom-ref": "cpe:2.3:a::fs-extra:4.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::graceful-fs:4.1.15::*:*:*:*:*:*",
+      "purl": "pkg:npm/graceful-fs@4.1.15",
+      "name": "graceful-fs",
+      "version": "4.1.15",
+      "bom-ref": "cpe:2.3:a::graceful-fs:4.1.15::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::jsonfile:3.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/jsonfile@3.0.1",
+      "name": "jsonfile",
+      "version": "3.0.1",
+      "bom-ref": "cpe:2.3:a::jsonfile:3.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::graceful-fs:4.1.15::*:*:*:*:*:*",
+      "purl": "pkg:npm/graceful-fs@4.1.15",
+      "name": "graceful-fs",
+      "version": "4.1.15",
+      "bom-ref": "cpe:2.3:a::graceful-fs:4.1.15::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::universalify:0.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/universalify@0.1.2",
+      "name": "universalify",
+      "version": "0.1.2",
+      "bom-ref": "cpe:2.3:a::universalify:0.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::getos:3.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/getos@3.1.1",
+      "name": "getos",
+      "version": "3.1.1",
+      "bom-ref": "cpe:2.3:a::getos:3.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::async:2.6.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/async@2.6.1",
+      "name": "async",
+      "version": "2.6.1",
+      "bom-ref": "cpe:2.3:a::async:2.6.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::lodash:4.17.11::*:*:*:*:*:*",
+      "purl": "pkg:npm/lodash@4.17.11",
+      "name": "lodash",
+      "version": "4.17.11",
+      "bom-ref": "cpe:2.3:a::lodash:4.17.11::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::glob:7.1.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/glob@7.1.3",
+      "name": "glob",
+      "version": "7.1.3",
+      "bom-ref": "cpe:2.3:a::glob:7.1.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::fs.realpath:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/fs.realpath@1.0.0",
+      "name": "fs.realpath",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::fs.realpath:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::inflight:1.0.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/inflight@1.0.6",
+      "name": "inflight",
+      "version": "1.0.6",
+      "bom-ref": "cpe:2.3:a::inflight:1.0.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::once:1.4.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/once@1.4.0",
+      "name": "once",
+      "version": "1.4.0",
+      "bom-ref": "cpe:2.3:a::once:1.4.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::wrappy:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/wrappy@1.0.2",
+      "name": "wrappy",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::wrappy:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::wrappy:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/wrappy@1.0.2",
+      "name": "wrappy",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::wrappy:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::inherits:2.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/inherits@2.0.3",
+      "name": "inherits",
+      "version": "2.0.3",
+      "bom-ref": "cpe:2.3:a::inherits:2.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::minimatch:3.0.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/minimatch@3.0.4",
+      "name": "minimatch",
+      "version": "3.0.4",
+      "bom-ref": "cpe:2.3:a::minimatch:3.0.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::brace-expansion:1.1.11::*:*:*:*:*:*",
+      "purl": "pkg:npm/brace-expansion@1.1.11",
+      "name": "brace-expansion",
+      "version": "1.1.11",
+      "bom-ref": "cpe:2.3:a::brace-expansion:1.1.11::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::balanced-match:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/balanced-match@1.0.0",
+      "name": "balanced-match",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::balanced-match:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::concat-map:0.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/concat-map@0.0.1",
+      "name": "concat-map",
+      "version": "0.0.1",
+      "bom-ref": "cpe:2.3:a::concat-map:0.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::once:1.4.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/once@1.4.0",
+      "name": "once",
+      "version": "1.4.0",
+      "bom-ref": "cpe:2.3:a::once:1.4.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::path-is-absolute:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/path-is-absolute@1.0.1",
+      "name": "path-is-absolute",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::path-is-absolute:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-ci:1.2.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-ci@1.2.1",
+      "name": "is-ci",
+      "version": "1.2.1",
+      "bom-ref": "cpe:2.3:a::is-ci:1.2.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::ci-info:1.6.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/ci-info@1.6.0",
+      "name": "ci-info",
+      "version": "1.6.0",
+      "bom-ref": "cpe:2.3:a::ci-info:1.6.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-installed-globally:0.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-installed-globally@0.1.0",
+      "name": "is-installed-globally",
+      "version": "0.1.0",
+      "bom-ref": "cpe:2.3:a::is-installed-globally:0.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::global-dirs:0.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/global-dirs@0.1.1",
+      "name": "global-dirs",
+      "version": "0.1.1",
+      "bom-ref": "cpe:2.3:a::global-dirs:0.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::ini:1.3.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/ini@1.3.5",
+      "name": "ini",
+      "version": "1.3.5",
+      "bom-ref": "cpe:2.3:a::ini:1.3.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-path-inside:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-path-inside@1.0.1",
+      "name": "is-path-inside",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::is-path-inside:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::path-is-inside:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/path-is-inside@1.0.2",
+      "name": "path-is-inside",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::path-is-inside:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::lazy-ass:1.6.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/lazy-ass@1.6.0",
+      "name": "lazy-ass",
+      "version": "1.6.0",
+      "bom-ref": "cpe:2.3:a::lazy-ass:1.6.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::listr:0.12.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/listr@0.12.0",
+      "name": "listr",
+      "version": "0.12.0",
+      "bom-ref": "cpe:2.3:a::listr:0.12.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::chalk:1.1.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/chalk@1.1.3",
+      "name": "chalk",
+      "version": "1.1.3",
+      "bom-ref": "cpe:2.3:a::chalk:1.1.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::ansi-styles:2.2.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/ansi-styles@2.2.1",
+      "name": "ansi-styles",
+      "version": "2.2.1",
+      "bom-ref": "cpe:2.3:a::ansi-styles:2.2.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::escape-string-regexp:1.0.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/escape-string-regexp@1.0.5",
+      "name": "escape-string-regexp",
+      "version": "1.0.5",
+      "bom-ref": "cpe:2.3:a::escape-string-regexp:1.0.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::has-ansi:2.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/has-ansi@2.0.0",
+      "name": "has-ansi",
+      "version": "2.0.0",
+      "bom-ref": "cpe:2.3:a::has-ansi:2.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::strip-ansi:3.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/strip-ansi@3.0.1",
+      "name": "strip-ansi",
+      "version": "3.0.1",
+      "bom-ref": "cpe:2.3:a::strip-ansi:3.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::supports-color:2.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/supports-color@2.0.0",
+      "name": "supports-color",
+      "version": "2.0.0",
+      "bom-ref": "cpe:2.3:a::supports-color:2.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::cli-truncate:0.2.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/cli-truncate@0.2.1",
+      "name": "cli-truncate",
+      "version": "0.2.1",
+      "bom-ref": "cpe:2.3:a::cli-truncate:0.2.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::slice-ansi:0.0.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/slice-ansi@0.0.4",
+      "name": "slice-ansi",
+      "version": "0.0.4",
+      "bom-ref": "cpe:2.3:a::slice-ansi:0.0.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::string-width:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/string-width@1.0.2",
+      "name": "string-width",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::string-width:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::code-point-at:1.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/code-point-at@1.1.0",
+      "name": "code-point-at",
+      "version": "1.1.0",
+      "bom-ref": "cpe:2.3:a::code-point-at:1.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-fullwidth-code-point:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-fullwidth-code-point@1.0.0",
+      "name": "is-fullwidth-code-point",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::is-fullwidth-code-point:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::number-is-nan:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/number-is-nan@1.0.1",
+      "name": "number-is-nan",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::number-is-nan:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::strip-ansi:3.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/strip-ansi@3.0.1",
+      "name": "strip-ansi",
+      "version": "3.0.1",
+      "bom-ref": "cpe:2.3:a::strip-ansi:3.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::figures:1.7.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/figures@1.7.0",
+      "name": "figures",
+      "version": "1.7.0",
+      "bom-ref": "cpe:2.3:a::figures:1.7.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::indent-string:2.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/indent-string@2.1.0",
+      "name": "indent-string",
+      "version": "2.1.0",
+      "bom-ref": "cpe:2.3:a::indent-string:2.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::repeating:2.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/repeating@2.0.1",
+      "name": "repeating",
+      "version": "2.0.1",
+      "bom-ref": "cpe:2.3:a::repeating:2.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-finite:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-finite@1.0.2",
+      "name": "is-finite",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::is-finite:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::number-is-nan:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/number-is-nan@1.0.1",
+      "name": "number-is-nan",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::number-is-nan:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-promise:2.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-promise@2.1.0",
+      "name": "is-promise",
+      "version": "2.1.0",
+      "bom-ref": "cpe:2.3:a::is-promise:2.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-stream:1.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-stream@1.1.0",
+      "name": "is-stream",
+      "version": "1.1.0",
+      "bom-ref": "cpe:2.3:a::is-stream:1.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::listr-silent-renderer:1.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/listr-silent-renderer@1.1.1",
+      "name": "listr-silent-renderer",
+      "version": "1.1.1",
+      "bom-ref": "cpe:2.3:a::listr-silent-renderer:1.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::listr-update-renderer:0.2.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/listr-update-renderer@0.2.0",
+      "name": "listr-update-renderer",
+      "version": "0.2.0",
+      "bom-ref": "cpe:2.3:a::listr-update-renderer:0.2.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::chalk:1.1.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/chalk@1.1.3",
+      "name": "chalk",
+      "version": "1.1.3",
+      "bom-ref": "cpe:2.3:a::chalk:1.1.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::ansi-styles:2.2.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/ansi-styles@2.2.1",
+      "name": "ansi-styles",
+      "version": "2.2.1",
+      "bom-ref": "cpe:2.3:a::ansi-styles:2.2.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::escape-string-regexp:1.0.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/escape-string-regexp@1.0.5",
+      "name": "escape-string-regexp",
+      "version": "1.0.5",
+      "bom-ref": "cpe:2.3:a::escape-string-regexp:1.0.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::has-ansi:2.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/has-ansi@2.0.0",
+      "name": "has-ansi",
+      "version": "2.0.0",
+      "bom-ref": "cpe:2.3:a::has-ansi:2.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::strip-ansi:3.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/strip-ansi@3.0.1",
+      "name": "strip-ansi",
+      "version": "3.0.1",
+      "bom-ref": "cpe:2.3:a::strip-ansi:3.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::supports-color:2.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/supports-color@2.0.0",
+      "name": "supports-color",
+      "version": "2.0.0",
+      "bom-ref": "cpe:2.3:a::supports-color:2.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::cli-truncate:0.2.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/cli-truncate@0.2.1",
+      "name": "cli-truncate",
+      "version": "0.2.1",
+      "bom-ref": "cpe:2.3:a::cli-truncate:0.2.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::elegant-spinner:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/elegant-spinner@1.0.1",
+      "name": "elegant-spinner",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::elegant-spinner:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::figures:1.7.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/figures@1.7.0",
+      "name": "figures",
+      "version": "1.7.0",
+      "bom-ref": "cpe:2.3:a::figures:1.7.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::indent-string:3.2.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/indent-string@3.2.0",
+      "name": "indent-string",
+      "version": "3.2.0",
+      "bom-ref": "cpe:2.3:a::indent-string:3.2.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::log-symbols:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/log-symbols@1.0.2",
+      "name": "log-symbols",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::log-symbols:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::chalk:1.1.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/chalk@1.1.3",
+      "name": "chalk",
+      "version": "1.1.3",
+      "bom-ref": "cpe:2.3:a::chalk:1.1.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::ansi-styles:2.2.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/ansi-styles@2.2.1",
+      "name": "ansi-styles",
+      "version": "2.2.1",
+      "bom-ref": "cpe:2.3:a::ansi-styles:2.2.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::supports-color:2.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/supports-color@2.0.0",
+      "name": "supports-color",
+      "version": "2.0.0",
+      "bom-ref": "cpe:2.3:a::supports-color:2.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::log-update:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/log-update@1.0.2",
+      "name": "log-update",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::log-update:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::ansi-escapes:1.4.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/ansi-escapes@1.4.0",
+      "name": "ansi-escapes",
+      "version": "1.4.0",
+      "bom-ref": "cpe:2.3:a::ansi-escapes:1.4.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::cli-cursor:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/cli-cursor@1.0.2",
+      "name": "cli-cursor",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::cli-cursor:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::strip-ansi:3.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/strip-ansi@3.0.1",
+      "name": "strip-ansi",
+      "version": "3.0.1",
+      "bom-ref": "cpe:2.3:a::strip-ansi:3.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::listr-verbose-renderer:0.4.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/listr-verbose-renderer@0.4.1",
+      "name": "listr-verbose-renderer",
+      "version": "0.4.1",
+      "bom-ref": "cpe:2.3:a::listr-verbose-renderer:0.4.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::chalk:1.1.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/chalk@1.1.3",
+      "name": "chalk",
+      "version": "1.1.3",
+      "bom-ref": "cpe:2.3:a::chalk:1.1.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::ansi-styles:2.2.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/ansi-styles@2.2.1",
+      "name": "ansi-styles",
+      "version": "2.2.1",
+      "bom-ref": "cpe:2.3:a::ansi-styles:2.2.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::escape-string-regexp:1.0.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/escape-string-regexp@1.0.5",
+      "name": "escape-string-regexp",
+      "version": "1.0.5",
+      "bom-ref": "cpe:2.3:a::escape-string-regexp:1.0.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::has-ansi:2.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/has-ansi@2.0.0",
+      "name": "has-ansi",
+      "version": "2.0.0",
+      "bom-ref": "cpe:2.3:a::has-ansi:2.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::strip-ansi:3.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/strip-ansi@3.0.1",
+      "name": "strip-ansi",
+      "version": "3.0.1",
+      "bom-ref": "cpe:2.3:a::strip-ansi:3.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::supports-color:2.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/supports-color@2.0.0",
+      "name": "supports-color",
+      "version": "2.0.0",
+      "bom-ref": "cpe:2.3:a::supports-color:2.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::cli-cursor:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/cli-cursor@1.0.2",
+      "name": "cli-cursor",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::cli-cursor:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::date-fns:1.30.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/date-fns@1.30.1",
+      "name": "date-fns",
+      "version": "1.30.1",
+      "bom-ref": "cpe:2.3:a::date-fns:1.30.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::figures:1.7.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/figures@1.7.0",
+      "name": "figures",
+      "version": "1.7.0",
+      "bom-ref": "cpe:2.3:a::figures:1.7.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::log-symbols:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/log-symbols@1.0.2",
+      "name": "log-symbols",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::log-symbols:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::chalk:1.1.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/chalk@1.1.3",
+      "name": "chalk",
+      "version": "1.1.3",
+      "bom-ref": "cpe:2.3:a::chalk:1.1.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::ansi-styles:2.2.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/ansi-styles@2.2.1",
+      "name": "ansi-styles",
+      "version": "2.2.1",
+      "bom-ref": "cpe:2.3:a::ansi-styles:2.2.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::supports-color:2.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/supports-color@2.0.0",
+      "name": "supports-color",
+      "version": "2.0.0",
+      "bom-ref": "cpe:2.3:a::supports-color:2.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::log-update:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/log-update@1.0.2",
+      "name": "log-update",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::log-update:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::ora:0.2.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/ora@0.2.3",
+      "name": "ora",
+      "version": "0.2.3",
+      "bom-ref": "cpe:2.3:a::ora:0.2.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::chalk:1.1.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/chalk@1.1.3",
+      "name": "chalk",
+      "version": "1.1.3",
+      "bom-ref": "cpe:2.3:a::chalk:1.1.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::ansi-styles:2.2.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/ansi-styles@2.2.1",
+      "name": "ansi-styles",
+      "version": "2.2.1",
+      "bom-ref": "cpe:2.3:a::ansi-styles:2.2.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::escape-string-regexp:1.0.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/escape-string-regexp@1.0.5",
+      "name": "escape-string-regexp",
+      "version": "1.0.5",
+      "bom-ref": "cpe:2.3:a::escape-string-regexp:1.0.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::has-ansi:2.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/has-ansi@2.0.0",
+      "name": "has-ansi",
+      "version": "2.0.0",
+      "bom-ref": "cpe:2.3:a::has-ansi:2.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::strip-ansi:3.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/strip-ansi@3.0.1",
+      "name": "strip-ansi",
+      "version": "3.0.1",
+      "bom-ref": "cpe:2.3:a::strip-ansi:3.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::supports-color:2.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/supports-color@2.0.0",
+      "name": "supports-color",
+      "version": "2.0.0",
+      "bom-ref": "cpe:2.3:a::supports-color:2.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::cli-cursor:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/cli-cursor@1.0.2",
+      "name": "cli-cursor",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::cli-cursor:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::cli-spinners:0.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/cli-spinners@0.1.2",
+      "name": "cli-spinners",
+      "version": "0.1.2",
+      "bom-ref": "cpe:2.3:a::cli-spinners:0.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::object-assign:4.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/object-assign@4.1.1",
+      "name": "object-assign",
+      "version": "4.1.1",
+      "bom-ref": "cpe:2.3:a::object-assign:4.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::p-map:1.2.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/p-map@1.2.0",
+      "name": "p-map",
+      "version": "1.2.0",
+      "bom-ref": "cpe:2.3:a::p-map:1.2.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::rxjs:5.5.12::*:*:*:*:*:*",
+      "purl": "pkg:npm/rxjs@5.5.12",
+      "name": "rxjs",
+      "version": "5.5.12",
+      "bom-ref": "cpe:2.3:a::rxjs:5.5.12::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::symbol-observable:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/symbol-observable@1.0.1",
+      "name": "symbol-observable",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::symbol-observable:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::stream-to-observable:0.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/stream-to-observable@0.1.0",
+      "name": "stream-to-observable",
+      "version": "0.1.0",
+      "bom-ref": "cpe:2.3:a::stream-to-observable:0.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::strip-ansi:3.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/strip-ansi@3.0.1",
+      "name": "strip-ansi",
+      "version": "3.0.1",
+      "bom-ref": "cpe:2.3:a::strip-ansi:3.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::lodash:4.17.11::*:*:*:*:*:*",
+      "purl": "pkg:npm/lodash@4.17.11",
+      "name": "lodash",
+      "version": "4.17.11",
+      "bom-ref": "cpe:2.3:a::lodash:4.17.11::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::log-symbols:2.2.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/log-symbols@2.2.0",
+      "name": "log-symbols",
+      "version": "2.2.0",
+      "bom-ref": "cpe:2.3:a::log-symbols:2.2.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::chalk:2.4.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/chalk@2.4.2",
+      "name": "chalk",
+      "version": "2.4.2",
+      "bom-ref": "cpe:2.3:a::chalk:2.4.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::minimist:1.2.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/minimist@1.2.0",
+      "name": "minimist",
+      "version": "1.2.0",
+      "bom-ref": "cpe:2.3:a::minimist:1.2.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::moment:2.24.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/moment@2.24.0",
+      "name": "moment",
+      "version": "2.24.0",
+      "bom-ref": "cpe:2.3:a::moment:2.24.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::ramda:0.24.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/ramda@0.24.1",
+      "name": "ramda",
+      "version": "0.24.1",
+      "bom-ref": "cpe:2.3:a::ramda:0.24.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::request:2.88.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/request@2.88.0",
+      "name": "request",
+      "version": "2.88.0",
+      "bom-ref": "cpe:2.3:a::request:2.88.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::aws-sign2:0.7.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/aws-sign2@0.7.0",
+      "name": "aws-sign2",
+      "version": "0.7.0",
+      "bom-ref": "cpe:2.3:a::aws-sign2:0.7.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::aws4:1.8.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/aws4@1.8.0",
+      "name": "aws4",
+      "version": "1.8.0",
+      "bom-ref": "cpe:2.3:a::aws4:1.8.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::caseless:0.12.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/caseless@0.12.0",
+      "name": "caseless",
+      "version": "0.12.0",
+      "bom-ref": "cpe:2.3:a::caseless:0.12.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::combined-stream:1.0.7::*:*:*:*:*:*",
+      "purl": "pkg:npm/combined-stream@1.0.7",
+      "name": "combined-stream",
+      "version": "1.0.7",
+      "bom-ref": "cpe:2.3:a::combined-stream:1.0.7::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::delayed-stream:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/delayed-stream@1.0.0",
+      "name": "delayed-stream",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::delayed-stream:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::extend:3.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/extend@3.0.2",
+      "name": "extend",
+      "version": "3.0.2",
+      "bom-ref": "cpe:2.3:a::extend:3.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::forever-agent:0.6.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/forever-agent@0.6.1",
+      "name": "forever-agent",
+      "version": "0.6.1",
+      "bom-ref": "cpe:2.3:a::forever-agent:0.6.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::form-data:2.3.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/form-data@2.3.3",
+      "name": "form-data",
+      "version": "2.3.3",
+      "bom-ref": "cpe:2.3:a::form-data:2.3.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::asynckit:0.4.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/asynckit@0.4.0",
+      "name": "asynckit",
+      "version": "0.4.0",
+      "bom-ref": "cpe:2.3:a::asynckit:0.4.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::combined-stream:1.0.7::*:*:*:*:*:*",
+      "purl": "pkg:npm/combined-stream@1.0.7",
+      "name": "combined-stream",
+      "version": "1.0.7",
+      "bom-ref": "cpe:2.3:a::combined-stream:1.0.7::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::mime-types:2.1.21::*:*:*:*:*:*",
+      "purl": "pkg:npm/mime-types@2.1.21",
+      "name": "mime-types",
+      "version": "2.1.21",
+      "bom-ref": "cpe:2.3:a::mime-types:2.1.21::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::mime-db:1.37.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/mime-db@1.37.0",
+      "name": "mime-db",
+      "version": "1.37.0",
+      "bom-ref": "cpe:2.3:a::mime-db:1.37.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::har-validator:5.1.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/har-validator@5.1.3",
+      "name": "har-validator",
+      "version": "5.1.3",
+      "bom-ref": "cpe:2.3:a::har-validator:5.1.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::ajv:6.10.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/ajv@6.10.0",
+      "name": "ajv",
+      "version": "6.10.0",
+      "bom-ref": "cpe:2.3:a::ajv:6.10.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::fast-deep-equal:2.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/fast-deep-equal@2.0.1",
+      "name": "fast-deep-equal",
+      "version": "2.0.1",
+      "bom-ref": "cpe:2.3:a::fast-deep-equal:2.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::fast-json-stable-stringify:2.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/fast-json-stable-stringify@2.0.0",
+      "name": "fast-json-stable-stringify",
+      "version": "2.0.0",
+      "bom-ref": "cpe:2.3:a::fast-json-stable-stringify:2.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::json-schema-traverse:0.4.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/json-schema-traverse@0.4.1",
+      "name": "json-schema-traverse",
+      "version": "0.4.1",
+      "bom-ref": "cpe:2.3:a::json-schema-traverse:0.4.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::uri-js:4.2.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/uri-js@4.2.2",
+      "name": "uri-js",
+      "version": "4.2.2",
+      "bom-ref": "cpe:2.3:a::uri-js:4.2.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::punycode:2.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/punycode@2.1.1",
+      "name": "punycode",
+      "version": "2.1.1",
+      "bom-ref": "cpe:2.3:a::punycode:2.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::har-schema:2.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/har-schema@2.0.0",
+      "name": "har-schema",
+      "version": "2.0.0",
+      "bom-ref": "cpe:2.3:a::har-schema:2.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::http-signature:1.2.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/http-signature@1.2.0",
+      "name": "http-signature",
+      "version": "1.2.0",
+      "bom-ref": "cpe:2.3:a::http-signature:1.2.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::assert-plus:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/assert-plus@1.0.0",
+      "name": "assert-plus",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::assert-plus:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::jsprim:1.4.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/jsprim@1.4.1",
+      "name": "jsprim",
+      "version": "1.4.1",
+      "bom-ref": "cpe:2.3:a::jsprim:1.4.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::assert-plus:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/assert-plus@1.0.0",
+      "name": "assert-plus",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::assert-plus:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::extsprintf:1.3.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/extsprintf@1.3.0",
+      "name": "extsprintf",
+      "version": "1.3.0",
+      "bom-ref": "cpe:2.3:a::extsprintf:1.3.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::json-schema:0.2.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/json-schema@0.2.3",
+      "name": "json-schema",
+      "version": "0.2.3",
+      "bom-ref": "cpe:2.3:a::json-schema:0.2.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::verror:1.10.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/verror@1.10.0",
+      "name": "verror",
+      "version": "1.10.0",
+      "bom-ref": "cpe:2.3:a::verror:1.10.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::assert-plus:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/assert-plus@1.0.0",
+      "name": "assert-plus",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::assert-plus:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::core-util-is:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/core-util-is@1.0.2",
+      "name": "core-util-is",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::core-util-is:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::extsprintf:1.3.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/extsprintf@1.3.0",
+      "name": "extsprintf",
+      "version": "1.3.0",
+      "bom-ref": "cpe:2.3:a::extsprintf:1.3.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::sshpk:1.16.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/sshpk@1.16.0",
+      "name": "sshpk",
+      "version": "1.16.0",
+      "bom-ref": "cpe:2.3:a::sshpk:1.16.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::asn1:0.2.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/asn1@0.2.4",
+      "name": "asn1",
+      "version": "0.2.4",
+      "bom-ref": "cpe:2.3:a::asn1:0.2.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::safer-buffer:2.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/safer-buffer@2.1.2",
+      "name": "safer-buffer",
+      "version": "2.1.2",
+      "bom-ref": "cpe:2.3:a::safer-buffer:2.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::assert-plus:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/assert-plus@1.0.0",
+      "name": "assert-plus",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::assert-plus:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::bcrypt-pbkdf:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/bcrypt-pbkdf@1.0.2",
+      "name": "bcrypt-pbkdf",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::bcrypt-pbkdf:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::tweetnacl:0.14.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/tweetnacl@0.14.5",
+      "name": "tweetnacl",
+      "version": "0.14.5",
+      "bom-ref": "cpe:2.3:a::tweetnacl:0.14.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::dashdash:1.14.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/dashdash@1.14.1",
+      "name": "dashdash",
+      "version": "1.14.1",
+      "bom-ref": "cpe:2.3:a::dashdash:1.14.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::assert-plus:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/assert-plus@1.0.0",
+      "name": "assert-plus",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::assert-plus:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::ecc-jsbn:0.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/ecc-jsbn@0.1.2",
+      "name": "ecc-jsbn",
+      "version": "0.1.2",
+      "bom-ref": "cpe:2.3:a::ecc-jsbn:0.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::jsbn:0.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/jsbn@0.1.1",
+      "name": "jsbn",
+      "version": "0.1.1",
+      "bom-ref": "cpe:2.3:a::jsbn:0.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::safer-buffer:2.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/safer-buffer@2.1.2",
+      "name": "safer-buffer",
+      "version": "2.1.2",
+      "bom-ref": "cpe:2.3:a::safer-buffer:2.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::getpass:0.1.7::*:*:*:*:*:*",
+      "purl": "pkg:npm/getpass@0.1.7",
+      "name": "getpass",
+      "version": "0.1.7",
+      "bom-ref": "cpe:2.3:a::getpass:0.1.7::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::assert-plus:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/assert-plus@1.0.0",
+      "name": "assert-plus",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::assert-plus:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::jsbn:0.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/jsbn@0.1.1",
+      "name": "jsbn",
+      "version": "0.1.1",
+      "bom-ref": "cpe:2.3:a::jsbn:0.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::safer-buffer:2.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/safer-buffer@2.1.2",
+      "name": "safer-buffer",
+      "version": "2.1.2",
+      "bom-ref": "cpe:2.3:a::safer-buffer:2.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::tweetnacl:0.14.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/tweetnacl@0.14.5",
+      "name": "tweetnacl",
+      "version": "0.14.5",
+      "bom-ref": "cpe:2.3:a::tweetnacl:0.14.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-typedarray:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-typedarray@1.0.0",
+      "name": "is-typedarray",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::is-typedarray:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::isstream:0.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/isstream@0.1.2",
+      "name": "isstream",
+      "version": "0.1.2",
+      "bom-ref": "cpe:2.3:a::isstream:0.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::json-stringify-safe:5.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/json-stringify-safe@5.0.1",
+      "name": "json-stringify-safe",
+      "version": "5.0.1",
+      "bom-ref": "cpe:2.3:a::json-stringify-safe:5.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::mime-types:2.1.21::*:*:*:*:*:*",
+      "purl": "pkg:npm/mime-types@2.1.21",
+      "name": "mime-types",
+      "version": "2.1.21",
+      "bom-ref": "cpe:2.3:a::mime-types:2.1.21::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::oauth-sign:0.9.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/oauth-sign@0.9.0",
+      "name": "oauth-sign",
+      "version": "0.9.0",
+      "bom-ref": "cpe:2.3:a::oauth-sign:0.9.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::performance-now:2.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/performance-now@2.1.0",
+      "name": "performance-now",
+      "version": "2.1.0",
+      "bom-ref": "cpe:2.3:a::performance-now:2.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::qs:6.5.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/qs@6.5.2",
+      "name": "qs",
+      "version": "6.5.2",
+      "bom-ref": "cpe:2.3:a::qs:6.5.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::safe-buffer:5.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/safe-buffer@5.1.2",
+      "name": "safe-buffer",
+      "version": "5.1.2",
+      "bom-ref": "cpe:2.3:a::safe-buffer:5.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::tough-cookie:2.4.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/tough-cookie@2.4.3",
+      "name": "tough-cookie",
+      "version": "2.4.3",
+      "bom-ref": "cpe:2.3:a::tough-cookie:2.4.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::psl:1.1.32::*:*:*:*:*:*",
+      "purl": "pkg:npm/psl@1.1.32",
+      "name": "psl",
+      "version": "1.1.32",
+      "bom-ref": "cpe:2.3:a::psl:1.1.32::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::punycode:1.4.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/punycode@1.4.1",
+      "name": "punycode",
+      "version": "1.4.1",
+      "bom-ref": "cpe:2.3:a::punycode:1.4.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::tunnel-agent:0.6.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/tunnel-agent@0.6.0",
+      "name": "tunnel-agent",
+      "version": "0.6.0",
+      "bom-ref": "cpe:2.3:a::tunnel-agent:0.6.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::safe-buffer:5.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/safe-buffer@5.1.2",
+      "name": "safe-buffer",
+      "version": "5.1.2",
+      "bom-ref": "cpe:2.3:a::safe-buffer:5.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::uuid:3.3.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/uuid@3.3.2",
+      "name": "uuid",
+      "version": "3.3.2",
+      "bom-ref": "cpe:2.3:a::uuid:3.3.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::request-progress:0.4.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/request-progress@0.4.0",
+      "name": "request-progress",
+      "version": "0.4.0",
+      "bom-ref": "cpe:2.3:a::request-progress:0.4.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::node-eta:0.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/node-eta@0.1.1",
+      "name": "node-eta",
+      "version": "0.1.1",
+      "bom-ref": "cpe:2.3:a::node-eta:0.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::throttleit:0.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/throttleit@0.0.2",
+      "name": "throttleit",
+      "version": "0.0.2",
+      "bom-ref": "cpe:2.3:a::throttleit:0.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::supports-color:5.5.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/supports-color@5.5.0",
+      "name": "supports-color",
+      "version": "5.5.0",
+      "bom-ref": "cpe:2.3:a::supports-color:5.5.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::tmp:0.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/tmp@0.1.0",
+      "name": "tmp",
+      "version": "0.1.0",
+      "bom-ref": "cpe:2.3:a::tmp:0.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::rimraf:2.6.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/rimraf@2.6.3",
+      "name": "rimraf",
+      "version": "2.6.3",
+      "bom-ref": "cpe:2.3:a::rimraf:2.6.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::glob:7.1.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/glob@7.1.3",
+      "name": "glob",
+      "version": "7.1.3",
+      "bom-ref": "cpe:2.3:a::glob:7.1.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::url:0.11.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/url@0.11.0",
+      "name": "url",
+      "version": "0.11.0",
+      "bom-ref": "cpe:2.3:a::url:0.11.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::punycode:1.3.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/punycode@1.3.2",
+      "name": "punycode",
+      "version": "1.3.2",
+      "bom-ref": "cpe:2.3:a::punycode:1.3.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::querystring:0.2.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/querystring@0.2.0",
+      "name": "querystring",
+      "version": "0.2.0",
+      "bom-ref": "cpe:2.3:a::querystring:0.2.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::yauzl:2.10.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/yauzl@2.10.0",
+      "name": "yauzl",
+      "version": "2.10.0",
+      "bom-ref": "cpe:2.3:a::yauzl:2.10.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::buffer-crc32:0.2.13::*:*:*:*:*:*",
+      "purl": "pkg:npm/buffer-crc32@0.2.13",
+      "name": "buffer-crc32",
+      "version": "0.2.13",
+      "bom-ref": "cpe:2.3:a::buffer-crc32:0.2.13::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::fd-slicer:1.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/fd-slicer@1.1.0",
+      "name": "fd-slicer",
+      "version": "1.1.0",
+      "bom-ref": "cpe:2.3:a::fd-slicer:1.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::pend:1.2.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/pend@1.2.0",
+      "name": "pend",
+      "version": "1.2.0",
+      "bom-ref": "cpe:2.3:a::pend:1.2.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::express:4.16.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/express@4.16.4",
+      "name": "express",
+      "version": "4.16.4",
+      "bom-ref": "cpe:2.3:a::express:4.16.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::accepts:1.3.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/accepts@1.3.5",
+      "name": "accepts",
+      "version": "1.3.5",
+      "bom-ref": "cpe:2.3:a::accepts:1.3.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::mime-types:2.1.21::*:*:*:*:*:*",
+      "purl": "pkg:npm/mime-types@2.1.21",
+      "name": "mime-types",
+      "version": "2.1.21",
+      "bom-ref": "cpe:2.3:a::mime-types:2.1.21::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::mime-db:1.37.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/mime-db@1.37.0",
+      "name": "mime-db",
+      "version": "1.37.0",
+      "bom-ref": "cpe:2.3:a::mime-db:1.37.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::negotiator:0.6.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/negotiator@0.6.1",
+      "name": "negotiator",
+      "version": "0.6.1",
+      "bom-ref": "cpe:2.3:a::negotiator:0.6.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::array-flatten:1.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/array-flatten@1.1.1",
+      "name": "array-flatten",
+      "version": "1.1.1",
+      "bom-ref": "cpe:2.3:a::array-flatten:1.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::body-parser:1.18.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/body-parser@1.18.3",
+      "name": "body-parser",
+      "version": "1.18.3",
+      "bom-ref": "cpe:2.3:a::body-parser:1.18.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::bytes:3.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/bytes@3.0.0",
+      "name": "bytes",
+      "version": "3.0.0",
+      "bom-ref": "cpe:2.3:a::bytes:3.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::content-type:1.0.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/content-type@1.0.4",
+      "name": "content-type",
+      "version": "1.0.4",
+      "bom-ref": "cpe:2.3:a::content-type:1.0.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::debug:2.6.9::*:*:*:*:*:*",
+      "purl": "pkg:npm/debug@2.6.9",
+      "name": "debug",
+      "version": "2.6.9",
+      "bom-ref": "cpe:2.3:a::debug:2.6.9::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::ms:2.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/ms@2.0.0",
+      "name": "ms",
+      "version": "2.0.0",
+      "bom-ref": "cpe:2.3:a::ms:2.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::depd:1.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/depd@1.1.2",
+      "name": "depd",
+      "version": "1.1.2",
+      "bom-ref": "cpe:2.3:a::depd:1.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::http-errors:1.6.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/http-errors@1.6.3",
+      "name": "http-errors",
+      "version": "1.6.3",
+      "bom-ref": "cpe:2.3:a::http-errors:1.6.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::depd:1.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/depd@1.1.2",
+      "name": "depd",
+      "version": "1.1.2",
+      "bom-ref": "cpe:2.3:a::depd:1.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::inherits:2.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/inherits@2.0.3",
+      "name": "inherits",
+      "version": "2.0.3",
+      "bom-ref": "cpe:2.3:a::inherits:2.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::setprototypeof:1.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/setprototypeof@1.1.0",
+      "name": "setprototypeof",
+      "version": "1.1.0",
+      "bom-ref": "cpe:2.3:a::setprototypeof:1.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::statuses:1.5.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/statuses@1.5.0",
+      "name": "statuses",
+      "version": "1.5.0",
+      "bom-ref": "cpe:2.3:a::statuses:1.5.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::iconv-lite:0.4.23::*:*:*:*:*:*",
+      "purl": "pkg:npm/iconv-lite@0.4.23",
+      "name": "iconv-lite",
+      "version": "0.4.23",
+      "bom-ref": "cpe:2.3:a::iconv-lite:0.4.23::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::safer-buffer:2.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/safer-buffer@2.1.2",
+      "name": "safer-buffer",
+      "version": "2.1.2",
+      "bom-ref": "cpe:2.3:a::safer-buffer:2.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::on-finished:2.3.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/on-finished@2.3.0",
+      "name": "on-finished",
+      "version": "2.3.0",
+      "bom-ref": "cpe:2.3:a::on-finished:2.3.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::ee-first:1.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/ee-first@1.1.1",
+      "name": "ee-first",
+      "version": "1.1.1",
+      "bom-ref": "cpe:2.3:a::ee-first:1.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::qs:6.5.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/qs@6.5.2",
+      "name": "qs",
+      "version": "6.5.2",
+      "bom-ref": "cpe:2.3:a::qs:6.5.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::raw-body:2.3.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/raw-body@2.3.3",
+      "name": "raw-body",
+      "version": "2.3.3",
+      "bom-ref": "cpe:2.3:a::raw-body:2.3.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::bytes:3.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/bytes@3.0.0",
+      "name": "bytes",
+      "version": "3.0.0",
+      "bom-ref": "cpe:2.3:a::bytes:3.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::http-errors:1.6.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/http-errors@1.6.3",
+      "name": "http-errors",
+      "version": "1.6.3",
+      "bom-ref": "cpe:2.3:a::http-errors:1.6.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::iconv-lite:0.4.23::*:*:*:*:*:*",
+      "purl": "pkg:npm/iconv-lite@0.4.23",
+      "name": "iconv-lite",
+      "version": "0.4.23",
+      "bom-ref": "cpe:2.3:a::iconv-lite:0.4.23::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::unpipe:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/unpipe@1.0.0",
+      "name": "unpipe",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::unpipe:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::type-is:1.6.16::*:*:*:*:*:*",
+      "purl": "pkg:npm/type-is@1.6.16",
+      "name": "type-is",
+      "version": "1.6.16",
+      "bom-ref": "cpe:2.3:a::type-is:1.6.16::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::media-typer:0.3.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/media-typer@0.3.0",
+      "name": "media-typer",
+      "version": "0.3.0",
+      "bom-ref": "cpe:2.3:a::media-typer:0.3.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::mime-types:2.1.21::*:*:*:*:*:*",
+      "purl": "pkg:npm/mime-types@2.1.21",
+      "name": "mime-types",
+      "version": "2.1.21",
+      "bom-ref": "cpe:2.3:a::mime-types:2.1.21::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::content-disposition:0.5.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/content-disposition@0.5.2",
+      "name": "content-disposition",
+      "version": "0.5.2",
+      "bom-ref": "cpe:2.3:a::content-disposition:0.5.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::content-type:1.0.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/content-type@1.0.4",
+      "name": "content-type",
+      "version": "1.0.4",
+      "bom-ref": "cpe:2.3:a::content-type:1.0.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::cookie:0.3.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/cookie@0.3.1",
+      "name": "cookie",
+      "version": "0.3.1",
+      "bom-ref": "cpe:2.3:a::cookie:0.3.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::cookie-signature:1.0.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/cookie-signature@1.0.6",
+      "name": "cookie-signature",
+      "version": "1.0.6",
+      "bom-ref": "cpe:2.3:a::cookie-signature:1.0.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::debug:2.6.9::*:*:*:*:*:*",
+      "purl": "pkg:npm/debug@2.6.9",
+      "name": "debug",
+      "version": "2.6.9",
+      "bom-ref": "cpe:2.3:a::debug:2.6.9::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::depd:1.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/depd@1.1.2",
+      "name": "depd",
+      "version": "1.1.2",
+      "bom-ref": "cpe:2.3:a::depd:1.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::encodeurl:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/encodeurl@1.0.2",
+      "name": "encodeurl",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::encodeurl:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::escape-html:1.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/escape-html@1.0.3",
+      "name": "escape-html",
+      "version": "1.0.3",
+      "bom-ref": "cpe:2.3:a::escape-html:1.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::etag:1.8.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/etag@1.8.1",
+      "name": "etag",
+      "version": "1.8.1",
+      "bom-ref": "cpe:2.3:a::etag:1.8.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::finalhandler:1.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/finalhandler@1.1.1",
+      "name": "finalhandler",
+      "version": "1.1.1",
+      "bom-ref": "cpe:2.3:a::finalhandler:1.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::debug:2.6.9::*:*:*:*:*:*",
+      "purl": "pkg:npm/debug@2.6.9",
+      "name": "debug",
+      "version": "2.6.9",
+      "bom-ref": "cpe:2.3:a::debug:2.6.9::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::encodeurl:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/encodeurl@1.0.2",
+      "name": "encodeurl",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::encodeurl:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::escape-html:1.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/escape-html@1.0.3",
+      "name": "escape-html",
+      "version": "1.0.3",
+      "bom-ref": "cpe:2.3:a::escape-html:1.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::on-finished:2.3.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/on-finished@2.3.0",
+      "name": "on-finished",
+      "version": "2.3.0",
+      "bom-ref": "cpe:2.3:a::on-finished:2.3.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::parseurl:1.3.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/parseurl@1.3.2",
+      "name": "parseurl",
+      "version": "1.3.2",
+      "bom-ref": "cpe:2.3:a::parseurl:1.3.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::statuses:1.4.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/statuses@1.4.0",
+      "name": "statuses",
+      "version": "1.4.0",
+      "bom-ref": "cpe:2.3:a::statuses:1.4.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::unpipe:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/unpipe@1.0.0",
+      "name": "unpipe",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::unpipe:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::fresh:0.5.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/fresh@0.5.2",
+      "name": "fresh",
+      "version": "0.5.2",
+      "bom-ref": "cpe:2.3:a::fresh:0.5.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::merge-descriptors:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/merge-descriptors@1.0.1",
+      "name": "merge-descriptors",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::merge-descriptors:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::methods:1.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/methods@1.1.2",
+      "name": "methods",
+      "version": "1.1.2",
+      "bom-ref": "cpe:2.3:a::methods:1.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::on-finished:2.3.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/on-finished@2.3.0",
+      "name": "on-finished",
+      "version": "2.3.0",
+      "bom-ref": "cpe:2.3:a::on-finished:2.3.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::parseurl:1.3.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/parseurl@1.3.2",
+      "name": "parseurl",
+      "version": "1.3.2",
+      "bom-ref": "cpe:2.3:a::parseurl:1.3.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::path-to-regexp:0.1.7::*:*:*:*:*:*",
+      "purl": "pkg:npm/path-to-regexp@0.1.7",
+      "name": "path-to-regexp",
+      "version": "0.1.7",
+      "bom-ref": "cpe:2.3:a::path-to-regexp:0.1.7::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::proxy-addr:2.0.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/proxy-addr@2.0.4",
+      "name": "proxy-addr",
+      "version": "2.0.4",
+      "bom-ref": "cpe:2.3:a::proxy-addr:2.0.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::forwarded:0.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/forwarded@0.1.2",
+      "name": "forwarded",
+      "version": "0.1.2",
+      "bom-ref": "cpe:2.3:a::forwarded:0.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::ipaddr.js:1.8.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/ipaddr.js@1.8.0",
+      "name": "ipaddr.js",
+      "version": "1.8.0",
+      "bom-ref": "cpe:2.3:a::ipaddr.js:1.8.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::qs:6.5.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/qs@6.5.2",
+      "name": "qs",
+      "version": "6.5.2",
+      "bom-ref": "cpe:2.3:a::qs:6.5.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::range-parser:1.2.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/range-parser@1.2.0",
+      "name": "range-parser",
+      "version": "1.2.0",
+      "bom-ref": "cpe:2.3:a::range-parser:1.2.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::safe-buffer:5.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/safe-buffer@5.1.2",
+      "name": "safe-buffer",
+      "version": "5.1.2",
+      "bom-ref": "cpe:2.3:a::safe-buffer:5.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::send:0.16.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/send@0.16.2",
+      "name": "send",
+      "version": "0.16.2",
+      "bom-ref": "cpe:2.3:a::send:0.16.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::debug:2.6.9::*:*:*:*:*:*",
+      "purl": "pkg:npm/debug@2.6.9",
+      "name": "debug",
+      "version": "2.6.9",
+      "bom-ref": "cpe:2.3:a::debug:2.6.9::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::depd:1.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/depd@1.1.2",
+      "name": "depd",
+      "version": "1.1.2",
+      "bom-ref": "cpe:2.3:a::depd:1.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::destroy:1.0.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/destroy@1.0.4",
+      "name": "destroy",
+      "version": "1.0.4",
+      "bom-ref": "cpe:2.3:a::destroy:1.0.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::encodeurl:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/encodeurl@1.0.2",
+      "name": "encodeurl",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::encodeurl:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::escape-html:1.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/escape-html@1.0.3",
+      "name": "escape-html",
+      "version": "1.0.3",
+      "bom-ref": "cpe:2.3:a::escape-html:1.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::etag:1.8.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/etag@1.8.1",
+      "name": "etag",
+      "version": "1.8.1",
+      "bom-ref": "cpe:2.3:a::etag:1.8.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::fresh:0.5.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/fresh@0.5.2",
+      "name": "fresh",
+      "version": "0.5.2",
+      "bom-ref": "cpe:2.3:a::fresh:0.5.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::http-errors:1.6.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/http-errors@1.6.3",
+      "name": "http-errors",
+      "version": "1.6.3",
+      "bom-ref": "cpe:2.3:a::http-errors:1.6.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::mime:1.4.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/mime@1.4.1",
+      "name": "mime",
+      "version": "1.4.1",
+      "bom-ref": "cpe:2.3:a::mime:1.4.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::ms:2.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/ms@2.0.0",
+      "name": "ms",
+      "version": "2.0.0",
+      "bom-ref": "cpe:2.3:a::ms:2.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::on-finished:2.3.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/on-finished@2.3.0",
+      "name": "on-finished",
+      "version": "2.3.0",
+      "bom-ref": "cpe:2.3:a::on-finished:2.3.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::range-parser:1.2.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/range-parser@1.2.0",
+      "name": "range-parser",
+      "version": "1.2.0",
+      "bom-ref": "cpe:2.3:a::range-parser:1.2.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::statuses:1.4.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/statuses@1.4.0",
+      "name": "statuses",
+      "version": "1.4.0",
+      "bom-ref": "cpe:2.3:a::statuses:1.4.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::serve-static:1.13.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/serve-static@1.13.2",
+      "name": "serve-static",
+      "version": "1.13.2",
+      "bom-ref": "cpe:2.3:a::serve-static:1.13.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::encodeurl:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/encodeurl@1.0.2",
+      "name": "encodeurl",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::encodeurl:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::escape-html:1.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/escape-html@1.0.3",
+      "name": "escape-html",
+      "version": "1.0.3",
+      "bom-ref": "cpe:2.3:a::escape-html:1.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::parseurl:1.3.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/parseurl@1.3.2",
+      "name": "parseurl",
+      "version": "1.3.2",
+      "bom-ref": "cpe:2.3:a::parseurl:1.3.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::send:0.16.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/send@0.16.2",
+      "name": "send",
+      "version": "0.16.2",
+      "bom-ref": "cpe:2.3:a::send:0.16.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::setprototypeof:1.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/setprototypeof@1.1.0",
+      "name": "setprototypeof",
+      "version": "1.1.0",
+      "bom-ref": "cpe:2.3:a::setprototypeof:1.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::statuses:1.4.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/statuses@1.4.0",
+      "name": "statuses",
+      "version": "1.4.0",
+      "bom-ref": "cpe:2.3:a::statuses:1.4.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::type-is:1.6.16::*:*:*:*:*:*",
+      "purl": "pkg:npm/type-is@1.6.16",
+      "name": "type-is",
+      "version": "1.6.16",
+      "bom-ref": "cpe:2.3:a::type-is:1.6.16::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::utils-merge:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/utils-merge@1.0.1",
+      "name": "utils-merge",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::utils-merge:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::vary:1.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/vary@1.1.2",
+      "name": "vary",
+      "version": "1.1.2",
+      "bom-ref": "cpe:2.3:a::vary:1.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::express-session:1.15.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/express-session@1.15.6",
+      "name": "express-session",
+      "version": "1.15.6",
+      "bom-ref": "cpe:2.3:a::express-session:1.15.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::cookie:0.3.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/cookie@0.3.1",
+      "name": "cookie",
+      "version": "0.3.1",
+      "bom-ref": "cpe:2.3:a::cookie:0.3.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::cookie-signature:1.0.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/cookie-signature@1.0.6",
+      "name": "cookie-signature",
+      "version": "1.0.6",
+      "bom-ref": "cpe:2.3:a::cookie-signature:1.0.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::crc:3.4.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/crc@3.4.4",
+      "name": "crc",
+      "version": "3.4.4",
+      "bom-ref": "cpe:2.3:a::crc:3.4.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::debug:2.6.9::*:*:*:*:*:*",
+      "purl": "pkg:npm/debug@2.6.9",
+      "name": "debug",
+      "version": "2.6.9",
+      "bom-ref": "cpe:2.3:a::debug:2.6.9::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::ms:2.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/ms@2.0.0",
+      "name": "ms",
+      "version": "2.0.0",
+      "bom-ref": "cpe:2.3:a::ms:2.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::depd:1.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/depd@1.1.2",
+      "name": "depd",
+      "version": "1.1.2",
+      "bom-ref": "cpe:2.3:a::depd:1.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::on-headers:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/on-headers@1.0.1",
+      "name": "on-headers",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::on-headers:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::parseurl:1.3.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/parseurl@1.3.2",
+      "name": "parseurl",
+      "version": "1.3.2",
+      "bom-ref": "cpe:2.3:a::parseurl:1.3.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::uid-safe:2.1.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/uid-safe@2.1.5",
+      "name": "uid-safe",
+      "version": "2.1.5",
+      "bom-ref": "cpe:2.3:a::uid-safe:2.1.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::random-bytes:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/random-bytes@1.0.0",
+      "name": "random-bytes",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::random-bytes:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::utils-merge:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/utils-merge@1.0.1",
+      "name": "utils-merge",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::utils-merge:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::forever:2.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/forever@2.0.0",
+      "name": "forever",
+      "version": "2.0.0",
+      "bom-ref": "cpe:2.3:a::forever:2.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::async:1.5.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/async@1.5.2",
+      "name": "async",
+      "version": "1.5.2",
+      "bom-ref": "cpe:2.3:a::async:1.5.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::cliff:0.1.10::*:*:*:*:*:*",
+      "purl": "pkg:npm/cliff@0.1.10",
+      "name": "cliff",
+      "version": "0.1.10",
+      "bom-ref": "cpe:2.3:a::cliff:0.1.10::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::colors:1.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/colors@1.0.3",
+      "name": "colors",
+      "version": "1.0.3",
+      "bom-ref": "cpe:2.3:a::colors:1.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::eyes:0.1.8::*:*:*:*:*:*",
+      "purl": "pkg:npm/eyes@0.1.8",
+      "name": "eyes",
+      "version": "0.1.8",
+      "bom-ref": "cpe:2.3:a::eyes:0.1.8::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::winston:0.8.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/winston@0.8.3",
+      "name": "winston",
+      "version": "0.8.3",
+      "bom-ref": "cpe:2.3:a::winston:0.8.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::async:0.2.10::*:*:*:*:*:*",
+      "purl": "pkg:npm/async@0.2.10",
+      "name": "async",
+      "version": "0.2.10",
+      "bom-ref": "cpe:2.3:a::async:0.2.10::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::colors:0.6.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/colors@0.6.2",
+      "name": "colors",
+      "version": "0.6.2",
+      "bom-ref": "cpe:2.3:a::colors:0.6.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::cycle:1.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/cycle@1.0.3",
+      "name": "cycle",
+      "version": "1.0.3",
+      "bom-ref": "cpe:2.3:a::cycle:1.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::eyes:0.1.8::*:*:*:*:*:*",
+      "purl": "pkg:npm/eyes@0.1.8",
+      "name": "eyes",
+      "version": "0.1.8",
+      "bom-ref": "cpe:2.3:a::eyes:0.1.8::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::isstream:0.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/isstream@0.1.2",
+      "name": "isstream",
+      "version": "0.1.2",
+      "bom-ref": "cpe:2.3:a::isstream:0.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::pkginfo:0.3.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/pkginfo@0.3.1",
+      "name": "pkginfo",
+      "version": "0.3.1",
+      "bom-ref": "cpe:2.3:a::pkginfo:0.3.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::stack-trace:0.0.10::*:*:*:*:*:*",
+      "purl": "pkg:npm/stack-trace@0.0.10",
+      "name": "stack-trace",
+      "version": "0.0.10",
+      "bom-ref": "cpe:2.3:a::stack-trace:0.0.10::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::clone:2.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/clone@2.1.2",
+      "name": "clone",
+      "version": "2.1.2",
+      "bom-ref": "cpe:2.3:a::clone:2.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::colors:0.6.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/colors@0.6.2",
+      "name": "colors",
+      "version": "0.6.2",
+      "bom-ref": "cpe:2.3:a::colors:0.6.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::flatiron:0.4.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/flatiron@0.4.3",
+      "name": "flatiron",
+      "version": "0.4.3",
+      "bom-ref": "cpe:2.3:a::flatiron:0.4.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::broadway:0.3.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/broadway@0.3.6",
+      "name": "broadway",
+      "version": "0.3.6",
+      "bom-ref": "cpe:2.3:a::broadway:0.3.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::cliff:0.1.9::*:*:*:*:*:*",
+      "purl": "pkg:npm/cliff@0.1.9",
+      "name": "cliff",
+      "version": "0.1.9",
+      "bom-ref": "cpe:2.3:a::cliff:0.1.9::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::colors:0.6.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/colors@0.6.2",
+      "name": "colors",
+      "version": "0.6.2",
+      "bom-ref": "cpe:2.3:a::colors:0.6.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::eyes:0.1.8::*:*:*:*:*:*",
+      "purl": "pkg:npm/eyes@0.1.8",
+      "name": "eyes",
+      "version": "0.1.8",
+      "bom-ref": "cpe:2.3:a::eyes:0.1.8::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::winston:0.8.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/winston@0.8.3",
+      "name": "winston",
+      "version": "0.8.3",
+      "bom-ref": "cpe:2.3:a::winston:0.8.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::eventemitter2:0.4.14::*:*:*:*:*:*",
+      "purl": "pkg:npm/eventemitter2@0.4.14",
+      "name": "eventemitter2",
+      "version": "0.4.14",
+      "bom-ref": "cpe:2.3:a::eventemitter2:0.4.14::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::nconf:0.6.9::*:*:*:*:*:*",
+      "purl": "pkg:npm/nconf@0.6.9",
+      "name": "nconf",
+      "version": "0.6.9",
+      "bom-ref": "cpe:2.3:a::nconf:0.6.9::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::async:0.2.9::*:*:*:*:*:*",
+      "purl": "pkg:npm/async@0.2.9",
+      "name": "async",
+      "version": "0.2.9",
+      "bom-ref": "cpe:2.3:a::async:0.2.9::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::ini:1.3.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/ini@1.3.5",
+      "name": "ini",
+      "version": "1.3.5",
+      "bom-ref": "cpe:2.3:a::ini:1.3.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::optimist:0.6.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/optimist@0.6.0",
+      "name": "optimist",
+      "version": "0.6.0",
+      "bom-ref": "cpe:2.3:a::optimist:0.6.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::minimist:0.0.10::*:*:*:*:*:*",
+      "purl": "pkg:npm/minimist@0.0.10",
+      "name": "minimist",
+      "version": "0.0.10",
+      "bom-ref": "cpe:2.3:a::minimist:0.0.10::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::wordwrap:0.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/wordwrap@0.0.3",
+      "name": "wordwrap",
+      "version": "0.0.3",
+      "bom-ref": "cpe:2.3:a::wordwrap:0.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::utile:0.2.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/utile@0.2.1",
+      "name": "utile",
+      "version": "0.2.1",
+      "bom-ref": "cpe:2.3:a::utile:0.2.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::async:0.2.10::*:*:*:*:*:*",
+      "purl": "pkg:npm/async@0.2.10",
+      "name": "async",
+      "version": "0.2.10",
+      "bom-ref": "cpe:2.3:a::async:0.2.10::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::deep-equal:2.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/deep-equal@2.0.2",
+      "name": "deep-equal",
+      "version": "2.0.2",
+      "bom-ref": "cpe:2.3:a::deep-equal:2.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::es-abstract:1.17.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/es-abstract@1.17.5",
+      "name": "es-abstract",
+      "version": "1.17.5",
+      "bom-ref": "cpe:2.3:a::es-abstract:1.17.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::es-to-primitive:1.2.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/es-to-primitive@1.2.1",
+      "name": "es-to-primitive",
+      "version": "1.2.1",
+      "bom-ref": "cpe:2.3:a::es-to-primitive:1.2.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-callable:1.1.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-callable@1.1.5",
+      "name": "is-callable",
+      "version": "1.1.5",
+      "bom-ref": "cpe:2.3:a::is-callable:1.1.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-date-object:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-date-object@1.0.2",
+      "name": "is-date-object",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::is-date-object:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-symbol:1.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-symbol@1.0.3",
+      "name": "is-symbol",
+      "version": "1.0.3",
+      "bom-ref": "cpe:2.3:a::is-symbol:1.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::has-symbols:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/has-symbols@1.0.1",
+      "name": "has-symbols",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::has-symbols:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::function-bind:1.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/function-bind@1.1.1",
+      "name": "function-bind",
+      "version": "1.1.1",
+      "bom-ref": "cpe:2.3:a::function-bind:1.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::has:1.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/has@1.0.3",
+      "name": "has",
+      "version": "1.0.3",
+      "bom-ref": "cpe:2.3:a::has:1.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::function-bind:1.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/function-bind@1.1.1",
+      "name": "function-bind",
+      "version": "1.1.1",
+      "bom-ref": "cpe:2.3:a::function-bind:1.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::has-symbols:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/has-symbols@1.0.1",
+      "name": "has-symbols",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::has-symbols:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-callable:1.1.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-callable@1.1.5",
+      "name": "is-callable",
+      "version": "1.1.5",
+      "bom-ref": "cpe:2.3:a::is-callable:1.1.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-regex:1.0.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-regex@1.0.5",
+      "name": "is-regex",
+      "version": "1.0.5",
+      "bom-ref": "cpe:2.3:a::is-regex:1.0.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::has:1.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/has@1.0.3",
+      "name": "has",
+      "version": "1.0.3",
+      "bom-ref": "cpe:2.3:a::has:1.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::object-inspect:1.7.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/object-inspect@1.7.0",
+      "name": "object-inspect",
+      "version": "1.7.0",
+      "bom-ref": "cpe:2.3:a::object-inspect:1.7.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::object-keys:1.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/object-keys@1.1.1",
+      "name": "object-keys",
+      "version": "1.1.1",
+      "bom-ref": "cpe:2.3:a::object-keys:1.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::object.assign:4.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/object.assign@4.1.0",
+      "name": "object.assign",
+      "version": "4.1.0",
+      "bom-ref": "cpe:2.3:a::object.assign:4.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::define-properties:1.1.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/define-properties@1.1.3",
+      "name": "define-properties",
+      "version": "1.1.3",
+      "bom-ref": "cpe:2.3:a::define-properties:1.1.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::object-keys:1.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/object-keys@1.1.1",
+      "name": "object-keys",
+      "version": "1.1.1",
+      "bom-ref": "cpe:2.3:a::object-keys:1.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::function-bind:1.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/function-bind@1.1.1",
+      "name": "function-bind",
+      "version": "1.1.1",
+      "bom-ref": "cpe:2.3:a::function-bind:1.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::has-symbols:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/has-symbols@1.0.1",
+      "name": "has-symbols",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::has-symbols:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::object-keys:1.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/object-keys@1.1.1",
+      "name": "object-keys",
+      "version": "1.1.1",
+      "bom-ref": "cpe:2.3:a::object-keys:1.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::string.prototype.trimleft:2.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/string.prototype.trimleft@2.1.2",
+      "name": "string.prototype.trimleft",
+      "version": "2.1.2",
+      "bom-ref": "cpe:2.3:a::string.prototype.trimleft:2.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::define-properties:1.1.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/define-properties@1.1.3",
+      "name": "define-properties",
+      "version": "1.1.3",
+      "bom-ref": "cpe:2.3:a::define-properties:1.1.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::es-abstract:1.17.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/es-abstract@1.17.5",
+      "name": "es-abstract",
+      "version": "1.17.5",
+      "bom-ref": "cpe:2.3:a::es-abstract:1.17.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::string.prototype.trimright:2.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/string.prototype.trimright@2.1.2",
+      "name": "string.prototype.trimright",
+      "version": "2.1.2",
+      "bom-ref": "cpe:2.3:a::string.prototype.trimright:2.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::define-properties:1.1.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/define-properties@1.1.3",
+      "name": "define-properties",
+      "version": "1.1.3",
+      "bom-ref": "cpe:2.3:a::define-properties:1.1.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::es-abstract:1.17.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/es-abstract@1.17.5",
+      "name": "es-abstract",
+      "version": "1.17.5",
+      "bom-ref": "cpe:2.3:a::es-abstract:1.17.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::string.prototype.trimend:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/string.prototype.trimend@1.0.0",
+      "name": "string.prototype.trimend",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::string.prototype.trimend:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::define-properties:1.1.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/define-properties@1.1.3",
+      "name": "define-properties",
+      "version": "1.1.3",
+      "bom-ref": "cpe:2.3:a::define-properties:1.1.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::es-abstract:1.17.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/es-abstract@1.17.5",
+      "name": "es-abstract",
+      "version": "1.17.5",
+      "bom-ref": "cpe:2.3:a::es-abstract:1.17.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::string.prototype.trimstart:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/string.prototype.trimstart@1.0.0",
+      "name": "string.prototype.trimstart",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::string.prototype.trimstart:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::define-properties:1.1.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/define-properties@1.1.3",
+      "name": "define-properties",
+      "version": "1.1.3",
+      "bom-ref": "cpe:2.3:a::define-properties:1.1.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::es-abstract:1.17.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/es-abstract@1.17.5",
+      "name": "es-abstract",
+      "version": "1.17.5",
+      "bom-ref": "cpe:2.3:a::es-abstract:1.17.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::es-get-iterator:1.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/es-get-iterator@1.1.0",
+      "name": "es-get-iterator",
+      "version": "1.1.0",
+      "bom-ref": "cpe:2.3:a::es-get-iterator:1.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::es-abstract:1.17.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/es-abstract@1.17.5",
+      "name": "es-abstract",
+      "version": "1.17.5",
+      "bom-ref": "cpe:2.3:a::es-abstract:1.17.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::has-symbols:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/has-symbols@1.0.1",
+      "name": "has-symbols",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::has-symbols:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-arguments:1.0.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-arguments@1.0.4",
+      "name": "is-arguments",
+      "version": "1.0.4",
+      "bom-ref": "cpe:2.3:a::is-arguments:1.0.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-map:2.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-map@2.0.1",
+      "name": "is-map",
+      "version": "2.0.1",
+      "bom-ref": "cpe:2.3:a::is-map:2.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-set:2.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-set@2.0.1",
+      "name": "is-set",
+      "version": "2.0.1",
+      "bom-ref": "cpe:2.3:a::is-set:2.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-string:1.0.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-string@1.0.5",
+      "name": "is-string",
+      "version": "1.0.5",
+      "bom-ref": "cpe:2.3:a::is-string:1.0.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::isarray:2.0.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/isarray@2.0.5",
+      "name": "isarray",
+      "version": "2.0.5",
+      "bom-ref": "cpe:2.3:a::isarray:2.0.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-arguments:1.0.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-arguments@1.0.4",
+      "name": "is-arguments",
+      "version": "1.0.4",
+      "bom-ref": "cpe:2.3:a::is-arguments:1.0.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-date-object:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-date-object@1.0.2",
+      "name": "is-date-object",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::is-date-object:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-regex:1.0.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-regex@1.0.5",
+      "name": "is-regex",
+      "version": "1.0.5",
+      "bom-ref": "cpe:2.3:a::is-regex:1.0.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::isarray:2.0.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/isarray@2.0.5",
+      "name": "isarray",
+      "version": "2.0.5",
+      "bom-ref": "cpe:2.3:a::isarray:2.0.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::object-is:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/object-is@1.0.2",
+      "name": "object-is",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::object-is:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::object-keys:1.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/object-keys@1.1.1",
+      "name": "object-keys",
+      "version": "1.1.1",
+      "bom-ref": "cpe:2.3:a::object-keys:1.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::regexp.prototype.flags:1.3.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/regexp.prototype.flags@1.3.0",
+      "name": "regexp.prototype.flags",
+      "version": "1.3.0",
+      "bom-ref": "cpe:2.3:a::regexp.prototype.flags:1.3.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::define-properties:1.1.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/define-properties@1.1.3",
+      "name": "define-properties",
+      "version": "1.1.3",
+      "bom-ref": "cpe:2.3:a::define-properties:1.1.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::es-abstract:1.17.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/es-abstract@1.17.5",
+      "name": "es-abstract",
+      "version": "1.17.5",
+      "bom-ref": "cpe:2.3:a::es-abstract:1.17.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::side-channel:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/side-channel@1.0.2",
+      "name": "side-channel",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::side-channel:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::es-abstract:1.17.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/es-abstract@1.17.5",
+      "name": "es-abstract",
+      "version": "1.17.5",
+      "bom-ref": "cpe:2.3:a::es-abstract:1.17.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::object-inspect:1.7.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/object-inspect@1.7.0",
+      "name": "object-inspect",
+      "version": "1.7.0",
+      "bom-ref": "cpe:2.3:a::object-inspect:1.7.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::which-boxed-primitive:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/which-boxed-primitive@1.0.1",
+      "name": "which-boxed-primitive",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::which-boxed-primitive:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-bigint:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-bigint@1.0.0",
+      "name": "is-bigint",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::is-bigint:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-boolean-object:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-boolean-object@1.0.1",
+      "name": "is-boolean-object",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::is-boolean-object:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-number-object:1.0.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-number-object@1.0.4",
+      "name": "is-number-object",
+      "version": "1.0.4",
+      "bom-ref": "cpe:2.3:a::is-number-object:1.0.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-string:1.0.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-string@1.0.5",
+      "name": "is-string",
+      "version": "1.0.5",
+      "bom-ref": "cpe:2.3:a::is-string:1.0.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-symbol:1.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-symbol@1.0.3",
+      "name": "is-symbol",
+      "version": "1.0.3",
+      "bom-ref": "cpe:2.3:a::is-symbol:1.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::which-collection:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/which-collection@1.0.1",
+      "name": "which-collection",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::which-collection:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-map:2.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-map@2.0.1",
+      "name": "is-map",
+      "version": "2.0.1",
+      "bom-ref": "cpe:2.3:a::is-map:2.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-set:2.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-set@2.0.1",
+      "name": "is-set",
+      "version": "2.0.1",
+      "bom-ref": "cpe:2.3:a::is-set:2.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-weakmap:2.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-weakmap@2.0.1",
+      "name": "is-weakmap",
+      "version": "2.0.1",
+      "bom-ref": "cpe:2.3:a::is-weakmap:2.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-weakset:2.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-weakset@2.0.1",
+      "name": "is-weakset",
+      "version": "2.0.1",
+      "bom-ref": "cpe:2.3:a::is-weakset:2.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::which-typed-array:1.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/which-typed-array@1.1.1",
+      "name": "which-typed-array",
+      "version": "1.1.1",
+      "bom-ref": "cpe:2.3:a::which-typed-array:1.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::available-typed-arrays:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/available-typed-arrays@1.0.2",
+      "name": "available-typed-arrays",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::available-typed-arrays:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::array-filter:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/array-filter@1.0.0",
+      "name": "array-filter",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::array-filter:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::es-abstract:1.17.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/es-abstract@1.17.5",
+      "name": "es-abstract",
+      "version": "1.17.5",
+      "bom-ref": "cpe:2.3:a::es-abstract:1.17.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::function-bind:1.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/function-bind@1.1.1",
+      "name": "function-bind",
+      "version": "1.1.1",
+      "bom-ref": "cpe:2.3:a::function-bind:1.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::has-symbols:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/has-symbols@1.0.1",
+      "name": "has-symbols",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::has-symbols:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-typed-array:1.1.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-typed-array@1.1.3",
+      "name": "is-typed-array",
+      "version": "1.1.3",
+      "bom-ref": "cpe:2.3:a::is-typed-array:1.1.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::available-typed-arrays:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/available-typed-arrays@1.0.2",
+      "name": "available-typed-arrays",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::available-typed-arrays:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::es-abstract:1.17.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/es-abstract@1.17.5",
+      "name": "es-abstract",
+      "version": "1.17.5",
+      "bom-ref": "cpe:2.3:a::es-abstract:1.17.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::foreach:2.0.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/foreach@2.0.5",
+      "name": "foreach",
+      "version": "2.0.5",
+      "bom-ref": "cpe:2.3:a::foreach:2.0.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::has-symbols:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/has-symbols@1.0.1",
+      "name": "has-symbols",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::has-symbols:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::i:0.3.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/i@0.3.6",
+      "name": "i",
+      "version": "0.3.6",
+      "bom-ref": "cpe:2.3:a::i:0.3.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::mkdirp:0.5.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/mkdirp@0.5.1",
+      "name": "mkdirp",
+      "version": "0.5.1",
+      "bom-ref": "cpe:2.3:a::mkdirp:0.5.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::minimist:0.0.8::*:*:*:*:*:*",
+      "purl": "pkg:npm/minimist@0.0.8",
+      "name": "minimist",
+      "version": "0.0.8",
+      "bom-ref": "cpe:2.3:a::minimist:0.0.8::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::ncp:0.4.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/ncp@0.4.2",
+      "name": "ncp",
+      "version": "0.4.2",
+      "bom-ref": "cpe:2.3:a::ncp:0.4.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::rimraf:2.6.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/rimraf@2.6.3",
+      "name": "rimraf",
+      "version": "2.6.3",
+      "bom-ref": "cpe:2.3:a::rimraf:2.6.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::glob:7.1.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/glob@7.1.3",
+      "name": "glob",
+      "version": "7.1.3",
+      "bom-ref": "cpe:2.3:a::glob:7.1.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::fs.realpath:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/fs.realpath@1.0.0",
+      "name": "fs.realpath",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::fs.realpath:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::inflight:1.0.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/inflight@1.0.6",
+      "name": "inflight",
+      "version": "1.0.6",
+      "bom-ref": "cpe:2.3:a::inflight:1.0.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::once:1.4.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/once@1.4.0",
+      "name": "once",
+      "version": "1.4.0",
+      "bom-ref": "cpe:2.3:a::once:1.4.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::wrappy:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/wrappy@1.0.2",
+      "name": "wrappy",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::wrappy:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::wrappy:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/wrappy@1.0.2",
+      "name": "wrappy",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::wrappy:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::inherits:2.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/inherits@2.0.3",
+      "name": "inherits",
+      "version": "2.0.3",
+      "bom-ref": "cpe:2.3:a::inherits:2.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::minimatch:3.0.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/minimatch@3.0.4",
+      "name": "minimatch",
+      "version": "3.0.4",
+      "bom-ref": "cpe:2.3:a::minimatch:3.0.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::brace-expansion:1.1.11::*:*:*:*:*:*",
+      "purl": "pkg:npm/brace-expansion@1.1.11",
+      "name": "brace-expansion",
+      "version": "1.1.11",
+      "bom-ref": "cpe:2.3:a::brace-expansion:1.1.11::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::balanced-match:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/balanced-match@1.0.0",
+      "name": "balanced-match",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::balanced-match:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::concat-map:0.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/concat-map@0.0.1",
+      "name": "concat-map",
+      "version": "0.0.1",
+      "bom-ref": "cpe:2.3:a::concat-map:0.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::once:1.4.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/once@1.4.0",
+      "name": "once",
+      "version": "1.4.0",
+      "bom-ref": "cpe:2.3:a::once:1.4.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::path-is-absolute:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/path-is-absolute@1.0.1",
+      "name": "path-is-absolute",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::path-is-absolute:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::winston:0.8.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/winston@0.8.0",
+      "name": "winston",
+      "version": "0.8.0",
+      "bom-ref": "cpe:2.3:a::winston:0.8.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::async:0.2.10::*:*:*:*:*:*",
+      "purl": "pkg:npm/async@0.2.10",
+      "name": "async",
+      "version": "0.2.10",
+      "bom-ref": "cpe:2.3:a::async:0.2.10::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::colors:0.6.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/colors@0.6.2",
+      "name": "colors",
+      "version": "0.6.2",
+      "bom-ref": "cpe:2.3:a::colors:0.6.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::cycle:1.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/cycle@1.0.3",
+      "name": "cycle",
+      "version": "1.0.3",
+      "bom-ref": "cpe:2.3:a::cycle:1.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::eyes:0.1.8::*:*:*:*:*:*",
+      "purl": "pkg:npm/eyes@0.1.8",
+      "name": "eyes",
+      "version": "0.1.8",
+      "bom-ref": "cpe:2.3:a::eyes:0.1.8::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::pkginfo:0.3.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/pkginfo@0.3.1",
+      "name": "pkginfo",
+      "version": "0.3.1",
+      "bom-ref": "cpe:2.3:a::pkginfo:0.3.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::stack-trace:0.0.10::*:*:*:*:*:*",
+      "purl": "pkg:npm/stack-trace@0.0.10",
+      "name": "stack-trace",
+      "version": "0.0.10",
+      "bom-ref": "cpe:2.3:a::stack-trace:0.0.10::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::director:1.2.7::*:*:*:*:*:*",
+      "purl": "pkg:npm/director@1.2.7",
+      "name": "director",
+      "version": "1.2.7",
+      "bom-ref": "cpe:2.3:a::director:1.2.7::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::optimist:0.6.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/optimist@0.6.0",
+      "name": "optimist",
+      "version": "0.6.0",
+      "bom-ref": "cpe:2.3:a::optimist:0.6.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::minimist:0.0.10::*:*:*:*:*:*",
+      "purl": "pkg:npm/minimist@0.0.10",
+      "name": "minimist",
+      "version": "0.0.10",
+      "bom-ref": "cpe:2.3:a::minimist:0.0.10::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::wordwrap:0.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/wordwrap@0.0.3",
+      "name": "wordwrap",
+      "version": "0.0.3",
+      "bom-ref": "cpe:2.3:a::wordwrap:0.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::prompt:0.2.14::*:*:*:*:*:*",
+      "purl": "pkg:npm/prompt@0.2.14",
+      "name": "prompt",
+      "version": "0.2.14",
+      "bom-ref": "cpe:2.3:a::prompt:0.2.14::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::pkginfo:0.3.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/pkginfo@0.3.1",
+      "name": "pkginfo",
+      "version": "0.3.1",
+      "bom-ref": "cpe:2.3:a::pkginfo:0.3.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::read:1.0.7::*:*:*:*:*:*",
+      "purl": "pkg:npm/read@1.0.7",
+      "name": "read",
+      "version": "1.0.7",
+      "bom-ref": "cpe:2.3:a::read:1.0.7::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::mute-stream:0.0.8::*:*:*:*:*:*",
+      "purl": "pkg:npm/mute-stream@0.0.8",
+      "name": "mute-stream",
+      "version": "0.0.8",
+      "bom-ref": "cpe:2.3:a::mute-stream:0.0.8::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::revalidator:0.1.8::*:*:*:*:*:*",
+      "purl": "pkg:npm/revalidator@0.1.8",
+      "name": "revalidator",
+      "version": "0.1.8",
+      "bom-ref": "cpe:2.3:a::revalidator:0.1.8::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::utile:0.2.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/utile@0.2.1",
+      "name": "utile",
+      "version": "0.2.1",
+      "bom-ref": "cpe:2.3:a::utile:0.2.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::async:0.2.10::*:*:*:*:*:*",
+      "purl": "pkg:npm/async@0.2.10",
+      "name": "async",
+      "version": "0.2.10",
+      "bom-ref": "cpe:2.3:a::async:0.2.10::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::deep-equal:2.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/deep-equal@2.0.2",
+      "name": "deep-equal",
+      "version": "2.0.2",
+      "bom-ref": "cpe:2.3:a::deep-equal:2.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::i:0.3.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/i@0.3.6",
+      "name": "i",
+      "version": "0.3.6",
+      "bom-ref": "cpe:2.3:a::i:0.3.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::mkdirp:0.5.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/mkdirp@0.5.1",
+      "name": "mkdirp",
+      "version": "0.5.1",
+      "bom-ref": "cpe:2.3:a::mkdirp:0.5.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::ncp:0.4.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/ncp@0.4.2",
+      "name": "ncp",
+      "version": "0.4.2",
+      "bom-ref": "cpe:2.3:a::ncp:0.4.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::rimraf:2.6.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/rimraf@2.6.3",
+      "name": "rimraf",
+      "version": "2.6.3",
+      "bom-ref": "cpe:2.3:a::rimraf:2.6.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::winston:0.8.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/winston@0.8.3",
+      "name": "winston",
+      "version": "0.8.3",
+      "bom-ref": "cpe:2.3:a::winston:0.8.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::forever-monitor:2.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/forever-monitor@2.0.0",
+      "name": "forever-monitor",
+      "version": "2.0.0",
+      "bom-ref": "cpe:2.3:a::forever-monitor:2.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::broadway:0.3.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/broadway@0.3.6",
+      "name": "broadway",
+      "version": "0.3.6",
+      "bom-ref": "cpe:2.3:a::broadway:0.3.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::chokidar:2.1.8::*:*:*:*:*:*",
+      "purl": "pkg:npm/chokidar@2.1.8",
+      "name": "chokidar",
+      "version": "2.1.8",
+      "bom-ref": "cpe:2.3:a::chokidar:2.1.8::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::anymatch:2.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/anymatch@2.0.0",
+      "name": "anymatch",
+      "version": "2.0.0",
+      "bom-ref": "cpe:2.3:a::anymatch:2.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::micromatch:3.1.10::*:*:*:*:*:*",
+      "purl": "pkg:npm/micromatch@3.1.10",
+      "name": "micromatch",
+      "version": "3.1.10",
+      "bom-ref": "cpe:2.3:a::micromatch:3.1.10::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::arr-diff:4.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/arr-diff@4.0.0",
+      "name": "arr-diff",
+      "version": "4.0.0",
+      "bom-ref": "cpe:2.3:a::arr-diff:4.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::array-unique:0.3.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/array-unique@0.3.2",
+      "name": "array-unique",
+      "version": "0.3.2",
+      "bom-ref": "cpe:2.3:a::array-unique:0.3.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::braces:2.3.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/braces@2.3.2",
+      "name": "braces",
+      "version": "2.3.2",
+      "bom-ref": "cpe:2.3:a::braces:2.3.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::arr-flatten:1.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/arr-flatten@1.1.0",
+      "name": "arr-flatten",
+      "version": "1.1.0",
+      "bom-ref": "cpe:2.3:a::arr-flatten:1.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::array-unique:0.3.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/array-unique@0.3.2",
+      "name": "array-unique",
+      "version": "0.3.2",
+      "bom-ref": "cpe:2.3:a::array-unique:0.3.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::extend-shallow:2.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/extend-shallow@2.0.1",
+      "name": "extend-shallow",
+      "version": "2.0.1",
+      "bom-ref": "cpe:2.3:a::extend-shallow:2.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-extendable:0.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-extendable@0.1.1",
+      "name": "is-extendable",
+      "version": "0.1.1",
+      "bom-ref": "cpe:2.3:a::is-extendable:0.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::fill-range:4.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/fill-range@4.0.0",
+      "name": "fill-range",
+      "version": "4.0.0",
+      "bom-ref": "cpe:2.3:a::fill-range:4.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::extend-shallow:2.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/extend-shallow@2.0.1",
+      "name": "extend-shallow",
+      "version": "2.0.1",
+      "bom-ref": "cpe:2.3:a::extend-shallow:2.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-extendable:0.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-extendable@0.1.1",
+      "name": "is-extendable",
+      "version": "0.1.1",
+      "bom-ref": "cpe:2.3:a::is-extendable:0.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-number:3.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-number@3.0.0",
+      "name": "is-number",
+      "version": "3.0.0",
+      "bom-ref": "cpe:2.3:a::is-number:3.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::kind-of:3.2.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/kind-of@3.2.2",
+      "name": "kind-of",
+      "version": "3.2.2",
+      "bom-ref": "cpe:2.3:a::kind-of:3.2.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-buffer:1.1.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-buffer@1.1.6",
+      "name": "is-buffer",
+      "version": "1.1.6",
+      "bom-ref": "cpe:2.3:a::is-buffer:1.1.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::repeat-string:1.6.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/repeat-string@1.6.1",
+      "name": "repeat-string",
+      "version": "1.6.1",
+      "bom-ref": "cpe:2.3:a::repeat-string:1.6.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::to-regex-range:2.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/to-regex-range@2.1.1",
+      "name": "to-regex-range",
+      "version": "2.1.1",
+      "bom-ref": "cpe:2.3:a::to-regex-range:2.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-number:3.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-number@3.0.0",
+      "name": "is-number",
+      "version": "3.0.0",
+      "bom-ref": "cpe:2.3:a::is-number:3.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::repeat-string:1.6.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/repeat-string@1.6.1",
+      "name": "repeat-string",
+      "version": "1.6.1",
+      "bom-ref": "cpe:2.3:a::repeat-string:1.6.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::isobject:3.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/isobject@3.0.1",
+      "name": "isobject",
+      "version": "3.0.1",
+      "bom-ref": "cpe:2.3:a::isobject:3.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::repeat-element:1.1.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/repeat-element@1.1.3",
+      "name": "repeat-element",
+      "version": "1.1.3",
+      "bom-ref": "cpe:2.3:a::repeat-element:1.1.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::snapdragon:0.8.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/snapdragon@0.8.2",
+      "name": "snapdragon",
+      "version": "0.8.2",
+      "bom-ref": "cpe:2.3:a::snapdragon:0.8.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::base:0.11.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/base@0.11.2",
+      "name": "base",
+      "version": "0.11.2",
+      "bom-ref": "cpe:2.3:a::base:0.11.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::cache-base:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/cache-base@1.0.1",
+      "name": "cache-base",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::cache-base:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::collection-visit:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/collection-visit@1.0.0",
+      "name": "collection-visit",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::collection-visit:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::map-visit:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/map-visit@1.0.0",
+      "name": "map-visit",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::map-visit:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::object-visit:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/object-visit@1.0.1",
+      "name": "object-visit",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::object-visit:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::isobject:3.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/isobject@3.0.1",
+      "name": "isobject",
+      "version": "3.0.1",
+      "bom-ref": "cpe:2.3:a::isobject:3.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::object-visit:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/object-visit@1.0.1",
+      "name": "object-visit",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::object-visit:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::component-emitter:1.2.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/component-emitter@1.2.1",
+      "name": "component-emitter",
+      "version": "1.2.1",
+      "bom-ref": "cpe:2.3:a::component-emitter:1.2.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::get-value:2.0.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/get-value@2.0.6",
+      "name": "get-value",
+      "version": "2.0.6",
+      "bom-ref": "cpe:2.3:a::get-value:2.0.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::has-value:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/has-value@1.0.0",
+      "name": "has-value",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::has-value:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::get-value:2.0.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/get-value@2.0.6",
+      "name": "get-value",
+      "version": "2.0.6",
+      "bom-ref": "cpe:2.3:a::get-value:2.0.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::has-values:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/has-values@1.0.0",
+      "name": "has-values",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::has-values:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-number:3.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-number@3.0.0",
+      "name": "is-number",
+      "version": "3.0.0",
+      "bom-ref": "cpe:2.3:a::is-number:3.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::kind-of:4.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/kind-of@4.0.0",
+      "name": "kind-of",
+      "version": "4.0.0",
+      "bom-ref": "cpe:2.3:a::kind-of:4.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-buffer:1.1.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-buffer@1.1.6",
+      "name": "is-buffer",
+      "version": "1.1.6",
+      "bom-ref": "cpe:2.3:a::is-buffer:1.1.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::isobject:3.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/isobject@3.0.1",
+      "name": "isobject",
+      "version": "3.0.1",
+      "bom-ref": "cpe:2.3:a::isobject:3.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::isobject:3.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/isobject@3.0.1",
+      "name": "isobject",
+      "version": "3.0.1",
+      "bom-ref": "cpe:2.3:a::isobject:3.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::set-value:2.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/set-value@2.0.0",
+      "name": "set-value",
+      "version": "2.0.0",
+      "bom-ref": "cpe:2.3:a::set-value:2.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::extend-shallow:2.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/extend-shallow@2.0.1",
+      "name": "extend-shallow",
+      "version": "2.0.1",
+      "bom-ref": "cpe:2.3:a::extend-shallow:2.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-extendable:0.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-extendable@0.1.1",
+      "name": "is-extendable",
+      "version": "0.1.1",
+      "bom-ref": "cpe:2.3:a::is-extendable:0.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-extendable:0.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-extendable@0.1.1",
+      "name": "is-extendable",
+      "version": "0.1.1",
+      "bom-ref": "cpe:2.3:a::is-extendable:0.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-plain-object:2.0.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-plain-object@2.0.4",
+      "name": "is-plain-object",
+      "version": "2.0.4",
+      "bom-ref": "cpe:2.3:a::is-plain-object:2.0.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::isobject:3.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/isobject@3.0.1",
+      "name": "isobject",
+      "version": "3.0.1",
+      "bom-ref": "cpe:2.3:a::isobject:3.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::split-string:3.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/split-string@3.1.0",
+      "name": "split-string",
+      "version": "3.1.0",
+      "bom-ref": "cpe:2.3:a::split-string:3.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::extend-shallow:3.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/extend-shallow@3.0.2",
+      "name": "extend-shallow",
+      "version": "3.0.2",
+      "bom-ref": "cpe:2.3:a::extend-shallow:3.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::assign-symbols:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/assign-symbols@1.0.0",
+      "name": "assign-symbols",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::assign-symbols:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-extendable:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-extendable@1.0.1",
+      "name": "is-extendable",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::is-extendable:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-plain-object:2.0.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-plain-object@2.0.4",
+      "name": "is-plain-object",
+      "version": "2.0.4",
+      "bom-ref": "cpe:2.3:a::is-plain-object:2.0.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::to-object-path:0.3.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/to-object-path@0.3.0",
+      "name": "to-object-path",
+      "version": "0.3.0",
+      "bom-ref": "cpe:2.3:a::to-object-path:0.3.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::kind-of:3.2.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/kind-of@3.2.2",
+      "name": "kind-of",
+      "version": "3.2.2",
+      "bom-ref": "cpe:2.3:a::kind-of:3.2.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::union-value:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/union-value@1.0.0",
+      "name": "union-value",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::union-value:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::arr-union:3.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/arr-union@3.1.0",
+      "name": "arr-union",
+      "version": "3.1.0",
+      "bom-ref": "cpe:2.3:a::arr-union:3.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::get-value:2.0.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/get-value@2.0.6",
+      "name": "get-value",
+      "version": "2.0.6",
+      "bom-ref": "cpe:2.3:a::get-value:2.0.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-extendable:0.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-extendable@0.1.1",
+      "name": "is-extendable",
+      "version": "0.1.1",
+      "bom-ref": "cpe:2.3:a::is-extendable:0.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::set-value:0.4.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/set-value@0.4.3",
+      "name": "set-value",
+      "version": "0.4.3",
+      "bom-ref": "cpe:2.3:a::set-value:0.4.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::extend-shallow:2.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/extend-shallow@2.0.1",
+      "name": "extend-shallow",
+      "version": "2.0.1",
+      "bom-ref": "cpe:2.3:a::extend-shallow:2.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-extendable:0.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-extendable@0.1.1",
+      "name": "is-extendable",
+      "version": "0.1.1",
+      "bom-ref": "cpe:2.3:a::is-extendable:0.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-extendable:0.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-extendable@0.1.1",
+      "name": "is-extendable",
+      "version": "0.1.1",
+      "bom-ref": "cpe:2.3:a::is-extendable:0.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-plain-object:2.0.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-plain-object@2.0.4",
+      "name": "is-plain-object",
+      "version": "2.0.4",
+      "bom-ref": "cpe:2.3:a::is-plain-object:2.0.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::to-object-path:0.3.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/to-object-path@0.3.0",
+      "name": "to-object-path",
+      "version": "0.3.0",
+      "bom-ref": "cpe:2.3:a::to-object-path:0.3.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::unset-value:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/unset-value@1.0.0",
+      "name": "unset-value",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::unset-value:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::has-value:0.3.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/has-value@0.3.1",
+      "name": "has-value",
+      "version": "0.3.1",
+      "bom-ref": "cpe:2.3:a::has-value:0.3.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::get-value:2.0.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/get-value@2.0.6",
+      "name": "get-value",
+      "version": "2.0.6",
+      "bom-ref": "cpe:2.3:a::get-value:2.0.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::has-values:0.1.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/has-values@0.1.4",
+      "name": "has-values",
+      "version": "0.1.4",
+      "bom-ref": "cpe:2.3:a::has-values:0.1.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::isobject:2.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/isobject@2.1.0",
+      "name": "isobject",
+      "version": "2.1.0",
+      "bom-ref": "cpe:2.3:a::isobject:2.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::isarray:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/isarray@1.0.0",
+      "name": "isarray",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::isarray:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::isobject:3.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/isobject@3.0.1",
+      "name": "isobject",
+      "version": "3.0.1",
+      "bom-ref": "cpe:2.3:a::isobject:3.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::class-utils:0.3.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/class-utils@0.3.6",
+      "name": "class-utils",
+      "version": "0.3.6",
+      "bom-ref": "cpe:2.3:a::class-utils:0.3.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::arr-union:3.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/arr-union@3.1.0",
+      "name": "arr-union",
+      "version": "3.1.0",
+      "bom-ref": "cpe:2.3:a::arr-union:3.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::define-property:0.2.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/define-property@0.2.5",
+      "name": "define-property",
+      "version": "0.2.5",
+      "bom-ref": "cpe:2.3:a::define-property:0.2.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-descriptor:0.1.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-descriptor@0.1.6",
+      "name": "is-descriptor",
+      "version": "0.1.6",
+      "bom-ref": "cpe:2.3:a::is-descriptor:0.1.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-accessor-descriptor:0.1.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-accessor-descriptor@0.1.6",
+      "name": "is-accessor-descriptor",
+      "version": "0.1.6",
+      "bom-ref": "cpe:2.3:a::is-accessor-descriptor:0.1.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::kind-of:3.2.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/kind-of@3.2.2",
+      "name": "kind-of",
+      "version": "3.2.2",
+      "bom-ref": "cpe:2.3:a::kind-of:3.2.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-data-descriptor:0.1.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-data-descriptor@0.1.4",
+      "name": "is-data-descriptor",
+      "version": "0.1.4",
+      "bom-ref": "cpe:2.3:a::is-data-descriptor:0.1.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::kind-of:3.2.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/kind-of@3.2.2",
+      "name": "kind-of",
+      "version": "3.2.2",
+      "bom-ref": "cpe:2.3:a::kind-of:3.2.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::kind-of:5.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/kind-of@5.1.0",
+      "name": "kind-of",
+      "version": "5.1.0",
+      "bom-ref": "cpe:2.3:a::kind-of:5.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::isobject:3.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/isobject@3.0.1",
+      "name": "isobject",
+      "version": "3.0.1",
+      "bom-ref": "cpe:2.3:a::isobject:3.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::static-extend:0.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/static-extend@0.1.2",
+      "name": "static-extend",
+      "version": "0.1.2",
+      "bom-ref": "cpe:2.3:a::static-extend:0.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::define-property:0.2.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/define-property@0.2.5",
+      "name": "define-property",
+      "version": "0.2.5",
+      "bom-ref": "cpe:2.3:a::define-property:0.2.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-descriptor:0.1.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-descriptor@0.1.6",
+      "name": "is-descriptor",
+      "version": "0.1.6",
+      "bom-ref": "cpe:2.3:a::is-descriptor:0.1.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::object-copy:0.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/object-copy@0.1.0",
+      "name": "object-copy",
+      "version": "0.1.0",
+      "bom-ref": "cpe:2.3:a::object-copy:0.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::copy-descriptor:0.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/copy-descriptor@0.1.1",
+      "name": "copy-descriptor",
+      "version": "0.1.1",
+      "bom-ref": "cpe:2.3:a::copy-descriptor:0.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::define-property:0.2.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/define-property@0.2.5",
+      "name": "define-property",
+      "version": "0.2.5",
+      "bom-ref": "cpe:2.3:a::define-property:0.2.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-descriptor:0.1.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-descriptor@0.1.6",
+      "name": "is-descriptor",
+      "version": "0.1.6",
+      "bom-ref": "cpe:2.3:a::is-descriptor:0.1.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::kind-of:3.2.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/kind-of@3.2.2",
+      "name": "kind-of",
+      "version": "3.2.2",
+      "bom-ref": "cpe:2.3:a::kind-of:3.2.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::component-emitter:1.2.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/component-emitter@1.2.1",
+      "name": "component-emitter",
+      "version": "1.2.1",
+      "bom-ref": "cpe:2.3:a::component-emitter:1.2.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::define-property:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/define-property@1.0.0",
+      "name": "define-property",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::define-property:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-descriptor:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-descriptor@1.0.2",
+      "name": "is-descriptor",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::is-descriptor:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-accessor-descriptor:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-accessor-descriptor@1.0.0",
+      "name": "is-accessor-descriptor",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::is-accessor-descriptor:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::kind-of:6.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/kind-of@6.0.2",
+      "name": "kind-of",
+      "version": "6.0.2",
+      "bom-ref": "cpe:2.3:a::kind-of:6.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-data-descriptor:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-data-descriptor@1.0.0",
+      "name": "is-data-descriptor",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::is-data-descriptor:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::kind-of:6.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/kind-of@6.0.2",
+      "name": "kind-of",
+      "version": "6.0.2",
+      "bom-ref": "cpe:2.3:a::kind-of:6.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::kind-of:6.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/kind-of@6.0.2",
+      "name": "kind-of",
+      "version": "6.0.2",
+      "bom-ref": "cpe:2.3:a::kind-of:6.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::isobject:3.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/isobject@3.0.1",
+      "name": "isobject",
+      "version": "3.0.1",
+      "bom-ref": "cpe:2.3:a::isobject:3.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::mixin-deep:1.3.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/mixin-deep@1.3.1",
+      "name": "mixin-deep",
+      "version": "1.3.1",
+      "bom-ref": "cpe:2.3:a::mixin-deep:1.3.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::for-in:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/for-in@1.0.2",
+      "name": "for-in",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::for-in:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-extendable:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-extendable@1.0.1",
+      "name": "is-extendable",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::is-extendable:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-plain-object:2.0.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-plain-object@2.0.4",
+      "name": "is-plain-object",
+      "version": "2.0.4",
+      "bom-ref": "cpe:2.3:a::is-plain-object:2.0.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::pascalcase:0.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/pascalcase@0.1.1",
+      "name": "pascalcase",
+      "version": "0.1.1",
+      "bom-ref": "cpe:2.3:a::pascalcase:0.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::debug:2.6.9::*:*:*:*:*:*",
+      "purl": "pkg:npm/debug@2.6.9",
+      "name": "debug",
+      "version": "2.6.9",
+      "bom-ref": "cpe:2.3:a::debug:2.6.9::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::ms:2.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/ms@2.0.0",
+      "name": "ms",
+      "version": "2.0.0",
+      "bom-ref": "cpe:2.3:a::ms:2.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::define-property:0.2.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/define-property@0.2.5",
+      "name": "define-property",
+      "version": "0.2.5",
+      "bom-ref": "cpe:2.3:a::define-property:0.2.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-descriptor:0.1.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-descriptor@0.1.6",
+      "name": "is-descriptor",
+      "version": "0.1.6",
+      "bom-ref": "cpe:2.3:a::is-descriptor:0.1.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::extend-shallow:2.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/extend-shallow@2.0.1",
+      "name": "extend-shallow",
+      "version": "2.0.1",
+      "bom-ref": "cpe:2.3:a::extend-shallow:2.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-extendable:0.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-extendable@0.1.1",
+      "name": "is-extendable",
+      "version": "0.1.1",
+      "bom-ref": "cpe:2.3:a::is-extendable:0.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::map-cache:0.2.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/map-cache@0.2.2",
+      "name": "map-cache",
+      "version": "0.2.2",
+      "bom-ref": "cpe:2.3:a::map-cache:0.2.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::source-map:0.5.7::*:*:*:*:*:*",
+      "purl": "pkg:npm/source-map@0.5.7",
+      "name": "source-map",
+      "version": "0.5.7",
+      "bom-ref": "cpe:2.3:a::source-map:0.5.7::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::source-map-resolve:0.5.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/source-map-resolve@0.5.2",
+      "name": "source-map-resolve",
+      "version": "0.5.2",
+      "bom-ref": "cpe:2.3:a::source-map-resolve:0.5.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::atob:2.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/atob@2.1.2",
+      "name": "atob",
+      "version": "2.1.2",
+      "bom-ref": "cpe:2.3:a::atob:2.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::decode-uri-component:0.2.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/decode-uri-component@0.2.0",
+      "name": "decode-uri-component",
+      "version": "0.2.0",
+      "bom-ref": "cpe:2.3:a::decode-uri-component:0.2.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::resolve-url:0.2.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/resolve-url@0.2.1",
+      "name": "resolve-url",
+      "version": "0.2.1",
+      "bom-ref": "cpe:2.3:a::resolve-url:0.2.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::source-map-url:0.4.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/source-map-url@0.4.0",
+      "name": "source-map-url",
+      "version": "0.4.0",
+      "bom-ref": "cpe:2.3:a::source-map-url:0.4.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::urix:0.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/urix@0.1.0",
+      "name": "urix",
+      "version": "0.1.0",
+      "bom-ref": "cpe:2.3:a::urix:0.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::use:3.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/use@3.1.1",
+      "name": "use",
+      "version": "3.1.1",
+      "bom-ref": "cpe:2.3:a::use:3.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::snapdragon-node:2.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/snapdragon-node@2.1.1",
+      "name": "snapdragon-node",
+      "version": "2.1.1",
+      "bom-ref": "cpe:2.3:a::snapdragon-node:2.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::define-property:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/define-property@1.0.0",
+      "name": "define-property",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::define-property:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-descriptor:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-descriptor@1.0.2",
+      "name": "is-descriptor",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::is-descriptor:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-accessor-descriptor:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-accessor-descriptor@1.0.0",
+      "name": "is-accessor-descriptor",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::is-accessor-descriptor:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-data-descriptor:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-data-descriptor@1.0.0",
+      "name": "is-data-descriptor",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::is-data-descriptor:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::kind-of:6.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/kind-of@6.0.2",
+      "name": "kind-of",
+      "version": "6.0.2",
+      "bom-ref": "cpe:2.3:a::kind-of:6.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::isobject:3.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/isobject@3.0.1",
+      "name": "isobject",
+      "version": "3.0.1",
+      "bom-ref": "cpe:2.3:a::isobject:3.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::snapdragon-util:3.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/snapdragon-util@3.0.1",
+      "name": "snapdragon-util",
+      "version": "3.0.1",
+      "bom-ref": "cpe:2.3:a::snapdragon-util:3.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::kind-of:3.2.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/kind-of@3.2.2",
+      "name": "kind-of",
+      "version": "3.2.2",
+      "bom-ref": "cpe:2.3:a::kind-of:3.2.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::split-string:3.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/split-string@3.1.0",
+      "name": "split-string",
+      "version": "3.1.0",
+      "bom-ref": "cpe:2.3:a::split-string:3.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::to-regex:3.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/to-regex@3.0.2",
+      "name": "to-regex",
+      "version": "3.0.2",
+      "bom-ref": "cpe:2.3:a::to-regex:3.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::define-property:2.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/define-property@2.0.2",
+      "name": "define-property",
+      "version": "2.0.2",
+      "bom-ref": "cpe:2.3:a::define-property:2.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-descriptor:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-descriptor@1.0.2",
+      "name": "is-descriptor",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::is-descriptor:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-accessor-descriptor:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-accessor-descriptor@1.0.0",
+      "name": "is-accessor-descriptor",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::is-accessor-descriptor:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-data-descriptor:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-data-descriptor@1.0.0",
+      "name": "is-data-descriptor",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::is-data-descriptor:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::kind-of:6.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/kind-of@6.0.2",
+      "name": "kind-of",
+      "version": "6.0.2",
+      "bom-ref": "cpe:2.3:a::kind-of:6.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::isobject:3.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/isobject@3.0.1",
+      "name": "isobject",
+      "version": "3.0.1",
+      "bom-ref": "cpe:2.3:a::isobject:3.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::extend-shallow:3.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/extend-shallow@3.0.2",
+      "name": "extend-shallow",
+      "version": "3.0.2",
+      "bom-ref": "cpe:2.3:a::extend-shallow:3.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::regex-not:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/regex-not@1.0.2",
+      "name": "regex-not",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::regex-not:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::extend-shallow:3.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/extend-shallow@3.0.2",
+      "name": "extend-shallow",
+      "version": "3.0.2",
+      "bom-ref": "cpe:2.3:a::extend-shallow:3.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::safe-regex:1.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/safe-regex@1.1.0",
+      "name": "safe-regex",
+      "version": "1.1.0",
+      "bom-ref": "cpe:2.3:a::safe-regex:1.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::ret:0.1.15::*:*:*:*:*:*",
+      "purl": "pkg:npm/ret@0.1.15",
+      "name": "ret",
+      "version": "0.1.15",
+      "bom-ref": "cpe:2.3:a::ret:0.1.15::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::safe-regex:1.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/safe-regex@1.1.0",
+      "name": "safe-regex",
+      "version": "1.1.0",
+      "bom-ref": "cpe:2.3:a::safe-regex:1.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::define-property:2.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/define-property@2.0.2",
+      "name": "define-property",
+      "version": "2.0.2",
+      "bom-ref": "cpe:2.3:a::define-property:2.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::extend-shallow:3.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/extend-shallow@3.0.2",
+      "name": "extend-shallow",
+      "version": "3.0.2",
+      "bom-ref": "cpe:2.3:a::extend-shallow:3.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::extglob:2.0.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/extglob@2.0.4",
+      "name": "extglob",
+      "version": "2.0.4",
+      "bom-ref": "cpe:2.3:a::extglob:2.0.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::array-unique:0.3.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/array-unique@0.3.2",
+      "name": "array-unique",
+      "version": "0.3.2",
+      "bom-ref": "cpe:2.3:a::array-unique:0.3.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::define-property:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/define-property@1.0.0",
+      "name": "define-property",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::define-property:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-descriptor:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-descriptor@1.0.2",
+      "name": "is-descriptor",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::is-descriptor:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-accessor-descriptor:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-accessor-descriptor@1.0.0",
+      "name": "is-accessor-descriptor",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::is-accessor-descriptor:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-data-descriptor:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-data-descriptor@1.0.0",
+      "name": "is-data-descriptor",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::is-data-descriptor:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::kind-of:6.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/kind-of@6.0.2",
+      "name": "kind-of",
+      "version": "6.0.2",
+      "bom-ref": "cpe:2.3:a::kind-of:6.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::expand-brackets:2.1.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/expand-brackets@2.1.4",
+      "name": "expand-brackets",
+      "version": "2.1.4",
+      "bom-ref": "cpe:2.3:a::expand-brackets:2.1.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::debug:2.6.9::*:*:*:*:*:*",
+      "purl": "pkg:npm/debug@2.6.9",
+      "name": "debug",
+      "version": "2.6.9",
+      "bom-ref": "cpe:2.3:a::debug:2.6.9::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::define-property:0.2.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/define-property@0.2.5",
+      "name": "define-property",
+      "version": "0.2.5",
+      "bom-ref": "cpe:2.3:a::define-property:0.2.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-descriptor:0.1.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-descriptor@0.1.6",
+      "name": "is-descriptor",
+      "version": "0.1.6",
+      "bom-ref": "cpe:2.3:a::is-descriptor:0.1.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::extend-shallow:2.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/extend-shallow@2.0.1",
+      "name": "extend-shallow",
+      "version": "2.0.1",
+      "bom-ref": "cpe:2.3:a::extend-shallow:2.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-extendable:0.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-extendable@0.1.1",
+      "name": "is-extendable",
+      "version": "0.1.1",
+      "bom-ref": "cpe:2.3:a::is-extendable:0.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::posix-character-classes:0.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/posix-character-classes@0.1.1",
+      "name": "posix-character-classes",
+      "version": "0.1.1",
+      "bom-ref": "cpe:2.3:a::posix-character-classes:0.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::regex-not:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/regex-not@1.0.2",
+      "name": "regex-not",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::regex-not:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::snapdragon:0.8.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/snapdragon@0.8.2",
+      "name": "snapdragon",
+      "version": "0.8.2",
+      "bom-ref": "cpe:2.3:a::snapdragon:0.8.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::to-regex:3.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/to-regex@3.0.2",
+      "name": "to-regex",
+      "version": "3.0.2",
+      "bom-ref": "cpe:2.3:a::to-regex:3.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::extend-shallow:2.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/extend-shallow@2.0.1",
+      "name": "extend-shallow",
+      "version": "2.0.1",
+      "bom-ref": "cpe:2.3:a::extend-shallow:2.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-extendable:0.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-extendable@0.1.1",
+      "name": "is-extendable",
+      "version": "0.1.1",
+      "bom-ref": "cpe:2.3:a::is-extendable:0.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::fragment-cache:0.2.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/fragment-cache@0.2.1",
+      "name": "fragment-cache",
+      "version": "0.2.1",
+      "bom-ref": "cpe:2.3:a::fragment-cache:0.2.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::map-cache:0.2.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/map-cache@0.2.2",
+      "name": "map-cache",
+      "version": "0.2.2",
+      "bom-ref": "cpe:2.3:a::map-cache:0.2.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::regex-not:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/regex-not@1.0.2",
+      "name": "regex-not",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::regex-not:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::snapdragon:0.8.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/snapdragon@0.8.2",
+      "name": "snapdragon",
+      "version": "0.8.2",
+      "bom-ref": "cpe:2.3:a::snapdragon:0.8.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::to-regex:3.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/to-regex@3.0.2",
+      "name": "to-regex",
+      "version": "3.0.2",
+      "bom-ref": "cpe:2.3:a::to-regex:3.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::fragment-cache:0.2.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/fragment-cache@0.2.1",
+      "name": "fragment-cache",
+      "version": "0.2.1",
+      "bom-ref": "cpe:2.3:a::fragment-cache:0.2.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::kind-of:6.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/kind-of@6.0.2",
+      "name": "kind-of",
+      "version": "6.0.2",
+      "bom-ref": "cpe:2.3:a::kind-of:6.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::nanomatch:1.2.13::*:*:*:*:*:*",
+      "purl": "pkg:npm/nanomatch@1.2.13",
+      "name": "nanomatch",
+      "version": "1.2.13",
+      "bom-ref": "cpe:2.3:a::nanomatch:1.2.13::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::arr-diff:4.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/arr-diff@4.0.0",
+      "name": "arr-diff",
+      "version": "4.0.0",
+      "bom-ref": "cpe:2.3:a::arr-diff:4.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::array-unique:0.3.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/array-unique@0.3.2",
+      "name": "array-unique",
+      "version": "0.3.2",
+      "bom-ref": "cpe:2.3:a::array-unique:0.3.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::define-property:2.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/define-property@2.0.2",
+      "name": "define-property",
+      "version": "2.0.2",
+      "bom-ref": "cpe:2.3:a::define-property:2.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::extend-shallow:3.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/extend-shallow@3.0.2",
+      "name": "extend-shallow",
+      "version": "3.0.2",
+      "bom-ref": "cpe:2.3:a::extend-shallow:3.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::fragment-cache:0.2.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/fragment-cache@0.2.1",
+      "name": "fragment-cache",
+      "version": "0.2.1",
+      "bom-ref": "cpe:2.3:a::fragment-cache:0.2.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-windows:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-windows@1.0.2",
+      "name": "is-windows",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::is-windows:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::kind-of:6.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/kind-of@6.0.2",
+      "name": "kind-of",
+      "version": "6.0.2",
+      "bom-ref": "cpe:2.3:a::kind-of:6.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::object.pick:1.3.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/object.pick@1.3.0",
+      "name": "object.pick",
+      "version": "1.3.0",
+      "bom-ref": "cpe:2.3:a::object.pick:1.3.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::isobject:3.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/isobject@3.0.1",
+      "name": "isobject",
+      "version": "3.0.1",
+      "bom-ref": "cpe:2.3:a::isobject:3.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::regex-not:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/regex-not@1.0.2",
+      "name": "regex-not",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::regex-not:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::snapdragon:0.8.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/snapdragon@0.8.2",
+      "name": "snapdragon",
+      "version": "0.8.2",
+      "bom-ref": "cpe:2.3:a::snapdragon:0.8.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::to-regex:3.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/to-regex@3.0.2",
+      "name": "to-regex",
+      "version": "3.0.2",
+      "bom-ref": "cpe:2.3:a::to-regex:3.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::object.pick:1.3.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/object.pick@1.3.0",
+      "name": "object.pick",
+      "version": "1.3.0",
+      "bom-ref": "cpe:2.3:a::object.pick:1.3.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::regex-not:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/regex-not@1.0.2",
+      "name": "regex-not",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::regex-not:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::snapdragon:0.8.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/snapdragon@0.8.2",
+      "name": "snapdragon",
+      "version": "0.8.2",
+      "bom-ref": "cpe:2.3:a::snapdragon:0.8.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::to-regex:3.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/to-regex@3.0.2",
+      "name": "to-regex",
+      "version": "3.0.2",
+      "bom-ref": "cpe:2.3:a::to-regex:3.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::normalize-path:2.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/normalize-path@2.1.1",
+      "name": "normalize-path",
+      "version": "2.1.1",
+      "bom-ref": "cpe:2.3:a::normalize-path:2.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::remove-trailing-separator:1.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/remove-trailing-separator@1.1.0",
+      "name": "remove-trailing-separator",
+      "version": "1.1.0",
+      "bom-ref": "cpe:2.3:a::remove-trailing-separator:1.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::async-each:1.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/async-each@1.0.3",
+      "name": "async-each",
+      "version": "1.0.3",
+      "bom-ref": "cpe:2.3:a::async-each:1.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::braces:2.3.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/braces@2.3.2",
+      "name": "braces",
+      "version": "2.3.2",
+      "bom-ref": "cpe:2.3:a::braces:2.3.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::fsevents:1.2.9::*:*:*:*:*:*",
+      "purl": "pkg:npm/fsevents@1.2.9",
+      "name": "fsevents",
+      "version": "1.2.9",
+      "bom-ref": "cpe:2.3:a::fsevents:1.2.9::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::nan:2.14.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/nan@2.14.0",
+      "name": "nan",
+      "version": "2.14.0",
+      "bom-ref": "cpe:2.3:a::nan:2.14.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::node-pre-gyp:0.12.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/node-pre-gyp@0.12.0",
+      "name": "node-pre-gyp",
+      "version": "0.12.0",
+      "bom-ref": "cpe:2.3:a::node-pre-gyp:0.12.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::detect-libc:1.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/detect-libc@1.0.3",
+      "name": "detect-libc",
+      "version": "1.0.3",
+      "bom-ref": "cpe:2.3:a::detect-libc:1.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::mkdirp:0.5.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/mkdirp@0.5.1",
+      "name": "mkdirp",
+      "version": "0.5.1",
+      "bom-ref": "cpe:2.3:a::mkdirp:0.5.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::minimist:0.0.8::*:*:*:*:*:*",
+      "purl": "pkg:npm/minimist@0.0.8",
+      "name": "minimist",
+      "version": "0.0.8",
+      "bom-ref": "cpe:2.3:a::minimist:0.0.8::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::needle:2.3.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/needle@2.3.0",
+      "name": "needle",
+      "version": "2.3.0",
+      "bom-ref": "cpe:2.3:a::needle:2.3.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::debug:4.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/debug@4.1.1",
+      "name": "debug",
+      "version": "4.1.1",
+      "bom-ref": "cpe:2.3:a::debug:4.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::ms:2.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/ms@2.1.1",
+      "name": "ms",
+      "version": "2.1.1",
+      "bom-ref": "cpe:2.3:a::ms:2.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::iconv-lite:0.4.24::*:*:*:*:*:*",
+      "purl": "pkg:npm/iconv-lite@0.4.24",
+      "name": "iconv-lite",
+      "version": "0.4.24",
+      "bom-ref": "cpe:2.3:a::iconv-lite:0.4.24::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::safer-buffer:2.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/safer-buffer@2.1.2",
+      "name": "safer-buffer",
+      "version": "2.1.2",
+      "bom-ref": "cpe:2.3:a::safer-buffer:2.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::sax:1.2.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/sax@1.2.4",
+      "name": "sax",
+      "version": "1.2.4",
+      "bom-ref": "cpe:2.3:a::sax:1.2.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::nopt:4.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/nopt@4.0.1",
+      "name": "nopt",
+      "version": "4.0.1",
+      "bom-ref": "cpe:2.3:a::nopt:4.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::abbrev:1.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/abbrev@1.1.1",
+      "name": "abbrev",
+      "version": "1.1.1",
+      "bom-ref": "cpe:2.3:a::abbrev:1.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::osenv:0.1.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/osenv@0.1.5",
+      "name": "osenv",
+      "version": "0.1.5",
+      "bom-ref": "cpe:2.3:a::osenv:0.1.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::os-homedir:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/os-homedir@1.0.2",
+      "name": "os-homedir",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::os-homedir:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::os-tmpdir:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/os-tmpdir@1.0.2",
+      "name": "os-tmpdir",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::os-tmpdir:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::npm-packlist:1.4.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/npm-packlist@1.4.1",
+      "name": "npm-packlist",
+      "version": "1.4.1",
+      "bom-ref": "cpe:2.3:a::npm-packlist:1.4.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::ignore-walk:3.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/ignore-walk@3.0.1",
+      "name": "ignore-walk",
+      "version": "3.0.1",
+      "bom-ref": "cpe:2.3:a::ignore-walk:3.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::minimatch:3.0.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/minimatch@3.0.4",
+      "name": "minimatch",
+      "version": "3.0.4",
+      "bom-ref": "cpe:2.3:a::minimatch:3.0.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::npm-bundled:1.0.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/npm-bundled@1.0.6",
+      "name": "npm-bundled",
+      "version": "1.0.6",
+      "bom-ref": "cpe:2.3:a::npm-bundled:1.0.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::npmlog:4.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/npmlog@4.1.2",
+      "name": "npmlog",
+      "version": "4.1.2",
+      "bom-ref": "cpe:2.3:a::npmlog:4.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::are-we-there-yet:1.1.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/are-we-there-yet@1.1.5",
+      "name": "are-we-there-yet",
+      "version": "1.1.5",
+      "bom-ref": "cpe:2.3:a::are-we-there-yet:1.1.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::delegates:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/delegates@1.0.0",
+      "name": "delegates",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::delegates:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::readable-stream:2.3.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/readable-stream@2.3.6",
+      "name": "readable-stream",
+      "version": "2.3.6",
+      "bom-ref": "cpe:2.3:a::readable-stream:2.3.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::core-util-is:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/core-util-is@1.0.2",
+      "name": "core-util-is",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::core-util-is:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::inherits:2.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/inherits@2.0.3",
+      "name": "inherits",
+      "version": "2.0.3",
+      "bom-ref": "cpe:2.3:a::inherits:2.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::isarray:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/isarray@1.0.0",
+      "name": "isarray",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::isarray:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::process-nextick-args:2.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/process-nextick-args@2.0.0",
+      "name": "process-nextick-args",
+      "version": "2.0.0",
+      "bom-ref": "cpe:2.3:a::process-nextick-args:2.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::safe-buffer:5.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/safe-buffer@5.1.2",
+      "name": "safe-buffer",
+      "version": "5.1.2",
+      "bom-ref": "cpe:2.3:a::safe-buffer:5.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::string_decoder:1.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/string_decoder@1.1.1",
+      "name": "string_decoder",
+      "version": "1.1.1",
+      "bom-ref": "cpe:2.3:a::string_decoder:1.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::safe-buffer:5.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/safe-buffer@5.1.2",
+      "name": "safe-buffer",
+      "version": "5.1.2",
+      "bom-ref": "cpe:2.3:a::safe-buffer:5.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::util-deprecate:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/util-deprecate@1.0.2",
+      "name": "util-deprecate",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::util-deprecate:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::console-control-strings:1.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/console-control-strings@1.1.0",
+      "name": "console-control-strings",
+      "version": "1.1.0",
+      "bom-ref": "cpe:2.3:a::console-control-strings:1.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::gauge:2.7.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/gauge@2.7.4",
+      "name": "gauge",
+      "version": "2.7.4",
+      "bom-ref": "cpe:2.3:a::gauge:2.7.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::aproba:1.2.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/aproba@1.2.0",
+      "name": "aproba",
+      "version": "1.2.0",
+      "bom-ref": "cpe:2.3:a::aproba:1.2.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::console-control-strings:1.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/console-control-strings@1.1.0",
+      "name": "console-control-strings",
+      "version": "1.1.0",
+      "bom-ref": "cpe:2.3:a::console-control-strings:1.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::has-unicode:2.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/has-unicode@2.0.1",
+      "name": "has-unicode",
+      "version": "2.0.1",
+      "bom-ref": "cpe:2.3:a::has-unicode:2.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::object-assign:4.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/object-assign@4.1.1",
+      "name": "object-assign",
+      "version": "4.1.1",
+      "bom-ref": "cpe:2.3:a::object-assign:4.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::signal-exit:3.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/signal-exit@3.0.2",
+      "name": "signal-exit",
+      "version": "3.0.2",
+      "bom-ref": "cpe:2.3:a::signal-exit:3.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::string-width:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/string-width@1.0.2",
+      "name": "string-width",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::string-width:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::code-point-at:1.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/code-point-at@1.1.0",
+      "name": "code-point-at",
+      "version": "1.1.0",
+      "bom-ref": "cpe:2.3:a::code-point-at:1.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-fullwidth-code-point:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-fullwidth-code-point@1.0.0",
+      "name": "is-fullwidth-code-point",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::is-fullwidth-code-point:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::number-is-nan:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/number-is-nan@1.0.1",
+      "name": "number-is-nan",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::number-is-nan:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::strip-ansi:3.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/strip-ansi@3.0.1",
+      "name": "strip-ansi",
+      "version": "3.0.1",
+      "bom-ref": "cpe:2.3:a::strip-ansi:3.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::ansi-regex:2.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/ansi-regex@2.1.1",
+      "name": "ansi-regex",
+      "version": "2.1.1",
+      "bom-ref": "cpe:2.3:a::ansi-regex:2.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::strip-ansi:3.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/strip-ansi@3.0.1",
+      "name": "strip-ansi",
+      "version": "3.0.1",
+      "bom-ref": "cpe:2.3:a::strip-ansi:3.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::wide-align:1.1.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/wide-align@1.1.3",
+      "name": "wide-align",
+      "version": "1.1.3",
+      "bom-ref": "cpe:2.3:a::wide-align:1.1.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::string-width:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/string-width@1.0.2",
+      "name": "string-width",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::string-width:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::set-blocking:2.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/set-blocking@2.0.0",
+      "name": "set-blocking",
+      "version": "2.0.0",
+      "bom-ref": "cpe:2.3:a::set-blocking:2.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::rc:1.2.8::*:*:*:*:*:*",
+      "purl": "pkg:npm/rc@1.2.8",
+      "name": "rc",
+      "version": "1.2.8",
+      "bom-ref": "cpe:2.3:a::rc:1.2.8::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::deep-extend:0.6.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/deep-extend@0.6.0",
+      "name": "deep-extend",
+      "version": "0.6.0",
+      "bom-ref": "cpe:2.3:a::deep-extend:0.6.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::ini:1.3.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/ini@1.3.5",
+      "name": "ini",
+      "version": "1.3.5",
+      "bom-ref": "cpe:2.3:a::ini:1.3.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::minimist:1.2.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/minimist@1.2.0",
+      "name": "minimist",
+      "version": "1.2.0",
+      "bom-ref": "cpe:2.3:a::minimist:1.2.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::strip-json-comments:2.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/strip-json-comments@2.0.1",
+      "name": "strip-json-comments",
+      "version": "2.0.1",
+      "bom-ref": "cpe:2.3:a::strip-json-comments:2.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::rimraf:2.6.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/rimraf@2.6.3",
+      "name": "rimraf",
+      "version": "2.6.3",
+      "bom-ref": "cpe:2.3:a::rimraf:2.6.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::glob:7.1.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/glob@7.1.3",
+      "name": "glob",
+      "version": "7.1.3",
+      "bom-ref": "cpe:2.3:a::glob:7.1.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::semver:5.7.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/semver@5.7.0",
+      "name": "semver",
+      "version": "5.7.0",
+      "bom-ref": "cpe:2.3:a::semver:5.7.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::tar:4.4.8::*:*:*:*:*:*",
+      "purl": "pkg:npm/tar@4.4.8",
+      "name": "tar",
+      "version": "4.4.8",
+      "bom-ref": "cpe:2.3:a::tar:4.4.8::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::chownr:1.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/chownr@1.1.1",
+      "name": "chownr",
+      "version": "1.1.1",
+      "bom-ref": "cpe:2.3:a::chownr:1.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::fs-minipass:1.2.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/fs-minipass@1.2.5",
+      "name": "fs-minipass",
+      "version": "1.2.5",
+      "bom-ref": "cpe:2.3:a::fs-minipass:1.2.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::minipass:2.3.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/minipass@2.3.5",
+      "name": "minipass",
+      "version": "2.3.5",
+      "bom-ref": "cpe:2.3:a::minipass:2.3.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::safe-buffer:5.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/safe-buffer@5.1.2",
+      "name": "safe-buffer",
+      "version": "5.1.2",
+      "bom-ref": "cpe:2.3:a::safe-buffer:5.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::yallist:3.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/yallist@3.0.3",
+      "name": "yallist",
+      "version": "3.0.3",
+      "bom-ref": "cpe:2.3:a::yallist:3.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::minipass:2.3.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/minipass@2.3.5",
+      "name": "minipass",
+      "version": "2.3.5",
+      "bom-ref": "cpe:2.3:a::minipass:2.3.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::minizlib:1.2.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/minizlib@1.2.1",
+      "name": "minizlib",
+      "version": "1.2.1",
+      "bom-ref": "cpe:2.3:a::minizlib:1.2.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::minipass:2.3.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/minipass@2.3.5",
+      "name": "minipass",
+      "version": "2.3.5",
+      "bom-ref": "cpe:2.3:a::minipass:2.3.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::mkdirp:0.5.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/mkdirp@0.5.1",
+      "name": "mkdirp",
+      "version": "0.5.1",
+      "bom-ref": "cpe:2.3:a::mkdirp:0.5.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::minimist:0.0.8::*:*:*:*:*:*",
+      "purl": "pkg:npm/minimist@0.0.8",
+      "name": "minimist",
+      "version": "0.0.8",
+      "bom-ref": "cpe:2.3:a::minimist:0.0.8::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::safe-buffer:5.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/safe-buffer@5.1.2",
+      "name": "safe-buffer",
+      "version": "5.1.2",
+      "bom-ref": "cpe:2.3:a::safe-buffer:5.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::yallist:3.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/yallist@3.0.3",
+      "name": "yallist",
+      "version": "3.0.3",
+      "bom-ref": "cpe:2.3:a::yallist:3.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::glob-parent:3.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/glob-parent@3.1.0",
+      "name": "glob-parent",
+      "version": "3.1.0",
+      "bom-ref": "cpe:2.3:a::glob-parent:3.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-glob:3.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-glob@3.1.0",
+      "name": "is-glob",
+      "version": "3.1.0",
+      "bom-ref": "cpe:2.3:a::is-glob:3.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-extglob:2.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-extglob@2.1.1",
+      "name": "is-extglob",
+      "version": "2.1.1",
+      "bom-ref": "cpe:2.3:a::is-extglob:2.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::path-dirname:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/path-dirname@1.0.2",
+      "name": "path-dirname",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::path-dirname:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::inherits:2.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/inherits@2.0.3",
+      "name": "inherits",
+      "version": "2.0.3",
+      "bom-ref": "cpe:2.3:a::inherits:2.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-binary-path:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-binary-path@1.0.1",
+      "name": "is-binary-path",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::is-binary-path:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::binary-extensions:1.13.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/binary-extensions@1.13.1",
+      "name": "binary-extensions",
+      "version": "1.13.1",
+      "bom-ref": "cpe:2.3:a::binary-extensions:1.13.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-glob:4.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-glob@4.0.1",
+      "name": "is-glob",
+      "version": "4.0.1",
+      "bom-ref": "cpe:2.3:a::is-glob:4.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-extglob:2.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-extglob@2.1.1",
+      "name": "is-extglob",
+      "version": "2.1.1",
+      "bom-ref": "cpe:2.3:a::is-extglob:2.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::normalize-path:3.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/normalize-path@3.0.0",
+      "name": "normalize-path",
+      "version": "3.0.0",
+      "bom-ref": "cpe:2.3:a::normalize-path:3.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::path-is-absolute:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/path-is-absolute@1.0.1",
+      "name": "path-is-absolute",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::path-is-absolute:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::readdirp:2.2.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/readdirp@2.2.1",
+      "name": "readdirp",
+      "version": "2.2.1",
+      "bom-ref": "cpe:2.3:a::readdirp:2.2.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::graceful-fs:4.1.15::*:*:*:*:*:*",
+      "purl": "pkg:npm/graceful-fs@4.1.15",
+      "name": "graceful-fs",
+      "version": "4.1.15",
+      "bom-ref": "cpe:2.3:a::graceful-fs:4.1.15::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::micromatch:3.1.10::*:*:*:*:*:*",
+      "purl": "pkg:npm/micromatch@3.1.10",
+      "name": "micromatch",
+      "version": "3.1.10",
+      "bom-ref": "cpe:2.3:a::micromatch:3.1.10::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::readable-stream:2.3.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/readable-stream@2.3.6",
+      "name": "readable-stream",
+      "version": "2.3.6",
+      "bom-ref": "cpe:2.3:a::readable-stream:2.3.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::upath:1.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/upath@1.1.2",
+      "name": "upath",
+      "version": "1.1.2",
+      "bom-ref": "cpe:2.3:a::upath:1.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::minimatch:3.0.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/minimatch@3.0.4",
+      "name": "minimatch",
+      "version": "3.0.4",
+      "bom-ref": "cpe:2.3:a::minimatch:3.0.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::ps-tree:0.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/ps-tree@0.0.3",
+      "name": "ps-tree",
+      "version": "0.0.3",
+      "bom-ref": "cpe:2.3:a::ps-tree:0.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::event-stream:0.5.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/event-stream@0.5.3",
+      "name": "event-stream",
+      "version": "0.5.3",
+      "bom-ref": "cpe:2.3:a::event-stream:0.5.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::optimist:0.2.8::*:*:*:*:*:*",
+      "purl": "pkg:npm/optimist@0.2.8",
+      "name": "optimist",
+      "version": "0.2.8",
+      "bom-ref": "cpe:2.3:a::optimist:0.2.8::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::wordwrap:0.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/wordwrap@0.0.3",
+      "name": "wordwrap",
+      "version": "0.0.3",
+      "bom-ref": "cpe:2.3:a::wordwrap:0.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::utile:0.3.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/utile@0.3.0",
+      "name": "utile",
+      "version": "0.3.0",
+      "bom-ref": "cpe:2.3:a::utile:0.3.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::async:0.9.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/async@0.9.2",
+      "name": "async",
+      "version": "0.9.2",
+      "bom-ref": "cpe:2.3:a::async:0.9.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::deep-equal:0.2.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/deep-equal@0.2.2",
+      "name": "deep-equal",
+      "version": "0.2.2",
+      "bom-ref": "cpe:2.3:a::deep-equal:0.2.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::i:0.3.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/i@0.3.6",
+      "name": "i",
+      "version": "0.3.6",
+      "bom-ref": "cpe:2.3:a::i:0.3.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::mkdirp:0.5.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/mkdirp@0.5.1",
+      "name": "mkdirp",
+      "version": "0.5.1",
+      "bom-ref": "cpe:2.3:a::mkdirp:0.5.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::ncp:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/ncp@1.0.1",
+      "name": "ncp",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::ncp:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::rimraf:2.6.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/rimraf@2.6.3",
+      "name": "rimraf",
+      "version": "2.6.3",
+      "bom-ref": "cpe:2.3:a::rimraf:2.6.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::mkdirp:0.5.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/mkdirp@0.5.1",
+      "name": "mkdirp",
+      "version": "0.5.1",
+      "bom-ref": "cpe:2.3:a::mkdirp:0.5.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::nconf:0.10.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/nconf@0.10.0",
+      "name": "nconf",
+      "version": "0.10.0",
+      "bom-ref": "cpe:2.3:a::nconf:0.10.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::async:1.5.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/async@1.5.2",
+      "name": "async",
+      "version": "1.5.2",
+      "bom-ref": "cpe:2.3:a::async:1.5.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::ini:1.3.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/ini@1.3.5",
+      "name": "ini",
+      "version": "1.3.5",
+      "bom-ref": "cpe:2.3:a::ini:1.3.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::secure-keys:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/secure-keys@1.0.0",
+      "name": "secure-keys",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::secure-keys:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::yargs:3.32.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/yargs@3.32.0",
+      "name": "yargs",
+      "version": "3.32.0",
+      "bom-ref": "cpe:2.3:a::yargs:3.32.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::camelcase:2.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/camelcase@2.1.1",
+      "name": "camelcase",
+      "version": "2.1.1",
+      "bom-ref": "cpe:2.3:a::camelcase:2.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::cliui:3.2.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/cliui@3.2.0",
+      "name": "cliui",
+      "version": "3.2.0",
+      "bom-ref": "cpe:2.3:a::cliui:3.2.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::string-width:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/string-width@1.0.2",
+      "name": "string-width",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::string-width:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::strip-ansi:3.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/strip-ansi@3.0.1",
+      "name": "strip-ansi",
+      "version": "3.0.1",
+      "bom-ref": "cpe:2.3:a::strip-ansi:3.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::wrap-ansi:2.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/wrap-ansi@2.1.0",
+      "name": "wrap-ansi",
+      "version": "2.1.0",
+      "bom-ref": "cpe:2.3:a::wrap-ansi:2.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::string-width:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/string-width@1.0.2",
+      "name": "string-width",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::string-width:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::strip-ansi:3.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/strip-ansi@3.0.1",
+      "name": "strip-ansi",
+      "version": "3.0.1",
+      "bom-ref": "cpe:2.3:a::strip-ansi:3.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::decamelize:1.2.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/decamelize@1.2.0",
+      "name": "decamelize",
+      "version": "1.2.0",
+      "bom-ref": "cpe:2.3:a::decamelize:1.2.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::os-locale:1.4.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/os-locale@1.4.0",
+      "name": "os-locale",
+      "version": "1.4.0",
+      "bom-ref": "cpe:2.3:a::os-locale:1.4.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::lcid:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/lcid@1.0.0",
+      "name": "lcid",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::lcid:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::invert-kv:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/invert-kv@1.0.0",
+      "name": "invert-kv",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::invert-kv:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::string-width:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/string-width@1.0.2",
+      "name": "string-width",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::string-width:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::window-size:0.1.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/window-size@0.1.4",
+      "name": "window-size",
+      "version": "0.1.4",
+      "bom-ref": "cpe:2.3:a::window-size:0.1.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::y18n:3.2.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/y18n@3.2.1",
+      "name": "y18n",
+      "version": "3.2.1",
+      "bom-ref": "cpe:2.3:a::y18n:3.2.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::nssocket:0.6.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/nssocket@0.6.0",
+      "name": "nssocket",
+      "version": "0.6.0",
+      "bom-ref": "cpe:2.3:a::nssocket:0.6.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::eventemitter2:0.4.14::*:*:*:*:*:*",
+      "purl": "pkg:npm/eventemitter2@0.4.14",
+      "name": "eventemitter2",
+      "version": "0.4.14",
+      "bom-ref": "cpe:2.3:a::eventemitter2:0.4.14::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::lazy:1.0.11::*:*:*:*:*:*",
+      "purl": "pkg:npm/lazy@1.0.11",
+      "name": "lazy",
+      "version": "1.0.11",
+      "bom-ref": "cpe:2.3:a::lazy:1.0.11::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::object-assign:4.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/object-assign@4.1.1",
+      "name": "object-assign",
+      "version": "4.1.1",
+      "bom-ref": "cpe:2.3:a::object-assign:4.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::optimist:0.6.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/optimist@0.6.1",
+      "name": "optimist",
+      "version": "0.6.1",
+      "bom-ref": "cpe:2.3:a::optimist:0.6.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::minimist:0.0.10::*:*:*:*:*:*",
+      "purl": "pkg:npm/minimist@0.0.10",
+      "name": "minimist",
+      "version": "0.0.10",
+      "bom-ref": "cpe:2.3:a::minimist:0.0.10::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::wordwrap:0.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/wordwrap@0.0.3",
+      "name": "wordwrap",
+      "version": "0.0.3",
+      "bom-ref": "cpe:2.3:a::wordwrap:0.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::path-is-absolute:2.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/path-is-absolute@2.0.0",
+      "name": "path-is-absolute",
+      "version": "2.0.0",
+      "bom-ref": "cpe:2.3:a::path-is-absolute:2.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::prettyjson:1.2.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/prettyjson@1.2.1",
+      "name": "prettyjson",
+      "version": "1.2.1",
+      "bom-ref": "cpe:2.3:a::prettyjson:1.2.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::colors:1.4.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/colors@1.4.0",
+      "name": "colors",
+      "version": "1.4.0",
+      "bom-ref": "cpe:2.3:a::colors:1.4.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::minimist:1.2.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/minimist@1.2.5",
+      "name": "minimist",
+      "version": "1.2.5",
+      "bom-ref": "cpe:2.3:a::minimist:1.2.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::shush:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/shush@1.0.0",
+      "name": "shush",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::shush:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::caller:0.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/caller@0.0.1",
+      "name": "caller",
+      "version": "0.0.1",
+      "bom-ref": "cpe:2.3:a::caller:0.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::tape:2.3.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/tape@2.3.3",
+      "name": "tape",
+      "version": "2.3.3",
+      "bom-ref": "cpe:2.3:a::tape:2.3.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::deep-equal:0.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/deep-equal@0.1.2",
+      "name": "deep-equal",
+      "version": "0.1.2",
+      "bom-ref": "cpe:2.3:a::deep-equal:0.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::defined:0.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/defined@0.0.0",
+      "name": "defined",
+      "version": "0.0.0",
+      "bom-ref": "cpe:2.3:a::defined:0.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::inherits:2.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/inherits@2.0.3",
+      "name": "inherits",
+      "version": "2.0.3",
+      "bom-ref": "cpe:2.3:a::inherits:2.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::jsonify:0.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/jsonify@0.0.0",
+      "name": "jsonify",
+      "version": "0.0.0",
+      "bom-ref": "cpe:2.3:a::jsonify:0.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::resumer:0.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/resumer@0.0.0",
+      "name": "resumer",
+      "version": "0.0.0",
+      "bom-ref": "cpe:2.3:a::resumer:0.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::through:2.3.8::*:*:*:*:*:*",
+      "purl": "pkg:npm/through@2.3.8",
+      "name": "through",
+      "version": "2.3.8",
+      "bom-ref": "cpe:2.3:a::through:2.3.8::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::through:2.3.8::*:*:*:*:*:*",
+      "purl": "pkg:npm/through@2.3.8",
+      "name": "through",
+      "version": "2.3.8",
+      "bom-ref": "cpe:2.3:a::through:2.3.8::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::strip-json-comments:0.1.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/strip-json-comments@0.1.3",
+      "name": "strip-json-comments",
+      "version": "0.1.3",
+      "bom-ref": "cpe:2.3:a::strip-json-comments:0.1.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::utile:0.3.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/utile@0.3.0",
+      "name": "utile",
+      "version": "0.3.0",
+      "bom-ref": "cpe:2.3:a::utile:0.3.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::winston:0.8.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/winston@0.8.3",
+      "name": "winston",
+      "version": "0.8.3",
+      "bom-ref": "cpe:2.3:a::winston:0.8.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::grunt-cli:1.3.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/grunt-cli@1.3.2",
+      "name": "grunt-cli",
+      "version": "1.3.2",
+      "bom-ref": "cpe:2.3:a::grunt-cli:1.3.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::grunt-known-options:1.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/grunt-known-options@1.1.1",
+      "name": "grunt-known-options",
+      "version": "1.1.1",
+      "bom-ref": "cpe:2.3:a::grunt-known-options:1.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::interpret:1.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/interpret@1.1.0",
+      "name": "interpret",
+      "version": "1.1.0",
+      "bom-ref": "cpe:2.3:a::interpret:1.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::liftoff:2.5.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/liftoff@2.5.0",
+      "name": "liftoff",
+      "version": "2.5.0",
+      "bom-ref": "cpe:2.3:a::liftoff:2.5.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::extend:3.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/extend@3.0.2",
+      "name": "extend",
+      "version": "3.0.2",
+      "bom-ref": "cpe:2.3:a::extend:3.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::findup-sync:2.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/findup-sync@2.0.0",
+      "name": "findup-sync",
+      "version": "2.0.0",
+      "bom-ref": "cpe:2.3:a::findup-sync:2.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::detect-file:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/detect-file@1.0.0",
+      "name": "detect-file",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::detect-file:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-glob:3.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-glob@3.1.0",
+      "name": "is-glob",
+      "version": "3.1.0",
+      "bom-ref": "cpe:2.3:a::is-glob:3.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-extglob:2.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-extglob@2.1.1",
+      "name": "is-extglob",
+      "version": "2.1.1",
+      "bom-ref": "cpe:2.3:a::is-extglob:2.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::micromatch:3.1.10::*:*:*:*:*:*",
+      "purl": "pkg:npm/micromatch@3.1.10",
+      "name": "micromatch",
+      "version": "3.1.10",
+      "bom-ref": "cpe:2.3:a::micromatch:3.1.10::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::arr-diff:4.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/arr-diff@4.0.0",
+      "name": "arr-diff",
+      "version": "4.0.0",
+      "bom-ref": "cpe:2.3:a::arr-diff:4.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::array-unique:0.3.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/array-unique@0.3.2",
+      "name": "array-unique",
+      "version": "0.3.2",
+      "bom-ref": "cpe:2.3:a::array-unique:0.3.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::braces:2.3.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/braces@2.3.2",
+      "name": "braces",
+      "version": "2.3.2",
+      "bom-ref": "cpe:2.3:a::braces:2.3.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::arr-flatten:1.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/arr-flatten@1.1.0",
+      "name": "arr-flatten",
+      "version": "1.1.0",
+      "bom-ref": "cpe:2.3:a::arr-flatten:1.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::array-unique:0.3.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/array-unique@0.3.2",
+      "name": "array-unique",
+      "version": "0.3.2",
+      "bom-ref": "cpe:2.3:a::array-unique:0.3.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::extend-shallow:2.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/extend-shallow@2.0.1",
+      "name": "extend-shallow",
+      "version": "2.0.1",
+      "bom-ref": "cpe:2.3:a::extend-shallow:2.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-extendable:0.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-extendable@0.1.1",
+      "name": "is-extendable",
+      "version": "0.1.1",
+      "bom-ref": "cpe:2.3:a::is-extendable:0.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::fill-range:4.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/fill-range@4.0.0",
+      "name": "fill-range",
+      "version": "4.0.0",
+      "bom-ref": "cpe:2.3:a::fill-range:4.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::extend-shallow:2.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/extend-shallow@2.0.1",
+      "name": "extend-shallow",
+      "version": "2.0.1",
+      "bom-ref": "cpe:2.3:a::extend-shallow:2.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-extendable:0.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-extendable@0.1.1",
+      "name": "is-extendable",
+      "version": "0.1.1",
+      "bom-ref": "cpe:2.3:a::is-extendable:0.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-number:3.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-number@3.0.0",
+      "name": "is-number",
+      "version": "3.0.0",
+      "bom-ref": "cpe:2.3:a::is-number:3.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::kind-of:3.2.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/kind-of@3.2.2",
+      "name": "kind-of",
+      "version": "3.2.2",
+      "bom-ref": "cpe:2.3:a::kind-of:3.2.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-buffer:1.1.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-buffer@1.1.6",
+      "name": "is-buffer",
+      "version": "1.1.6",
+      "bom-ref": "cpe:2.3:a::is-buffer:1.1.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::repeat-string:1.6.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/repeat-string@1.6.1",
+      "name": "repeat-string",
+      "version": "1.6.1",
+      "bom-ref": "cpe:2.3:a::repeat-string:1.6.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::to-regex-range:2.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/to-regex-range@2.1.1",
+      "name": "to-regex-range",
+      "version": "2.1.1",
+      "bom-ref": "cpe:2.3:a::to-regex-range:2.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-number:3.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-number@3.0.0",
+      "name": "is-number",
+      "version": "3.0.0",
+      "bom-ref": "cpe:2.3:a::is-number:3.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::repeat-string:1.6.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/repeat-string@1.6.1",
+      "name": "repeat-string",
+      "version": "1.6.1",
+      "bom-ref": "cpe:2.3:a::repeat-string:1.6.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::isobject:3.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/isobject@3.0.1",
+      "name": "isobject",
+      "version": "3.0.1",
+      "bom-ref": "cpe:2.3:a::isobject:3.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::repeat-element:1.1.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/repeat-element@1.1.3",
+      "name": "repeat-element",
+      "version": "1.1.3",
+      "bom-ref": "cpe:2.3:a::repeat-element:1.1.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::snapdragon:0.8.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/snapdragon@0.8.2",
+      "name": "snapdragon",
+      "version": "0.8.2",
+      "bom-ref": "cpe:2.3:a::snapdragon:0.8.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::base:0.11.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/base@0.11.2",
+      "name": "base",
+      "version": "0.11.2",
+      "bom-ref": "cpe:2.3:a::base:0.11.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::cache-base:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/cache-base@1.0.1",
+      "name": "cache-base",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::cache-base:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::collection-visit:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/collection-visit@1.0.0",
+      "name": "collection-visit",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::collection-visit:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::map-visit:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/map-visit@1.0.0",
+      "name": "map-visit",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::map-visit:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::object-visit:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/object-visit@1.0.1",
+      "name": "object-visit",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::object-visit:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::isobject:3.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/isobject@3.0.1",
+      "name": "isobject",
+      "version": "3.0.1",
+      "bom-ref": "cpe:2.3:a::isobject:3.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::object-visit:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/object-visit@1.0.1",
+      "name": "object-visit",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::object-visit:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::component-emitter:1.2.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/component-emitter@1.2.1",
+      "name": "component-emitter",
+      "version": "1.2.1",
+      "bom-ref": "cpe:2.3:a::component-emitter:1.2.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::get-value:2.0.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/get-value@2.0.6",
+      "name": "get-value",
+      "version": "2.0.6",
+      "bom-ref": "cpe:2.3:a::get-value:2.0.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::has-value:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/has-value@1.0.0",
+      "name": "has-value",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::has-value:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::get-value:2.0.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/get-value@2.0.6",
+      "name": "get-value",
+      "version": "2.0.6",
+      "bom-ref": "cpe:2.3:a::get-value:2.0.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::has-values:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/has-values@1.0.0",
+      "name": "has-values",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::has-values:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-number:3.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-number@3.0.0",
+      "name": "is-number",
+      "version": "3.0.0",
+      "bom-ref": "cpe:2.3:a::is-number:3.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::kind-of:4.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/kind-of@4.0.0",
+      "name": "kind-of",
+      "version": "4.0.0",
+      "bom-ref": "cpe:2.3:a::kind-of:4.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-buffer:1.1.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-buffer@1.1.6",
+      "name": "is-buffer",
+      "version": "1.1.6",
+      "bom-ref": "cpe:2.3:a::is-buffer:1.1.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::isobject:3.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/isobject@3.0.1",
+      "name": "isobject",
+      "version": "3.0.1",
+      "bom-ref": "cpe:2.3:a::isobject:3.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::isobject:3.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/isobject@3.0.1",
+      "name": "isobject",
+      "version": "3.0.1",
+      "bom-ref": "cpe:2.3:a::isobject:3.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::set-value:2.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/set-value@2.0.0",
+      "name": "set-value",
+      "version": "2.0.0",
+      "bom-ref": "cpe:2.3:a::set-value:2.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::extend-shallow:2.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/extend-shallow@2.0.1",
+      "name": "extend-shallow",
+      "version": "2.0.1",
+      "bom-ref": "cpe:2.3:a::extend-shallow:2.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-extendable:0.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-extendable@0.1.1",
+      "name": "is-extendable",
+      "version": "0.1.1",
+      "bom-ref": "cpe:2.3:a::is-extendable:0.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-extendable:0.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-extendable@0.1.1",
+      "name": "is-extendable",
+      "version": "0.1.1",
+      "bom-ref": "cpe:2.3:a::is-extendable:0.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-plain-object:2.0.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-plain-object@2.0.4",
+      "name": "is-plain-object",
+      "version": "2.0.4",
+      "bom-ref": "cpe:2.3:a::is-plain-object:2.0.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::isobject:3.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/isobject@3.0.1",
+      "name": "isobject",
+      "version": "3.0.1",
+      "bom-ref": "cpe:2.3:a::isobject:3.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::split-string:3.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/split-string@3.1.0",
+      "name": "split-string",
+      "version": "3.1.0",
+      "bom-ref": "cpe:2.3:a::split-string:3.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::extend-shallow:3.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/extend-shallow@3.0.2",
+      "name": "extend-shallow",
+      "version": "3.0.2",
+      "bom-ref": "cpe:2.3:a::extend-shallow:3.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::assign-symbols:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/assign-symbols@1.0.0",
+      "name": "assign-symbols",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::assign-symbols:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-extendable:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-extendable@1.0.1",
+      "name": "is-extendable",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::is-extendable:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-plain-object:2.0.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-plain-object@2.0.4",
+      "name": "is-plain-object",
+      "version": "2.0.4",
+      "bom-ref": "cpe:2.3:a::is-plain-object:2.0.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::to-object-path:0.3.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/to-object-path@0.3.0",
+      "name": "to-object-path",
+      "version": "0.3.0",
+      "bom-ref": "cpe:2.3:a::to-object-path:0.3.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::kind-of:3.2.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/kind-of@3.2.2",
+      "name": "kind-of",
+      "version": "3.2.2",
+      "bom-ref": "cpe:2.3:a::kind-of:3.2.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::union-value:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/union-value@1.0.0",
+      "name": "union-value",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::union-value:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::arr-union:3.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/arr-union@3.1.0",
+      "name": "arr-union",
+      "version": "3.1.0",
+      "bom-ref": "cpe:2.3:a::arr-union:3.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::get-value:2.0.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/get-value@2.0.6",
+      "name": "get-value",
+      "version": "2.0.6",
+      "bom-ref": "cpe:2.3:a::get-value:2.0.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-extendable:0.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-extendable@0.1.1",
+      "name": "is-extendable",
+      "version": "0.1.1",
+      "bom-ref": "cpe:2.3:a::is-extendable:0.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::set-value:0.4.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/set-value@0.4.3",
+      "name": "set-value",
+      "version": "0.4.3",
+      "bom-ref": "cpe:2.3:a::set-value:0.4.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::extend-shallow:2.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/extend-shallow@2.0.1",
+      "name": "extend-shallow",
+      "version": "2.0.1",
+      "bom-ref": "cpe:2.3:a::extend-shallow:2.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-extendable:0.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-extendable@0.1.1",
+      "name": "is-extendable",
+      "version": "0.1.1",
+      "bom-ref": "cpe:2.3:a::is-extendable:0.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-extendable:0.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-extendable@0.1.1",
+      "name": "is-extendable",
+      "version": "0.1.1",
+      "bom-ref": "cpe:2.3:a::is-extendable:0.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-plain-object:2.0.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-plain-object@2.0.4",
+      "name": "is-plain-object",
+      "version": "2.0.4",
+      "bom-ref": "cpe:2.3:a::is-plain-object:2.0.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::to-object-path:0.3.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/to-object-path@0.3.0",
+      "name": "to-object-path",
+      "version": "0.3.0",
+      "bom-ref": "cpe:2.3:a::to-object-path:0.3.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::unset-value:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/unset-value@1.0.0",
+      "name": "unset-value",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::unset-value:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::has-value:0.3.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/has-value@0.3.1",
+      "name": "has-value",
+      "version": "0.3.1",
+      "bom-ref": "cpe:2.3:a::has-value:0.3.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::get-value:2.0.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/get-value@2.0.6",
+      "name": "get-value",
+      "version": "2.0.6",
+      "bom-ref": "cpe:2.3:a::get-value:2.0.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::has-values:0.1.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/has-values@0.1.4",
+      "name": "has-values",
+      "version": "0.1.4",
+      "bom-ref": "cpe:2.3:a::has-values:0.1.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::isobject:2.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/isobject@2.1.0",
+      "name": "isobject",
+      "version": "2.1.0",
+      "bom-ref": "cpe:2.3:a::isobject:2.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::isarray:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/isarray@1.0.0",
+      "name": "isarray",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::isarray:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::isobject:3.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/isobject@3.0.1",
+      "name": "isobject",
+      "version": "3.0.1",
+      "bom-ref": "cpe:2.3:a::isobject:3.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::class-utils:0.3.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/class-utils@0.3.6",
+      "name": "class-utils",
+      "version": "0.3.6",
+      "bom-ref": "cpe:2.3:a::class-utils:0.3.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::arr-union:3.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/arr-union@3.1.0",
+      "name": "arr-union",
+      "version": "3.1.0",
+      "bom-ref": "cpe:2.3:a::arr-union:3.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::define-property:0.2.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/define-property@0.2.5",
+      "name": "define-property",
+      "version": "0.2.5",
+      "bom-ref": "cpe:2.3:a::define-property:0.2.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-descriptor:0.1.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-descriptor@0.1.6",
+      "name": "is-descriptor",
+      "version": "0.1.6",
+      "bom-ref": "cpe:2.3:a::is-descriptor:0.1.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-accessor-descriptor:0.1.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-accessor-descriptor@0.1.6",
+      "name": "is-accessor-descriptor",
+      "version": "0.1.6",
+      "bom-ref": "cpe:2.3:a::is-accessor-descriptor:0.1.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::kind-of:3.2.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/kind-of@3.2.2",
+      "name": "kind-of",
+      "version": "3.2.2",
+      "bom-ref": "cpe:2.3:a::kind-of:3.2.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-data-descriptor:0.1.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-data-descriptor@0.1.4",
+      "name": "is-data-descriptor",
+      "version": "0.1.4",
+      "bom-ref": "cpe:2.3:a::is-data-descriptor:0.1.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::kind-of:3.2.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/kind-of@3.2.2",
+      "name": "kind-of",
+      "version": "3.2.2",
+      "bom-ref": "cpe:2.3:a::kind-of:3.2.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::kind-of:5.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/kind-of@5.1.0",
+      "name": "kind-of",
+      "version": "5.1.0",
+      "bom-ref": "cpe:2.3:a::kind-of:5.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::isobject:3.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/isobject@3.0.1",
+      "name": "isobject",
+      "version": "3.0.1",
+      "bom-ref": "cpe:2.3:a::isobject:3.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::static-extend:0.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/static-extend@0.1.2",
+      "name": "static-extend",
+      "version": "0.1.2",
+      "bom-ref": "cpe:2.3:a::static-extend:0.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::define-property:0.2.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/define-property@0.2.5",
+      "name": "define-property",
+      "version": "0.2.5",
+      "bom-ref": "cpe:2.3:a::define-property:0.2.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-descriptor:0.1.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-descriptor@0.1.6",
+      "name": "is-descriptor",
+      "version": "0.1.6",
+      "bom-ref": "cpe:2.3:a::is-descriptor:0.1.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::object-copy:0.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/object-copy@0.1.0",
+      "name": "object-copy",
+      "version": "0.1.0",
+      "bom-ref": "cpe:2.3:a::object-copy:0.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::copy-descriptor:0.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/copy-descriptor@0.1.1",
+      "name": "copy-descriptor",
+      "version": "0.1.1",
+      "bom-ref": "cpe:2.3:a::copy-descriptor:0.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::define-property:0.2.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/define-property@0.2.5",
+      "name": "define-property",
+      "version": "0.2.5",
+      "bom-ref": "cpe:2.3:a::define-property:0.2.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-descriptor:0.1.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-descriptor@0.1.6",
+      "name": "is-descriptor",
+      "version": "0.1.6",
+      "bom-ref": "cpe:2.3:a::is-descriptor:0.1.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::kind-of:3.2.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/kind-of@3.2.2",
+      "name": "kind-of",
+      "version": "3.2.2",
+      "bom-ref": "cpe:2.3:a::kind-of:3.2.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::component-emitter:1.2.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/component-emitter@1.2.1",
+      "name": "component-emitter",
+      "version": "1.2.1",
+      "bom-ref": "cpe:2.3:a::component-emitter:1.2.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::define-property:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/define-property@1.0.0",
+      "name": "define-property",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::define-property:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-descriptor:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-descriptor@1.0.2",
+      "name": "is-descriptor",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::is-descriptor:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-accessor-descriptor:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-accessor-descriptor@1.0.0",
+      "name": "is-accessor-descriptor",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::is-accessor-descriptor:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::kind-of:6.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/kind-of@6.0.2",
+      "name": "kind-of",
+      "version": "6.0.2",
+      "bom-ref": "cpe:2.3:a::kind-of:6.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-data-descriptor:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-data-descriptor@1.0.0",
+      "name": "is-data-descriptor",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::is-data-descriptor:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::kind-of:6.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/kind-of@6.0.2",
+      "name": "kind-of",
+      "version": "6.0.2",
+      "bom-ref": "cpe:2.3:a::kind-of:6.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::kind-of:6.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/kind-of@6.0.2",
+      "name": "kind-of",
+      "version": "6.0.2",
+      "bom-ref": "cpe:2.3:a::kind-of:6.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::isobject:3.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/isobject@3.0.1",
+      "name": "isobject",
+      "version": "3.0.1",
+      "bom-ref": "cpe:2.3:a::isobject:3.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::mixin-deep:1.3.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/mixin-deep@1.3.1",
+      "name": "mixin-deep",
+      "version": "1.3.1",
+      "bom-ref": "cpe:2.3:a::mixin-deep:1.3.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::for-in:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/for-in@1.0.2",
+      "name": "for-in",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::for-in:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-extendable:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-extendable@1.0.1",
+      "name": "is-extendable",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::is-extendable:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-plain-object:2.0.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-plain-object@2.0.4",
+      "name": "is-plain-object",
+      "version": "2.0.4",
+      "bom-ref": "cpe:2.3:a::is-plain-object:2.0.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::pascalcase:0.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/pascalcase@0.1.1",
+      "name": "pascalcase",
+      "version": "0.1.1",
+      "bom-ref": "cpe:2.3:a::pascalcase:0.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::debug:2.6.9::*:*:*:*:*:*",
+      "purl": "pkg:npm/debug@2.6.9",
+      "name": "debug",
+      "version": "2.6.9",
+      "bom-ref": "cpe:2.3:a::debug:2.6.9::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::ms:2.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/ms@2.0.0",
+      "name": "ms",
+      "version": "2.0.0",
+      "bom-ref": "cpe:2.3:a::ms:2.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::define-property:0.2.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/define-property@0.2.5",
+      "name": "define-property",
+      "version": "0.2.5",
+      "bom-ref": "cpe:2.3:a::define-property:0.2.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-descriptor:0.1.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-descriptor@0.1.6",
+      "name": "is-descriptor",
+      "version": "0.1.6",
+      "bom-ref": "cpe:2.3:a::is-descriptor:0.1.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::extend-shallow:2.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/extend-shallow@2.0.1",
+      "name": "extend-shallow",
+      "version": "2.0.1",
+      "bom-ref": "cpe:2.3:a::extend-shallow:2.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-extendable:0.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-extendable@0.1.1",
+      "name": "is-extendable",
+      "version": "0.1.1",
+      "bom-ref": "cpe:2.3:a::is-extendable:0.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::map-cache:0.2.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/map-cache@0.2.2",
+      "name": "map-cache",
+      "version": "0.2.2",
+      "bom-ref": "cpe:2.3:a::map-cache:0.2.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::source-map:0.5.7::*:*:*:*:*:*",
+      "purl": "pkg:npm/source-map@0.5.7",
+      "name": "source-map",
+      "version": "0.5.7",
+      "bom-ref": "cpe:2.3:a::source-map:0.5.7::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::source-map-resolve:0.5.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/source-map-resolve@0.5.2",
+      "name": "source-map-resolve",
+      "version": "0.5.2",
+      "bom-ref": "cpe:2.3:a::source-map-resolve:0.5.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::atob:2.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/atob@2.1.2",
+      "name": "atob",
+      "version": "2.1.2",
+      "bom-ref": "cpe:2.3:a::atob:2.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::decode-uri-component:0.2.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/decode-uri-component@0.2.0",
+      "name": "decode-uri-component",
+      "version": "0.2.0",
+      "bom-ref": "cpe:2.3:a::decode-uri-component:0.2.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::resolve-url:0.2.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/resolve-url@0.2.1",
+      "name": "resolve-url",
+      "version": "0.2.1",
+      "bom-ref": "cpe:2.3:a::resolve-url:0.2.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::source-map-url:0.4.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/source-map-url@0.4.0",
+      "name": "source-map-url",
+      "version": "0.4.0",
+      "bom-ref": "cpe:2.3:a::source-map-url:0.4.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::urix:0.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/urix@0.1.0",
+      "name": "urix",
+      "version": "0.1.0",
+      "bom-ref": "cpe:2.3:a::urix:0.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::use:3.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/use@3.1.1",
+      "name": "use",
+      "version": "3.1.1",
+      "bom-ref": "cpe:2.3:a::use:3.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::snapdragon-node:2.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/snapdragon-node@2.1.1",
+      "name": "snapdragon-node",
+      "version": "2.1.1",
+      "bom-ref": "cpe:2.3:a::snapdragon-node:2.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::define-property:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/define-property@1.0.0",
+      "name": "define-property",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::define-property:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-descriptor:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-descriptor@1.0.2",
+      "name": "is-descriptor",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::is-descriptor:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-accessor-descriptor:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-accessor-descriptor@1.0.0",
+      "name": "is-accessor-descriptor",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::is-accessor-descriptor:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-data-descriptor:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-data-descriptor@1.0.0",
+      "name": "is-data-descriptor",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::is-data-descriptor:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::kind-of:6.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/kind-of@6.0.2",
+      "name": "kind-of",
+      "version": "6.0.2",
+      "bom-ref": "cpe:2.3:a::kind-of:6.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::isobject:3.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/isobject@3.0.1",
+      "name": "isobject",
+      "version": "3.0.1",
+      "bom-ref": "cpe:2.3:a::isobject:3.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::snapdragon-util:3.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/snapdragon-util@3.0.1",
+      "name": "snapdragon-util",
+      "version": "3.0.1",
+      "bom-ref": "cpe:2.3:a::snapdragon-util:3.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::kind-of:3.2.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/kind-of@3.2.2",
+      "name": "kind-of",
+      "version": "3.2.2",
+      "bom-ref": "cpe:2.3:a::kind-of:3.2.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::split-string:3.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/split-string@3.1.0",
+      "name": "split-string",
+      "version": "3.1.0",
+      "bom-ref": "cpe:2.3:a::split-string:3.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::to-regex:3.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/to-regex@3.0.2",
+      "name": "to-regex",
+      "version": "3.0.2",
+      "bom-ref": "cpe:2.3:a::to-regex:3.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::define-property:2.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/define-property@2.0.2",
+      "name": "define-property",
+      "version": "2.0.2",
+      "bom-ref": "cpe:2.3:a::define-property:2.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-descriptor:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-descriptor@1.0.2",
+      "name": "is-descriptor",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::is-descriptor:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-accessor-descriptor:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-accessor-descriptor@1.0.0",
+      "name": "is-accessor-descriptor",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::is-accessor-descriptor:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-data-descriptor:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-data-descriptor@1.0.0",
+      "name": "is-data-descriptor",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::is-data-descriptor:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::kind-of:6.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/kind-of@6.0.2",
+      "name": "kind-of",
+      "version": "6.0.2",
+      "bom-ref": "cpe:2.3:a::kind-of:6.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::isobject:3.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/isobject@3.0.1",
+      "name": "isobject",
+      "version": "3.0.1",
+      "bom-ref": "cpe:2.3:a::isobject:3.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::extend-shallow:3.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/extend-shallow@3.0.2",
+      "name": "extend-shallow",
+      "version": "3.0.2",
+      "bom-ref": "cpe:2.3:a::extend-shallow:3.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::regex-not:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/regex-not@1.0.2",
+      "name": "regex-not",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::regex-not:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::extend-shallow:3.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/extend-shallow@3.0.2",
+      "name": "extend-shallow",
+      "version": "3.0.2",
+      "bom-ref": "cpe:2.3:a::extend-shallow:3.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::safe-regex:1.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/safe-regex@1.1.0",
+      "name": "safe-regex",
+      "version": "1.1.0",
+      "bom-ref": "cpe:2.3:a::safe-regex:1.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::ret:0.1.15::*:*:*:*:*:*",
+      "purl": "pkg:npm/ret@0.1.15",
+      "name": "ret",
+      "version": "0.1.15",
+      "bom-ref": "cpe:2.3:a::ret:0.1.15::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::safe-regex:1.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/safe-regex@1.1.0",
+      "name": "safe-regex",
+      "version": "1.1.0",
+      "bom-ref": "cpe:2.3:a::safe-regex:1.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::define-property:2.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/define-property@2.0.2",
+      "name": "define-property",
+      "version": "2.0.2",
+      "bom-ref": "cpe:2.3:a::define-property:2.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::extend-shallow:3.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/extend-shallow@3.0.2",
+      "name": "extend-shallow",
+      "version": "3.0.2",
+      "bom-ref": "cpe:2.3:a::extend-shallow:3.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::extglob:2.0.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/extglob@2.0.4",
+      "name": "extglob",
+      "version": "2.0.4",
+      "bom-ref": "cpe:2.3:a::extglob:2.0.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::array-unique:0.3.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/array-unique@0.3.2",
+      "name": "array-unique",
+      "version": "0.3.2",
+      "bom-ref": "cpe:2.3:a::array-unique:0.3.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::define-property:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/define-property@1.0.0",
+      "name": "define-property",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::define-property:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-descriptor:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-descriptor@1.0.2",
+      "name": "is-descriptor",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::is-descriptor:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-accessor-descriptor:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-accessor-descriptor@1.0.0",
+      "name": "is-accessor-descriptor",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::is-accessor-descriptor:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-data-descriptor:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-data-descriptor@1.0.0",
+      "name": "is-data-descriptor",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::is-data-descriptor:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::kind-of:6.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/kind-of@6.0.2",
+      "name": "kind-of",
+      "version": "6.0.2",
+      "bom-ref": "cpe:2.3:a::kind-of:6.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::expand-brackets:2.1.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/expand-brackets@2.1.4",
+      "name": "expand-brackets",
+      "version": "2.1.4",
+      "bom-ref": "cpe:2.3:a::expand-brackets:2.1.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::debug:2.6.9::*:*:*:*:*:*",
+      "purl": "pkg:npm/debug@2.6.9",
+      "name": "debug",
+      "version": "2.6.9",
+      "bom-ref": "cpe:2.3:a::debug:2.6.9::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::define-property:0.2.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/define-property@0.2.5",
+      "name": "define-property",
+      "version": "0.2.5",
+      "bom-ref": "cpe:2.3:a::define-property:0.2.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-descriptor:0.1.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-descriptor@0.1.6",
+      "name": "is-descriptor",
+      "version": "0.1.6",
+      "bom-ref": "cpe:2.3:a::is-descriptor:0.1.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::extend-shallow:2.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/extend-shallow@2.0.1",
+      "name": "extend-shallow",
+      "version": "2.0.1",
+      "bom-ref": "cpe:2.3:a::extend-shallow:2.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-extendable:0.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-extendable@0.1.1",
+      "name": "is-extendable",
+      "version": "0.1.1",
+      "bom-ref": "cpe:2.3:a::is-extendable:0.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::posix-character-classes:0.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/posix-character-classes@0.1.1",
+      "name": "posix-character-classes",
+      "version": "0.1.1",
+      "bom-ref": "cpe:2.3:a::posix-character-classes:0.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::regex-not:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/regex-not@1.0.2",
+      "name": "regex-not",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::regex-not:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::snapdragon:0.8.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/snapdragon@0.8.2",
+      "name": "snapdragon",
+      "version": "0.8.2",
+      "bom-ref": "cpe:2.3:a::snapdragon:0.8.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::to-regex:3.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/to-regex@3.0.2",
+      "name": "to-regex",
+      "version": "3.0.2",
+      "bom-ref": "cpe:2.3:a::to-regex:3.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::extend-shallow:2.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/extend-shallow@2.0.1",
+      "name": "extend-shallow",
+      "version": "2.0.1",
+      "bom-ref": "cpe:2.3:a::extend-shallow:2.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-extendable:0.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-extendable@0.1.1",
+      "name": "is-extendable",
+      "version": "0.1.1",
+      "bom-ref": "cpe:2.3:a::is-extendable:0.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::fragment-cache:0.2.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/fragment-cache@0.2.1",
+      "name": "fragment-cache",
+      "version": "0.2.1",
+      "bom-ref": "cpe:2.3:a::fragment-cache:0.2.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::map-cache:0.2.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/map-cache@0.2.2",
+      "name": "map-cache",
+      "version": "0.2.2",
+      "bom-ref": "cpe:2.3:a::map-cache:0.2.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::regex-not:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/regex-not@1.0.2",
+      "name": "regex-not",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::regex-not:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::snapdragon:0.8.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/snapdragon@0.8.2",
+      "name": "snapdragon",
+      "version": "0.8.2",
+      "bom-ref": "cpe:2.3:a::snapdragon:0.8.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::to-regex:3.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/to-regex@3.0.2",
+      "name": "to-regex",
+      "version": "3.0.2",
+      "bom-ref": "cpe:2.3:a::to-regex:3.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::fragment-cache:0.2.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/fragment-cache@0.2.1",
+      "name": "fragment-cache",
+      "version": "0.2.1",
+      "bom-ref": "cpe:2.3:a::fragment-cache:0.2.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::kind-of:6.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/kind-of@6.0.2",
+      "name": "kind-of",
+      "version": "6.0.2",
+      "bom-ref": "cpe:2.3:a::kind-of:6.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::nanomatch:1.2.13::*:*:*:*:*:*",
+      "purl": "pkg:npm/nanomatch@1.2.13",
+      "name": "nanomatch",
+      "version": "1.2.13",
+      "bom-ref": "cpe:2.3:a::nanomatch:1.2.13::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::arr-diff:4.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/arr-diff@4.0.0",
+      "name": "arr-diff",
+      "version": "4.0.0",
+      "bom-ref": "cpe:2.3:a::arr-diff:4.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::array-unique:0.3.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/array-unique@0.3.2",
+      "name": "array-unique",
+      "version": "0.3.2",
+      "bom-ref": "cpe:2.3:a::array-unique:0.3.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::define-property:2.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/define-property@2.0.2",
+      "name": "define-property",
+      "version": "2.0.2",
+      "bom-ref": "cpe:2.3:a::define-property:2.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::extend-shallow:3.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/extend-shallow@3.0.2",
+      "name": "extend-shallow",
+      "version": "3.0.2",
+      "bom-ref": "cpe:2.3:a::extend-shallow:3.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::fragment-cache:0.2.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/fragment-cache@0.2.1",
+      "name": "fragment-cache",
+      "version": "0.2.1",
+      "bom-ref": "cpe:2.3:a::fragment-cache:0.2.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-windows:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-windows@1.0.2",
+      "name": "is-windows",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::is-windows:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::kind-of:6.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/kind-of@6.0.2",
+      "name": "kind-of",
+      "version": "6.0.2",
+      "bom-ref": "cpe:2.3:a::kind-of:6.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::object.pick:1.3.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/object.pick@1.3.0",
+      "name": "object.pick",
+      "version": "1.3.0",
+      "bom-ref": "cpe:2.3:a::object.pick:1.3.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::isobject:3.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/isobject@3.0.1",
+      "name": "isobject",
+      "version": "3.0.1",
+      "bom-ref": "cpe:2.3:a::isobject:3.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::regex-not:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/regex-not@1.0.2",
+      "name": "regex-not",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::regex-not:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::snapdragon:0.8.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/snapdragon@0.8.2",
+      "name": "snapdragon",
+      "version": "0.8.2",
+      "bom-ref": "cpe:2.3:a::snapdragon:0.8.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::to-regex:3.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/to-regex@3.0.2",
+      "name": "to-regex",
+      "version": "3.0.2",
+      "bom-ref": "cpe:2.3:a::to-regex:3.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::object.pick:1.3.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/object.pick@1.3.0",
+      "name": "object.pick",
+      "version": "1.3.0",
+      "bom-ref": "cpe:2.3:a::object.pick:1.3.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::regex-not:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/regex-not@1.0.2",
+      "name": "regex-not",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::regex-not:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::snapdragon:0.8.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/snapdragon@0.8.2",
+      "name": "snapdragon",
+      "version": "0.8.2",
+      "bom-ref": "cpe:2.3:a::snapdragon:0.8.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::to-regex:3.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/to-regex@3.0.2",
+      "name": "to-regex",
+      "version": "3.0.2",
+      "bom-ref": "cpe:2.3:a::to-regex:3.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::resolve-dir:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/resolve-dir@1.0.1",
+      "name": "resolve-dir",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::resolve-dir:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::expand-tilde:2.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/expand-tilde@2.0.2",
+      "name": "expand-tilde",
+      "version": "2.0.2",
+      "bom-ref": "cpe:2.3:a::expand-tilde:2.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::homedir-polyfill:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/homedir-polyfill@1.0.1",
+      "name": "homedir-polyfill",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::homedir-polyfill:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::parse-passwd:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/parse-passwd@1.0.0",
+      "name": "parse-passwd",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::parse-passwd:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::global-modules:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/global-modules@1.0.0",
+      "name": "global-modules",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::global-modules:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::global-prefix:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/global-prefix@1.0.2",
+      "name": "global-prefix",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::global-prefix:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::expand-tilde:2.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/expand-tilde@2.0.2",
+      "name": "expand-tilde",
+      "version": "2.0.2",
+      "bom-ref": "cpe:2.3:a::expand-tilde:2.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::homedir-polyfill:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/homedir-polyfill@1.0.1",
+      "name": "homedir-polyfill",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::homedir-polyfill:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::ini:1.3.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/ini@1.3.5",
+      "name": "ini",
+      "version": "1.3.5",
+      "bom-ref": "cpe:2.3:a::ini:1.3.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-windows:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-windows@1.0.2",
+      "name": "is-windows",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::is-windows:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::which:1.3.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/which@1.3.1",
+      "name": "which",
+      "version": "1.3.1",
+      "bom-ref": "cpe:2.3:a::which:1.3.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::isexe:2.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/isexe@2.0.0",
+      "name": "isexe",
+      "version": "2.0.0",
+      "bom-ref": "cpe:2.3:a::isexe:2.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-windows:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-windows@1.0.2",
+      "name": "is-windows",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::is-windows:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::resolve-dir:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/resolve-dir@1.0.1",
+      "name": "resolve-dir",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::resolve-dir:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::fined:1.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/fined@1.1.1",
+      "name": "fined",
+      "version": "1.1.1",
+      "bom-ref": "cpe:2.3:a::fined:1.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::expand-tilde:2.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/expand-tilde@2.0.2",
+      "name": "expand-tilde",
+      "version": "2.0.2",
+      "bom-ref": "cpe:2.3:a::expand-tilde:2.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-plain-object:2.0.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-plain-object@2.0.4",
+      "name": "is-plain-object",
+      "version": "2.0.4",
+      "bom-ref": "cpe:2.3:a::is-plain-object:2.0.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::object.defaults:1.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/object.defaults@1.1.0",
+      "name": "object.defaults",
+      "version": "1.1.0",
+      "bom-ref": "cpe:2.3:a::object.defaults:1.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::array-each:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/array-each@1.0.1",
+      "name": "array-each",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::array-each:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::array-slice:1.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/array-slice@1.1.0",
+      "name": "array-slice",
+      "version": "1.1.0",
+      "bom-ref": "cpe:2.3:a::array-slice:1.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::for-own:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/for-own@1.0.0",
+      "name": "for-own",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::for-own:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::for-in:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/for-in@1.0.2",
+      "name": "for-in",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::for-in:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::isobject:3.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/isobject@3.0.1",
+      "name": "isobject",
+      "version": "3.0.1",
+      "bom-ref": "cpe:2.3:a::isobject:3.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::object.pick:1.3.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/object.pick@1.3.0",
+      "name": "object.pick",
+      "version": "1.3.0",
+      "bom-ref": "cpe:2.3:a::object.pick:1.3.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::parse-filepath:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/parse-filepath@1.0.2",
+      "name": "parse-filepath",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::parse-filepath:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-absolute:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-absolute@1.0.0",
+      "name": "is-absolute",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::is-absolute:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-relative:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-relative@1.0.0",
+      "name": "is-relative",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::is-relative:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-unc-path:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-unc-path@1.0.0",
+      "name": "is-unc-path",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::is-unc-path:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::unc-path-regex:0.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/unc-path-regex@0.1.2",
+      "name": "unc-path-regex",
+      "version": "0.1.2",
+      "bom-ref": "cpe:2.3:a::unc-path-regex:0.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-windows:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-windows@1.0.2",
+      "name": "is-windows",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::is-windows:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::map-cache:0.2.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/map-cache@0.2.2",
+      "name": "map-cache",
+      "version": "0.2.2",
+      "bom-ref": "cpe:2.3:a::map-cache:0.2.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::path-root:0.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/path-root@0.1.1",
+      "name": "path-root",
+      "version": "0.1.1",
+      "bom-ref": "cpe:2.3:a::path-root:0.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::path-root-regex:0.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/path-root-regex@0.1.2",
+      "name": "path-root-regex",
+      "version": "0.1.2",
+      "bom-ref": "cpe:2.3:a::path-root-regex:0.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::flagged-respawn:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/flagged-respawn@1.0.1",
+      "name": "flagged-respawn",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::flagged-respawn:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-plain-object:2.0.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-plain-object@2.0.4",
+      "name": "is-plain-object",
+      "version": "2.0.4",
+      "bom-ref": "cpe:2.3:a::is-plain-object:2.0.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::object.map:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/object.map@1.0.1",
+      "name": "object.map",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::object.map:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::for-own:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/for-own@1.0.0",
+      "name": "for-own",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::for-own:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::for-in:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/for-in@1.0.2",
+      "name": "for-in",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::for-in:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::make-iterator:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/make-iterator@1.0.1",
+      "name": "make-iterator",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::make-iterator:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::kind-of:6.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/kind-of@6.0.2",
+      "name": "kind-of",
+      "version": "6.0.2",
+      "bom-ref": "cpe:2.3:a::kind-of:6.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::rechoir:0.6.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/rechoir@0.6.2",
+      "name": "rechoir",
+      "version": "0.6.2",
+      "bom-ref": "cpe:2.3:a::rechoir:0.6.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::resolve:1.1.7::*:*:*:*:*:*",
+      "purl": "pkg:npm/resolve@1.1.7",
+      "name": "resolve",
+      "version": "1.1.7",
+      "bom-ref": "cpe:2.3:a::resolve:1.1.7::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::resolve:1.1.7::*:*:*:*:*:*",
+      "purl": "pkg:npm/resolve@1.1.7",
+      "name": "resolve",
+      "version": "1.1.7",
+      "bom-ref": "cpe:2.3:a::resolve:1.1.7::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::nopt:4.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/nopt@4.0.1",
+      "name": "nopt",
+      "version": "4.0.1",
+      "bom-ref": "cpe:2.3:a::nopt:4.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::abbrev:1.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/abbrev@1.1.1",
+      "name": "abbrev",
+      "version": "1.1.1",
+      "bom-ref": "cpe:2.3:a::abbrev:1.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::osenv:0.1.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/osenv@0.1.5",
+      "name": "osenv",
+      "version": "0.1.5",
+      "bom-ref": "cpe:2.3:a::osenv:0.1.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::os-homedir:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/os-homedir@1.0.2",
+      "name": "os-homedir",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::os-homedir:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::os-tmpdir:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/os-tmpdir@1.0.2",
+      "name": "os-tmpdir",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::os-tmpdir:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::v8flags:3.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/v8flags@3.1.2",
+      "name": "v8flags",
+      "version": "3.1.2",
+      "bom-ref": "cpe:2.3:a::v8flags:3.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::homedir-polyfill:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/homedir-polyfill@1.0.1",
+      "name": "homedir-polyfill",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::homedir-polyfill:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::grunt-concurrent:2.3.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/grunt-concurrent@2.3.1",
+      "name": "grunt-concurrent",
+      "version": "2.3.1",
+      "bom-ref": "cpe:2.3:a::grunt-concurrent:2.3.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::arrify:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/arrify@1.0.1",
+      "name": "arrify",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::arrify:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::async:1.5.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/async@1.5.2",
+      "name": "async",
+      "version": "1.5.2",
+      "bom-ref": "cpe:2.3:a::async:1.5.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::indent-string:2.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/indent-string@2.1.0",
+      "name": "indent-string",
+      "version": "2.1.0",
+      "bom-ref": "cpe:2.3:a::indent-string:2.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::repeating:2.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/repeating@2.0.1",
+      "name": "repeating",
+      "version": "2.0.1",
+      "bom-ref": "cpe:2.3:a::repeating:2.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-finite:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-finite@1.0.2",
+      "name": "is-finite",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::is-finite:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::number-is-nan:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/number-is-nan@1.0.1",
+      "name": "number-is-nan",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::number-is-nan:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::pad-stream:1.2.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/pad-stream@1.2.0",
+      "name": "pad-stream",
+      "version": "1.2.0",
+      "bom-ref": "cpe:2.3:a::pad-stream:1.2.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::meow:3.7.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/meow@3.7.0",
+      "name": "meow",
+      "version": "3.7.0",
+      "bom-ref": "cpe:2.3:a::meow:3.7.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::camelcase-keys:2.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/camelcase-keys@2.1.0",
+      "name": "camelcase-keys",
+      "version": "2.1.0",
+      "bom-ref": "cpe:2.3:a::camelcase-keys:2.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::camelcase:2.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/camelcase@2.1.1",
+      "name": "camelcase",
+      "version": "2.1.1",
+      "bom-ref": "cpe:2.3:a::camelcase:2.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::map-obj:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/map-obj@1.0.1",
+      "name": "map-obj",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::map-obj:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::decamelize:1.2.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/decamelize@1.2.0",
+      "name": "decamelize",
+      "version": "1.2.0",
+      "bom-ref": "cpe:2.3:a::decamelize:1.2.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::loud-rejection:1.6.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/loud-rejection@1.6.0",
+      "name": "loud-rejection",
+      "version": "1.6.0",
+      "bom-ref": "cpe:2.3:a::loud-rejection:1.6.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::currently-unhandled:0.4.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/currently-unhandled@0.4.1",
+      "name": "currently-unhandled",
+      "version": "0.4.1",
+      "bom-ref": "cpe:2.3:a::currently-unhandled:0.4.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::array-find-index:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/array-find-index@1.0.2",
+      "name": "array-find-index",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::array-find-index:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::signal-exit:3.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/signal-exit@3.0.2",
+      "name": "signal-exit",
+      "version": "3.0.2",
+      "bom-ref": "cpe:2.3:a::signal-exit:3.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::map-obj:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/map-obj@1.0.1",
+      "name": "map-obj",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::map-obj:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::minimist:1.2.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/minimist@1.2.0",
+      "name": "minimist",
+      "version": "1.2.0",
+      "bom-ref": "cpe:2.3:a::minimist:1.2.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::normalize-package-data:2.4.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/normalize-package-data@2.4.0",
+      "name": "normalize-package-data",
+      "version": "2.4.0",
+      "bom-ref": "cpe:2.3:a::normalize-package-data:2.4.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::hosted-git-info:2.7.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/hosted-git-info@2.7.1",
+      "name": "hosted-git-info",
+      "version": "2.7.1",
+      "bom-ref": "cpe:2.3:a::hosted-git-info:2.7.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-builtin-module:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-builtin-module@1.0.0",
+      "name": "is-builtin-module",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::is-builtin-module:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::builtin-modules:1.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/builtin-modules@1.1.1",
+      "name": "builtin-modules",
+      "version": "1.1.1",
+      "bom-ref": "cpe:2.3:a::builtin-modules:1.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::semver:5.6.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/semver@5.6.0",
+      "name": "semver",
+      "version": "5.6.0",
+      "bom-ref": "cpe:2.3:a::semver:5.6.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::validate-npm-package-license:3.0.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/validate-npm-package-license@3.0.4",
+      "name": "validate-npm-package-license",
+      "version": "3.0.4",
+      "bom-ref": "cpe:2.3:a::validate-npm-package-license:3.0.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::spdx-correct:3.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/spdx-correct@3.1.0",
+      "name": "spdx-correct",
+      "version": "3.1.0",
+      "bom-ref": "cpe:2.3:a::spdx-correct:3.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::spdx-expression-parse:3.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/spdx-expression-parse@3.0.0",
+      "name": "spdx-expression-parse",
+      "version": "3.0.0",
+      "bom-ref": "cpe:2.3:a::spdx-expression-parse:3.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::spdx-exceptions:2.2.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/spdx-exceptions@2.2.0",
+      "name": "spdx-exceptions",
+      "version": "2.2.0",
+      "bom-ref": "cpe:2.3:a::spdx-exceptions:2.2.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::spdx-license-ids:3.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/spdx-license-ids@3.0.3",
+      "name": "spdx-license-ids",
+      "version": "3.0.3",
+      "bom-ref": "cpe:2.3:a::spdx-license-ids:3.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::spdx-license-ids:3.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/spdx-license-ids@3.0.3",
+      "name": "spdx-license-ids",
+      "version": "3.0.3",
+      "bom-ref": "cpe:2.3:a::spdx-license-ids:3.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::spdx-expression-parse:3.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/spdx-expression-parse@3.0.0",
+      "name": "spdx-expression-parse",
+      "version": "3.0.0",
+      "bom-ref": "cpe:2.3:a::spdx-expression-parse:3.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::object-assign:4.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/object-assign@4.1.1",
+      "name": "object-assign",
+      "version": "4.1.1",
+      "bom-ref": "cpe:2.3:a::object-assign:4.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::read-pkg-up:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/read-pkg-up@1.0.1",
+      "name": "read-pkg-up",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::read-pkg-up:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::find-up:1.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/find-up@1.1.2",
+      "name": "find-up",
+      "version": "1.1.2",
+      "bom-ref": "cpe:2.3:a::find-up:1.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::path-exists:2.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/path-exists@2.1.0",
+      "name": "path-exists",
+      "version": "2.1.0",
+      "bom-ref": "cpe:2.3:a::path-exists:2.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::pinkie-promise:2.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/pinkie-promise@2.0.1",
+      "name": "pinkie-promise",
+      "version": "2.0.1",
+      "bom-ref": "cpe:2.3:a::pinkie-promise:2.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::pinkie:2.0.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/pinkie@2.0.4",
+      "name": "pinkie",
+      "version": "2.0.4",
+      "bom-ref": "cpe:2.3:a::pinkie:2.0.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::pinkie-promise:2.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/pinkie-promise@2.0.1",
+      "name": "pinkie-promise",
+      "version": "2.0.1",
+      "bom-ref": "cpe:2.3:a::pinkie-promise:2.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::read-pkg:1.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/read-pkg@1.1.0",
+      "name": "read-pkg",
+      "version": "1.1.0",
+      "bom-ref": "cpe:2.3:a::read-pkg:1.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::load-json-file:1.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/load-json-file@1.1.0",
+      "name": "load-json-file",
+      "version": "1.1.0",
+      "bom-ref": "cpe:2.3:a::load-json-file:1.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::graceful-fs:4.1.15::*:*:*:*:*:*",
+      "purl": "pkg:npm/graceful-fs@4.1.15",
+      "name": "graceful-fs",
+      "version": "4.1.15",
+      "bom-ref": "cpe:2.3:a::graceful-fs:4.1.15::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::parse-json:2.2.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/parse-json@2.2.0",
+      "name": "parse-json",
+      "version": "2.2.0",
+      "bom-ref": "cpe:2.3:a::parse-json:2.2.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::error-ex:1.3.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/error-ex@1.3.2",
+      "name": "error-ex",
+      "version": "1.3.2",
+      "bom-ref": "cpe:2.3:a::error-ex:1.3.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-arrayish:0.2.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-arrayish@0.2.1",
+      "name": "is-arrayish",
+      "version": "0.2.1",
+      "bom-ref": "cpe:2.3:a::is-arrayish:0.2.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::pify:2.3.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/pify@2.3.0",
+      "name": "pify",
+      "version": "2.3.0",
+      "bom-ref": "cpe:2.3:a::pify:2.3.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::pinkie-promise:2.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/pinkie-promise@2.0.1",
+      "name": "pinkie-promise",
+      "version": "2.0.1",
+      "bom-ref": "cpe:2.3:a::pinkie-promise:2.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::strip-bom:2.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/strip-bom@2.0.0",
+      "name": "strip-bom",
+      "version": "2.0.0",
+      "bom-ref": "cpe:2.3:a::strip-bom:2.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-utf8:0.2.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-utf8@0.2.1",
+      "name": "is-utf8",
+      "version": "0.2.1",
+      "bom-ref": "cpe:2.3:a::is-utf8:0.2.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::normalize-package-data:2.4.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/normalize-package-data@2.4.0",
+      "name": "normalize-package-data",
+      "version": "2.4.0",
+      "bom-ref": "cpe:2.3:a::normalize-package-data:2.4.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::path-type:1.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/path-type@1.1.0",
+      "name": "path-type",
+      "version": "1.1.0",
+      "bom-ref": "cpe:2.3:a::path-type:1.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::graceful-fs:4.1.15::*:*:*:*:*:*",
+      "purl": "pkg:npm/graceful-fs@4.1.15",
+      "name": "graceful-fs",
+      "version": "4.1.15",
+      "bom-ref": "cpe:2.3:a::graceful-fs:4.1.15::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::pify:2.3.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/pify@2.3.0",
+      "name": "pify",
+      "version": "2.3.0",
+      "bom-ref": "cpe:2.3:a::pify:2.3.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::pinkie-promise:2.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/pinkie-promise@2.0.1",
+      "name": "pinkie-promise",
+      "version": "2.0.1",
+      "bom-ref": "cpe:2.3:a::pinkie-promise:2.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::redent:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/redent@1.0.0",
+      "name": "redent",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::redent:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::indent-string:2.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/indent-string@2.1.0",
+      "name": "indent-string",
+      "version": "2.1.0",
+      "bom-ref": "cpe:2.3:a::indent-string:2.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::strip-indent:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/strip-indent@1.0.1",
+      "name": "strip-indent",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::strip-indent:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::get-stdin:4.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/get-stdin@4.0.1",
+      "name": "get-stdin",
+      "version": "4.0.1",
+      "bom-ref": "cpe:2.3:a::get-stdin:4.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::trim-newlines:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/trim-newlines@1.0.0",
+      "name": "trim-newlines",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::trim-newlines:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::pumpify:1.5.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/pumpify@1.5.1",
+      "name": "pumpify",
+      "version": "1.5.1",
+      "bom-ref": "cpe:2.3:a::pumpify:1.5.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::duplexify:3.6.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/duplexify@3.6.1",
+      "name": "duplexify",
+      "version": "3.6.1",
+      "bom-ref": "cpe:2.3:a::duplexify:3.6.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::end-of-stream:1.4.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/end-of-stream@1.4.1",
+      "name": "end-of-stream",
+      "version": "1.4.1",
+      "bom-ref": "cpe:2.3:a::end-of-stream:1.4.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::once:1.4.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/once@1.4.0",
+      "name": "once",
+      "version": "1.4.0",
+      "bom-ref": "cpe:2.3:a::once:1.4.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::wrappy:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/wrappy@1.0.2",
+      "name": "wrappy",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::wrappy:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::inherits:2.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/inherits@2.0.3",
+      "name": "inherits",
+      "version": "2.0.3",
+      "bom-ref": "cpe:2.3:a::inherits:2.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::readable-stream:2.3.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/readable-stream@2.3.6",
+      "name": "readable-stream",
+      "version": "2.3.6",
+      "bom-ref": "cpe:2.3:a::readable-stream:2.3.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::core-util-is:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/core-util-is@1.0.2",
+      "name": "core-util-is",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::core-util-is:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::inherits:2.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/inherits@2.0.3",
+      "name": "inherits",
+      "version": "2.0.3",
+      "bom-ref": "cpe:2.3:a::inherits:2.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::isarray:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/isarray@1.0.0",
+      "name": "isarray",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::isarray:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::process-nextick-args:2.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/process-nextick-args@2.0.0",
+      "name": "process-nextick-args",
+      "version": "2.0.0",
+      "bom-ref": "cpe:2.3:a::process-nextick-args:2.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::safe-buffer:5.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/safe-buffer@5.1.2",
+      "name": "safe-buffer",
+      "version": "5.1.2",
+      "bom-ref": "cpe:2.3:a::safe-buffer:5.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::string_decoder:1.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/string_decoder@1.1.1",
+      "name": "string_decoder",
+      "version": "1.1.1",
+      "bom-ref": "cpe:2.3:a::string_decoder:1.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::safe-buffer:5.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/safe-buffer@5.1.2",
+      "name": "safe-buffer",
+      "version": "5.1.2",
+      "bom-ref": "cpe:2.3:a::safe-buffer:5.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::util-deprecate:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/util-deprecate@1.0.2",
+      "name": "util-deprecate",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::util-deprecate:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::stream-shift:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/stream-shift@1.0.0",
+      "name": "stream-shift",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::stream-shift:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::inherits:2.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/inherits@2.0.3",
+      "name": "inherits",
+      "version": "2.0.3",
+      "bom-ref": "cpe:2.3:a::inherits:2.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::pump:2.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/pump@2.0.1",
+      "name": "pump",
+      "version": "2.0.1",
+      "bom-ref": "cpe:2.3:a::pump:2.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::end-of-stream:1.4.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/end-of-stream@1.4.1",
+      "name": "end-of-stream",
+      "version": "1.4.1",
+      "bom-ref": "cpe:2.3:a::end-of-stream:1.4.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::once:1.4.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/once@1.4.0",
+      "name": "once",
+      "version": "1.4.0",
+      "bom-ref": "cpe:2.3:a::once:1.4.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::repeating:2.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/repeating@2.0.1",
+      "name": "repeating",
+      "version": "2.0.1",
+      "bom-ref": "cpe:2.3:a::repeating:2.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::split2:1.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/split2@1.1.1",
+      "name": "split2",
+      "version": "1.1.1",
+      "bom-ref": "cpe:2.3:a::split2:1.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::through2:2.0.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/through2@2.0.5",
+      "name": "through2",
+      "version": "2.0.5",
+      "bom-ref": "cpe:2.3:a::through2:2.0.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::readable-stream:2.3.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/readable-stream@2.3.6",
+      "name": "readable-stream",
+      "version": "2.3.6",
+      "bom-ref": "cpe:2.3:a::readable-stream:2.3.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::xtend:4.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/xtend@4.0.1",
+      "name": "xtend",
+      "version": "4.0.1",
+      "bom-ref": "cpe:2.3:a::xtend:4.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::through2:2.0.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/through2@2.0.5",
+      "name": "through2",
+      "version": "2.0.5",
+      "bom-ref": "cpe:2.3:a::through2:2.0.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::grunt-contrib-watch:1.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/grunt-contrib-watch@1.1.0",
+      "name": "grunt-contrib-watch",
+      "version": "1.1.0",
+      "bom-ref": "cpe:2.3:a::grunt-contrib-watch:1.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::async:2.6.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/async@2.6.1",
+      "name": "async",
+      "version": "2.6.1",
+      "bom-ref": "cpe:2.3:a::async:2.6.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::lodash:4.17.11::*:*:*:*:*:*",
+      "purl": "pkg:npm/lodash@4.17.11",
+      "name": "lodash",
+      "version": "4.17.11",
+      "bom-ref": "cpe:2.3:a::lodash:4.17.11::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::gaze:1.1.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/gaze@1.1.3",
+      "name": "gaze",
+      "version": "1.1.3",
+      "bom-ref": "cpe:2.3:a::gaze:1.1.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::globule:1.2.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/globule@1.2.1",
+      "name": "globule",
+      "version": "1.2.1",
+      "bom-ref": "cpe:2.3:a::globule:1.2.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::glob:7.1.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/glob@7.1.3",
+      "name": "glob",
+      "version": "7.1.3",
+      "bom-ref": "cpe:2.3:a::glob:7.1.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::fs.realpath:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/fs.realpath@1.0.0",
+      "name": "fs.realpath",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::fs.realpath:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::inflight:1.0.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/inflight@1.0.6",
+      "name": "inflight",
+      "version": "1.0.6",
+      "bom-ref": "cpe:2.3:a::inflight:1.0.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::once:1.4.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/once@1.4.0",
+      "name": "once",
+      "version": "1.4.0",
+      "bom-ref": "cpe:2.3:a::once:1.4.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::wrappy:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/wrappy@1.0.2",
+      "name": "wrappy",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::wrappy:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::wrappy:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/wrappy@1.0.2",
+      "name": "wrappy",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::wrappy:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::inherits:2.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/inherits@2.0.3",
+      "name": "inherits",
+      "version": "2.0.3",
+      "bom-ref": "cpe:2.3:a::inherits:2.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::minimatch:3.0.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/minimatch@3.0.4",
+      "name": "minimatch",
+      "version": "3.0.4",
+      "bom-ref": "cpe:2.3:a::minimatch:3.0.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::brace-expansion:1.1.11::*:*:*:*:*:*",
+      "purl": "pkg:npm/brace-expansion@1.1.11",
+      "name": "brace-expansion",
+      "version": "1.1.11",
+      "bom-ref": "cpe:2.3:a::brace-expansion:1.1.11::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::balanced-match:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/balanced-match@1.0.0",
+      "name": "balanced-match",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::balanced-match:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::concat-map:0.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/concat-map@0.0.1",
+      "name": "concat-map",
+      "version": "0.0.1",
+      "bom-ref": "cpe:2.3:a::concat-map:0.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::once:1.4.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/once@1.4.0",
+      "name": "once",
+      "version": "1.4.0",
+      "bom-ref": "cpe:2.3:a::once:1.4.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::path-is-absolute:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/path-is-absolute@1.0.1",
+      "name": "path-is-absolute",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::path-is-absolute:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::lodash:4.17.11::*:*:*:*:*:*",
+      "purl": "pkg:npm/lodash@4.17.11",
+      "name": "lodash",
+      "version": "4.17.11",
+      "bom-ref": "cpe:2.3:a::lodash:4.17.11::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::minimatch:3.0.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/minimatch@3.0.4",
+      "name": "minimatch",
+      "version": "3.0.4",
+      "bom-ref": "cpe:2.3:a::minimatch:3.0.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::lodash:4.17.11::*:*:*:*:*:*",
+      "purl": "pkg:npm/lodash@4.17.11",
+      "name": "lodash",
+      "version": "4.17.11",
+      "bom-ref": "cpe:2.3:a::lodash:4.17.11::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::tiny-lr:1.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/tiny-lr@1.1.1",
+      "name": "tiny-lr",
+      "version": "1.1.1",
+      "bom-ref": "cpe:2.3:a::tiny-lr:1.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::body:5.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/body@5.1.0",
+      "name": "body",
+      "version": "5.1.0",
+      "bom-ref": "cpe:2.3:a::body:5.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::continuable-cache:0.3.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/continuable-cache@0.3.1",
+      "name": "continuable-cache",
+      "version": "0.3.1",
+      "bom-ref": "cpe:2.3:a::continuable-cache:0.3.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::error:7.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/error@7.0.2",
+      "name": "error",
+      "version": "7.0.2",
+      "bom-ref": "cpe:2.3:a::error:7.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::string-template:0.2.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/string-template@0.2.1",
+      "name": "string-template",
+      "version": "0.2.1",
+      "bom-ref": "cpe:2.3:a::string-template:0.2.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::xtend:4.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/xtend@4.0.1",
+      "name": "xtend",
+      "version": "4.0.1",
+      "bom-ref": "cpe:2.3:a::xtend:4.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::raw-body:1.1.7::*:*:*:*:*:*",
+      "purl": "pkg:npm/raw-body@1.1.7",
+      "name": "raw-body",
+      "version": "1.1.7",
+      "bom-ref": "cpe:2.3:a::raw-body:1.1.7::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::bytes:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/bytes@1.0.0",
+      "name": "bytes",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::bytes:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::string_decoder:0.10.31::*:*:*:*:*:*",
+      "purl": "pkg:npm/string_decoder@0.10.31",
+      "name": "string_decoder",
+      "version": "0.10.31",
+      "bom-ref": "cpe:2.3:a::string_decoder:0.10.31::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::safe-json-parse:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/safe-json-parse@1.0.1",
+      "name": "safe-json-parse",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::safe-json-parse:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::debug:3.2.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/debug@3.2.6",
+      "name": "debug",
+      "version": "3.2.6",
+      "bom-ref": "cpe:2.3:a::debug:3.2.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::ms:2.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/ms@2.1.1",
+      "name": "ms",
+      "version": "2.1.1",
+      "bom-ref": "cpe:2.3:a::ms:2.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::faye-websocket:0.10.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/faye-websocket@0.10.0",
+      "name": "faye-websocket",
+      "version": "0.10.0",
+      "bom-ref": "cpe:2.3:a::faye-websocket:0.10.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::websocket-driver:0.7.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/websocket-driver@0.7.0",
+      "name": "websocket-driver",
+      "version": "0.7.0",
+      "bom-ref": "cpe:2.3:a::websocket-driver:0.7.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::http-parser-js:0.5.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/http-parser-js@0.5.0",
+      "name": "http-parser-js",
+      "version": "0.5.0",
+      "bom-ref": "cpe:2.3:a::http-parser-js:0.5.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::websocket-extensions:0.1.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/websocket-extensions@0.1.3",
+      "name": "websocket-extensions",
+      "version": "0.1.3",
+      "bom-ref": "cpe:2.3:a::websocket-extensions:0.1.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::livereload-js:2.4.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/livereload-js@2.4.0",
+      "name": "livereload-js",
+      "version": "2.4.0",
+      "bom-ref": "cpe:2.3:a::livereload-js:2.4.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::object-assign:4.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/object-assign@4.1.1",
+      "name": "object-assign",
+      "version": "4.1.1",
+      "bom-ref": "cpe:2.3:a::object-assign:4.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::qs:6.5.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/qs@6.5.2",
+      "name": "qs",
+      "version": "6.5.2",
+      "bom-ref": "cpe:2.3:a::qs:6.5.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::grunt-env:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/grunt-env@1.0.1",
+      "name": "grunt-env",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::grunt-env:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::ini:1.3.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/ini@1.3.5",
+      "name": "ini",
+      "version": "1.3.5",
+      "bom-ref": "cpe:2.3:a::ini:1.3.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::lodash:4.17.20::*:*:*:*:*:*",
+      "purl": "pkg:npm/lodash@4.17.20",
+      "name": "lodash",
+      "version": "4.17.20",
+      "bom-ref": "cpe:2.3:a::lodash:4.17.20::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::grunt-if:::*:*:*:*:*:*",
+      "purl": "pkg:npm/grunt-if@",
+      "name": "grunt-if",
+      "version": "",
+      "bom-ref": "cpe:2.3:a::grunt-if:::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::grunt:1.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/grunt@1.0.3",
+      "name": "grunt",
+      "version": "1.0.3",
+      "bom-ref": "cpe:2.3:a::grunt:1.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::coffeescript:1.10.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/coffeescript@1.10.0",
+      "name": "coffeescript",
+      "version": "1.10.0",
+      "bom-ref": "cpe:2.3:a::coffeescript:1.10.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::dateformat:1.0.12::*:*:*:*:*:*",
+      "purl": "pkg:npm/dateformat@1.0.12",
+      "name": "dateformat",
+      "version": "1.0.12",
+      "bom-ref": "cpe:2.3:a::dateformat:1.0.12::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::get-stdin:4.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/get-stdin@4.0.1",
+      "name": "get-stdin",
+      "version": "4.0.1",
+      "bom-ref": "cpe:2.3:a::get-stdin:4.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::meow:3.7.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/meow@3.7.0",
+      "name": "meow",
+      "version": "3.7.0",
+      "bom-ref": "cpe:2.3:a::meow:3.7.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::camelcase-keys:2.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/camelcase-keys@2.1.0",
+      "name": "camelcase-keys",
+      "version": "2.1.0",
+      "bom-ref": "cpe:2.3:a::camelcase-keys:2.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::camelcase:2.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/camelcase@2.1.1",
+      "name": "camelcase",
+      "version": "2.1.1",
+      "bom-ref": "cpe:2.3:a::camelcase:2.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::map-obj:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/map-obj@1.0.1",
+      "name": "map-obj",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::map-obj:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::decamelize:1.2.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/decamelize@1.2.0",
+      "name": "decamelize",
+      "version": "1.2.0",
+      "bom-ref": "cpe:2.3:a::decamelize:1.2.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::loud-rejection:1.6.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/loud-rejection@1.6.0",
+      "name": "loud-rejection",
+      "version": "1.6.0",
+      "bom-ref": "cpe:2.3:a::loud-rejection:1.6.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::currently-unhandled:0.4.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/currently-unhandled@0.4.1",
+      "name": "currently-unhandled",
+      "version": "0.4.1",
+      "bom-ref": "cpe:2.3:a::currently-unhandled:0.4.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::array-find-index:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/array-find-index@1.0.2",
+      "name": "array-find-index",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::array-find-index:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::signal-exit:3.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/signal-exit@3.0.2",
+      "name": "signal-exit",
+      "version": "3.0.2",
+      "bom-ref": "cpe:2.3:a::signal-exit:3.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::map-obj:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/map-obj@1.0.1",
+      "name": "map-obj",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::map-obj:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::minimist:1.2.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/minimist@1.2.0",
+      "name": "minimist",
+      "version": "1.2.0",
+      "bom-ref": "cpe:2.3:a::minimist:1.2.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::normalize-package-data:2.4.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/normalize-package-data@2.4.0",
+      "name": "normalize-package-data",
+      "version": "2.4.0",
+      "bom-ref": "cpe:2.3:a::normalize-package-data:2.4.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::hosted-git-info:2.7.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/hosted-git-info@2.7.1",
+      "name": "hosted-git-info",
+      "version": "2.7.1",
+      "bom-ref": "cpe:2.3:a::hosted-git-info:2.7.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-builtin-module:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-builtin-module@1.0.0",
+      "name": "is-builtin-module",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::is-builtin-module:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::builtin-modules:1.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/builtin-modules@1.1.1",
+      "name": "builtin-modules",
+      "version": "1.1.1",
+      "bom-ref": "cpe:2.3:a::builtin-modules:1.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::semver:5.6.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/semver@5.6.0",
+      "name": "semver",
+      "version": "5.6.0",
+      "bom-ref": "cpe:2.3:a::semver:5.6.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::validate-npm-package-license:3.0.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/validate-npm-package-license@3.0.4",
+      "name": "validate-npm-package-license",
+      "version": "3.0.4",
+      "bom-ref": "cpe:2.3:a::validate-npm-package-license:3.0.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::spdx-correct:3.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/spdx-correct@3.1.0",
+      "name": "spdx-correct",
+      "version": "3.1.0",
+      "bom-ref": "cpe:2.3:a::spdx-correct:3.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::spdx-expression-parse:3.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/spdx-expression-parse@3.0.0",
+      "name": "spdx-expression-parse",
+      "version": "3.0.0",
+      "bom-ref": "cpe:2.3:a::spdx-expression-parse:3.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::spdx-exceptions:2.2.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/spdx-exceptions@2.2.0",
+      "name": "spdx-exceptions",
+      "version": "2.2.0",
+      "bom-ref": "cpe:2.3:a::spdx-exceptions:2.2.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::spdx-license-ids:3.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/spdx-license-ids@3.0.3",
+      "name": "spdx-license-ids",
+      "version": "3.0.3",
+      "bom-ref": "cpe:2.3:a::spdx-license-ids:3.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::spdx-license-ids:3.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/spdx-license-ids@3.0.3",
+      "name": "spdx-license-ids",
+      "version": "3.0.3",
+      "bom-ref": "cpe:2.3:a::spdx-license-ids:3.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::spdx-expression-parse:3.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/spdx-expression-parse@3.0.0",
+      "name": "spdx-expression-parse",
+      "version": "3.0.0",
+      "bom-ref": "cpe:2.3:a::spdx-expression-parse:3.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::object-assign:4.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/object-assign@4.1.1",
+      "name": "object-assign",
+      "version": "4.1.1",
+      "bom-ref": "cpe:2.3:a::object-assign:4.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::read-pkg-up:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/read-pkg-up@1.0.1",
+      "name": "read-pkg-up",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::read-pkg-up:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::find-up:1.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/find-up@1.1.2",
+      "name": "find-up",
+      "version": "1.1.2",
+      "bom-ref": "cpe:2.3:a::find-up:1.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::path-exists:2.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/path-exists@2.1.0",
+      "name": "path-exists",
+      "version": "2.1.0",
+      "bom-ref": "cpe:2.3:a::path-exists:2.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::pinkie-promise:2.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/pinkie-promise@2.0.1",
+      "name": "pinkie-promise",
+      "version": "2.0.1",
+      "bom-ref": "cpe:2.3:a::pinkie-promise:2.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::pinkie:2.0.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/pinkie@2.0.4",
+      "name": "pinkie",
+      "version": "2.0.4",
+      "bom-ref": "cpe:2.3:a::pinkie:2.0.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::pinkie-promise:2.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/pinkie-promise@2.0.1",
+      "name": "pinkie-promise",
+      "version": "2.0.1",
+      "bom-ref": "cpe:2.3:a::pinkie-promise:2.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::read-pkg:1.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/read-pkg@1.1.0",
+      "name": "read-pkg",
+      "version": "1.1.0",
+      "bom-ref": "cpe:2.3:a::read-pkg:1.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::load-json-file:1.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/load-json-file@1.1.0",
+      "name": "load-json-file",
+      "version": "1.1.0",
+      "bom-ref": "cpe:2.3:a::load-json-file:1.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::graceful-fs:4.1.15::*:*:*:*:*:*",
+      "purl": "pkg:npm/graceful-fs@4.1.15",
+      "name": "graceful-fs",
+      "version": "4.1.15",
+      "bom-ref": "cpe:2.3:a::graceful-fs:4.1.15::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::parse-json:2.2.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/parse-json@2.2.0",
+      "name": "parse-json",
+      "version": "2.2.0",
+      "bom-ref": "cpe:2.3:a::parse-json:2.2.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::error-ex:1.3.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/error-ex@1.3.2",
+      "name": "error-ex",
+      "version": "1.3.2",
+      "bom-ref": "cpe:2.3:a::error-ex:1.3.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-arrayish:0.2.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-arrayish@0.2.1",
+      "name": "is-arrayish",
+      "version": "0.2.1",
+      "bom-ref": "cpe:2.3:a::is-arrayish:0.2.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::pify:2.3.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/pify@2.3.0",
+      "name": "pify",
+      "version": "2.3.0",
+      "bom-ref": "cpe:2.3:a::pify:2.3.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::pinkie-promise:2.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/pinkie-promise@2.0.1",
+      "name": "pinkie-promise",
+      "version": "2.0.1",
+      "bom-ref": "cpe:2.3:a::pinkie-promise:2.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::strip-bom:2.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/strip-bom@2.0.0",
+      "name": "strip-bom",
+      "version": "2.0.0",
+      "bom-ref": "cpe:2.3:a::strip-bom:2.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-utf8:0.2.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-utf8@0.2.1",
+      "name": "is-utf8",
+      "version": "0.2.1",
+      "bom-ref": "cpe:2.3:a::is-utf8:0.2.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::normalize-package-data:2.4.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/normalize-package-data@2.4.0",
+      "name": "normalize-package-data",
+      "version": "2.4.0",
+      "bom-ref": "cpe:2.3:a::normalize-package-data:2.4.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::path-type:1.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/path-type@1.1.0",
+      "name": "path-type",
+      "version": "1.1.0",
+      "bom-ref": "cpe:2.3:a::path-type:1.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::graceful-fs:4.1.15::*:*:*:*:*:*",
+      "purl": "pkg:npm/graceful-fs@4.1.15",
+      "name": "graceful-fs",
+      "version": "4.1.15",
+      "bom-ref": "cpe:2.3:a::graceful-fs:4.1.15::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::pify:2.3.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/pify@2.3.0",
+      "name": "pify",
+      "version": "2.3.0",
+      "bom-ref": "cpe:2.3:a::pify:2.3.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::pinkie-promise:2.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/pinkie-promise@2.0.1",
+      "name": "pinkie-promise",
+      "version": "2.0.1",
+      "bom-ref": "cpe:2.3:a::pinkie-promise:2.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::redent:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/redent@1.0.0",
+      "name": "redent",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::redent:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::indent-string:2.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/indent-string@2.1.0",
+      "name": "indent-string",
+      "version": "2.1.0",
+      "bom-ref": "cpe:2.3:a::indent-string:2.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::repeating:2.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/repeating@2.0.1",
+      "name": "repeating",
+      "version": "2.0.1",
+      "bom-ref": "cpe:2.3:a::repeating:2.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-finite:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-finite@1.0.2",
+      "name": "is-finite",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::is-finite:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::number-is-nan:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/number-is-nan@1.0.1",
+      "name": "number-is-nan",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::number-is-nan:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::strip-indent:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/strip-indent@1.0.1",
+      "name": "strip-indent",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::strip-indent:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::get-stdin:4.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/get-stdin@4.0.1",
+      "name": "get-stdin",
+      "version": "4.0.1",
+      "bom-ref": "cpe:2.3:a::get-stdin:4.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::trim-newlines:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/trim-newlines@1.0.0",
+      "name": "trim-newlines",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::trim-newlines:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::eventemitter2:0.4.14::*:*:*:*:*:*",
+      "purl": "pkg:npm/eventemitter2@0.4.14",
+      "name": "eventemitter2",
+      "version": "0.4.14",
+      "bom-ref": "cpe:2.3:a::eventemitter2:0.4.14::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::exit:0.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/exit@0.1.2",
+      "name": "exit",
+      "version": "0.1.2",
+      "bom-ref": "cpe:2.3:a::exit:0.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::findup-sync:0.3.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/findup-sync@0.3.0",
+      "name": "findup-sync",
+      "version": "0.3.0",
+      "bom-ref": "cpe:2.3:a::findup-sync:0.3.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::glob:5.0.15::*:*:*:*:*:*",
+      "purl": "pkg:npm/glob@5.0.15",
+      "name": "glob",
+      "version": "5.0.15",
+      "bom-ref": "cpe:2.3:a::glob:5.0.15::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::inflight:1.0.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/inflight@1.0.6",
+      "name": "inflight",
+      "version": "1.0.6",
+      "bom-ref": "cpe:2.3:a::inflight:1.0.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::once:1.4.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/once@1.4.0",
+      "name": "once",
+      "version": "1.4.0",
+      "bom-ref": "cpe:2.3:a::once:1.4.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::wrappy:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/wrappy@1.0.2",
+      "name": "wrappy",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::wrappy:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::wrappy:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/wrappy@1.0.2",
+      "name": "wrappy",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::wrappy:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::inherits:2.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/inherits@2.0.3",
+      "name": "inherits",
+      "version": "2.0.3",
+      "bom-ref": "cpe:2.3:a::inherits:2.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::minimatch:3.0.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/minimatch@3.0.4",
+      "name": "minimatch",
+      "version": "3.0.4",
+      "bom-ref": "cpe:2.3:a::minimatch:3.0.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::brace-expansion:1.1.11::*:*:*:*:*:*",
+      "purl": "pkg:npm/brace-expansion@1.1.11",
+      "name": "brace-expansion",
+      "version": "1.1.11",
+      "bom-ref": "cpe:2.3:a::brace-expansion:1.1.11::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::balanced-match:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/balanced-match@1.0.0",
+      "name": "balanced-match",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::balanced-match:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::concat-map:0.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/concat-map@0.0.1",
+      "name": "concat-map",
+      "version": "0.0.1",
+      "bom-ref": "cpe:2.3:a::concat-map:0.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::once:1.4.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/once@1.4.0",
+      "name": "once",
+      "version": "1.4.0",
+      "bom-ref": "cpe:2.3:a::once:1.4.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::path-is-absolute:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/path-is-absolute@1.0.1",
+      "name": "path-is-absolute",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::path-is-absolute:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::glob:7.0.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/glob@7.0.6",
+      "name": "glob",
+      "version": "7.0.6",
+      "bom-ref": "cpe:2.3:a::glob:7.0.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::fs.realpath:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/fs.realpath@1.0.0",
+      "name": "fs.realpath",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::fs.realpath:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::inflight:1.0.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/inflight@1.0.6",
+      "name": "inflight",
+      "version": "1.0.6",
+      "bom-ref": "cpe:2.3:a::inflight:1.0.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::inherits:2.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/inherits@2.0.3",
+      "name": "inherits",
+      "version": "2.0.3",
+      "bom-ref": "cpe:2.3:a::inherits:2.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::minimatch:3.0.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/minimatch@3.0.4",
+      "name": "minimatch",
+      "version": "3.0.4",
+      "bom-ref": "cpe:2.3:a::minimatch:3.0.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::once:1.4.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/once@1.4.0",
+      "name": "once",
+      "version": "1.4.0",
+      "bom-ref": "cpe:2.3:a::once:1.4.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::path-is-absolute:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/path-is-absolute@1.0.1",
+      "name": "path-is-absolute",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::path-is-absolute:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::grunt-cli:1.2.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/grunt-cli@1.2.0",
+      "name": "grunt-cli",
+      "version": "1.2.0",
+      "bom-ref": "cpe:2.3:a::grunt-cli:1.2.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::findup-sync:0.3.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/findup-sync@0.3.0",
+      "name": "findup-sync",
+      "version": "0.3.0",
+      "bom-ref": "cpe:2.3:a::findup-sync:0.3.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::grunt-known-options:1.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/grunt-known-options@1.1.1",
+      "name": "grunt-known-options",
+      "version": "1.1.1",
+      "bom-ref": "cpe:2.3:a::grunt-known-options:1.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::nopt:3.0.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/nopt@3.0.6",
+      "name": "nopt",
+      "version": "3.0.6",
+      "bom-ref": "cpe:2.3:a::nopt:3.0.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::abbrev:1.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/abbrev@1.1.1",
+      "name": "abbrev",
+      "version": "1.1.1",
+      "bom-ref": "cpe:2.3:a::abbrev:1.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::resolve:1.1.7::*:*:*:*:*:*",
+      "purl": "pkg:npm/resolve@1.1.7",
+      "name": "resolve",
+      "version": "1.1.7",
+      "bom-ref": "cpe:2.3:a::resolve:1.1.7::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::grunt-known-options:1.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/grunt-known-options@1.1.1",
+      "name": "grunt-known-options",
+      "version": "1.1.1",
+      "bom-ref": "cpe:2.3:a::grunt-known-options:1.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::grunt-legacy-log:2.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/grunt-legacy-log@2.0.0",
+      "name": "grunt-legacy-log",
+      "version": "2.0.0",
+      "bom-ref": "cpe:2.3:a::grunt-legacy-log:2.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::colors:1.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/colors@1.1.2",
+      "name": "colors",
+      "version": "1.1.2",
+      "bom-ref": "cpe:2.3:a::colors:1.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::grunt-legacy-log-utils:2.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/grunt-legacy-log-utils@2.0.1",
+      "name": "grunt-legacy-log-utils",
+      "version": "2.0.1",
+      "bom-ref": "cpe:2.3:a::grunt-legacy-log-utils:2.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::chalk:2.4.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/chalk@2.4.2",
+      "name": "chalk",
+      "version": "2.4.2",
+      "bom-ref": "cpe:2.3:a::chalk:2.4.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::ansi-styles:3.2.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/ansi-styles@3.2.1",
+      "name": "ansi-styles",
+      "version": "3.2.1",
+      "bom-ref": "cpe:2.3:a::ansi-styles:3.2.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::color-convert:1.9.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/color-convert@1.9.3",
+      "name": "color-convert",
+      "version": "1.9.3",
+      "bom-ref": "cpe:2.3:a::color-convert:1.9.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::color-name:1.1.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/color-name@1.1.3",
+      "name": "color-name",
+      "version": "1.1.3",
+      "bom-ref": "cpe:2.3:a::color-name:1.1.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::escape-string-regexp:1.0.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/escape-string-regexp@1.0.5",
+      "name": "escape-string-regexp",
+      "version": "1.0.5",
+      "bom-ref": "cpe:2.3:a::escape-string-regexp:1.0.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::supports-color:5.5.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/supports-color@5.5.0",
+      "name": "supports-color",
+      "version": "5.5.0",
+      "bom-ref": "cpe:2.3:a::supports-color:5.5.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::has-flag:3.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/has-flag@3.0.0",
+      "name": "has-flag",
+      "version": "3.0.0",
+      "bom-ref": "cpe:2.3:a::has-flag:3.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::lodash:4.17.11::*:*:*:*:*:*",
+      "purl": "pkg:npm/lodash@4.17.11",
+      "name": "lodash",
+      "version": "4.17.11",
+      "bom-ref": "cpe:2.3:a::lodash:4.17.11::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::hooker:0.2.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/hooker@0.2.3",
+      "name": "hooker",
+      "version": "0.2.3",
+      "bom-ref": "cpe:2.3:a::hooker:0.2.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::lodash:4.17.11::*:*:*:*:*:*",
+      "purl": "pkg:npm/lodash@4.17.11",
+      "name": "lodash",
+      "version": "4.17.11",
+      "bom-ref": "cpe:2.3:a::lodash:4.17.11::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::grunt-legacy-util:1.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/grunt-legacy-util@1.1.1",
+      "name": "grunt-legacy-util",
+      "version": "1.1.1",
+      "bom-ref": "cpe:2.3:a::grunt-legacy-util:1.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::async:1.5.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/async@1.5.2",
+      "name": "async",
+      "version": "1.5.2",
+      "bom-ref": "cpe:2.3:a::async:1.5.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::exit:0.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/exit@0.1.2",
+      "name": "exit",
+      "version": "0.1.2",
+      "bom-ref": "cpe:2.3:a::exit:0.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::getobject:0.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/getobject@0.1.0",
+      "name": "getobject",
+      "version": "0.1.0",
+      "bom-ref": "cpe:2.3:a::getobject:0.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::hooker:0.2.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/hooker@0.2.3",
+      "name": "hooker",
+      "version": "0.2.3",
+      "bom-ref": "cpe:2.3:a::hooker:0.2.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::lodash:4.17.11::*:*:*:*:*:*",
+      "purl": "pkg:npm/lodash@4.17.11",
+      "name": "lodash",
+      "version": "4.17.11",
+      "bom-ref": "cpe:2.3:a::lodash:4.17.11::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::underscore.string:3.3.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/underscore.string@3.3.5",
+      "name": "underscore.string",
+      "version": "3.3.5",
+      "bom-ref": "cpe:2.3:a::underscore.string:3.3.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::sprintf-js:1.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/sprintf-js@1.1.2",
+      "name": "sprintf-js",
+      "version": "1.1.2",
+      "bom-ref": "cpe:2.3:a::sprintf-js:1.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::util-deprecate:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/util-deprecate@1.0.2",
+      "name": "util-deprecate",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::util-deprecate:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::which:1.3.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/which@1.3.1",
+      "name": "which",
+      "version": "1.3.1",
+      "bom-ref": "cpe:2.3:a::which:1.3.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::isexe:2.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/isexe@2.0.0",
+      "name": "isexe",
+      "version": "2.0.0",
+      "bom-ref": "cpe:2.3:a::isexe:2.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::iconv-lite:0.4.23::*:*:*:*:*:*",
+      "purl": "pkg:npm/iconv-lite@0.4.23",
+      "name": "iconv-lite",
+      "version": "0.4.23",
+      "bom-ref": "cpe:2.3:a::iconv-lite:0.4.23::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::safer-buffer:2.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/safer-buffer@2.1.2",
+      "name": "safer-buffer",
+      "version": "2.1.2",
+      "bom-ref": "cpe:2.3:a::safer-buffer:2.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::js-yaml:3.5.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/js-yaml@3.5.5",
+      "name": "js-yaml",
+      "version": "3.5.5",
+      "bom-ref": "cpe:2.3:a::js-yaml:3.5.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::argparse:1.0.10::*:*:*:*:*:*",
+      "purl": "pkg:npm/argparse@1.0.10",
+      "name": "argparse",
+      "version": "1.0.10",
+      "bom-ref": "cpe:2.3:a::argparse:1.0.10::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::sprintf-js:1.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/sprintf-js@1.0.3",
+      "name": "sprintf-js",
+      "version": "1.0.3",
+      "bom-ref": "cpe:2.3:a::sprintf-js:1.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::esprima:2.7.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/esprima@2.7.3",
+      "name": "esprima",
+      "version": "2.7.3",
+      "bom-ref": "cpe:2.3:a::esprima:2.7.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::minimatch:3.0.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/minimatch@3.0.4",
+      "name": "minimatch",
+      "version": "3.0.4",
+      "bom-ref": "cpe:2.3:a::minimatch:3.0.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::mkdirp:0.5.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/mkdirp@0.5.1",
+      "name": "mkdirp",
+      "version": "0.5.1",
+      "bom-ref": "cpe:2.3:a::mkdirp:0.5.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::minimist:0.0.8::*:*:*:*:*:*",
+      "purl": "pkg:npm/minimist@0.0.8",
+      "name": "minimist",
+      "version": "0.0.8",
+      "bom-ref": "cpe:2.3:a::minimist:0.0.8::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::nopt:3.0.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/nopt@3.0.6",
+      "name": "nopt",
+      "version": "3.0.6",
+      "bom-ref": "cpe:2.3:a::nopt:3.0.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::path-is-absolute:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/path-is-absolute@1.0.1",
+      "name": "path-is-absolute",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::path-is-absolute:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::rimraf:2.6.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/rimraf@2.6.3",
+      "name": "rimraf",
+      "version": "2.6.3",
+      "bom-ref": "cpe:2.3:a::rimraf:2.6.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::glob:7.1.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/glob@7.1.3",
+      "name": "glob",
+      "version": "7.1.3",
+      "bom-ref": "cpe:2.3:a::glob:7.1.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::fs.realpath:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/fs.realpath@1.0.0",
+      "name": "fs.realpath",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::fs.realpath:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::inflight:1.0.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/inflight@1.0.6",
+      "name": "inflight",
+      "version": "1.0.6",
+      "bom-ref": "cpe:2.3:a::inflight:1.0.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::inherits:2.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/inherits@2.0.3",
+      "name": "inherits",
+      "version": "2.0.3",
+      "bom-ref": "cpe:2.3:a::inherits:2.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::minimatch:3.0.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/minimatch@3.0.4",
+      "name": "minimatch",
+      "version": "3.0.4",
+      "bom-ref": "cpe:2.3:a::minimatch:3.0.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::once:1.4.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/once@1.4.0",
+      "name": "once",
+      "version": "1.4.0",
+      "bom-ref": "cpe:2.3:a::once:1.4.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::path-is-absolute:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/path-is-absolute@1.0.1",
+      "name": "path-is-absolute",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::path-is-absolute:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::grunt-contrib-clean:1.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/grunt-contrib-clean@1.1.0",
+      "name": "grunt-contrib-clean",
+      "version": "1.1.0",
+      "bom-ref": "cpe:2.3:a::grunt-contrib-clean:1.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::async:1.5.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/async@1.5.2",
+      "name": "async",
+      "version": "1.5.2",
+      "bom-ref": "cpe:2.3:a::async:1.5.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::rimraf:2.6.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/rimraf@2.6.3",
+      "name": "rimraf",
+      "version": "2.6.3",
+      "bom-ref": "cpe:2.3:a::rimraf:2.6.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::grunt-contrib-jshint:1.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/grunt-contrib-jshint@1.1.0",
+      "name": "grunt-contrib-jshint",
+      "version": "1.1.0",
+      "bom-ref": "cpe:2.3:a::grunt-contrib-jshint:1.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::chalk:1.1.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/chalk@1.1.3",
+      "name": "chalk",
+      "version": "1.1.3",
+      "bom-ref": "cpe:2.3:a::chalk:1.1.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::ansi-styles:2.2.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/ansi-styles@2.2.1",
+      "name": "ansi-styles",
+      "version": "2.2.1",
+      "bom-ref": "cpe:2.3:a::ansi-styles:2.2.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::escape-string-regexp:1.0.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/escape-string-regexp@1.0.5",
+      "name": "escape-string-regexp",
+      "version": "1.0.5",
+      "bom-ref": "cpe:2.3:a::escape-string-regexp:1.0.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::has-ansi:2.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/has-ansi@2.0.0",
+      "name": "has-ansi",
+      "version": "2.0.0",
+      "bom-ref": "cpe:2.3:a::has-ansi:2.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::ansi-regex:2.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/ansi-regex@2.1.1",
+      "name": "ansi-regex",
+      "version": "2.1.1",
+      "bom-ref": "cpe:2.3:a::ansi-regex:2.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::strip-ansi:3.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/strip-ansi@3.0.1",
+      "name": "strip-ansi",
+      "version": "3.0.1",
+      "bom-ref": "cpe:2.3:a::strip-ansi:3.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::ansi-regex:2.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/ansi-regex@2.1.1",
+      "name": "ansi-regex",
+      "version": "2.1.1",
+      "bom-ref": "cpe:2.3:a::ansi-regex:2.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::supports-color:2.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/supports-color@2.0.0",
+      "name": "supports-color",
+      "version": "2.0.0",
+      "bom-ref": "cpe:2.3:a::supports-color:2.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::hooker:0.2.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/hooker@0.2.3",
+      "name": "hooker",
+      "version": "0.2.3",
+      "bom-ref": "cpe:2.3:a::hooker:0.2.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::jshint:2.9.7::*:*:*:*:*:*",
+      "purl": "pkg:npm/jshint@2.9.7",
+      "name": "jshint",
+      "version": "2.9.7",
+      "bom-ref": "cpe:2.3:a::jshint:2.9.7::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::cli:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/cli@1.0.1",
+      "name": "cli",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::cli:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::exit:0.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/exit@0.1.2",
+      "name": "exit",
+      "version": "0.1.2",
+      "bom-ref": "cpe:2.3:a::exit:0.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::glob:7.1.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/glob@7.1.3",
+      "name": "glob",
+      "version": "7.1.3",
+      "bom-ref": "cpe:2.3:a::glob:7.1.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::exit:0.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/exit@0.1.2",
+      "name": "exit",
+      "version": "0.1.2",
+      "bom-ref": "cpe:2.3:a::exit:0.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::htmlparser2:3.8.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/htmlparser2@3.8.3",
+      "name": "htmlparser2",
+      "version": "3.8.3",
+      "bom-ref": "cpe:2.3:a::htmlparser2:3.8.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::domelementtype:1.3.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/domelementtype@1.3.1",
+      "name": "domelementtype",
+      "version": "1.3.1",
+      "bom-ref": "cpe:2.3:a::domelementtype:1.3.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::domhandler:2.3.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/domhandler@2.3.0",
+      "name": "domhandler",
+      "version": "2.3.0",
+      "bom-ref": "cpe:2.3:a::domhandler:2.3.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::domelementtype:1.3.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/domelementtype@1.3.1",
+      "name": "domelementtype",
+      "version": "1.3.1",
+      "bom-ref": "cpe:2.3:a::domelementtype:1.3.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::domutils:1.5.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/domutils@1.5.1",
+      "name": "domutils",
+      "version": "1.5.1",
+      "bom-ref": "cpe:2.3:a::domutils:1.5.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::dom-serializer:0.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/dom-serializer@0.1.0",
+      "name": "dom-serializer",
+      "version": "0.1.0",
+      "bom-ref": "cpe:2.3:a::dom-serializer:0.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::domelementtype:1.1.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/domelementtype@1.1.3",
+      "name": "domelementtype",
+      "version": "1.1.3",
+      "bom-ref": "cpe:2.3:a::domelementtype:1.1.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::entities:1.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/entities@1.1.2",
+      "name": "entities",
+      "version": "1.1.2",
+      "bom-ref": "cpe:2.3:a::entities:1.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::domelementtype:1.3.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/domelementtype@1.3.1",
+      "name": "domelementtype",
+      "version": "1.3.1",
+      "bom-ref": "cpe:2.3:a::domelementtype:1.3.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::entities:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/entities@1.0.0",
+      "name": "entities",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::entities:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::readable-stream:1.1.14::*:*:*:*:*:*",
+      "purl": "pkg:npm/readable-stream@1.1.14",
+      "name": "readable-stream",
+      "version": "1.1.14",
+      "bom-ref": "cpe:2.3:a::readable-stream:1.1.14::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::core-util-is:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/core-util-is@1.0.2",
+      "name": "core-util-is",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::core-util-is:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::inherits:2.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/inherits@2.0.3",
+      "name": "inherits",
+      "version": "2.0.3",
+      "bom-ref": "cpe:2.3:a::inherits:2.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::isarray:0.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/isarray@0.0.1",
+      "name": "isarray",
+      "version": "0.0.1",
+      "bom-ref": "cpe:2.3:a::isarray:0.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::string_decoder:0.10.31::*:*:*:*:*:*",
+      "purl": "pkg:npm/string_decoder@0.10.31",
+      "name": "string_decoder",
+      "version": "0.10.31",
+      "bom-ref": "cpe:2.3:a::string_decoder:0.10.31::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::lodash:4.17.11::*:*:*:*:*:*",
+      "purl": "pkg:npm/lodash@4.17.11",
+      "name": "lodash",
+      "version": "4.17.11",
+      "bom-ref": "cpe:2.3:a::lodash:4.17.11::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::minimatch:3.0.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/minimatch@3.0.4",
+      "name": "minimatch",
+      "version": "3.0.4",
+      "bom-ref": "cpe:2.3:a::minimatch:3.0.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::strip-json-comments:1.0.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/strip-json-comments@1.0.4",
+      "name": "strip-json-comments",
+      "version": "1.0.4",
+      "bom-ref": "cpe:2.3:a::strip-json-comments:1.0.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::grunt-contrib-nodeunit:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/grunt-contrib-nodeunit@1.0.0",
+      "name": "grunt-contrib-nodeunit",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::grunt-contrib-nodeunit:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::nodeunit:0.9.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/nodeunit@0.9.5",
+      "name": "nodeunit",
+      "version": "0.9.5",
+      "bom-ref": "cpe:2.3:a::nodeunit:0.9.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::tap:7.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/tap@7.1.2",
+      "name": "tap",
+      "version": "7.1.2",
+      "bom-ref": "cpe:2.3:a::tap:7.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::bluebird:3.5.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/bluebird@3.5.3",
+      "name": "bluebird",
+      "version": "3.5.3",
+      "bom-ref": "cpe:2.3:a::bluebird:3.5.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::clean-yaml-object:0.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/clean-yaml-object@0.1.0",
+      "name": "clean-yaml-object",
+      "version": "0.1.0",
+      "bom-ref": "cpe:2.3:a::clean-yaml-object:0.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::color-support:1.1.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/color-support@1.1.3",
+      "name": "color-support",
+      "version": "1.1.3",
+      "bom-ref": "cpe:2.3:a::color-support:1.1.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::coveralls:2.13.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/coveralls@2.13.3",
+      "name": "coveralls",
+      "version": "2.13.3",
+      "bom-ref": "cpe:2.3:a::coveralls:2.13.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::js-yaml:3.6.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/js-yaml@3.6.1",
+      "name": "js-yaml",
+      "version": "3.6.1",
+      "bom-ref": "cpe:2.3:a::js-yaml:3.6.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::argparse:1.0.10::*:*:*:*:*:*",
+      "purl": "pkg:npm/argparse@1.0.10",
+      "name": "argparse",
+      "version": "1.0.10",
+      "bom-ref": "cpe:2.3:a::argparse:1.0.10::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::esprima:2.7.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/esprima@2.7.3",
+      "name": "esprima",
+      "version": "2.7.3",
+      "bom-ref": "cpe:2.3:a::esprima:2.7.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::lcov-parse:0.0.10::*:*:*:*:*:*",
+      "purl": "pkg:npm/lcov-parse@0.0.10",
+      "name": "lcov-parse",
+      "version": "0.0.10",
+      "bom-ref": "cpe:2.3:a::lcov-parse:0.0.10::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::log-driver:1.2.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/log-driver@1.2.5",
+      "name": "log-driver",
+      "version": "1.2.5",
+      "bom-ref": "cpe:2.3:a::log-driver:1.2.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::minimist:1.2.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/minimist@1.2.0",
+      "name": "minimist",
+      "version": "1.2.0",
+      "bom-ref": "cpe:2.3:a::minimist:1.2.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::request:2.79.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/request@2.79.0",
+      "name": "request",
+      "version": "2.79.0",
+      "bom-ref": "cpe:2.3:a::request:2.79.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::aws-sign2:0.6.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/aws-sign2@0.6.0",
+      "name": "aws-sign2",
+      "version": "0.6.0",
+      "bom-ref": "cpe:2.3:a::aws-sign2:0.6.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::aws4:1.8.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/aws4@1.8.0",
+      "name": "aws4",
+      "version": "1.8.0",
+      "bom-ref": "cpe:2.3:a::aws4:1.8.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::caseless:0.11.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/caseless@0.11.0",
+      "name": "caseless",
+      "version": "0.11.0",
+      "bom-ref": "cpe:2.3:a::caseless:0.11.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::combined-stream:1.0.7::*:*:*:*:*:*",
+      "purl": "pkg:npm/combined-stream@1.0.7",
+      "name": "combined-stream",
+      "version": "1.0.7",
+      "bom-ref": "cpe:2.3:a::combined-stream:1.0.7::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::delayed-stream:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/delayed-stream@1.0.0",
+      "name": "delayed-stream",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::delayed-stream:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::extend:3.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/extend@3.0.2",
+      "name": "extend",
+      "version": "3.0.2",
+      "bom-ref": "cpe:2.3:a::extend:3.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::forever-agent:0.6.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/forever-agent@0.6.1",
+      "name": "forever-agent",
+      "version": "0.6.1",
+      "bom-ref": "cpe:2.3:a::forever-agent:0.6.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::form-data:2.1.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/form-data@2.1.4",
+      "name": "form-data",
+      "version": "2.1.4",
+      "bom-ref": "cpe:2.3:a::form-data:2.1.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::asynckit:0.4.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/asynckit@0.4.0",
+      "name": "asynckit",
+      "version": "0.4.0",
+      "bom-ref": "cpe:2.3:a::asynckit:0.4.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::combined-stream:1.0.7::*:*:*:*:*:*",
+      "purl": "pkg:npm/combined-stream@1.0.7",
+      "name": "combined-stream",
+      "version": "1.0.7",
+      "bom-ref": "cpe:2.3:a::combined-stream:1.0.7::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::mime-types:2.1.21::*:*:*:*:*:*",
+      "purl": "pkg:npm/mime-types@2.1.21",
+      "name": "mime-types",
+      "version": "2.1.21",
+      "bom-ref": "cpe:2.3:a::mime-types:2.1.21::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::mime-db:1.37.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/mime-db@1.37.0",
+      "name": "mime-db",
+      "version": "1.37.0",
+      "bom-ref": "cpe:2.3:a::mime-db:1.37.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::har-validator:2.0.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/har-validator@2.0.6",
+      "name": "har-validator",
+      "version": "2.0.6",
+      "bom-ref": "cpe:2.3:a::har-validator:2.0.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::chalk:1.1.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/chalk@1.1.3",
+      "name": "chalk",
+      "version": "1.1.3",
+      "bom-ref": "cpe:2.3:a::chalk:1.1.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::ansi-styles:2.2.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/ansi-styles@2.2.1",
+      "name": "ansi-styles",
+      "version": "2.2.1",
+      "bom-ref": "cpe:2.3:a::ansi-styles:2.2.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::escape-string-regexp:1.0.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/escape-string-regexp@1.0.5",
+      "name": "escape-string-regexp",
+      "version": "1.0.5",
+      "bom-ref": "cpe:2.3:a::escape-string-regexp:1.0.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::has-ansi:2.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/has-ansi@2.0.0",
+      "name": "has-ansi",
+      "version": "2.0.0",
+      "bom-ref": "cpe:2.3:a::has-ansi:2.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::strip-ansi:3.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/strip-ansi@3.0.1",
+      "name": "strip-ansi",
+      "version": "3.0.1",
+      "bom-ref": "cpe:2.3:a::strip-ansi:3.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::supports-color:2.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/supports-color@2.0.0",
+      "name": "supports-color",
+      "version": "2.0.0",
+      "bom-ref": "cpe:2.3:a::supports-color:2.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::commander:2.19.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/commander@2.19.0",
+      "name": "commander",
+      "version": "2.19.0",
+      "bom-ref": "cpe:2.3:a::commander:2.19.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-my-json-valid:2.19.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-my-json-valid@2.19.0",
+      "name": "is-my-json-valid",
+      "version": "2.19.0",
+      "bom-ref": "cpe:2.3:a::is-my-json-valid:2.19.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::generate-function:2.3.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/generate-function@2.3.1",
+      "name": "generate-function",
+      "version": "2.3.1",
+      "bom-ref": "cpe:2.3:a::generate-function:2.3.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-property:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-property@1.0.2",
+      "name": "is-property",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::is-property:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::generate-object-property:1.2.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/generate-object-property@1.2.0",
+      "name": "generate-object-property",
+      "version": "1.2.0",
+      "bom-ref": "cpe:2.3:a::generate-object-property:1.2.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-property:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-property@1.0.2",
+      "name": "is-property",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::is-property:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-my-ip-valid:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-my-ip-valid@1.0.0",
+      "name": "is-my-ip-valid",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::is-my-ip-valid:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::jsonpointer:4.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/jsonpointer@4.0.1",
+      "name": "jsonpointer",
+      "version": "4.0.1",
+      "bom-ref": "cpe:2.3:a::jsonpointer:4.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::xtend:4.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/xtend@4.0.1",
+      "name": "xtend",
+      "version": "4.0.1",
+      "bom-ref": "cpe:2.3:a::xtend:4.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::pinkie-promise:2.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/pinkie-promise@2.0.1",
+      "name": "pinkie-promise",
+      "version": "2.0.1",
+      "bom-ref": "cpe:2.3:a::pinkie-promise:2.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::hawk:3.1.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/hawk@3.1.3",
+      "name": "hawk",
+      "version": "3.1.3",
+      "bom-ref": "cpe:2.3:a::hawk:3.1.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::boom:2.10.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/boom@2.10.1",
+      "name": "boom",
+      "version": "2.10.1",
+      "bom-ref": "cpe:2.3:a::boom:2.10.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::hoek:2.16.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/hoek@2.16.3",
+      "name": "hoek",
+      "version": "2.16.3",
+      "bom-ref": "cpe:2.3:a::hoek:2.16.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::hoek:2.16.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/hoek@2.16.3",
+      "name": "hoek",
+      "version": "2.16.3",
+      "bom-ref": "cpe:2.3:a::hoek:2.16.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::http-signature:1.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/http-signature@1.1.1",
+      "name": "http-signature",
+      "version": "1.1.1",
+      "bom-ref": "cpe:2.3:a::http-signature:1.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::assert-plus:0.2.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/assert-plus@0.2.0",
+      "name": "assert-plus",
+      "version": "0.2.0",
+      "bom-ref": "cpe:2.3:a::assert-plus:0.2.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::jsprim:1.4.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/jsprim@1.4.1",
+      "name": "jsprim",
+      "version": "1.4.1",
+      "bom-ref": "cpe:2.3:a::jsprim:1.4.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::assert-plus:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/assert-plus@1.0.0",
+      "name": "assert-plus",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::assert-plus:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::extsprintf:1.3.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/extsprintf@1.3.0",
+      "name": "extsprintf",
+      "version": "1.3.0",
+      "bom-ref": "cpe:2.3:a::extsprintf:1.3.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::json-schema:0.2.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/json-schema@0.2.3",
+      "name": "json-schema",
+      "version": "0.2.3",
+      "bom-ref": "cpe:2.3:a::json-schema:0.2.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::verror:1.10.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/verror@1.10.0",
+      "name": "verror",
+      "version": "1.10.0",
+      "bom-ref": "cpe:2.3:a::verror:1.10.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::assert-plus:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/assert-plus@1.0.0",
+      "name": "assert-plus",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::assert-plus:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::core-util-is:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/core-util-is@1.0.2",
+      "name": "core-util-is",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::core-util-is:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::extsprintf:1.3.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/extsprintf@1.3.0",
+      "name": "extsprintf",
+      "version": "1.3.0",
+      "bom-ref": "cpe:2.3:a::extsprintf:1.3.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::sshpk:1.16.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/sshpk@1.16.0",
+      "name": "sshpk",
+      "version": "1.16.0",
+      "bom-ref": "cpe:2.3:a::sshpk:1.16.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::asn1:0.2.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/asn1@0.2.4",
+      "name": "asn1",
+      "version": "0.2.4",
+      "bom-ref": "cpe:2.3:a::asn1:0.2.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::safer-buffer:2.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/safer-buffer@2.1.2",
+      "name": "safer-buffer",
+      "version": "2.1.2",
+      "bom-ref": "cpe:2.3:a::safer-buffer:2.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::assert-plus:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/assert-plus@1.0.0",
+      "name": "assert-plus",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::assert-plus:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::bcrypt-pbkdf:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/bcrypt-pbkdf@1.0.2",
+      "name": "bcrypt-pbkdf",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::bcrypt-pbkdf:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::tweetnacl:0.14.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/tweetnacl@0.14.5",
+      "name": "tweetnacl",
+      "version": "0.14.5",
+      "bom-ref": "cpe:2.3:a::tweetnacl:0.14.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::dashdash:1.14.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/dashdash@1.14.1",
+      "name": "dashdash",
+      "version": "1.14.1",
+      "bom-ref": "cpe:2.3:a::dashdash:1.14.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::assert-plus:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/assert-plus@1.0.0",
+      "name": "assert-plus",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::assert-plus:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::ecc-jsbn:0.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/ecc-jsbn@0.1.2",
+      "name": "ecc-jsbn",
+      "version": "0.1.2",
+      "bom-ref": "cpe:2.3:a::ecc-jsbn:0.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::jsbn:0.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/jsbn@0.1.1",
+      "name": "jsbn",
+      "version": "0.1.1",
+      "bom-ref": "cpe:2.3:a::jsbn:0.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::safer-buffer:2.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/safer-buffer@2.1.2",
+      "name": "safer-buffer",
+      "version": "2.1.2",
+      "bom-ref": "cpe:2.3:a::safer-buffer:2.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::getpass:0.1.7::*:*:*:*:*:*",
+      "purl": "pkg:npm/getpass@0.1.7",
+      "name": "getpass",
+      "version": "0.1.7",
+      "bom-ref": "cpe:2.3:a::getpass:0.1.7::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::assert-plus:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/assert-plus@1.0.0",
+      "name": "assert-plus",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::assert-plus:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::jsbn:0.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/jsbn@0.1.1",
+      "name": "jsbn",
+      "version": "0.1.1",
+      "bom-ref": "cpe:2.3:a::jsbn:0.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::safer-buffer:2.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/safer-buffer@2.1.2",
+      "name": "safer-buffer",
+      "version": "2.1.2",
+      "bom-ref": "cpe:2.3:a::safer-buffer:2.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::tweetnacl:0.14.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/tweetnacl@0.14.5",
+      "name": "tweetnacl",
+      "version": "0.14.5",
+      "bom-ref": "cpe:2.3:a::tweetnacl:0.14.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-typedarray:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-typedarray@1.0.0",
+      "name": "is-typedarray",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::is-typedarray:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::isstream:0.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/isstream@0.1.2",
+      "name": "isstream",
+      "version": "0.1.2",
+      "bom-ref": "cpe:2.3:a::isstream:0.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::json-stringify-safe:5.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/json-stringify-safe@5.0.1",
+      "name": "json-stringify-safe",
+      "version": "5.0.1",
+      "bom-ref": "cpe:2.3:a::json-stringify-safe:5.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::mime-types:2.1.21::*:*:*:*:*:*",
+      "purl": "pkg:npm/mime-types@2.1.21",
+      "name": "mime-types",
+      "version": "2.1.21",
+      "bom-ref": "cpe:2.3:a::mime-types:2.1.21::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::oauth-sign:0.8.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/oauth-sign@0.8.2",
+      "name": "oauth-sign",
+      "version": "0.8.2",
+      "bom-ref": "cpe:2.3:a::oauth-sign:0.8.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::qs:6.3.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/qs@6.3.2",
+      "name": "qs",
+      "version": "6.3.2",
+      "bom-ref": "cpe:2.3:a::qs:6.3.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::stringstream:0.0.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/stringstream@0.0.6",
+      "name": "stringstream",
+      "version": "0.0.6",
+      "bom-ref": "cpe:2.3:a::stringstream:0.0.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::tough-cookie:2.3.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/tough-cookie@2.3.4",
+      "name": "tough-cookie",
+      "version": "2.3.4",
+      "bom-ref": "cpe:2.3:a::tough-cookie:2.3.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::punycode:1.4.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/punycode@1.4.1",
+      "name": "punycode",
+      "version": "1.4.1",
+      "bom-ref": "cpe:2.3:a::punycode:1.4.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::tunnel-agent:0.4.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/tunnel-agent@0.4.3",
+      "name": "tunnel-agent",
+      "version": "0.4.3",
+      "bom-ref": "cpe:2.3:a::tunnel-agent:0.4.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::uuid:3.3.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/uuid@3.3.2",
+      "name": "uuid",
+      "version": "3.3.2",
+      "bom-ref": "cpe:2.3:a::uuid:3.3.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::deeper:2.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/deeper@2.1.0",
+      "name": "deeper",
+      "version": "2.1.0",
+      "bom-ref": "cpe:2.3:a::deeper:2.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::foreground-child:1.5.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/foreground-child@1.5.6",
+      "name": "foreground-child",
+      "version": "1.5.6",
+      "bom-ref": "cpe:2.3:a::foreground-child:1.5.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::cross-spawn:4.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/cross-spawn@4.0.2",
+      "name": "cross-spawn",
+      "version": "4.0.2",
+      "bom-ref": "cpe:2.3:a::cross-spawn:4.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::lru-cache:4.1.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/lru-cache@4.1.5",
+      "name": "lru-cache",
+      "version": "4.1.5",
+      "bom-ref": "cpe:2.3:a::lru-cache:4.1.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::pseudomap:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/pseudomap@1.0.2",
+      "name": "pseudomap",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::pseudomap:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::yallist:2.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/yallist@2.1.2",
+      "name": "yallist",
+      "version": "2.1.2",
+      "bom-ref": "cpe:2.3:a::yallist:2.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::which:1.3.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/which@1.3.1",
+      "name": "which",
+      "version": "1.3.1",
+      "bom-ref": "cpe:2.3:a::which:1.3.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::signal-exit:3.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/signal-exit@3.0.2",
+      "name": "signal-exit",
+      "version": "3.0.2",
+      "bom-ref": "cpe:2.3:a::signal-exit:3.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::glob:7.1.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/glob@7.1.3",
+      "name": "glob",
+      "version": "7.1.3",
+      "bom-ref": "cpe:2.3:a::glob:7.1.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::isexe:1.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/isexe@1.1.2",
+      "name": "isexe",
+      "version": "1.1.2",
+      "bom-ref": "cpe:2.3:a::isexe:1.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::js-yaml:3.5.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/js-yaml@3.5.5",
+      "name": "js-yaml",
+      "version": "3.5.5",
+      "bom-ref": "cpe:2.3:a::js-yaml:3.5.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::nyc:7.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/nyc@7.1.0",
+      "name": "nyc",
+      "version": "7.1.0",
+      "bom-ref": "cpe:2.3:a::nyc:7.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::arrify:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/arrify@1.0.1",
+      "name": "arrify",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::arrify:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::caching-transform:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/caching-transform@1.0.1",
+      "name": "caching-transform",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::caching-transform:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::md5-hex:1.3.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/md5-hex@1.3.0",
+      "name": "md5-hex",
+      "version": "1.3.0",
+      "bom-ref": "cpe:2.3:a::md5-hex:1.3.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::md5-o-matic:0.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/md5-o-matic@0.1.1",
+      "name": "md5-o-matic",
+      "version": "0.1.1",
+      "bom-ref": "cpe:2.3:a::md5-o-matic:0.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::mkdirp:0.5.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/mkdirp@0.5.1",
+      "name": "mkdirp",
+      "version": "0.5.1",
+      "bom-ref": "cpe:2.3:a::mkdirp:0.5.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::write-file-atomic:1.1.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/write-file-atomic@1.1.4",
+      "name": "write-file-atomic",
+      "version": "1.1.4",
+      "bom-ref": "cpe:2.3:a::write-file-atomic:1.1.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::graceful-fs:4.1.15::*:*:*:*:*:*",
+      "purl": "pkg:npm/graceful-fs@4.1.15",
+      "name": "graceful-fs",
+      "version": "4.1.15",
+      "bom-ref": "cpe:2.3:a::graceful-fs:4.1.15::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::imurmurhash:0.1.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/imurmurhash@0.1.4",
+      "name": "imurmurhash",
+      "version": "0.1.4",
+      "bom-ref": "cpe:2.3:a::imurmurhash:0.1.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::slide:1.1.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/slide@1.1.6",
+      "name": "slide",
+      "version": "1.1.6",
+      "bom-ref": "cpe:2.3:a::slide:1.1.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::convert-source-map:1.3.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/convert-source-map@1.3.0",
+      "name": "convert-source-map",
+      "version": "1.3.0",
+      "bom-ref": "cpe:2.3:a::convert-source-map:1.3.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::default-require-extensions:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/default-require-extensions@1.0.0",
+      "name": "default-require-extensions",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::default-require-extensions:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::strip-bom:2.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/strip-bom@2.0.0",
+      "name": "strip-bom",
+      "version": "2.0.0",
+      "bom-ref": "cpe:2.3:a::strip-bom:2.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::find-cache-dir:0.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/find-cache-dir@0.1.1",
+      "name": "find-cache-dir",
+      "version": "0.1.1",
+      "bom-ref": "cpe:2.3:a::find-cache-dir:0.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::commondir:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/commondir@1.0.1",
+      "name": "commondir",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::commondir:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::mkdirp:0.5.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/mkdirp@0.5.1",
+      "name": "mkdirp",
+      "version": "0.5.1",
+      "bom-ref": "cpe:2.3:a::mkdirp:0.5.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::pkg-dir:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/pkg-dir@1.0.0",
+      "name": "pkg-dir",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::pkg-dir:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::find-up:1.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/find-up@1.1.2",
+      "name": "find-up",
+      "version": "1.1.2",
+      "bom-ref": "cpe:2.3:a::find-up:1.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::find-up:1.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/find-up@1.1.2",
+      "name": "find-up",
+      "version": "1.1.2",
+      "bom-ref": "cpe:2.3:a::find-up:1.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::foreground-child:1.5.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/foreground-child@1.5.6",
+      "name": "foreground-child",
+      "version": "1.5.6",
+      "bom-ref": "cpe:2.3:a::foreground-child:1.5.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::glob:7.1.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/glob@7.1.3",
+      "name": "glob",
+      "version": "7.1.3",
+      "bom-ref": "cpe:2.3:a::glob:7.1.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::istanbul-lib-coverage:1.0.0:alpha.4:*:*:*:*:*:*",
+      "purl": "pkg:npm/istanbul-lib-coverage@1.0.0",
+      "name": "istanbul-lib-coverage",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::istanbul-lib-coverage:1.0.0:alpha.4:*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::istanbul-lib-hook:1.0.0:alpha.4:*:*:*:*:*:*",
+      "purl": "pkg:npm/istanbul-lib-hook@1.0.0",
+      "name": "istanbul-lib-hook",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::istanbul-lib-hook:1.0.0:alpha.4:*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::append-transform:0.3.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/append-transform@0.3.0",
+      "name": "append-transform",
+      "version": "0.3.0",
+      "bom-ref": "cpe:2.3:a::append-transform:0.3.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::istanbul-lib-instrument:1.1.0:alpha.4:*:*:*:*:*:*",
+      "purl": "pkg:npm/istanbul-lib-instrument@1.1.0",
+      "name": "istanbul-lib-instrument",
+      "version": "1.1.0",
+      "bom-ref": "cpe:2.3:a::istanbul-lib-instrument:1.1.0:alpha.4:*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::babel-generator:6.11.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/babel-generator@6.11.4",
+      "name": "babel-generator",
+      "version": "6.11.4",
+      "bom-ref": "cpe:2.3:a::babel-generator:6.11.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::babel-messages:6.8.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/babel-messages@6.8.0",
+      "name": "babel-messages",
+      "version": "6.8.0",
+      "bom-ref": "cpe:2.3:a::babel-messages:6.8.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::babel-runtime:6.9.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/babel-runtime@6.9.2",
+      "name": "babel-runtime",
+      "version": "6.9.2",
+      "bom-ref": "cpe:2.3:a::babel-runtime:6.9.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::core-js:2.4.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/core-js@2.4.1",
+      "name": "core-js",
+      "version": "2.4.1",
+      "bom-ref": "cpe:2.3:a::core-js:2.4.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::regenerator-runtime:0.9.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/regenerator-runtime@0.9.5",
+      "name": "regenerator-runtime",
+      "version": "0.9.5",
+      "bom-ref": "cpe:2.3:a::regenerator-runtime:0.9.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::babel-runtime:6.9.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/babel-runtime@6.9.2",
+      "name": "babel-runtime",
+      "version": "6.9.2",
+      "bom-ref": "cpe:2.3:a::babel-runtime:6.9.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::babel-types:6.11.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/babel-types@6.11.1",
+      "name": "babel-types",
+      "version": "6.11.1",
+      "bom-ref": "cpe:2.3:a::babel-types:6.11.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::babel-runtime:6.9.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/babel-runtime@6.9.2",
+      "name": "babel-runtime",
+      "version": "6.9.2",
+      "bom-ref": "cpe:2.3:a::babel-runtime:6.9.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::babel-traverse:6.11.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/babel-traverse@6.11.4",
+      "name": "babel-traverse",
+      "version": "6.11.4",
+      "bom-ref": "cpe:2.3:a::babel-traverse:6.11.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::babel-code-frame:6.11.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/babel-code-frame@6.11.0",
+      "name": "babel-code-frame",
+      "version": "6.11.0",
+      "bom-ref": "cpe:2.3:a::babel-code-frame:6.11.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::babel-runtime:6.9.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/babel-runtime@6.9.2",
+      "name": "babel-runtime",
+      "version": "6.9.2",
+      "bom-ref": "cpe:2.3:a::babel-runtime:6.9.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::chalk:1.1.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/chalk@1.1.3",
+      "name": "chalk",
+      "version": "1.1.3",
+      "bom-ref": "cpe:2.3:a::chalk:1.1.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::ansi-styles:2.2.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/ansi-styles@2.2.1",
+      "name": "ansi-styles",
+      "version": "2.2.1",
+      "bom-ref": "cpe:2.3:a::ansi-styles:2.2.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::escape-string-regexp:1.0.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/escape-string-regexp@1.0.5",
+      "name": "escape-string-regexp",
+      "version": "1.0.5",
+      "bom-ref": "cpe:2.3:a::escape-string-regexp:1.0.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::has-ansi:2.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/has-ansi@2.0.0",
+      "name": "has-ansi",
+      "version": "2.0.0",
+      "bom-ref": "cpe:2.3:a::has-ansi:2.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::strip-ansi:3.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/strip-ansi@3.0.1",
+      "name": "strip-ansi",
+      "version": "3.0.1",
+      "bom-ref": "cpe:2.3:a::strip-ansi:3.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::supports-color:2.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/supports-color@2.0.0",
+      "name": "supports-color",
+      "version": "2.0.0",
+      "bom-ref": "cpe:2.3:a::supports-color:2.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::esutils:2.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/esutils@2.0.2",
+      "name": "esutils",
+      "version": "2.0.2",
+      "bom-ref": "cpe:2.3:a::esutils:2.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::js-tokens:2.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/js-tokens@2.0.0",
+      "name": "js-tokens",
+      "version": "2.0.0",
+      "bom-ref": "cpe:2.3:a::js-tokens:2.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::babel-messages:6.8.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/babel-messages@6.8.0",
+      "name": "babel-messages",
+      "version": "6.8.0",
+      "bom-ref": "cpe:2.3:a::babel-messages:6.8.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::babel-runtime:6.9.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/babel-runtime@6.9.2",
+      "name": "babel-runtime",
+      "version": "6.9.2",
+      "bom-ref": "cpe:2.3:a::babel-runtime:6.9.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::babel-types:6.11.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/babel-types@6.11.1",
+      "name": "babel-types",
+      "version": "6.11.1",
+      "bom-ref": "cpe:2.3:a::babel-types:6.11.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::esutils:2.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/esutils@2.0.2",
+      "name": "esutils",
+      "version": "2.0.2",
+      "bom-ref": "cpe:2.3:a::esutils:2.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::lodash:4.17.11::*:*:*:*:*:*",
+      "purl": "pkg:npm/lodash@4.17.11",
+      "name": "lodash",
+      "version": "4.17.11",
+      "bom-ref": "cpe:2.3:a::lodash:4.17.11::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::to-fast-properties:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/to-fast-properties@1.0.2",
+      "name": "to-fast-properties",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::to-fast-properties:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::babylon:6.8.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/babylon@6.8.4",
+      "name": "babylon",
+      "version": "6.8.4",
+      "bom-ref": "cpe:2.3:a::babylon:6.8.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::babel-runtime:6.9.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/babel-runtime@6.9.2",
+      "name": "babel-runtime",
+      "version": "6.9.2",
+      "bom-ref": "cpe:2.3:a::babel-runtime:6.9.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::debug:2.6.9::*:*:*:*:*:*",
+      "purl": "pkg:npm/debug@2.6.9",
+      "name": "debug",
+      "version": "2.6.9",
+      "bom-ref": "cpe:2.3:a::debug:2.6.9::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::ms:2.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/ms@2.0.0",
+      "name": "ms",
+      "version": "2.0.0",
+      "bom-ref": "cpe:2.3:a::ms:2.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::globals:8.18.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/globals@8.18.0",
+      "name": "globals",
+      "version": "8.18.0",
+      "bom-ref": "cpe:2.3:a::globals:8.18.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::invariant:2.2.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/invariant@2.2.1",
+      "name": "invariant",
+      "version": "2.2.1",
+      "bom-ref": "cpe:2.3:a::invariant:2.2.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::loose-envify:1.2.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/loose-envify@1.2.0",
+      "name": "loose-envify",
+      "version": "1.2.0",
+      "bom-ref": "cpe:2.3:a::loose-envify:1.2.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::lodash:4.17.11::*:*:*:*:*:*",
+      "purl": "pkg:npm/lodash@4.17.11",
+      "name": "lodash",
+      "version": "4.17.11",
+      "bom-ref": "cpe:2.3:a::lodash:4.17.11::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::detect-indent:3.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/detect-indent@3.0.1",
+      "name": "detect-indent",
+      "version": "3.0.1",
+      "bom-ref": "cpe:2.3:a::detect-indent:3.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::get-stdin:4.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/get-stdin@4.0.1",
+      "name": "get-stdin",
+      "version": "4.0.1",
+      "bom-ref": "cpe:2.3:a::get-stdin:4.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::repeating:1.1.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/repeating@1.1.3",
+      "name": "repeating",
+      "version": "1.1.3",
+      "bom-ref": "cpe:2.3:a::repeating:1.1.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-finite:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-finite@1.0.2",
+      "name": "is-finite",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::is-finite:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::lodash:4.17.11::*:*:*:*:*:*",
+      "purl": "pkg:npm/lodash@4.17.11",
+      "name": "lodash",
+      "version": "4.17.11",
+      "bom-ref": "cpe:2.3:a::lodash:4.17.11::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::source-map:0.5.7::*:*:*:*:*:*",
+      "purl": "pkg:npm/source-map@0.5.7",
+      "name": "source-map",
+      "version": "0.5.7",
+      "bom-ref": "cpe:2.3:a::source-map:0.5.7::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::babel-template:6.9.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/babel-template@6.9.0",
+      "name": "babel-template",
+      "version": "6.9.0",
+      "bom-ref": "cpe:2.3:a::babel-template:6.9.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::babel-runtime:6.9.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/babel-runtime@6.9.2",
+      "name": "babel-runtime",
+      "version": "6.9.2",
+      "bom-ref": "cpe:2.3:a::babel-runtime:6.9.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::babel-traverse:6.11.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/babel-traverse@6.11.4",
+      "name": "babel-traverse",
+      "version": "6.11.4",
+      "bom-ref": "cpe:2.3:a::babel-traverse:6.11.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::babel-types:6.11.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/babel-types@6.11.1",
+      "name": "babel-types",
+      "version": "6.11.1",
+      "bom-ref": "cpe:2.3:a::babel-types:6.11.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::babylon:6.8.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/babylon@6.8.4",
+      "name": "babylon",
+      "version": "6.8.4",
+      "bom-ref": "cpe:2.3:a::babylon:6.8.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::lodash:4.17.11::*:*:*:*:*:*",
+      "purl": "pkg:npm/lodash@4.17.11",
+      "name": "lodash",
+      "version": "4.17.11",
+      "bom-ref": "cpe:2.3:a::lodash:4.17.11::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::babel-traverse:6.11.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/babel-traverse@6.11.4",
+      "name": "babel-traverse",
+      "version": "6.11.4",
+      "bom-ref": "cpe:2.3:a::babel-traverse:6.11.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::babel-code-frame:6.11.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/babel-code-frame@6.11.0",
+      "name": "babel-code-frame",
+      "version": "6.11.0",
+      "bom-ref": "cpe:2.3:a::babel-code-frame:6.11.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::babel-messages:6.8.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/babel-messages@6.8.0",
+      "name": "babel-messages",
+      "version": "6.8.0",
+      "bom-ref": "cpe:2.3:a::babel-messages:6.8.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::babel-runtime:6.9.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/babel-runtime@6.9.2",
+      "name": "babel-runtime",
+      "version": "6.9.2",
+      "bom-ref": "cpe:2.3:a::babel-runtime:6.9.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::babel-types:6.11.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/babel-types@6.11.1",
+      "name": "babel-types",
+      "version": "6.11.1",
+      "bom-ref": "cpe:2.3:a::babel-types:6.11.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::babylon:6.8.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/babylon@6.8.4",
+      "name": "babylon",
+      "version": "6.8.4",
+      "bom-ref": "cpe:2.3:a::babylon:6.8.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::debug:2.6.9::*:*:*:*:*:*",
+      "purl": "pkg:npm/debug@2.6.9",
+      "name": "debug",
+      "version": "2.6.9",
+      "bom-ref": "cpe:2.3:a::debug:2.6.9::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::globals:8.18.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/globals@8.18.0",
+      "name": "globals",
+      "version": "8.18.0",
+      "bom-ref": "cpe:2.3:a::globals:8.18.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::invariant:2.2.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/invariant@2.2.1",
+      "name": "invariant",
+      "version": "2.2.1",
+      "bom-ref": "cpe:2.3:a::invariant:2.2.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::lodash:4.17.11::*:*:*:*:*:*",
+      "purl": "pkg:npm/lodash@4.17.11",
+      "name": "lodash",
+      "version": "4.17.11",
+      "bom-ref": "cpe:2.3:a::lodash:4.17.11::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::babel-types:6.11.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/babel-types@6.11.1",
+      "name": "babel-types",
+      "version": "6.11.1",
+      "bom-ref": "cpe:2.3:a::babel-types:6.11.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::babel-runtime:6.9.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/babel-runtime@6.9.2",
+      "name": "babel-runtime",
+      "version": "6.9.2",
+      "bom-ref": "cpe:2.3:a::babel-runtime:6.9.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::babel-traverse:6.11.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/babel-traverse@6.11.4",
+      "name": "babel-traverse",
+      "version": "6.11.4",
+      "bom-ref": "cpe:2.3:a::babel-traverse:6.11.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::esutils:2.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/esutils@2.0.2",
+      "name": "esutils",
+      "version": "2.0.2",
+      "bom-ref": "cpe:2.3:a::esutils:2.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::lodash:4.17.11::*:*:*:*:*:*",
+      "purl": "pkg:npm/lodash@4.17.11",
+      "name": "lodash",
+      "version": "4.17.11",
+      "bom-ref": "cpe:2.3:a::lodash:4.17.11::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::to-fast-properties:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/to-fast-properties@1.0.2",
+      "name": "to-fast-properties",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::to-fast-properties:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::babylon:6.8.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/babylon@6.8.4",
+      "name": "babylon",
+      "version": "6.8.4",
+      "bom-ref": "cpe:2.3:a::babylon:6.8.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::babel-runtime:6.9.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/babel-runtime@6.9.2",
+      "name": "babel-runtime",
+      "version": "6.9.2",
+      "bom-ref": "cpe:2.3:a::babel-runtime:6.9.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::istanbul-lib-coverage:1.0.0:alpha.4:*:*:*:*:*:*",
+      "purl": "pkg:npm/istanbul-lib-coverage@1.0.0",
+      "name": "istanbul-lib-coverage",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::istanbul-lib-coverage:1.0.0:alpha.4:*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::istanbul-lib-report:1.0.0:alpha.3:*:*:*:*:*:*",
+      "purl": "pkg:npm/istanbul-lib-report@1.0.0",
+      "name": "istanbul-lib-report",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::istanbul-lib-report:1.0.0:alpha.3:*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::async:1.5.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/async@1.5.2",
+      "name": "async",
+      "version": "1.5.2",
+      "bom-ref": "cpe:2.3:a::async:1.5.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::istanbul-lib-coverage:1.0.0:alpha.4:*:*:*:*:*:*",
+      "purl": "pkg:npm/istanbul-lib-coverage@1.0.0",
+      "name": "istanbul-lib-coverage",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::istanbul-lib-coverage:1.0.0:alpha.4:*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::mkdirp:0.5.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/mkdirp@0.5.1",
+      "name": "mkdirp",
+      "version": "0.5.1",
+      "bom-ref": "cpe:2.3:a::mkdirp:0.5.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::path-parse:1.0.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/path-parse@1.0.5",
+      "name": "path-parse",
+      "version": "1.0.5",
+      "bom-ref": "cpe:2.3:a::path-parse:1.0.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::rimraf:2.6.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/rimraf@2.6.3",
+      "name": "rimraf",
+      "version": "2.6.3",
+      "bom-ref": "cpe:2.3:a::rimraf:2.6.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::supports-color:3.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/supports-color@3.1.2",
+      "name": "supports-color",
+      "version": "3.1.2",
+      "bom-ref": "cpe:2.3:a::supports-color:3.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::has-flag:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/has-flag@1.0.0",
+      "name": "has-flag",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::has-flag:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::istanbul-lib-source-maps:1.0.0:alpha.10:*:*:*:*:*:*",
+      "purl": "pkg:npm/istanbul-lib-source-maps@1.0.0",
+      "name": "istanbul-lib-source-maps",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::istanbul-lib-source-maps:1.0.0:alpha.10:*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::istanbul-lib-coverage:1.0.0:alpha.4:*:*:*:*:*:*",
+      "purl": "pkg:npm/istanbul-lib-coverage@1.0.0",
+      "name": "istanbul-lib-coverage",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::istanbul-lib-coverage:1.0.0:alpha.4:*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::mkdirp:0.5.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/mkdirp@0.5.1",
+      "name": "mkdirp",
+      "version": "0.5.1",
+      "bom-ref": "cpe:2.3:a::mkdirp:0.5.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::rimraf:2.6.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/rimraf@2.6.3",
+      "name": "rimraf",
+      "version": "2.6.3",
+      "bom-ref": "cpe:2.3:a::rimraf:2.6.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::source-map:0.5.7::*:*:*:*:*:*",
+      "purl": "pkg:npm/source-map@0.5.7",
+      "name": "source-map",
+      "version": "0.5.7",
+      "bom-ref": "cpe:2.3:a::source-map:0.5.7::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::istanbul-reports:1.0.0:alpha.8:*:*:*:*:*:*",
+      "purl": "pkg:npm/istanbul-reports@1.0.0",
+      "name": "istanbul-reports",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::istanbul-reports:1.0.0:alpha.8:*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::handlebars:4.0.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/handlebars@4.0.5",
+      "name": "handlebars",
+      "version": "4.0.5",
+      "bom-ref": "cpe:2.3:a::handlebars:4.0.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::async:1.5.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/async@1.5.2",
+      "name": "async",
+      "version": "1.5.2",
+      "bom-ref": "cpe:2.3:a::async:1.5.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::optimist:0.6.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/optimist@0.6.1",
+      "name": "optimist",
+      "version": "0.6.1",
+      "bom-ref": "cpe:2.3:a::optimist:0.6.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::minimist:0.0.10::*:*:*:*:*:*",
+      "purl": "pkg:npm/minimist@0.0.10",
+      "name": "minimist",
+      "version": "0.0.10",
+      "bom-ref": "cpe:2.3:a::minimist:0.0.10::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::wordwrap:0.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/wordwrap@0.0.3",
+      "name": "wordwrap",
+      "version": "0.0.3",
+      "bom-ref": "cpe:2.3:a::wordwrap:0.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::source-map:0.5.7::*:*:*:*:*:*",
+      "purl": "pkg:npm/source-map@0.5.7",
+      "name": "source-map",
+      "version": "0.5.7",
+      "bom-ref": "cpe:2.3:a::source-map:0.5.7::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::uglify-js:2.7.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/uglify-js@2.7.0",
+      "name": "uglify-js",
+      "version": "2.7.0",
+      "bom-ref": "cpe:2.3:a::uglify-js:2.7.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::async:0.2.10::*:*:*:*:*:*",
+      "purl": "pkg:npm/async@0.2.10",
+      "name": "async",
+      "version": "0.2.10",
+      "bom-ref": "cpe:2.3:a::async:0.2.10::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::source-map:0.5.7::*:*:*:*:*:*",
+      "purl": "pkg:npm/source-map@0.5.7",
+      "name": "source-map",
+      "version": "0.5.7",
+      "bom-ref": "cpe:2.3:a::source-map:0.5.7::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::uglify-to-browserify:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/uglify-to-browserify@1.0.2",
+      "name": "uglify-to-browserify",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::uglify-to-browserify:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::md5-hex:1.3.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/md5-hex@1.3.0",
+      "name": "md5-hex",
+      "version": "1.3.0",
+      "bom-ref": "cpe:2.3:a::md5-hex:1.3.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::md5-o-matic:0.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/md5-o-matic@0.1.1",
+      "name": "md5-o-matic",
+      "version": "0.1.1",
+      "bom-ref": "cpe:2.3:a::md5-o-matic:0.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::micromatch:2.3.11::*:*:*:*:*:*",
+      "purl": "pkg:npm/micromatch@2.3.11",
+      "name": "micromatch",
+      "version": "2.3.11",
+      "bom-ref": "cpe:2.3:a::micromatch:2.3.11::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::arr-diff:2.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/arr-diff@2.0.0",
+      "name": "arr-diff",
+      "version": "2.0.0",
+      "bom-ref": "cpe:2.3:a::arr-diff:2.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::arr-flatten:1.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/arr-flatten@1.1.0",
+      "name": "arr-flatten",
+      "version": "1.1.0",
+      "bom-ref": "cpe:2.3:a::arr-flatten:1.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::array-unique:0.3.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/array-unique@0.3.2",
+      "name": "array-unique",
+      "version": "0.3.2",
+      "bom-ref": "cpe:2.3:a::array-unique:0.3.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::braces:1.8.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/braces@1.8.5",
+      "name": "braces",
+      "version": "1.8.5",
+      "bom-ref": "cpe:2.3:a::braces:1.8.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::expand-range:1.8.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/expand-range@1.8.2",
+      "name": "expand-range",
+      "version": "1.8.2",
+      "bom-ref": "cpe:2.3:a::expand-range:1.8.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::fill-range:2.2.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/fill-range@2.2.3",
+      "name": "fill-range",
+      "version": "2.2.3",
+      "bom-ref": "cpe:2.3:a::fill-range:2.2.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-number:2.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-number@2.1.0",
+      "name": "is-number",
+      "version": "2.1.0",
+      "bom-ref": "cpe:2.3:a::is-number:2.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::kind-of:3.2.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/kind-of@3.2.2",
+      "name": "kind-of",
+      "version": "3.2.2",
+      "bom-ref": "cpe:2.3:a::kind-of:3.2.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-buffer:1.1.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-buffer@1.1.6",
+      "name": "is-buffer",
+      "version": "1.1.6",
+      "bom-ref": "cpe:2.3:a::is-buffer:1.1.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::isobject:2.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/isobject@2.1.0",
+      "name": "isobject",
+      "version": "2.1.0",
+      "bom-ref": "cpe:2.3:a::isobject:2.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::isarray:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/isarray@1.0.0",
+      "name": "isarray",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::isarray:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::randomatic:1.1.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/randomatic@1.1.5",
+      "name": "randomatic",
+      "version": "1.1.5",
+      "bom-ref": "cpe:2.3:a::randomatic:1.1.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-number:2.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-number@2.1.0",
+      "name": "is-number",
+      "version": "2.1.0",
+      "bom-ref": "cpe:2.3:a::is-number:2.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::kind-of:3.2.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/kind-of@3.2.2",
+      "name": "kind-of",
+      "version": "3.2.2",
+      "bom-ref": "cpe:2.3:a::kind-of:3.2.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::repeat-element:1.1.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/repeat-element@1.1.3",
+      "name": "repeat-element",
+      "version": "1.1.3",
+      "bom-ref": "cpe:2.3:a::repeat-element:1.1.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::repeat-string:1.6.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/repeat-string@1.6.1",
+      "name": "repeat-string",
+      "version": "1.6.1",
+      "bom-ref": "cpe:2.3:a::repeat-string:1.6.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::preserve:0.2.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/preserve@0.2.0",
+      "name": "preserve",
+      "version": "0.2.0",
+      "bom-ref": "cpe:2.3:a::preserve:0.2.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::repeat-element:1.1.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/repeat-element@1.1.3",
+      "name": "repeat-element",
+      "version": "1.1.3",
+      "bom-ref": "cpe:2.3:a::repeat-element:1.1.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::expand-brackets:0.1.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/expand-brackets@0.1.5",
+      "name": "expand-brackets",
+      "version": "0.1.5",
+      "bom-ref": "cpe:2.3:a::expand-brackets:0.1.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-posix-bracket:0.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-posix-bracket@0.1.1",
+      "name": "is-posix-bracket",
+      "version": "0.1.1",
+      "bom-ref": "cpe:2.3:a::is-posix-bracket:0.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::extglob:0.3.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/extglob@0.3.2",
+      "name": "extglob",
+      "version": "0.3.2",
+      "bom-ref": "cpe:2.3:a::extglob:0.3.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-extglob:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-extglob@1.0.0",
+      "name": "is-extglob",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::is-extglob:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::filename-regex:2.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/filename-regex@2.0.0",
+      "name": "filename-regex",
+      "version": "2.0.0",
+      "bom-ref": "cpe:2.3:a::filename-regex:2.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-extglob:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-extglob@1.0.0",
+      "name": "is-extglob",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::is-extglob:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-glob:2.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-glob@2.0.1",
+      "name": "is-glob",
+      "version": "2.0.1",
+      "bom-ref": "cpe:2.3:a::is-glob:2.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-extglob:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-extglob@1.0.0",
+      "name": "is-extglob",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::is-extglob:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::kind-of:3.2.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/kind-of@3.2.2",
+      "name": "kind-of",
+      "version": "3.2.2",
+      "bom-ref": "cpe:2.3:a::kind-of:3.2.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::normalize-path:2.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/normalize-path@2.0.1",
+      "name": "normalize-path",
+      "version": "2.0.1",
+      "bom-ref": "cpe:2.3:a::normalize-path:2.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::object.omit:2.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/object.omit@2.0.0",
+      "name": "object.omit",
+      "version": "2.0.0",
+      "bom-ref": "cpe:2.3:a::object.omit:2.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::for-own:0.1.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/for-own@0.1.4",
+      "name": "for-own",
+      "version": "0.1.4",
+      "bom-ref": "cpe:2.3:a::for-own:0.1.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::for-in:0.1.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/for-in@0.1.5",
+      "name": "for-in",
+      "version": "0.1.5",
+      "bom-ref": "cpe:2.3:a::for-in:0.1.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-extendable:0.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-extendable@0.1.1",
+      "name": "is-extendable",
+      "version": "0.1.1",
+      "bom-ref": "cpe:2.3:a::is-extendable:0.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::parse-glob:3.0.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/parse-glob@3.0.4",
+      "name": "parse-glob",
+      "version": "3.0.4",
+      "bom-ref": "cpe:2.3:a::parse-glob:3.0.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::glob-base:0.3.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/glob-base@0.3.0",
+      "name": "glob-base",
+      "version": "0.3.0",
+      "bom-ref": "cpe:2.3:a::glob-base:0.3.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::glob-parent:2.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/glob-parent@2.0.0",
+      "name": "glob-parent",
+      "version": "2.0.0",
+      "bom-ref": "cpe:2.3:a::glob-parent:2.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-glob:2.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-glob@2.0.1",
+      "name": "is-glob",
+      "version": "2.0.1",
+      "bom-ref": "cpe:2.3:a::is-glob:2.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-extglob:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-extglob@1.0.0",
+      "name": "is-extglob",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::is-extglob:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-glob:2.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-glob@2.0.1",
+      "name": "is-glob",
+      "version": "2.0.1",
+      "bom-ref": "cpe:2.3:a::is-glob:2.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-dotfile:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-dotfile@1.0.2",
+      "name": "is-dotfile",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::is-dotfile:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-extglob:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-extglob@1.0.0",
+      "name": "is-extglob",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::is-extglob:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-glob:2.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-glob@2.0.1",
+      "name": "is-glob",
+      "version": "2.0.1",
+      "bom-ref": "cpe:2.3:a::is-glob:2.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-extglob:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-extglob@1.0.0",
+      "name": "is-extglob",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::is-extglob:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::regex-cache:0.4.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/regex-cache@0.4.3",
+      "name": "regex-cache",
+      "version": "0.4.3",
+      "bom-ref": "cpe:2.3:a::regex-cache:0.4.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-equal-shallow:0.1.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-equal-shallow@0.1.3",
+      "name": "is-equal-shallow",
+      "version": "0.1.3",
+      "bom-ref": "cpe:2.3:a::is-equal-shallow:0.1.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-primitive:2.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-primitive@2.0.0",
+      "name": "is-primitive",
+      "version": "2.0.0",
+      "bom-ref": "cpe:2.3:a::is-primitive:2.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-primitive:2.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-primitive@2.0.0",
+      "name": "is-primitive",
+      "version": "2.0.0",
+      "bom-ref": "cpe:2.3:a::is-primitive:2.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::mkdirp:0.5.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/mkdirp@0.5.1",
+      "name": "mkdirp",
+      "version": "0.5.1",
+      "bom-ref": "cpe:2.3:a::mkdirp:0.5.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::pkg-up:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/pkg-up@1.0.0",
+      "name": "pkg-up",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::pkg-up:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::find-up:1.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/find-up@1.1.2",
+      "name": "find-up",
+      "version": "1.1.2",
+      "bom-ref": "cpe:2.3:a::find-up:1.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::resolve-from:2.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/resolve-from@2.0.0",
+      "name": "resolve-from",
+      "version": "2.0.0",
+      "bom-ref": "cpe:2.3:a::resolve-from:2.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::rimraf:2.6.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/rimraf@2.6.3",
+      "name": "rimraf",
+      "version": "2.6.3",
+      "bom-ref": "cpe:2.3:a::rimraf:2.6.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::signal-exit:3.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/signal-exit@3.0.2",
+      "name": "signal-exit",
+      "version": "3.0.2",
+      "bom-ref": "cpe:2.3:a::signal-exit:3.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::spawn-wrap:1.2.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/spawn-wrap@1.2.4",
+      "name": "spawn-wrap",
+      "version": "1.2.4",
+      "bom-ref": "cpe:2.3:a::spawn-wrap:1.2.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::foreground-child:1.5.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/foreground-child@1.5.6",
+      "name": "foreground-child",
+      "version": "1.5.6",
+      "bom-ref": "cpe:2.3:a::foreground-child:1.5.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::mkdirp:0.5.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/mkdirp@0.5.1",
+      "name": "mkdirp",
+      "version": "0.5.1",
+      "bom-ref": "cpe:2.3:a::mkdirp:0.5.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::os-homedir:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/os-homedir@1.0.2",
+      "name": "os-homedir",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::os-homedir:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::rimraf:2.6.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/rimraf@2.6.3",
+      "name": "rimraf",
+      "version": "2.6.3",
+      "bom-ref": "cpe:2.3:a::rimraf:2.6.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::signal-exit:2.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/signal-exit@2.1.2",
+      "name": "signal-exit",
+      "version": "2.1.2",
+      "bom-ref": "cpe:2.3:a::signal-exit:2.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::which:1.3.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/which@1.3.1",
+      "name": "which",
+      "version": "1.3.1",
+      "bom-ref": "cpe:2.3:a::which:1.3.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::test-exclude:1.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/test-exclude@1.1.0",
+      "name": "test-exclude",
+      "version": "1.1.0",
+      "bom-ref": "cpe:2.3:a::test-exclude:1.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::arrify:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/arrify@1.0.1",
+      "name": "arrify",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::arrify:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::lodash.assign:4.0.9::*:*:*:*:*:*",
+      "purl": "pkg:npm/lodash.assign@4.0.9",
+      "name": "lodash.assign",
+      "version": "4.0.9",
+      "bom-ref": "cpe:2.3:a::lodash.assign:4.0.9::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::lodash.keys:4.0.7::*:*:*:*:*:*",
+      "purl": "pkg:npm/lodash.keys@4.0.7",
+      "name": "lodash.keys",
+      "version": "4.0.7",
+      "bom-ref": "cpe:2.3:a::lodash.keys:4.0.7::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::lodash.rest:4.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/lodash.rest@4.0.3",
+      "name": "lodash.rest",
+      "version": "4.0.3",
+      "bom-ref": "cpe:2.3:a::lodash.rest:4.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::micromatch:2.3.11::*:*:*:*:*:*",
+      "purl": "pkg:npm/micromatch@2.3.11",
+      "name": "micromatch",
+      "version": "2.3.11",
+      "bom-ref": "cpe:2.3:a::micromatch:2.3.11::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::arr-diff:2.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/arr-diff@2.0.0",
+      "name": "arr-diff",
+      "version": "2.0.0",
+      "bom-ref": "cpe:2.3:a::arr-diff:2.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::arr-flatten:1.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/arr-flatten@1.1.0",
+      "name": "arr-flatten",
+      "version": "1.1.0",
+      "bom-ref": "cpe:2.3:a::arr-flatten:1.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::braces:1.8.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/braces@1.8.5",
+      "name": "braces",
+      "version": "1.8.5",
+      "bom-ref": "cpe:2.3:a::braces:1.8.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::expand-range:1.8.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/expand-range@1.8.2",
+      "name": "expand-range",
+      "version": "1.8.2",
+      "bom-ref": "cpe:2.3:a::expand-range:1.8.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::preserve:0.2.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/preserve@0.2.0",
+      "name": "preserve",
+      "version": "0.2.0",
+      "bom-ref": "cpe:2.3:a::preserve:0.2.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::repeat-element:1.1.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/repeat-element@1.1.3",
+      "name": "repeat-element",
+      "version": "1.1.3",
+      "bom-ref": "cpe:2.3:a::repeat-element:1.1.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::expand-brackets:0.1.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/expand-brackets@0.1.5",
+      "name": "expand-brackets",
+      "version": "0.1.5",
+      "bom-ref": "cpe:2.3:a::expand-brackets:0.1.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-posix-bracket:0.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-posix-bracket@0.1.1",
+      "name": "is-posix-bracket",
+      "version": "0.1.1",
+      "bom-ref": "cpe:2.3:a::is-posix-bracket:0.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::extglob:0.3.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/extglob@0.3.2",
+      "name": "extglob",
+      "version": "0.3.2",
+      "bom-ref": "cpe:2.3:a::extglob:0.3.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-extglob:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-extglob@1.0.0",
+      "name": "is-extglob",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::is-extglob:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::filename-regex:2.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/filename-regex@2.0.0",
+      "name": "filename-regex",
+      "version": "2.0.0",
+      "bom-ref": "cpe:2.3:a::filename-regex:2.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-extglob:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-extglob@1.0.0",
+      "name": "is-extglob",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::is-extglob:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-glob:2.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-glob@2.0.1",
+      "name": "is-glob",
+      "version": "2.0.1",
+      "bom-ref": "cpe:2.3:a::is-glob:2.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-extglob:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-extglob@1.0.0",
+      "name": "is-extglob",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::is-extglob:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::normalize-path:2.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/normalize-path@2.0.1",
+      "name": "normalize-path",
+      "version": "2.0.1",
+      "bom-ref": "cpe:2.3:a::normalize-path:2.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::object.omit:2.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/object.omit@2.0.0",
+      "name": "object.omit",
+      "version": "2.0.0",
+      "bom-ref": "cpe:2.3:a::object.omit:2.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::for-own:0.1.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/for-own@0.1.4",
+      "name": "for-own",
+      "version": "0.1.4",
+      "bom-ref": "cpe:2.3:a::for-own:0.1.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-extendable:0.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-extendable@0.1.1",
+      "name": "is-extendable",
+      "version": "0.1.1",
+      "bom-ref": "cpe:2.3:a::is-extendable:0.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::parse-glob:3.0.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/parse-glob@3.0.4",
+      "name": "parse-glob",
+      "version": "3.0.4",
+      "bom-ref": "cpe:2.3:a::parse-glob:3.0.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::glob-base:0.3.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/glob-base@0.3.0",
+      "name": "glob-base",
+      "version": "0.3.0",
+      "bom-ref": "cpe:2.3:a::glob-base:0.3.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-dotfile:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-dotfile@1.0.2",
+      "name": "is-dotfile",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::is-dotfile:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-extglob:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-extglob@1.0.0",
+      "name": "is-extglob",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::is-extglob:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-glob:2.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-glob@2.0.1",
+      "name": "is-glob",
+      "version": "2.0.1",
+      "bom-ref": "cpe:2.3:a::is-glob:2.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::regex-cache:0.4.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/regex-cache@0.4.3",
+      "name": "regex-cache",
+      "version": "0.4.3",
+      "bom-ref": "cpe:2.3:a::regex-cache:0.4.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-equal-shallow:0.1.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-equal-shallow@0.1.3",
+      "name": "is-equal-shallow",
+      "version": "0.1.3",
+      "bom-ref": "cpe:2.3:a::is-equal-shallow:0.1.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-primitive:2.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-primitive@2.0.0",
+      "name": "is-primitive",
+      "version": "2.0.0",
+      "bom-ref": "cpe:2.3:a::is-primitive:2.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::read-pkg-up:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/read-pkg-up@1.0.1",
+      "name": "read-pkg-up",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::read-pkg-up:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::require-main-filename:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/require-main-filename@1.0.1",
+      "name": "require-main-filename",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::require-main-filename:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::yargs:4.8.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/yargs@4.8.1",
+      "name": "yargs",
+      "version": "4.8.1",
+      "bom-ref": "cpe:2.3:a::yargs:4.8.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::cliui:3.2.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/cliui@3.2.0",
+      "name": "cliui",
+      "version": "3.2.0",
+      "bom-ref": "cpe:2.3:a::cliui:3.2.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::string-width:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/string-width@1.0.2",
+      "name": "string-width",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::string-width:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::code-point-at:1.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/code-point-at@1.1.0",
+      "name": "code-point-at",
+      "version": "1.1.0",
+      "bom-ref": "cpe:2.3:a::code-point-at:1.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-fullwidth-code-point:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-fullwidth-code-point@1.0.0",
+      "name": "is-fullwidth-code-point",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::is-fullwidth-code-point:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::number-is-nan:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/number-is-nan@1.0.1",
+      "name": "number-is-nan",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::number-is-nan:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::strip-ansi:3.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/strip-ansi@3.0.1",
+      "name": "strip-ansi",
+      "version": "3.0.1",
+      "bom-ref": "cpe:2.3:a::strip-ansi:3.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::strip-ansi:3.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/strip-ansi@3.0.1",
+      "name": "strip-ansi",
+      "version": "3.0.1",
+      "bom-ref": "cpe:2.3:a::strip-ansi:3.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::wrap-ansi:2.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/wrap-ansi@2.1.0",
+      "name": "wrap-ansi",
+      "version": "2.1.0",
+      "bom-ref": "cpe:2.3:a::wrap-ansi:2.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::string-width:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/string-width@1.0.2",
+      "name": "string-width",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::string-width:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::strip-ansi:3.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/strip-ansi@3.0.1",
+      "name": "strip-ansi",
+      "version": "3.0.1",
+      "bom-ref": "cpe:2.3:a::strip-ansi:3.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::decamelize:1.2.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/decamelize@1.2.0",
+      "name": "decamelize",
+      "version": "1.2.0",
+      "bom-ref": "cpe:2.3:a::decamelize:1.2.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::get-caller-file:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/get-caller-file@1.0.1",
+      "name": "get-caller-file",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::get-caller-file:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::lodash.assign:4.0.9::*:*:*:*:*:*",
+      "purl": "pkg:npm/lodash.assign@4.0.9",
+      "name": "lodash.assign",
+      "version": "4.0.9",
+      "bom-ref": "cpe:2.3:a::lodash.assign:4.0.9::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::os-locale:1.4.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/os-locale@1.4.0",
+      "name": "os-locale",
+      "version": "1.4.0",
+      "bom-ref": "cpe:2.3:a::os-locale:1.4.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::lcid:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/lcid@1.0.0",
+      "name": "lcid",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::lcid:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::invert-kv:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/invert-kv@1.0.0",
+      "name": "invert-kv",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::invert-kv:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::read-pkg-up:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/read-pkg-up@1.0.1",
+      "name": "read-pkg-up",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::read-pkg-up:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::require-directory:2.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/require-directory@2.1.1",
+      "name": "require-directory",
+      "version": "2.1.1",
+      "bom-ref": "cpe:2.3:a::require-directory:2.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::require-main-filename:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/require-main-filename@1.0.1",
+      "name": "require-main-filename",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::require-main-filename:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::set-blocking:2.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/set-blocking@2.0.0",
+      "name": "set-blocking",
+      "version": "2.0.0",
+      "bom-ref": "cpe:2.3:a::set-blocking:2.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::string-width:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/string-width@1.0.2",
+      "name": "string-width",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::string-width:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::which-module:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/which-module@1.0.0",
+      "name": "which-module",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::which-module:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::window-size:0.2.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/window-size@0.2.0",
+      "name": "window-size",
+      "version": "0.2.0",
+      "bom-ref": "cpe:2.3:a::window-size:0.2.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::y18n:3.2.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/y18n@3.2.1",
+      "name": "y18n",
+      "version": "3.2.1",
+      "bom-ref": "cpe:2.3:a::y18n:3.2.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::yargs-parser:2.4.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/yargs-parser@2.4.1",
+      "name": "yargs-parser",
+      "version": "2.4.1",
+      "bom-ref": "cpe:2.3:a::yargs-parser:2.4.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::lodash.assign:4.0.9::*:*:*:*:*:*",
+      "purl": "pkg:npm/lodash.assign@4.0.9",
+      "name": "lodash.assign",
+      "version": "4.0.9",
+      "bom-ref": "cpe:2.3:a::lodash.assign:4.0.9::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::lodash.keys:4.0.7::*:*:*:*:*:*",
+      "purl": "pkg:npm/lodash.keys@4.0.7",
+      "name": "lodash.keys",
+      "version": "4.0.7",
+      "bom-ref": "cpe:2.3:a::lodash.keys:4.0.7::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::lodash.rest:4.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/lodash.rest@4.0.3",
+      "name": "lodash.rest",
+      "version": "4.0.3",
+      "bom-ref": "cpe:2.3:a::lodash.rest:4.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::yargs-parser:2.4.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/yargs-parser@2.4.1",
+      "name": "yargs-parser",
+      "version": "2.4.1",
+      "bom-ref": "cpe:2.3:a::yargs-parser:2.4.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::camelcase:3.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/camelcase@3.0.0",
+      "name": "camelcase",
+      "version": "3.0.0",
+      "bom-ref": "cpe:2.3:a::camelcase:3.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::lodash.assign:4.0.9::*:*:*:*:*:*",
+      "purl": "pkg:npm/lodash.assign@4.0.9",
+      "name": "lodash.assign",
+      "version": "4.0.9",
+      "bom-ref": "cpe:2.3:a::lodash.assign:4.0.9::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::only-shallow:1.2.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/only-shallow@1.2.0",
+      "name": "only-shallow",
+      "version": "1.2.0",
+      "bom-ref": "cpe:2.3:a::only-shallow:1.2.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::opener:1.5.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/opener@1.5.1",
+      "name": "opener",
+      "version": "1.5.1",
+      "bom-ref": "cpe:2.3:a::opener:1.5.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::os-homedir:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/os-homedir@1.0.1",
+      "name": "os-homedir",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::os-homedir:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::readable-stream:2.3.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/readable-stream@2.3.6",
+      "name": "readable-stream",
+      "version": "2.3.6",
+      "bom-ref": "cpe:2.3:a::readable-stream:2.3.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::core-util-is:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/core-util-is@1.0.2",
+      "name": "core-util-is",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::core-util-is:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::inherits:2.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/inherits@2.0.3",
+      "name": "inherits",
+      "version": "2.0.3",
+      "bom-ref": "cpe:2.3:a::inherits:2.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::isarray:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/isarray@1.0.0",
+      "name": "isarray",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::isarray:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::process-nextick-args:2.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/process-nextick-args@2.0.0",
+      "name": "process-nextick-args",
+      "version": "2.0.0",
+      "bom-ref": "cpe:2.3:a::process-nextick-args:2.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::safe-buffer:5.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/safe-buffer@5.1.2",
+      "name": "safe-buffer",
+      "version": "5.1.2",
+      "bom-ref": "cpe:2.3:a::safe-buffer:5.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::string_decoder:1.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/string_decoder@1.1.1",
+      "name": "string_decoder",
+      "version": "1.1.1",
+      "bom-ref": "cpe:2.3:a::string_decoder:1.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::safe-buffer:5.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/safe-buffer@5.1.2",
+      "name": "safe-buffer",
+      "version": "5.1.2",
+      "bom-ref": "cpe:2.3:a::safe-buffer:5.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::util-deprecate:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/util-deprecate@1.0.2",
+      "name": "util-deprecate",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::util-deprecate:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::signal-exit:3.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/signal-exit@3.0.2",
+      "name": "signal-exit",
+      "version": "3.0.2",
+      "bom-ref": "cpe:2.3:a::signal-exit:3.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::stack-utils:0.4.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/stack-utils@0.4.0",
+      "name": "stack-utils",
+      "version": "0.4.0",
+      "bom-ref": "cpe:2.3:a::stack-utils:0.4.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::tap-mocha-reporter:2.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/tap-mocha-reporter@2.0.1",
+      "name": "tap-mocha-reporter",
+      "version": "2.0.1",
+      "bom-ref": "cpe:2.3:a::tap-mocha-reporter:2.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::color-support:1.1.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/color-support@1.1.3",
+      "name": "color-support",
+      "version": "1.1.3",
+      "bom-ref": "cpe:2.3:a::color-support:1.1.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::debug:2.6.9::*:*:*:*:*:*",
+      "purl": "pkg:npm/debug@2.6.9",
+      "name": "debug",
+      "version": "2.6.9",
+      "bom-ref": "cpe:2.3:a::debug:2.6.9::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::diff:1.4.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/diff@1.4.0",
+      "name": "diff",
+      "version": "1.4.0",
+      "bom-ref": "cpe:2.3:a::diff:1.4.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::escape-string-regexp:1.0.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/escape-string-regexp@1.0.5",
+      "name": "escape-string-regexp",
+      "version": "1.0.5",
+      "bom-ref": "cpe:2.3:a::escape-string-regexp:1.0.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::glob:7.1.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/glob@7.1.3",
+      "name": "glob",
+      "version": "7.1.3",
+      "bom-ref": "cpe:2.3:a::glob:7.1.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::js-yaml:3.5.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/js-yaml@3.5.5",
+      "name": "js-yaml",
+      "version": "3.5.5",
+      "bom-ref": "cpe:2.3:a::js-yaml:3.5.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::readable-stream:2.3.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/readable-stream@2.3.6",
+      "name": "readable-stream",
+      "version": "2.3.6",
+      "bom-ref": "cpe:2.3:a::readable-stream:2.3.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::tap-parser:2.2.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/tap-parser@2.2.3",
+      "name": "tap-parser",
+      "version": "2.2.3",
+      "bom-ref": "cpe:2.3:a::tap-parser:2.2.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::events-to-array:1.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/events-to-array@1.1.2",
+      "name": "events-to-array",
+      "version": "1.1.2",
+      "bom-ref": "cpe:2.3:a::events-to-array:1.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::js-yaml:3.5.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/js-yaml@3.5.5",
+      "name": "js-yaml",
+      "version": "3.5.5",
+      "bom-ref": "cpe:2.3:a::js-yaml:3.5.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::readable-stream:2.3.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/readable-stream@2.3.6",
+      "name": "readable-stream",
+      "version": "2.3.6",
+      "bom-ref": "cpe:2.3:a::readable-stream:2.3.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::unicode-length:1.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/unicode-length@1.0.3",
+      "name": "unicode-length",
+      "version": "1.0.3",
+      "bom-ref": "cpe:2.3:a::unicode-length:1.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::punycode:1.4.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/punycode@1.4.1",
+      "name": "punycode",
+      "version": "1.4.1",
+      "bom-ref": "cpe:2.3:a::punycode:1.4.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::strip-ansi:3.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/strip-ansi@3.0.1",
+      "name": "strip-ansi",
+      "version": "3.0.1",
+      "bom-ref": "cpe:2.3:a::strip-ansi:3.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::tap-parser:2.2.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/tap-parser@2.2.3",
+      "name": "tap-parser",
+      "version": "2.2.3",
+      "bom-ref": "cpe:2.3:a::tap-parser:2.2.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::tmatch:2.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/tmatch@2.0.1",
+      "name": "tmatch",
+      "version": "2.0.1",
+      "bom-ref": "cpe:2.3:a::tmatch:2.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::q:1.5.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/q@1.5.1",
+      "name": "q",
+      "version": "1.5.1",
+      "bom-ref": "cpe:2.3:a::q:1.5.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::grunt-jsbeautifier:0.2.13::*:*:*:*:*:*",
+      "purl": "pkg:npm/grunt-jsbeautifier@0.2.13",
+      "name": "grunt-jsbeautifier",
+      "version": "0.2.13",
+      "bom-ref": "cpe:2.3:a::grunt-jsbeautifier:0.2.13::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::async:2.6.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/async@2.6.1",
+      "name": "async",
+      "version": "2.6.1",
+      "bom-ref": "cpe:2.3:a::async:2.6.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::lodash:4.17.11::*:*:*:*:*:*",
+      "purl": "pkg:npm/lodash@4.17.11",
+      "name": "lodash",
+      "version": "4.17.11",
+      "bom-ref": "cpe:2.3:a::lodash:4.17.11::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::grunt:1.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/grunt@1.0.3",
+      "name": "grunt",
+      "version": "1.0.3",
+      "bom-ref": "cpe:2.3:a::grunt:1.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::coffeescript:1.10.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/coffeescript@1.10.0",
+      "name": "coffeescript",
+      "version": "1.10.0",
+      "bom-ref": "cpe:2.3:a::coffeescript:1.10.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::dateformat:1.0.12::*:*:*:*:*:*",
+      "purl": "pkg:npm/dateformat@1.0.12",
+      "name": "dateformat",
+      "version": "1.0.12",
+      "bom-ref": "cpe:2.3:a::dateformat:1.0.12::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::get-stdin:4.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/get-stdin@4.0.1",
+      "name": "get-stdin",
+      "version": "4.0.1",
+      "bom-ref": "cpe:2.3:a::get-stdin:4.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::meow:3.7.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/meow@3.7.0",
+      "name": "meow",
+      "version": "3.7.0",
+      "bom-ref": "cpe:2.3:a::meow:3.7.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::camelcase-keys:2.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/camelcase-keys@2.1.0",
+      "name": "camelcase-keys",
+      "version": "2.1.0",
+      "bom-ref": "cpe:2.3:a::camelcase-keys:2.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::camelcase:2.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/camelcase@2.1.1",
+      "name": "camelcase",
+      "version": "2.1.1",
+      "bom-ref": "cpe:2.3:a::camelcase:2.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::map-obj:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/map-obj@1.0.1",
+      "name": "map-obj",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::map-obj:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::decamelize:1.2.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/decamelize@1.2.0",
+      "name": "decamelize",
+      "version": "1.2.0",
+      "bom-ref": "cpe:2.3:a::decamelize:1.2.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::loud-rejection:1.6.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/loud-rejection@1.6.0",
+      "name": "loud-rejection",
+      "version": "1.6.0",
+      "bom-ref": "cpe:2.3:a::loud-rejection:1.6.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::currently-unhandled:0.4.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/currently-unhandled@0.4.1",
+      "name": "currently-unhandled",
+      "version": "0.4.1",
+      "bom-ref": "cpe:2.3:a::currently-unhandled:0.4.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::array-find-index:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/array-find-index@1.0.2",
+      "name": "array-find-index",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::array-find-index:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::signal-exit:3.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/signal-exit@3.0.2",
+      "name": "signal-exit",
+      "version": "3.0.2",
+      "bom-ref": "cpe:2.3:a::signal-exit:3.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::map-obj:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/map-obj@1.0.1",
+      "name": "map-obj",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::map-obj:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::minimist:1.2.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/minimist@1.2.0",
+      "name": "minimist",
+      "version": "1.2.0",
+      "bom-ref": "cpe:2.3:a::minimist:1.2.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::normalize-package-data:2.4.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/normalize-package-data@2.4.0",
+      "name": "normalize-package-data",
+      "version": "2.4.0",
+      "bom-ref": "cpe:2.3:a::normalize-package-data:2.4.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::hosted-git-info:2.7.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/hosted-git-info@2.7.1",
+      "name": "hosted-git-info",
+      "version": "2.7.1",
+      "bom-ref": "cpe:2.3:a::hosted-git-info:2.7.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-builtin-module:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-builtin-module@1.0.0",
+      "name": "is-builtin-module",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::is-builtin-module:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::builtin-modules:1.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/builtin-modules@1.1.1",
+      "name": "builtin-modules",
+      "version": "1.1.1",
+      "bom-ref": "cpe:2.3:a::builtin-modules:1.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::semver:5.6.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/semver@5.6.0",
+      "name": "semver",
+      "version": "5.6.0",
+      "bom-ref": "cpe:2.3:a::semver:5.6.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::validate-npm-package-license:3.0.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/validate-npm-package-license@3.0.4",
+      "name": "validate-npm-package-license",
+      "version": "3.0.4",
+      "bom-ref": "cpe:2.3:a::validate-npm-package-license:3.0.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::spdx-correct:3.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/spdx-correct@3.1.0",
+      "name": "spdx-correct",
+      "version": "3.1.0",
+      "bom-ref": "cpe:2.3:a::spdx-correct:3.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::spdx-expression-parse:3.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/spdx-expression-parse@3.0.0",
+      "name": "spdx-expression-parse",
+      "version": "3.0.0",
+      "bom-ref": "cpe:2.3:a::spdx-expression-parse:3.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::spdx-exceptions:2.2.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/spdx-exceptions@2.2.0",
+      "name": "spdx-exceptions",
+      "version": "2.2.0",
+      "bom-ref": "cpe:2.3:a::spdx-exceptions:2.2.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::spdx-license-ids:3.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/spdx-license-ids@3.0.3",
+      "name": "spdx-license-ids",
+      "version": "3.0.3",
+      "bom-ref": "cpe:2.3:a::spdx-license-ids:3.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::spdx-license-ids:3.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/spdx-license-ids@3.0.3",
+      "name": "spdx-license-ids",
+      "version": "3.0.3",
+      "bom-ref": "cpe:2.3:a::spdx-license-ids:3.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::spdx-expression-parse:3.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/spdx-expression-parse@3.0.0",
+      "name": "spdx-expression-parse",
+      "version": "3.0.0",
+      "bom-ref": "cpe:2.3:a::spdx-expression-parse:3.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::object-assign:4.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/object-assign@4.1.1",
+      "name": "object-assign",
+      "version": "4.1.1",
+      "bom-ref": "cpe:2.3:a::object-assign:4.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::read-pkg-up:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/read-pkg-up@1.0.1",
+      "name": "read-pkg-up",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::read-pkg-up:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::find-up:1.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/find-up@1.1.2",
+      "name": "find-up",
+      "version": "1.1.2",
+      "bom-ref": "cpe:2.3:a::find-up:1.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::path-exists:2.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/path-exists@2.1.0",
+      "name": "path-exists",
+      "version": "2.1.0",
+      "bom-ref": "cpe:2.3:a::path-exists:2.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::pinkie-promise:2.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/pinkie-promise@2.0.1",
+      "name": "pinkie-promise",
+      "version": "2.0.1",
+      "bom-ref": "cpe:2.3:a::pinkie-promise:2.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::pinkie:2.0.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/pinkie@2.0.4",
+      "name": "pinkie",
+      "version": "2.0.4",
+      "bom-ref": "cpe:2.3:a::pinkie:2.0.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::pinkie-promise:2.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/pinkie-promise@2.0.1",
+      "name": "pinkie-promise",
+      "version": "2.0.1",
+      "bom-ref": "cpe:2.3:a::pinkie-promise:2.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::read-pkg:1.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/read-pkg@1.1.0",
+      "name": "read-pkg",
+      "version": "1.1.0",
+      "bom-ref": "cpe:2.3:a::read-pkg:1.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::load-json-file:1.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/load-json-file@1.1.0",
+      "name": "load-json-file",
+      "version": "1.1.0",
+      "bom-ref": "cpe:2.3:a::load-json-file:1.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::graceful-fs:4.1.15::*:*:*:*:*:*",
+      "purl": "pkg:npm/graceful-fs@4.1.15",
+      "name": "graceful-fs",
+      "version": "4.1.15",
+      "bom-ref": "cpe:2.3:a::graceful-fs:4.1.15::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::parse-json:2.2.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/parse-json@2.2.0",
+      "name": "parse-json",
+      "version": "2.2.0",
+      "bom-ref": "cpe:2.3:a::parse-json:2.2.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::error-ex:1.3.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/error-ex@1.3.2",
+      "name": "error-ex",
+      "version": "1.3.2",
+      "bom-ref": "cpe:2.3:a::error-ex:1.3.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-arrayish:0.2.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-arrayish@0.2.1",
+      "name": "is-arrayish",
+      "version": "0.2.1",
+      "bom-ref": "cpe:2.3:a::is-arrayish:0.2.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::pify:2.3.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/pify@2.3.0",
+      "name": "pify",
+      "version": "2.3.0",
+      "bom-ref": "cpe:2.3:a::pify:2.3.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::pinkie-promise:2.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/pinkie-promise@2.0.1",
+      "name": "pinkie-promise",
+      "version": "2.0.1",
+      "bom-ref": "cpe:2.3:a::pinkie-promise:2.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::strip-bom:2.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/strip-bom@2.0.0",
+      "name": "strip-bom",
+      "version": "2.0.0",
+      "bom-ref": "cpe:2.3:a::strip-bom:2.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-utf8:0.2.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-utf8@0.2.1",
+      "name": "is-utf8",
+      "version": "0.2.1",
+      "bom-ref": "cpe:2.3:a::is-utf8:0.2.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::normalize-package-data:2.4.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/normalize-package-data@2.4.0",
+      "name": "normalize-package-data",
+      "version": "2.4.0",
+      "bom-ref": "cpe:2.3:a::normalize-package-data:2.4.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::path-type:1.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/path-type@1.1.0",
+      "name": "path-type",
+      "version": "1.1.0",
+      "bom-ref": "cpe:2.3:a::path-type:1.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::graceful-fs:4.1.15::*:*:*:*:*:*",
+      "purl": "pkg:npm/graceful-fs@4.1.15",
+      "name": "graceful-fs",
+      "version": "4.1.15",
+      "bom-ref": "cpe:2.3:a::graceful-fs:4.1.15::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::pify:2.3.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/pify@2.3.0",
+      "name": "pify",
+      "version": "2.3.0",
+      "bom-ref": "cpe:2.3:a::pify:2.3.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::pinkie-promise:2.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/pinkie-promise@2.0.1",
+      "name": "pinkie-promise",
+      "version": "2.0.1",
+      "bom-ref": "cpe:2.3:a::pinkie-promise:2.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::redent:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/redent@1.0.0",
+      "name": "redent",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::redent:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::indent-string:2.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/indent-string@2.1.0",
+      "name": "indent-string",
+      "version": "2.1.0",
+      "bom-ref": "cpe:2.3:a::indent-string:2.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::repeating:2.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/repeating@2.0.1",
+      "name": "repeating",
+      "version": "2.0.1",
+      "bom-ref": "cpe:2.3:a::repeating:2.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-finite:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-finite@1.0.2",
+      "name": "is-finite",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::is-finite:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::number-is-nan:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/number-is-nan@1.0.1",
+      "name": "number-is-nan",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::number-is-nan:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::strip-indent:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/strip-indent@1.0.1",
+      "name": "strip-indent",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::strip-indent:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::get-stdin:4.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/get-stdin@4.0.1",
+      "name": "get-stdin",
+      "version": "4.0.1",
+      "bom-ref": "cpe:2.3:a::get-stdin:4.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::trim-newlines:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/trim-newlines@1.0.0",
+      "name": "trim-newlines",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::trim-newlines:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::eventemitter2:0.4.14::*:*:*:*:*:*",
+      "purl": "pkg:npm/eventemitter2@0.4.14",
+      "name": "eventemitter2",
+      "version": "0.4.14",
+      "bom-ref": "cpe:2.3:a::eventemitter2:0.4.14::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::exit:0.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/exit@0.1.2",
+      "name": "exit",
+      "version": "0.1.2",
+      "bom-ref": "cpe:2.3:a::exit:0.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::findup-sync:0.3.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/findup-sync@0.3.0",
+      "name": "findup-sync",
+      "version": "0.3.0",
+      "bom-ref": "cpe:2.3:a::findup-sync:0.3.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::glob:5.0.15::*:*:*:*:*:*",
+      "purl": "pkg:npm/glob@5.0.15",
+      "name": "glob",
+      "version": "5.0.15",
+      "bom-ref": "cpe:2.3:a::glob:5.0.15::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::inflight:1.0.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/inflight@1.0.6",
+      "name": "inflight",
+      "version": "1.0.6",
+      "bom-ref": "cpe:2.3:a::inflight:1.0.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::once:1.4.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/once@1.4.0",
+      "name": "once",
+      "version": "1.4.0",
+      "bom-ref": "cpe:2.3:a::once:1.4.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::wrappy:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/wrappy@1.0.2",
+      "name": "wrappy",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::wrappy:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::wrappy:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/wrappy@1.0.2",
+      "name": "wrappy",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::wrappy:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::inherits:2.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/inherits@2.0.3",
+      "name": "inherits",
+      "version": "2.0.3",
+      "bom-ref": "cpe:2.3:a::inherits:2.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::minimatch:3.0.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/minimatch@3.0.4",
+      "name": "minimatch",
+      "version": "3.0.4",
+      "bom-ref": "cpe:2.3:a::minimatch:3.0.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::brace-expansion:1.1.11::*:*:*:*:*:*",
+      "purl": "pkg:npm/brace-expansion@1.1.11",
+      "name": "brace-expansion",
+      "version": "1.1.11",
+      "bom-ref": "cpe:2.3:a::brace-expansion:1.1.11::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::balanced-match:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/balanced-match@1.0.0",
+      "name": "balanced-match",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::balanced-match:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::concat-map:0.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/concat-map@0.0.1",
+      "name": "concat-map",
+      "version": "0.0.1",
+      "bom-ref": "cpe:2.3:a::concat-map:0.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::once:1.4.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/once@1.4.0",
+      "name": "once",
+      "version": "1.4.0",
+      "bom-ref": "cpe:2.3:a::once:1.4.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::path-is-absolute:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/path-is-absolute@1.0.1",
+      "name": "path-is-absolute",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::path-is-absolute:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::glob:7.0.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/glob@7.0.6",
+      "name": "glob",
+      "version": "7.0.6",
+      "bom-ref": "cpe:2.3:a::glob:7.0.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::fs.realpath:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/fs.realpath@1.0.0",
+      "name": "fs.realpath",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::fs.realpath:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::inflight:1.0.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/inflight@1.0.6",
+      "name": "inflight",
+      "version": "1.0.6",
+      "bom-ref": "cpe:2.3:a::inflight:1.0.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::inherits:2.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/inherits@2.0.3",
+      "name": "inherits",
+      "version": "2.0.3",
+      "bom-ref": "cpe:2.3:a::inherits:2.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::minimatch:3.0.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/minimatch@3.0.4",
+      "name": "minimatch",
+      "version": "3.0.4",
+      "bom-ref": "cpe:2.3:a::minimatch:3.0.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::once:1.4.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/once@1.4.0",
+      "name": "once",
+      "version": "1.4.0",
+      "bom-ref": "cpe:2.3:a::once:1.4.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::path-is-absolute:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/path-is-absolute@1.0.1",
+      "name": "path-is-absolute",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::path-is-absolute:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::grunt-cli:1.2.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/grunt-cli@1.2.0",
+      "name": "grunt-cli",
+      "version": "1.2.0",
+      "bom-ref": "cpe:2.3:a::grunt-cli:1.2.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::findup-sync:0.3.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/findup-sync@0.3.0",
+      "name": "findup-sync",
+      "version": "0.3.0",
+      "bom-ref": "cpe:2.3:a::findup-sync:0.3.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::grunt-known-options:1.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/grunt-known-options@1.1.1",
+      "name": "grunt-known-options",
+      "version": "1.1.1",
+      "bom-ref": "cpe:2.3:a::grunt-known-options:1.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::nopt:3.0.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/nopt@3.0.6",
+      "name": "nopt",
+      "version": "3.0.6",
+      "bom-ref": "cpe:2.3:a::nopt:3.0.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::abbrev:1.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/abbrev@1.1.1",
+      "name": "abbrev",
+      "version": "1.1.1",
+      "bom-ref": "cpe:2.3:a::abbrev:1.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::resolve:1.1.7::*:*:*:*:*:*",
+      "purl": "pkg:npm/resolve@1.1.7",
+      "name": "resolve",
+      "version": "1.1.7",
+      "bom-ref": "cpe:2.3:a::resolve:1.1.7::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::grunt-known-options:1.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/grunt-known-options@1.1.1",
+      "name": "grunt-known-options",
+      "version": "1.1.1",
+      "bom-ref": "cpe:2.3:a::grunt-known-options:1.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::grunt-legacy-log:2.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/grunt-legacy-log@2.0.0",
+      "name": "grunt-legacy-log",
+      "version": "2.0.0",
+      "bom-ref": "cpe:2.3:a::grunt-legacy-log:2.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::colors:1.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/colors@1.1.2",
+      "name": "colors",
+      "version": "1.1.2",
+      "bom-ref": "cpe:2.3:a::colors:1.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::grunt-legacy-log-utils:2.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/grunt-legacy-log-utils@2.0.1",
+      "name": "grunt-legacy-log-utils",
+      "version": "2.0.1",
+      "bom-ref": "cpe:2.3:a::grunt-legacy-log-utils:2.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::chalk:2.4.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/chalk@2.4.2",
+      "name": "chalk",
+      "version": "2.4.2",
+      "bom-ref": "cpe:2.3:a::chalk:2.4.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::ansi-styles:3.2.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/ansi-styles@3.2.1",
+      "name": "ansi-styles",
+      "version": "3.2.1",
+      "bom-ref": "cpe:2.3:a::ansi-styles:3.2.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::color-convert:1.9.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/color-convert@1.9.3",
+      "name": "color-convert",
+      "version": "1.9.3",
+      "bom-ref": "cpe:2.3:a::color-convert:1.9.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::color-name:1.1.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/color-name@1.1.3",
+      "name": "color-name",
+      "version": "1.1.3",
+      "bom-ref": "cpe:2.3:a::color-name:1.1.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::escape-string-regexp:1.0.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/escape-string-regexp@1.0.5",
+      "name": "escape-string-regexp",
+      "version": "1.0.5",
+      "bom-ref": "cpe:2.3:a::escape-string-regexp:1.0.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::supports-color:5.5.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/supports-color@5.5.0",
+      "name": "supports-color",
+      "version": "5.5.0",
+      "bom-ref": "cpe:2.3:a::supports-color:5.5.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::has-flag:3.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/has-flag@3.0.0",
+      "name": "has-flag",
+      "version": "3.0.0",
+      "bom-ref": "cpe:2.3:a::has-flag:3.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::lodash:4.17.11::*:*:*:*:*:*",
+      "purl": "pkg:npm/lodash@4.17.11",
+      "name": "lodash",
+      "version": "4.17.11",
+      "bom-ref": "cpe:2.3:a::lodash:4.17.11::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::hooker:0.2.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/hooker@0.2.3",
+      "name": "hooker",
+      "version": "0.2.3",
+      "bom-ref": "cpe:2.3:a::hooker:0.2.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::lodash:4.17.11::*:*:*:*:*:*",
+      "purl": "pkg:npm/lodash@4.17.11",
+      "name": "lodash",
+      "version": "4.17.11",
+      "bom-ref": "cpe:2.3:a::lodash:4.17.11::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::grunt-legacy-util:1.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/grunt-legacy-util@1.1.1",
+      "name": "grunt-legacy-util",
+      "version": "1.1.1",
+      "bom-ref": "cpe:2.3:a::grunt-legacy-util:1.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::async:1.5.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/async@1.5.2",
+      "name": "async",
+      "version": "1.5.2",
+      "bom-ref": "cpe:2.3:a::async:1.5.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::exit:0.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/exit@0.1.2",
+      "name": "exit",
+      "version": "0.1.2",
+      "bom-ref": "cpe:2.3:a::exit:0.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::getobject:0.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/getobject@0.1.0",
+      "name": "getobject",
+      "version": "0.1.0",
+      "bom-ref": "cpe:2.3:a::getobject:0.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::hooker:0.2.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/hooker@0.2.3",
+      "name": "hooker",
+      "version": "0.2.3",
+      "bom-ref": "cpe:2.3:a::hooker:0.2.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::lodash:4.17.11::*:*:*:*:*:*",
+      "purl": "pkg:npm/lodash@4.17.11",
+      "name": "lodash",
+      "version": "4.17.11",
+      "bom-ref": "cpe:2.3:a::lodash:4.17.11::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::underscore.string:3.3.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/underscore.string@3.3.5",
+      "name": "underscore.string",
+      "version": "3.3.5",
+      "bom-ref": "cpe:2.3:a::underscore.string:3.3.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::sprintf-js:1.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/sprintf-js@1.1.2",
+      "name": "sprintf-js",
+      "version": "1.1.2",
+      "bom-ref": "cpe:2.3:a::sprintf-js:1.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::util-deprecate:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/util-deprecate@1.0.2",
+      "name": "util-deprecate",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::util-deprecate:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::which:1.3.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/which@1.3.1",
+      "name": "which",
+      "version": "1.3.1",
+      "bom-ref": "cpe:2.3:a::which:1.3.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::isexe:2.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/isexe@2.0.0",
+      "name": "isexe",
+      "version": "2.0.0",
+      "bom-ref": "cpe:2.3:a::isexe:2.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::iconv-lite:0.4.23::*:*:*:*:*:*",
+      "purl": "pkg:npm/iconv-lite@0.4.23",
+      "name": "iconv-lite",
+      "version": "0.4.23",
+      "bom-ref": "cpe:2.3:a::iconv-lite:0.4.23::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::safer-buffer:2.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/safer-buffer@2.1.2",
+      "name": "safer-buffer",
+      "version": "2.1.2",
+      "bom-ref": "cpe:2.3:a::safer-buffer:2.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::js-yaml:3.5.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/js-yaml@3.5.5",
+      "name": "js-yaml",
+      "version": "3.5.5",
+      "bom-ref": "cpe:2.3:a::js-yaml:3.5.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::argparse:1.0.10::*:*:*:*:*:*",
+      "purl": "pkg:npm/argparse@1.0.10",
+      "name": "argparse",
+      "version": "1.0.10",
+      "bom-ref": "cpe:2.3:a::argparse:1.0.10::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::sprintf-js:1.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/sprintf-js@1.0.3",
+      "name": "sprintf-js",
+      "version": "1.0.3",
+      "bom-ref": "cpe:2.3:a::sprintf-js:1.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::esprima:2.7.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/esprima@2.7.3",
+      "name": "esprima",
+      "version": "2.7.3",
+      "bom-ref": "cpe:2.3:a::esprima:2.7.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::minimatch:3.0.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/minimatch@3.0.4",
+      "name": "minimatch",
+      "version": "3.0.4",
+      "bom-ref": "cpe:2.3:a::minimatch:3.0.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::mkdirp:0.5.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/mkdirp@0.5.1",
+      "name": "mkdirp",
+      "version": "0.5.1",
+      "bom-ref": "cpe:2.3:a::mkdirp:0.5.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::minimist:0.0.8::*:*:*:*:*:*",
+      "purl": "pkg:npm/minimist@0.0.8",
+      "name": "minimist",
+      "version": "0.0.8",
+      "bom-ref": "cpe:2.3:a::minimist:0.0.8::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::nopt:3.0.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/nopt@3.0.6",
+      "name": "nopt",
+      "version": "3.0.6",
+      "bom-ref": "cpe:2.3:a::nopt:3.0.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::path-is-absolute:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/path-is-absolute@1.0.1",
+      "name": "path-is-absolute",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::path-is-absolute:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::rimraf:2.6.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/rimraf@2.6.3",
+      "name": "rimraf",
+      "version": "2.6.3",
+      "bom-ref": "cpe:2.3:a::rimraf:2.6.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::glob:7.1.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/glob@7.1.3",
+      "name": "glob",
+      "version": "7.1.3",
+      "bom-ref": "cpe:2.3:a::glob:7.1.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::fs.realpath:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/fs.realpath@1.0.0",
+      "name": "fs.realpath",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::fs.realpath:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::inflight:1.0.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/inflight@1.0.6",
+      "name": "inflight",
+      "version": "1.0.6",
+      "bom-ref": "cpe:2.3:a::inflight:1.0.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::inherits:2.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/inherits@2.0.3",
+      "name": "inherits",
+      "version": "2.0.3",
+      "bom-ref": "cpe:2.3:a::inherits:2.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::minimatch:3.0.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/minimatch@3.0.4",
+      "name": "minimatch",
+      "version": "3.0.4",
+      "bom-ref": "cpe:2.3:a::minimatch:3.0.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::once:1.4.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/once@1.4.0",
+      "name": "once",
+      "version": "1.4.0",
+      "bom-ref": "cpe:2.3:a::once:1.4.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::path-is-absolute:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/path-is-absolute@1.0.1",
+      "name": "path-is-absolute",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::path-is-absolute:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::js-beautify:1.8.9::*:*:*:*:*:*",
+      "purl": "pkg:npm/js-beautify@1.8.9",
+      "name": "js-beautify",
+      "version": "1.8.9",
+      "bom-ref": "cpe:2.3:a::js-beautify:1.8.9::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::config-chain:1.1.12::*:*:*:*:*:*",
+      "purl": "pkg:npm/config-chain@1.1.12",
+      "name": "config-chain",
+      "version": "1.1.12",
+      "bom-ref": "cpe:2.3:a::config-chain:1.1.12::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::ini:1.3.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/ini@1.3.5",
+      "name": "ini",
+      "version": "1.3.5",
+      "bom-ref": "cpe:2.3:a::ini:1.3.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::proto-list:1.2.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/proto-list@1.2.4",
+      "name": "proto-list",
+      "version": "1.2.4",
+      "bom-ref": "cpe:2.3:a::proto-list:1.2.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::editorconfig:0.15.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/editorconfig@0.15.2",
+      "name": "editorconfig",
+      "version": "0.15.2",
+      "bom-ref": "cpe:2.3:a::editorconfig:0.15.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a:types:node:10.12.18::*:*:*:*:*:*",
+      "purl": "pkg:npm/types/node@10.12.18",
+      "name": "@types/node",
+      "version": "10.12.18",
+      "bom-ref": "cpe:2.3:a:types:node:10.12.18::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a:types:semver:5.5.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/types/semver@5.5.0",
+      "name": "@types/semver",
+      "version": "5.5.0",
+      "bom-ref": "cpe:2.3:a:types:semver:5.5.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::commander:2.19.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/commander@2.19.0",
+      "name": "commander",
+      "version": "2.19.0",
+      "bom-ref": "cpe:2.3:a::commander:2.19.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::lru-cache:4.1.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/lru-cache@4.1.5",
+      "name": "lru-cache",
+      "version": "4.1.5",
+      "bom-ref": "cpe:2.3:a::lru-cache:4.1.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::pseudomap:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/pseudomap@1.0.2",
+      "name": "pseudomap",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::pseudomap:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::yallist:2.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/yallist@2.1.2",
+      "name": "yallist",
+      "version": "2.1.2",
+      "bom-ref": "cpe:2.3:a::yallist:2.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::semver:5.6.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/semver@5.6.0",
+      "name": "semver",
+      "version": "5.6.0",
+      "bom-ref": "cpe:2.3:a::semver:5.6.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::sigmund:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/sigmund@1.0.1",
+      "name": "sigmund",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::sigmund:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::glob:7.1.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/glob@7.1.3",
+      "name": "glob",
+      "version": "7.1.3",
+      "bom-ref": "cpe:2.3:a::glob:7.1.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::mkdirp:0.5.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/mkdirp@0.5.1",
+      "name": "mkdirp",
+      "version": "0.5.1",
+      "bom-ref": "cpe:2.3:a::mkdirp:0.5.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::nopt:4.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/nopt@4.0.1",
+      "name": "nopt",
+      "version": "4.0.1",
+      "bom-ref": "cpe:2.3:a::nopt:4.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::abbrev:1.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/abbrev@1.1.1",
+      "name": "abbrev",
+      "version": "1.1.1",
+      "bom-ref": "cpe:2.3:a::abbrev:1.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::osenv:0.1.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/osenv@0.1.5",
+      "name": "osenv",
+      "version": "0.1.5",
+      "bom-ref": "cpe:2.3:a::osenv:0.1.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::os-homedir:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/os-homedir@1.0.2",
+      "name": "os-homedir",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::os-homedir:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::os-tmpdir:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/os-tmpdir@1.0.2",
+      "name": "os-tmpdir",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::os-tmpdir:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::lodash:4.17.11::*:*:*:*:*:*",
+      "purl": "pkg:npm/lodash@4.17.11",
+      "name": "lodash",
+      "version": "4.17.11",
+      "bom-ref": "cpe:2.3:a::lodash:4.17.11::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::rc:1.2.8::*:*:*:*:*:*",
+      "purl": "pkg:npm/rc@1.2.8",
+      "name": "rc",
+      "version": "1.2.8",
+      "bom-ref": "cpe:2.3:a::rc:1.2.8::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::deep-extend:0.6.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/deep-extend@0.6.0",
+      "name": "deep-extend",
+      "version": "0.6.0",
+      "bom-ref": "cpe:2.3:a::deep-extend:0.6.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::ini:1.3.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/ini@1.3.5",
+      "name": "ini",
+      "version": "1.3.5",
+      "bom-ref": "cpe:2.3:a::ini:1.3.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::minimist:1.2.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/minimist@1.2.0",
+      "name": "minimist",
+      "version": "1.2.0",
+      "bom-ref": "cpe:2.3:a::minimist:1.2.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::strip-json-comments:2.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/strip-json-comments@2.0.1",
+      "name": "strip-json-comments",
+      "version": "2.0.1",
+      "bom-ref": "cpe:2.3:a::strip-json-comments:2.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::semver:5.6.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/semver@5.6.0",
+      "name": "semver",
+      "version": "5.6.0",
+      "bom-ref": "cpe:2.3:a::semver:5.6.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::underscore.string:3.3.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/underscore.string@3.3.5",
+      "name": "underscore.string",
+      "version": "3.3.5",
+      "bom-ref": "cpe:2.3:a::underscore.string:3.3.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::grunt-mocha-test:0.12.7::*:*:*:*:*:*",
+      "purl": "pkg:npm/grunt-mocha-test@0.12.7",
+      "name": "grunt-mocha-test",
+      "version": "0.12.7",
+      "bom-ref": "cpe:2.3:a::grunt-mocha-test:0.12.7::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::hooker:0.2.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/hooker@0.2.3",
+      "name": "hooker",
+      "version": "0.2.3",
+      "bom-ref": "cpe:2.3:a::hooker:0.2.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::mkdirp:0.5.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/mkdirp@0.5.1",
+      "name": "mkdirp",
+      "version": "0.5.1",
+      "bom-ref": "cpe:2.3:a::mkdirp:0.5.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::minimist:0.0.8::*:*:*:*:*:*",
+      "purl": "pkg:npm/minimist@0.0.8",
+      "name": "minimist",
+      "version": "0.0.8",
+      "bom-ref": "cpe:2.3:a::minimist:0.0.8::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::grunt-npm-install:0.3.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/grunt-npm-install@0.3.1",
+      "name": "grunt-npm-install",
+      "version": "0.3.1",
+      "bom-ref": "cpe:2.3:a::grunt-npm-install:0.3.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::npm:3.10.10::*:*:*:*:*:*",
+      "purl": "pkg:npm/npm@3.10.10",
+      "name": "npm",
+      "version": "3.10.10",
+      "bom-ref": "cpe:2.3:a::npm:3.10.10::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::abbrev:1.0.9::*:*:*:*:*:*",
+      "purl": "pkg:npm/abbrev@1.0.9",
+      "name": "abbrev",
+      "version": "1.0.9",
+      "bom-ref": "cpe:2.3:a::abbrev:1.0.9::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::ansi-regex:2.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/ansi-regex@2.1.1",
+      "name": "ansi-regex",
+      "version": "2.1.1",
+      "bom-ref": "cpe:2.3:a::ansi-regex:2.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::ansicolors:0.3.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/ansicolors@0.3.2",
+      "name": "ansicolors",
+      "version": "0.3.2",
+      "bom-ref": "cpe:2.3:a::ansicolors:0.3.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::ansistyles:0.1.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/ansistyles@0.1.3",
+      "name": "ansistyles",
+      "version": "0.1.3",
+      "bom-ref": "cpe:2.3:a::ansistyles:0.1.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::aproba:1.0.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/aproba@1.0.4",
+      "name": "aproba",
+      "version": "1.0.4",
+      "bom-ref": "cpe:2.3:a::aproba:1.0.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::archy:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/archy@1.0.0",
+      "name": "archy",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::archy:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::asap:2.0.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/asap@2.0.6",
+      "name": "asap",
+      "version": "2.0.6",
+      "bom-ref": "cpe:2.3:a::asap:2.0.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::chownr:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/chownr@1.0.1",
+      "name": "chownr",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::chownr:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::cmd-shim:2.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/cmd-shim@2.0.2",
+      "name": "cmd-shim",
+      "version": "2.0.2",
+      "bom-ref": "cpe:2.3:a::cmd-shim:2.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::graceful-fs:4.1.15::*:*:*:*:*:*",
+      "purl": "pkg:npm/graceful-fs@4.1.15",
+      "name": "graceful-fs",
+      "version": "4.1.15",
+      "bom-ref": "cpe:2.3:a::graceful-fs:4.1.15::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::mkdirp:0.5.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/mkdirp@0.5.1",
+      "name": "mkdirp",
+      "version": "0.5.1",
+      "bom-ref": "cpe:2.3:a::mkdirp:0.5.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::minimist:0.0.8::*:*:*:*:*:*",
+      "purl": "pkg:npm/minimist@0.0.8",
+      "name": "minimist",
+      "version": "0.0.8",
+      "bom-ref": "cpe:2.3:a::minimist:0.0.8::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::columnify:1.5.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/columnify@1.5.4",
+      "name": "columnify",
+      "version": "1.5.4",
+      "bom-ref": "cpe:2.3:a::columnify:1.5.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::strip-ansi:3.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/strip-ansi@3.0.1",
+      "name": "strip-ansi",
+      "version": "3.0.1",
+      "bom-ref": "cpe:2.3:a::strip-ansi:3.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::ansi-regex:2.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/ansi-regex@2.1.1",
+      "name": "ansi-regex",
+      "version": "2.1.1",
+      "bom-ref": "cpe:2.3:a::ansi-regex:2.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::wcwidth:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/wcwidth@1.0.0",
+      "name": "wcwidth",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::wcwidth:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::defaults:1.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/defaults@1.0.3",
+      "name": "defaults",
+      "version": "1.0.3",
+      "bom-ref": "cpe:2.3:a::defaults:1.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::clone:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/clone@1.0.2",
+      "name": "clone",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::clone:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::config-chain:1.1.12::*:*:*:*:*:*",
+      "purl": "pkg:npm/config-chain@1.1.12",
+      "name": "config-chain",
+      "version": "1.1.12",
+      "bom-ref": "cpe:2.3:a::config-chain:1.1.12::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::ini:1.3.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/ini@1.3.5",
+      "name": "ini",
+      "version": "1.3.5",
+      "bom-ref": "cpe:2.3:a::ini:1.3.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::proto-list:1.2.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/proto-list@1.2.4",
+      "name": "proto-list",
+      "version": "1.2.4",
+      "bom-ref": "cpe:2.3:a::proto-list:1.2.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::debuglog:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/debuglog@1.0.1",
+      "name": "debuglog",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::debuglog:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::dezalgo:1.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/dezalgo@1.0.3",
+      "name": "dezalgo",
+      "version": "1.0.3",
+      "bom-ref": "cpe:2.3:a::dezalgo:1.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::asap:2.0.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/asap@2.0.6",
+      "name": "asap",
+      "version": "2.0.6",
+      "bom-ref": "cpe:2.3:a::asap:2.0.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::wrappy:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/wrappy@1.0.2",
+      "name": "wrappy",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::wrappy:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::editor:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/editor@1.0.0",
+      "name": "editor",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::editor:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::fs-vacuum:1.2.9::*:*:*:*:*:*",
+      "purl": "pkg:npm/fs-vacuum@1.2.9",
+      "name": "fs-vacuum",
+      "version": "1.2.9",
+      "bom-ref": "cpe:2.3:a::fs-vacuum:1.2.9::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::graceful-fs:4.1.15::*:*:*:*:*:*",
+      "purl": "pkg:npm/graceful-fs@4.1.15",
+      "name": "graceful-fs",
+      "version": "4.1.15",
+      "bom-ref": "cpe:2.3:a::graceful-fs:4.1.15::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::path-is-inside:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/path-is-inside@1.0.2",
+      "name": "path-is-inside",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::path-is-inside:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::rimraf:2.6.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/rimraf@2.6.3",
+      "name": "rimraf",
+      "version": "2.6.3",
+      "bom-ref": "cpe:2.3:a::rimraf:2.6.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::glob:7.1.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/glob@7.1.3",
+      "name": "glob",
+      "version": "7.1.3",
+      "bom-ref": "cpe:2.3:a::glob:7.1.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::fs.realpath:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/fs.realpath@1.0.0",
+      "name": "fs.realpath",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::fs.realpath:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::inflight:1.0.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/inflight@1.0.6",
+      "name": "inflight",
+      "version": "1.0.6",
+      "bom-ref": "cpe:2.3:a::inflight:1.0.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::once:1.4.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/once@1.4.0",
+      "name": "once",
+      "version": "1.4.0",
+      "bom-ref": "cpe:2.3:a::once:1.4.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::wrappy:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/wrappy@1.0.2",
+      "name": "wrappy",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::wrappy:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::wrappy:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/wrappy@1.0.2",
+      "name": "wrappy",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::wrappy:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::inherits:2.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/inherits@2.0.3",
+      "name": "inherits",
+      "version": "2.0.3",
+      "bom-ref": "cpe:2.3:a::inherits:2.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::minimatch:3.0.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/minimatch@3.0.4",
+      "name": "minimatch",
+      "version": "3.0.4",
+      "bom-ref": "cpe:2.3:a::minimatch:3.0.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::brace-expansion:1.1.11::*:*:*:*:*:*",
+      "purl": "pkg:npm/brace-expansion@1.1.11",
+      "name": "brace-expansion",
+      "version": "1.1.11",
+      "bom-ref": "cpe:2.3:a::brace-expansion:1.1.11::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::balanced-match:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/balanced-match@1.0.0",
+      "name": "balanced-match",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::balanced-match:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::concat-map:0.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/concat-map@0.0.1",
+      "name": "concat-map",
+      "version": "0.0.1",
+      "bom-ref": "cpe:2.3:a::concat-map:0.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::once:1.4.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/once@1.4.0",
+      "name": "once",
+      "version": "1.4.0",
+      "bom-ref": "cpe:2.3:a::once:1.4.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::path-is-absolute:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/path-is-absolute@1.0.1",
+      "name": "path-is-absolute",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::path-is-absolute:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::fs-write-stream-atomic:1.0.8::*:*:*:*:*:*",
+      "purl": "pkg:npm/fs-write-stream-atomic@1.0.8",
+      "name": "fs-write-stream-atomic",
+      "version": "1.0.8",
+      "bom-ref": "cpe:2.3:a::fs-write-stream-atomic:1.0.8::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::graceful-fs:4.1.15::*:*:*:*:*:*",
+      "purl": "pkg:npm/graceful-fs@4.1.15",
+      "name": "graceful-fs",
+      "version": "4.1.15",
+      "bom-ref": "cpe:2.3:a::graceful-fs:4.1.15::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::iferr:0.1.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/iferr@0.1.5",
+      "name": "iferr",
+      "version": "0.1.5",
+      "bom-ref": "cpe:2.3:a::iferr:0.1.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::imurmurhash:0.1.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/imurmurhash@0.1.4",
+      "name": "imurmurhash",
+      "version": "0.1.4",
+      "bom-ref": "cpe:2.3:a::imurmurhash:0.1.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::readable-stream:2.3.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/readable-stream@2.3.6",
+      "name": "readable-stream",
+      "version": "2.3.6",
+      "bom-ref": "cpe:2.3:a::readable-stream:2.3.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::core-util-is:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/core-util-is@1.0.2",
+      "name": "core-util-is",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::core-util-is:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::inherits:2.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/inherits@2.0.3",
+      "name": "inherits",
+      "version": "2.0.3",
+      "bom-ref": "cpe:2.3:a::inherits:2.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::isarray:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/isarray@1.0.0",
+      "name": "isarray",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::isarray:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::process-nextick-args:2.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/process-nextick-args@2.0.0",
+      "name": "process-nextick-args",
+      "version": "2.0.0",
+      "bom-ref": "cpe:2.3:a::process-nextick-args:2.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::safe-buffer:5.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/safe-buffer@5.1.2",
+      "name": "safe-buffer",
+      "version": "5.1.2",
+      "bom-ref": "cpe:2.3:a::safe-buffer:5.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::string_decoder:1.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/string_decoder@1.1.1",
+      "name": "string_decoder",
+      "version": "1.1.1",
+      "bom-ref": "cpe:2.3:a::string_decoder:1.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::safe-buffer:5.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/safe-buffer@5.1.2",
+      "name": "safe-buffer",
+      "version": "5.1.2",
+      "bom-ref": "cpe:2.3:a::safe-buffer:5.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::util-deprecate:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/util-deprecate@1.0.2",
+      "name": "util-deprecate",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::util-deprecate:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::fstream:1.0.10::*:*:*:*:*:*",
+      "purl": "pkg:npm/fstream@1.0.10",
+      "name": "fstream",
+      "version": "1.0.10",
+      "bom-ref": "cpe:2.3:a::fstream:1.0.10::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::graceful-fs:4.1.15::*:*:*:*:*:*",
+      "purl": "pkg:npm/graceful-fs@4.1.15",
+      "name": "graceful-fs",
+      "version": "4.1.15",
+      "bom-ref": "cpe:2.3:a::graceful-fs:4.1.15::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::inherits:2.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/inherits@2.0.3",
+      "name": "inherits",
+      "version": "2.0.3",
+      "bom-ref": "cpe:2.3:a::inherits:2.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::mkdirp:0.5.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/mkdirp@0.5.1",
+      "name": "mkdirp",
+      "version": "0.5.1",
+      "bom-ref": "cpe:2.3:a::mkdirp:0.5.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::rimraf:2.6.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/rimraf@2.6.3",
+      "name": "rimraf",
+      "version": "2.6.3",
+      "bom-ref": "cpe:2.3:a::rimraf:2.6.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::fstream-npm:1.2.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/fstream-npm@1.2.0",
+      "name": "fstream-npm",
+      "version": "1.2.0",
+      "bom-ref": "cpe:2.3:a::fstream-npm:1.2.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::fstream-ignore:1.0.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/fstream-ignore@1.0.5",
+      "name": "fstream-ignore",
+      "version": "1.0.5",
+      "bom-ref": "cpe:2.3:a::fstream-ignore:1.0.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::fstream:1.0.10::*:*:*:*:*:*",
+      "purl": "pkg:npm/fstream@1.0.10",
+      "name": "fstream",
+      "version": "1.0.10",
+      "bom-ref": "cpe:2.3:a::fstream:1.0.10::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::graceful-fs:4.1.15::*:*:*:*:*:*",
+      "purl": "pkg:npm/graceful-fs@4.1.15",
+      "name": "graceful-fs",
+      "version": "4.1.15",
+      "bom-ref": "cpe:2.3:a::graceful-fs:4.1.15::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::inherits:2.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/inherits@2.0.3",
+      "name": "inherits",
+      "version": "2.0.3",
+      "bom-ref": "cpe:2.3:a::inherits:2.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::mkdirp:0.5.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/mkdirp@0.5.1",
+      "name": "mkdirp",
+      "version": "0.5.1",
+      "bom-ref": "cpe:2.3:a::mkdirp:0.5.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::rimraf:2.6.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/rimraf@2.6.3",
+      "name": "rimraf",
+      "version": "2.6.3",
+      "bom-ref": "cpe:2.3:a::rimraf:2.6.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::inherits:2.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/inherits@2.0.3",
+      "name": "inherits",
+      "version": "2.0.3",
+      "bom-ref": "cpe:2.3:a::inherits:2.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::minimatch:3.0.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/minimatch@3.0.4",
+      "name": "minimatch",
+      "version": "3.0.4",
+      "bom-ref": "cpe:2.3:a::minimatch:3.0.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::inherits:2.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/inherits@2.0.3",
+      "name": "inherits",
+      "version": "2.0.3",
+      "bom-ref": "cpe:2.3:a::inherits:2.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::glob:7.1.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/glob@7.1.3",
+      "name": "glob",
+      "version": "7.1.3",
+      "bom-ref": "cpe:2.3:a::glob:7.1.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::graceful-fs:4.1.15::*:*:*:*:*:*",
+      "purl": "pkg:npm/graceful-fs@4.1.15",
+      "name": "graceful-fs",
+      "version": "4.1.15",
+      "bom-ref": "cpe:2.3:a::graceful-fs:4.1.15::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::has-unicode:2.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/has-unicode@2.0.1",
+      "name": "has-unicode",
+      "version": "2.0.1",
+      "bom-ref": "cpe:2.3:a::has-unicode:2.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::hosted-git-info:2.1.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/hosted-git-info@2.1.5",
+      "name": "hosted-git-info",
+      "version": "2.1.5",
+      "bom-ref": "cpe:2.3:a::hosted-git-info:2.1.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::iferr:0.1.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/iferr@0.1.5",
+      "name": "iferr",
+      "version": "0.1.5",
+      "bom-ref": "cpe:2.3:a::iferr:0.1.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::imurmurhash:0.1.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/imurmurhash@0.1.4",
+      "name": "imurmurhash",
+      "version": "0.1.4",
+      "bom-ref": "cpe:2.3:a::imurmurhash:0.1.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::inflight:1.0.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/inflight@1.0.6",
+      "name": "inflight",
+      "version": "1.0.6",
+      "bom-ref": "cpe:2.3:a::inflight:1.0.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::inherits:2.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/inherits@2.0.3",
+      "name": "inherits",
+      "version": "2.0.3",
+      "bom-ref": "cpe:2.3:a::inherits:2.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::ini:1.3.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/ini@1.3.5",
+      "name": "ini",
+      "version": "1.3.5",
+      "bom-ref": "cpe:2.3:a::ini:1.3.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::init-package-json:1.9.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/init-package-json@1.9.4",
+      "name": "init-package-json",
+      "version": "1.9.4",
+      "bom-ref": "cpe:2.3:a::init-package-json:1.9.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::glob:6.0.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/glob@6.0.4",
+      "name": "glob",
+      "version": "6.0.4",
+      "bom-ref": "cpe:2.3:a::glob:6.0.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::inflight:1.0.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/inflight@1.0.6",
+      "name": "inflight",
+      "version": "1.0.6",
+      "bom-ref": "cpe:2.3:a::inflight:1.0.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::inherits:2.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/inherits@2.0.3",
+      "name": "inherits",
+      "version": "2.0.3",
+      "bom-ref": "cpe:2.3:a::inherits:2.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::minimatch:3.0.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/minimatch@3.0.4",
+      "name": "minimatch",
+      "version": "3.0.4",
+      "bom-ref": "cpe:2.3:a::minimatch:3.0.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::once:1.4.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/once@1.4.0",
+      "name": "once",
+      "version": "1.4.0",
+      "bom-ref": "cpe:2.3:a::once:1.4.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::path-is-absolute:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/path-is-absolute@1.0.1",
+      "name": "path-is-absolute",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::path-is-absolute:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::npm-package-arg:4.2.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/npm-package-arg@4.2.0",
+      "name": "npm-package-arg",
+      "version": "4.2.0",
+      "bom-ref": "cpe:2.3:a::npm-package-arg:4.2.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::hosted-git-info:2.7.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/hosted-git-info@2.7.1",
+      "name": "hosted-git-info",
+      "version": "2.7.1",
+      "bom-ref": "cpe:2.3:a::hosted-git-info:2.7.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::semver:5.6.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/semver@5.6.0",
+      "name": "semver",
+      "version": "5.6.0",
+      "bom-ref": "cpe:2.3:a::semver:5.6.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::promzard:0.3.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/promzard@0.3.0",
+      "name": "promzard",
+      "version": "0.3.0",
+      "bom-ref": "cpe:2.3:a::promzard:0.3.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::read:1.0.7::*:*:*:*:*:*",
+      "purl": "pkg:npm/read@1.0.7",
+      "name": "read",
+      "version": "1.0.7",
+      "bom-ref": "cpe:2.3:a::read:1.0.7::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::mute-stream:0.0.8::*:*:*:*:*:*",
+      "purl": "pkg:npm/mute-stream@0.0.8",
+      "name": "mute-stream",
+      "version": "0.0.8",
+      "bom-ref": "cpe:2.3:a::mute-stream:0.0.8::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::read:1.0.7::*:*:*:*:*:*",
+      "purl": "pkg:npm/read@1.0.7",
+      "name": "read",
+      "version": "1.0.7",
+      "bom-ref": "cpe:2.3:a::read:1.0.7::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::read-package-json:2.0.13::*:*:*:*:*:*",
+      "purl": "pkg:npm/read-package-json@2.0.13",
+      "name": "read-package-json",
+      "version": "2.0.13",
+      "bom-ref": "cpe:2.3:a::read-package-json:2.0.13::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::glob:7.1.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/glob@7.1.3",
+      "name": "glob",
+      "version": "7.1.3",
+      "bom-ref": "cpe:2.3:a::glob:7.1.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::graceful-fs:4.1.15::*:*:*:*:*:*",
+      "purl": "pkg:npm/graceful-fs@4.1.15",
+      "name": "graceful-fs",
+      "version": "4.1.15",
+      "bom-ref": "cpe:2.3:a::graceful-fs:4.1.15::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::json-parse-better-errors:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/json-parse-better-errors@1.0.2",
+      "name": "json-parse-better-errors",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::json-parse-better-errors:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::normalize-package-data:2.4.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/normalize-package-data@2.4.0",
+      "name": "normalize-package-data",
+      "version": "2.4.0",
+      "bom-ref": "cpe:2.3:a::normalize-package-data:2.4.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::hosted-git-info:2.7.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/hosted-git-info@2.7.1",
+      "name": "hosted-git-info",
+      "version": "2.7.1",
+      "bom-ref": "cpe:2.3:a::hosted-git-info:2.7.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-builtin-module:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-builtin-module@1.0.0",
+      "name": "is-builtin-module",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::is-builtin-module:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::builtin-modules:1.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/builtin-modules@1.1.1",
+      "name": "builtin-modules",
+      "version": "1.1.1",
+      "bom-ref": "cpe:2.3:a::builtin-modules:1.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::semver:5.6.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/semver@5.6.0",
+      "name": "semver",
+      "version": "5.6.0",
+      "bom-ref": "cpe:2.3:a::semver:5.6.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::validate-npm-package-license:3.0.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/validate-npm-package-license@3.0.4",
+      "name": "validate-npm-package-license",
+      "version": "3.0.4",
+      "bom-ref": "cpe:2.3:a::validate-npm-package-license:3.0.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::spdx-correct:3.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/spdx-correct@3.1.0",
+      "name": "spdx-correct",
+      "version": "3.1.0",
+      "bom-ref": "cpe:2.3:a::spdx-correct:3.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::spdx-expression-parse:3.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/spdx-expression-parse@3.0.0",
+      "name": "spdx-expression-parse",
+      "version": "3.0.0",
+      "bom-ref": "cpe:2.3:a::spdx-expression-parse:3.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::spdx-exceptions:2.2.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/spdx-exceptions@2.2.0",
+      "name": "spdx-exceptions",
+      "version": "2.2.0",
+      "bom-ref": "cpe:2.3:a::spdx-exceptions:2.2.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::spdx-license-ids:3.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/spdx-license-ids@3.0.3",
+      "name": "spdx-license-ids",
+      "version": "3.0.3",
+      "bom-ref": "cpe:2.3:a::spdx-license-ids:3.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::spdx-license-ids:3.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/spdx-license-ids@3.0.3",
+      "name": "spdx-license-ids",
+      "version": "3.0.3",
+      "bom-ref": "cpe:2.3:a::spdx-license-ids:3.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::spdx-expression-parse:3.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/spdx-expression-parse@3.0.0",
+      "name": "spdx-expression-parse",
+      "version": "3.0.0",
+      "bom-ref": "cpe:2.3:a::spdx-expression-parse:3.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::slash:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/slash@1.0.0",
+      "name": "slash",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::slash:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::semver:5.6.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/semver@5.6.0",
+      "name": "semver",
+      "version": "5.6.0",
+      "bom-ref": "cpe:2.3:a::semver:5.6.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::validate-npm-package-license:3.0.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/validate-npm-package-license@3.0.4",
+      "name": "validate-npm-package-license",
+      "version": "3.0.4",
+      "bom-ref": "cpe:2.3:a::validate-npm-package-license:3.0.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::validate-npm-package-name:2.2.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/validate-npm-package-name@2.2.2",
+      "name": "validate-npm-package-name",
+      "version": "2.2.2",
+      "bom-ref": "cpe:2.3:a::validate-npm-package-name:2.2.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::lockfile:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/lockfile@1.0.2",
+      "name": "lockfile",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::lockfile:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::lodash._baseindexof:3.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/lodash._baseindexof@3.1.0",
+      "name": "lodash._baseindexof",
+      "version": "3.1.0",
+      "bom-ref": "cpe:2.3:a::lodash._baseindexof:3.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::lodash._baseuniq:4.6.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/lodash._baseuniq@4.6.0",
+      "name": "lodash._baseuniq",
+      "version": "4.6.0",
+      "bom-ref": "cpe:2.3:a::lodash._baseuniq:4.6.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::lodash._createset:4.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/lodash._createset@4.0.3",
+      "name": "lodash._createset",
+      "version": "4.0.3",
+      "bom-ref": "cpe:2.3:a::lodash._createset:4.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::lodash._root:3.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/lodash._root@3.0.1",
+      "name": "lodash._root",
+      "version": "3.0.1",
+      "bom-ref": "cpe:2.3:a::lodash._root:3.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::lodash._bindcallback:3.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/lodash._bindcallback@3.0.1",
+      "name": "lodash._bindcallback",
+      "version": "3.0.1",
+      "bom-ref": "cpe:2.3:a::lodash._bindcallback:3.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::lodash._cacheindexof:3.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/lodash._cacheindexof@3.0.2",
+      "name": "lodash._cacheindexof",
+      "version": "3.0.2",
+      "bom-ref": "cpe:2.3:a::lodash._cacheindexof:3.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::lodash._createcache:3.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/lodash._createcache@3.1.2",
+      "name": "lodash._createcache",
+      "version": "3.1.2",
+      "bom-ref": "cpe:2.3:a::lodash._createcache:3.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::lodash._getnative:3.9.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/lodash._getnative@3.9.1",
+      "name": "lodash._getnative",
+      "version": "3.9.1",
+      "bom-ref": "cpe:2.3:a::lodash._getnative:3.9.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::lodash._getnative:3.9.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/lodash._getnative@3.9.1",
+      "name": "lodash._getnative",
+      "version": "3.9.1",
+      "bom-ref": "cpe:2.3:a::lodash._getnative:3.9.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::lodash.clonedeep:4.5.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/lodash.clonedeep@4.5.0",
+      "name": "lodash.clonedeep",
+      "version": "4.5.0",
+      "bom-ref": "cpe:2.3:a::lodash.clonedeep:4.5.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::lodash.restparam:3.6.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/lodash.restparam@3.6.1",
+      "name": "lodash.restparam",
+      "version": "3.6.1",
+      "bom-ref": "cpe:2.3:a::lodash.restparam:3.6.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::lodash.union:4.6.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/lodash.union@4.6.0",
+      "name": "lodash.union",
+      "version": "4.6.0",
+      "bom-ref": "cpe:2.3:a::lodash.union:4.6.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::lodash.uniq:4.5.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/lodash.uniq@4.5.0",
+      "name": "lodash.uniq",
+      "version": "4.5.0",
+      "bom-ref": "cpe:2.3:a::lodash.uniq:4.5.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::lodash.without:4.4.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/lodash.without@4.4.0",
+      "name": "lodash.without",
+      "version": "4.4.0",
+      "bom-ref": "cpe:2.3:a::lodash.without:4.4.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::mkdirp:0.5.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/mkdirp@0.5.1",
+      "name": "mkdirp",
+      "version": "0.5.1",
+      "bom-ref": "cpe:2.3:a::mkdirp:0.5.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::node-gyp:3.4.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/node-gyp@3.4.0",
+      "name": "node-gyp",
+      "version": "3.4.0",
+      "bom-ref": "cpe:2.3:a::node-gyp:3.4.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::fstream:1.0.10::*:*:*:*:*:*",
+      "purl": "pkg:npm/fstream@1.0.10",
+      "name": "fstream",
+      "version": "1.0.10",
+      "bom-ref": "cpe:2.3:a::fstream:1.0.10::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::glob:7.1.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/glob@7.1.3",
+      "name": "glob",
+      "version": "7.1.3",
+      "bom-ref": "cpe:2.3:a::glob:7.1.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::graceful-fs:4.1.15::*:*:*:*:*:*",
+      "purl": "pkg:npm/graceful-fs@4.1.15",
+      "name": "graceful-fs",
+      "version": "4.1.15",
+      "bom-ref": "cpe:2.3:a::graceful-fs:4.1.15::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::minimatch:3.0.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/minimatch@3.0.4",
+      "name": "minimatch",
+      "version": "3.0.4",
+      "bom-ref": "cpe:2.3:a::minimatch:3.0.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::mkdirp:0.5.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/mkdirp@0.5.1",
+      "name": "mkdirp",
+      "version": "0.5.1",
+      "bom-ref": "cpe:2.3:a::mkdirp:0.5.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::nopt:3.0.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/nopt@3.0.6",
+      "name": "nopt",
+      "version": "3.0.6",
+      "bom-ref": "cpe:2.3:a::nopt:3.0.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::abbrev:1.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/abbrev@1.1.1",
+      "name": "abbrev",
+      "version": "1.1.1",
+      "bom-ref": "cpe:2.3:a::abbrev:1.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::npmlog:3.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/npmlog@3.1.2",
+      "name": "npmlog",
+      "version": "3.1.2",
+      "bom-ref": "cpe:2.3:a::npmlog:3.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::are-we-there-yet:1.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/are-we-there-yet@1.1.2",
+      "name": "are-we-there-yet",
+      "version": "1.1.2",
+      "bom-ref": "cpe:2.3:a::are-we-there-yet:1.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::delegates:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/delegates@1.0.0",
+      "name": "delegates",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::delegates:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::readable-stream:2.3.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/readable-stream@2.3.6",
+      "name": "readable-stream",
+      "version": "2.3.6",
+      "bom-ref": "cpe:2.3:a::readable-stream:2.3.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::console-control-strings:1.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/console-control-strings@1.1.0",
+      "name": "console-control-strings",
+      "version": "1.1.0",
+      "bom-ref": "cpe:2.3:a::console-control-strings:1.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::gauge:2.6.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/gauge@2.6.0",
+      "name": "gauge",
+      "version": "2.6.0",
+      "bom-ref": "cpe:2.3:a::gauge:2.6.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::aproba:1.0.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/aproba@1.0.4",
+      "name": "aproba",
+      "version": "1.0.4",
+      "bom-ref": "cpe:2.3:a::aproba:1.0.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::console-control-strings:1.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/console-control-strings@1.1.0",
+      "name": "console-control-strings",
+      "version": "1.1.0",
+      "bom-ref": "cpe:2.3:a::console-control-strings:1.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::has-color:0.1.7::*:*:*:*:*:*",
+      "purl": "pkg:npm/has-color@0.1.7",
+      "name": "has-color",
+      "version": "0.1.7",
+      "bom-ref": "cpe:2.3:a::has-color:0.1.7::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::has-unicode:2.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/has-unicode@2.0.1",
+      "name": "has-unicode",
+      "version": "2.0.1",
+      "bom-ref": "cpe:2.3:a::has-unicode:2.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::object-assign:4.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/object-assign@4.1.1",
+      "name": "object-assign",
+      "version": "4.1.1",
+      "bom-ref": "cpe:2.3:a::object-assign:4.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::signal-exit:3.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/signal-exit@3.0.2",
+      "name": "signal-exit",
+      "version": "3.0.2",
+      "bom-ref": "cpe:2.3:a::signal-exit:3.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::string-width:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/string-width@1.0.2",
+      "name": "string-width",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::string-width:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::code-point-at:1.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/code-point-at@1.1.0",
+      "name": "code-point-at",
+      "version": "1.1.0",
+      "bom-ref": "cpe:2.3:a::code-point-at:1.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-fullwidth-code-point:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-fullwidth-code-point@1.0.0",
+      "name": "is-fullwidth-code-point",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::is-fullwidth-code-point:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::number-is-nan:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/number-is-nan@1.0.1",
+      "name": "number-is-nan",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::number-is-nan:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::strip-ansi:3.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/strip-ansi@3.0.1",
+      "name": "strip-ansi",
+      "version": "3.0.1",
+      "bom-ref": "cpe:2.3:a::strip-ansi:3.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::strip-ansi:3.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/strip-ansi@3.0.1",
+      "name": "strip-ansi",
+      "version": "3.0.1",
+      "bom-ref": "cpe:2.3:a::strip-ansi:3.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::wide-align:1.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/wide-align@1.1.0",
+      "name": "wide-align",
+      "version": "1.1.0",
+      "bom-ref": "cpe:2.3:a::wide-align:1.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::string-width:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/string-width@1.0.2",
+      "name": "string-width",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::string-width:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::set-blocking:2.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/set-blocking@2.0.0",
+      "name": "set-blocking",
+      "version": "2.0.0",
+      "bom-ref": "cpe:2.3:a::set-blocking:2.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::osenv:0.1.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/osenv@0.1.5",
+      "name": "osenv",
+      "version": "0.1.5",
+      "bom-ref": "cpe:2.3:a::osenv:0.1.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::os-homedir:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/os-homedir@1.0.2",
+      "name": "os-homedir",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::os-homedir:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::os-tmpdir:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/os-tmpdir@1.0.2",
+      "name": "os-tmpdir",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::os-tmpdir:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::path-array:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/path-array@1.0.1",
+      "name": "path-array",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::path-array:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::array-index:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/array-index@1.0.0",
+      "name": "array-index",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::array-index:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::debug:2.6.9::*:*:*:*:*:*",
+      "purl": "pkg:npm/debug@2.6.9",
+      "name": "debug",
+      "version": "2.6.9",
+      "bom-ref": "cpe:2.3:a::debug:2.6.9::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::ms:2.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/ms@2.0.0",
+      "name": "ms",
+      "version": "2.0.0",
+      "bom-ref": "cpe:2.3:a::ms:2.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::es6-symbol:3.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/es6-symbol@3.1.0",
+      "name": "es6-symbol",
+      "version": "3.1.0",
+      "bom-ref": "cpe:2.3:a::es6-symbol:3.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::d:0.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/d@0.1.1",
+      "name": "d",
+      "version": "0.1.1",
+      "bom-ref": "cpe:2.3:a::d:0.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::es5-ext:0.10.12::*:*:*:*:*:*",
+      "purl": "pkg:npm/es5-ext@0.10.12",
+      "name": "es5-ext",
+      "version": "0.10.12",
+      "bom-ref": "cpe:2.3:a::es5-ext:0.10.12::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::es6-symbol:3.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/es6-symbol@3.1.0",
+      "name": "es6-symbol",
+      "version": "3.1.0",
+      "bom-ref": "cpe:2.3:a::es6-symbol:3.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::d:0.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/d@0.1.1",
+      "name": "d",
+      "version": "0.1.1",
+      "bom-ref": "cpe:2.3:a::d:0.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::es5-ext:0.10.12::*:*:*:*:*:*",
+      "purl": "pkg:npm/es5-ext@0.10.12",
+      "name": "es5-ext",
+      "version": "0.10.12",
+      "bom-ref": "cpe:2.3:a::es5-ext:0.10.12::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::es6-symbol:3.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/es6-symbol@3.1.0",
+      "name": "es6-symbol",
+      "version": "3.1.0",
+      "bom-ref": "cpe:2.3:a::es6-symbol:3.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::es5-ext:0.10.12::*:*:*:*:*:*",
+      "purl": "pkg:npm/es5-ext@0.10.12",
+      "name": "es5-ext",
+      "version": "0.10.12",
+      "bom-ref": "cpe:2.3:a::es5-ext:0.10.12::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::es5-ext:0.10.12::*:*:*:*:*:*",
+      "purl": "pkg:npm/es5-ext@0.10.12",
+      "name": "es5-ext",
+      "version": "0.10.12",
+      "bom-ref": "cpe:2.3:a::es5-ext:0.10.12::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::es6-iterator:2.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/es6-iterator@2.0.0",
+      "name": "es6-iterator",
+      "version": "2.0.0",
+      "bom-ref": "cpe:2.3:a::es6-iterator:2.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::d:0.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/d@0.1.1",
+      "name": "d",
+      "version": "0.1.1",
+      "bom-ref": "cpe:2.3:a::d:0.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::es5-ext:0.10.12::*:*:*:*:*:*",
+      "purl": "pkg:npm/es5-ext@0.10.12",
+      "name": "es5-ext",
+      "version": "0.10.12",
+      "bom-ref": "cpe:2.3:a::es5-ext:0.10.12::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::es6-iterator:2.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/es6-iterator@2.0.0",
+      "name": "es6-iterator",
+      "version": "2.0.0",
+      "bom-ref": "cpe:2.3:a::es6-iterator:2.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::d:0.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/d@0.1.1",
+      "name": "d",
+      "version": "0.1.1",
+      "bom-ref": "cpe:2.3:a::d:0.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::es5-ext:0.10.12::*:*:*:*:*:*",
+      "purl": "pkg:npm/es5-ext@0.10.12",
+      "name": "es5-ext",
+      "version": "0.10.12",
+      "bom-ref": "cpe:2.3:a::es5-ext:0.10.12::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::es6-symbol:3.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/es6-symbol@3.1.0",
+      "name": "es6-symbol",
+      "version": "3.1.0",
+      "bom-ref": "cpe:2.3:a::es6-symbol:3.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::es6-symbol:3.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/es6-symbol@3.1.0",
+      "name": "es6-symbol",
+      "version": "3.1.0",
+      "bom-ref": "cpe:2.3:a::es6-symbol:3.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::request:2.79.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/request@2.79.0",
+      "name": "request",
+      "version": "2.79.0",
+      "bom-ref": "cpe:2.3:a::request:2.79.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::aws-sign2:0.6.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/aws-sign2@0.6.0",
+      "name": "aws-sign2",
+      "version": "0.6.0",
+      "bom-ref": "cpe:2.3:a::aws-sign2:0.6.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::aws4:1.8.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/aws4@1.8.0",
+      "name": "aws4",
+      "version": "1.8.0",
+      "bom-ref": "cpe:2.3:a::aws4:1.8.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::caseless:0.11.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/caseless@0.11.0",
+      "name": "caseless",
+      "version": "0.11.0",
+      "bom-ref": "cpe:2.3:a::caseless:0.11.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::combined-stream:1.0.7::*:*:*:*:*:*",
+      "purl": "pkg:npm/combined-stream@1.0.7",
+      "name": "combined-stream",
+      "version": "1.0.7",
+      "bom-ref": "cpe:2.3:a::combined-stream:1.0.7::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::delayed-stream:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/delayed-stream@1.0.0",
+      "name": "delayed-stream",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::delayed-stream:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::extend:3.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/extend@3.0.2",
+      "name": "extend",
+      "version": "3.0.2",
+      "bom-ref": "cpe:2.3:a::extend:3.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::forever-agent:0.6.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/forever-agent@0.6.1",
+      "name": "forever-agent",
+      "version": "0.6.1",
+      "bom-ref": "cpe:2.3:a::forever-agent:0.6.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::form-data:2.1.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/form-data@2.1.4",
+      "name": "form-data",
+      "version": "2.1.4",
+      "bom-ref": "cpe:2.3:a::form-data:2.1.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::asynckit:0.4.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/asynckit@0.4.0",
+      "name": "asynckit",
+      "version": "0.4.0",
+      "bom-ref": "cpe:2.3:a::asynckit:0.4.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::combined-stream:1.0.7::*:*:*:*:*:*",
+      "purl": "pkg:npm/combined-stream@1.0.7",
+      "name": "combined-stream",
+      "version": "1.0.7",
+      "bom-ref": "cpe:2.3:a::combined-stream:1.0.7::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::mime-types:2.1.21::*:*:*:*:*:*",
+      "purl": "pkg:npm/mime-types@2.1.21",
+      "name": "mime-types",
+      "version": "2.1.21",
+      "bom-ref": "cpe:2.3:a::mime-types:2.1.21::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::mime-db:1.37.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/mime-db@1.37.0",
+      "name": "mime-db",
+      "version": "1.37.0",
+      "bom-ref": "cpe:2.3:a::mime-db:1.37.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::har-validator:2.0.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/har-validator@2.0.6",
+      "name": "har-validator",
+      "version": "2.0.6",
+      "bom-ref": "cpe:2.3:a::har-validator:2.0.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::chalk:1.1.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/chalk@1.1.3",
+      "name": "chalk",
+      "version": "1.1.3",
+      "bom-ref": "cpe:2.3:a::chalk:1.1.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::ansi-styles:2.2.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/ansi-styles@2.2.1",
+      "name": "ansi-styles",
+      "version": "2.2.1",
+      "bom-ref": "cpe:2.3:a::ansi-styles:2.2.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::escape-string-regexp:1.0.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/escape-string-regexp@1.0.5",
+      "name": "escape-string-regexp",
+      "version": "1.0.5",
+      "bom-ref": "cpe:2.3:a::escape-string-regexp:1.0.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::has-ansi:2.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/has-ansi@2.0.0",
+      "name": "has-ansi",
+      "version": "2.0.0",
+      "bom-ref": "cpe:2.3:a::has-ansi:2.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::ansi-regex:2.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/ansi-regex@2.1.1",
+      "name": "ansi-regex",
+      "version": "2.1.1",
+      "bom-ref": "cpe:2.3:a::ansi-regex:2.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::strip-ansi:3.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/strip-ansi@3.0.1",
+      "name": "strip-ansi",
+      "version": "3.0.1",
+      "bom-ref": "cpe:2.3:a::strip-ansi:3.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::supports-color:2.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/supports-color@2.0.0",
+      "name": "supports-color",
+      "version": "2.0.0",
+      "bom-ref": "cpe:2.3:a::supports-color:2.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::commander:2.19.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/commander@2.19.0",
+      "name": "commander",
+      "version": "2.19.0",
+      "bom-ref": "cpe:2.3:a::commander:2.19.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-my-json-valid:2.19.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-my-json-valid@2.19.0",
+      "name": "is-my-json-valid",
+      "version": "2.19.0",
+      "bom-ref": "cpe:2.3:a::is-my-json-valid:2.19.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::generate-function:2.3.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/generate-function@2.3.1",
+      "name": "generate-function",
+      "version": "2.3.1",
+      "bom-ref": "cpe:2.3:a::generate-function:2.3.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-property:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-property@1.0.2",
+      "name": "is-property",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::is-property:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::generate-object-property:1.2.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/generate-object-property@1.2.0",
+      "name": "generate-object-property",
+      "version": "1.2.0",
+      "bom-ref": "cpe:2.3:a::generate-object-property:1.2.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-property:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-property@1.0.2",
+      "name": "is-property",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::is-property:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-my-ip-valid:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-my-ip-valid@1.0.0",
+      "name": "is-my-ip-valid",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::is-my-ip-valid:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::jsonpointer:4.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/jsonpointer@4.0.1",
+      "name": "jsonpointer",
+      "version": "4.0.1",
+      "bom-ref": "cpe:2.3:a::jsonpointer:4.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::xtend:4.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/xtend@4.0.1",
+      "name": "xtend",
+      "version": "4.0.1",
+      "bom-ref": "cpe:2.3:a::xtend:4.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::pinkie-promise:2.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/pinkie-promise@2.0.1",
+      "name": "pinkie-promise",
+      "version": "2.0.1",
+      "bom-ref": "cpe:2.3:a::pinkie-promise:2.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::pinkie:2.0.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/pinkie@2.0.4",
+      "name": "pinkie",
+      "version": "2.0.4",
+      "bom-ref": "cpe:2.3:a::pinkie:2.0.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::hawk:3.1.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/hawk@3.1.3",
+      "name": "hawk",
+      "version": "3.1.3",
+      "bom-ref": "cpe:2.3:a::hawk:3.1.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::boom:2.10.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/boom@2.10.1",
+      "name": "boom",
+      "version": "2.10.1",
+      "bom-ref": "cpe:2.3:a::boom:2.10.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::hoek:2.16.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/hoek@2.16.3",
+      "name": "hoek",
+      "version": "2.16.3",
+      "bom-ref": "cpe:2.3:a::hoek:2.16.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::hoek:2.16.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/hoek@2.16.3",
+      "name": "hoek",
+      "version": "2.16.3",
+      "bom-ref": "cpe:2.3:a::hoek:2.16.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::http-signature:1.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/http-signature@1.1.1",
+      "name": "http-signature",
+      "version": "1.1.1",
+      "bom-ref": "cpe:2.3:a::http-signature:1.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::assert-plus:0.2.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/assert-plus@0.2.0",
+      "name": "assert-plus",
+      "version": "0.2.0",
+      "bom-ref": "cpe:2.3:a::assert-plus:0.2.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::jsprim:1.4.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/jsprim@1.4.1",
+      "name": "jsprim",
+      "version": "1.4.1",
+      "bom-ref": "cpe:2.3:a::jsprim:1.4.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::assert-plus:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/assert-plus@1.0.0",
+      "name": "assert-plus",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::assert-plus:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::extsprintf:1.3.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/extsprintf@1.3.0",
+      "name": "extsprintf",
+      "version": "1.3.0",
+      "bom-ref": "cpe:2.3:a::extsprintf:1.3.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::json-schema:0.2.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/json-schema@0.2.3",
+      "name": "json-schema",
+      "version": "0.2.3",
+      "bom-ref": "cpe:2.3:a::json-schema:0.2.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::verror:1.10.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/verror@1.10.0",
+      "name": "verror",
+      "version": "1.10.0",
+      "bom-ref": "cpe:2.3:a::verror:1.10.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::assert-plus:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/assert-plus@1.0.0",
+      "name": "assert-plus",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::assert-plus:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::core-util-is:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/core-util-is@1.0.2",
+      "name": "core-util-is",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::core-util-is:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::extsprintf:1.3.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/extsprintf@1.3.0",
+      "name": "extsprintf",
+      "version": "1.3.0",
+      "bom-ref": "cpe:2.3:a::extsprintf:1.3.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::sshpk:1.16.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/sshpk@1.16.0",
+      "name": "sshpk",
+      "version": "1.16.0",
+      "bom-ref": "cpe:2.3:a::sshpk:1.16.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::asn1:0.2.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/asn1@0.2.4",
+      "name": "asn1",
+      "version": "0.2.4",
+      "bom-ref": "cpe:2.3:a::asn1:0.2.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::safer-buffer:2.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/safer-buffer@2.1.2",
+      "name": "safer-buffer",
+      "version": "2.1.2",
+      "bom-ref": "cpe:2.3:a::safer-buffer:2.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::assert-plus:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/assert-plus@1.0.0",
+      "name": "assert-plus",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::assert-plus:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::bcrypt-pbkdf:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/bcrypt-pbkdf@1.0.2",
+      "name": "bcrypt-pbkdf",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::bcrypt-pbkdf:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::tweetnacl:0.14.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/tweetnacl@0.14.5",
+      "name": "tweetnacl",
+      "version": "0.14.5",
+      "bom-ref": "cpe:2.3:a::tweetnacl:0.14.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::dashdash:1.14.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/dashdash@1.14.1",
+      "name": "dashdash",
+      "version": "1.14.1",
+      "bom-ref": "cpe:2.3:a::dashdash:1.14.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::assert-plus:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/assert-plus@1.0.0",
+      "name": "assert-plus",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::assert-plus:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::ecc-jsbn:0.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/ecc-jsbn@0.1.2",
+      "name": "ecc-jsbn",
+      "version": "0.1.2",
+      "bom-ref": "cpe:2.3:a::ecc-jsbn:0.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::jsbn:0.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/jsbn@0.1.1",
+      "name": "jsbn",
+      "version": "0.1.1",
+      "bom-ref": "cpe:2.3:a::jsbn:0.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::safer-buffer:2.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/safer-buffer@2.1.2",
+      "name": "safer-buffer",
+      "version": "2.1.2",
+      "bom-ref": "cpe:2.3:a::safer-buffer:2.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::getpass:0.1.7::*:*:*:*:*:*",
+      "purl": "pkg:npm/getpass@0.1.7",
+      "name": "getpass",
+      "version": "0.1.7",
+      "bom-ref": "cpe:2.3:a::getpass:0.1.7::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::assert-plus:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/assert-plus@1.0.0",
+      "name": "assert-plus",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::assert-plus:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::jsbn:0.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/jsbn@0.1.1",
+      "name": "jsbn",
+      "version": "0.1.1",
+      "bom-ref": "cpe:2.3:a::jsbn:0.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::safer-buffer:2.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/safer-buffer@2.1.2",
+      "name": "safer-buffer",
+      "version": "2.1.2",
+      "bom-ref": "cpe:2.3:a::safer-buffer:2.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::tweetnacl:0.14.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/tweetnacl@0.14.5",
+      "name": "tweetnacl",
+      "version": "0.14.5",
+      "bom-ref": "cpe:2.3:a::tweetnacl:0.14.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-typedarray:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-typedarray@1.0.0",
+      "name": "is-typedarray",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::is-typedarray:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::isstream:0.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/isstream@0.1.2",
+      "name": "isstream",
+      "version": "0.1.2",
+      "bom-ref": "cpe:2.3:a::isstream:0.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::json-stringify-safe:5.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/json-stringify-safe@5.0.1",
+      "name": "json-stringify-safe",
+      "version": "5.0.1",
+      "bom-ref": "cpe:2.3:a::json-stringify-safe:5.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::mime-types:2.1.21::*:*:*:*:*:*",
+      "purl": "pkg:npm/mime-types@2.1.21",
+      "name": "mime-types",
+      "version": "2.1.21",
+      "bom-ref": "cpe:2.3:a::mime-types:2.1.21::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::oauth-sign:0.8.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/oauth-sign@0.8.2",
+      "name": "oauth-sign",
+      "version": "0.8.2",
+      "bom-ref": "cpe:2.3:a::oauth-sign:0.8.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::qs:6.3.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/qs@6.3.2",
+      "name": "qs",
+      "version": "6.3.2",
+      "bom-ref": "cpe:2.3:a::qs:6.3.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::stringstream:0.0.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/stringstream@0.0.6",
+      "name": "stringstream",
+      "version": "0.0.6",
+      "bom-ref": "cpe:2.3:a::stringstream:0.0.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::tough-cookie:2.3.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/tough-cookie@2.3.4",
+      "name": "tough-cookie",
+      "version": "2.3.4",
+      "bom-ref": "cpe:2.3:a::tough-cookie:2.3.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::punycode:1.4.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/punycode@1.4.1",
+      "name": "punycode",
+      "version": "1.4.1",
+      "bom-ref": "cpe:2.3:a::punycode:1.4.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::tunnel-agent:0.4.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/tunnel-agent@0.4.3",
+      "name": "tunnel-agent",
+      "version": "0.4.3",
+      "bom-ref": "cpe:2.3:a::tunnel-agent:0.4.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::uuid:3.3.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/uuid@3.3.2",
+      "name": "uuid",
+      "version": "3.3.2",
+      "bom-ref": "cpe:2.3:a::uuid:3.3.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::rimraf:2.6.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/rimraf@2.6.3",
+      "name": "rimraf",
+      "version": "2.6.3",
+      "bom-ref": "cpe:2.3:a::rimraf:2.6.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::semver:5.6.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/semver@5.6.0",
+      "name": "semver",
+      "version": "5.6.0",
+      "bom-ref": "cpe:2.3:a::semver:5.6.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::tar:2.2.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/tar@2.2.1",
+      "name": "tar",
+      "version": "2.2.1",
+      "bom-ref": "cpe:2.3:a::tar:2.2.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::fstream:1.0.10::*:*:*:*:*:*",
+      "purl": "pkg:npm/fstream@1.0.10",
+      "name": "fstream",
+      "version": "1.0.10",
+      "bom-ref": "cpe:2.3:a::fstream:1.0.10::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::inherits:2.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/inherits@2.0.3",
+      "name": "inherits",
+      "version": "2.0.3",
+      "bom-ref": "cpe:2.3:a::inherits:2.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::which:1.3.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/which@1.3.1",
+      "name": "which",
+      "version": "1.3.1",
+      "bom-ref": "cpe:2.3:a::which:1.3.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::isexe:2.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/isexe@2.0.0",
+      "name": "isexe",
+      "version": "2.0.0",
+      "bom-ref": "cpe:2.3:a::isexe:2.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::nopt:3.0.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/nopt@3.0.6",
+      "name": "nopt",
+      "version": "3.0.6",
+      "bom-ref": "cpe:2.3:a::nopt:3.0.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::normalize-git-url:3.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/normalize-git-url@3.0.2",
+      "name": "normalize-git-url",
+      "version": "3.0.2",
+      "bom-ref": "cpe:2.3:a::normalize-git-url:3.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::normalize-package-data:2.3.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/normalize-package-data@2.3.5",
+      "name": "normalize-package-data",
+      "version": "2.3.5",
+      "bom-ref": "cpe:2.3:a::normalize-package-data:2.3.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::hosted-git-info:2.7.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/hosted-git-info@2.7.1",
+      "name": "hosted-git-info",
+      "version": "2.7.1",
+      "bom-ref": "cpe:2.3:a::hosted-git-info:2.7.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-builtin-module:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-builtin-module@1.0.0",
+      "name": "is-builtin-module",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::is-builtin-module:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::semver:5.6.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/semver@5.6.0",
+      "name": "semver",
+      "version": "5.6.0",
+      "bom-ref": "cpe:2.3:a::semver:5.6.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::validate-npm-package-license:3.0.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/validate-npm-package-license@3.0.4",
+      "name": "validate-npm-package-license",
+      "version": "3.0.4",
+      "bom-ref": "cpe:2.3:a::validate-npm-package-license:3.0.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::npm-cache-filename:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/npm-cache-filename@1.0.2",
+      "name": "npm-cache-filename",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::npm-cache-filename:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::npm-install-checks:3.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/npm-install-checks@3.0.0",
+      "name": "npm-install-checks",
+      "version": "3.0.0",
+      "bom-ref": "cpe:2.3:a::npm-install-checks:3.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::semver:5.6.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/semver@5.6.0",
+      "name": "semver",
+      "version": "5.6.0",
+      "bom-ref": "cpe:2.3:a::semver:5.6.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::npm-package-arg:4.2.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/npm-package-arg@4.2.0",
+      "name": "npm-package-arg",
+      "version": "4.2.0",
+      "bom-ref": "cpe:2.3:a::npm-package-arg:4.2.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::npm-registry-client:7.2.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/npm-registry-client@7.2.1",
+      "name": "npm-registry-client",
+      "version": "7.2.1",
+      "bom-ref": "cpe:2.3:a::npm-registry-client:7.2.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::concat-stream:1.6.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/concat-stream@1.6.2",
+      "name": "concat-stream",
+      "version": "1.6.2",
+      "bom-ref": "cpe:2.3:a::concat-stream:1.6.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::buffer-from:1.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/buffer-from@1.1.1",
+      "name": "buffer-from",
+      "version": "1.1.1",
+      "bom-ref": "cpe:2.3:a::buffer-from:1.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::inherits:2.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/inherits@2.0.3",
+      "name": "inherits",
+      "version": "2.0.3",
+      "bom-ref": "cpe:2.3:a::inherits:2.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::readable-stream:2.3.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/readable-stream@2.3.6",
+      "name": "readable-stream",
+      "version": "2.3.6",
+      "bom-ref": "cpe:2.3:a::readable-stream:2.3.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::typedarray:0.0.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/typedarray@0.0.6",
+      "name": "typedarray",
+      "version": "0.0.6",
+      "bom-ref": "cpe:2.3:a::typedarray:0.0.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::graceful-fs:4.1.15::*:*:*:*:*:*",
+      "purl": "pkg:npm/graceful-fs@4.1.15",
+      "name": "graceful-fs",
+      "version": "4.1.15",
+      "bom-ref": "cpe:2.3:a::graceful-fs:4.1.15::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::normalize-package-data:2.4.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/normalize-package-data@2.4.0",
+      "name": "normalize-package-data",
+      "version": "2.4.0",
+      "bom-ref": "cpe:2.3:a::normalize-package-data:2.4.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::npm-package-arg:4.2.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/npm-package-arg@4.2.0",
+      "name": "npm-package-arg",
+      "version": "4.2.0",
+      "bom-ref": "cpe:2.3:a::npm-package-arg:4.2.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::npmlog:3.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/npmlog@3.1.2",
+      "name": "npmlog",
+      "version": "3.1.2",
+      "bom-ref": "cpe:2.3:a::npmlog:3.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::are-we-there-yet:1.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/are-we-there-yet@1.1.2",
+      "name": "are-we-there-yet",
+      "version": "1.1.2",
+      "bom-ref": "cpe:2.3:a::are-we-there-yet:1.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::delegates:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/delegates@1.0.0",
+      "name": "delegates",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::delegates:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::readable-stream:2.3.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/readable-stream@2.3.6",
+      "name": "readable-stream",
+      "version": "2.3.6",
+      "bom-ref": "cpe:2.3:a::readable-stream:2.3.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::console-control-strings:1.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/console-control-strings@1.1.0",
+      "name": "console-control-strings",
+      "version": "1.1.0",
+      "bom-ref": "cpe:2.3:a::console-control-strings:1.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::gauge:2.6.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/gauge@2.6.0",
+      "name": "gauge",
+      "version": "2.6.0",
+      "bom-ref": "cpe:2.3:a::gauge:2.6.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::aproba:1.0.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/aproba@1.0.4",
+      "name": "aproba",
+      "version": "1.0.4",
+      "bom-ref": "cpe:2.3:a::aproba:1.0.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::console-control-strings:1.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/console-control-strings@1.1.0",
+      "name": "console-control-strings",
+      "version": "1.1.0",
+      "bom-ref": "cpe:2.3:a::console-control-strings:1.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::has-color:0.1.7::*:*:*:*:*:*",
+      "purl": "pkg:npm/has-color@0.1.7",
+      "name": "has-color",
+      "version": "0.1.7",
+      "bom-ref": "cpe:2.3:a::has-color:0.1.7::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::has-unicode:2.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/has-unicode@2.0.1",
+      "name": "has-unicode",
+      "version": "2.0.1",
+      "bom-ref": "cpe:2.3:a::has-unicode:2.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::object-assign:4.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/object-assign@4.1.1",
+      "name": "object-assign",
+      "version": "4.1.1",
+      "bom-ref": "cpe:2.3:a::object-assign:4.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::signal-exit:3.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/signal-exit@3.0.2",
+      "name": "signal-exit",
+      "version": "3.0.2",
+      "bom-ref": "cpe:2.3:a::signal-exit:3.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::string-width:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/string-width@1.0.2",
+      "name": "string-width",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::string-width:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::strip-ansi:3.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/strip-ansi@3.0.1",
+      "name": "strip-ansi",
+      "version": "3.0.1",
+      "bom-ref": "cpe:2.3:a::strip-ansi:3.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::wide-align:1.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/wide-align@1.1.0",
+      "name": "wide-align",
+      "version": "1.1.0",
+      "bom-ref": "cpe:2.3:a::wide-align:1.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::string-width:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/string-width@1.0.2",
+      "name": "string-width",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::string-width:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::set-blocking:2.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/set-blocking@2.0.0",
+      "name": "set-blocking",
+      "version": "2.0.0",
+      "bom-ref": "cpe:2.3:a::set-blocking:2.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::once:1.4.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/once@1.4.0",
+      "name": "once",
+      "version": "1.4.0",
+      "bom-ref": "cpe:2.3:a::once:1.4.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::request:2.79.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/request@2.79.0",
+      "name": "request",
+      "version": "2.79.0",
+      "bom-ref": "cpe:2.3:a::request:2.79.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::retry:0.10.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/retry@0.10.0",
+      "name": "retry",
+      "version": "0.10.0",
+      "bom-ref": "cpe:2.3:a::retry:0.10.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::semver:5.6.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/semver@5.6.0",
+      "name": "semver",
+      "version": "5.6.0",
+      "bom-ref": "cpe:2.3:a::semver:5.6.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::slide:1.1.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/slide@1.1.6",
+      "name": "slide",
+      "version": "1.1.6",
+      "bom-ref": "cpe:2.3:a::slide:1.1.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::npm-user-validate:0.1.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/npm-user-validate@0.1.5",
+      "name": "npm-user-validate",
+      "version": "0.1.5",
+      "bom-ref": "cpe:2.3:a::npm-user-validate:0.1.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::npmlog:4.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/npmlog@4.0.0",
+      "name": "npmlog",
+      "version": "4.0.0",
+      "bom-ref": "cpe:2.3:a::npmlog:4.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::are-we-there-yet:1.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/are-we-there-yet@1.1.2",
+      "name": "are-we-there-yet",
+      "version": "1.1.2",
+      "bom-ref": "cpe:2.3:a::are-we-there-yet:1.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::delegates:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/delegates@1.0.0",
+      "name": "delegates",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::delegates:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::readable-stream:2.3.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/readable-stream@2.3.6",
+      "name": "readable-stream",
+      "version": "2.3.6",
+      "bom-ref": "cpe:2.3:a::readable-stream:2.3.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::console-control-strings:1.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/console-control-strings@1.1.0",
+      "name": "console-control-strings",
+      "version": "1.1.0",
+      "bom-ref": "cpe:2.3:a::console-control-strings:1.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::gauge:2.6.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/gauge@2.6.0",
+      "name": "gauge",
+      "version": "2.6.0",
+      "bom-ref": "cpe:2.3:a::gauge:2.6.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::aproba:1.0.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/aproba@1.0.4",
+      "name": "aproba",
+      "version": "1.0.4",
+      "bom-ref": "cpe:2.3:a::aproba:1.0.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::console-control-strings:1.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/console-control-strings@1.1.0",
+      "name": "console-control-strings",
+      "version": "1.1.0",
+      "bom-ref": "cpe:2.3:a::console-control-strings:1.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::has-color:0.1.7::*:*:*:*:*:*",
+      "purl": "pkg:npm/has-color@0.1.7",
+      "name": "has-color",
+      "version": "0.1.7",
+      "bom-ref": "cpe:2.3:a::has-color:0.1.7::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::has-unicode:2.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/has-unicode@2.0.1",
+      "name": "has-unicode",
+      "version": "2.0.1",
+      "bom-ref": "cpe:2.3:a::has-unicode:2.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::object-assign:4.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/object-assign@4.1.1",
+      "name": "object-assign",
+      "version": "4.1.1",
+      "bom-ref": "cpe:2.3:a::object-assign:4.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::signal-exit:3.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/signal-exit@3.0.2",
+      "name": "signal-exit",
+      "version": "3.0.2",
+      "bom-ref": "cpe:2.3:a::signal-exit:3.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::string-width:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/string-width@1.0.2",
+      "name": "string-width",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::string-width:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::strip-ansi:3.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/strip-ansi@3.0.1",
+      "name": "strip-ansi",
+      "version": "3.0.1",
+      "bom-ref": "cpe:2.3:a::strip-ansi:3.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::wide-align:1.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/wide-align@1.1.0",
+      "name": "wide-align",
+      "version": "1.1.0",
+      "bom-ref": "cpe:2.3:a::wide-align:1.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::string-width:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/string-width@1.0.2",
+      "name": "string-width",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::string-width:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::set-blocking:2.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/set-blocking@2.0.0",
+      "name": "set-blocking",
+      "version": "2.0.0",
+      "bom-ref": "cpe:2.3:a::set-blocking:2.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::once:1.4.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/once@1.4.0",
+      "name": "once",
+      "version": "1.4.0",
+      "bom-ref": "cpe:2.3:a::once:1.4.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::opener:1.4.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/opener@1.4.2",
+      "name": "opener",
+      "version": "1.4.2",
+      "bom-ref": "cpe:2.3:a::opener:1.4.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::osenv:0.1.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/osenv@0.1.5",
+      "name": "osenv",
+      "version": "0.1.5",
+      "bom-ref": "cpe:2.3:a::osenv:0.1.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::path-is-inside:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/path-is-inside@1.0.2",
+      "name": "path-is-inside",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::path-is-inside:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::read:1.0.7::*:*:*:*:*:*",
+      "purl": "pkg:npm/read@1.0.7",
+      "name": "read",
+      "version": "1.0.7",
+      "bom-ref": "cpe:2.3:a::read:1.0.7::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::read-cmd-shim:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/read-cmd-shim@1.0.1",
+      "name": "read-cmd-shim",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::read-cmd-shim:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::graceful-fs:4.1.15::*:*:*:*:*:*",
+      "purl": "pkg:npm/graceful-fs@4.1.15",
+      "name": "graceful-fs",
+      "version": "4.1.15",
+      "bom-ref": "cpe:2.3:a::graceful-fs:4.1.15::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::read-installed:4.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/read-installed@4.0.3",
+      "name": "read-installed",
+      "version": "4.0.3",
+      "bom-ref": "cpe:2.3:a::read-installed:4.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::debuglog:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/debuglog@1.0.1",
+      "name": "debuglog",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::debuglog:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::graceful-fs:4.1.15::*:*:*:*:*:*",
+      "purl": "pkg:npm/graceful-fs@4.1.15",
+      "name": "graceful-fs",
+      "version": "4.1.15",
+      "bom-ref": "cpe:2.3:a::graceful-fs:4.1.15::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::read-package-json:2.0.13::*:*:*:*:*:*",
+      "purl": "pkg:npm/read-package-json@2.0.13",
+      "name": "read-package-json",
+      "version": "2.0.13",
+      "bom-ref": "cpe:2.3:a::read-package-json:2.0.13::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::readdir-scoped-modules:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/readdir-scoped-modules@1.0.2",
+      "name": "readdir-scoped-modules",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::readdir-scoped-modules:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::debuglog:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/debuglog@1.0.1",
+      "name": "debuglog",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::debuglog:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::dezalgo:1.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/dezalgo@1.0.3",
+      "name": "dezalgo",
+      "version": "1.0.3",
+      "bom-ref": "cpe:2.3:a::dezalgo:1.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::graceful-fs:4.1.15::*:*:*:*:*:*",
+      "purl": "pkg:npm/graceful-fs@4.1.15",
+      "name": "graceful-fs",
+      "version": "4.1.15",
+      "bom-ref": "cpe:2.3:a::graceful-fs:4.1.15::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::once:1.4.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/once@1.4.0",
+      "name": "once",
+      "version": "1.4.0",
+      "bom-ref": "cpe:2.3:a::once:1.4.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::semver:5.6.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/semver@5.6.0",
+      "name": "semver",
+      "version": "5.6.0",
+      "bom-ref": "cpe:2.3:a::semver:5.6.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::slide:1.1.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/slide@1.1.6",
+      "name": "slide",
+      "version": "1.1.6",
+      "bom-ref": "cpe:2.3:a::slide:1.1.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::util-extend:1.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/util-extend@1.0.3",
+      "name": "util-extend",
+      "version": "1.0.3",
+      "bom-ref": "cpe:2.3:a::util-extend:1.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::read-package-json:2.0.13::*:*:*:*:*:*",
+      "purl": "pkg:npm/read-package-json@2.0.13",
+      "name": "read-package-json",
+      "version": "2.0.13",
+      "bom-ref": "cpe:2.3:a::read-package-json:2.0.13::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::read-package-tree:5.1.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/read-package-tree@5.1.5",
+      "name": "read-package-tree",
+      "version": "5.1.5",
+      "bom-ref": "cpe:2.3:a::read-package-tree:5.1.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::debuglog:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/debuglog@1.0.1",
+      "name": "debuglog",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::debuglog:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::dezalgo:1.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/dezalgo@1.0.3",
+      "name": "dezalgo",
+      "version": "1.0.3",
+      "bom-ref": "cpe:2.3:a::dezalgo:1.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::once:1.4.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/once@1.4.0",
+      "name": "once",
+      "version": "1.4.0",
+      "bom-ref": "cpe:2.3:a::once:1.4.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::read-package-json:2.0.13::*:*:*:*:*:*",
+      "purl": "pkg:npm/read-package-json@2.0.13",
+      "name": "read-package-json",
+      "version": "2.0.13",
+      "bom-ref": "cpe:2.3:a::read-package-json:2.0.13::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::readdir-scoped-modules:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/readdir-scoped-modules@1.0.2",
+      "name": "readdir-scoped-modules",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::readdir-scoped-modules:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::readable-stream:2.1.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/readable-stream@2.1.5",
+      "name": "readable-stream",
+      "version": "2.1.5",
+      "bom-ref": "cpe:2.3:a::readable-stream:2.1.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::buffer-shims:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/buffer-shims@1.0.0",
+      "name": "buffer-shims",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::buffer-shims:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::core-util-is:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/core-util-is@1.0.2",
+      "name": "core-util-is",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::core-util-is:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::inherits:2.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/inherits@2.0.3",
+      "name": "inherits",
+      "version": "2.0.3",
+      "bom-ref": "cpe:2.3:a::inherits:2.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::isarray:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/isarray@1.0.0",
+      "name": "isarray",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::isarray:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::process-nextick-args:1.0.7::*:*:*:*:*:*",
+      "purl": "pkg:npm/process-nextick-args@1.0.7",
+      "name": "process-nextick-args",
+      "version": "1.0.7",
+      "bom-ref": "cpe:2.3:a::process-nextick-args:1.0.7::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::string_decoder:0.10.31::*:*:*:*:*:*",
+      "purl": "pkg:npm/string_decoder@0.10.31",
+      "name": "string_decoder",
+      "version": "0.10.31",
+      "bom-ref": "cpe:2.3:a::string_decoder:0.10.31::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::util-deprecate:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/util-deprecate@1.0.2",
+      "name": "util-deprecate",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::util-deprecate:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::readdir-scoped-modules:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/readdir-scoped-modules@1.0.2",
+      "name": "readdir-scoped-modules",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::readdir-scoped-modules:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::realize-package-specifier:3.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/realize-package-specifier@3.0.3",
+      "name": "realize-package-specifier",
+      "version": "3.0.3",
+      "bom-ref": "cpe:2.3:a::realize-package-specifier:3.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::dezalgo:1.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/dezalgo@1.0.3",
+      "name": "dezalgo",
+      "version": "1.0.3",
+      "bom-ref": "cpe:2.3:a::dezalgo:1.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::npm-package-arg:4.2.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/npm-package-arg@4.2.0",
+      "name": "npm-package-arg",
+      "version": "4.2.0",
+      "bom-ref": "cpe:2.3:a::npm-package-arg:4.2.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::request:2.75.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/request@2.75.0",
+      "name": "request",
+      "version": "2.75.0",
+      "bom-ref": "cpe:2.3:a::request:2.75.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::aws-sign2:0.6.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/aws-sign2@0.6.0",
+      "name": "aws-sign2",
+      "version": "0.6.0",
+      "bom-ref": "cpe:2.3:a::aws-sign2:0.6.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::aws4:1.8.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/aws4@1.8.0",
+      "name": "aws4",
+      "version": "1.8.0",
+      "bom-ref": "cpe:2.3:a::aws4:1.8.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::bl:1.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/bl@1.1.2",
+      "name": "bl",
+      "version": "1.1.2",
+      "bom-ref": "cpe:2.3:a::bl:1.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::readable-stream:2.0.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/readable-stream@2.0.6",
+      "name": "readable-stream",
+      "version": "2.0.6",
+      "bom-ref": "cpe:2.3:a::readable-stream:2.0.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::core-util-is:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/core-util-is@1.0.2",
+      "name": "core-util-is",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::core-util-is:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::inherits:2.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/inherits@2.0.3",
+      "name": "inherits",
+      "version": "2.0.3",
+      "bom-ref": "cpe:2.3:a::inherits:2.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::isarray:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/isarray@1.0.0",
+      "name": "isarray",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::isarray:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::process-nextick-args:1.0.7::*:*:*:*:*:*",
+      "purl": "pkg:npm/process-nextick-args@1.0.7",
+      "name": "process-nextick-args",
+      "version": "1.0.7",
+      "bom-ref": "cpe:2.3:a::process-nextick-args:1.0.7::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::string_decoder:0.10.31::*:*:*:*:*:*",
+      "purl": "pkg:npm/string_decoder@0.10.31",
+      "name": "string_decoder",
+      "version": "0.10.31",
+      "bom-ref": "cpe:2.3:a::string_decoder:0.10.31::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::util-deprecate:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/util-deprecate@1.0.2",
+      "name": "util-deprecate",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::util-deprecate:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::caseless:0.11.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/caseless@0.11.0",
+      "name": "caseless",
+      "version": "0.11.0",
+      "bom-ref": "cpe:2.3:a::caseless:0.11.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::combined-stream:1.0.7::*:*:*:*:*:*",
+      "purl": "pkg:npm/combined-stream@1.0.7",
+      "name": "combined-stream",
+      "version": "1.0.7",
+      "bom-ref": "cpe:2.3:a::combined-stream:1.0.7::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::extend:3.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/extend@3.0.2",
+      "name": "extend",
+      "version": "3.0.2",
+      "bom-ref": "cpe:2.3:a::extend:3.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::forever-agent:0.6.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/forever-agent@0.6.1",
+      "name": "forever-agent",
+      "version": "0.6.1",
+      "bom-ref": "cpe:2.3:a::forever-agent:0.6.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::form-data:2.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/form-data@2.0.0",
+      "name": "form-data",
+      "version": "2.0.0",
+      "bom-ref": "cpe:2.3:a::form-data:2.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::asynckit:0.4.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/asynckit@0.4.0",
+      "name": "asynckit",
+      "version": "0.4.0",
+      "bom-ref": "cpe:2.3:a::asynckit:0.4.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::combined-stream:1.0.7::*:*:*:*:*:*",
+      "purl": "pkg:npm/combined-stream@1.0.7",
+      "name": "combined-stream",
+      "version": "1.0.7",
+      "bom-ref": "cpe:2.3:a::combined-stream:1.0.7::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::mime-types:2.1.21::*:*:*:*:*:*",
+      "purl": "pkg:npm/mime-types@2.1.21",
+      "name": "mime-types",
+      "version": "2.1.21",
+      "bom-ref": "cpe:2.3:a::mime-types:2.1.21::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::har-validator:2.0.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/har-validator@2.0.6",
+      "name": "har-validator",
+      "version": "2.0.6",
+      "bom-ref": "cpe:2.3:a::har-validator:2.0.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::hawk:3.1.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/hawk@3.1.3",
+      "name": "hawk",
+      "version": "3.1.3",
+      "bom-ref": "cpe:2.3:a::hawk:3.1.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::http-signature:1.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/http-signature@1.1.1",
+      "name": "http-signature",
+      "version": "1.1.1",
+      "bom-ref": "cpe:2.3:a::http-signature:1.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-typedarray:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-typedarray@1.0.0",
+      "name": "is-typedarray",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::is-typedarray:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::isstream:0.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/isstream@0.1.2",
+      "name": "isstream",
+      "version": "0.1.2",
+      "bom-ref": "cpe:2.3:a::isstream:0.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::json-stringify-safe:5.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/json-stringify-safe@5.0.1",
+      "name": "json-stringify-safe",
+      "version": "5.0.1",
+      "bom-ref": "cpe:2.3:a::json-stringify-safe:5.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::mime-types:2.1.21::*:*:*:*:*:*",
+      "purl": "pkg:npm/mime-types@2.1.21",
+      "name": "mime-types",
+      "version": "2.1.21",
+      "bom-ref": "cpe:2.3:a::mime-types:2.1.21::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::node-uuid:1.4.7::*:*:*:*:*:*",
+      "purl": "pkg:npm/node-uuid@1.4.7",
+      "name": "node-uuid",
+      "version": "1.4.7",
+      "bom-ref": "cpe:2.3:a::node-uuid:1.4.7::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::oauth-sign:0.8.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/oauth-sign@0.8.2",
+      "name": "oauth-sign",
+      "version": "0.8.2",
+      "bom-ref": "cpe:2.3:a::oauth-sign:0.8.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::qs:6.2.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/qs@6.2.1",
+      "name": "qs",
+      "version": "6.2.1",
+      "bom-ref": "cpe:2.3:a::qs:6.2.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::stringstream:0.0.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/stringstream@0.0.6",
+      "name": "stringstream",
+      "version": "0.0.6",
+      "bom-ref": "cpe:2.3:a::stringstream:0.0.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::tough-cookie:2.3.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/tough-cookie@2.3.4",
+      "name": "tough-cookie",
+      "version": "2.3.4",
+      "bom-ref": "cpe:2.3:a::tough-cookie:2.3.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::tunnel-agent:0.4.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/tunnel-agent@0.4.3",
+      "name": "tunnel-agent",
+      "version": "0.4.3",
+      "bom-ref": "cpe:2.3:a::tunnel-agent:0.4.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::retry:0.10.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/retry@0.10.0",
+      "name": "retry",
+      "version": "0.10.0",
+      "bom-ref": "cpe:2.3:a::retry:0.10.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::rimraf:2.5.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/rimraf@2.5.4",
+      "name": "rimraf",
+      "version": "2.5.4",
+      "bom-ref": "cpe:2.3:a::rimraf:2.5.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::glob:7.1.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/glob@7.1.3",
+      "name": "glob",
+      "version": "7.1.3",
+      "bom-ref": "cpe:2.3:a::glob:7.1.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::semver:5.3.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/semver@5.3.0",
+      "name": "semver",
+      "version": "5.3.0",
+      "bom-ref": "cpe:2.3:a::semver:5.3.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::sha:2.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/sha@2.0.1",
+      "name": "sha",
+      "version": "2.0.1",
+      "bom-ref": "cpe:2.3:a::sha:2.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::graceful-fs:4.1.15::*:*:*:*:*:*",
+      "purl": "pkg:npm/graceful-fs@4.1.15",
+      "name": "graceful-fs",
+      "version": "4.1.15",
+      "bom-ref": "cpe:2.3:a::graceful-fs:4.1.15::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::readable-stream:2.3.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/readable-stream@2.3.6",
+      "name": "readable-stream",
+      "version": "2.3.6",
+      "bom-ref": "cpe:2.3:a::readable-stream:2.3.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::slide:1.1.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/slide@1.1.6",
+      "name": "slide",
+      "version": "1.1.6",
+      "bom-ref": "cpe:2.3:a::slide:1.1.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::sorted-object:2.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/sorted-object@2.0.1",
+      "name": "sorted-object",
+      "version": "2.0.1",
+      "bom-ref": "cpe:2.3:a::sorted-object:2.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::strip-ansi:3.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/strip-ansi@3.0.1",
+      "name": "strip-ansi",
+      "version": "3.0.1",
+      "bom-ref": "cpe:2.3:a::strip-ansi:3.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::tar:2.2.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/tar@2.2.1",
+      "name": "tar",
+      "version": "2.2.1",
+      "bom-ref": "cpe:2.3:a::tar:2.2.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::block-stream:0.0.8::*:*:*:*:*:*",
+      "purl": "pkg:npm/block-stream@0.0.8",
+      "name": "block-stream",
+      "version": "0.0.8",
+      "bom-ref": "cpe:2.3:a::block-stream:0.0.8::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::inherits:2.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/inherits@2.0.3",
+      "name": "inherits",
+      "version": "2.0.3",
+      "bom-ref": "cpe:2.3:a::inherits:2.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::fstream:1.0.10::*:*:*:*:*:*",
+      "purl": "pkg:npm/fstream@1.0.10",
+      "name": "fstream",
+      "version": "1.0.10",
+      "bom-ref": "cpe:2.3:a::fstream:1.0.10::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::text-table:0.2.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/text-table@0.2.0",
+      "name": "text-table",
+      "version": "0.2.0",
+      "bom-ref": "cpe:2.3:a::text-table:0.2.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::uid-number:0.0.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/uid-number@0.0.6",
+      "name": "uid-number",
+      "version": "0.0.6",
+      "bom-ref": "cpe:2.3:a::uid-number:0.0.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::umask:1.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/umask@1.1.0",
+      "name": "umask",
+      "version": "1.1.0",
+      "bom-ref": "cpe:2.3:a::umask:1.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::unique-filename:1.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/unique-filename@1.1.0",
+      "name": "unique-filename",
+      "version": "1.1.0",
+      "bom-ref": "cpe:2.3:a::unique-filename:1.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::unique-slug:2.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/unique-slug@2.0.0",
+      "name": "unique-slug",
+      "version": "2.0.0",
+      "bom-ref": "cpe:2.3:a::unique-slug:2.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::imurmurhash:0.1.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/imurmurhash@0.1.4",
+      "name": "imurmurhash",
+      "version": "0.1.4",
+      "bom-ref": "cpe:2.3:a::imurmurhash:0.1.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::unpipe:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/unpipe@1.0.0",
+      "name": "unpipe",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::unpipe:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::validate-npm-package-license:3.0.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/validate-npm-package-license@3.0.4",
+      "name": "validate-npm-package-license",
+      "version": "3.0.4",
+      "bom-ref": "cpe:2.3:a::validate-npm-package-license:3.0.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::validate-npm-package-name:2.2.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/validate-npm-package-name@2.2.2",
+      "name": "validate-npm-package-name",
+      "version": "2.2.2",
+      "bom-ref": "cpe:2.3:a::validate-npm-package-name:2.2.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::builtins:0.0.7::*:*:*:*:*:*",
+      "purl": "pkg:npm/builtins@0.0.7",
+      "name": "builtins",
+      "version": "0.0.7",
+      "bom-ref": "cpe:2.3:a::builtins:0.0.7::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::which:1.2.11::*:*:*:*:*:*",
+      "purl": "pkg:npm/which@1.2.11",
+      "name": "which",
+      "version": "1.2.11",
+      "bom-ref": "cpe:2.3:a::which:1.2.11::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::isexe:1.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/isexe@1.1.2",
+      "name": "isexe",
+      "version": "1.1.2",
+      "bom-ref": "cpe:2.3:a::isexe:1.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::wrappy:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/wrappy@1.0.2",
+      "name": "wrappy",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::wrappy:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::write-file-atomic:1.2.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/write-file-atomic@1.2.0",
+      "name": "write-file-atomic",
+      "version": "1.2.0",
+      "bom-ref": "cpe:2.3:a::write-file-atomic:1.2.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::graceful-fs:4.1.15::*:*:*:*:*:*",
+      "purl": "pkg:npm/graceful-fs@4.1.15",
+      "name": "graceful-fs",
+      "version": "4.1.15",
+      "bom-ref": "cpe:2.3:a::graceful-fs:4.1.15::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::imurmurhash:0.1.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/imurmurhash@0.1.4",
+      "name": "imurmurhash",
+      "version": "0.1.4",
+      "bom-ref": "cpe:2.3:a::imurmurhash:0.1.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::slide:1.1.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/slide@1.1.6",
+      "name": "slide",
+      "version": "1.1.6",
+      "bom-ref": "cpe:2.3:a::slide:1.1.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::grunt-retire:0.3.12::*:*:*:*:*:*",
+      "purl": "pkg:npm/grunt-retire@0.3.12",
+      "name": "grunt-retire",
+      "version": "0.3.12",
+      "bom-ref": "cpe:2.3:a::grunt-retire:0.3.12::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::async:1.5.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/async@1.5.2",
+      "name": "async",
+      "version": "1.5.2",
+      "bom-ref": "cpe:2.3:a::async:1.5.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::retire:1.1.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/retire@1.1.6",
+      "name": "retire",
+      "version": "1.1.6",
+      "bom-ref": "cpe:2.3:a::retire:1.1.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::commander:2.5.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/commander@2.5.1",
+      "name": "commander",
+      "version": "2.5.1",
+      "bom-ref": "cpe:2.3:a::commander:2.5.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::read-installed:4.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/read-installed@4.0.3",
+      "name": "read-installed",
+      "version": "4.0.3",
+      "bom-ref": "cpe:2.3:a::read-installed:4.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::debuglog:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/debuglog@1.0.1",
+      "name": "debuglog",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::debuglog:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::graceful-fs:4.1.15::*:*:*:*:*:*",
+      "purl": "pkg:npm/graceful-fs@4.1.15",
+      "name": "graceful-fs",
+      "version": "4.1.15",
+      "bom-ref": "cpe:2.3:a::graceful-fs:4.1.15::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::read-package-json:2.0.13::*:*:*:*:*:*",
+      "purl": "pkg:npm/read-package-json@2.0.13",
+      "name": "read-package-json",
+      "version": "2.0.13",
+      "bom-ref": "cpe:2.3:a::read-package-json:2.0.13::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::glob:7.1.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/glob@7.1.3",
+      "name": "glob",
+      "version": "7.1.3",
+      "bom-ref": "cpe:2.3:a::glob:7.1.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::fs.realpath:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/fs.realpath@1.0.0",
+      "name": "fs.realpath",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::fs.realpath:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::inflight:1.0.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/inflight@1.0.6",
+      "name": "inflight",
+      "version": "1.0.6",
+      "bom-ref": "cpe:2.3:a::inflight:1.0.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::once:1.4.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/once@1.4.0",
+      "name": "once",
+      "version": "1.4.0",
+      "bom-ref": "cpe:2.3:a::once:1.4.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::wrappy:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/wrappy@1.0.2",
+      "name": "wrappy",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::wrappy:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::wrappy:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/wrappy@1.0.2",
+      "name": "wrappy",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::wrappy:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::inherits:2.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/inherits@2.0.3",
+      "name": "inherits",
+      "version": "2.0.3",
+      "bom-ref": "cpe:2.3:a::inherits:2.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::minimatch:3.0.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/minimatch@3.0.4",
+      "name": "minimatch",
+      "version": "3.0.4",
+      "bom-ref": "cpe:2.3:a::minimatch:3.0.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::brace-expansion:1.1.11::*:*:*:*:*:*",
+      "purl": "pkg:npm/brace-expansion@1.1.11",
+      "name": "brace-expansion",
+      "version": "1.1.11",
+      "bom-ref": "cpe:2.3:a::brace-expansion:1.1.11::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::balanced-match:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/balanced-match@1.0.0",
+      "name": "balanced-match",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::balanced-match:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::concat-map:0.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/concat-map@0.0.1",
+      "name": "concat-map",
+      "version": "0.0.1",
+      "bom-ref": "cpe:2.3:a::concat-map:0.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::once:1.4.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/once@1.4.0",
+      "name": "once",
+      "version": "1.4.0",
+      "bom-ref": "cpe:2.3:a::once:1.4.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::path-is-absolute:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/path-is-absolute@1.0.1",
+      "name": "path-is-absolute",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::path-is-absolute:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::graceful-fs:4.1.15::*:*:*:*:*:*",
+      "purl": "pkg:npm/graceful-fs@4.1.15",
+      "name": "graceful-fs",
+      "version": "4.1.15",
+      "bom-ref": "cpe:2.3:a::graceful-fs:4.1.15::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::json-parse-better-errors:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/json-parse-better-errors@1.0.2",
+      "name": "json-parse-better-errors",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::json-parse-better-errors:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::normalize-package-data:2.4.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/normalize-package-data@2.4.0",
+      "name": "normalize-package-data",
+      "version": "2.4.0",
+      "bom-ref": "cpe:2.3:a::normalize-package-data:2.4.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::hosted-git-info:2.7.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/hosted-git-info@2.7.1",
+      "name": "hosted-git-info",
+      "version": "2.7.1",
+      "bom-ref": "cpe:2.3:a::hosted-git-info:2.7.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-builtin-module:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-builtin-module@1.0.0",
+      "name": "is-builtin-module",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::is-builtin-module:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::builtin-modules:1.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/builtin-modules@1.1.1",
+      "name": "builtin-modules",
+      "version": "1.1.1",
+      "bom-ref": "cpe:2.3:a::builtin-modules:1.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::semver:5.6.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/semver@5.6.0",
+      "name": "semver",
+      "version": "5.6.0",
+      "bom-ref": "cpe:2.3:a::semver:5.6.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::validate-npm-package-license:3.0.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/validate-npm-package-license@3.0.4",
+      "name": "validate-npm-package-license",
+      "version": "3.0.4",
+      "bom-ref": "cpe:2.3:a::validate-npm-package-license:3.0.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::spdx-correct:3.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/spdx-correct@3.1.0",
+      "name": "spdx-correct",
+      "version": "3.1.0",
+      "bom-ref": "cpe:2.3:a::spdx-correct:3.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::spdx-expression-parse:3.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/spdx-expression-parse@3.0.0",
+      "name": "spdx-expression-parse",
+      "version": "3.0.0",
+      "bom-ref": "cpe:2.3:a::spdx-expression-parse:3.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::spdx-exceptions:2.2.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/spdx-exceptions@2.2.0",
+      "name": "spdx-exceptions",
+      "version": "2.2.0",
+      "bom-ref": "cpe:2.3:a::spdx-exceptions:2.2.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::spdx-license-ids:3.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/spdx-license-ids@3.0.3",
+      "name": "spdx-license-ids",
+      "version": "3.0.3",
+      "bom-ref": "cpe:2.3:a::spdx-license-ids:3.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::spdx-license-ids:3.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/spdx-license-ids@3.0.3",
+      "name": "spdx-license-ids",
+      "version": "3.0.3",
+      "bom-ref": "cpe:2.3:a::spdx-license-ids:3.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::spdx-expression-parse:3.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/spdx-expression-parse@3.0.0",
+      "name": "spdx-expression-parse",
+      "version": "3.0.0",
+      "bom-ref": "cpe:2.3:a::spdx-expression-parse:3.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::slash:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/slash@1.0.0",
+      "name": "slash",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::slash:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::readdir-scoped-modules:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/readdir-scoped-modules@1.0.2",
+      "name": "readdir-scoped-modules",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::readdir-scoped-modules:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::debuglog:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/debuglog@1.0.1",
+      "name": "debuglog",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::debuglog:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::dezalgo:1.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/dezalgo@1.0.3",
+      "name": "dezalgo",
+      "version": "1.0.3",
+      "bom-ref": "cpe:2.3:a::dezalgo:1.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::asap:2.0.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/asap@2.0.6",
+      "name": "asap",
+      "version": "2.0.6",
+      "bom-ref": "cpe:2.3:a::asap:2.0.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::wrappy:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/wrappy@1.0.2",
+      "name": "wrappy",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::wrappy:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::graceful-fs:4.1.15::*:*:*:*:*:*",
+      "purl": "pkg:npm/graceful-fs@4.1.15",
+      "name": "graceful-fs",
+      "version": "4.1.15",
+      "bom-ref": "cpe:2.3:a::graceful-fs:4.1.15::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::once:1.4.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/once@1.4.0",
+      "name": "once",
+      "version": "1.4.0",
+      "bom-ref": "cpe:2.3:a::once:1.4.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::semver:5.6.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/semver@5.6.0",
+      "name": "semver",
+      "version": "5.6.0",
+      "bom-ref": "cpe:2.3:a::semver:5.6.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::slide:1.1.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/slide@1.1.6",
+      "name": "slide",
+      "version": "1.1.6",
+      "bom-ref": "cpe:2.3:a::slide:1.1.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::util-extend:1.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/util-extend@1.0.3",
+      "name": "util-extend",
+      "version": "1.0.3",
+      "bom-ref": "cpe:2.3:a::util-extend:1.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::walkdir:0.0.7::*:*:*:*:*:*",
+      "purl": "pkg:npm/walkdir@0.0.7",
+      "name": "walkdir",
+      "version": "0.0.7",
+      "bom-ref": "cpe:2.3:a::walkdir:0.0.7::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::helmet:2.3.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/helmet@2.3.0",
+      "name": "helmet",
+      "version": "2.3.0",
+      "bom-ref": "cpe:2.3:a::helmet:2.3.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::connect:3.4.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/connect@3.4.1",
+      "name": "connect",
+      "version": "3.4.1",
+      "bom-ref": "cpe:2.3:a::connect:3.4.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::debug:2.2.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/debug@2.2.0",
+      "name": "debug",
+      "version": "2.2.0",
+      "bom-ref": "cpe:2.3:a::debug:2.2.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::ms:0.7.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/ms@0.7.1",
+      "name": "ms",
+      "version": "0.7.1",
+      "bom-ref": "cpe:2.3:a::ms:0.7.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::finalhandler:0.4.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/finalhandler@0.4.1",
+      "name": "finalhandler",
+      "version": "0.4.1",
+      "bom-ref": "cpe:2.3:a::finalhandler:0.4.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::debug:2.2.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/debug@2.2.0",
+      "name": "debug",
+      "version": "2.2.0",
+      "bom-ref": "cpe:2.3:a::debug:2.2.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::ms:0.7.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/ms@0.7.1",
+      "name": "ms",
+      "version": "0.7.1",
+      "bom-ref": "cpe:2.3:a::ms:0.7.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::escape-html:1.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/escape-html@1.0.3",
+      "name": "escape-html",
+      "version": "1.0.3",
+      "bom-ref": "cpe:2.3:a::escape-html:1.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::on-finished:2.3.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/on-finished@2.3.0",
+      "name": "on-finished",
+      "version": "2.3.0",
+      "bom-ref": "cpe:2.3:a::on-finished:2.3.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::ee-first:1.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/ee-first@1.1.1",
+      "name": "ee-first",
+      "version": "1.1.1",
+      "bom-ref": "cpe:2.3:a::ee-first:1.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::unpipe:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/unpipe@1.0.0",
+      "name": "unpipe",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::unpipe:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::parseurl:1.3.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/parseurl@1.3.2",
+      "name": "parseurl",
+      "version": "1.3.2",
+      "bom-ref": "cpe:2.3:a::parseurl:1.3.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::utils-merge:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/utils-merge@1.0.0",
+      "name": "utils-merge",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::utils-merge:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::dns-prefetch-control:0.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/dns-prefetch-control@0.1.0",
+      "name": "dns-prefetch-control",
+      "version": "0.1.0",
+      "bom-ref": "cpe:2.3:a::dns-prefetch-control:0.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::dont-sniff-mimetype:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/dont-sniff-mimetype@1.0.0",
+      "name": "dont-sniff-mimetype",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::dont-sniff-mimetype:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::frameguard:2.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/frameguard@2.0.0",
+      "name": "frameguard",
+      "version": "2.0.0",
+      "bom-ref": "cpe:2.3:a::frameguard:2.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::helmet-csp:1.2.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/helmet-csp@1.2.2",
+      "name": "helmet-csp",
+      "version": "1.2.2",
+      "bom-ref": "cpe:2.3:a::helmet-csp:1.2.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::camelize:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/camelize@1.0.0",
+      "name": "camelize",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::camelize:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::content-security-policy-builder:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/content-security-policy-builder@1.0.0",
+      "name": "content-security-policy-builder",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::content-security-policy-builder:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::dashify:0.2.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/dashify@0.2.2",
+      "name": "dashify",
+      "version": "0.2.2",
+      "bom-ref": "cpe:2.3:a::dashify:0.2.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::lodash.reduce:4.5.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/lodash.reduce@4.5.0",
+      "name": "lodash.reduce",
+      "version": "4.5.0",
+      "bom-ref": "cpe:2.3:a::lodash.reduce:4.5.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::platform:1.3.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/platform@1.3.1",
+      "name": "platform",
+      "version": "1.3.1",
+      "bom-ref": "cpe:2.3:a::platform:1.3.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::hide-powered-by:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/hide-powered-by@1.0.0",
+      "name": "hide-powered-by",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::hide-powered-by:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::hpkp:1.2.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/hpkp@1.2.0",
+      "name": "hpkp",
+      "version": "1.2.0",
+      "bom-ref": "cpe:2.3:a::hpkp:1.2.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::hsts:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/hsts@1.0.0",
+      "name": "hsts",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::hsts:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::core-util-is:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/core-util-is@1.0.2",
+      "name": "core-util-is",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::core-util-is:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::ienoopen:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/ienoopen@1.0.0",
+      "name": "ienoopen",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::ienoopen:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::nocache:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/nocache@1.0.1",
+      "name": "nocache",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::nocache:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::depd:1.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/depd@1.1.0",
+      "name": "depd",
+      "version": "1.1.0",
+      "bom-ref": "cpe:2.3:a::depd:1.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::referrer-policy:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/referrer-policy@1.0.0",
+      "name": "referrer-policy",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::referrer-policy:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::x-xss-protection:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/x-xss-protection@1.0.0",
+      "name": "x-xss-protection",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::x-xss-protection:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::marked:0.3.9::*:*:*:*:*:*",
+      "purl": "pkg:npm/marked@0.3.9",
+      "name": "marked",
+      "version": "0.3.9",
+      "bom-ref": "cpe:2.3:a::marked:0.3.9::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::mocha:2.5.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/mocha@2.5.3",
+      "name": "mocha",
+      "version": "2.5.3",
+      "bom-ref": "cpe:2.3:a::mocha:2.5.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::commander:2.3.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/commander@2.3.0",
+      "name": "commander",
+      "version": "2.3.0",
+      "bom-ref": "cpe:2.3:a::commander:2.3.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::debug:2.2.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/debug@2.2.0",
+      "name": "debug",
+      "version": "2.2.0",
+      "bom-ref": "cpe:2.3:a::debug:2.2.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::ms:0.7.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/ms@0.7.1",
+      "name": "ms",
+      "version": "0.7.1",
+      "bom-ref": "cpe:2.3:a::ms:0.7.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::diff:1.4.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/diff@1.4.0",
+      "name": "diff",
+      "version": "1.4.0",
+      "bom-ref": "cpe:2.3:a::diff:1.4.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::escape-string-regexp:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/escape-string-regexp@1.0.2",
+      "name": "escape-string-regexp",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::escape-string-regexp:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::glob:3.2.11::*:*:*:*:*:*",
+      "purl": "pkg:npm/glob@3.2.11",
+      "name": "glob",
+      "version": "3.2.11",
+      "bom-ref": "cpe:2.3:a::glob:3.2.11::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::inherits:2.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/inherits@2.0.3",
+      "name": "inherits",
+      "version": "2.0.3",
+      "bom-ref": "cpe:2.3:a::inherits:2.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::minimatch:0.3.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/minimatch@0.3.0",
+      "name": "minimatch",
+      "version": "0.3.0",
+      "bom-ref": "cpe:2.3:a::minimatch:0.3.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::lru-cache:2.7.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/lru-cache@2.7.3",
+      "name": "lru-cache",
+      "version": "2.7.3",
+      "bom-ref": "cpe:2.3:a::lru-cache:2.7.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::sigmund:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/sigmund@1.0.1",
+      "name": "sigmund",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::sigmund:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::growl:1.9.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/growl@1.9.2",
+      "name": "growl",
+      "version": "1.9.2",
+      "bom-ref": "cpe:2.3:a::growl:1.9.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::jade:0.26.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/jade@0.26.3",
+      "name": "jade",
+      "version": "0.26.3",
+      "bom-ref": "cpe:2.3:a::jade:0.26.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::commander:0.6.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/commander@0.6.1",
+      "name": "commander",
+      "version": "0.6.1",
+      "bom-ref": "cpe:2.3:a::commander:0.6.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::mkdirp:0.3.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/mkdirp@0.3.0",
+      "name": "mkdirp",
+      "version": "0.3.0",
+      "bom-ref": "cpe:2.3:a::mkdirp:0.3.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::mkdirp:0.5.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/mkdirp@0.5.1",
+      "name": "mkdirp",
+      "version": "0.5.1",
+      "bom-ref": "cpe:2.3:a::mkdirp:0.5.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::minimist:0.0.8::*:*:*:*:*:*",
+      "purl": "pkg:npm/minimist@0.0.8",
+      "name": "minimist",
+      "version": "0.0.8",
+      "bom-ref": "cpe:2.3:a::minimist:0.0.8::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::supports-color:1.2.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/supports-color@1.2.0",
+      "name": "supports-color",
+      "version": "1.2.0",
+      "bom-ref": "cpe:2.3:a::supports-color:1.2.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::to-iso-string:0.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/to-iso-string@0.0.2",
+      "name": "to-iso-string",
+      "version": "0.0.2",
+      "bom-ref": "cpe:2.3:a::to-iso-string:0.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::mongodb:2.2.36::*:*:*:*:*:*",
+      "purl": "pkg:npm/mongodb@2.2.36",
+      "name": "mongodb",
+      "version": "2.2.36",
+      "bom-ref": "cpe:2.3:a::mongodb:2.2.36::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::es6-promise:3.2.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/es6-promise@3.2.1",
+      "name": "es6-promise",
+      "version": "3.2.1",
+      "bom-ref": "cpe:2.3:a::es6-promise:3.2.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::mongodb-core:2.1.20::*:*:*:*:*:*",
+      "purl": "pkg:npm/mongodb-core@2.1.20",
+      "name": "mongodb-core",
+      "version": "2.1.20",
+      "bom-ref": "cpe:2.3:a::mongodb-core:2.1.20::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::bson:1.0.9::*:*:*:*:*:*",
+      "purl": "pkg:npm/bson@1.0.9",
+      "name": "bson",
+      "version": "1.0.9",
+      "bom-ref": "cpe:2.3:a::bson:1.0.9::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::require_optional:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/require_optional@1.0.1",
+      "name": "require_optional",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::require_optional:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::resolve-from:2.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/resolve-from@2.0.0",
+      "name": "resolve-from",
+      "version": "2.0.0",
+      "bom-ref": "cpe:2.3:a::resolve-from:2.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::semver:5.6.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/semver@5.6.0",
+      "name": "semver",
+      "version": "5.6.0",
+      "bom-ref": "cpe:2.3:a::semver:5.6.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::readable-stream:2.2.7::*:*:*:*:*:*",
+      "purl": "pkg:npm/readable-stream@2.2.7",
+      "name": "readable-stream",
+      "version": "2.2.7",
+      "bom-ref": "cpe:2.3:a::readable-stream:2.2.7::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::buffer-shims:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/buffer-shims@1.0.0",
+      "name": "buffer-shims",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::buffer-shims:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::core-util-is:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/core-util-is@1.0.2",
+      "name": "core-util-is",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::core-util-is:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::inherits:2.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/inherits@2.0.3",
+      "name": "inherits",
+      "version": "2.0.3",
+      "bom-ref": "cpe:2.3:a::inherits:2.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::isarray:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/isarray@1.0.0",
+      "name": "isarray",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::isarray:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::process-nextick-args:1.0.7::*:*:*:*:*:*",
+      "purl": "pkg:npm/process-nextick-args@1.0.7",
+      "name": "process-nextick-args",
+      "version": "1.0.7",
+      "bom-ref": "cpe:2.3:a::process-nextick-args:1.0.7::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::string_decoder:1.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/string_decoder@1.0.3",
+      "name": "string_decoder",
+      "version": "1.0.3",
+      "bom-ref": "cpe:2.3:a::string_decoder:1.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::safe-buffer:5.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/safe-buffer@5.1.2",
+      "name": "safe-buffer",
+      "version": "5.1.2",
+      "bom-ref": "cpe:2.3:a::safe-buffer:5.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::util-deprecate:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/util-deprecate@1.0.2",
+      "name": "util-deprecate",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::util-deprecate:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::node-esapi:0.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/node-esapi@0.0.1",
+      "name": "node-esapi",
+      "version": "0.0.1",
+      "bom-ref": "cpe:2.3:a::node-esapi:0.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::nodemon:1.19.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/nodemon@1.19.1",
+      "name": "nodemon",
+      "version": "1.19.1",
+      "bom-ref": "cpe:2.3:a::nodemon:1.19.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::chokidar:2.1.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/chokidar@2.1.6",
+      "name": "chokidar",
+      "version": "2.1.6",
+      "bom-ref": "cpe:2.3:a::chokidar:2.1.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::anymatch:2.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/anymatch@2.0.0",
+      "name": "anymatch",
+      "version": "2.0.0",
+      "bom-ref": "cpe:2.3:a::anymatch:2.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::micromatch:3.1.10::*:*:*:*:*:*",
+      "purl": "pkg:npm/micromatch@3.1.10",
+      "name": "micromatch",
+      "version": "3.1.10",
+      "bom-ref": "cpe:2.3:a::micromatch:3.1.10::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::arr-diff:4.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/arr-diff@4.0.0",
+      "name": "arr-diff",
+      "version": "4.0.0",
+      "bom-ref": "cpe:2.3:a::arr-diff:4.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::array-unique:0.3.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/array-unique@0.3.2",
+      "name": "array-unique",
+      "version": "0.3.2",
+      "bom-ref": "cpe:2.3:a::array-unique:0.3.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::braces:2.3.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/braces@2.3.2",
+      "name": "braces",
+      "version": "2.3.2",
+      "bom-ref": "cpe:2.3:a::braces:2.3.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::arr-flatten:1.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/arr-flatten@1.1.0",
+      "name": "arr-flatten",
+      "version": "1.1.0",
+      "bom-ref": "cpe:2.3:a::arr-flatten:1.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::array-unique:0.3.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/array-unique@0.3.2",
+      "name": "array-unique",
+      "version": "0.3.2",
+      "bom-ref": "cpe:2.3:a::array-unique:0.3.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::extend-shallow:2.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/extend-shallow@2.0.1",
+      "name": "extend-shallow",
+      "version": "2.0.1",
+      "bom-ref": "cpe:2.3:a::extend-shallow:2.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-extendable:0.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-extendable@0.1.1",
+      "name": "is-extendable",
+      "version": "0.1.1",
+      "bom-ref": "cpe:2.3:a::is-extendable:0.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::fill-range:4.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/fill-range@4.0.0",
+      "name": "fill-range",
+      "version": "4.0.0",
+      "bom-ref": "cpe:2.3:a::fill-range:4.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::extend-shallow:2.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/extend-shallow@2.0.1",
+      "name": "extend-shallow",
+      "version": "2.0.1",
+      "bom-ref": "cpe:2.3:a::extend-shallow:2.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-extendable:0.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-extendable@0.1.1",
+      "name": "is-extendable",
+      "version": "0.1.1",
+      "bom-ref": "cpe:2.3:a::is-extendable:0.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-number:3.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-number@3.0.0",
+      "name": "is-number",
+      "version": "3.0.0",
+      "bom-ref": "cpe:2.3:a::is-number:3.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::kind-of:3.2.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/kind-of@3.2.2",
+      "name": "kind-of",
+      "version": "3.2.2",
+      "bom-ref": "cpe:2.3:a::kind-of:3.2.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-buffer:1.1.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-buffer@1.1.6",
+      "name": "is-buffer",
+      "version": "1.1.6",
+      "bom-ref": "cpe:2.3:a::is-buffer:1.1.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::repeat-string:1.6.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/repeat-string@1.6.1",
+      "name": "repeat-string",
+      "version": "1.6.1",
+      "bom-ref": "cpe:2.3:a::repeat-string:1.6.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::to-regex-range:2.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/to-regex-range@2.1.1",
+      "name": "to-regex-range",
+      "version": "2.1.1",
+      "bom-ref": "cpe:2.3:a::to-regex-range:2.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-number:3.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-number@3.0.0",
+      "name": "is-number",
+      "version": "3.0.0",
+      "bom-ref": "cpe:2.3:a::is-number:3.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::repeat-string:1.6.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/repeat-string@1.6.1",
+      "name": "repeat-string",
+      "version": "1.6.1",
+      "bom-ref": "cpe:2.3:a::repeat-string:1.6.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::isobject:3.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/isobject@3.0.1",
+      "name": "isobject",
+      "version": "3.0.1",
+      "bom-ref": "cpe:2.3:a::isobject:3.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::repeat-element:1.1.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/repeat-element@1.1.3",
+      "name": "repeat-element",
+      "version": "1.1.3",
+      "bom-ref": "cpe:2.3:a::repeat-element:1.1.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::snapdragon:0.8.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/snapdragon@0.8.2",
+      "name": "snapdragon",
+      "version": "0.8.2",
+      "bom-ref": "cpe:2.3:a::snapdragon:0.8.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::base:0.11.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/base@0.11.2",
+      "name": "base",
+      "version": "0.11.2",
+      "bom-ref": "cpe:2.3:a::base:0.11.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::cache-base:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/cache-base@1.0.1",
+      "name": "cache-base",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::cache-base:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::collection-visit:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/collection-visit@1.0.0",
+      "name": "collection-visit",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::collection-visit:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::map-visit:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/map-visit@1.0.0",
+      "name": "map-visit",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::map-visit:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::object-visit:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/object-visit@1.0.1",
+      "name": "object-visit",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::object-visit:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::isobject:3.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/isobject@3.0.1",
+      "name": "isobject",
+      "version": "3.0.1",
+      "bom-ref": "cpe:2.3:a::isobject:3.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::object-visit:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/object-visit@1.0.1",
+      "name": "object-visit",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::object-visit:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::component-emitter:1.2.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/component-emitter@1.2.1",
+      "name": "component-emitter",
+      "version": "1.2.1",
+      "bom-ref": "cpe:2.3:a::component-emitter:1.2.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::get-value:2.0.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/get-value@2.0.6",
+      "name": "get-value",
+      "version": "2.0.6",
+      "bom-ref": "cpe:2.3:a::get-value:2.0.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::has-value:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/has-value@1.0.0",
+      "name": "has-value",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::has-value:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::get-value:2.0.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/get-value@2.0.6",
+      "name": "get-value",
+      "version": "2.0.6",
+      "bom-ref": "cpe:2.3:a::get-value:2.0.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::has-values:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/has-values@1.0.0",
+      "name": "has-values",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::has-values:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-number:3.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-number@3.0.0",
+      "name": "is-number",
+      "version": "3.0.0",
+      "bom-ref": "cpe:2.3:a::is-number:3.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::kind-of:4.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/kind-of@4.0.0",
+      "name": "kind-of",
+      "version": "4.0.0",
+      "bom-ref": "cpe:2.3:a::kind-of:4.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-buffer:1.1.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-buffer@1.1.6",
+      "name": "is-buffer",
+      "version": "1.1.6",
+      "bom-ref": "cpe:2.3:a::is-buffer:1.1.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::isobject:3.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/isobject@3.0.1",
+      "name": "isobject",
+      "version": "3.0.1",
+      "bom-ref": "cpe:2.3:a::isobject:3.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::isobject:3.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/isobject@3.0.1",
+      "name": "isobject",
+      "version": "3.0.1",
+      "bom-ref": "cpe:2.3:a::isobject:3.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::set-value:2.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/set-value@2.0.0",
+      "name": "set-value",
+      "version": "2.0.0",
+      "bom-ref": "cpe:2.3:a::set-value:2.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::extend-shallow:2.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/extend-shallow@2.0.1",
+      "name": "extend-shallow",
+      "version": "2.0.1",
+      "bom-ref": "cpe:2.3:a::extend-shallow:2.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-extendable:0.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-extendable@0.1.1",
+      "name": "is-extendable",
+      "version": "0.1.1",
+      "bom-ref": "cpe:2.3:a::is-extendable:0.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-extendable:0.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-extendable@0.1.1",
+      "name": "is-extendable",
+      "version": "0.1.1",
+      "bom-ref": "cpe:2.3:a::is-extendable:0.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-plain-object:2.0.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-plain-object@2.0.4",
+      "name": "is-plain-object",
+      "version": "2.0.4",
+      "bom-ref": "cpe:2.3:a::is-plain-object:2.0.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::isobject:3.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/isobject@3.0.1",
+      "name": "isobject",
+      "version": "3.0.1",
+      "bom-ref": "cpe:2.3:a::isobject:3.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::split-string:3.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/split-string@3.1.0",
+      "name": "split-string",
+      "version": "3.1.0",
+      "bom-ref": "cpe:2.3:a::split-string:3.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::extend-shallow:3.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/extend-shallow@3.0.2",
+      "name": "extend-shallow",
+      "version": "3.0.2",
+      "bom-ref": "cpe:2.3:a::extend-shallow:3.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::assign-symbols:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/assign-symbols@1.0.0",
+      "name": "assign-symbols",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::assign-symbols:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-extendable:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-extendable@1.0.1",
+      "name": "is-extendable",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::is-extendable:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-plain-object:2.0.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-plain-object@2.0.4",
+      "name": "is-plain-object",
+      "version": "2.0.4",
+      "bom-ref": "cpe:2.3:a::is-plain-object:2.0.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::to-object-path:0.3.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/to-object-path@0.3.0",
+      "name": "to-object-path",
+      "version": "0.3.0",
+      "bom-ref": "cpe:2.3:a::to-object-path:0.3.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::kind-of:3.2.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/kind-of@3.2.2",
+      "name": "kind-of",
+      "version": "3.2.2",
+      "bom-ref": "cpe:2.3:a::kind-of:3.2.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::union-value:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/union-value@1.0.0",
+      "name": "union-value",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::union-value:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::arr-union:3.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/arr-union@3.1.0",
+      "name": "arr-union",
+      "version": "3.1.0",
+      "bom-ref": "cpe:2.3:a::arr-union:3.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::get-value:2.0.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/get-value@2.0.6",
+      "name": "get-value",
+      "version": "2.0.6",
+      "bom-ref": "cpe:2.3:a::get-value:2.0.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-extendable:0.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-extendable@0.1.1",
+      "name": "is-extendable",
+      "version": "0.1.1",
+      "bom-ref": "cpe:2.3:a::is-extendable:0.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::set-value:0.4.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/set-value@0.4.3",
+      "name": "set-value",
+      "version": "0.4.3",
+      "bom-ref": "cpe:2.3:a::set-value:0.4.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::extend-shallow:2.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/extend-shallow@2.0.1",
+      "name": "extend-shallow",
+      "version": "2.0.1",
+      "bom-ref": "cpe:2.3:a::extend-shallow:2.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-extendable:0.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-extendable@0.1.1",
+      "name": "is-extendable",
+      "version": "0.1.1",
+      "bom-ref": "cpe:2.3:a::is-extendable:0.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-extendable:0.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-extendable@0.1.1",
+      "name": "is-extendable",
+      "version": "0.1.1",
+      "bom-ref": "cpe:2.3:a::is-extendable:0.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-plain-object:2.0.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-plain-object@2.0.4",
+      "name": "is-plain-object",
+      "version": "2.0.4",
+      "bom-ref": "cpe:2.3:a::is-plain-object:2.0.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::to-object-path:0.3.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/to-object-path@0.3.0",
+      "name": "to-object-path",
+      "version": "0.3.0",
+      "bom-ref": "cpe:2.3:a::to-object-path:0.3.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::unset-value:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/unset-value@1.0.0",
+      "name": "unset-value",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::unset-value:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::has-value:0.3.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/has-value@0.3.1",
+      "name": "has-value",
+      "version": "0.3.1",
+      "bom-ref": "cpe:2.3:a::has-value:0.3.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::get-value:2.0.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/get-value@2.0.6",
+      "name": "get-value",
+      "version": "2.0.6",
+      "bom-ref": "cpe:2.3:a::get-value:2.0.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::has-values:0.1.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/has-values@0.1.4",
+      "name": "has-values",
+      "version": "0.1.4",
+      "bom-ref": "cpe:2.3:a::has-values:0.1.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::isobject:2.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/isobject@2.1.0",
+      "name": "isobject",
+      "version": "2.1.0",
+      "bom-ref": "cpe:2.3:a::isobject:2.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::isarray:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/isarray@1.0.0",
+      "name": "isarray",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::isarray:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::isobject:3.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/isobject@3.0.1",
+      "name": "isobject",
+      "version": "3.0.1",
+      "bom-ref": "cpe:2.3:a::isobject:3.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::class-utils:0.3.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/class-utils@0.3.6",
+      "name": "class-utils",
+      "version": "0.3.6",
+      "bom-ref": "cpe:2.3:a::class-utils:0.3.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::arr-union:3.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/arr-union@3.1.0",
+      "name": "arr-union",
+      "version": "3.1.0",
+      "bom-ref": "cpe:2.3:a::arr-union:3.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::define-property:0.2.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/define-property@0.2.5",
+      "name": "define-property",
+      "version": "0.2.5",
+      "bom-ref": "cpe:2.3:a::define-property:0.2.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-descriptor:0.1.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-descriptor@0.1.6",
+      "name": "is-descriptor",
+      "version": "0.1.6",
+      "bom-ref": "cpe:2.3:a::is-descriptor:0.1.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-accessor-descriptor:0.1.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-accessor-descriptor@0.1.6",
+      "name": "is-accessor-descriptor",
+      "version": "0.1.6",
+      "bom-ref": "cpe:2.3:a::is-accessor-descriptor:0.1.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::kind-of:3.2.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/kind-of@3.2.2",
+      "name": "kind-of",
+      "version": "3.2.2",
+      "bom-ref": "cpe:2.3:a::kind-of:3.2.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-data-descriptor:0.1.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-data-descriptor@0.1.4",
+      "name": "is-data-descriptor",
+      "version": "0.1.4",
+      "bom-ref": "cpe:2.3:a::is-data-descriptor:0.1.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::kind-of:3.2.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/kind-of@3.2.2",
+      "name": "kind-of",
+      "version": "3.2.2",
+      "bom-ref": "cpe:2.3:a::kind-of:3.2.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::kind-of:5.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/kind-of@5.1.0",
+      "name": "kind-of",
+      "version": "5.1.0",
+      "bom-ref": "cpe:2.3:a::kind-of:5.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::isobject:3.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/isobject@3.0.1",
+      "name": "isobject",
+      "version": "3.0.1",
+      "bom-ref": "cpe:2.3:a::isobject:3.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::static-extend:0.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/static-extend@0.1.2",
+      "name": "static-extend",
+      "version": "0.1.2",
+      "bom-ref": "cpe:2.3:a::static-extend:0.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::define-property:0.2.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/define-property@0.2.5",
+      "name": "define-property",
+      "version": "0.2.5",
+      "bom-ref": "cpe:2.3:a::define-property:0.2.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-descriptor:0.1.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-descriptor@0.1.6",
+      "name": "is-descriptor",
+      "version": "0.1.6",
+      "bom-ref": "cpe:2.3:a::is-descriptor:0.1.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::object-copy:0.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/object-copy@0.1.0",
+      "name": "object-copy",
+      "version": "0.1.0",
+      "bom-ref": "cpe:2.3:a::object-copy:0.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::copy-descriptor:0.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/copy-descriptor@0.1.1",
+      "name": "copy-descriptor",
+      "version": "0.1.1",
+      "bom-ref": "cpe:2.3:a::copy-descriptor:0.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::define-property:0.2.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/define-property@0.2.5",
+      "name": "define-property",
+      "version": "0.2.5",
+      "bom-ref": "cpe:2.3:a::define-property:0.2.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-descriptor:0.1.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-descriptor@0.1.6",
+      "name": "is-descriptor",
+      "version": "0.1.6",
+      "bom-ref": "cpe:2.3:a::is-descriptor:0.1.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::kind-of:3.2.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/kind-of@3.2.2",
+      "name": "kind-of",
+      "version": "3.2.2",
+      "bom-ref": "cpe:2.3:a::kind-of:3.2.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::component-emitter:1.2.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/component-emitter@1.2.1",
+      "name": "component-emitter",
+      "version": "1.2.1",
+      "bom-ref": "cpe:2.3:a::component-emitter:1.2.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::define-property:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/define-property@1.0.0",
+      "name": "define-property",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::define-property:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-descriptor:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-descriptor@1.0.2",
+      "name": "is-descriptor",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::is-descriptor:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-accessor-descriptor:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-accessor-descriptor@1.0.0",
+      "name": "is-accessor-descriptor",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::is-accessor-descriptor:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::kind-of:6.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/kind-of@6.0.2",
+      "name": "kind-of",
+      "version": "6.0.2",
+      "bom-ref": "cpe:2.3:a::kind-of:6.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-data-descriptor:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-data-descriptor@1.0.0",
+      "name": "is-data-descriptor",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::is-data-descriptor:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::kind-of:6.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/kind-of@6.0.2",
+      "name": "kind-of",
+      "version": "6.0.2",
+      "bom-ref": "cpe:2.3:a::kind-of:6.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::kind-of:6.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/kind-of@6.0.2",
+      "name": "kind-of",
+      "version": "6.0.2",
+      "bom-ref": "cpe:2.3:a::kind-of:6.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::isobject:3.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/isobject@3.0.1",
+      "name": "isobject",
+      "version": "3.0.1",
+      "bom-ref": "cpe:2.3:a::isobject:3.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::mixin-deep:1.3.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/mixin-deep@1.3.1",
+      "name": "mixin-deep",
+      "version": "1.3.1",
+      "bom-ref": "cpe:2.3:a::mixin-deep:1.3.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::for-in:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/for-in@1.0.2",
+      "name": "for-in",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::for-in:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-extendable:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-extendable@1.0.1",
+      "name": "is-extendable",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::is-extendable:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-plain-object:2.0.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-plain-object@2.0.4",
+      "name": "is-plain-object",
+      "version": "2.0.4",
+      "bom-ref": "cpe:2.3:a::is-plain-object:2.0.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::pascalcase:0.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/pascalcase@0.1.1",
+      "name": "pascalcase",
+      "version": "0.1.1",
+      "bom-ref": "cpe:2.3:a::pascalcase:0.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::debug:2.6.9::*:*:*:*:*:*",
+      "purl": "pkg:npm/debug@2.6.9",
+      "name": "debug",
+      "version": "2.6.9",
+      "bom-ref": "cpe:2.3:a::debug:2.6.9::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::ms:2.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/ms@2.0.0",
+      "name": "ms",
+      "version": "2.0.0",
+      "bom-ref": "cpe:2.3:a::ms:2.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::define-property:0.2.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/define-property@0.2.5",
+      "name": "define-property",
+      "version": "0.2.5",
+      "bom-ref": "cpe:2.3:a::define-property:0.2.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-descriptor:0.1.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-descriptor@0.1.6",
+      "name": "is-descriptor",
+      "version": "0.1.6",
+      "bom-ref": "cpe:2.3:a::is-descriptor:0.1.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::extend-shallow:2.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/extend-shallow@2.0.1",
+      "name": "extend-shallow",
+      "version": "2.0.1",
+      "bom-ref": "cpe:2.3:a::extend-shallow:2.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-extendable:0.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-extendable@0.1.1",
+      "name": "is-extendable",
+      "version": "0.1.1",
+      "bom-ref": "cpe:2.3:a::is-extendable:0.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::map-cache:0.2.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/map-cache@0.2.2",
+      "name": "map-cache",
+      "version": "0.2.2",
+      "bom-ref": "cpe:2.3:a::map-cache:0.2.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::source-map:0.5.7::*:*:*:*:*:*",
+      "purl": "pkg:npm/source-map@0.5.7",
+      "name": "source-map",
+      "version": "0.5.7",
+      "bom-ref": "cpe:2.3:a::source-map:0.5.7::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::source-map-resolve:0.5.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/source-map-resolve@0.5.2",
+      "name": "source-map-resolve",
+      "version": "0.5.2",
+      "bom-ref": "cpe:2.3:a::source-map-resolve:0.5.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::atob:2.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/atob@2.1.2",
+      "name": "atob",
+      "version": "2.1.2",
+      "bom-ref": "cpe:2.3:a::atob:2.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::decode-uri-component:0.2.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/decode-uri-component@0.2.0",
+      "name": "decode-uri-component",
+      "version": "0.2.0",
+      "bom-ref": "cpe:2.3:a::decode-uri-component:0.2.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::resolve-url:0.2.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/resolve-url@0.2.1",
+      "name": "resolve-url",
+      "version": "0.2.1",
+      "bom-ref": "cpe:2.3:a::resolve-url:0.2.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::source-map-url:0.4.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/source-map-url@0.4.0",
+      "name": "source-map-url",
+      "version": "0.4.0",
+      "bom-ref": "cpe:2.3:a::source-map-url:0.4.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::urix:0.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/urix@0.1.0",
+      "name": "urix",
+      "version": "0.1.0",
+      "bom-ref": "cpe:2.3:a::urix:0.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::use:3.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/use@3.1.1",
+      "name": "use",
+      "version": "3.1.1",
+      "bom-ref": "cpe:2.3:a::use:3.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::snapdragon-node:2.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/snapdragon-node@2.1.1",
+      "name": "snapdragon-node",
+      "version": "2.1.1",
+      "bom-ref": "cpe:2.3:a::snapdragon-node:2.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::define-property:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/define-property@1.0.0",
+      "name": "define-property",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::define-property:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-descriptor:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-descriptor@1.0.2",
+      "name": "is-descriptor",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::is-descriptor:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-accessor-descriptor:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-accessor-descriptor@1.0.0",
+      "name": "is-accessor-descriptor",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::is-accessor-descriptor:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-data-descriptor:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-data-descriptor@1.0.0",
+      "name": "is-data-descriptor",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::is-data-descriptor:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::kind-of:6.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/kind-of@6.0.2",
+      "name": "kind-of",
+      "version": "6.0.2",
+      "bom-ref": "cpe:2.3:a::kind-of:6.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::isobject:3.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/isobject@3.0.1",
+      "name": "isobject",
+      "version": "3.0.1",
+      "bom-ref": "cpe:2.3:a::isobject:3.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::snapdragon-util:3.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/snapdragon-util@3.0.1",
+      "name": "snapdragon-util",
+      "version": "3.0.1",
+      "bom-ref": "cpe:2.3:a::snapdragon-util:3.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::kind-of:3.2.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/kind-of@3.2.2",
+      "name": "kind-of",
+      "version": "3.2.2",
+      "bom-ref": "cpe:2.3:a::kind-of:3.2.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::split-string:3.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/split-string@3.1.0",
+      "name": "split-string",
+      "version": "3.1.0",
+      "bom-ref": "cpe:2.3:a::split-string:3.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::to-regex:3.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/to-regex@3.0.2",
+      "name": "to-regex",
+      "version": "3.0.2",
+      "bom-ref": "cpe:2.3:a::to-regex:3.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::define-property:2.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/define-property@2.0.2",
+      "name": "define-property",
+      "version": "2.0.2",
+      "bom-ref": "cpe:2.3:a::define-property:2.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-descriptor:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-descriptor@1.0.2",
+      "name": "is-descriptor",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::is-descriptor:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-accessor-descriptor:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-accessor-descriptor@1.0.0",
+      "name": "is-accessor-descriptor",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::is-accessor-descriptor:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-data-descriptor:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-data-descriptor@1.0.0",
+      "name": "is-data-descriptor",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::is-data-descriptor:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::kind-of:6.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/kind-of@6.0.2",
+      "name": "kind-of",
+      "version": "6.0.2",
+      "bom-ref": "cpe:2.3:a::kind-of:6.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::isobject:3.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/isobject@3.0.1",
+      "name": "isobject",
+      "version": "3.0.1",
+      "bom-ref": "cpe:2.3:a::isobject:3.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::extend-shallow:3.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/extend-shallow@3.0.2",
+      "name": "extend-shallow",
+      "version": "3.0.2",
+      "bom-ref": "cpe:2.3:a::extend-shallow:3.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::regex-not:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/regex-not@1.0.2",
+      "name": "regex-not",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::regex-not:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::extend-shallow:3.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/extend-shallow@3.0.2",
+      "name": "extend-shallow",
+      "version": "3.0.2",
+      "bom-ref": "cpe:2.3:a::extend-shallow:3.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::safe-regex:1.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/safe-regex@1.1.0",
+      "name": "safe-regex",
+      "version": "1.1.0",
+      "bom-ref": "cpe:2.3:a::safe-regex:1.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::ret:0.1.15::*:*:*:*:*:*",
+      "purl": "pkg:npm/ret@0.1.15",
+      "name": "ret",
+      "version": "0.1.15",
+      "bom-ref": "cpe:2.3:a::ret:0.1.15::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::safe-regex:1.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/safe-regex@1.1.0",
+      "name": "safe-regex",
+      "version": "1.1.0",
+      "bom-ref": "cpe:2.3:a::safe-regex:1.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::define-property:2.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/define-property@2.0.2",
+      "name": "define-property",
+      "version": "2.0.2",
+      "bom-ref": "cpe:2.3:a::define-property:2.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::extend-shallow:3.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/extend-shallow@3.0.2",
+      "name": "extend-shallow",
+      "version": "3.0.2",
+      "bom-ref": "cpe:2.3:a::extend-shallow:3.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::extglob:2.0.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/extglob@2.0.4",
+      "name": "extglob",
+      "version": "2.0.4",
+      "bom-ref": "cpe:2.3:a::extglob:2.0.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::array-unique:0.3.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/array-unique@0.3.2",
+      "name": "array-unique",
+      "version": "0.3.2",
+      "bom-ref": "cpe:2.3:a::array-unique:0.3.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::define-property:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/define-property@1.0.0",
+      "name": "define-property",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::define-property:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-descriptor:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-descriptor@1.0.2",
+      "name": "is-descriptor",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::is-descriptor:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-accessor-descriptor:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-accessor-descriptor@1.0.0",
+      "name": "is-accessor-descriptor",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::is-accessor-descriptor:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-data-descriptor:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-data-descriptor@1.0.0",
+      "name": "is-data-descriptor",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::is-data-descriptor:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::kind-of:6.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/kind-of@6.0.2",
+      "name": "kind-of",
+      "version": "6.0.2",
+      "bom-ref": "cpe:2.3:a::kind-of:6.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::expand-brackets:2.1.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/expand-brackets@2.1.4",
+      "name": "expand-brackets",
+      "version": "2.1.4",
+      "bom-ref": "cpe:2.3:a::expand-brackets:2.1.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::debug:2.6.9::*:*:*:*:*:*",
+      "purl": "pkg:npm/debug@2.6.9",
+      "name": "debug",
+      "version": "2.6.9",
+      "bom-ref": "cpe:2.3:a::debug:2.6.9::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::define-property:0.2.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/define-property@0.2.5",
+      "name": "define-property",
+      "version": "0.2.5",
+      "bom-ref": "cpe:2.3:a::define-property:0.2.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-descriptor:0.1.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-descriptor@0.1.6",
+      "name": "is-descriptor",
+      "version": "0.1.6",
+      "bom-ref": "cpe:2.3:a::is-descriptor:0.1.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::extend-shallow:2.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/extend-shallow@2.0.1",
+      "name": "extend-shallow",
+      "version": "2.0.1",
+      "bom-ref": "cpe:2.3:a::extend-shallow:2.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-extendable:0.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-extendable@0.1.1",
+      "name": "is-extendable",
+      "version": "0.1.1",
+      "bom-ref": "cpe:2.3:a::is-extendable:0.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::posix-character-classes:0.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/posix-character-classes@0.1.1",
+      "name": "posix-character-classes",
+      "version": "0.1.1",
+      "bom-ref": "cpe:2.3:a::posix-character-classes:0.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::regex-not:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/regex-not@1.0.2",
+      "name": "regex-not",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::regex-not:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::snapdragon:0.8.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/snapdragon@0.8.2",
+      "name": "snapdragon",
+      "version": "0.8.2",
+      "bom-ref": "cpe:2.3:a::snapdragon:0.8.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::to-regex:3.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/to-regex@3.0.2",
+      "name": "to-regex",
+      "version": "3.0.2",
+      "bom-ref": "cpe:2.3:a::to-regex:3.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::extend-shallow:2.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/extend-shallow@2.0.1",
+      "name": "extend-shallow",
+      "version": "2.0.1",
+      "bom-ref": "cpe:2.3:a::extend-shallow:2.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-extendable:0.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-extendable@0.1.1",
+      "name": "is-extendable",
+      "version": "0.1.1",
+      "bom-ref": "cpe:2.3:a::is-extendable:0.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::fragment-cache:0.2.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/fragment-cache@0.2.1",
+      "name": "fragment-cache",
+      "version": "0.2.1",
+      "bom-ref": "cpe:2.3:a::fragment-cache:0.2.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::map-cache:0.2.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/map-cache@0.2.2",
+      "name": "map-cache",
+      "version": "0.2.2",
+      "bom-ref": "cpe:2.3:a::map-cache:0.2.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::regex-not:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/regex-not@1.0.2",
+      "name": "regex-not",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::regex-not:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::snapdragon:0.8.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/snapdragon@0.8.2",
+      "name": "snapdragon",
+      "version": "0.8.2",
+      "bom-ref": "cpe:2.3:a::snapdragon:0.8.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::to-regex:3.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/to-regex@3.0.2",
+      "name": "to-regex",
+      "version": "3.0.2",
+      "bom-ref": "cpe:2.3:a::to-regex:3.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::fragment-cache:0.2.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/fragment-cache@0.2.1",
+      "name": "fragment-cache",
+      "version": "0.2.1",
+      "bom-ref": "cpe:2.3:a::fragment-cache:0.2.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::kind-of:6.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/kind-of@6.0.2",
+      "name": "kind-of",
+      "version": "6.0.2",
+      "bom-ref": "cpe:2.3:a::kind-of:6.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::nanomatch:1.2.13::*:*:*:*:*:*",
+      "purl": "pkg:npm/nanomatch@1.2.13",
+      "name": "nanomatch",
+      "version": "1.2.13",
+      "bom-ref": "cpe:2.3:a::nanomatch:1.2.13::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::arr-diff:4.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/arr-diff@4.0.0",
+      "name": "arr-diff",
+      "version": "4.0.0",
+      "bom-ref": "cpe:2.3:a::arr-diff:4.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::array-unique:0.3.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/array-unique@0.3.2",
+      "name": "array-unique",
+      "version": "0.3.2",
+      "bom-ref": "cpe:2.3:a::array-unique:0.3.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::define-property:2.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/define-property@2.0.2",
+      "name": "define-property",
+      "version": "2.0.2",
+      "bom-ref": "cpe:2.3:a::define-property:2.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::extend-shallow:3.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/extend-shallow@3.0.2",
+      "name": "extend-shallow",
+      "version": "3.0.2",
+      "bom-ref": "cpe:2.3:a::extend-shallow:3.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::fragment-cache:0.2.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/fragment-cache@0.2.1",
+      "name": "fragment-cache",
+      "version": "0.2.1",
+      "bom-ref": "cpe:2.3:a::fragment-cache:0.2.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-windows:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-windows@1.0.2",
+      "name": "is-windows",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::is-windows:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::kind-of:6.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/kind-of@6.0.2",
+      "name": "kind-of",
+      "version": "6.0.2",
+      "bom-ref": "cpe:2.3:a::kind-of:6.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::object.pick:1.3.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/object.pick@1.3.0",
+      "name": "object.pick",
+      "version": "1.3.0",
+      "bom-ref": "cpe:2.3:a::object.pick:1.3.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::isobject:3.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/isobject@3.0.1",
+      "name": "isobject",
+      "version": "3.0.1",
+      "bom-ref": "cpe:2.3:a::isobject:3.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::regex-not:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/regex-not@1.0.2",
+      "name": "regex-not",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::regex-not:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::snapdragon:0.8.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/snapdragon@0.8.2",
+      "name": "snapdragon",
+      "version": "0.8.2",
+      "bom-ref": "cpe:2.3:a::snapdragon:0.8.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::to-regex:3.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/to-regex@3.0.2",
+      "name": "to-regex",
+      "version": "3.0.2",
+      "bom-ref": "cpe:2.3:a::to-regex:3.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::object.pick:1.3.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/object.pick@1.3.0",
+      "name": "object.pick",
+      "version": "1.3.0",
+      "bom-ref": "cpe:2.3:a::object.pick:1.3.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::regex-not:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/regex-not@1.0.2",
+      "name": "regex-not",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::regex-not:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::snapdragon:0.8.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/snapdragon@0.8.2",
+      "name": "snapdragon",
+      "version": "0.8.2",
+      "bom-ref": "cpe:2.3:a::snapdragon:0.8.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::to-regex:3.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/to-regex@3.0.2",
+      "name": "to-regex",
+      "version": "3.0.2",
+      "bom-ref": "cpe:2.3:a::to-regex:3.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::normalize-path:2.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/normalize-path@2.1.1",
+      "name": "normalize-path",
+      "version": "2.1.1",
+      "bom-ref": "cpe:2.3:a::normalize-path:2.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::remove-trailing-separator:1.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/remove-trailing-separator@1.1.0",
+      "name": "remove-trailing-separator",
+      "version": "1.1.0",
+      "bom-ref": "cpe:2.3:a::remove-trailing-separator:1.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::async-each:1.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/async-each@1.0.3",
+      "name": "async-each",
+      "version": "1.0.3",
+      "bom-ref": "cpe:2.3:a::async-each:1.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::braces:2.3.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/braces@2.3.2",
+      "name": "braces",
+      "version": "2.3.2",
+      "bom-ref": "cpe:2.3:a::braces:2.3.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::fsevents:1.2.9::*:*:*:*:*:*",
+      "purl": "pkg:npm/fsevents@1.2.9",
+      "name": "fsevents",
+      "version": "1.2.9",
+      "bom-ref": "cpe:2.3:a::fsevents:1.2.9::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::nan:2.14.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/nan@2.14.0",
+      "name": "nan",
+      "version": "2.14.0",
+      "bom-ref": "cpe:2.3:a::nan:2.14.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::node-pre-gyp:0.12.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/node-pre-gyp@0.12.0",
+      "name": "node-pre-gyp",
+      "version": "0.12.0",
+      "bom-ref": "cpe:2.3:a::node-pre-gyp:0.12.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::detect-libc:1.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/detect-libc@1.0.3",
+      "name": "detect-libc",
+      "version": "1.0.3",
+      "bom-ref": "cpe:2.3:a::detect-libc:1.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::mkdirp:0.5.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/mkdirp@0.5.1",
+      "name": "mkdirp",
+      "version": "0.5.1",
+      "bom-ref": "cpe:2.3:a::mkdirp:0.5.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::minimist:0.0.8::*:*:*:*:*:*",
+      "purl": "pkg:npm/minimist@0.0.8",
+      "name": "minimist",
+      "version": "0.0.8",
+      "bom-ref": "cpe:2.3:a::minimist:0.0.8::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::needle:2.3.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/needle@2.3.0",
+      "name": "needle",
+      "version": "2.3.0",
+      "bom-ref": "cpe:2.3:a::needle:2.3.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::debug:4.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/debug@4.1.1",
+      "name": "debug",
+      "version": "4.1.1",
+      "bom-ref": "cpe:2.3:a::debug:4.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::ms:2.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/ms@2.1.2",
+      "name": "ms",
+      "version": "2.1.2",
+      "bom-ref": "cpe:2.3:a::ms:2.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::iconv-lite:0.4.24::*:*:*:*:*:*",
+      "purl": "pkg:npm/iconv-lite@0.4.24",
+      "name": "iconv-lite",
+      "version": "0.4.24",
+      "bom-ref": "cpe:2.3:a::iconv-lite:0.4.24::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::safer-buffer:2.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/safer-buffer@2.1.2",
+      "name": "safer-buffer",
+      "version": "2.1.2",
+      "bom-ref": "cpe:2.3:a::safer-buffer:2.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::sax:1.2.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/sax@1.2.4",
+      "name": "sax",
+      "version": "1.2.4",
+      "bom-ref": "cpe:2.3:a::sax:1.2.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::nopt:4.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/nopt@4.0.1",
+      "name": "nopt",
+      "version": "4.0.1",
+      "bom-ref": "cpe:2.3:a::nopt:4.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::abbrev:1.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/abbrev@1.1.1",
+      "name": "abbrev",
+      "version": "1.1.1",
+      "bom-ref": "cpe:2.3:a::abbrev:1.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::osenv:0.1.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/osenv@0.1.5",
+      "name": "osenv",
+      "version": "0.1.5",
+      "bom-ref": "cpe:2.3:a::osenv:0.1.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::os-homedir:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/os-homedir@1.0.2",
+      "name": "os-homedir",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::os-homedir:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::os-tmpdir:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/os-tmpdir@1.0.2",
+      "name": "os-tmpdir",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::os-tmpdir:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::npm-packlist:1.4.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/npm-packlist@1.4.1",
+      "name": "npm-packlist",
+      "version": "1.4.1",
+      "bom-ref": "cpe:2.3:a::npm-packlist:1.4.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::ignore-walk:3.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/ignore-walk@3.0.1",
+      "name": "ignore-walk",
+      "version": "3.0.1",
+      "bom-ref": "cpe:2.3:a::ignore-walk:3.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::minimatch:3.0.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/minimatch@3.0.4",
+      "name": "minimatch",
+      "version": "3.0.4",
+      "bom-ref": "cpe:2.3:a::minimatch:3.0.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::brace-expansion:1.1.11::*:*:*:*:*:*",
+      "purl": "pkg:npm/brace-expansion@1.1.11",
+      "name": "brace-expansion",
+      "version": "1.1.11",
+      "bom-ref": "cpe:2.3:a::brace-expansion:1.1.11::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::balanced-match:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/balanced-match@1.0.0",
+      "name": "balanced-match",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::balanced-match:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::concat-map:0.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/concat-map@0.0.1",
+      "name": "concat-map",
+      "version": "0.0.1",
+      "bom-ref": "cpe:2.3:a::concat-map:0.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::npm-bundled:1.0.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/npm-bundled@1.0.6",
+      "name": "npm-bundled",
+      "version": "1.0.6",
+      "bom-ref": "cpe:2.3:a::npm-bundled:1.0.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::npmlog:4.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/npmlog@4.1.2",
+      "name": "npmlog",
+      "version": "4.1.2",
+      "bom-ref": "cpe:2.3:a::npmlog:4.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::are-we-there-yet:1.1.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/are-we-there-yet@1.1.5",
+      "name": "are-we-there-yet",
+      "version": "1.1.5",
+      "bom-ref": "cpe:2.3:a::are-we-there-yet:1.1.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::delegates:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/delegates@1.0.0",
+      "name": "delegates",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::delegates:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::readable-stream:2.3.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/readable-stream@2.3.6",
+      "name": "readable-stream",
+      "version": "2.3.6",
+      "bom-ref": "cpe:2.3:a::readable-stream:2.3.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::core-util-is:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/core-util-is@1.0.2",
+      "name": "core-util-is",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::core-util-is:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::inherits:2.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/inherits@2.0.3",
+      "name": "inherits",
+      "version": "2.0.3",
+      "bom-ref": "cpe:2.3:a::inherits:2.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::isarray:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/isarray@1.0.0",
+      "name": "isarray",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::isarray:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::process-nextick-args:2.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/process-nextick-args@2.0.0",
+      "name": "process-nextick-args",
+      "version": "2.0.0",
+      "bom-ref": "cpe:2.3:a::process-nextick-args:2.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::safe-buffer:5.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/safe-buffer@5.1.2",
+      "name": "safe-buffer",
+      "version": "5.1.2",
+      "bom-ref": "cpe:2.3:a::safe-buffer:5.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::string_decoder:1.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/string_decoder@1.1.1",
+      "name": "string_decoder",
+      "version": "1.1.1",
+      "bom-ref": "cpe:2.3:a::string_decoder:1.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::safe-buffer:5.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/safe-buffer@5.1.2",
+      "name": "safe-buffer",
+      "version": "5.1.2",
+      "bom-ref": "cpe:2.3:a::safe-buffer:5.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::util-deprecate:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/util-deprecate@1.0.2",
+      "name": "util-deprecate",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::util-deprecate:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::console-control-strings:1.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/console-control-strings@1.1.0",
+      "name": "console-control-strings",
+      "version": "1.1.0",
+      "bom-ref": "cpe:2.3:a::console-control-strings:1.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::gauge:2.7.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/gauge@2.7.4",
+      "name": "gauge",
+      "version": "2.7.4",
+      "bom-ref": "cpe:2.3:a::gauge:2.7.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::aproba:1.2.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/aproba@1.2.0",
+      "name": "aproba",
+      "version": "1.2.0",
+      "bom-ref": "cpe:2.3:a::aproba:1.2.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::console-control-strings:1.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/console-control-strings@1.1.0",
+      "name": "console-control-strings",
+      "version": "1.1.0",
+      "bom-ref": "cpe:2.3:a::console-control-strings:1.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::has-unicode:2.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/has-unicode@2.0.1",
+      "name": "has-unicode",
+      "version": "2.0.1",
+      "bom-ref": "cpe:2.3:a::has-unicode:2.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::object-assign:4.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/object-assign@4.1.1",
+      "name": "object-assign",
+      "version": "4.1.1",
+      "bom-ref": "cpe:2.3:a::object-assign:4.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::signal-exit:3.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/signal-exit@3.0.2",
+      "name": "signal-exit",
+      "version": "3.0.2",
+      "bom-ref": "cpe:2.3:a::signal-exit:3.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::string-width:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/string-width@1.0.2",
+      "name": "string-width",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::string-width:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::code-point-at:1.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/code-point-at@1.1.0",
+      "name": "code-point-at",
+      "version": "1.1.0",
+      "bom-ref": "cpe:2.3:a::code-point-at:1.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-fullwidth-code-point:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-fullwidth-code-point@1.0.0",
+      "name": "is-fullwidth-code-point",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::is-fullwidth-code-point:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::number-is-nan:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/number-is-nan@1.0.1",
+      "name": "number-is-nan",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::number-is-nan:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::strip-ansi:3.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/strip-ansi@3.0.1",
+      "name": "strip-ansi",
+      "version": "3.0.1",
+      "bom-ref": "cpe:2.3:a::strip-ansi:3.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::ansi-regex:2.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/ansi-regex@2.1.1",
+      "name": "ansi-regex",
+      "version": "2.1.1",
+      "bom-ref": "cpe:2.3:a::ansi-regex:2.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::strip-ansi:3.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/strip-ansi@3.0.1",
+      "name": "strip-ansi",
+      "version": "3.0.1",
+      "bom-ref": "cpe:2.3:a::strip-ansi:3.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::wide-align:1.1.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/wide-align@1.1.3",
+      "name": "wide-align",
+      "version": "1.1.3",
+      "bom-ref": "cpe:2.3:a::wide-align:1.1.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::string-width:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/string-width@1.0.2",
+      "name": "string-width",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::string-width:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::set-blocking:2.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/set-blocking@2.0.0",
+      "name": "set-blocking",
+      "version": "2.0.0",
+      "bom-ref": "cpe:2.3:a::set-blocking:2.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::rc:1.2.8::*:*:*:*:*:*",
+      "purl": "pkg:npm/rc@1.2.8",
+      "name": "rc",
+      "version": "1.2.8",
+      "bom-ref": "cpe:2.3:a::rc:1.2.8::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::deep-extend:0.6.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/deep-extend@0.6.0",
+      "name": "deep-extend",
+      "version": "0.6.0",
+      "bom-ref": "cpe:2.3:a::deep-extend:0.6.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::ini:1.3.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/ini@1.3.5",
+      "name": "ini",
+      "version": "1.3.5",
+      "bom-ref": "cpe:2.3:a::ini:1.3.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::minimist:1.2.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/minimist@1.2.0",
+      "name": "minimist",
+      "version": "1.2.0",
+      "bom-ref": "cpe:2.3:a::minimist:1.2.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::strip-json-comments:2.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/strip-json-comments@2.0.1",
+      "name": "strip-json-comments",
+      "version": "2.0.1",
+      "bom-ref": "cpe:2.3:a::strip-json-comments:2.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::rimraf:2.6.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/rimraf@2.6.3",
+      "name": "rimraf",
+      "version": "2.6.3",
+      "bom-ref": "cpe:2.3:a::rimraf:2.6.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::glob:7.1.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/glob@7.1.3",
+      "name": "glob",
+      "version": "7.1.3",
+      "bom-ref": "cpe:2.3:a::glob:7.1.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::fs.realpath:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/fs.realpath@1.0.0",
+      "name": "fs.realpath",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::fs.realpath:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::inflight:1.0.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/inflight@1.0.6",
+      "name": "inflight",
+      "version": "1.0.6",
+      "bom-ref": "cpe:2.3:a::inflight:1.0.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::once:1.4.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/once@1.4.0",
+      "name": "once",
+      "version": "1.4.0",
+      "bom-ref": "cpe:2.3:a::once:1.4.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::wrappy:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/wrappy@1.0.2",
+      "name": "wrappy",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::wrappy:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::wrappy:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/wrappy@1.0.2",
+      "name": "wrappy",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::wrappy:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::inherits:2.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/inherits@2.0.3",
+      "name": "inherits",
+      "version": "2.0.3",
+      "bom-ref": "cpe:2.3:a::inherits:2.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::minimatch:3.0.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/minimatch@3.0.4",
+      "name": "minimatch",
+      "version": "3.0.4",
+      "bom-ref": "cpe:2.3:a::minimatch:3.0.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::once:1.4.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/once@1.4.0",
+      "name": "once",
+      "version": "1.4.0",
+      "bom-ref": "cpe:2.3:a::once:1.4.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::wrappy:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/wrappy@1.0.2",
+      "name": "wrappy",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::wrappy:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::path-is-absolute:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/path-is-absolute@1.0.1",
+      "name": "path-is-absolute",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::path-is-absolute:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::semver:5.7.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/semver@5.7.0",
+      "name": "semver",
+      "version": "5.7.0",
+      "bom-ref": "cpe:2.3:a::semver:5.7.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::tar:4.4.8::*:*:*:*:*:*",
+      "purl": "pkg:npm/tar@4.4.8",
+      "name": "tar",
+      "version": "4.4.8",
+      "bom-ref": "cpe:2.3:a::tar:4.4.8::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::chownr:1.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/chownr@1.1.1",
+      "name": "chownr",
+      "version": "1.1.1",
+      "bom-ref": "cpe:2.3:a::chownr:1.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::fs-minipass:1.2.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/fs-minipass@1.2.5",
+      "name": "fs-minipass",
+      "version": "1.2.5",
+      "bom-ref": "cpe:2.3:a::fs-minipass:1.2.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::minipass:2.3.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/minipass@2.3.5",
+      "name": "minipass",
+      "version": "2.3.5",
+      "bom-ref": "cpe:2.3:a::minipass:2.3.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::safe-buffer:5.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/safe-buffer@5.1.2",
+      "name": "safe-buffer",
+      "version": "5.1.2",
+      "bom-ref": "cpe:2.3:a::safe-buffer:5.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::yallist:3.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/yallist@3.0.3",
+      "name": "yallist",
+      "version": "3.0.3",
+      "bom-ref": "cpe:2.3:a::yallist:3.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::minipass:2.3.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/minipass@2.3.5",
+      "name": "minipass",
+      "version": "2.3.5",
+      "bom-ref": "cpe:2.3:a::minipass:2.3.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::minizlib:1.2.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/minizlib@1.2.1",
+      "name": "minizlib",
+      "version": "1.2.1",
+      "bom-ref": "cpe:2.3:a::minizlib:1.2.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::minipass:2.3.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/minipass@2.3.5",
+      "name": "minipass",
+      "version": "2.3.5",
+      "bom-ref": "cpe:2.3:a::minipass:2.3.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::mkdirp:0.5.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/mkdirp@0.5.1",
+      "name": "mkdirp",
+      "version": "0.5.1",
+      "bom-ref": "cpe:2.3:a::mkdirp:0.5.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::minimist:0.0.8::*:*:*:*:*:*",
+      "purl": "pkg:npm/minimist@0.0.8",
+      "name": "minimist",
+      "version": "0.0.8",
+      "bom-ref": "cpe:2.3:a::minimist:0.0.8::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::safe-buffer:5.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/safe-buffer@5.1.2",
+      "name": "safe-buffer",
+      "version": "5.1.2",
+      "bom-ref": "cpe:2.3:a::safe-buffer:5.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::yallist:3.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/yallist@3.0.3",
+      "name": "yallist",
+      "version": "3.0.3",
+      "bom-ref": "cpe:2.3:a::yallist:3.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::glob-parent:3.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/glob-parent@3.1.0",
+      "name": "glob-parent",
+      "version": "3.1.0",
+      "bom-ref": "cpe:2.3:a::glob-parent:3.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-glob:3.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-glob@3.1.0",
+      "name": "is-glob",
+      "version": "3.1.0",
+      "bom-ref": "cpe:2.3:a::is-glob:3.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-extglob:2.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-extglob@2.1.1",
+      "name": "is-extglob",
+      "version": "2.1.1",
+      "bom-ref": "cpe:2.3:a::is-extglob:2.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::path-dirname:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/path-dirname@1.0.2",
+      "name": "path-dirname",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::path-dirname:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::inherits:2.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/inherits@2.0.3",
+      "name": "inherits",
+      "version": "2.0.3",
+      "bom-ref": "cpe:2.3:a::inherits:2.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-binary-path:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-binary-path@1.0.1",
+      "name": "is-binary-path",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::is-binary-path:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::binary-extensions:1.13.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/binary-extensions@1.13.1",
+      "name": "binary-extensions",
+      "version": "1.13.1",
+      "bom-ref": "cpe:2.3:a::binary-extensions:1.13.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-glob:4.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-glob@4.0.1",
+      "name": "is-glob",
+      "version": "4.0.1",
+      "bom-ref": "cpe:2.3:a::is-glob:4.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-extglob:2.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-extglob@2.1.1",
+      "name": "is-extglob",
+      "version": "2.1.1",
+      "bom-ref": "cpe:2.3:a::is-extglob:2.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::normalize-path:3.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/normalize-path@3.0.0",
+      "name": "normalize-path",
+      "version": "3.0.0",
+      "bom-ref": "cpe:2.3:a::normalize-path:3.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::path-is-absolute:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/path-is-absolute@1.0.1",
+      "name": "path-is-absolute",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::path-is-absolute:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::readdirp:2.2.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/readdirp@2.2.1",
+      "name": "readdirp",
+      "version": "2.2.1",
+      "bom-ref": "cpe:2.3:a::readdirp:2.2.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::graceful-fs:4.1.15::*:*:*:*:*:*",
+      "purl": "pkg:npm/graceful-fs@4.1.15",
+      "name": "graceful-fs",
+      "version": "4.1.15",
+      "bom-ref": "cpe:2.3:a::graceful-fs:4.1.15::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::micromatch:3.1.10::*:*:*:*:*:*",
+      "purl": "pkg:npm/micromatch@3.1.10",
+      "name": "micromatch",
+      "version": "3.1.10",
+      "bom-ref": "cpe:2.3:a::micromatch:3.1.10::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::readable-stream:2.3.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/readable-stream@2.3.6",
+      "name": "readable-stream",
+      "version": "2.3.6",
+      "bom-ref": "cpe:2.3:a::readable-stream:2.3.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::upath:1.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/upath@1.1.2",
+      "name": "upath",
+      "version": "1.1.2",
+      "bom-ref": "cpe:2.3:a::upath:1.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::debug:3.2.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/debug@3.2.6",
+      "name": "debug",
+      "version": "3.2.6",
+      "bom-ref": "cpe:2.3:a::debug:3.2.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::ms:2.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/ms@2.1.2",
+      "name": "ms",
+      "version": "2.1.2",
+      "bom-ref": "cpe:2.3:a::ms:2.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::ignore-by-default:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/ignore-by-default@1.0.1",
+      "name": "ignore-by-default",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::ignore-by-default:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::minimatch:3.0.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/minimatch@3.0.4",
+      "name": "minimatch",
+      "version": "3.0.4",
+      "bom-ref": "cpe:2.3:a::minimatch:3.0.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::pstree.remy:1.1.7::*:*:*:*:*:*",
+      "purl": "pkg:npm/pstree.remy@1.1.7",
+      "name": "pstree.remy",
+      "version": "1.1.7",
+      "bom-ref": "cpe:2.3:a::pstree.remy:1.1.7::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::semver:5.6.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/semver@5.6.0",
+      "name": "semver",
+      "version": "5.6.0",
+      "bom-ref": "cpe:2.3:a::semver:5.6.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::supports-color:5.5.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/supports-color@5.5.0",
+      "name": "supports-color",
+      "version": "5.5.0",
+      "bom-ref": "cpe:2.3:a::supports-color:5.5.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::has-flag:3.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/has-flag@3.0.0",
+      "name": "has-flag",
+      "version": "3.0.0",
+      "bom-ref": "cpe:2.3:a::has-flag:3.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::touch:3.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/touch@3.1.0",
+      "name": "touch",
+      "version": "3.1.0",
+      "bom-ref": "cpe:2.3:a::touch:3.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::nopt:1.0.10::*:*:*:*:*:*",
+      "purl": "pkg:npm/nopt@1.0.10",
+      "name": "nopt",
+      "version": "1.0.10",
+      "bom-ref": "cpe:2.3:a::nopt:1.0.10::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::abbrev:1.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/abbrev@1.1.1",
+      "name": "abbrev",
+      "version": "1.1.1",
+      "bom-ref": "cpe:2.3:a::abbrev:1.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::undefsafe:2.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/undefsafe@2.0.2",
+      "name": "undefsafe",
+      "version": "2.0.2",
+      "bom-ref": "cpe:2.3:a::undefsafe:2.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::debug:2.6.9::*:*:*:*:*:*",
+      "purl": "pkg:npm/debug@2.6.9",
+      "name": "debug",
+      "version": "2.6.9",
+      "bom-ref": "cpe:2.3:a::debug:2.6.9::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::update-notifier:2.5.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/update-notifier@2.5.0",
+      "name": "update-notifier",
+      "version": "2.5.0",
+      "bom-ref": "cpe:2.3:a::update-notifier:2.5.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::boxen:1.3.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/boxen@1.3.0",
+      "name": "boxen",
+      "version": "1.3.0",
+      "bom-ref": "cpe:2.3:a::boxen:1.3.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::ansi-align:2.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/ansi-align@2.0.0",
+      "name": "ansi-align",
+      "version": "2.0.0",
+      "bom-ref": "cpe:2.3:a::ansi-align:2.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::string-width:2.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/string-width@2.1.1",
+      "name": "string-width",
+      "version": "2.1.1",
+      "bom-ref": "cpe:2.3:a::string-width:2.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-fullwidth-code-point:2.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-fullwidth-code-point@2.0.0",
+      "name": "is-fullwidth-code-point",
+      "version": "2.0.0",
+      "bom-ref": "cpe:2.3:a::is-fullwidth-code-point:2.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::strip-ansi:4.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/strip-ansi@4.0.0",
+      "name": "strip-ansi",
+      "version": "4.0.0",
+      "bom-ref": "cpe:2.3:a::strip-ansi:4.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::ansi-regex:3.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/ansi-regex@3.0.0",
+      "name": "ansi-regex",
+      "version": "3.0.0",
+      "bom-ref": "cpe:2.3:a::ansi-regex:3.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::camelcase:4.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/camelcase@4.1.0",
+      "name": "camelcase",
+      "version": "4.1.0",
+      "bom-ref": "cpe:2.3:a::camelcase:4.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::chalk:2.4.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/chalk@2.4.2",
+      "name": "chalk",
+      "version": "2.4.2",
+      "bom-ref": "cpe:2.3:a::chalk:2.4.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::ansi-styles:3.2.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/ansi-styles@3.2.1",
+      "name": "ansi-styles",
+      "version": "3.2.1",
+      "bom-ref": "cpe:2.3:a::ansi-styles:3.2.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::color-convert:1.9.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/color-convert@1.9.3",
+      "name": "color-convert",
+      "version": "1.9.3",
+      "bom-ref": "cpe:2.3:a::color-convert:1.9.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::color-name:1.1.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/color-name@1.1.3",
+      "name": "color-name",
+      "version": "1.1.3",
+      "bom-ref": "cpe:2.3:a::color-name:1.1.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::escape-string-regexp:1.0.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/escape-string-regexp@1.0.5",
+      "name": "escape-string-regexp",
+      "version": "1.0.5",
+      "bom-ref": "cpe:2.3:a::escape-string-regexp:1.0.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::supports-color:5.5.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/supports-color@5.5.0",
+      "name": "supports-color",
+      "version": "5.5.0",
+      "bom-ref": "cpe:2.3:a::supports-color:5.5.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::cli-boxes:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/cli-boxes@1.0.0",
+      "name": "cli-boxes",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::cli-boxes:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::string-width:2.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/string-width@2.1.1",
+      "name": "string-width",
+      "version": "2.1.1",
+      "bom-ref": "cpe:2.3:a::string-width:2.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-fullwidth-code-point:2.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-fullwidth-code-point@2.0.0",
+      "name": "is-fullwidth-code-point",
+      "version": "2.0.0",
+      "bom-ref": "cpe:2.3:a::is-fullwidth-code-point:2.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::strip-ansi:4.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/strip-ansi@4.0.0",
+      "name": "strip-ansi",
+      "version": "4.0.0",
+      "bom-ref": "cpe:2.3:a::strip-ansi:4.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::ansi-regex:3.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/ansi-regex@3.0.0",
+      "name": "ansi-regex",
+      "version": "3.0.0",
+      "bom-ref": "cpe:2.3:a::ansi-regex:3.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::term-size:1.2.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/term-size@1.2.0",
+      "name": "term-size",
+      "version": "1.2.0",
+      "bom-ref": "cpe:2.3:a::term-size:1.2.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::execa:0.7.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/execa@0.7.0",
+      "name": "execa",
+      "version": "0.7.0",
+      "bom-ref": "cpe:2.3:a::execa:0.7.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::cross-spawn:5.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/cross-spawn@5.1.0",
+      "name": "cross-spawn",
+      "version": "5.1.0",
+      "bom-ref": "cpe:2.3:a::cross-spawn:5.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::lru-cache:4.1.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/lru-cache@4.1.5",
+      "name": "lru-cache",
+      "version": "4.1.5",
+      "bom-ref": "cpe:2.3:a::lru-cache:4.1.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::pseudomap:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/pseudomap@1.0.2",
+      "name": "pseudomap",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::pseudomap:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::yallist:2.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/yallist@2.1.2",
+      "name": "yallist",
+      "version": "2.1.2",
+      "bom-ref": "cpe:2.3:a::yallist:2.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::shebang-command:1.2.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/shebang-command@1.2.0",
+      "name": "shebang-command",
+      "version": "1.2.0",
+      "bom-ref": "cpe:2.3:a::shebang-command:1.2.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::shebang-regex:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/shebang-regex@1.0.0",
+      "name": "shebang-regex",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::shebang-regex:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::which:1.3.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/which@1.3.1",
+      "name": "which",
+      "version": "1.3.1",
+      "bom-ref": "cpe:2.3:a::which:1.3.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::isexe:2.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/isexe@2.0.0",
+      "name": "isexe",
+      "version": "2.0.0",
+      "bom-ref": "cpe:2.3:a::isexe:2.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::get-stream:3.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/get-stream@3.0.0",
+      "name": "get-stream",
+      "version": "3.0.0",
+      "bom-ref": "cpe:2.3:a::get-stream:3.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-stream:1.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-stream@1.1.0",
+      "name": "is-stream",
+      "version": "1.1.0",
+      "bom-ref": "cpe:2.3:a::is-stream:1.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::npm-run-path:2.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/npm-run-path@2.0.2",
+      "name": "npm-run-path",
+      "version": "2.0.2",
+      "bom-ref": "cpe:2.3:a::npm-run-path:2.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::path-key:2.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/path-key@2.0.1",
+      "name": "path-key",
+      "version": "2.0.1",
+      "bom-ref": "cpe:2.3:a::path-key:2.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::p-finally:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/p-finally@1.0.0",
+      "name": "p-finally",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::p-finally:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::signal-exit:3.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/signal-exit@3.0.2",
+      "name": "signal-exit",
+      "version": "3.0.2",
+      "bom-ref": "cpe:2.3:a::signal-exit:3.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::strip-eof:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/strip-eof@1.0.0",
+      "name": "strip-eof",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::strip-eof:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::widest-line:2.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/widest-line@2.0.1",
+      "name": "widest-line",
+      "version": "2.0.1",
+      "bom-ref": "cpe:2.3:a::widest-line:2.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::string-width:2.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/string-width@2.1.1",
+      "name": "string-width",
+      "version": "2.1.1",
+      "bom-ref": "cpe:2.3:a::string-width:2.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-fullwidth-code-point:2.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-fullwidth-code-point@2.0.0",
+      "name": "is-fullwidth-code-point",
+      "version": "2.0.0",
+      "bom-ref": "cpe:2.3:a::is-fullwidth-code-point:2.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::strip-ansi:4.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/strip-ansi@4.0.0",
+      "name": "strip-ansi",
+      "version": "4.0.0",
+      "bom-ref": "cpe:2.3:a::strip-ansi:4.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::ansi-regex:3.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/ansi-regex@3.0.0",
+      "name": "ansi-regex",
+      "version": "3.0.0",
+      "bom-ref": "cpe:2.3:a::ansi-regex:3.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::chalk:2.4.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/chalk@2.4.2",
+      "name": "chalk",
+      "version": "2.4.2",
+      "bom-ref": "cpe:2.3:a::chalk:2.4.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::configstore:3.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/configstore@3.1.2",
+      "name": "configstore",
+      "version": "3.1.2",
+      "bom-ref": "cpe:2.3:a::configstore:3.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::dot-prop:4.2.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/dot-prop@4.2.0",
+      "name": "dot-prop",
+      "version": "4.2.0",
+      "bom-ref": "cpe:2.3:a::dot-prop:4.2.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-obj:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-obj@1.0.1",
+      "name": "is-obj",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::is-obj:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::graceful-fs:4.1.15::*:*:*:*:*:*",
+      "purl": "pkg:npm/graceful-fs@4.1.15",
+      "name": "graceful-fs",
+      "version": "4.1.15",
+      "bom-ref": "cpe:2.3:a::graceful-fs:4.1.15::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::make-dir:1.3.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/make-dir@1.3.0",
+      "name": "make-dir",
+      "version": "1.3.0",
+      "bom-ref": "cpe:2.3:a::make-dir:1.3.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::pify:3.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/pify@3.0.0",
+      "name": "pify",
+      "version": "3.0.0",
+      "bom-ref": "cpe:2.3:a::pify:3.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::unique-string:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/unique-string@1.0.0",
+      "name": "unique-string",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::unique-string:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::crypto-random-string:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/crypto-random-string@1.0.0",
+      "name": "crypto-random-string",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::crypto-random-string:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::write-file-atomic:2.4.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/write-file-atomic@2.4.3",
+      "name": "write-file-atomic",
+      "version": "2.4.3",
+      "bom-ref": "cpe:2.3:a::write-file-atomic:2.4.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::graceful-fs:4.1.15::*:*:*:*:*:*",
+      "purl": "pkg:npm/graceful-fs@4.1.15",
+      "name": "graceful-fs",
+      "version": "4.1.15",
+      "bom-ref": "cpe:2.3:a::graceful-fs:4.1.15::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::imurmurhash:0.1.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/imurmurhash@0.1.4",
+      "name": "imurmurhash",
+      "version": "0.1.4",
+      "bom-ref": "cpe:2.3:a::imurmurhash:0.1.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::signal-exit:3.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/signal-exit@3.0.2",
+      "name": "signal-exit",
+      "version": "3.0.2",
+      "bom-ref": "cpe:2.3:a::signal-exit:3.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::xdg-basedir:3.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/xdg-basedir@3.0.0",
+      "name": "xdg-basedir",
+      "version": "3.0.0",
+      "bom-ref": "cpe:2.3:a::xdg-basedir:3.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::import-lazy:2.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/import-lazy@2.1.0",
+      "name": "import-lazy",
+      "version": "2.1.0",
+      "bom-ref": "cpe:2.3:a::import-lazy:2.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-ci:1.2.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-ci@1.2.1",
+      "name": "is-ci",
+      "version": "1.2.1",
+      "bom-ref": "cpe:2.3:a::is-ci:1.2.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::ci-info:1.6.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/ci-info@1.6.0",
+      "name": "ci-info",
+      "version": "1.6.0",
+      "bom-ref": "cpe:2.3:a::ci-info:1.6.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-installed-globally:0.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-installed-globally@0.1.0",
+      "name": "is-installed-globally",
+      "version": "0.1.0",
+      "bom-ref": "cpe:2.3:a::is-installed-globally:0.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::global-dirs:0.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/global-dirs@0.1.1",
+      "name": "global-dirs",
+      "version": "0.1.1",
+      "bom-ref": "cpe:2.3:a::global-dirs:0.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::ini:1.3.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/ini@1.3.5",
+      "name": "ini",
+      "version": "1.3.5",
+      "bom-ref": "cpe:2.3:a::ini:1.3.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-path-inside:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-path-inside@1.0.1",
+      "name": "is-path-inside",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::is-path-inside:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::path-is-inside:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/path-is-inside@1.0.2",
+      "name": "path-is-inside",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::path-is-inside:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-npm:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-npm@1.0.0",
+      "name": "is-npm",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::is-npm:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::latest-version:3.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/latest-version@3.1.0",
+      "name": "latest-version",
+      "version": "3.1.0",
+      "bom-ref": "cpe:2.3:a::latest-version:3.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::package-json:4.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/package-json@4.0.1",
+      "name": "package-json",
+      "version": "4.0.1",
+      "bom-ref": "cpe:2.3:a::package-json:4.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::got:6.7.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/got@6.7.1",
+      "name": "got",
+      "version": "6.7.1",
+      "bom-ref": "cpe:2.3:a::got:6.7.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::create-error-class:3.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/create-error-class@3.0.2",
+      "name": "create-error-class",
+      "version": "3.0.2",
+      "bom-ref": "cpe:2.3:a::create-error-class:3.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::capture-stack-trace:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/capture-stack-trace@1.0.1",
+      "name": "capture-stack-trace",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::capture-stack-trace:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::duplexer3:0.1.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/duplexer3@0.1.4",
+      "name": "duplexer3",
+      "version": "0.1.4",
+      "bom-ref": "cpe:2.3:a::duplexer3:0.1.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::get-stream:3.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/get-stream@3.0.0",
+      "name": "get-stream",
+      "version": "3.0.0",
+      "bom-ref": "cpe:2.3:a::get-stream:3.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-redirect:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-redirect@1.0.0",
+      "name": "is-redirect",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::is-redirect:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-retry-allowed:1.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-retry-allowed@1.1.0",
+      "name": "is-retry-allowed",
+      "version": "1.1.0",
+      "bom-ref": "cpe:2.3:a::is-retry-allowed:1.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::is-stream:1.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/is-stream@1.1.0",
+      "name": "is-stream",
+      "version": "1.1.0",
+      "bom-ref": "cpe:2.3:a::is-stream:1.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::lowercase-keys:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/lowercase-keys@1.0.1",
+      "name": "lowercase-keys",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::lowercase-keys:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::safe-buffer:5.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/safe-buffer@5.1.2",
+      "name": "safe-buffer",
+      "version": "5.1.2",
+      "bom-ref": "cpe:2.3:a::safe-buffer:5.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::timed-out:4.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/timed-out@4.0.1",
+      "name": "timed-out",
+      "version": "4.0.1",
+      "bom-ref": "cpe:2.3:a::timed-out:4.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::unzip-response:2.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/unzip-response@2.0.1",
+      "name": "unzip-response",
+      "version": "2.0.1",
+      "bom-ref": "cpe:2.3:a::unzip-response:2.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::url-parse-lax:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/url-parse-lax@1.0.0",
+      "name": "url-parse-lax",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::url-parse-lax:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::prepend-http:1.0.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/prepend-http@1.0.4",
+      "name": "prepend-http",
+      "version": "1.0.4",
+      "bom-ref": "cpe:2.3:a::prepend-http:1.0.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::registry-auth-token:3.4.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/registry-auth-token@3.4.0",
+      "name": "registry-auth-token",
+      "version": "3.4.0",
+      "bom-ref": "cpe:2.3:a::registry-auth-token:3.4.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::rc:1.2.8::*:*:*:*:*:*",
+      "purl": "pkg:npm/rc@1.2.8",
+      "name": "rc",
+      "version": "1.2.8",
+      "bom-ref": "cpe:2.3:a::rc:1.2.8::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::deep-extend:0.6.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/deep-extend@0.6.0",
+      "name": "deep-extend",
+      "version": "0.6.0",
+      "bom-ref": "cpe:2.3:a::deep-extend:0.6.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::ini:1.3.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/ini@1.3.5",
+      "name": "ini",
+      "version": "1.3.5",
+      "bom-ref": "cpe:2.3:a::ini:1.3.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::minimist:1.2.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/minimist@1.2.0",
+      "name": "minimist",
+      "version": "1.2.0",
+      "bom-ref": "cpe:2.3:a::minimist:1.2.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::strip-json-comments:2.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/strip-json-comments@2.0.1",
+      "name": "strip-json-comments",
+      "version": "2.0.1",
+      "bom-ref": "cpe:2.3:a::strip-json-comments:2.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::safe-buffer:5.1.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/safe-buffer@5.1.2",
+      "name": "safe-buffer",
+      "version": "5.1.2",
+      "bom-ref": "cpe:2.3:a::safe-buffer:5.1.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::registry-url:3.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/registry-url@3.1.0",
+      "name": "registry-url",
+      "version": "3.1.0",
+      "bom-ref": "cpe:2.3:a::registry-url:3.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::rc:1.2.8::*:*:*:*:*:*",
+      "purl": "pkg:npm/rc@1.2.8",
+      "name": "rc",
+      "version": "1.2.8",
+      "bom-ref": "cpe:2.3:a::rc:1.2.8::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::semver:5.6.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/semver@5.6.0",
+      "name": "semver",
+      "version": "5.6.0",
+      "bom-ref": "cpe:2.3:a::semver:5.6.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::semver-diff:2.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/semver-diff@2.1.0",
+      "name": "semver-diff",
+      "version": "2.1.0",
+      "bom-ref": "cpe:2.3:a::semver-diff:2.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::semver:5.6.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/semver@5.6.0",
+      "name": "semver",
+      "version": "5.6.0",
+      "bom-ref": "cpe:2.3:a::semver:5.6.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::xdg-basedir:3.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/xdg-basedir@3.0.0",
+      "name": "xdg-basedir",
+      "version": "3.0.0",
+      "bom-ref": "cpe:2.3:a::xdg-basedir:3.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::selenium-webdriver:2.53.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/selenium-webdriver@2.53.3",
+      "name": "selenium-webdriver",
+      "version": "2.53.3",
+      "bom-ref": "cpe:2.3:a::selenium-webdriver:2.53.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::adm-zip:0.4.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/adm-zip@0.4.4",
+      "name": "adm-zip",
+      "version": "0.4.4",
+      "bom-ref": "cpe:2.3:a::adm-zip:0.4.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::rimraf:2.6.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/rimraf@2.6.3",
+      "name": "rimraf",
+      "version": "2.6.3",
+      "bom-ref": "cpe:2.3:a::rimraf:2.6.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::glob:7.1.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/glob@7.1.3",
+      "name": "glob",
+      "version": "7.1.3",
+      "bom-ref": "cpe:2.3:a::glob:7.1.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::fs.realpath:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/fs.realpath@1.0.0",
+      "name": "fs.realpath",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::fs.realpath:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::inflight:1.0.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/inflight@1.0.6",
+      "name": "inflight",
+      "version": "1.0.6",
+      "bom-ref": "cpe:2.3:a::inflight:1.0.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::once:1.4.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/once@1.4.0",
+      "name": "once",
+      "version": "1.4.0",
+      "bom-ref": "cpe:2.3:a::once:1.4.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::wrappy:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/wrappy@1.0.2",
+      "name": "wrappy",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::wrappy:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::wrappy:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/wrappy@1.0.2",
+      "name": "wrappy",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::wrappy:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::inherits:2.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/inherits@2.0.3",
+      "name": "inherits",
+      "version": "2.0.3",
+      "bom-ref": "cpe:2.3:a::inherits:2.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::minimatch:3.0.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/minimatch@3.0.4",
+      "name": "minimatch",
+      "version": "3.0.4",
+      "bom-ref": "cpe:2.3:a::minimatch:3.0.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::brace-expansion:1.1.11::*:*:*:*:*:*",
+      "purl": "pkg:npm/brace-expansion@1.1.11",
+      "name": "brace-expansion",
+      "version": "1.1.11",
+      "bom-ref": "cpe:2.3:a::brace-expansion:1.1.11::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::balanced-match:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/balanced-match@1.0.0",
+      "name": "balanced-match",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::balanced-match:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::concat-map:0.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/concat-map@0.0.1",
+      "name": "concat-map",
+      "version": "0.0.1",
+      "bom-ref": "cpe:2.3:a::concat-map:0.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::once:1.4.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/once@1.4.0",
+      "name": "once",
+      "version": "1.4.0",
+      "bom-ref": "cpe:2.3:a::once:1.4.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::path-is-absolute:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/path-is-absolute@1.0.1",
+      "name": "path-is-absolute",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::path-is-absolute:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::tmp:0.0.24::*:*:*:*:*:*",
+      "purl": "pkg:npm/tmp@0.0.24",
+      "name": "tmp",
+      "version": "0.0.24",
+      "bom-ref": "cpe:2.3:a::tmp:0.0.24::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::ws:1.1.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/ws@1.1.5",
+      "name": "ws",
+      "version": "1.1.5",
+      "bom-ref": "cpe:2.3:a::ws:1.1.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::options:0.0.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/options@0.0.6",
+      "name": "options",
+      "version": "0.0.6",
+      "bom-ref": "cpe:2.3:a::options:0.0.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::ultron:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/ultron@1.0.2",
+      "name": "ultron",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::ultron:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::xml2js:0.4.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/xml2js@0.4.4",
+      "name": "xml2js",
+      "version": "0.4.4",
+      "bom-ref": "cpe:2.3:a::xml2js:0.4.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::sax:0.6.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/sax@0.6.1",
+      "name": "sax",
+      "version": "0.6.1",
+      "bom-ref": "cpe:2.3:a::sax:0.6.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::xmlbuilder:10.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/xmlbuilder@10.1.1",
+      "name": "xmlbuilder",
+      "version": "10.1.1",
+      "bom-ref": "cpe:2.3:a::xmlbuilder:10.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::serve-favicon:2.5.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/serve-favicon@2.5.0",
+      "name": "serve-favicon",
+      "version": "2.5.0",
+      "bom-ref": "cpe:2.3:a::serve-favicon:2.5.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::etag:1.8.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/etag@1.8.1",
+      "name": "etag",
+      "version": "1.8.1",
+      "bom-ref": "cpe:2.3:a::etag:1.8.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::fresh:0.5.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/fresh@0.5.2",
+      "name": "fresh",
+      "version": "0.5.2",
+      "bom-ref": "cpe:2.3:a::fresh:0.5.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::ms:2.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/ms@2.1.1",
+      "name": "ms",
+      "version": "2.1.1",
+      "bom-ref": "cpe:2.3:a::ms:2.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::parseurl:1.3.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/parseurl@1.3.2",
+      "name": "parseurl",
+      "version": "1.3.2",
+      "bom-ref": "cpe:2.3:a::parseurl:1.3.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::safe-buffer:5.1.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/safe-buffer@5.1.1",
+      "name": "safe-buffer",
+      "version": "5.1.1",
+      "bom-ref": "cpe:2.3:a::safe-buffer:5.1.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::shelljs:0.3.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/shelljs@0.3.0",
+      "name": "shelljs",
+      "version": "0.3.0",
+      "bom-ref": "cpe:2.3:a::shelljs:0.3.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::should:8.4.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/should@8.4.0",
+      "name": "should",
+      "version": "8.4.0",
+      "bom-ref": "cpe:2.3:a::should:8.4.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::should-equal:0.8.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/should-equal@0.8.0",
+      "name": "should-equal",
+      "version": "0.8.0",
+      "bom-ref": "cpe:2.3:a::should-equal:0.8.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::should-type:0.2.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/should-type@0.2.0",
+      "name": "should-type",
+      "version": "0.2.0",
+      "bom-ref": "cpe:2.3:a::should-type:0.2.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::should-format:0.3.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/should-format@0.3.2",
+      "name": "should-format",
+      "version": "0.3.2",
+      "bom-ref": "cpe:2.3:a::should-format:0.3.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::should-type:0.2.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/should-type@0.2.0",
+      "name": "should-type",
+      "version": "0.2.0",
+      "bom-ref": "cpe:2.3:a::should-type:0.2.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::should-type:0.2.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/should-type@0.2.0",
+      "name": "should-type",
+      "version": "0.2.0",
+      "bom-ref": "cpe:2.3:a::should-type:0.2.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::sntp:1.0.9::*:*:*:*:*:*",
+      "purl": "pkg:npm/sntp@1.0.9",
+      "name": "sntp",
+      "version": "1.0.9",
+      "bom-ref": "cpe:2.3:a::sntp:1.0.9::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::hoek:2.16.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/hoek@2.16.3",
+      "name": "hoek",
+      "version": "2.16.3",
+      "bom-ref": "cpe:2.3:a::hoek:2.16.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::swig:1.4.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/swig@1.4.2",
+      "name": "swig",
+      "version": "1.4.2",
+      "bom-ref": "cpe:2.3:a::swig:1.4.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::optimist:0.6.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/optimist@0.6.1",
+      "name": "optimist",
+      "version": "0.6.1",
+      "bom-ref": "cpe:2.3:a::optimist:0.6.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::minimist:0.0.10::*:*:*:*:*:*",
+      "purl": "pkg:npm/minimist@0.0.10",
+      "name": "minimist",
+      "version": "0.0.10",
+      "bom-ref": "cpe:2.3:a::minimist:0.0.10::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::wordwrap:0.0.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/wordwrap@0.0.3",
+      "name": "wordwrap",
+      "version": "0.0.3",
+      "bom-ref": "cpe:2.3:a::wordwrap:0.0.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::uglify-js:2.4.24::*:*:*:*:*:*",
+      "purl": "pkg:npm/uglify-js@2.4.24",
+      "name": "uglify-js",
+      "version": "2.4.24",
+      "bom-ref": "cpe:2.3:a::uglify-js:2.4.24::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::async:0.2.10::*:*:*:*:*:*",
+      "purl": "pkg:npm/async@0.2.10",
+      "name": "async",
+      "version": "0.2.10",
+      "bom-ref": "cpe:2.3:a::async:0.2.10::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::source-map:0.1.34::*:*:*:*:*:*",
+      "purl": "pkg:npm/source-map@0.1.34",
+      "name": "source-map",
+      "version": "0.1.34",
+      "bom-ref": "cpe:2.3:a::source-map:0.1.34::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::amdefine:1.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/amdefine@1.0.1",
+      "name": "amdefine",
+      "version": "1.0.1",
+      "bom-ref": "cpe:2.3:a::amdefine:1.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::uglify-to-browserify:1.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/uglify-to-browserify@1.0.2",
+      "name": "uglify-to-browserify",
+      "version": "1.0.2",
+      "bom-ref": "cpe:2.3:a::uglify-to-browserify:1.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::yargs:3.5.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/yargs@3.5.4",
+      "name": "yargs",
+      "version": "3.5.4",
+      "bom-ref": "cpe:2.3:a::yargs:3.5.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::camelcase:1.2.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/camelcase@1.2.1",
+      "name": "camelcase",
+      "version": "1.2.1",
+      "bom-ref": "cpe:2.3:a::camelcase:1.2.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::decamelize:1.2.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/decamelize@1.2.0",
+      "name": "decamelize",
+      "version": "1.2.0",
+      "bom-ref": "cpe:2.3:a::decamelize:1.2.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::window-size:0.1.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/window-size@0.1.0",
+      "name": "window-size",
+      "version": "0.1.0",
+      "bom-ref": "cpe:2.3:a::window-size:0.1.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::wordwrap:0.0.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/wordwrap@0.0.2",
+      "name": "wordwrap",
+      "version": "0.0.2",
+      "bom-ref": "cpe:2.3:a::wordwrap:0.0.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::underscore:1.9.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/underscore@1.9.1",
+      "name": "underscore",
+      "version": "1.9.1",
+      "bom-ref": "cpe:2.3:a::underscore:1.9.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::zaproxy:0.2.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/zaproxy@0.2.0",
+      "name": "zaproxy",
+      "version": "0.2.0",
+      "bom-ref": "cpe:2.3:a::zaproxy:0.2.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::lodash:2.4.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/lodash@2.4.2",
+      "name": "lodash",
+      "version": "2.4.2",
+      "bom-ref": "cpe:2.3:a::lodash:2.4.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::request:2.36.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/request@2.36.0",
+      "name": "request",
+      "version": "2.36.0",
+      "bom-ref": "cpe:2.3:a::request:2.36.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::aws-sign2:0.5.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/aws-sign2@0.5.0",
+      "name": "aws-sign2",
+      "version": "0.5.0",
+      "bom-ref": "cpe:2.3:a::aws-sign2:0.5.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::forever-agent:0.5.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/forever-agent@0.5.2",
+      "name": "forever-agent",
+      "version": "0.5.2",
+      "bom-ref": "cpe:2.3:a::forever-agent:0.5.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::form-data:0.1.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/form-data@0.1.4",
+      "name": "form-data",
+      "version": "0.1.4",
+      "bom-ref": "cpe:2.3:a::form-data:0.1.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::async:0.9.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/async@0.9.2",
+      "name": "async",
+      "version": "0.9.2",
+      "bom-ref": "cpe:2.3:a::async:0.9.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::combined-stream:0.0.7::*:*:*:*:*:*",
+      "purl": "pkg:npm/combined-stream@0.0.7",
+      "name": "combined-stream",
+      "version": "0.0.7",
+      "bom-ref": "cpe:2.3:a::combined-stream:0.0.7::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::delayed-stream:0.0.5::*:*:*:*:*:*",
+      "purl": "pkg:npm/delayed-stream@0.0.5",
+      "name": "delayed-stream",
+      "version": "0.0.5",
+      "bom-ref": "cpe:2.3:a::delayed-stream:0.0.5::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::mime:1.2.11::*:*:*:*:*:*",
+      "purl": "pkg:npm/mime@1.2.11",
+      "name": "mime",
+      "version": "1.2.11",
+      "bom-ref": "cpe:2.3:a::mime:1.2.11::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::hawk:1.0.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/hawk@1.0.0",
+      "name": "hawk",
+      "version": "1.0.0",
+      "bom-ref": "cpe:2.3:a::hawk:1.0.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::boom:0.4.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/boom@0.4.2",
+      "name": "boom",
+      "version": "0.4.2",
+      "bom-ref": "cpe:2.3:a::boom:0.4.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::hoek:0.9.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/hoek@0.9.1",
+      "name": "hoek",
+      "version": "0.9.1",
+      "bom-ref": "cpe:2.3:a::hoek:0.9.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::cryptiles:0.2.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/cryptiles@0.2.2",
+      "name": "cryptiles",
+      "version": "0.2.2",
+      "bom-ref": "cpe:2.3:a::cryptiles:0.2.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::boom:0.4.2::*:*:*:*:*:*",
+      "purl": "pkg:npm/boom@0.4.2",
+      "name": "boom",
+      "version": "0.4.2",
+      "bom-ref": "cpe:2.3:a::boom:0.4.2::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::hoek:0.9.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/hoek@0.9.1",
+      "name": "hoek",
+      "version": "0.9.1",
+      "bom-ref": "cpe:2.3:a::hoek:0.9.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::sntp:0.2.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/sntp@0.2.4",
+      "name": "sntp",
+      "version": "0.2.4",
+      "bom-ref": "cpe:2.3:a::sntp:0.2.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::hoek:0.9.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/hoek@0.9.1",
+      "name": "hoek",
+      "version": "0.9.1",
+      "bom-ref": "cpe:2.3:a::hoek:0.9.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::http-signature:0.10.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/http-signature@0.10.1",
+      "name": "http-signature",
+      "version": "0.10.1",
+      "bom-ref": "cpe:2.3:a::http-signature:0.10.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::asn1:0.1.11::*:*:*:*:*:*",
+      "purl": "pkg:npm/asn1@0.1.11",
+      "name": "asn1",
+      "version": "0.1.11",
+      "bom-ref": "cpe:2.3:a::asn1:0.1.11::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::assert-plus:0.2.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/assert-plus@0.2.0",
+      "name": "assert-plus",
+      "version": "0.2.0",
+      "bom-ref": "cpe:2.3:a::assert-plus:0.2.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::ctype:0.5.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/ctype@0.5.3",
+      "name": "ctype",
+      "version": "0.5.3",
+      "bom-ref": "cpe:2.3:a::ctype:0.5.3::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::json-stringify-safe:5.0.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/json-stringify-safe@5.0.1",
+      "name": "json-stringify-safe",
+      "version": "5.0.1",
+      "bom-ref": "cpe:2.3:a::json-stringify-safe:5.0.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::mime:1.2.11::*:*:*:*:*:*",
+      "purl": "pkg:npm/mime@1.2.11",
+      "name": "mime",
+      "version": "1.2.11",
+      "bom-ref": "cpe:2.3:a::mime:1.2.11::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::node-uuid:1.4.8::*:*:*:*:*:*",
+      "purl": "pkg:npm/node-uuid@1.4.8",
+      "name": "node-uuid",
+      "version": "1.4.8",
+      "bom-ref": "cpe:2.3:a::node-uuid:1.4.8::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::oauth-sign:0.3.0::*:*:*:*:*:*",
+      "purl": "pkg:npm/oauth-sign@0.3.0",
+      "name": "oauth-sign",
+      "version": "0.3.0",
+      "bom-ref": "cpe:2.3:a::oauth-sign:0.3.0::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::qs:0.6.6::*:*:*:*:*:*",
+      "purl": "pkg:npm/qs@0.6.6",
+      "name": "qs",
+      "version": "0.6.6",
+      "bom-ref": "cpe:2.3:a::qs:0.6.6::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::tough-cookie:2.3.4::*:*:*:*:*:*",
+      "purl": "pkg:npm/tough-cookie@2.3.4",
+      "name": "tough-cookie",
+      "version": "2.3.4",
+      "bom-ref": "cpe:2.3:a::tough-cookie:2.3.4::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::punycode:1.4.1::*:*:*:*:*:*",
+      "purl": "pkg:npm/punycode@1.4.1",
+      "name": "punycode",
+      "version": "1.4.1",
+      "bom-ref": "cpe:2.3:a::punycode:1.4.1::*:*:*:*:*:*",
+      "licenses": []
+    },
+    {
+      "type": "library",
+      "description": "",
+      "cpe": "cpe:2.3:a::tunnel-agent:0.4.3::*:*:*:*:*:*",
+      "purl": "pkg:npm/tunnel-agent@0.4.3",
+      "name": "tunnel-agent",
+      "version": "0.4.3",
+      "bom-ref": "cpe:2.3:a::tunnel-agent:0.4.3::*:*:*:*:*:*",
+      "licenses": []
+    }
+  ],
+  "vulnerabilities": [
+    {
+      "id": "CVE-2018-1000620",
+      "bom-ref": "CVE-2018-1000620",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-rq8g-5pc5-wrhr",
+        "name": "GitHub"
+      },
+      "ratings": [
+        {
+          "score": 9.8,
+          "severity": "critical",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 5,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        331
+      ],
+      "description": "Insufficient Entropy in cryptiles\n\nVersions of `cryptiles` prior to 4.1.2 are vulnerable to Insufficient Entropy. The `randomDigits()` method does not provide sufficient entropy and its generates digits that are not evenly distributed.\n\n\n## Recommendation\n\nUpgrade to version 4.1.2. The package is deprecated and has been moved to `@hapi/cryptiles` and it is strongly recommended to use the maintained package.",
+      "recommendation": "",
+      "created": "2018-07-09T16:29:00+00:00",
+      "published": "2018-07-09T16:29:00+00:00",
+      "updated": "2018-09-10T16:07:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::cryptiles:2.0.5::*:*:*:*:*:*"
+        },
+        {
+          "ref": "cpe:2.3:a::cryptiles:0.2.2::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2018-3728",
+      "bom-ref": "CVE-2018-3728",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-jp4x-w63m-7wgm",
+        "name": "GitHub"
+      },
+      "ratings": [
+        {
+          "score": 8.8,
+          "severity": "high",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 6.5,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        471
+      ],
+      "description": "Prototype Pollution in hoek\n\nVersions of `hoek` prior to 4.2.1 and 5.0.3 are vulnerable to prototype pollution.\n\nThe `merge` function, and the `applyToDefaults` and `applyToDefaultsWithShallow` functions which leverage `merge` behind the scenes, are vulnerable to a prototype pollution attack when provided an _unvalidated_ payload created from a JSON string containing the `__proto__` property.\n\nThis can be demonstrated like so:\n\n```javascript\nvar Hoek = require('hoek');\nvar malicious_payload = '{\"__proto__\":{\"oops\":\"It works !\"}}';\n\nvar a = {};\nconsole.log(\"Before : \" + a.oops);\nHoek.merge({}, JSON.parse(malicious_payload));\nconsole.log(\"After : \" + a.oops);\n```\n\nThis type of attack can be used to overwrite existing properties causing a potential denial of service.\n\n\n## Recommendation\n\nUpdate to version 4.2.1, 5.0.3 or later.",
+      "recommendation": "",
+      "created": "2018-03-30T19:29:00+00:00",
+      "published": "2018-03-30T19:29:00+00:00",
+      "updated": "2019-10-09T23:40:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::hoek:2.16.3::*:*:*:*:*:*"
+        },
+        {
+          "ref": "cpe:2.3:a::hoek:0.9.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2017-18589",
+      "bom-ref": "CVE-2017-18589",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-18589",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 7.5,
+          "severity": "high",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 5,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        20
+      ],
+      "description": "An issue was discovered in the cookie crate before 0.7.6 for Rust. Large integers in the Max-Age of a cookie cause a panic.",
+      "recommendation": "",
+      "created": "2019-08-26T18:15:00+00:00",
+      "published": "2019-08-26T18:15:00+00:00",
+      "updated": "2019-08-30T13:21:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::cookie:0.3.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2021-29624",
+      "bom-ref": "CVE-2021-29624",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-rc4q-9m69-gqp8",
+        "name": "GitHub"
+      },
+      "ratings": [
+        {
+          "score": 6.5,
+          "severity": "medium",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 4.3,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        565
+      ],
+      "description": "Lack of protection against cookie tossing attacks in fastify-csrf\n\n### Impact\n\nUsers that used fastify-csrf with the \"double submit\" mechanism using cookies with an application deployed across multiple subdomains, e.g. \"heroku\"-style platform as a service. \n\n### Patches\n\nVersion 3.1.0 of the fastify-csrf fixes it. \nSee https://github.com/fastify/fastify-csrf/pull/51 and https://github.com/fastify/csrf/pull/2.\n\nThe user of the module would need to supply a `userInfo` when generating the CSRF token to fully implement the protection on their end. This is needed only for applications hosted on different subdomains.\n\n### Workarounds\n\nNone available.\n\n### References\n\n1. https://cheatsheetseries.owasp.org/cheatsheets/Cross-Site_Request_Forgery_Prevention_Cheat_Sheet.html\n2. https://owasp.org/www-pdf-archive/David_Johansson-Double_Defeat_of_Double-Submit_Cookie.pdf\n\n### Credits\n\nThis vulnerability was found by Xhelal Likaj <xhelallikaj20@gmail.com>.\n\n### For more information\nIf you have any questions or comments about this advisory:\n* Open an issue in [fastify-csrf](https://github.com/fastify/fastify-csrf)\n* Email us at [hello@matteocollina.com](mailto:hello@matteocollina.com)",
+      "recommendation": "",
+      "created": "2021-05-17T20:53:30+00:00",
+      "published": "2021-05-17T20:53:30+00:00",
+      "updated": "2021-05-26T21:22:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::csrf:3.0.6::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2021-3807",
+      "bom-ref": "CVE-2021-3807",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-3807",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 7.5,
+          "severity": "high",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 7.8,
+          "severity": "high",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [],
+      "description": "ansi-regex is vulnerable to Inefficient Regular Expression Complexity",
+      "recommendation": "",
+      "created": "2021-09-17T07:15:00+00:00",
+      "published": "2021-09-17T07:15:00+00:00",
+      "updated": "2021-09-17T07:15:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::ansi-regex:2.1.1::*:*:*:*:*:*"
+        },
+        {
+          "ref": "cpe:2.3:a::ansi-regex:3.0.0::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2020-7598",
+      "bom-ref": "CVE-2020-7598",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-vh95-rmgr-6w4m",
+        "name": "GitHub"
+      },
+      "ratings": [
+        {
+          "score": 5.6,
+          "severity": "medium",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 6.8,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        1321
+      ],
+      "description": "Prototype Pollution in minimist\n\nAffected versions of `minimist` are vulnerable to prototype pollution. Arguments are not properly sanitized, allowing an attacker to modify the prototype of `Object`, causing the addition or modification of an existing property that will exist on all objects.  \nParsing the argument `--__proto__.y=Polluted` adds a `y` property with value `Polluted` to all objects. The argument `--__proto__=Polluted` raises and uncaught error and crashes the application.  \nThis is exploitable if attackers have control over the arguments being passed to `minimist`.\n\n\n\n## Recommendation\n\nUpgrade to versions 0.2.1, 1.2.3 or later.",
+      "recommendation": "",
+      "created": "2020-03-11T23:15:00+00:00",
+      "published": "2020-03-11T23:15:00+00:00",
+      "updated": "2020-06-13T10:15:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::minimist:0.0.8::*:*:*:*:*:*"
+        },
+        {
+          "ref": "cpe:2.3:a::minimist:1.2.0::*:*:*:*:*:*"
+        },
+        {
+          "ref": "cpe:2.3:a::minimist:0.0.10::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2021-44906",
+      "bom-ref": "CVE-2021-44906",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-44906",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 9.8,
+          "severity": "critical",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 7.5,
+          "severity": "high",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        1321
+      ],
+      "description": "Minimist <=1.2.5 is vulnerable to Prototype Pollution via file index.js, function setKey() (lines 69-95).",
+      "recommendation": "",
+      "created": "2022-03-17T16:15:00+00:00",
+      "published": "2022-03-17T16:15:00+00:00",
+      "updated": "2022-03-17T16:15:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::minimist:0.0.8::*:*:*:*:*:*"
+        },
+        {
+          "ref": "cpe:2.3:a::minimist:1.2.0::*:*:*:*:*:*"
+        },
+        {
+          "ref": "cpe:2.3:a::minimist:0.0.10::*:*:*:*:*:*"
+        },
+        {
+          "ref": "cpe:2.3:a::minimist:1.2.5::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "debricked-171",
+      "bom-ref": "debricked-171",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-7fhm-mqm4-2wp7",
+        "name": "GitHub"
+      },
+      "ratings": [],
+      "cwes": [],
+      "description": "Withdrawn: ESLint dependencies are vulnerable (ReDoS and Prototype Pollution)\n\n**Withdrawn**\nGitHub has withdrawn this advisory in place of GHSA-vh95-rmgr-6w4m and GHSA-6chw-6frg-f759.\nThe reason for withdrawing is that some mistakes were made during the ingestion of CVE-2020-7598\nwhich caused this advisory to be published with incorrect information.\n\nIn order to provide accurate advisory information, new advisories were created:\n\n- minimist: https://github.com/advisories/GHSA-vh95-rmgr-6w4m\n- acorn: https://github.com/advisories/GHSA-6chw-6frg-f759",
+      "recommendation": "Change minimist to 1.2.2",
+      "created": "2020-03-13T20:36:16+00:00",
+      "published": "2020-03-13T20:36:16+00:00",
+      "updated": "2020-03-13T20:36:16+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::minimist:0.0.8::*:*:*:*:*:*"
+        },
+        {
+          "ref": "cpe:2.3:a::minimist:1.2.0::*:*:*:*:*:*"
+        },
+        {
+          "ref": "cpe:2.3:a::minimist:0.0.10::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2021-43138",
+      "bom-ref": "CVE-2021-43138",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-43138",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 7.8,
+          "severity": "high",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 6.8,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        1321
+      ],
+      "description": "In Async before 2.6.4 and 3.x before 3.2.2, a malicious user can obtain privileges via the mapValues() method, aka lib/internal/iterator.js createObjectIterator prototype pollution.",
+      "recommendation": "",
+      "created": "2022-04-06T17:15:00+00:00",
+      "published": "2022-04-06T17:15:00+00:00",
+      "updated": "2022-04-06T17:15:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::async:2.6.1::*:*:*:*:*:*"
+        },
+        {
+          "ref": "cpe:2.3:a::async:1.5.2::*:*:*:*:*:*"
+        },
+        {
+          "ref": "cpe:2.3:a::async:0.2.10::*:*:*:*:*:*"
+        },
+        {
+          "ref": "cpe:2.3:a::async:0.2.9::*:*:*:*:*:*"
+        },
+        {
+          "ref": "cpe:2.3:a::async:0.9.2::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2019-10744",
+      "bom-ref": "CVE-2019-10744",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-jf85-cpcp-j695",
+        "name": "GitHub"
+      },
+      "ratings": [
+        {
+          "score": 9.1,
+          "severity": "critical",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 6.4,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [],
+      "description": "Prototype Pollution in lodash\n\nVersions of `lodash` before 4.17.12 are vulnerable to Prototype Pollution.  The function `defaultsDeep` allows a malicious user to modify the prototype of `Object` via `{constructor: {prototype: {...}}}` causing the addition or modification of an existing property that will exist on all objects.\n\n\n\n\n## Recommendation\n\nUpdate to version 4.17.12 or later.",
+      "recommendation": "",
+      "created": "2019-07-26T00:15:00+00:00",
+      "published": "2019-07-26T00:15:00+00:00",
+      "updated": "2021-03-16T13:57:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::lodash:4.17.11::*:*:*:*:*:*"
+        },
+        {
+          "ref": "cpe:2.3:a::lodash:2.4.2::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2020-28500",
+      "bom-ref": "CVE-2020-28500",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-28500",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 5.3,
+          "severity": "medium",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 5,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [],
+      "description": "Lodash versions prior to 4.17.21 are vulnerable to Regular Expression Denial of Service (ReDoS) via the toNumber, trim and trimEnd functions.",
+      "recommendation": "",
+      "created": "2021-02-15T11:15:00+00:00",
+      "published": "2021-02-15T11:15:00+00:00",
+      "updated": "2021-03-26T12:30:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::lodash:4.17.11::*:*:*:*:*:*"
+        },
+        {
+          "ref": "cpe:2.3:a::lodash:4.17.20::*:*:*:*:*:*"
+        },
+        {
+          "ref": "cpe:2.3:a::lodash:2.4.2::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2020-8203",
+      "bom-ref": "CVE-2020-8203",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8203",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 7.4,
+          "severity": "high",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 5.8,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        1321
+      ],
+      "description": "Prototype pollution attack when using _.zipObjectDeep in lodash before 4.17.20.",
+      "recommendation": "",
+      "created": "2020-07-15T17:15:00+00:00",
+      "published": "2020-07-15T17:15:00+00:00",
+      "updated": "2021-06-14T18:15:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::lodash:4.17.11::*:*:*:*:*:*"
+        },
+        {
+          "ref": "cpe:2.3:a::lodash:2.4.2::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2021-23337",
+      "bom-ref": "CVE-2021-23337",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-35jh-r3h4-6jhm",
+        "name": "GitHub"
+      },
+      "ratings": [
+        {
+          "score": 7.2,
+          "severity": "high",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 6.5,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        77
+      ],
+      "description": "Command Injection in lodash\n\n`lodash` versions prior to 4.17.21 are vulnerable to Command Injection via the template function.",
+      "recommendation": "",
+      "created": "2021-02-15T13:15:00+00:00",
+      "published": "2021-02-15T13:15:00+00:00",
+      "updated": "2021-03-26T02:42:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::lodash:4.17.11::*:*:*:*:*:*"
+        },
+        {
+          "ref": "cpe:2.3:a::lodash:4.17.20::*:*:*:*:*:*"
+        },
+        {
+          "ref": "cpe:2.3:a::lodash:2.4.2::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2021-41720",
+      "bom-ref": "CVE-2021-41720",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-41720",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 9.8,
+          "severity": "critical",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 7.5,
+          "severity": "high",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        77
+      ],
+      "description": "** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none.",
+      "recommendation": "",
+      "created": "2021-09-30T14:15:00+00:00",
+      "published": "2021-09-30T14:15:00+00:00",
+      "updated": "2021-09-30T14:15:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::lodash:4.17.11::*:*:*:*:*:*"
+        },
+        {
+          "ref": "cpe:2.3:a::lodash:4.17.20::*:*:*:*:*:*"
+        },
+        {
+          "ref": "cpe:2.3:a::lodash:2.4.2::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2020-7788",
+      "bom-ref": "CVE-2020-7788",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-7788",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 7.3,
+          "severity": "high",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 7.5,
+          "severity": "high",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        915
+      ],
+      "description": "This affects the package ini before 1.3.6. If an attacker submits a malicious INI file to an application that parses it with ini.parse, they will pollute the prototype on the application. This can be exploited further depending on the context.",
+      "recommendation": "Change ini to 1.3.6",
+      "created": "2020-12-11T11:15:00+00:00",
+      "published": "2020-12-11T11:15:00+00:00",
+      "updated": "2020-12-23T15:42:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::ini:1.3.5::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2022-24785",
+      "bom-ref": "CVE-2022-24785",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-24785",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 7.5,
+          "severity": "high",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 5,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        22
+      ],
+      "description": "Moment.js is a JavaScript date library for parsing, validating, manipulating, and formatting dates. A path traversal vulnerability impacts npm (server) users of Moment.js between versions 1.0.1 and 2.29.1, especially if a user-provided locale string is directly used to switch moment locale. This problem is patched in 2.29.2, and the patch can be applied to all affected versions. As a workaround, sanitize the user-provided locale name before passing it to Moment.js.",
+      "recommendation": "",
+      "created": "2022-04-04T17:15:00+00:00",
+      "published": "2022-04-04T17:15:00+00:00",
+      "updated": "2022-04-04T17:15:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::moment:2.24.0::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2021-42581",
+      "bom-ref": "CVE-2021-42581",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-42581",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 9.1,
+          "severity": "critical",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 6.4,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        1321
+      ],
+      "description": "** DISPUTED ** Prototype poisoning in function mapObjIndexed in Ramda 0.27.0 and earlier allows attackers to compromise integrity or availability of application via supplying a crafted object (that contains an own property \"__proto__\") as an argument to the function. NOTE: the vendor disputes this because the observed behavior only means that a user can create objects that the user didn't know would contain custom prototypes.",
+      "recommendation": "",
+      "created": "2022-05-10T11:15:00+00:00",
+      "published": "2022-05-10T11:15:00+00:00",
+      "updated": "2022-05-10T11:15:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::ramda:0.24.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2020-15366",
+      "bom-ref": "CVE-2020-15366",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-15366",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 5.6,
+          "severity": "medium",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 6.8,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        915
+      ],
+      "description": "An issue was discovered in ajv.validate() in Ajv (aka Another JSON Schema Validator) 6.12.2. A carefully crafted JSON schema could be provided that allows execution of other code by prototype pollution. (While untrusted schemas are recommended against, the worst case of an untrusted schema should be a denial of service, not execution of code.)",
+      "recommendation": "",
+      "created": "2020-07-15T20:15:00+00:00",
+      "published": "2020-07-15T20:15:00+00:00",
+      "updated": "2020-07-28T14:15:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::ajv:6.10.0::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2021-3918",
+      "bom-ref": "CVE-2021-3918",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-3918",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 9.8,
+          "severity": "critical",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 7.5,
+          "severity": "high",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        915
+      ],
+      "description": "json-schema is vulnerable to Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')",
+      "recommendation": "",
+      "created": "2021-11-13T09:15:00+00:00",
+      "published": "2021-11-13T09:15:00+00:00",
+      "updated": "2021-11-13T09:15:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::json-schema:0.2.3::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2021-44907",
+      "bom-ref": "CVE-2021-44907",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-44907",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 7.5,
+          "severity": "high",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 5,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [],
+      "description": "** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none.",
+      "recommendation": "",
+      "created": "2022-03-17T21:15:00+00:00",
+      "published": "2022-03-17T21:15:00+00:00",
+      "updated": "2022-03-17T21:15:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::qs:6.5.2::*:*:*:*:*:*"
+        },
+        {
+          "ref": "cpe:2.3:a::qs:6.3.2::*:*:*:*:*:*"
+        },
+        {
+          "ref": "cpe:2.3:a::qs:6.2.1::*:*:*:*:*:*"
+        },
+        {
+          "ref": "cpe:2.3:a::qs:0.6.6::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2014-6393",
+      "bom-ref": "CVE-2014-6393",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-gpvr-g6gh-9mc2",
+        "name": "GitHub"
+      },
+      "ratings": [
+        {
+          "score": 6.1,
+          "severity": "medium",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 4.3,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        79
+      ],
+      "description": "No Charset in Content-Type Header in express\n\nVulnerable versions of express do not specify a charset field in the content-type header while displaying 400 level response messages. The lack of enforcing user's browser to set correct charset, could be leveraged by an attacker to perform a cross-site scripting attack, using non-standard encodings, like UTF-7.\n\n\n## Recommendation\n\nFor express 3.x, update express to version 3.11 or later.\nFor express 4.x, update express to version 4.5 or later.",
+      "recommendation": "Change express to 4.16.4",
+      "created": "2017-08-09T18:29:00+00:00",
+      "published": "2017-08-09T18:29:00+00:00",
+      "updated": "2017-08-18T12:18:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::express:4.16.4::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2013-1779",
+      "bom-ref": "CVE-2013-1779",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1779",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 2.1,
+          "severity": "low",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        79
+      ],
+      "description": "Cross-site scripting (XSS) vulnerability in the 3 slide gallery in the Fresh theme before 7.x-1.4 for Drupal allows remote authenticated users with the administer themes permission to inject arbitrary web script or HTML via unspecified vectors.",
+      "recommendation": "",
+      "created": "2013-03-27T21:55:00+00:00",
+      "published": "2013-03-27T21:55:00+00:00",
+      "updated": "2013-03-28T04:00:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::fresh:0.5.2::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2014-6394",
+      "bom-ref": "CVE-2014-6394",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-pgv6-jrvv-75jp",
+        "name": "GitHub"
+      },
+      "ratings": [
+        {
+          "score": 7.5,
+          "severity": "high",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        22
+      ],
+      "description": "Moderate severity vulnerability that affects send\n\nWithdrawn, accidental duplicate publish.\r\n\r\nvisionmedia send before 0.8.4 for Node.js uses a partial comparison for verifying whether a directory is within the document root, which allows remote attackers to access restricted directories, as demonstrated using \"public-restricted\" under a \"public\" directory.",
+      "recommendation": "",
+      "created": "2014-10-08T17:55:00+00:00",
+      "published": "2014-10-08T17:55:00+00:00",
+      "updated": "2017-09-08T01:29:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::send:0.16.2::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2015-8859",
+      "bom-ref": "CVE-2015-8859",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-jgqf-hwc5-hh37",
+        "name": "GitHub"
+      },
+      "ratings": [
+        {
+          "score": 5.3,
+          "severity": "medium",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 5,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        200
+      ],
+      "description": "Root Path Disclosure in send\n\nVersions of `send` prior to 0.11.2 are affected by an information leakage vulnerability which may allow an attacker to enumerate paths on the server filesystem.\n\n\n\n## Recommendation\n\nUpdate to version 0.11.1 or later.",
+      "recommendation": "",
+      "created": "2017-01-23T21:59:00+00:00",
+      "published": "2017-01-23T21:59:00+00:00",
+      "updated": "2017-03-02T02:59:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::send:0.16.2::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2021-23567",
+      "bom-ref": "CVE-2021-23567",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-23567",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 7.5,
+          "severity": "high",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 5,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        835
+      ],
+      "description": "The package colors after 1.4.0 are vulnerable to Denial of Service (DoS) that was introduced through an infinite loop in the americanFlag module. Unfortunately this appears to have been a purposeful attempt by a maintainer of colors to make the package unusable, other maintainers' controls over this package appear to have been revoked in an attempt to prevent them from fixing the issue. Vulnerable Code js for (let i = 666; i < Infinity; i++;) { Alternative Remediation Suggested * Pin dependancy to 1.4.0",
+      "recommendation": "",
+      "created": "2022-01-14T20:15:00+00:00",
+      "published": "2022-01-14T20:15:00+00:00",
+      "updated": "2022-01-14T20:15:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::colors:1.0.3::*:*:*:*:*:*"
+        },
+        {
+          "ref": "cpe:2.3:a::colors:0.6.2::*:*:*:*:*:*"
+        },
+        {
+          "ref": "cpe:2.3:a::colors:1.4.0::*:*:*:*:*:*"
+        },
+        {
+          "ref": "cpe:2.3:a::colors:1.1.2::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2022-21803",
+      "bom-ref": "CVE-2022-21803",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-21803",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 7.5,
+          "severity": "high",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 5,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        1321
+      ],
+      "description": "This affects the package nconf before 0.11.4. When using the memory engine, it is possible to store a nested JSON representation of the configuration. The .set() function, that is responsible for setting the configuration properties, is vulnerable to Prototype Pollution. By providing a crafted property, it is possible to modify the properties on the Object.prototype.",
+      "recommendation": "",
+      "created": "2022-04-12T16:15:00+00:00",
+      "published": "2022-04-12T16:15:00+00:00",
+      "updated": "2022-04-12T16:15:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::nconf:0.6.9::*:*:*:*:*:*"
+        },
+        {
+          "ref": "cpe:2.3:a::nconf:0.10.0::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2021-3820",
+      "bom-ref": "CVE-2021-3820",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-3820",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 7.5,
+          "severity": "high",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 5,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        400
+      ],
+      "description": "inflect is vulnerable to Inefficient Regular Expression Complexity",
+      "recommendation": "",
+      "created": "2021-09-27T13:15:00+00:00",
+      "published": "2021-09-27T13:15:00+00:00",
+      "updated": "2021-09-27T13:15:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::i:0.3.6::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2005-4708",
+      "bom-ref": "CVE-2005-4708",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2005-4708",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 7.2,
+          "severity": "high",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [],
+      "description": "Adobe Macromedia MX 2004 products, Captivate, Contribute 2, Contribute 3, and eLicensing client install the Macromedia Licensing Service with the Users group permitted to configure the service, including the path to executable, which allows local users to execute arbitrary code as Local System.",
+      "recommendation": "",
+      "created": "2005-12-31T05:00:00+00:00",
+      "published": "2005-12-31T05:00:00+00:00",
+      "updated": "2018-10-19T15:41:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::director:1.2.7::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2006-4681",
+      "bom-ref": "CVE-2006-4681",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2006-4681",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 5,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [],
+      "description": "Directory traversal vulnerability in Redirect.bat in IBM Director before 5.10 allows remote attackers to read arbitrary files via a .. (dot dot) sequence in the file parameter.",
+      "recommendation": "",
+      "created": "2006-09-11T17:04:00+00:00",
+      "published": "2006-09-11T17:04:00+00:00",
+      "updated": "2017-10-19T01:29:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::director:1.2.7::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2006-4682",
+      "bom-ref": "CVE-2006-4682",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2006-4682",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 5,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [],
+      "description": "Multiple unspecified vulnerabilities in IBM Director before 5.10 allow remote attackers to cause a denial of service (crash) via unspecified vectors involving (1) malformed WMI CIM server requests and (2) malformed packets.",
+      "recommendation": "",
+      "created": "2006-09-11T17:04:00+00:00",
+      "published": "2006-09-11T17:04:00+00:00",
+      "updated": "2011-03-08T02:41:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::director:1.2.7::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2006-4683",
+      "bom-ref": "CVE-2006-4683",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2006-4683",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 5,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [],
+      "description": "IBM Director before 5.10 allows remote attackers to obtain sensitive information from HTTP headers via HTTP TRACE.",
+      "recommendation": "",
+      "created": "2006-09-11T17:04:00+00:00",
+      "published": "2006-09-11T17:04:00+00:00",
+      "updated": "2011-03-08T02:41:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::director:1.2.7::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2007-5612",
+      "bom-ref": "CVE-2007-5612",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2007-5612",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 7.8,
+          "severity": "high",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        399
+      ],
+      "description": "CIM Server in IBM Director 5.20.1 and earlier allows remote attackers to cause a denial of service (CPU consumption, connection slot exhaustion, and daemon crash) via a large number of idle connections.",
+      "recommendation": "",
+      "created": "2007-11-21T22:46:00+00:00",
+      "published": "2007-11-21T22:46:00+00:00",
+      "updated": "2017-07-29T01:33:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::director:1.2.7::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2009-0879",
+      "bom-ref": "CVE-2009-0879",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-0879",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 5,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        20
+      ],
+      "description": "The CIM server in IBM Director before 5.20.3 Service Update 2 on Windows allows remote attackers to cause a denial of service (daemon crash) via a long consumer name, as demonstrated by an M-POST request to a long /CIMListener/ URI.",
+      "recommendation": "",
+      "created": "2009-03-12T15:20:00+00:00",
+      "published": "2009-03-12T15:20:00+00:00",
+      "updated": "2018-10-10T19:32:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::director:1.2.7::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2009-0880",
+      "bom-ref": "CVE-2009-0880",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-0880",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 6.8,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        22
+      ],
+      "description": "Directory traversal vulnerability in the CIM server in IBM Director before 5.20.3 Service Update 2 on Windows allows remote attackers to load and execute arbitrary local DLL code via a .. (dot dot) in a /CIMListener/ URI in an M-POST request.",
+      "recommendation": "",
+      "created": "2009-03-12T15:20:00+00:00",
+      "published": "2009-03-12T15:20:00+00:00",
+      "updated": "2018-10-10T19:32:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::director:1.2.7::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2010-0128",
+      "bom-ref": "CVE-2010-0128",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2010-0128",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 9.3,
+          "severity": "critical",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        787
+      ],
+      "description": "Integer signedness error in dirapi.dll in Adobe Shockwave Player before 11.5.7.609 and Adobe Director before 11.5.7.609 allows remote attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via a crafted .dir file that triggers an invalid read operation.",
+      "recommendation": "",
+      "created": "2010-05-13T17:30:00+00:00",
+      "published": "2010-05-13T17:30:00+00:00",
+      "updated": "2018-10-10T19:51:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::director:1.2.7::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2011-5125",
+      "bom-ref": "CVE-2011-5125",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2011-5125",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 4.3,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        79
+      ],
+      "description": "Cross-site scripting (XSS) vulnerability in Blue Coat Director before 5.5.2.3 allows remote attackers to inject arbitrary web script or HTML via vectors involving the HTTP TRACE method.",
+      "recommendation": "",
+      "created": "2012-08-26T19:55:00+00:00",
+      "published": "2012-08-26T19:55:00+00:00",
+      "updated": "2012-09-05T04:00:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::director:1.2.7::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2019-10715",
+      "bom-ref": "CVE-2019-10715",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-10715",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 5.4,
+          "severity": "medium",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 3.5,
+          "severity": "low",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        79
+      ],
+      "description": "There is Stored XSS in Verodin Director 3.5.3.0 and earlier via input fields of certain tooltips, and on the Tags, Sequences, and Actors pages.",
+      "recommendation": "",
+      "created": "2019-10-21T00:15:00+00:00",
+      "published": "2019-10-21T00:15:00+00:00",
+      "updated": "2019-10-21T20:15:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::director:1.2.7::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2019-10716",
+      "bom-ref": "CVE-2019-10716",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-10716",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 7.7,
+          "severity": "high",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 4,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        269
+      ],
+      "description": "An Information Disclosure issue in Verodin Director 3.5.3.1 and earlier reveals usernames and passwords of integrated security technologies via a /integrations.json JSON REST API request.",
+      "recommendation": "",
+      "created": "2019-10-21T00:15:00+00:00",
+      "published": "2019-10-21T00:15:00+00:00",
+      "updated": "2020-02-05T21:15:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::director:1.2.7::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2018-1109",
+      "bom-ref": "CVE-2018-1109",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-1109",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 5.3,
+          "severity": "medium",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 5,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        400
+      ],
+      "description": "A vulnerability was found in Braces versions prior to 2.3.1. Affected versions of this package are vulnerable to Regular Expression Denial of Service (ReDoS) attacks.",
+      "recommendation": "",
+      "created": "2021-03-30T02:15:00+00:00",
+      "published": "2021-03-30T02:15:00+00:00",
+      "updated": "2021-04-02T12:57:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::braces:2.3.2::*:*:*:*:*:*"
+        },
+        {
+          "ref": "cpe:2.3:a::braces:1.8.5::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2009-4590",
+      "bom-ref": "CVE-2009-4590",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-4590",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 4.3,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        79
+      ],
+      "description": "Cross-site scripting (XSS) vulnerability in base_local_rules.php in Basic Analysis and Security Engine (BASE) before 1.4.4 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.",
+      "recommendation": "",
+      "created": "2010-01-07T18:30:00+00:00",
+      "published": "2010-01-07T18:30:00+00:00",
+      "updated": "2017-08-17T01:31:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::base:0.11.2::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2009-4591",
+      "bom-ref": "CVE-2009-4591",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-4591",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 7.5,
+          "severity": "high",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        89
+      ],
+      "description": "SQL injection vulnerability in Basic Analysis and Security Engine (BASE) before 1.4.4 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.",
+      "recommendation": "",
+      "created": "2010-01-07T18:30:00+00:00",
+      "published": "2010-01-07T18:30:00+00:00",
+      "updated": "2017-08-17T01:31:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::base:0.11.2::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2009-4592",
+      "bom-ref": "CVE-2009-4592",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2009-4592",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 7.5,
+          "severity": "high",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [],
+      "description": "Unspecified vulnerability in base_local_rules.php in Basic Analysis and Security Engine (BASE) before 1.4.4 allows remote attackers to include arbitrary local files via unknown vectors.",
+      "recommendation": "",
+      "created": "2010-01-07T18:30:00+00:00",
+      "published": "2010-01-07T18:30:00+00:00",
+      "updated": "2017-08-17T01:31:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::base:0.11.2::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2014-2980",
+      "bom-ref": "CVE-2014-2980",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-2980",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 4.3,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        20
+      ],
+      "description": "Tools/gdomap.c in gdomap in GNUstep Base 1.24.6 and earlier, when run in daemon mode, does not properly handle the file descriptor for the logger, which allows remote attackers to cause a denial of service (abort) via an invalid request.",
+      "recommendation": "",
+      "created": "2014-04-28T14:09:00+00:00",
+      "published": "2014-04-28T14:09:00+00:00",
+      "updated": "2017-08-29T01:34:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::base:0.11.2::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2020-5230",
+      "bom-ref": "CVE-2020-5230",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-w29m-fjp4-qhmq",
+        "name": "GitHub"
+      },
+      "ratings": [
+        {
+          "score": 7.5,
+          "severity": "high",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 5,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        74
+      ],
+      "description": "Unsafe Identifiers in Opencast\n\n### Impact\n\nOpencast allows almost arbitrary identifiers for media packages and\nelements to be used. This can be problematic for operation and security\nsince such identifiers are sometimes used for file system operations\nwhich may lead to an attacker being able to escape working directories and\nwrite files to other locations.\n\nIn addition, Opencast's Id.toString(…) vs Id.compact(…) behavior,\nthe latter trying to mitigate some of the file system problems, can\ncause errors due to identifier mismatch since an identifier may\nunintentionally change.\n\n### Patches\n\nThis issue is fixed in Opencast 7.6 and 8.1.\n\n### Workarounds\n\nThere is no workaround for this.\n\n### For more information\n\nIf you have any questions or comments about this advisory:\n\n- Open an issue in [opencast/opencast](https://github.com/opencast/opencast/issues)\n- For security-relevant information, email us at security@opencast.org",
+      "recommendation": "",
+      "created": "2020-01-30T21:15:00+00:00",
+      "published": "2020-01-30T21:15:00+00:00",
+      "updated": "2020-02-10T21:55:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::base:0.11.2::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2020-28275",
+      "bom-ref": "CVE-2020-28275",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-28275",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 9.8,
+          "severity": "critical",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 7.5,
+          "severity": "high",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [],
+      "description": "** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none.",
+      "recommendation": "",
+      "created": "2020-12-29T17:15:00+00:00",
+      "published": "2020-12-29T17:15:00+00:00",
+      "updated": "2020-12-31T16:15:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::cache-base:1.0.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2019-10747",
+      "bom-ref": "CVE-2019-10747",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-4g88-fppr-53pp",
+        "name": "GitHub"
+      },
+      "ratings": [
+        {
+          "score": 9.8,
+          "severity": "critical",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 7.5,
+          "severity": "high",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        400
+      ],
+      "description": "Prototype Pollution in set-value\n\nVersions of `set-value` prior to 3.0.1 or 2.0.1 are vulnerable to Prototype Pollution. The `set` function fails to validate which Object properties it updates. This allows attackers to modify the prototype of Object, causing the addition or modification of an existing property on all objects.\n\n\n\n\n## Recommendation\n\nIf you are using `set-value` 3.x, upgrade to version 3.0.1 or later.\nIf you are using `set-value` 2.x, upgrade to version 2.0.1 or later.",
+      "recommendation": "",
+      "created": "2019-08-23T17:15:00+00:00",
+      "published": "2019-08-23T17:15:00+00:00",
+      "updated": "2019-10-29T22:15:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::set-value:2.0.0::*:*:*:*:*:*"
+        },
+        {
+          "ref": "cpe:2.3:a::set-value:0.4.3::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2021-23440",
+      "bom-ref": "CVE-2021-23440",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-23440",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 9.8,
+          "severity": "critical",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 7.5,
+          "severity": "high",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        843
+      ],
+      "description": "This affects the package set-value before <2.0.1, >=3.0.0 <4.0.1. A type confusion vulnerability can lead to a bypass of CVE-2019-10747 when the user-provided keys used in the path parameter are arrays.",
+      "recommendation": "",
+      "created": "2021-09-12T13:15:00+00:00",
+      "published": "2021-09-12T13:15:00+00:00",
+      "updated": "2021-09-12T13:15:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::set-value:2.0.0::*:*:*:*:*:*"
+        },
+        {
+          "ref": "cpe:2.3:a::set-value:0.4.3::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2019-20149",
+      "bom-ref": "CVE-2019-20149",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-6c8f-qphg-qjgp",
+        "name": "GitHub"
+      },
+      "ratings": [
+        {
+          "score": 7.5,
+          "severity": "high",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 5,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        668
+      ],
+      "description": "Validation Bypass in kind-of\n\nVersions of `kind-of` 6.x prior to 6.0.3 are vulnerable to a Validation Bypass. A maliciously crafted object can alter the result of the type check, allowing attackers to bypass the type checking validation. \n\n\n## Recommendation\n\nUpgrade to versions 6.0.3 or later.",
+      "recommendation": "",
+      "created": "2019-12-30T19:15:00+00:00",
+      "published": "2019-12-30T19:15:00+00:00",
+      "updated": "2020-08-24T17:37:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::kind-of:6.0.2::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2019-10746",
+      "bom-ref": "CVE-2019-10746",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-fhjf-83wg-r2j9",
+        "name": "GitHub"
+      },
+      "ratings": [
+        {
+          "score": 9.8,
+          "severity": "critical",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 7.5,
+          "severity": "high",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        88
+      ],
+      "description": "Prototype Pollution in mixin-deep\n\nVersions of `mixin-deep` prior to 2.0.1 or 1.3.2 are vulnerable to Prototype Pollution. The `mixinDeep` function fails to validate which Object properties it updates. This allows attackers to modify the prototype of Object, causing the addition or modification of an existing property on all objects.\n\n\n\n\n## Recommendation\n\nIf you are using `mixin-deep` 2.x, upgrade to version 2.0.1 or later.\nIf you are using `mixin-deep` 1.x, upgrade to version 1.3.2 or later.",
+      "recommendation": "",
+      "created": "2019-08-23T17:15:00+00:00",
+      "published": "2019-08-23T17:15:00+00:00",
+      "updated": "2020-02-08T04:15:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::mixin-deep:1.3.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2014-1936",
+      "bom-ref": "CVE-2014-1936",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-1936",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 7.5,
+          "severity": "high",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 5,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        20
+      ],
+      "description": "rc before 1.7.1-5 insecurely creates temporary files.",
+      "recommendation": "",
+      "created": "2019-11-21T15:15:00+00:00",
+      "published": "2019-11-21T15:15:00+00:00",
+      "updated": "2019-11-25T15:07:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::rc:1.2.8::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2020-17753",
+      "bom-ref": "CVE-2020-17753",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-17753",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 6.5,
+          "severity": "medium",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 4.3,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [],
+      "description": "An issue was discovered in function addMeByRC in the smart contract implementation for RC, an Ethereum token, allows attackers to transfer an arbitrary amount of tokens to an arbitrary address.",
+      "recommendation": "",
+      "created": "2021-06-24T20:15:00+00:00",
+      "published": "2021-06-24T20:15:00+00:00",
+      "updated": "2021-07-01T13:22:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::rc:1.2.8::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2018-20990",
+      "bom-ref": "CVE-2018-20990",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-20990",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 7.5,
+          "severity": "high",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 6.4,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        59
+      ],
+      "description": "An issue was discovered in the tar crate before 0.4.16 for Rust. Arbitrary file overwrite can occur via a symlink or hardlink in a TAR archive.",
+      "recommendation": "",
+      "created": "2019-08-26T13:15:00+00:00",
+      "published": "2019-08-26T13:15:00+00:00",
+      "updated": "2019-08-28T15:58:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::tar:4.4.8::*:*:*:*:*:*"
+        },
+        {
+          "ref": "cpe:2.3:a::tar:2.2.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2021-32803",
+      "bom-ref": "CVE-2021-32803",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-32803",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 8.1,
+          "severity": "high",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 5.8,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        59
+      ],
+      "description": "The npm package \"tar\" (aka node-tar) before versions 6.1.2, 5.0.7, 4.4.15, and 3.2.3 has an arbitrary File Creation/Overwrite vulnerability via insufficient symlink protection. `node-tar` aims to guarantee that any file whose location would be modified by a symbolic link is not extracted. This is, in part, achieved by ensuring that extracted directories are not symlinks. Additionally, in order to prevent unnecessary `stat` calls to determine whether a given path is a directory, paths are cached when directories are created. This logic was insufficient when extracting tar files that contained both a directory and a symlink with the same name as the directory. This order of operations resulted in the directory being created and added to the `node-tar` directory cache. When a directory is present in the directory cache, subsequent calls to mkdir for that directory are skipped. However, this is also where `node-tar` checks for symlinks occur. By first creating a directory, and then replacing that directory with a symlink, it was thus possible to bypass `node-tar` symlink checks on directories, essentially allowing an untrusted tar file to symlink into an arbitrary location and subsequently extracting arbitrary files into that location, thus allowing arbitrary file creation and overwrite. This issue was addressed in releases 3.2.3, 4.4.15, 5.0.7 and 6.1.2.",
+      "recommendation": "",
+      "created": "2021-08-03T19:15:00+00:00",
+      "published": "2021-08-03T19:15:00+00:00",
+      "updated": "2021-08-03T19:15:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::tar:4.4.8::*:*:*:*:*:*"
+        },
+        {
+          "ref": "cpe:2.3:a::tar:2.2.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2021-32804",
+      "bom-ref": "CVE-2021-32804",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-32804",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 8.1,
+          "severity": "high",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 5.8,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        22
+      ],
+      "description": "The npm package \"tar\" (aka node-tar) before versions 6.1.1, 5.0.6, 4.4.14, and 3.3.2 has a arbitrary File Creation/Overwrite vulnerability due to insufficient absolute path sanitization. node-tar aims to prevent extraction of absolute file paths by turning absolute paths into relative paths when the `preservePaths` flag is not set to `true`. This is achieved by stripping the absolute path root from any absolute file paths contained in a tar file. For example `/home/user/.bashrc` would turn into `home/user/.bashrc`. This logic was insufficient when file paths contained repeated path roots such as `////home/user/.bashrc`. `node-tar` would only strip a single path root from such paths. When given an absolute file path with repeating path roots, the resulting path (e.g. `///home/user/.bashrc`) would still resolve to an absolute path, thus allowing arbitrary file creation and overwrite. This issue was addressed in releases 3.2.2, 4.4.14, 5.0.6 and 6.1.1. Users may work around this vulnerability without upgrading by creating a custom `onentry` method which sanitizes the `entry.path` or a `filter` method which removes entries with absolute paths. See referenced GitHub Advisory for details. Be aware of CVE-2021-32803 which fixes a similar bug in later versions of tar.",
+      "recommendation": "",
+      "created": "2021-08-03T19:15:00+00:00",
+      "published": "2021-08-03T19:15:00+00:00",
+      "updated": "2021-08-03T19:15:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::tar:4.4.8::*:*:*:*:*:*"
+        },
+        {
+          "ref": "cpe:2.3:a::tar:2.2.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2021-37701",
+      "bom-ref": "CVE-2021-37701",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-37701",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 8.6,
+          "severity": "high",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 4.4,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        22
+      ],
+      "description": "The npm package \"tar\" (aka node-tar) before versions 4.4.16, 5.0.8, and 6.1.7 has an arbitrary file creation/overwrite and arbitrary code execution vulnerability. node-tar aims to guarantee that any file whose location would be modified by a symbolic link is not extracted. This is, in part, achieved by ensuring that extracted directories are not symlinks. Additionally, in order to prevent unnecessary stat calls to determine whether a given path is a directory, paths are cached when directories are created. This logic was insufficient when extracting tar files that contained both a directory and a symlink with the same name as the directory, where the symlink and directory names in the archive entry used backslashes as a path separator on posix systems. The cache checking logic used both `\\` and `/` characters as path separators, however `\\` is a valid filename character on posix systems. By first creating a directory, and then replacing that directory with a symlink, it was thus possible to bypass node-tar symlink checks on directories, essentially allowing an untrusted tar file to symlink into an arbitrary location and subsequently extracting arbitrary files into that location, thus allowing arbitrary file creation and overwrite. Additionally, a similar confusion could arise on case-insensitive filesystems. If a tar archive contained a directory at `FOO`, followed by a symbolic link named `foo`, then on case-insensitive file systems, the creation of the symbolic link would remove the directory from the filesystem, but _not_ from the internal directory cache, as it would not be treated as a cache hit. A subsequent file entry within the `FOO` directory would then be placed in the target of the symbolic link, thinking that the directory had already been created. These issues were addressed in releases 4.4.16, 5.0.8 and 6.1.7. The v3 branch of node-tar has been deprecated and did not receive patches for these issues. If you are still using a v3 release we recommend you update to a more recent version of node-tar. If this is not possible, a workaround is available in the referenced GHSA-9r2w-394v-53qc.",
+      "recommendation": "",
+      "created": "2021-08-31T17:15:00+00:00",
+      "published": "2021-08-31T17:15:00+00:00",
+      "updated": "2021-08-31T17:15:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::tar:4.4.8::*:*:*:*:*:*"
+        },
+        {
+          "ref": "cpe:2.3:a::tar:2.2.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2021-37712",
+      "bom-ref": "CVE-2021-37712",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-37712",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 8.6,
+          "severity": "high",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 4.4,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        22
+      ],
+      "description": "The npm package \"tar\" (aka node-tar) before versions 4.4.18, 5.0.10, and 6.1.9 has an arbitrary file creation/overwrite and arbitrary code execution vulnerability. node-tar aims to guarantee that any file whose location would be modified by a symbolic link is not extracted. This is, in part, achieved by ensuring that extracted directories are not symlinks. Additionally, in order to prevent unnecessary stat calls to determine whether a given path is a directory, paths are cached when directories are created. This logic was insufficient when extracting tar files that contained both a directory and a symlink with names containing unicode values that normalized to the same value. Additionally, on Windows systems, long path portions would resolve to the same file system entities as their 8.3 \"short path\" counterparts. A specially crafted tar archive could thus include a directory with one form of the path, followed by a symbolic link with a different string that resolves to the same file system entity, followed by a file using the first form. By first creating a directory, and then replacing that directory with a symlink that had a different apparent name that resolved to the same entry in the filesystem, it was thus possible to bypass node-tar symlink checks on directories, essentially allowing an untrusted tar file to symlink into an arbitrary location and subsequently extracting arbitrary files into that location, thus allowing arbitrary file creation and overwrite. These issues were addressed in releases 4.4.18, 5.0.10 and 6.1.9. The v3 branch of node-tar has been deprecated and did not receive patches for these issues. If you are still using a v3 release we recommend you update to a more recent version of node-tar. If this is not possible, a workaround is available in the referenced GHSA-qq89-hq3f-393p.",
+      "recommendation": "",
+      "created": "2021-08-31T17:15:00+00:00",
+      "published": "2021-08-31T17:15:00+00:00",
+      "updated": "2021-08-31T17:15:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::tar:4.4.8::*:*:*:*:*:*"
+        },
+        {
+          "ref": "cpe:2.3:a::tar:2.2.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2021-37713",
+      "bom-ref": "CVE-2021-37713",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-37713",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 8.6,
+          "severity": "high",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 4.4,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        22
+      ],
+      "description": "The npm package \"tar\" (aka node-tar) before versions 4.4.18, 5.0.10, and 6.1.9 has an arbitrary file creation/overwrite and arbitrary code execution vulnerability. node-tar aims to guarantee that any file whose location would be outside of the extraction target directory is not extracted. This is, in part, accomplished by sanitizing absolute paths of entries within the archive, skipping archive entries that contain `..` path portions, and resolving the sanitized paths against the extraction target directory. This logic was insufficient on Windows systems when extracting tar files that contained a path that was not an absolute path, but specified a drive letter different from the extraction target, such as `C:some\\path`. If the drive letter does not match the extraction target, for example `D:\\extraction\\dir`, then the result of `path.resolve(extractionDirectory, entryPath)` would resolve against the current working directory on the `C:` drive, rather than the extraction target directory. Additionally, a `..` portion of the path could occur immediately after the drive letter, such as `C:../foo`, and was not properly sanitized by the logic that checked for `..` within the normalized and split portions of the path. This only affects users of `node-tar` on Windows systems. These issues were addressed in releases 4.4.18, 5.0.10 and 6.1.9. The v3 branch of node-tar has been deprecated and did not receive patches for these issues. If you are still using a v3 release we recommend you update to a more recent version of node-tar. There is no reasonable way to work around this issue without performing the same path normalization procedures that node-tar now does. Users are encouraged to upgrade to the latest patched versions of node-tar, rather than attempt to sanitize paths themselves.",
+      "recommendation": "",
+      "created": "2021-08-31T17:15:00+00:00",
+      "published": "2021-08-31T17:15:00+00:00",
+      "updated": "2021-08-31T17:15:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::tar:4.4.8::*:*:*:*:*:*"
+        },
+        {
+          "ref": "cpe:2.3:a::tar:2.2.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2021-38511",
+      "bom-ref": "CVE-2021-38511",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-38511",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 7.5,
+          "severity": "high",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 5,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        22
+      ],
+      "description": "An issue was discovered in the tar crate before 0.4.36 for Rust. When symlinks are present in a TAR archive, extraction can create arbitrary directories via .. traversal.",
+      "recommendation": "",
+      "created": "2021-08-10T23:15:00+00:00",
+      "published": "2021-08-10T23:15:00+00:00",
+      "updated": "2021-08-10T23:15:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::tar:4.4.8::*:*:*:*:*:*"
+        },
+        {
+          "ref": "cpe:2.3:a::tar:2.2.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2017-18869",
+      "bom-ref": "CVE-2017-18869",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-18869",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 2.5,
+          "severity": "low",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 1.9,
+          "severity": "low",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        367
+      ],
+      "description": "A TOCTOU issue in the chownr package before 1.1.0 for Node.js 10.10 could allow a local attacker to trick it into descending into unintended directories via symlink attacks.",
+      "recommendation": "",
+      "created": "2020-06-15T15:15:00+00:00",
+      "published": "2020-06-15T15:15:00+00:00",
+      "updated": "2020-06-17T19:51:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::chownr:1.1.1::*:*:*:*:*:*"
+        },
+        {
+          "ref": "cpe:2.3:a::chownr:1.0.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2020-28469",
+      "bom-ref": "CVE-2020-28469",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-ww39-953v-wcq6",
+        "name": "GitHub"
+      },
+      "ratings": [
+        {
+          "score": 7.5,
+          "severity": "high",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 5,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        400
+      ],
+      "description": "Regular expression denial of service in glob-parent\n\nThis affects the package glob-parent before 5.1.2. The enclosure regex used to check for strings ending in enclosure containing path separator.",
+      "recommendation": "",
+      "created": "2021-06-03T16:15:00+00:00",
+      "published": "2021-06-03T16:15:00+00:00",
+      "updated": "2021-06-11T18:37:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::glob-parent:3.1.0::*:*:*:*:*:*"
+        },
+        {
+          "ref": "cpe:2.3:a::glob-parent:2.0.0::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2020-7774",
+      "bom-ref": "CVE-2020-7774",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-c4w7-xm78-47vh",
+        "name": "GitHub"
+      },
+      "ratings": [
+        {
+          "score": 9.8,
+          "severity": "critical",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 7.5,
+          "severity": "high",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        915
+      ],
+      "description": "Prototype Pollution in y18n\n\n### Overview\n\nThe npm package `y18n` before versions 3.2.2, 4.0.1, and 5.0.5 is vulnerable to Prototype Pollution. \n\n### POC\n\n```\nconst y18n = require('y18n')();\n\ny18n.setLocale('__proto__');\ny18n.updateLocale({polluted: true});\n\nconsole.log(polluted); // true\n```\n\n### Recommendation\n\nUpgrade to version 3.2.2, 4.0.1, 5.0.5 or later.",
+      "recommendation": "",
+      "created": "2020-11-17T13:15:00+00:00",
+      "published": "2020-11-17T13:15:00+00:00",
+      "updated": "2021-06-14T18:15:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::y18n:3.2.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2021-29940",
+      "bom-ref": "CVE-2021-29940",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-29940",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 9.8,
+          "severity": "critical",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 7.5,
+          "severity": "high",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        415
+      ],
+      "description": "An issue was discovered in the through crate through 2021-02-18 for Rust. There is a double free (in through and through_and) upon a panic of the map function.",
+      "recommendation": "",
+      "created": "2021-04-01T05:15:00+00:00",
+      "published": "2021-04-01T05:15:00+00:00",
+      "updated": "2021-04-06T14:17:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::through:2.3.8::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2021-23362",
+      "bom-ref": "CVE-2021-23362",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-43f8-2h32-f4cj",
+        "name": "GitHub"
+      },
+      "ratings": [
+        {
+          "score": 5.3,
+          "severity": "medium",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 5,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [],
+      "description": "Regular Expression Denial of Service in hosted-git-info\n\nThe npm package `hosted-git-info` before 3.0.8 are vulnerable to Regular Expression Denial of Service (ReDoS) via regular expression shortcutMatch in the fromUrl function in index.js. The affected regular expression exhibits polynomial worst-case time complexity",
+      "recommendation": "",
+      "created": "2021-03-23T17:15:00+00:00",
+      "published": "2021-03-23T17:15:00+00:00",
+      "updated": "2021-06-08T19:30:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::hosted-git-info:2.7.1::*:*:*:*:*:*"
+        },
+        {
+          "ref": "cpe:2.3:a::hosted-git-info:2.1.5::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2021-33623",
+      "bom-ref": "CVE-2021-33623",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-7p7h-4mm5-852v",
+        "name": "GitHub"
+      },
+      "ratings": [
+        {
+          "score": 7.5,
+          "severity": "high",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 5,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        400
+      ],
+      "description": "Uncontrolled Resource Consumption in trim-newlines\n\n@rkesters/gnuplot is an easy to use node module to draw charts using gnuplot and ps2pdf. The trim-newlines package before 3.0.1 and 4.x before 4.0.1 for Node.js has an issue related to regular expression denial-of-service (ReDoS) for the .end() method.",
+      "recommendation": "",
+      "created": "2021-05-28T18:15:00+00:00",
+      "published": "2021-05-28T18:15:00+00:00",
+      "updated": "2021-07-02T12:15:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::trim-newlines:1.0.0::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2020-15133",
+      "bom-ref": "CVE-2020-15133",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-2v5c-755p-p4gv",
+        "name": "GitHub"
+      },
+      "ratings": [
+        {
+          "score": 8.7,
+          "severity": "high",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 5.8,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        295
+      ],
+      "description": "Missing TLS certificate verification in faye-websocket\n\nThe `Faye::WebSocket::Client` class uses the [`EM::Connection#start_tls`][1]\nmethod in [EventMachine][2] to implement the TLS handshake whenever a `wss:` URL\nis used for the connection. This method does not implement certificate\nverification by default, meaning that it does not check that the server presents\na valid and trusted TLS certificate for the expected hostname. That means that\nany `wss:` connection made using this library is vulnerable to a\nman-in-the-middle attack, since it does not confirm the identity of the server\nit is connected to.\n\nThis has been a requested feature in EventMachine for many years now; see for\nexample [#275][3], [#378][4], and [#814][5]. In June 2020, [em-http-request][6]\npublished an [advisory][7] related to this problem and fixed it by [implementing\nTLS verification][8] in their own codebase; although EventMachine does not\nimplement certificate verification itself, it provides an extension point for\nthe caller to implement it, called [`ssl_verify_peer`][9]. Based on this\nimplementation, we have incorporated similar functionality into [faye-websocket\nfor Ruby][10], such that we use the `OpenSSL` module to perform two checks:\n\n- The chain of certificates presented by the server is valid and ultimately\n  trusted by your root certificate set -- either your system default root\n  certificates, or a set provided at runtime\n- The final certificate presented by the server is valid for the hostname used\n  in the request URI; if the connection is made via a proxy we use the hostname\n  from the request, not the proxy's hostname\n\nAfter implementing verification in v1.1.6, em-http-request has elected to leave\nthe `:verify_peer` option switched off by default. We have decided to _enable_\nthis option by default in faye-websocket, but are publishing a minor release\nwith added functionality for configuring it. We are mindful of the fact that\nthis may break existing programs, but we consider it much more important that\nall clients have TLS verification turned on by default. A client that is not\ncarrying out verification is either:\n\n- talking to the expected server, and will not break under this change\n- being attacked, and would benefit from being alerted to this fact\n- deliberately talking to a server that would be rejected by verification\n\nThe latter case includes situations like talking to a non-public server using a\nself-signed certificate. We consider this use case to be \"working by accident\",\nrather than functionality that was actively supported, and it should be properly\nand explicitly supported instead. To that end, we have added two new options to\nthe `Faye::WebSocket::Client` constructor: `tls.root_cert_file`, and\n`tls.verify_peer`.\n\nThe `:root_cert_file` option lets you provide a different set of root\ncertificates in situations where you don't want to use your system's default\nroot certificates to verify the remote host. It should be a path or an array of\npaths identifying the certificates to use instead of the defaults.\n\n```rb\nclient = Faye::WebSocket::Client.new('wss://example.com/', [], tls: {\n  root_cert_file: 'path/to/certificate.pem'\n})\n```\n\nThe `:verify_peer` option lets you turn verification off entirely. This should\nbe a last resort and we recommend using the `:root_cert_file` option if\npossible.\n\n```rb\nclient = Faye::WebSocket::Client.new('wss://example.com/', [], tls: {\n  verify_peer: false\n})\n```\n\nTo get the new behaviour, please upgrade to v0.11.0 of the [Rubygems\npackage][10]. There are, unfortunately, no workarounds for this issue, as you\ncannot enable `:verify_peer` in EventMachine unless the calling library contains\nan implementation of `ssl_verify_peer` that actually checks the server's\ncertificates.\n\nFor further background information on this issue, please see [faye#524][12] and\n[faye-websocket#129][13]. We would like to thank [Tero Marttila][14] and [Daniel\nMorsing][15] for providing invaluable assistance and feedback on this issue.\n\n[1]: https://www.rubydoc.info/github/eventmachine/eventmachine/EventMachine/Connection:start_tls\n[2]: https://rubygems.org/gems/eventmachine\n[3]: https://github.com/eventmachine/eventmachine/issues/275\n[4]: https://github.com/eventmachine/eventmachine/pull/378\n[5]: https://github.com/eventmachine/eventmachine/issues/814\n[6]: https://rubygems.org/gems/em-http-request\n[7]: https://securitylab.github.com/advisories/GHSL-2020-094-igrigorik-em-http-request\n[8]: https://github.com/igrigorik/em-http-request/pull/340\n[9]: https://www.rubydoc.info/github/eventmachine/eventmachine/EventMachine/Connection:ssl_verify_peer\n[10]: https://rubygems.org/gems/faye-websocket\n[12]: https://github.com/faye/faye/issues/524\n[13]: https://github.com/faye/faye-websocket-ruby/pull/129\n[14]: https://github.com/SpComb\n[15]: https://github.com/DanielMorsing",
+      "recommendation": "",
+      "created": "2020-07-31T18:15:00+00:00",
+      "published": "2020-07-31T18:15:00+00:00",
+      "updated": "2020-08-11T19:30:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::faye-websocket:0.10.0::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2020-7662",
+      "bom-ref": "CVE-2020-7662",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-g78m-2chm-r7qv",
+        "name": "GitHub"
+      },
+      "ratings": [
+        {
+          "score": 7.5,
+          "severity": "high",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 5,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [],
+      "description": "Regular Expression Denial of Service in websocket-extensions (NPM package)\n\n### Impact\n\nThe ReDoS flaw allows an attacker to exhaust the server's capacity to process\nincoming requests by sending a WebSocket handshake request containing a header\nof the following form:\n\n    Sec-WebSocket-Extensions: a; b=\"\\c\\c\\c\\c\\c\\c\\c\\c\\c\\c ...\n\nThat is, a header containing an unclosed string parameter value whose content is\na repeating two-byte sequence of a backslash and some other character. The\nparser takes exponential time to reject this header as invalid, and this will\nblock the processing of any other work on the same thread. Thus if you are\nrunning a single-threaded server, such a request can render your service\ncompletely unavailable.\n\n### Patches\n\nUsers should upgrade to version 0.1.4.\n\n### Workarounds\n\nThere are no known work-arounds other than disabling any public-facing\nWebSocket functionality you are operating.\n\n### References\n\n- https://blog.jcoglan.com/2020/06/02/redos-vulnerability-in-websocket-extensions/",
+      "recommendation": "",
+      "created": "2020-06-02T19:15:00+00:00",
+      "published": "2020-06-02T19:15:00+00:00",
+      "updated": "2020-12-23T18:22:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::websocket-extensions:0.1.3::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2020-7663",
+      "bom-ref": "CVE-2020-7663",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-g6wq-qcwm-j5g2",
+        "name": "GitHub"
+      },
+      "ratings": [
+        {
+          "score": 7.5,
+          "severity": "high",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 5,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [],
+      "description": "Regular Expression Denial of Service in websocket-extensions (RubyGem)\n\n### Impact\n\nThe ReDoS flaw allows an attacker to exhaust the server's capacity to process\nincoming requests by sending a WebSocket handshake request containing a header\nof the following form:\n\n    Sec-WebSocket-Extensions: a; b=\"\\c\\c\\c\\c\\c\\c\\c\\c\\c\\c ...\n\nThat is, a header containing an unclosed string parameter value whose content is\na repeating two-byte sequence of a backslash and some other character. The\nparser takes exponential time to reject this header as invalid, and this will\nblock the processing of any other work on the same thread. Thus if you are\nrunning a single-threaded server, such a request can render your service\ncompletely unavailable.\n\n### Patches\n\nUsers should upgrade to version 0.1.5.\n\n### Workarounds\n\nThere are no known work-arounds other than disabling any public-facing\nWebSocket functionality you are operating.\n\n### References\n\n- https://blog.jcoglan.com/2020/06/02/redos-vulnerability-in-websocket-extensions/",
+      "recommendation": "",
+      "created": "2020-06-02T19:15:00+00:00",
+      "published": "2020-06-02T19:15:00+00:00",
+      "updated": "2020-09-17T15:15:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::websocket-extensions:0.1.3::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2020-7729",
+      "bom-ref": "CVE-2020-7729",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-m5pj-vjjf-4m3h",
+        "name": "GitHub"
+      },
+      "ratings": [
+        {
+          "score": 7.1,
+          "severity": "high",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 4.6,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        1188
+      ],
+      "description": "Arbitrary Code Execution in grunt\n\nThe package grunt before 1.3.0 are vulnerable to Arbitrary Code Execution due to the default usage of the function load() instead of its secure replacement safeLoad() of the package js-yaml inside grunt.file.readYAML.",
+      "recommendation": "",
+      "created": "2020-09-03T09:15:00+00:00",
+      "published": "2020-09-03T09:15:00+00:00",
+      "updated": "2020-10-27T00:15:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::grunt:1.0.3::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2022-0436",
+      "bom-ref": "CVE-2022-0436",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-0436",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 5.5,
+          "severity": "medium",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 2.1,
+          "severity": "low",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        22
+      ],
+      "description": "Path Traversal in GitHub repository gruntjs/grunt prior to 1.5.2.",
+      "recommendation": "",
+      "created": "2022-04-12T21:15:00+00:00",
+      "published": "2022-04-12T21:15:00+00:00",
+      "updated": "2022-04-12T21:15:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::grunt:1.0.3::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2022-1537",
+      "bom-ref": "CVE-2022-1537",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-1537",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 7,
+          "severity": "high",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 6.9,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        367
+      ],
+      "description": "file.copy operations in GruntJS are vulnerable to a TOCTOU race condition leading to arbitrary file write in GitHub repository gruntjs/grunt prior to 1.5.3. This vulnerability is capable of arbitrary file writes which can lead to local privilege escalation to the GruntJS user if a lower-privileged user has write access to both source and destination directories as the lower-privileged user can create a symlink to the GruntJS user's .bashrc file or replace /etc/shadow file if the GruntJS user is root.",
+      "recommendation": "",
+      "created": "2022-05-10T14:15:00+00:00",
+      "published": "2022-05-10T14:15:00+00:00",
+      "updated": "2022-05-10T14:15:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::grunt:1.0.3::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2020-28282",
+      "bom-ref": "CVE-2020-28282",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-28282",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 9.8,
+          "severity": "critical",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 7.5,
+          "severity": "high",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [],
+      "description": "Prototype pollution vulnerability in 'getobject' version 0.1.0 allows an attacker to cause a denial of service and may lead to remote code execution.",
+      "recommendation": "",
+      "created": "2020-12-29T18:15:00+00:00",
+      "published": "2020-12-29T18:15:00+00:00",
+      "updated": "2020-12-30T21:59:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::getobject:0.1.0::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "debricked-149694",
+      "bom-ref": "debricked-149694",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-2pr6-76vf-7546",
+        "name": "GitHub"
+      },
+      "ratings": [],
+      "cwes": [],
+      "description": "Denial of Service in js-yaml\n\nVersions of `js-yaml` prior to 3.13.0 are vulnerable to Denial of Service. By parsing a carefully-crafted YAML file, the node process stalls and may exhaust system resources leading to a Denial of Service.\n\n\n## Recommendation\n\nUpgrade to version 3.13.0.",
+      "recommendation": "",
+      "created": "2019-06-05T14:35:29+00:00",
+      "published": "2019-06-05T14:35:29+00:00",
+      "updated": "2019-06-05T14:35:29+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::js-yaml:3.5.5::*:*:*:*:*:*"
+        },
+        {
+          "ref": "cpe:2.3:a::js-yaml:3.6.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "debricked-149699",
+      "bom-ref": "debricked-149699",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-8j8c-7jfh-h6hx",
+        "name": "GitHub"
+      },
+      "ratings": [],
+      "cwes": [],
+      "description": "Code Injection in js-yaml\n\nVersions of `js-yaml` prior to 3.13.1 are vulnerable to Code Injection. The `load()` function may execute arbitrary code injected through a malicious YAML file. Objects that have `toString` as key, JavaScript code as value and are used as explicit mapping keys allow attackers to execute the supplied code through the `load()` function. The `safeLoad()` function is unaffected.\n\nAn example payload is \n`{ toString: !<tag:yaml.org,2002:js/function> 'function (){return Date.now()}' } : 1` \nwhich returns the object \n{\n  \"1553107949161\": 1\n}\n\n\n## Recommendation\n\nUpgrade to version 3.13.1.",
+      "recommendation": "",
+      "created": "2019-06-04T20:14:07+00:00",
+      "published": "2019-06-04T20:14:07+00:00",
+      "updated": "2019-06-04T20:14:07+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::js-yaml:3.5.5::*:*:*:*:*:*"
+        },
+        {
+          "ref": "cpe:2.3:a::js-yaml:3.6.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2007-4027",
+      "bom-ref": "CVE-2007-4027",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2007-4027",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 6.6,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [],
+      "description": "Buffer overflow in cli32 in Areca CLI 1.72.250 and earlier might allow local users to gain privileges via a long argument.  NOTE: this program is not setuid by default, but there are some usage scenarios in which an administrator might make it setuid.",
+      "recommendation": "",
+      "created": "2007-07-26T19:30:00+00:00",
+      "published": "2007-07-26T19:30:00+00:00",
+      "updated": "2018-10-15T21:32:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::cli:1.0.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2007-4430",
+      "bom-ref": "CVE-2007-4430",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2007-4430",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 5,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        20
+      ],
+      "description": "Unspecified vulnerability in Cisco IOS 12.0 through 12.4 allows context-dependent attackers to cause a denial of service (device restart and BGP routing table rebuild) via certain regular expressions in a \"show ip bgp regexp\" command.  NOTE: unauthenticated remote attacks are possible in environments with anonymous telnet and Looking Glass access.",
+      "recommendation": "",
+      "created": "2007-08-20T19:17:00+00:00",
+      "published": "2007-08-20T19:17:00+00:00",
+      "updated": "2011-05-18T04:00:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::cli:1.0.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2014-3342",
+      "bom-ref": "CVE-2014-3342",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-3342",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 4,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [],
+      "description": "The CLI in Cisco IOS XR allows remote authenticated users to obtain sensitive information via unspecified commands, aka Bug IDs CSCuq42336, CSCuq76853, CSCuq76873, and CSCuq45383.",
+      "recommendation": "",
+      "created": "2014-09-12T01:55:00+00:00",
+      "published": "2014-09-12T01:55:00+00:00",
+      "updated": "2017-08-29T01:34:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::cli:1.0.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2019-16775",
+      "bom-ref": "CVE-2019-16775",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-m6cx-g6qm-p2cx",
+        "name": "GitHub"
+      },
+      "ratings": [
+        {
+          "score": 6.5,
+          "severity": "medium",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 4,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        61
+      ],
+      "description": "Arbitrary File Write in npm\n\nVersions of the npm CLI prior to 6.13.3 are vulnerable to an Arbitrary File Write. It fails to prevent access to folders outside of the intended node_modules folder through the bin field. A properly constructed entry in the package.json bin field would allow a package publisher to create files on a user's system when the package is installed. It is only possible to affect files that the user running `npm install` has access to and it is not possible to over write files that already exist on disk.\n\nThis behavior is still possible through install scripts. This vulnerability bypasses a user using the --ignore-scripts install option.\n\n\n## Recommendation\n\nUpgrade to version 6.13.3 or later.",
+      "recommendation": "",
+      "created": "2019-12-13T01:15:00+00:00",
+      "published": "2019-12-13T01:15:00+00:00",
+      "updated": "2020-10-07T15:05:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::cli:1.0.1::*:*:*:*:*:*"
+        },
+        {
+          "ref": "cpe:2.3:a::npm:3.10.10::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2019-16776",
+      "bom-ref": "CVE-2019-16776",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-x8qc-rrcw-4r46",
+        "name": "GitHub"
+      },
+      "ratings": [
+        {
+          "score": 8.1,
+          "severity": "high",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 5.5,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        22
+      ],
+      "description": "Symlink reference outside of node_modules in npm\n\nVersions of the npm CLI prior to 6.13.3 are vulnerable to a symlink reference outside of node_modules. It is possible for packages to create symlinks to files outside of the`node_modules` folder through the `bin` field upon installation. A properly constructed entry in the package.json bin field would allow a package publisher to create a symlink pointing to arbitrary files on a user’s system when the package is installed. Only files accessible by the user running the `npm install` are affected.  \n\nThis behavior is still possible through install scripts. This vulnerability bypasses a user using the --ignore-scripts install option.\n\n\n## Recommendation\n\nUpgrade to version 6.13.3 or later.",
+      "recommendation": "",
+      "created": "2019-12-13T01:15:00+00:00",
+      "published": "2019-12-13T01:15:00+00:00",
+      "updated": "2020-10-07T16:49:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::cli:1.0.1::*:*:*:*:*:*"
+        },
+        {
+          "ref": "cpe:2.3:a::npm:3.10.10::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2019-16777",
+      "bom-ref": "CVE-2019-16777",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-4328-8hgf-7wjr",
+        "name": "GitHub"
+      },
+      "ratings": [
+        {
+          "score": 6.5,
+          "severity": "medium",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 5.5,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        269
+      ],
+      "description": "Global node_modules Binary Overwrite in npm\n\nVersions of  the npm CLI prior to 6.13.4 are vulnerable to a Global node_modules Binary Overwrite. It fails to prevent existing globally-installed binaries to be overwritten by other package installations. \n\nFor example, if a package was installed globally and created a `serve` binary, any subsequent installs of packages that also create a `serve` binary would overwrite the first binary. This will not overwrite system binaries but only binaries put into the global node_modules directory.\n\nThis behavior is still allowed in local installations and also through install scripts. This vulnerability bypasses a user using the --ignore-scripts install option.\n\n\n## Recommendation\n\nUpgrade to version 6.13.4 or later.",
+      "recommendation": "",
+      "created": "2019-12-13T01:15:00+00:00",
+      "published": "2019-12-13T01:15:00+00:00",
+      "updated": "2020-10-09T13:36:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::cli:1.0.1::*:*:*:*:*:*"
+        },
+        {
+          "ref": "cpe:2.3:a::npm:3.10.10::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2020-15095",
+      "bom-ref": "CVE-2020-15095",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-93f3-23rq-pjfp",
+        "name": "GitHub"
+      },
+      "ratings": [
+        {
+          "score": 4.4,
+          "severity": "medium",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 1.9,
+          "severity": "low",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        532
+      ],
+      "description": "Sensitive information exposure through logs in npm CLI\n\nVersions of the npm CLI prior to 6.14.6 are vulnerable to an information exposure vulnerability through log files. The CLI supports URLs like `<protocol>://[<user>[:<password>]@]<hostname>[:<port>][:][/]<path>`. The password value is not redacted and is printed to stdout and also to any generated log files.",
+      "recommendation": "",
+      "created": "2020-07-07T19:15:00+00:00",
+      "published": "2020-07-07T19:15:00+00:00",
+      "updated": "2021-01-11T11:15:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::cli:1.0.1::*:*:*:*:*:*"
+        },
+        {
+          "ref": "cpe:2.3:a::npm:3.10.10::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2018-1107",
+      "bom-ref": "CVE-2018-1107",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-1107",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 5.3,
+          "severity": "medium",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 5,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        400
+      ],
+      "description": "It was discovered that the is-my-json-valid JavaScript library used an inefficient regular expression to validate JSON fields defined to have email format. A specially crafted JSON file could cause it to consume an excessive amount of CPU time when validated.",
+      "recommendation": "",
+      "created": "2021-03-30T02:15:00+00:00",
+      "published": "2021-03-30T02:15:00+00:00",
+      "updated": "2021-04-02T15:16:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::is-my-json-valid:2.19.0::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2021-23807",
+      "bom-ref": "CVE-2021-23807",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-23807",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 9.8,
+          "severity": "critical",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 7.5,
+          "severity": "high",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        843
+      ],
+      "description": "This affects the package jsonpointer before 5.0.0. A type confusion vulnerability can lead to a bypass of a previous Prototype Pollution fix when the pointer components are arrays.",
+      "recommendation": "",
+      "created": "2021-11-03T18:15:00+00:00",
+      "published": "2021-11-03T18:15:00+00:00",
+      "updated": "2021-11-03T18:15:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::jsonpointer:4.0.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2021-23820",
+      "bom-ref": "CVE-2021-23820",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-23820",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 9.8,
+          "severity": "critical",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 7.5,
+          "severity": "high",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        843
+      ],
+      "description": "This affects all versions of package json-pointer. A type confusion vulnerability can lead to a bypass of CVE-2020-7709 when the pointer components are arrays.",
+      "recommendation": "",
+      "created": "2021-11-03T18:15:00+00:00",
+      "published": "2021-11-03T18:15:00+00:00",
+      "updated": "2021-11-03T18:15:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::jsonpointer:4.0.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2008-1703",
+      "bom-ref": "CVE-2008-1703",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2008-1703",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 9.3,
+          "severity": "critical",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        119
+      ],
+      "description": "Multiple buffer overflows in TIBCO Software Rendezvous before 8.1.0, as used in multiple TIBCO products, allow remote attackers to execute arbitrary code via a crafted message.",
+      "recommendation": "",
+      "created": "2008-04-11T10:05:00+00:00",
+      "published": "2008-04-11T10:05:00+00:00",
+      "updated": "2017-08-08T01:30:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::hawk:3.1.3::*:*:*:*:*:*"
+        },
+        {
+          "ref": "cpe:2.3:a::hawk:1.0.0::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2008-3338",
+      "bom-ref": "CVE-2008-3338",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2008-3338",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 10,
+          "severity": "critical",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        119
+      ],
+      "description": "Multiple buffer overflows in TIBCO Hawk (1) AMI C library (libtibhawkami) and (2) Hawk HMA (tibhawkhma), as used in TIBCO Hawk before 4.8.1; Runtime Agent (TRA) before 5.6.0; iProcess Engine 10.3.0 through 10.6.2 and 11.0.0; and Mainframe Service Tracker before 1.1.0 might allow remote attackers to execute arbitrary code via a crafted message.",
+      "recommendation": "",
+      "created": "2008-08-13T22:41:00+00:00",
+      "published": "2008-08-13T22:41:00+00:00",
+      "updated": "2017-08-08T01:31:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::hawk:3.1.3::*:*:*:*:*:*"
+        },
+        {
+          "ref": "cpe:2.3:a::hawk:1.0.0::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2022-29167",
+      "bom-ref": "CVE-2022-29167",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-29167",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 7.5,
+          "severity": "high",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 5,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        400
+      ],
+      "description": "Hawk is an HTTP authentication scheme providing mechanisms for making authenticated HTTP requests with partial cryptographic verification of the request and response, covering the HTTP method, request URI, host, and optionally the request payload. Hawk used a regular expression to parse `Host` HTTP header (`Hawk.utils.parseHost()`), which was subject to regular expression DoS attack - meaning each added character in the attacker's input increases the computation time exponentially. `parseHost()` was patched in `9.0.1` to use built-in `URL` class to parse hostname instead. `Hawk.authenticate()` accepts `options` argument. If that contains `host` and `port`, those would be used instead of a call to `utils.parseHost()`.",
+      "recommendation": "",
+      "created": "2022-05-05T23:15:00+00:00",
+      "published": "2022-05-05T23:15:00+00:00",
+      "updated": "2022-05-05T23:15:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::hawk:3.1.3::*:*:*:*:*:*"
+        },
+        {
+          "ref": "cpe:2.3:a::hawk:1.0.0::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "debricked-149712",
+      "bom-ref": "debricked-149712",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-xc7v-wxcw-j472",
+        "name": "GitHub"
+      },
+      "ratings": [],
+      "cwes": [],
+      "description": "Memory Exposure in tunnel-agent\n\nVersions of `tunnel-agent` before 0.6.0 are vulnerable to memory exposure.\n\nThis is exploitable if user supplied input is provided to the auth value and is a number.\n\nProof-of-concept:\n```js\nrequire('request')({\n  method: 'GET',\n  uri: 'http://www.example.com',\n  tunnel: true,\n  proxy:{\n    protocol: 'http:',\n    host:'127.0.0.1',\n    port:8080,\n    auth:USERSUPPLIEDINPUT // number\n  }\n});\n```\n\n\n## Recommendation\n\nUpdate to version 0.6.0 or later.",
+      "recommendation": "",
+      "created": "2019-06-03T17:08:26+00:00",
+      "published": "2019-06-03T17:08:26+00:00",
+      "updated": "2019-06-03T17:08:26+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::tunnel-agent:0.4.3::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2021-23343",
+      "bom-ref": "CVE-2021-23343",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-23343",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 7.5,
+          "severity": "high",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 5,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [],
+      "description": "All versions of package path-parse are vulnerable to Regular Expression Denial of Service (ReDoS) via splitDeviceRe, splitTailRe, and splitPathRe regular expressions. ReDoS exhibits polynomial worst-case time complexity.",
+      "recommendation": "",
+      "created": "2021-05-04T09:15:00+00:00",
+      "published": "2021-05-04T09:15:00+00:00",
+      "updated": "2021-05-31T06:15:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::path-parse:1.0.5::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2019-19919",
+      "bom-ref": "CVE-2019-19919",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-w457-6q6x-cgp9",
+        "name": "GitHub"
+      },
+      "ratings": [
+        {
+          "score": 9.8,
+          "severity": "critical",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 7.5,
+          "severity": "high",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        1321
+      ],
+      "description": "Prototype Pollution in handlebars\n\nVersions of `handlebars` prior to 3.0.8 or 4.3.0 are vulnerable to Prototype Pollution leading to Remote Code Execution. Templates may alter an Objects' `__proto__` and `__defineGetter__` properties, which may allow an attacker to execute arbitrary code through crafted payloads.\n\n\n## Recommendation\n\nUpgrade to version 3.0.8, 4.3.0 or later.",
+      "recommendation": "",
+      "created": "2019-12-20T23:15:00+00:00",
+      "published": "2019-12-20T23:15:00+00:00",
+      "updated": "2019-12-23T19:37:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::handlebars:4.0.5::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2019-20920",
+      "bom-ref": "CVE-2019-20920",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-20920",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 8.1,
+          "severity": "high",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 6.8,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        94
+      ],
+      "description": "Handlebars before 3.0.8 and 4.x before 4.5.3 is vulnerable to Arbitrary Code Execution. The lookup helper fails to properly validate templates, allowing attackers to submit templates that execute arbitrary JavaScript. This can be used to run arbitrary code on a server processing Handlebars templates or in a victim's browser (effectively serving as XSS).",
+      "recommendation": "",
+      "created": "2020-09-30T18:15:00+00:00",
+      "published": "2020-09-30T18:15:00+00:00",
+      "updated": "2020-10-15T17:35:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::handlebars:4.0.5::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2019-20922",
+      "bom-ref": "CVE-2019-20922",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-20922",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 7.5,
+          "severity": "high",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 7.8,
+          "severity": "high",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        400
+      ],
+      "description": "Handlebars before 4.4.5 allows Regular Expression Denial of Service (ReDoS) because of eager matching. The parser may be forced into an endless loop while processing crafted templates. This may allow attackers to exhaust system resources.",
+      "recommendation": "",
+      "created": "2020-09-30T18:15:00+00:00",
+      "published": "2020-09-30T18:15:00+00:00",
+      "updated": "2020-10-07T13:06:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::handlebars:4.0.5::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2021-23369",
+      "bom-ref": "CVE-2021-23369",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-f2jv-r9rf-7988",
+        "name": "GitHub"
+      },
+      "ratings": [
+        {
+          "score": 9.8,
+          "severity": "critical",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 7.5,
+          "severity": "high",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [],
+      "description": "Remote code execution in handlebars when compiling templates\n\nThe package handlebars before 4.7.7 are vulnerable to Remote Code Execution (RCE) when selecting certain compiling options to compile templates coming from an untrusted source.",
+      "recommendation": "",
+      "created": "2021-04-12T14:15:00+00:00",
+      "published": "2021-04-12T14:15:00+00:00",
+      "updated": "2021-06-08T13:54:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::handlebars:4.0.5::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2021-23383",
+      "bom-ref": "CVE-2021-23383",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-23383",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 9.8,
+          "severity": "critical",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 7.5,
+          "severity": "high",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        1321
+      ],
+      "description": "The package handlebars before 4.7.7 are vulnerable to Prototype Pollution when selecting certain compiling options to compile templates coming from an untrusted source.",
+      "recommendation": "",
+      "created": "2021-05-04T09:15:00+00:00",
+      "published": "2021-05-04T09:15:00+00:00",
+      "updated": "2021-06-18T10:15:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::handlebars:4.0.5::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "debricked-149414",
+      "bom-ref": "debricked-149414",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-f52g-6jhx-586p",
+        "name": "GitHub"
+      },
+      "ratings": [],
+      "cwes": [],
+      "description": "Denial of Service in handlebars\n\nAffected versions of `handlebars` are vulnerable to Denial of Service. The package's parser may be forced into an endless loop while processing specially-crafted templates. This may allow attackers to exhaust system resources leading to Denial of Service.\n\n\n## Recommendation\n\nUpgrade to version 4.4.5 or later.",
+      "recommendation": "",
+      "created": "2020-09-03T23:20:12+00:00",
+      "published": "2020-09-03T23:20:12+00:00",
+      "updated": "2020-09-03T23:20:12+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::handlebars:4.0.5::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "debricked-149661",
+      "bom-ref": "debricked-149661",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-q42p-pg8m-cqh6",
+        "name": "GitHub"
+      },
+      "ratings": [],
+      "cwes": [],
+      "description": "Prototype Pollution in handlebars\n\nVersions of `handlebars` prior to 4.0.14 are vulnerable to Prototype Pollution. Templates may alter an Objects' prototype, thus allowing an attacker to execute arbitrary code on the server.\n\n\n## Recommendation\n\nFor handlebars 4.1.x upgrade to 4.1.2 or later.\nFor handlebars 4.0.x upgrade to 4.0.14 or later.",
+      "recommendation": "",
+      "created": "2019-06-05T14:07:48+00:00",
+      "published": "2019-06-05T14:07:48+00:00",
+      "updated": "2019-06-05T14:07:48+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::handlebars:4.0.5::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "debricked-149815",
+      "bom-ref": "debricked-149815",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-q2c6-c6pm-g3gh",
+        "name": "GitHub"
+      },
+      "ratings": [],
+      "cwes": [],
+      "description": "Arbitrary Code Execution in handlebars\n\nVersions of `handlebars` prior to 3.0.8 or 4.5.3 are vulnerable to Arbitrary Code Execution. The package's lookup helper fails to properly validate templates, allowing attackers to submit templates that execute arbitrary JavaScript in the system. It is due to an incomplete fix for a [previous issue](https://www.npmjs.com/advisories/1316). This vulnerability can be used to run arbitrary code in a server processing Handlebars templates or on a victim's browser (effectively serving as Cross-Site Scripting).\n\n\n## Recommendation\n\nUpgrade to version 3.0.8, 4.5.3 or later.",
+      "recommendation": "",
+      "created": "2020-09-04T15:07:38+00:00",
+      "published": "2020-09-04T15:07:38+00:00",
+      "updated": "2020-09-04T15:07:38+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::handlebars:4.0.5::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "debricked-149816",
+      "bom-ref": "debricked-149816",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-g9r4-xpmj-mj65",
+        "name": "GitHub"
+      },
+      "ratings": [],
+      "cwes": [],
+      "description": "Prototype Pollution in handlebars\n\nVersions of `handlebars` prior to 3.0.8 or 4.5.3 are vulnerable to prototype pollution. It is possible to add or modify properties to the Object prototype through a malicious template. This may allow attackers to crash the application or execute Arbitrary Code in specific conditions.\n\n\n## Recommendation\n\nUpgrade to version 3.0.8, 4.5.3 or later.",
+      "recommendation": "",
+      "created": "2020-09-04T15:06:32+00:00",
+      "published": "2020-09-04T15:06:32+00:00",
+      "updated": "2020-09-04T15:06:32+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::handlebars:4.0.5::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "debricked-149824",
+      "bom-ref": "debricked-149824",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-2cf5-4w76-r9qv",
+        "name": "GitHub"
+      },
+      "ratings": [],
+      "cwes": [],
+      "description": "Arbitrary Code Execution in handlebars\n\nVersions of `handlebars` prior to 3.0.8 or 4.5.2 are vulnerable to Arbitrary Code Execution. The package's lookup helper fails to properly validate templates, allowing attackers to submit templates that execute arbitrary JavaScript in the system. It can be used to run arbitrary code in a server processing Handlebars templates or on a victim's browser (effectively serving as Cross-Site Scripting).\n\nThe following template can be used to demonstrate the vulnerability:  \n```{{#with \"constructor\"}}\n\t{{#with split as |a|}}\n\t\t{{pop (push \"alert('Vulnerable Handlebars JS');\")}}\n\t\t{{#with (concat (lookup join (slice 0 1)))}}\n\t\t\t{{#each (slice 2 3)}}\n\t\t\t\t{{#with (apply 0 a)}}\n\t\t\t\t\t{{.}}\n\t\t\t\t{{/with}}\n\t\t\t{{/each}}\n\t\t{{/with}}\n\t{{/with}}\n{{/with}}```\n\n\n## Recommendation\n\nUpgrade to version 3.0.8, 4.5.2 or later.",
+      "recommendation": "Change handlebars to 4.5.2",
+      "created": "2020-09-04T14:57:38+00:00",
+      "published": "2020-09-04T14:57:38+00:00",
+      "updated": "2020-09-04T14:57:38+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::handlebars:4.0.5::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2015-8857",
+      "bom-ref": "CVE-2015-8857",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-g6f4-j6c2-w3p3",
+        "name": "GitHub"
+      },
+      "ratings": [
+        {
+          "score": 9.8,
+          "severity": "critical",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 7.5,
+          "severity": "high",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        254
+      ],
+      "description": "High severity vulnerability that affects uglify-js\n\nWithdrawn, accidental duplicate publish.\r\n\r\nThe uglify-js package before 2.4.24 for Node.js does not properly account for non-boolean values when rewriting boolean expressions, which might allow attackers to bypass security mechanisms or possibly have unspecified other impact by leveraging improperly rewritten Javascript.",
+      "recommendation": "",
+      "created": "2017-01-23T21:59:00+00:00",
+      "published": "2017-01-23T21:59:00+00:00",
+      "updated": "2019-12-12T19:37:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::uglify-js:2.7.0::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "debricked-149688",
+      "bom-ref": "debricked-149688",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-g95f-p29q-9xw4",
+        "name": "GitHub"
+      },
+      "ratings": [],
+      "cwes": [],
+      "description": "Regular Expression Denial of Service in braces\n\nVersions of `braces` prior to 2.3.1 are vulnerable to Regular Expression Denial of Service (ReDoS). Untrusted input may cause catastrophic backtracking while matching regular expressions. This can cause the application to be unresponsive leading to Denial of Service.\n\n\n## Recommendation\n\nUpgrade to version 2.3.1 or higher.",
+      "recommendation": "",
+      "created": "2019-06-06T15:30:30+00:00",
+      "published": "2019-06-06T15:30:30+00:00",
+      "updated": "2019-06-06T15:30:30+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::braces:1.8.5::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2017-16028",
+      "bom-ref": "CVE-2017-16028",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-6g33-f262-xjp4",
+        "name": "GitHub"
+      },
+      "ratings": [
+        {
+          "score": 5.3,
+          "severity": "medium",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 5,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        338
+      ],
+      "description": "Cryptographically Weak PRNG in randomatic\n\nAffected versions of `randomatic` generate random values using a cryptographically weak psuedo-random number generator. This may result in predictable values instead of random values as intended.\n\n\n\n\n## Recommendation\n\nUpdate to version 3.0.0 or later.",
+      "recommendation": "",
+      "created": "2018-06-04T19:29:00+00:00",
+      "published": "2018-06-04T19:29:00+00:00",
+      "updated": "2019-10-09T23:24:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::randomatic:1.1.5::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2020-7608",
+      "bom-ref": "CVE-2020-7608",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-7608",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 5.3,
+          "severity": "medium",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 4.6,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        915
+      ],
+      "description": "yargs-parser could be tricked into adding or modifying properties of Object.prototype using a \"__proto__\" payload.",
+      "recommendation": "",
+      "created": "2020-03-16T20:15:00+00:00",
+      "published": "2020-03-16T20:15:00+00:00",
+      "updated": "2020-03-19T13:39:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::yargs-parser:2.4.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2021-27478",
+      "bom-ref": "CVE-2021-27478",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-27478",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 7.5,
+          "severity": "high",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 5,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        681
+      ],
+      "description": "A specifically crafted packet sent by an attacker to EIPStackGroup OpENer EtherNet/IP commits and versions prior to Feb 10, 2021 may cause a denial-of-service condition.",
+      "recommendation": "",
+      "created": "2022-05-12T20:15:00+00:00",
+      "published": "2022-05-12T20:15:00+00:00",
+      "updated": "2022-05-12T20:15:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::opener:1.5.1::*:*:*:*:*:*"
+        },
+        {
+          "ref": "cpe:2.3:a::opener:1.4.2::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2021-27482",
+      "bom-ref": "CVE-2021-27482",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-27482",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 7.5,
+          "severity": "high",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 5,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        125
+      ],
+      "description": "A specifically crafted packet sent by an attacker to EIPStackGroup OpENer EtherNet/IP commits and versions prior to Feb 10, 2021 may allow the attacker to read arbitrary data.",
+      "recommendation": "",
+      "created": "2022-05-12T20:15:00+00:00",
+      "published": "2022-05-12T20:15:00+00:00",
+      "updated": "2022-05-12T20:15:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::opener:1.5.1::*:*:*:*:*:*"
+        },
+        {
+          "ref": "cpe:2.3:a::opener:1.4.2::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2021-27498",
+      "bom-ref": "CVE-2021-27498",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-27498",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 7.5,
+          "severity": "high",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 5,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        617
+      ],
+      "description": "A specifically crafted packet sent by an attacker to EIPStackGroup OpENer EtherNet/IP commits and versions prior to Feb 10, 2021 may result in a denial-of-service condition.",
+      "recommendation": "",
+      "created": "2022-05-12T20:15:00+00:00",
+      "published": "2022-05-12T20:15:00+00:00",
+      "updated": "2022-05-12T20:15:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::opener:1.5.1::*:*:*:*:*:*"
+        },
+        {
+          "ref": "cpe:2.3:a::opener:1.4.2::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2021-27500",
+      "bom-ref": "CVE-2021-27500",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-27500",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 7.5,
+          "severity": "high",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 5,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        617
+      ],
+      "description": "A specifically crafted packet sent by an attacker to EIPStackGroup OpENer EtherNet/IP commits and versions prior to Feb 10, 2021 may result in a denial-of-service condition.",
+      "recommendation": "",
+      "created": "2022-05-12T20:15:00+00:00",
+      "published": "2022-05-12T20:15:00+00:00",
+      "updated": "2022-05-12T20:15:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::opener:1.5.1::*:*:*:*:*:*"
+        },
+        {
+          "ref": "cpe:2.3:a::opener:1.4.2::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "debricked-160896",
+      "bom-ref": "debricked-160896",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-h6ch-v84p-w6p9",
+        "name": "GitHub"
+      },
+      "ratings": [],
+      "cwes": [],
+      "description": "Regular Expression Denial of Service (ReDoS)\n\nA vulnerability was found in diff before v3.5.0, the affected versions of this package are vulnerable to Regular Expression Denial of Service (ReDoS) attacks.",
+      "recommendation": "Change diff to 3.5.0",
+      "created": "2019-06-13T18:58:54+00:00",
+      "published": "2019-06-13T18:58:54+00:00",
+      "updated": "2019-06-13T18:58:54+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::diff:1.4.0::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2018-7408",
+      "bom-ref": "CVE-2018-7408",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-7408",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 7.8,
+          "severity": "high",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 4.6,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        732
+      ],
+      "description": "An issue was discovered in an npm 5.7.0 2018-02-21 pre-release (marked as \"next: 5.7.0\" and therefore automatically installed by an \"npm upgrade -g npm\" command, and also announced in the vendor's blog without mention of pre-release status). It might allow local users to bypass intended filesystem access restrictions because ownerships of /etc and /usr directories are being changed unexpectedly, related to a \"correctMkdir\" issue.",
+      "recommendation": "",
+      "created": "2018-02-22T18:29:00+00:00",
+      "published": "2018-02-22T18:29:00+00:00",
+      "updated": "2019-10-03T00:03:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::npm:3.10.10::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2015-0903",
+      "bom-ref": "CVE-2015-0903",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0903",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 7.5,
+          "severity": "high",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        119
+      ],
+      "description": "Buffer overflow in Saitoh Kikaku Maruo Editor 8.51 and earlier allows remote attackers to execute arbitrary code via a crafted .hmbook file.",
+      "recommendation": "",
+      "created": "2015-04-03T10:59:00+00:00",
+      "published": "2015-04-03T10:59:00+00:00",
+      "updated": "2015-04-06T16:57:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::editor:1.0.0::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "debricked-149343",
+      "bom-ref": "debricked-149343",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-cr56-66mx-293v",
+        "name": "GitHub"
+      },
+      "ratings": [],
+      "cwes": [],
+      "description": "Cross-Site Scripting in @toast-ui/editor\n\nVersions of `@toast-ui/editor` prior to 2.2.0 are vulnerable to Cross-Site Scripting (XSS).  There are multiple bypasses to the package's built-in XSS sanitization. This may allow attackers to execute arbitrary JavaScript on a victim's browser.\n\n## Recommendation\n\nUpgrade to version 2.2.0 or later.",
+      "recommendation": "",
+      "created": "2020-09-03T15:53:50+00:00",
+      "published": "2020-09-03T15:53:50+00:00",
+      "updated": "2020-09-03T15:53:50+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::editor:1.0.0::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2019-13173",
+      "bom-ref": "CVE-2019-13173",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-xf7w-r453-m56c",
+        "name": "GitHub"
+      },
+      "ratings": [
+        {
+          "score": 7.5,
+          "severity": "high",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 6.4,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        59
+      ],
+      "description": "Arbitrary File Overwrite in fstream\n\nVersions of `fstream` prior to 1.0.12 are vulnerable to Arbitrary File Overwrite. Extracting tarballs containing a hardlink to a file that already exists in the system and a file that matches the hardlink will overwrite the system's file with the contents of the extracted file. The `fstream.DirWriter()` function is vulnerable.\n\n\n## Recommendation\n\nUpgrade to version 1.0.12 or later.",
+      "recommendation": "",
+      "created": "2019-07-02T20:15:00+00:00",
+      "published": "2019-07-02T20:15:00+00:00",
+      "updated": "2020-08-24T17:37:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::fstream:1.0.10::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2002-1647",
+      "bom-ref": "CVE-2002-1647",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2002-1647",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 5,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [],
+      "description": "The quick login feature in Slash Slashcode does not redirect the user to an alternate URL when the wrong password is provided, which makes it easier for remote web sites to guess the proper passwords by reading the username and password from the Referrer URL.",
+      "recommendation": "",
+      "created": "2002-12-31T05:00:00+00:00",
+      "published": "2002-12-31T05:00:00+00:00",
+      "updated": "2016-10-18T02:27:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::slash:1.0.0::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2008-2231",
+      "bom-ref": "CVE-2008-2231",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2008-2231",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 7.5,
+          "severity": "high",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        89
+      ],
+      "description": "SQL injection vulnerability in Slashdot Like Automated Storytelling Homepage (Slash) (aka Slashcode) R_2_5_0_94 and earlier allows remote attackers to execute SQL commands and read table information via the id parameter.",
+      "recommendation": "",
+      "created": "2008-06-05T20:32:00+00:00",
+      "published": "2008-06-05T20:32:00+00:00",
+      "updated": "2017-08-08T01:30:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::slash:1.0.0::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2008-2553",
+      "bom-ref": "CVE-2008-2553",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2008-2553",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 4.3,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        79
+      ],
+      "description": "Cross-site scripting (XSS) vulnerability in Slashdot Like Automated Storytelling Homepage (Slash) (aka Slashcode) R_2_5_0_94 and earlier allows remote attackers to inject arbitrary web script or HTML via the userfield parameter.",
+      "recommendation": "",
+      "created": "2008-06-05T20:32:00+00:00",
+      "published": "2008-06-05T20:32:00+00:00",
+      "updated": "2017-08-08T01:31:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::slash:1.0.0::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2018-20834",
+      "bom-ref": "CVE-2018-20834",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-j44m-qm6p-hp7m",
+        "name": "GitHub"
+      },
+      "ratings": [
+        {
+          "score": 7.5,
+          "severity": "high",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 6.4,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        59
+      ],
+      "description": "Arbitrary File Overwrite in tar\n\nVersions of `tar` prior to 4.4.2 for 4.x and 2.2.2 for 2.x are vulnerable to Arbitrary File Overwrite. Extracting tarballs containing a hardlink to a file that already exists in the system, and a file that matches the hardlink will overwrite the system's file with the contents of the extracted file.\n\n\n## Recommendation\n\nFor tar 4.x, upgrade to version 4.4.2 or later.\nFor tar 2.x, upgrade to version 2.2.2 or later.",
+      "recommendation": "",
+      "created": "2019-04-30T19:29:00+00:00",
+      "published": "2019-04-30T19:29:00+00:00",
+      "updated": "2019-09-04T20:15:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::tar:2.2.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2020-7754",
+      "bom-ref": "CVE-2020-7754",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-pw54-mh39-w3hc",
+        "name": "GitHub"
+      },
+      "ratings": [
+        {
+          "score": 7.5,
+          "severity": "high",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 5,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [],
+      "description": "Regular expression denial of service in npm-user-validate\n\nThis affects the package npm-user-validate before 1.0.1. The regex that validates user emails took exponentially longer to process long input strings beginning with @ characters.",
+      "recommendation": "",
+      "created": "2020-10-27T15:15:00+00:00",
+      "published": "2020-10-27T15:15:00+00:00",
+      "updated": "2020-10-27T17:31:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::npm-user-validate:0.1.5::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "debricked-152368",
+      "bom-ref": "debricked-152368",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-xgh6-85xh-479p",
+        "name": "GitHub"
+      },
+      "ratings": [],
+      "cwes": [],
+      "description": "Regular Expression Denial of Service in npm-user-validate\n\n`npm-user-validate` before version `1.0.1` is vulnerable to a Regular Expression Denial of Service (REDos). The regex that validates user emails took exponentially longer to process long input strings beginning with `@` characters.\n\n### Impact\nThe issue affects the `email` function. If you use this function to process arbitrary user input with no character limit the application may be susceptible to Denial of Service.\n\n### Patches\nThe issue is patched in version 1.0.1 by improving the regular expression used and also enforcing a 254 character limit.\n\n### Workarounds\nRestrict the character length to a reasonable degree before passing a value to `.emal()`; Also, consider doing a more rigorous sanitizing/validation beforehand.",
+      "recommendation": "",
+      "created": "2020-10-16T18:56:26+00:00",
+      "published": "2020-10-16T18:56:26+00:00",
+      "updated": "2020-10-16T18:56:26+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::npm-user-validate:0.1.5::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2020-8244",
+      "bom-ref": "CVE-2020-8244",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-pp7h-53gx-mx7r",
+        "name": "GitHub"
+      },
+      "ratings": [
+        {
+          "score": 6.5,
+          "severity": "medium",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 6.4,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        125
+      ],
+      "description": "Remote Memory Exposure in bl\n\nA buffer over-read vulnerability exists in bl <4.0.3, <3.0.1, <2.2.1, and <1.2.3 which could allow an attacker to supply user input (even typed) that if it ends up in consume() argument and can become negative, the BufferList state can be corrupted, tricking it into exposing uninitialized memory via regular .slice() calls.",
+      "recommendation": "",
+      "created": "2020-08-30T15:15:00+00:00",
+      "published": "2020-08-30T15:15:00+00:00",
+      "updated": "2021-07-01T03:15:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::bl:1.1.2::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2017-1000048",
+      "bom-ref": "CVE-2017-1000048",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-gqgv-6jq5-jjj9",
+        "name": "GitHub"
+      },
+      "ratings": [
+        {
+          "score": 7.5,
+          "severity": "high",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 5,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        20
+      ],
+      "description": "Prototype Pollution Protection Bypass in qs\n\nAffected version of `qs` are vulnerable to Prototype Pollution because it is possible to bypass the protection. The `qs.parse` function fails to properly prevent an object's prototype to be altered when parsing arbitrary input. Input containing `[` or `]` may bypass the prototype pollution protection and alter the Object prototype. This allows attackers to override properties that will exist in all objects, which may lead to Denial of Service or Remote Code Execution in specific circumstances.\n\n\n## Recommendation\n\nUpgrade to 6.0.4, 6.1.2, 6.2.3, 6.3.2 or later.",
+      "recommendation": "",
+      "created": "2017-07-17T13:18:00+00:00",
+      "published": "2017-07-17T13:18:00+00:00",
+      "updated": "2017-12-31T02:29:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::qs:6.2.1::*:*:*:*:*:*"
+        },
+        {
+          "ref": "cpe:2.3:a::qs:0.6.6::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2021-31155",
+      "bom-ref": "CVE-2021-31155",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-31155",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 7.8,
+          "severity": "high",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 7.2,
+          "severity": "high",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        269
+      ],
+      "description": "Failure to normalize the umask in please before 0.4 allows a local attacker to gain full root privileges if they are allowed to execute at least one command.",
+      "recommendation": "",
+      "created": "2021-05-27T13:15:00+00:00",
+      "published": "2021-05-27T13:15:00+00:00",
+      "updated": "2021-06-07T20:02:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::umask:1.1.0::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2013-4691",
+      "bom-ref": "CVE-2013-4691",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-4691",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 6.1,
+          "severity": "medium",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 4.3,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        79
+      ],
+      "description": "Sencha Labs Connect has XSS with connect.methodOverride()",
+      "recommendation": "",
+      "created": "2019-12-27T16:15:00+00:00",
+      "published": "2019-12-27T16:15:00+00:00",
+      "updated": "2020-01-04T14:27:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::connect:3.4.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2015-0343",
+      "bom-ref": "CVE-2015-0343",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0343",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 4.3,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        79
+      ],
+      "description": "Cross-site scripting (XSS) vulnerability in admin/home/homepage/search in the web app in Adobe Connect before 9.4 allows remote attackers to inject arbitrary web script or HTML via the query parameter.",
+      "recommendation": "",
+      "created": "2015-06-13T15:59:00+00:00",
+      "published": "2015-06-13T15:59:00+00:00",
+      "updated": "2016-12-31T02:59:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::connect:3.4.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2015-0344",
+      "bom-ref": "CVE-2015-0344",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0344",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 4.3,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        79
+      ],
+      "description": "Cross-site scripting (XSS) vulnerability in the web app in Adobe Connect before 9.4 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.",
+      "recommendation": "",
+      "created": "2015-06-13T15:59:00+00:00",
+      "published": "2015-06-13T15:59:00+00:00",
+      "updated": "2016-12-31T02:59:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::connect:3.4.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2016-0948",
+      "bom-ref": "CVE-2016-0948",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2016-0948",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 8.8,
+          "severity": "high",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 6.8,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        352
+      ],
+      "description": "Cross-site request forgery (CSRF) vulnerability in Adobe Connect before 9.5.2 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.",
+      "recommendation": "",
+      "created": "2016-02-10T20:59:00+00:00",
+      "published": "2016-02-10T20:59:00+00:00",
+      "updated": "2016-12-06T03:05:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::connect:3.4.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2016-0949",
+      "bom-ref": "CVE-2016-0949",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2016-0949",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 9.8,
+          "severity": "critical",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 10,
+          "severity": "critical",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [],
+      "description": "Adobe Connect before 9.5.2 allows remote attackers to have an unspecified impact via a crafted parameter in a URL.",
+      "recommendation": "",
+      "created": "2016-02-10T20:59:00+00:00",
+      "published": "2016-02-10T20:59:00+00:00",
+      "updated": "2016-12-06T03:05:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::connect:3.4.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2016-0950",
+      "bom-ref": "CVE-2016-0950",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2016-0950",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 5.3,
+          "severity": "medium",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 5,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        20
+      ],
+      "description": "Adobe Connect before 9.5.2 allows remote attackers to spoof the user interface via unspecified vectors.",
+      "recommendation": "",
+      "created": "2016-02-10T20:59:00+00:00",
+      "published": "2016-02-10T20:59:00+00:00",
+      "updated": "2016-12-06T03:06:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::connect:3.4.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2016-4118",
+      "bom-ref": "CVE-2016-4118",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2016-4118",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 7.8,
+          "severity": "high",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 7.2,
+          "severity": "high",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        264
+      ],
+      "description": "Untrusted search path vulnerability in the installer in Adobe Connect Add-In before 11.9.976.291 on Windows allows local users to gain privileges via unspecified vectors.",
+      "recommendation": "",
+      "created": "2016-05-30T01:59:00+00:00",
+      "published": "2016-05-30T01:59:00+00:00",
+      "updated": "2017-11-29T02:29:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::connect:3.4.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2016-7851",
+      "bom-ref": "CVE-2016-7851",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2016-7851",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 6.1,
+          "severity": "medium",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 4.3,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        79
+      ],
+      "description": "Adobe Connect version 9.5.6 and earlier does not adequately validate input in the events registration module. This vulnerability could be exploited in cross-site scripting attacks.",
+      "recommendation": "",
+      "created": "2016-11-08T17:59:00+00:00",
+      "published": "2016-11-08T17:59:00+00:00",
+      "updated": "2017-09-03T01:29:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::connect:3.4.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2017-11287",
+      "bom-ref": "CVE-2017-11287",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-11287",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 6.1,
+          "severity": "medium",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 4.3,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        79
+      ],
+      "description": "An issue was discovered in Adobe Connect 9.6.2 and earlier versions. A reflected cross-site scripting vulnerability exists that can result in information disclosure.",
+      "recommendation": "",
+      "created": "2017-12-09T06:29:00+00:00",
+      "published": "2017-12-09T06:29:00+00:00",
+      "updated": "2017-12-14T14:57:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::connect:3.4.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2017-11288",
+      "bom-ref": "CVE-2017-11288",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-11288",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 6.1,
+          "severity": "medium",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 4.3,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        79
+      ],
+      "description": "An issue was discovered in Adobe Connect 9.6.2 and earlier versions. A reflected cross-site scripting vulnerability exists that can result in information disclosure.",
+      "recommendation": "",
+      "created": "2017-12-09T06:29:00+00:00",
+      "published": "2017-12-09T06:29:00+00:00",
+      "updated": "2017-12-14T14:43:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::connect:3.4.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2017-11289",
+      "bom-ref": "CVE-2017-11289",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-11289",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 6.1,
+          "severity": "medium",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 4.3,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        79
+      ],
+      "description": "An issue was discovered in Adobe Connect 9.6.2 and earlier versions. A reflected cross-site scripting vulnerability exists that can result in information disclosure.",
+      "recommendation": "",
+      "created": "2017-12-09T06:29:00+00:00",
+      "published": "2017-12-09T06:29:00+00:00",
+      "updated": "2017-12-14T14:43:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::connect:3.4.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2017-11290",
+      "bom-ref": "CVE-2017-11290",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-11290",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 6.1,
+          "severity": "medium",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 4.3,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        1021
+      ],
+      "description": "An issue was discovered in Adobe Connect 9.6.2 and earlier versions. A UI Redress (or Clickjacking) vulnerability exists. This issue has been resolved by adding a feature that enables Connect administrators to protect users from UI redressing (or clickjacking) attacks.",
+      "recommendation": "",
+      "created": "2017-12-09T06:29:00+00:00",
+      "published": "2017-12-09T06:29:00+00:00",
+      "updated": "2019-10-03T00:03:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::connect:3.4.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2017-11291",
+      "bom-ref": "CVE-2017-11291",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-11291",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 10,
+          "severity": "critical",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 6.4,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        918
+      ],
+      "description": "An issue was discovered in Adobe Connect 9.6.2 and earlier versions. A Server-Side Request Forgery (SSRF) vulnerability exists that could be abused to bypass network access controls.",
+      "recommendation": "",
+      "created": "2017-12-09T06:29:00+00:00",
+      "published": "2017-12-09T06:29:00+00:00",
+      "updated": "2017-12-14T14:57:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::connect:3.4.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2017-3101",
+      "bom-ref": "CVE-2017-3101",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-3101",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 7.5,
+          "severity": "high",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 5,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [],
+      "description": "Adobe Connect versions 9.6.1 and earlier have a clickjacking vulnerability. Successful exploitation could lead to a clickjacking attack.",
+      "recommendation": "",
+      "created": "2017-07-17T13:18:00+00:00",
+      "published": "2017-07-17T13:18:00+00:00",
+      "updated": "2019-10-03T00:03:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::connect:3.4.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2017-3102",
+      "bom-ref": "CVE-2017-3102",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-3102",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 6.1,
+          "severity": "medium",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 4.3,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        79
+      ],
+      "description": "Adobe Connect versions 9.6.1 and earlier have a reflected cross-site scripting vulnerability. Successful exploitation could lead to a reflected cross-site scripting attack.",
+      "recommendation": "",
+      "created": "2017-07-17T13:18:00+00:00",
+      "published": "2017-07-17T13:18:00+00:00",
+      "updated": "2017-07-19T13:26:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::connect:3.4.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2017-3103",
+      "bom-ref": "CVE-2017-3103",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-3103",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 6.1,
+          "severity": "medium",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 4.3,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        79
+      ],
+      "description": "Adobe Connect versions 9.6.1 and earlier have a stored cross-site scripting vulnerability. Successful exploitation could lead to a stored cross-site scripting attack.",
+      "recommendation": "",
+      "created": "2017-07-17T13:18:00+00:00",
+      "published": "2017-07-17T13:18:00+00:00",
+      "updated": "2017-07-19T13:26:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::connect:3.4.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2018-12804",
+      "bom-ref": "CVE-2018-12804",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-12804",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 9.8,
+          "severity": "critical",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 7.5,
+          "severity": "high",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        287
+      ],
+      "description": "Adobe Connect versions 9.7.5 and earlier have an Authentication Bypass vulnerability. Successful exploitation could lead to session hijacking.",
+      "recommendation": "",
+      "created": "2018-07-20T15:29:02+00:00",
+      "published": "2018-07-20T15:29:02+00:00",
+      "updated": "2018-09-17T17:41:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::connect:3.4.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2018-12805",
+      "bom-ref": "CVE-2018-12805",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-12805",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 9.8,
+          "severity": "critical",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 7.5,
+          "severity": "high",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        427
+      ],
+      "description": "Adobe Connect versions 9.7.5 and earlier have an Insecure Library Loading vulnerability. Successful exploitation could lead to privilege escalation.",
+      "recommendation": "",
+      "created": "2018-07-20T19:29:00+00:00",
+      "published": "2018-07-20T19:29:00+00:00",
+      "updated": "2019-10-03T00:03:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::connect:3.4.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2018-19718",
+      "bom-ref": "CVE-2018-19718",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-19718",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 5.3,
+          "severity": "medium",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 5,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        200
+      ],
+      "description": "Adobe Connect versions 9.8.1 and earlier have a session token exposure vulnerability. Successful exploitation could lead to exposure of the privileges granted to a session.",
+      "recommendation": "",
+      "created": "2019-01-18T12:29:44+00:00",
+      "published": "2019-01-18T12:29:44+00:00",
+      "updated": "2019-01-22T18:27:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::connect:3.4.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2018-4921",
+      "bom-ref": "CVE-2018-4921",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-4921",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 6.1,
+          "severity": "medium",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 4.3,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        434
+      ],
+      "description": "Adobe Connect versions 9.7 and earlier have an exploitable unrestricted SWF file upload vulnerability. Successful exploitation could lead to information disclosure.",
+      "recommendation": "",
+      "created": "2018-05-19T17:29:00+00:00",
+      "published": "2018-05-19T17:29:00+00:00",
+      "updated": "2020-08-24T17:37:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::connect:3.4.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2018-4923",
+      "bom-ref": "CVE-2018-4923",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-4923",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 9.1,
+          "severity": "critical",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 6.4,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        78
+      ],
+      "description": "Adobe Connect versions 9.7 and earlier have an exploitable OS Command Injection. Successful exploitation could lead to arbitrary file deletion.",
+      "recommendation": "",
+      "created": "2018-05-19T17:29:00+00:00",
+      "published": "2018-05-19T17:29:00+00:00",
+      "updated": "2018-06-22T17:16:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::connect:3.4.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2018-4994",
+      "bom-ref": "CVE-2018-4994",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-4994",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 7.5,
+          "severity": "high",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 5,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [],
+      "description": "Adobe Connect versions 9.7.5 and earlier have an exploitable Authentication Bypass vulnerability. Successful exploitation could lead to sensitive information disclosure.",
+      "recommendation": "",
+      "created": "2018-05-19T17:29:00+00:00",
+      "published": "2018-05-19T17:29:00+00:00",
+      "updated": "2020-08-24T17:37:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::connect:3.4.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2020-24442",
+      "bom-ref": "CVE-2020-24442",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-24442",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 6.1,
+          "severity": "medium",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 4.3,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        79
+      ],
+      "description": "Adobe Connect version 11.0 (and earlier) is affected by a reflected Cross-Site Scripting (XSS) vulnerability. If an attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the victim's browser.",
+      "recommendation": "",
+      "created": "2020-11-12T15:15:00+00:00",
+      "published": "2020-11-12T15:15:00+00:00",
+      "updated": "2020-11-17T17:08:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::connect:3.4.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2020-24443",
+      "bom-ref": "CVE-2020-24443",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-24443",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 6.1,
+          "severity": "medium",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 4.3,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        79
+      ],
+      "description": "Adobe Connect version 11.0 (and earlier) is affected by a reflected Cross-Site Scripting (XSS) vulnerability. If an attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the victim's browser.",
+      "recommendation": "",
+      "created": "2020-11-12T15:15:00+00:00",
+      "published": "2020-11-12T15:15:00+00:00",
+      "updated": "2020-11-17T17:08:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::connect:3.4.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2020-5674",
+      "bom-ref": "CVE-2020-5674",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-5674",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 7.8,
+          "severity": "high",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 4.4,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        427
+      ],
+      "description": "Untrusted search path vulnerability in the installers of multiple SEIKO EPSON products allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.",
+      "recommendation": "",
+      "created": "2020-11-24T07:15:00+00:00",
+      "published": "2020-11-24T07:15:00+00:00",
+      "updated": "2020-12-09T19:10:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::connect:3.4.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2021-21079",
+      "bom-ref": "CVE-2021-21079",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-21079",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 6.1,
+          "severity": "medium",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 4.3,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        79
+      ],
+      "description": "Adobe Connect version 11.0.7 (and earlier) is affected by a reflected Cross-Site Scripting (XSS) vulnerability. An attacker could exploit this vulnerability to inject malicious JavaScript content that may be executed within the context of the victim's browser when they browse to the page containing the vulnerable field.",
+      "recommendation": "",
+      "created": "2021-03-12T19:15:00+00:00",
+      "published": "2021-03-12T19:15:00+00:00",
+      "updated": "2021-06-11T18:15:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::connect:3.4.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2021-21080",
+      "bom-ref": "CVE-2021-21080",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-21080",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 6.1,
+          "severity": "medium",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 4.3,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        79
+      ],
+      "description": "Adobe Connect version 11.0.7 (and earlier) is affected by a reflected Cross-Site Scripting (XSS) vulnerability. An attacker could exploit this vulnerability to inject malicious JavaScript content that may be executed within the context of the victim's browser when they browse to the page containing the vulnerable field.",
+      "recommendation": "",
+      "created": "2021-03-12T19:15:00+00:00",
+      "published": "2021-03-12T19:15:00+00:00",
+      "updated": "2021-06-11T18:15:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::connect:3.4.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2021-21085",
+      "bom-ref": "CVE-2021-21085",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-21085",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 7.8,
+          "severity": "high",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 6.8,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        20
+      ],
+      "description": "Adobe Connect version 11.0.7 (and earlier) is affected by an Input Validation vulnerability in the export feature. An attacker could exploit this vulnerability by injecting a payload into an online event form and achieve code execution if the victim exports and opens the data on their local machine.",
+      "recommendation": "",
+      "created": "2021-03-12T19:15:00+00:00",
+      "published": "2021-03-12T19:15:00+00:00",
+      "updated": "2021-06-28T13:15:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::connect:3.4.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2021-23331",
+      "bom-ref": "CVE-2021-23331",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-23331",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 3.3,
+          "severity": "low",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 2.1,
+          "severity": "low",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [],
+      "description": "This affects all versions of package com.squareup:connect. The method prepareDownloadFilecreates creates a temporary file with the permissions bits of -rw-r--r-- on unix-like systems. On unix-like systems, the system temporary directory is shared between users. As such, the contents of the file downloaded by downloadFileFromResponse will be visible to all other users on the local system. A workaround fix for this issue is to set the system property java.io.tmpdir to a safe directory as remediation. Note: This version of the SDK is end of life and no longer maintained, please upgrade to the latest version.",
+      "recommendation": "",
+      "created": "2021-02-03T18:15:00+00:00",
+      "published": "2021-02-03T18:15:00+00:00",
+      "updated": "2021-02-08T16:30:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::connect:3.4.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2021-25265",
+      "bom-ref": "CVE-2021-25265",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-25265",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 8.8,
+          "severity": "high",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 6.8,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [],
+      "description": "A malicious website could execute code remotely in Sophos Connect Client before version 2.1.",
+      "recommendation": "",
+      "created": "2021-03-22T18:15:00+00:00",
+      "published": "2021-03-22T18:15:00+00:00",
+      "updated": "2021-03-24T17:58:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::connect:3.4.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2021-28579",
+      "bom-ref": "CVE-2021-28579",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-28579",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 4.3,
+          "severity": "medium",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 4,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        269
+      ],
+      "description": "Adobe Connect version 11.2.1 (and earlier) is affected by an Improper access control vulnerability that can lead to the elevation of privileges. An attacker with 'Learner' permissions can leverage this scenario to access the list of event participants.",
+      "recommendation": "",
+      "created": "2021-06-28T15:15:00+00:00",
+      "published": "2021-06-28T15:15:00+00:00",
+      "updated": "2021-07-02T14:31:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::connect:3.4.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2021-36061",
+      "bom-ref": "CVE-2021-36061",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-36061",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 5.4,
+          "severity": "medium",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 4.3,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        657
+      ],
+      "description": "Adobe Connect version 11.2.2 (and earlier) is affected by a secure design principles violation vulnerability via the 'pbMode' parameter. An unauthenticated attacker could leverage this vulnerability to edit or delete recordings on the Connect environment. Exploitation of this issue requires user interaction in that a victim must publish a link of a Connect recording.",
+      "recommendation": "",
+      "created": "2021-09-01T15:15:00+00:00",
+      "published": "2021-09-01T15:15:00+00:00",
+      "updated": "2021-09-01T15:15:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::connect:3.4.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2021-36062",
+      "bom-ref": "CVE-2021-36062",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-36062",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 6.1,
+          "severity": "medium",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 4.3,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        79
+      ],
+      "description": "Adobe Connect version 11.2.2 (and earlier) is affected by a Reflected Cross-site Scripting vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable form fields. If an attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the victim's browser.",
+      "recommendation": "",
+      "created": "2021-09-01T15:15:00+00:00",
+      "published": "2021-09-01T15:15:00+00:00",
+      "updated": "2021-09-01T15:15:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::connect:3.4.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2021-36063",
+      "bom-ref": "CVE-2021-36063",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-36063",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 6.1,
+          "severity": "medium",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 4.3,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        79
+      ],
+      "description": "Adobe Connect version 11.2.2 (and earlier) is affected by a Reflected Cross-site Scripting vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page containing the vulnerable field.",
+      "recommendation": "",
+      "created": "2021-09-01T15:15:00+00:00",
+      "published": "2021-09-01T15:15:00+00:00",
+      "updated": "2021-09-01T15:15:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::connect:3.4.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2021-36758",
+      "bom-ref": "CVE-2021-36758",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-36758",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 5.4,
+          "severity": "medium",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 5.5,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        20
+      ],
+      "description": "1Password Connect server before 1.2 is missing validation checks, permitting users to create Secrets Automation access tokens that can be used to perform privilege escalation. Malicious users authorized to create Secrets Automation access tokens can create tokens that have access beyond what the user is authorized to access, but limited to the existing authorizations of the Secret Automation the token is created in.",
+      "recommendation": "",
+      "created": "2021-07-16T00:15:00+00:00",
+      "published": "2021-07-16T00:15:00+00:00",
+      "updated": "2021-07-16T00:15:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::connect:3.4.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2021-40719",
+      "bom-ref": "CVE-2021-40719",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-40719",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 9.8,
+          "severity": "critical",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 7.5,
+          "severity": "high",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        502
+      ],
+      "description": "Adobe Connect version 11.2.3 (and earlier) is affected by a Deserialization of Untrusted Data vulnerability to achieve arbitrary method invocation when AMF messages are deserialized on an Adobe Connect server. An attacker can leverage this to execute remote code execution on the server.",
+      "recommendation": "",
+      "created": "2021-10-21T20:15:00+00:00",
+      "published": "2021-10-21T20:15:00+00:00",
+      "updated": "2021-10-21T20:15:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::connect:3.4.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2022-32550",
+      "bom-ref": "CVE-2022-32550",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-32550",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 4.8,
+          "severity": "medium",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 5.8,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [],
+      "description": "An issue was discovered in AgileBits 1Password, involving the method various 1Password apps and integrations used to create connections to the 1Password service. In specific circumstances, this issue allowed a malicious server to convince a 1Password app or integration it is communicating with the 1Password service.",
+      "recommendation": "",
+      "created": "2022-06-15T19:15:00+00:00",
+      "published": "2022-06-15T19:15:00+00:00",
+      "updated": "2022-06-15T19:15:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::connect:3.4.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "debricked-154632",
+      "bom-ref": "debricked-154632",
+      "source": {
+        "url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/sensiolabs/connect/2018-06-08-1.yaml",
+        "name": "FriendsOfPHP"
+      },
+      "ratings": [],
+      "cwes": [],
+      "description": "Missing state parameter in OAuth requests leading to CSRF vulnerability",
+      "recommendation": "",
+      "created": "2018-06-08T00:00:00+00:00",
+      "published": "2018-06-08T00:00:00+00:00",
+      "updated": "2018-06-08T00:00:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::connect:3.4.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2017-16137",
+      "bom-ref": "CVE-2017-16137",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-gxpj-cx7g-858c",
+        "name": "GitHub"
+      },
+      "ratings": [
+        {
+          "score": 5.3,
+          "severity": "medium",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 5,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        400
+      ],
+      "description": "Regular Expression Denial of Service in debug\n\nAffected versions of `debug` are vulnerable to regular expression denial of service when untrusted user input is passed into the `o` formatter. \n\nAs it takes 50,000 characters to block the event loop for 2 seconds, this issue is a low severity issue.\n\n\n## Recommendation\n\nVersion 2.x.x: Update to version 2.6.9 or later.\nVersion 3.x.x: Update to version 3.1.0 or later.",
+      "recommendation": "",
+      "created": "2018-06-07T02:29:00+00:00",
+      "published": "2018-06-07T02:29:00+00:00",
+      "updated": "2019-10-09T23:24:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::debug:2.2.0::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "debricked-149511",
+      "bom-ref": "debricked-149511",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-c3m8-x3cg-qm2c",
+        "name": "GitHub"
+      },
+      "ratings": [],
+      "cwes": [],
+      "description": "Configuration Override in helmet-csp\n\nVersions of `helmet-csp` before to 2.9.1 are vulnerable to a Configuration Override affecting the application's Content Security Policy (CSP). The package's browser sniffing for Firefox deletes the `default-src` CSP policy, which is the fallback policy. This allows an attacker to remove an application's default CSP, possibly rendering the application vulnerable to Cross-Site Scripting.\n\n\n## Recommendation\n\nUpgrade to version 2.9.1 or later. Setting the `browserSniff` configuration to `false` in vulnerable versions also mitigates the issue.",
+      "recommendation": "Change helmet-csp to 1.2.1",
+      "created": "2020-09-03T20:39:53+00:00",
+      "published": "2020-09-03T20:39:53+00:00",
+      "updated": "2020-09-03T20:39:53+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::helmet-csp:1.2.2::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2019-16374",
+      "bom-ref": "CVE-2019-16374",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-16374",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 9.8,
+          "severity": "critical",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 7.5,
+          "severity": "high",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [],
+      "description": "Pega Platform 8.2.1 allows LDAP injection because a username can contain a * character and can be of unlimited length. An attacker can specify four characters of a username, followed by the * character, to bypass access control.",
+      "recommendation": "",
+      "created": "2020-08-13T13:15:00+00:00",
+      "published": "2020-08-13T13:15:00+00:00",
+      "updated": "2020-08-19T17:14:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::platform:1.3.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2020-27225",
+      "bom-ref": "CVE-2020-27225",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-27225",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 7.8,
+          "severity": "high",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 4.6,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        306
+      ],
+      "description": "In versions 4.18 and earlier of the Eclipse Platform, the Help Subsystem does not authenticate active help requests to the local help web server, allowing an unauthenticated local attacker to issue active help commands to the associated Eclipse Platform process or Eclipse Rich Client Platform process.",
+      "recommendation": "",
+      "created": "2021-03-09T19:15:00+00:00",
+      "published": "2021-03-09T19:15:00+00:00",
+      "updated": "2021-03-18T18:22:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::platform:1.3.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2020-8773",
+      "bom-ref": "CVE-2020-8773",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8773",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 8.9,
+          "severity": "high",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 6,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        79
+      ],
+      "description": "The Richtext Editor in Pega Platform before 8.2.6 is affected by a Stored Cross-Site Scripting (XSS) vulnerability.",
+      "recommendation": "",
+      "created": "2020-04-29T15:15:00+00:00",
+      "published": "2020-04-29T15:15:00+00:00",
+      "updated": "2020-04-30T17:49:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::platform:1.3.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2020-8775",
+      "bom-ref": "CVE-2020-8775",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-8775",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 8.9,
+          "severity": "high",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 6,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        79
+      ],
+      "description": "Pega Platform before version 8.2.6 is affected by a Stored Cross-Site Scripting (XSS) vulnerability in the comment tags.",
+      "recommendation": "",
+      "created": "2020-04-29T16:15:00+00:00",
+      "published": "2020-04-29T16:15:00+00:00",
+      "updated": "2020-04-30T17:49:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::platform:1.3.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2021-32709",
+      "bom-ref": "CVE-2021-32709",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-p696-gf58-9w97",
+        "name": "GitHub"
+      },
+      "ratings": [
+        {
+          "score": 4.9,
+          "severity": "medium",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 4,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        306
+      ],
+      "description": "Missing Authentication for Critical Function\n\nShopware is an open source eCommerce platform. Creation of order credits was not validated by ACL in admin orders. Users are recommend to update to the current version 6.4.1.1. You can get the update to 6.4.1.1 regularly via the Auto-Updater or directly via the download overview. For older versions of 6.1, 6.2, and 6.3, corresponding security measures are also available via a plugin. For the full range of functions, we recommend updating to the latest Shopware version.",
+      "recommendation": "",
+      "created": "2021-06-24T19:15:00+00:00",
+      "published": "2021-06-24T19:15:00+00:00",
+      "updated": "2021-07-01T13:58:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::platform:1.3.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2021-32710",
+      "bom-ref": "CVE-2021-32710",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-32710",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 7.5,
+          "severity": "high",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 5,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        384
+      ],
+      "description": "Shopware is an open source eCommerce platform. Potential session hijacking of store customers in versions below 6.3.5.2. We recommend to update to the current version 6.3.5.2. You can get the update to 6.3.5.2 regularly via the Auto-Updater or directly via the download overview. For older versions of 6.1 and 6.2, corresponding security measures are also available via a plugin. For the full range of functions, we recommend updating to the latest Shopware version.",
+      "recommendation": "",
+      "created": "2021-06-24T20:15:00+00:00",
+      "published": "2021-06-24T20:15:00+00:00",
+      "updated": "2021-07-01T18:40:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::platform:1.3.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2021-32711",
+      "bom-ref": "CVE-2021-32711",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-32711",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 7.5,
+          "severity": "high",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 5,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        200
+      ],
+      "description": "Shopware is an open source eCommerce platform. Versions prior to 6.3.5.1 may leak of information via Store-API. The vulnerability could only be fixed by changing the API system, which involves a non-backward-compatible change. Only consumers of the Store-API should be affected by this change. We recommend to update to the current version 6.3.5.1. You can get the update to 6.3.5.1 regularly via the Auto-Updater or directly via the download overview. https://www.shopware.com/en/download/#shopware-6 The vulnerability could only be fixed by changing the API system, which involves a non-backward-compatible change. Only consumers of the Store-API should be affected by this change. Please check your plugins if you have it in use. Detailed technical information can be found in the upgrade information. https://github.com/shopware/platform/blob/v6.3.5.1/UPGRADE-6.3.md#6351 ### Workarounds For older versions of 6.1 and 6.2, corresponding security measures are also available via a plugin. For the full range of functions, we recommend updating to the latest Shopware version. https://store.shopware.com/en/detail/index/sArticle/518463/number/Swag136939272659 ### For more information https://docs.shopware.com/en/shopware-6-en/security-updates/security-update-02-2021",
+      "recommendation": "",
+      "created": "2021-06-24T20:15:00+00:00",
+      "published": "2021-06-24T20:15:00+00:00",
+      "updated": "2021-07-01T19:55:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::platform:1.3.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2021-32716",
+      "bom-ref": "CVE-2021-32716",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-32716",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 4.9,
+          "severity": "medium",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 4,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        200
+      ],
+      "description": "Shopware is an open source eCommerce platform. In versions prior to 6.4.1.1 the admin api has exposed some internal hidden fields when an association has been loaded with a to many reference. Users are recommend to update to version 6.4.1.1. You can get the update to 6.4.1.1 regularly via the Auto-Updater or directly via the download overview. For older versions of 6.1, 6.2, and 6.3, corresponding security measures are also available via a plugin.",
+      "recommendation": "",
+      "created": "2021-06-24T21:15:00+00:00",
+      "published": "2021-06-24T21:15:00+00:00",
+      "updated": "2021-07-02T12:29:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::platform:1.3.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2021-32717",
+      "bom-ref": "CVE-2021-32717",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-32717",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 7.5,
+          "severity": "high",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 5,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        200
+      ],
+      "description": "Shopware is an open source eCommerce platform. In versions prior to 6.4.1.1 private files publicly accessible with Cloud Storage providers when the hashed URL is known. Users are recommend to first change their configuration to set the correct visibility according to the documentation. The visibility must be at the same level as `type`. When the Storage is saved on Amazon AWS we recommending disabling public access to the bucket containing the private files: https://docs.aws.amazon.com/AmazonS3/latest/userguide/access-control-block-public-access.html. Otherwise, update to Shopware 6.4.1.1 or install or update the Security plugin (https://store.shopware.com/en/detail/index/sArticle/518463/number/Swag136939272659) and run the command `./bin/console s3:set-visibility` to correct your cloud file visibilities.",
+      "recommendation": "",
+      "created": "2021-06-24T21:15:00+00:00",
+      "published": "2021-06-24T21:15:00+00:00",
+      "updated": "2021-07-02T12:29:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::platform:1.3.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2021-37707",
+      "bom-ref": "CVE-2021-37707",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-37707",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 7.5,
+          "severity": "high",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 5,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [],
+      "description": "Shopware is an open source eCommerce platform. Versions prior to 6.4.3.1 contain a vulnerability that allows manipulation of product reviews via API. Version 6.4.3.1 contains a patch. As workarounds for older versions of 6.1, 6.2, and 6.3, corresponding security measures are also available via a plugin.",
+      "recommendation": "",
+      "created": "2021-08-16T19:15:00+00:00",
+      "published": "2021-08-16T19:15:00+00:00",
+      "updated": "2021-08-16T19:15:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::platform:1.3.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2021-37708",
+      "bom-ref": "CVE-2021-37708",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-37708",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 9.8,
+          "severity": "critical",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 7.5,
+          "severity": "high",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        77
+      ],
+      "description": "Shopware is an open source eCommerce platform. Versions prior to 6.4.3.1 contain a command injection vulnerability in mail agent settings. Version 6.4.3.1 contains a patch. As workarounds for older versions of 6.1, 6.2, and 6.3, corresponding security measures are also available via a plugin.",
+      "recommendation": "",
+      "created": "2021-08-16T20:15:00+00:00",
+      "published": "2021-08-16T20:15:00+00:00",
+      "updated": "2021-08-16T20:15:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::platform:1.3.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2021-37709",
+      "bom-ref": "CVE-2021-37709",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-37709",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 6.5,
+          "severity": "medium",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 4,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        639
+      ],
+      "description": "Shopware is an open source eCommerce platform. Versions prior to 6.4.3.1 contain a vulnerability involving an insecure direct object reference of log files of the Import/Export feature. Version 6.4.3.1 contains a patch. As workarounds for older versions of 6.1, 6.2, and 6.3, corresponding security measures are also available via a plugin.",
+      "recommendation": "",
+      "created": "2021-08-16T22:15:00+00:00",
+      "published": "2021-08-16T22:15:00+00:00",
+      "updated": "2021-08-16T22:15:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::platform:1.3.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2021-37710",
+      "bom-ref": "CVE-2021-37710",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-fc38-mxwr-pfhx",
+        "name": "GitHub"
+      },
+      "ratings": [
+        {
+          "score": 5.4,
+          "severity": "medium",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 3.5,
+          "severity": "low",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        79
+      ],
+      "description": "Cross-Site Scripting via SVG media files\n\n### Impact\nCross-Site Scripting via SVG media files\n\n### Patches\nWe recommend updating to the current version 6.4.3.1. You can get the update to 6.4.3.1 regularly via the Auto-Updater or directly via the download overview.\n\nhttps://www.shopware.com/en/download/#shopware-6\n\n### Workarounds\nFor older versions of 6.1, 6.2, and 6.3, corresponding security measures are also available via a plugin. For the full range of functions, we recommend updating to the latest Shopware version.",
+      "recommendation": "",
+      "created": "2021-08-23T19:43:00+00:00",
+      "published": "2021-08-23T19:43:00+00:00",
+      "updated": "2021-08-23T19:43:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::platform:1.3.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2021-37711",
+      "bom-ref": "CVE-2021-37711",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-gcvv-gq92-x94r",
+        "name": "GitHub"
+      },
+      "ratings": [
+        {
+          "score": 8.8,
+          "severity": "high",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 6.5,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        918
+      ],
+      "description": "Authenticated server-side request forgery in file upload via URL.\n\n### Impact\nAuthenticated server-side request forgery in file upload via URL.\n\n### Patches\nWe recommend updating to the current version 6.4.3.1. You can get the update to 6.4.3.1 regularly via the Auto-Updater or directly via the download overview.\n\nhttps://www.shopware.com/en/download/#shopware-6\n\n### Workarounds\nFor older versions of 6.1, 6.2, and 6.3, corresponding security measures are also available via a plugin. For the full range of functions, we recommend updating to the latest Shopware version.",
+      "recommendation": "",
+      "created": "2021-08-23T19:42:49+00:00",
+      "published": "2021-08-23T19:42:49+00:00",
+      "updated": "2021-08-23T19:42:49+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::platform:1.3.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2022-24744",
+      "bom-ref": "CVE-2022-24744",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-w267-m9c4-8555",
+        "name": "GitHub"
+      },
+      "ratings": [
+        {
+          "score": 3.5,
+          "severity": "low",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 3.5,
+          "severity": "low",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        613
+      ],
+      "description": "Shopware user session is not logged out if the password is reset via password recovery\n\n### Impact\nUser session is not logged out if the password is reset via password recovery\n\n## Patches\nFixed in 6.4.8.1, maintainers recommend updating to the current version 6.4.8.2. You can get the update to 6.4.8.2 regularly via the Auto-Updater or directly via the download overview.\n\nhttps://www.shopware.com/en/download/#shopware-6\n\n## Workarounds\nFor older versions of 6.1, 6.2, and 6.3, corresponding security measures are also available via a plugin. For the full range of functions, we recommend updating to the latest Shopware version.\n\nhttps://store.shopware.com/en/detail/index/sArticle/518463/number/Swag136939272659",
+      "recommendation": "",
+      "created": "2022-03-10T17:37:43+00:00",
+      "published": "2022-03-10T17:37:43+00:00",
+      "updated": "2022-03-10T17:37:43+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::platform:1.3.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2022-24745",
+      "bom-ref": "CVE-2022-24745",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-jp6h-mxhx-pgqh",
+        "name": "GitHub"
+      },
+      "ratings": [
+        {
+          "score": 6.5,
+          "severity": "medium",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 5.8,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        384
+      ],
+      "description": "Shopware guest session is shared between customers\n\n### Impact\nGuest sessions are shared between customers when HTTP cache is enabled. Setups with Varnish are not affected by this issue\n\n## Patches\n\nWe recommend updating to the current version 6.4.8.2. You can get the update to 6.4.8.2 regularly via the Auto-Updater or directly via the download overview.\n\nhttps://www.shopware.com/en/download/#shopware-6\n\n## Workarounds\n\n### Security Plugin\nFor older versions of 6.1, 6.2, and 6.3, corresponding security measures are also available via a plugin. For the full range of functions, we recommend updating to the latest Shopware version.\n\n### Disable HTTP Cache\n\nDisabling HTTP Cache is also a valid workaround",
+      "recommendation": "",
+      "created": "2022-03-10T17:28:55+00:00",
+      "published": "2022-03-10T17:28:55+00:00",
+      "updated": "2022-03-10T17:28:55+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::platform:1.3.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2022-24746",
+      "bom-ref": "CVE-2022-24746",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-952p-fqcp-g8pc",
+        "name": "GitHub"
+      },
+      "ratings": [
+        {
+          "score": 6.1,
+          "severity": "medium",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 4.3,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        79
+      ],
+      "description": "HTML injection possibility in voucher code form in Shopware\n\n### Impact\nHTML injection possibility in voucher code form\n\n## Patches\nPatched in 6.4.8.1, maintainers recommend updating to the current version 6.4.8.2. You can get the update to 6.4.8.2 regularly via the Auto-Updater or directly via the download overview.\n\nhttps://www.shopware.com/en/download/#shopware-6\n\n## Workarounds\nFor older versions of 6.1, 6.2, and 6.3, corresponding security measures are also available via a plugin. For the full range of functions, we recommend updating to the latest Shopware version.",
+      "recommendation": "",
+      "created": "2022-03-10T17:49:26+00:00",
+      "published": "2022-03-10T17:49:26+00:00",
+      "updated": "2022-03-10T17:49:26+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::platform:1.3.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2022-24747",
+      "bom-ref": "CVE-2022-24747",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-6wrh-279j-6hvw",
+        "name": "GitHub"
+      },
+      "ratings": [
+        {
+          "score": 5.3,
+          "severity": "medium",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 5,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        200
+      ],
+      "description": "HTTP caching is marking private HTTP headers as public in Shopware\n\n### Impact\nHTTP caching is marking private HTTP headers as public\n\n## Patches\nFixed in  recommend updating to the current version 6.4.8.2. You can get the update to 6.4.8.2 regularly via the Auto-Updater or directly via the download overview.\n\nhttps://www.shopware.com/en/download/#shopware-6\n\n## Workarounds\nFor older versions of 6.1, 6.2, and 6.3, corresponding security measures are also available via a plugin. For the full range of functions, we recommend updating to the latest Shopware version.",
+      "recommendation": "",
+      "created": "2022-03-10T17:55:21+00:00",
+      "published": "2022-03-10T17:55:21+00:00",
+      "updated": "2022-03-10T17:55:21+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::platform:1.3.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2022-24871",
+      "bom-ref": "CVE-2022-24871",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-24871",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 5.5,
+          "severity": "medium",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 5.5,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        918
+      ],
+      "description": "Shopware is an open commerce platform based on Symfony Framework and Vue. In affected versions an attacker can abuse the Admin SDK functionality on the server to read or update internal resources. Users are advised to update to the current version 6.4.10.1. For older versions of 6.1, 6.2, and 6.3, corresponding security measures are also available via a plugin. There are no known workarounds for this issue.",
+      "recommendation": "",
+      "created": "2022-04-20T19:15:00+00:00",
+      "published": "2022-04-20T19:15:00+00:00",
+      "updated": "2022-04-20T19:15:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::platform:1.3.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2022-24872",
+      "bom-ref": "CVE-2022-24872",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-24872",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 8.1,
+          "severity": "high",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 5.5,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        732
+      ],
+      "description": "Shopware is an open commerce platform based on Symfony Framework and Vue. Permissions set to sales channel context by admin-api are still usable within normal user session. Users are advised to update to the current version 6.4.10.1. For older versions of 6.1, 6.2, and 6.3, corresponding security measures are also available via a plugin. There are no known workarounds for this issue.",
+      "recommendation": "",
+      "created": "2022-04-20T20:15:00+00:00",
+      "published": "2022-04-20T20:15:00+00:00",
+      "updated": "2022-04-20T20:15:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::platform:1.3.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "debricked-151444",
+      "bom-ref": "debricked-151444",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-qvhr-55hg-3qwv",
+        "name": "GitHub"
+      },
+      "ratings": [],
+      "cwes": [],
+      "description": "Non-persistent XSS in the Storefront in Shopware\n\n### Impact\nNon-persistent XSS in the Storefront\n\n### Patches\nWe recommend to update to the current version 6.3.1.1. You can get the update to 6.3.1.1 regularly via the Auto-Updater or directly via the download overview. \n\nFor older versions you can use the Security Plugin:\nhttps://store.shopware.com/en/detail/index/sArticle/518463/number/Swag136939272659\n\n### References\nhttps://docs.shopware.com/en/shopware-6-en/security-updates/security-update-09-2020",
+      "recommendation": "",
+      "created": "2020-09-23T17:20:39+00:00",
+      "published": "2020-09-23T17:20:39+00:00",
+      "updated": "2020-09-23T17:20:39+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::platform:1.3.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "debricked-151445",
+      "bom-ref": "debricked-151445",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-qvc5-cfrr-384v",
+        "name": "GitHub"
+      },
+      "ratings": [],
+      "cwes": [],
+      "description": "RCE in Third Party Library in Shopware\n\n### Impact\nRCE in Third Party Library\n\n### Patches\nWe recommend to update to the current version 6.3.1.1. You can get the update to 6.3.1.1 regularly via the Auto-Updater or directly via the download overview. \n\nFor older versions you can use the Security Plugin:\nhttps://store.shopware.com/en/detail/index/sArticle/518463/number/Swag136939272659\n\n### References\nhttps://docs.shopware.com/en/shopware-6-en/security-updates/security-update-09-2020",
+      "recommendation": "",
+      "created": "2020-09-23T17:20:28+00:00",
+      "published": "2020-09-23T17:20:28+00:00",
+      "updated": "2020-09-23T17:20:28+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::platform:1.3.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "debricked-152564",
+      "bom-ref": "debricked-152564",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-p68v-frgx-4rjp",
+        "name": "GitHub"
+      },
+      "ratings": [],
+      "cwes": [],
+      "description": "Denial of Service via Cache Flooding\n\n### Impact\n Denial of Service via Cache Flooding\n\n### Patches\nWe recommend to update to the current version 6.3.2.1. You can get the update to 6.3.2.1 regularly via the Auto-Updater or directly via the download overview.\n\nhttps://www.shopware.com/en/download/#shopware-6\n\n### Workarounds\nFor older versions of 6.1 and 6.2 the corresponding changes are also available via plugin:\n\nhttps://store.shopware.com/en/detail/index/sArticle/518463/number/Swag136939272659\n\n### For more information\nhttps://docs.shopware.com/en/shopware-6-en/security-updates/security-update-10-2020",
+      "recommendation": "",
+      "created": "2020-10-19T21:34:14+00:00",
+      "published": "2020-10-19T21:34:14+00:00",
+      "updated": "2020-10-19T21:34:14+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::platform:1.3.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "debricked-152565",
+      "bom-ref": "debricked-152565",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-8xv9-qcr9-ww9j",
+        "name": "GitHub"
+      },
+      "ratings": [],
+      "cwes": [],
+      "description": "Authenticated XML External Entity Processing\n\n### Impact\nAuthenticated XML External Entity Processing\n\n### Patches\nWe recommend to update to the current version 6.3.2.1. You can get the update to 6.3.2.1 regularly via the Auto-Updater or directly via the download overview.\n\nhttps://www.shopware.com/en/download/#shopware-6\n\n### Workarounds\nFor older versions of 6.1 and 6.2 the corresponding changes are also available via plugin:\nhttps://store.shopware.com/en/detail/index/sArticle/518463/number/Swag136939272659\n\n### For more information\nhttps://docs.shopware.com/en/shopware-6-en/security-updates/security-update-10-2020",
+      "recommendation": "",
+      "created": "2020-10-19T21:32:18+00:00",
+      "published": "2020-10-19T21:32:18+00:00",
+      "updated": "2020-10-19T21:32:18+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::platform:1.3.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "debricked-156550",
+      "bom-ref": "debricked-156550",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-8pfh-mm2g-hmc3",
+        "name": "GitHub"
+      },
+      "ratings": [],
+      "cwes": [],
+      "description": "Authenticated Server Side Request Forgery\n\n### Impact\nAuthenticated Server Side Request Forgery\n\n### Patches\nWe recommend to update to the current version 6.3.4.1. You can get the update to 6.3.4.1 regularly via the Auto-Updater or directly via the download overview.\n\nhttps://www.shopware.com/en/download/#shopware-6\n\n### Workarounds\nFor older versions of 6.1 and 6.2 the corresponding changes are also available via plugin:\n\nhttps://store.shopware.com/en/detail/index/sArticle/518463/number/Swag136939272659\n\n### For more information\nhttps://docs.shopware.com/en/shopware-6-en/security-updates/security-update-12-2020\n\n### Credits\nWe would like to thank <a rel=\"noopener\" href=\"https://reqon.nl\">REQON B.V.</a> for reporting this issue.",
+      "recommendation": "",
+      "created": "2020-12-21T18:01:24+00:00",
+      "published": "2020-12-21T18:01:24+00:00",
+      "updated": "2020-12-21T18:01:24+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::platform:1.3.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "debricked-156551",
+      "bom-ref": "debricked-156551",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-cq6h-w3mc-57f4",
+        "name": "GitHub"
+      },
+      "ratings": [],
+      "cwes": [],
+      "description": "Information exposure via query strings in URL\n\n### Impact\n\nInformation exposure via query strings in URL\n\n### Patches\nWe recommend to update to the current version 6.3.4.1. You can get the update to 6.3.4.1 regularly via the Auto-Updater or directly via the download overview.\n\nhttps://www.shopware.com/en/download/#shopware-6\n\n### Workarounds\nFor older versions of 6.1 and 6.2 the corresponding changes are also available via plugin:\n\nhttps://store.shopware.com/en/detail/index/sArticle/518463/number/Swag136939272659\n\n### For more information\nhttps://docs.shopware.com/en/shopware-6-en/security-updates/security-update-12-2020\n\n### Credits\nWe would like to thank <a rel=\"noopener\" href=\"https://www.vater-it.de/\">Oliver Herrmann</a> for reporting this issue.",
+      "recommendation": "",
+      "created": "2020-12-21T18:01:16+00:00",
+      "published": "2020-12-21T18:01:16+00:00",
+      "updated": "2020-12-21T18:01:16+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::platform:1.3.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "debricked-156552",
+      "bom-ref": "debricked-156552",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-5q58-x5h2-v5rx",
+        "name": "GitHub"
+      },
+      "ratings": [],
+      "cwes": [],
+      "description": "Authenticated Privilege Escalation\n\n### Impact\nAuthenticated Privilege Escalation\n\n### Patches\nWe recommend to update to the current version 6.3.4.1. You can get the update to 6.3.4.1 regularly via the Auto-Updater or directly via the download overview.\n\nhttps://www.shopware.com/en/download/#shopware-6\n\n### Workarounds\nFor older versions of 6.1 and 6.2 the corresponding changes are also available via plugin:\n\nhttps://store.shopware.com/en/detail/index/sArticle/518463/number/Swag136939272659\n\n### For more information\nhttps://docs.shopware.com/en/shopware-6-en/security-updates/security-update-12-2020",
+      "recommendation": "",
+      "created": "2020-12-21T18:01:08+00:00",
+      "published": "2020-12-21T18:01:08+00:00",
+      "updated": "2020-12-21T18:01:08+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::platform:1.3.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "debricked-159633",
+      "bom-ref": "debricked-159633",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-jvg4-9rc2-wvcr",
+        "name": "GitHub"
+      },
+      "ratings": [],
+      "cwes": [],
+      "description": "Generation of fake documents via public GET-call\n\n### Impact\nGeneration of fake documents via public GET-call\n\n### Patches\nWe recommend to update to the current version 6.3.5.1. You can get the update to 6.3.5.1 regularly via the Auto-Updater or directly via the download overview.\n\nhttps://www.shopware.com/en/download/#shopware-6\n\n### Workarounds\nFor older versions of 6.1 and 6.2, corresponding security measures are also available via a plugin. For the full range of functions, we recommend updating to the latest Shopware version.\n\nhttps://store.shopware.com/en/detail/index/sArticle/518463/number/Swag136939272659\n\n### For more information\nhttps://docs.shopware.com/en/shopware-6-en/security-updates/security-update-02-2021",
+      "recommendation": "",
+      "created": "2021-02-10T02:32:07+00:00",
+      "published": "2021-02-10T02:32:07+00:00",
+      "updated": "2021-02-10T02:32:07+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::platform:1.3.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "debricked-159634",
+      "bom-ref": "debricked-159634",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-f2vv-h5x4-57gr",
+        "name": "GitHub"
+      },
+      "ratings": [],
+      "cwes": [],
+      "description": "Leak of information via Store-API\n\n### Impact\nLeak of information via Store-API\n\n### Patches\nWe recommend to update to the current version 6.3.5.1. You can get the update to 6.3.5.1 regularly via the Auto-Updater or directly via the download overview.\n\nhttps://www.shopware.com/en/download/#shopware-6\n\nThe vulnerability could only be fixed by changing the API system, which involves a non-backward-compatible change. Only consumers of the Store-API should be affected by this change. Please check your plugins if you have it in use. Detailed technical information can be found in the upgrade information.\n\nhttps://github.com/shopware/platform/blob/v6.3.5.1/UPGRADE-6.3.md#6351\n\n### Workarounds\nFor older versions of 6.1 and 6.2, corresponding security measures are also available via a plugin. For the full range of functions, we recommend updating to the latest Shopware version.\n\nhttps://store.shopware.com/en/detail/index/sArticle/518463/number/Swag136939272659\n\n### For more information\nhttps://docs.shopware.com/en/shopware-6-en/security-updates/security-update-02-2021",
+      "recommendation": "",
+      "created": "2021-02-10T02:32:21+00:00",
+      "published": "2021-02-10T02:32:21+00:00",
+      "updated": "2021-02-10T02:32:21+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::platform:1.3.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "debricked-161293",
+      "bom-ref": "debricked-161293",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-pjj4-jjgc-h3r8",
+        "name": "GitHub"
+      },
+      "ratings": [],
+      "cwes": [],
+      "description": "Authenticated remote code execution\n\n### Impact\nAuthenticated remote code execution using plugin manager without ACL permissions.\n\n### Patches\nWe recommend to update to the current version 6.3.5.2. You can get the update to 6.3.5.2 regularly via the Auto-Updater or directly via the download overview.\n\nhttps://www.shopware.com/en/download/#shopware-6\n\n### Workarounds\nFor older versions of 6.1 and 6.2, corresponding security measures are also available via a plugin. For the full range of functions, we recommend updating to the latest Shopware version.\n\nhttps://store.shopware.com/en/detail/index/sArticle/518463/number/Swag136939272659\n\n### For more information\nhttps://docs.shopware.com/en/shopware-6-en/security-updates/security-update-03-2021",
+      "recommendation": "",
+      "created": "2021-03-12T23:09:24+00:00",
+      "published": "2021-03-12T23:09:24+00:00",
+      "updated": "2021-03-12T23:09:24+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::platform:1.3.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "debricked-161294",
+      "bom-ref": "debricked-161294",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-h9q8-5gv2-v6mg",
+        "name": "GitHub"
+      },
+      "ratings": [],
+      "cwes": [],
+      "description": "Potential Session Hijacking\n\n### Impact\nPotential session hijacking of store customers.\n\n### Patches\nWe recommend to update to the current version 6.3.5.2. You can get the update to 6.3.5.2 regularly via the Auto-Updater or directly via the download overview.\n\nhttps://www.shopware.com/en/download/#shopware-6\n\n### Workarounds\nFor older versions of 6.1 and 6.2, corresponding security measures are also available via a plugin. For the full range of functions, we recommend updating to the latest Shopware version.\n\nhttps://store.shopware.com/en/detail/index/sArticle/518463/number/Swag136939272659\n\n### For more information\nhttps://docs.shopware.com/en/shopware-6-en/security-updates/security-update-03-2021",
+      "recommendation": "",
+      "created": "2021-03-12T23:09:08+00:00",
+      "published": "2021-03-12T23:09:08+00:00",
+      "updated": "2021-03-12T23:09:08+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::platform:1.3.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "debricked-162911",
+      "bom-ref": "debricked-162911",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-qg7c-q3vq-rgxr",
+        "name": "GitHub"
+      },
+      "ratings": [],
+      "cwes": [],
+      "description": "Leak of information via Store-API aggregations in shopware/platform and shopware/core\n\n### Impact\n\nLeak of information via Store-API\n\n### Patches\nWe recommend to update to the current version 6.3.5.3. You can get the update to 6.3.5.3 regularly via the Auto-Updater or directly via the download overview.\n\nhttps://www.shopware.com/en/download/#shopware-6\n\n### Workarounds\nFor older versions of 6.1 and 6.2, corresponding security measures are also available via a plugin. For the full range of functions, we recommend updating to the latest Shopware version.\n\nhttps://store.shopware.com/en/detail/index/sArticle/518463/number/Swag136939272659\n\n### For more information\nhttps://docs.shopware.com/en/shopware-6-en/security-updates/security-update-04-2021",
+      "recommendation": "",
+      "created": "2021-04-13T15:13:26+00:00",
+      "published": "2021-04-13T15:13:26+00:00",
+      "updated": "2021-04-13T15:13:26+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::platform:1.3.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "debricked-162913",
+      "bom-ref": "debricked-162913",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-88rc-3p98-rgvx",
+        "name": "GitHub"
+      },
+      "ratings": [],
+      "cwes": [],
+      "description": "After order payment process manipulation in shopware/platform and shopware/core\n\n### Impact\n\nAfter order payment process manipulation\n\n### Patches\nWe recommend to update to the current version 6.3.5.3. You can get the update to 6.3.5.3 regularly via the Auto-Updater or directly via the download overview.\n\nhttps://www.shopware.com/en/download/#shopware-6\n\n### Workarounds\n\nFor older versions of 6.1 and 6.2, corresponding security measures are also available via a plugin. For the full range of functions, we recommend updating to the latest Shopware version.\n\nhttps://store.shopware.com/en/detail/index/sArticle/518463/number/Swag136939272659\n\n### For more information\nhttps://docs.shopware.com/en/shopware-6-en/security-updates/security-update-04-2021",
+      "recommendation": "",
+      "created": "2021-04-13T15:13:48+00:00",
+      "published": "2021-04-13T15:13:48+00:00",
+      "updated": "2021-04-13T15:13:48+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::platform:1.3.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "debricked-167582",
+      "bom-ref": "debricked-167582",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-wq3r-jwrq-xg6w",
+        "name": "GitHub"
+      },
+      "ratings": [],
+      "cwes": [],
+      "description": "Canceling of orders not related to the logged-in user\n\n### Impact\nCanceling of orders not related to the logged-in user\n\n### Patches\nWe recommend updating to the current version 6.4.1.1. You can get the update to 6.4.1.1 regularly via the Auto-Updater or directly via the download overview.\n\nhttps://www.shopware.com/en/download/#shopware-6\n\n### Workarounds\nFor older versions of 6.1, 6.2, and 6.3, corresponding security measures are also available via a plugin. For the full range of functions, we recommend updating to the latest Shopware version.\n\nhttps://store.shopware.com/en/detail/index/sArticle/518463/number/Swag136939272659",
+      "recommendation": "",
+      "created": "2021-06-28T16:57:23+00:00",
+      "published": "2021-06-28T16:57:23+00:00",
+      "updated": "2021-06-28T16:57:23+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::platform:1.3.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "debricked-167583",
+      "bom-ref": "debricked-167583",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-g7w8-pp9w-7p32",
+        "name": "GitHub"
+      },
+      "ratings": [],
+      "cwes": [],
+      "description": "Creation of order credits was not validated by acl in admin orders\n\n### Impact\nCreation of order credits was not validated by ACL in admin orders\n\n### Patches\nWe recommend updating to the current version 6.4.1.1. You can get the update to 6.4.1.1 regularly via the Auto-Updater or directly via the download overview.\n\nhttps://www.shopware.com/en/download/#shopware-6\n\n### Workarounds\nFor older versions of 6.1, 6.2, and 6.3, corresponding security measures are also available via a plugin. For the full range of functions, we recommend updating to the latest Shopware version.\n\nhttps://store.shopware.com/en/detail/index/sArticle/518463/number/Swag136939272659",
+      "recommendation": "",
+      "created": "2021-06-28T16:57:32+00:00",
+      "published": "2021-06-28T16:57:32+00:00",
+      "updated": "2021-06-28T16:57:32+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::platform:1.3.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "debricked-167584",
+      "bom-ref": "debricked-167584",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-vrf2-xghr-j52v",
+        "name": "GitHub"
+      },
+      "ratings": [],
+      "cwes": [],
+      "description": "Private files publicly accessible with Cloud Storage providers\n\n### Impact\n\nPrivate files publicly accessible with Cloud Storage providers when the hashed URL is known\n\n### Patches\n\nWe recommend first changing your configuration to set the correct visibility according to the documentation. The visibility must be at the same level as `type`.\n\nWhen the Storage is saved on Amazon AWS we recommending disabling public access to the bucket containing the private files: https://docs.aws.amazon.com/AmazonS3/latest/userguide/access-control-block-public-access.html\n\nOtherwise, update to Shopware 6.4.1.1 or install or update the Security plugin (https://store.shopware.com/en/detail/index/sArticle/518463/number/Swag136939272659) and run the command `./bin/console s3:set-visibility` to correct your cloud file visibilities",
+      "recommendation": "",
+      "created": "2021-06-28T18:20:42+00:00",
+      "published": "2021-06-28T18:20:42+00:00",
+      "updated": "2021-06-28T18:20:42+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::platform:1.3.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "debricked-167585",
+      "bom-ref": "debricked-167585",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-gpmh-g94g-qrhr",
+        "name": "GitHub"
+      },
+      "ratings": [],
+      "cwes": [],
+      "description": "Internal hidden fields are visible on to many associations in admin api\n\n### Impact\nThe admin api has exposed some internal hidden fields when an association has been loaded with a to many reference\n\n### Patches\nWe recommend updating to the current version 6.4.1.1. You can get the update to 6.4.1.1 regularly via the Auto-Updater or directly via the download overview.\n\nhttps://www.shopware.com/en/download/#shopware-6\n\n### Workarounds\nFor older versions of 6.1, 6.2, and 6.3, corresponding security measures are also available via a plugin. For the full range of functions, we recommend updating to the latest Shopware version.\n\nhttps://store.shopware.com/en/detail/index/sArticle/518463/number/Swag136939272659",
+      "recommendation": "",
+      "created": "2021-06-28T18:20:53+00:00",
+      "published": "2021-06-28T18:20:53+00:00",
+      "updated": "2021-06-28T18:20:53+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::platform:1.3.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "debricked-167586",
+      "bom-ref": "debricked-167586",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-243q-g9j3-qf6r",
+        "name": "GitHub"
+      },
+      "ratings": [],
+      "cwes": [],
+      "description": "non-admin users can create integration role with administrator role\n\n### Impact\nnon-admin users can create integration role with administrator role\n\n### Patches\nWe recommend updating to the current version 6.4.1.1. You can get the update to 6.4.1.1 regularly via the Auto-Updater or directly via the download overview.\n\nhttps://www.shopware.com/en/download/#shopware-6\n\n### Workarounds\nFor older versions of 6.1, 6.2, and 6.3 corresponding security measures are also available via a plugin. For the full range of functions, we recommend updating to the latest Shopware version.\n\nhttps://store.shopware.com/en/detail/index/sArticle/518463/number/Swag136939272659",
+      "recommendation": "",
+      "created": "2021-06-28T18:21:01+00:00",
+      "published": "2021-06-28T18:21:01+00:00",
+      "updated": "2021-06-28T18:21:01+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::platform:1.3.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "debricked-176812",
+      "bom-ref": "debricked-176812",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-r64m-qchj-hrjp",
+        "name": "GitHub"
+      },
+      "ratings": [],
+      "cwes": [],
+      "description": "Webcache Poisoning in shopware/platform and shopware/core\n\n### Impact\nWebcache Poisoning via X-Forwarded-Prefix and sub-request\n\n### Patches\nWe recommend updating to the current version 6.4.6.1. You can get the update to 6.4.6.1 regularly via the Auto-Updater or directly via the download overview.\n\nhttps://www.shopware.com/en/download/#shopware-6\n\nWorkarounds\nFor older versions of 6.1, 6.2, and 6.3, corresponding security measures are also available via a plugin. For the full range of functions, we recommend updating to the latest Shopware version.\n\nhttps://store.shopware.com/en/detail/index/sArticle/518463/number/Swag136939272659",
+      "recommendation": "",
+      "created": "2021-11-24T20:05:19+00:00",
+      "published": "2021-11-24T20:05:19+00:00",
+      "updated": "2021-11-24T20:05:19+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::platform:1.3.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2022-21680",
+      "bom-ref": "CVE-2022-21680",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-21680",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 7.5,
+          "severity": "high",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 5,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [],
+      "description": "Marked is a markdown parser and compiler. Prior to version 4.0.10, the regular expression `block.def` may cause catastrophic backtracking against some strings and lead to a regular expression denial of service (ReDoS). Anyone who runs untrusted markdown through a vulnerable version of marked and does not use a worker with a time limit may be affected. This issue is patched in version 4.0.10. As a workaround, avoid running untrusted markdown through marked or run marked on a worker thread and set a reasonable time limit to prevent draining resources.",
+      "recommendation": "",
+      "created": "2022-01-14T17:15:00+00:00",
+      "published": "2022-01-14T17:15:00+00:00",
+      "updated": "2022-01-14T17:15:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::marked:0.3.9::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2022-21681",
+      "bom-ref": "CVE-2022-21681",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-21681",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 7.5,
+          "severity": "high",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 5,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [],
+      "description": "Marked is a markdown parser and compiler. Prior to version 4.0.10, the regular expression `inline.reflinkSearch` may cause catastrophic backtracking against some strings and lead to a denial of service (DoS). Anyone who runs untrusted markdown through a vulnerable version of marked and does not use a worker with a time limit may be affected. This issue is patched in version 4.0.10. As a workaround, avoid running untrusted markdown through marked or run marked on a worker thread and set a reasonable time limit to prevent draining resources.",
+      "recommendation": "",
+      "created": "2022-01-14T17:15:00+00:00",
+      "published": "2022-01-14T17:15:00+00:00",
+      "updated": "2022-01-14T17:15:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::marked:0.3.9::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "debricked-149695",
+      "bom-ref": "debricked-149695",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-xf5p-87ch-gxw2",
+        "name": "GitHub"
+      },
+      "ratings": [],
+      "cwes": [],
+      "description": "Regular Expression Denial of Service in marked\n\nVersions of `marked` prior to 0.6.2 and later than 0.3.14 are vulnerable to Regular Expression Denial of Service. Email addresses may be evaluated in quadratic time, allowing attackers to potentially crash the node process due to resource exhaustion.\n\n\n## Recommendation\n\nUpgrade to version 0.6.2 or later.",
+      "recommendation": "",
+      "created": "2019-06-05T14:10:03+00:00",
+      "published": "2019-06-05T14:10:03+00:00",
+      "updated": "2019-06-05T14:10:03+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::marked:0.3.9::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2016-10540",
+      "bom-ref": "CVE-2016-10540",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-hxm2-r34f-qmc5",
+        "name": "GitHub"
+      },
+      "ratings": [
+        {
+          "score": 7.5,
+          "severity": "high",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 5,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        20
+      ],
+      "description": "Regular Expression Denial of Service in minimatch\n\nAffected versions of `minimatch` are vulnerable to regular expression denial of service attacks when user input is passed into the `pattern` argument of `minimatch(path, pattern)`.\n\n\n## Proof of Concept\n```\nvar minimatch = require(“minimatch”);\n\n// utility function for generating long strings\nvar genstr = function (len, chr) {\n  var result = “”;\n  for (i=0; i<=len; i++) {\n    result = result + chr;\n  }\n  return result;\n}\n\nvar exploit = “[!” + genstr(1000000, “\\\\”) + “A”;\n\n// minimatch exploit.\nconsole.log(“starting minimatch”);\nminimatch(“foo”, exploit);\nconsole.log(“finishing minimatch”);\n```\n\n\n## Recommendation\n\nUpdate to version 3.0.2 or later.",
+      "recommendation": "Change minimatch to 3.0.2",
+      "created": "2018-05-31T20:29:00+00:00",
+      "published": "2018-05-31T20:29:00+00:00",
+      "updated": "2019-10-09T23:16:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::minimatch:0.3.0::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2017-16042",
+      "bom-ref": "CVE-2017-16042",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-qh2h-chj9-jffq",
+        "name": "GitHub"
+      },
+      "ratings": [
+        {
+          "score": 9.8,
+          "severity": "critical",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 7.5,
+          "severity": "high",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        78
+      ],
+      "description": "Command Injection in growl\n\nAffected versions of `growl` do not properly sanitize input prior to passing it into a shell command, allowing for arbitrary command execution.\n\n\n## Recommendation\n\nUpdate to version 1.10.2 or later.",
+      "recommendation": "Change growl to 1.10.0",
+      "created": "2018-06-04T19:29:00+00:00",
+      "published": "2018-06-04T19:29:00+00:00",
+      "updated": "2019-10-09T23:24:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::growl:1.9.2::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2012-6619",
+      "bom-ref": "CVE-2012-6619",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-6619",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 6.4,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        20
+      ],
+      "description": "The default configuration for MongoDB before 2.3.2 does not validate objects, which allows remote authenticated users to cause a denial of service (crash) or read system memory via a crafted BSON object in the column name in an insert command, which triggers a buffer over-read.",
+      "recommendation": "",
+      "created": "2014-03-06T15:55:00+00:00",
+      "published": "2014-03-06T15:55:00+00:00",
+      "updated": "2014-05-07T03:45:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::mongodb:2.2.36::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2013-2132",
+      "bom-ref": "CVE-2013-2132",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2013-2132",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 4.3,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [],
+      "description": "bson/_cbsonmodule.c in the mongo-python-driver (aka. pymongo) before 2.5.2, as used in MongoDB, allows context-dependent attackers to cause a denial of service (NULL pointer dereference and crash) via vectors related to decoding of an \"invalid DBRef.\"",
+      "recommendation": "",
+      "created": "2013-08-15T17:55:00+00:00",
+      "published": "2013-08-15T17:55:00+00:00",
+      "updated": "2018-10-30T16:27:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::mongodb:2.2.36::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2014-8180",
+      "bom-ref": "CVE-2014-8180",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2014-8180",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 5.5,
+          "severity": "medium",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 2.1,
+          "severity": "low",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        287
+      ],
+      "description": "MongoDB on Red Hat Satellite 6 allows local users to bypass authentication by logging in with an empty password and delete information which can cause a Denial of Service.",
+      "recommendation": "",
+      "created": "2017-06-06T18:29:00+00:00",
+      "published": "2017-06-06T18:29:00+00:00",
+      "updated": "2017-06-14T12:41:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::mongodb:2.2.36::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2015-1609",
+      "bom-ref": "CVE-2015-1609",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-1609",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 5,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        20
+      ],
+      "description": "MongoDB before 2.4.13 and 2.6.x before 2.6.8 allows remote attackers to cause a denial of service via a crafted UTF-8 string in a BSON request.",
+      "recommendation": "",
+      "created": "2015-03-30T14:59:00+00:00",
+      "published": "2015-03-30T14:59:00+00:00",
+      "updated": "2017-07-01T01:29:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::mongodb:2.2.36::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2016-6494",
+      "bom-ref": "CVE-2016-6494",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2016-6494",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 5.5,
+          "severity": "medium",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 2.1,
+          "severity": "low",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        200
+      ],
+      "description": "The client in MongoDB uses world-readable permissions on .dbshell history files, which might allow local users to obtain sensitive information by reading these files.",
+      "recommendation": "",
+      "created": "2016-10-03T18:59:00+00:00",
+      "published": "2016-10-03T18:59:00+00:00",
+      "updated": "2017-11-28T13:04:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::mongodb:2.2.36::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2017-18381",
+      "bom-ref": "CVE-2017-18381",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-18381",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 9.1,
+          "severity": "critical",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 6.5,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        254
+      ],
+      "description": "The installation process in Open edX before 2017-01-10 exposes a MongoDB instance to external connections with default credentials.",
+      "recommendation": "",
+      "created": "2019-07-30T19:15:00+00:00",
+      "published": "2019-07-30T19:15:00+00:00",
+      "updated": "2020-01-07T18:19:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::mongodb:2.2.36::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2017-2665",
+      "bom-ref": "CVE-2017-2665",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-2665",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 7,
+          "severity": "high",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 1.9,
+          "severity": "low",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        522
+      ],
+      "description": "The skyring-setup command creates random password for mongodb skyring database but it writes password in plain text to /etc/skyring/skyring.conf file which is owned by root but read by local user. Any local user who has access to system running skyring service will be able to get password in plain text.",
+      "recommendation": "",
+      "created": "2018-07-06T13:29:00+00:00",
+      "published": "2018-07-06T13:29:00+00:00",
+      "updated": "2019-10-09T23:27:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::mongodb:2.2.36::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2021-32036",
+      "bom-ref": "CVE-2021-32036",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-32036",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 7.1,
+          "severity": "high",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 5.5,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        770
+      ],
+      "description": "An authenticated user without any specific authorizations may be able to repeatedly invoke the features command where at a high volume may lead to resource depletion or generate high lock contention. This may result in denial of service and in rare cases could result in id field collisions.",
+      "recommendation": "",
+      "created": "2022-02-04T23:15:00+00:00",
+      "published": "2022-02-04T23:15:00+00:00",
+      "updated": "2022-02-04T23:15:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::mongodb:2.2.36::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "debricked-149495",
+      "bom-ref": "debricked-149495",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-mh5c-679w-hh4r",
+        "name": "GitHub"
+      },
+      "ratings": [],
+      "cwes": [],
+      "description": "Denial of Service in mongodb\n\nVersions of `mongodb` prior to 3.1.13 are vulnerable to Denial of Service. The package fails to properly catch an exception when a collection name is invalid and the DB does not exist, crashing the application.\n\n\n## Recommendation\n\nUpgrade to version 3.1.13 or later.",
+      "recommendation": "Change mongodb to 3.1.13",
+      "created": "2020-09-03T21:12:01+00:00",
+      "published": "2020-09-03T21:12:01+00:00",
+      "updated": "2020-09-03T21:12:01+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::mongodb:2.2.36::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2015-4411",
+      "bom-ref": "CVE-2015-4411",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-qh4w-7pw3-p4rp",
+        "name": "GitHub"
+      },
+      "ratings": [
+        {
+          "score": 7.5,
+          "severity": "high",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 5,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        400
+      ],
+      "description": "Potential denial of service in bson rubygem\n\nThe Moped::BSON::ObjecId.legal? method in mongodb/bson-ruby before 3.0.4 as used in rubygem-moped allows remote attackers to cause a denial of service (worker resource consumption) via a crafted string. NOTE: This issue is due to an incomplete fix to CVE-2015-4410.",
+      "recommendation": "",
+      "created": "2020-02-20T17:15:00+00:00",
+      "published": "2020-02-20T17:15:00+00:00",
+      "updated": "2020-02-28T15:32:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::bson:1.0.9::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2015-4412",
+      "bom-ref": "CVE-2015-4412",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-h6rj-8r3c-9gpj",
+        "name": "GitHub"
+      },
+      "ratings": [
+        {
+          "score": 9.8,
+          "severity": "critical",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 7.5,
+          "severity": "high",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        400
+      ],
+      "description": "bson is vulnerable to denial of service due to incorrect regex validation\n\nBSON injection vulnerability in the legal? function in BSON (bson-ruby) gem before 3.0.4 for Ruby allows remote attackers to cause a denial of service (resource consumption) or inject arbitrary data via a crafted string.",
+      "recommendation": "",
+      "created": "2018-02-05T16:29:00+00:00",
+      "published": "2018-02-05T16:29:00+00:00",
+      "updated": "2018-03-13T19:49:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::bson:1.0.9::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2019-2391",
+      "bom-ref": "CVE-2019-2391",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-2391",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 5.4,
+          "severity": "medium",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 5.5,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        502
+      ],
+      "description": "Incorrect parsing of certain JSON input may result in js-bson not correctly serializing BSON. This may cause unexpected application behaviour including data disclosure. This issue affects: MongoDB Inc. js-bson library version 1.1.3 and prior to.",
+      "recommendation": "",
+      "created": "2020-03-31T14:15:00+00:00",
+      "published": "2020-03-31T14:15:00+00:00",
+      "updated": "2020-09-29T19:15:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::bson:1.0.9::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2020-7610",
+      "bom-ref": "CVE-2020-7610",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-7610",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 9.8,
+          "severity": "critical",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 7.5,
+          "severity": "high",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        502
+      ],
+      "description": "All versions of bson before 1.1.4 are vulnerable to Deserialization of Untrusted Data. The package will ignore an unknown value for an object's _bsotype, leading to cases where an object is serialized as a document rather than the intended BSON type.",
+      "recommendation": "",
+      "created": "2020-03-30T19:15:00+00:00",
+      "published": "2020-03-30T19:15:00+00:00",
+      "updated": "2020-04-01T19:47:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::bson:1.0.9::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2019-10795",
+      "bom-ref": "CVE-2019-10795",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-10795",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 6.3,
+          "severity": "medium",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 6.5,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        74
+      ],
+      "description": "undefsafe before 2.0.3 is vulnerable to Prototype Pollution. The 'a' function could be tricked into adding or modifying properties of Object.prototype using a __proto__ payload.",
+      "recommendation": "",
+      "created": "2020-02-18T16:15:00+00:00",
+      "published": "2020-02-18T16:15:00+00:00",
+      "updated": "2020-02-27T16:47:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::undefsafe:2.0.2::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2020-8116",
+      "bom-ref": "CVE-2020-8116",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-ff7x-qrg7-qggm",
+        "name": "GitHub"
+      },
+      "ratings": [
+        {
+          "score": 7.3,
+          "severity": "high",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 7.5,
+          "severity": "high",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        425
+      ],
+      "description": "Prototype Pollution in dot-prop\n\nPrototype pollution vulnerability in dot-prop npm package versions before 4.2.1 and versions 5.x before 5.1.1 allows an attacker to add arbitrary properties to JavaScript language constructs such as objects.",
+      "recommendation": "",
+      "created": "2020-02-04T20:15:00+00:00",
+      "published": "2020-02-04T20:15:00+00:00",
+      "updated": "2020-08-20T15:28:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::dot-prop:4.2.0::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2022-33987",
+      "bom-ref": "CVE-2022-33987",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-33987",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 5.3,
+          "severity": "medium",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 5,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [],
+      "description": "The got package before 12.1.0 (also fixed in 11.8.5) for Node.js allows a redirect to a UNIX socket.",
+      "recommendation": "",
+      "created": "2022-06-18T21:15:00+00:00",
+      "published": "2022-06-18T21:15:00+00:00",
+      "updated": "2022-06-18T21:15:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::got:6.7.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2018-1002204",
+      "bom-ref": "CVE-2018-1002204",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-3v6h-hqm4-2rg6",
+        "name": "GitHub"
+      },
+      "ratings": [
+        {
+          "score": 5.5,
+          "severity": "medium",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 4.3,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        22
+      ],
+      "description": "Arbitrary File Write in adm-zip\n\nVersions of `adm-zip` before 0.4.9 are vulnerable to arbitrary file write when used to extract a specifically crafted archive that contains path traversal filenames (`../../file.txt` for example).\n\n\n## Recommendation\n\nUpdate to version 0.4.9 or later.",
+      "recommendation": "",
+      "created": "2018-07-25T17:29:00+00:00",
+      "published": "2018-07-25T17:29:00+00:00",
+      "updated": "2019-10-16T19:32:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::adm-zip:0.4.4::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2020-35896",
+      "bom-ref": "CVE-2020-35896",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2020-35896",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 7.5,
+          "severity": "high",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 5,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        770
+      ],
+      "description": "An issue was discovered in the ws crate through 2020-09-25 for Rust. The outgoing buffer is not properly limited, leading to a remote memory-consumption attack.",
+      "recommendation": "",
+      "created": "2020-12-31T10:15:00+00:00",
+      "published": "2020-12-31T10:15:00+00:00",
+      "updated": "2021-01-07T13:53:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::ws:1.1.5::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2022-0916",
+      "bom-ref": "CVE-2022-0916",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-0916",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 8.8,
+          "severity": "high",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 6.8,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        352
+      ],
+      "description": "An issue was discovered in Logitech Options. The OAuth 2.0 state parameter was not properly validated. This leaves applications vulnerable to CSRF attacks during authentication and authorization operations.",
+      "recommendation": "",
+      "created": "2022-05-03T14:15:00+00:00",
+      "published": "2022-05-03T14:15:00+00:00",
+      "updated": "2022-05-03T14:15:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::options:0.0.6::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2022-0144",
+      "bom-ref": "CVE-2022-0144",
+      "source": {
+        "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-0144",
+        "name": "NVD"
+      },
+      "ratings": [
+        {
+          "score": 7.1,
+          "severity": "high",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 3.6,
+          "severity": "low",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        269
+      ],
+      "description": "shelljs is vulnerable to Improper Privilege Management",
+      "recommendation": "",
+      "created": "2022-01-11T07:15:00+00:00",
+      "published": "2022-01-11T07:15:00+00:00",
+      "updated": "2022-01-11T07:15:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::shelljs:0.3.0::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "debricked-180554",
+      "bom-ref": "debricked-180554",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-64g7-mvw6-v9qj",
+        "name": "GitHub"
+      },
+      "ratings": [],
+      "cwes": [],
+      "description": "Improper Privilege Management in shelljs\n\n### Impact\nOutput from the synchronous version of `shell.exec()` may be visible to other users on the same system. You may be affected if you execute `shell.exec()` in multi-user Mac, Linux, or WSL environments, or if you execute `shell.exec()` as the root user.\n\nOther shelljs functions (including the asynchronous version of `shell.exec()`) are not impacted.\n\n### Patches\nPatched in shelljs 0.8.5\n\n### Workarounds\nRecommended action is to upgrade to 0.8.5.\n\n### References\nhttps://huntr.dev/bounties/50996581-c08e-4eed-a90e-c0bac082679c/\n\n### For more information\nIf you have any questions or comments about this advisory:\n* Ask at https://github.com/shelljs/shelljs/issues/1058\n* Open an issue at https://github.com/shelljs/shelljs/issues/new",
+      "recommendation": "",
+      "created": "2022-01-14T21:09:50+00:00",
+      "published": "2022-01-14T21:09:50+00:00",
+      "updated": "2022-01-14T21:09:50+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::shelljs:0.3.0::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2015-8858",
+      "bom-ref": "CVE-2015-8858",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-c9f4-xj24-8jqx",
+        "name": "GitHub"
+      },
+      "ratings": [
+        {
+          "score": 7.5,
+          "severity": "high",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 7.8,
+          "severity": "high",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        399
+      ],
+      "description": "Regular Expression Denial of Service in uglify-js\n\nVersions of `uglify-js` prior to 2.6.0 are affected by a regular expression denial of service vulnerability when malicious inputs are passed into the `parse()` method.\n\n\n### Proof of Concept\n\n```\nvar u = require('uglify-js');\nvar genstr = function (len, chr) {\n    var result = \"\";\n    for (i=0; i<=len; i++) {\n        result = result + chr;\n    }\n\n    return result;\n}\n\nu.parse(\"var a = \" + genstr(process.argv[2], \"1\") + \".1ee7;\");\n```\n\n### Results\n```\n$ time node test.js 10000\nreal\t0m1.091s\nuser\t0m1.047s\nsys\t0m0.039s\n\n$ time node test.js 80000\nreal\t0m6.486s\nuser\t0m6.229s\nsys\t0m0.094s\n```\n\n\n## Recommendation\n\nUpdate to version 2.6.0 or later.",
+      "recommendation": "Change uglify-js to 2.6.0",
+      "created": "2017-01-23T21:59:00+00:00",
+      "published": "2017-01-23T21:59:00+00:00",
+      "updated": "2017-03-02T02:59:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::uglify-js:2.4.24::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2021-23358",
+      "bom-ref": "CVE-2021-23358",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-cf4h-3jhx-xvhq",
+        "name": "GitHub"
+      },
+      "ratings": [
+        {
+          "score": 7.2,
+          "severity": "high",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 6.5,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        94
+      ],
+      "description": "Arbitrary Code Execution in underscore\n\nThe package `underscore` from 1.13.0-0 and before 1.13.0-2, from 1.3.2 and before 1.12.1 are vulnerable to Arbitrary Code Execution via the template function, particularly when a variable property is passed as an argument as it is not sanitized.",
+      "recommendation": "",
+      "created": "2021-03-29T14:15:00+00:00",
+      "published": "2021-03-29T14:15:00+00:00",
+      "updated": "2021-04-20T13:57:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::underscore:1.9.1::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2018-16487",
+      "bom-ref": "CVE-2018-16487",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-4xc9-xhrj-v574",
+        "name": "GitHub"
+      },
+      "ratings": [
+        {
+          "score": 5.6,
+          "severity": "medium",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 6.8,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [],
+      "description": "Prototype Pollution in lodash\n\nVersions of `lodash` before 4.17.5 are vulnerable to prototype pollution. \n\nThe vulnerable functions are 'defaultsDeep', 'merge', and 'mergeWith' which allow a malicious user to modify the prototype of `Object` via `{constructor: {prototype: {...}}}` causing the addition or modification of an existing property that will exist on all objects.\n\n\n\n\n## Recommendation\n\nUpdate to version 4.17.11 or later.",
+      "recommendation": "",
+      "created": "2019-02-01T18:29:00+00:00",
+      "published": "2019-02-01T18:29:00+00:00",
+      "updated": "2020-09-18T16:38:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::lodash:2.4.2::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2018-3721",
+      "bom-ref": "CVE-2018-3721",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-fvqr-27wr-82fm",
+        "name": "GitHub"
+      },
+      "ratings": [
+        {
+          "score": 6.5,
+          "severity": "medium",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 4,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [],
+      "description": "Prototype Pollution in lodash\n\nVersions of `lodash` before 4.17.5 are vulnerable to prototype pollution. \n\nThe vulnerable functions are 'defaultsDeep', 'merge', and 'mergeWith' which allow a malicious user to modify the prototype of `Object` via `__proto__` causing the addition or modification of an existing property that will exist on all objects.\n\n\n\n\n## Recommendation\n\nUpdate to version 4.17.5 or later.",
+      "recommendation": "",
+      "created": "2018-06-07T02:29:00+00:00",
+      "published": "2018-06-07T02:29:00+00:00",
+      "updated": "2019-10-03T00:03:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::lodash:2.4.2::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2019-1010266",
+      "bom-ref": "CVE-2019-1010266",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-x5rq-j2xg-h7qm",
+        "name": "GitHub"
+      },
+      "ratings": [
+        {
+          "score": 6.5,
+          "severity": "medium",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 4,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        770
+      ],
+      "description": "Regular Expression Denial of Service (ReDoS) in lodash\n\nlodash prior to 4.7.11 is affected by: CWE-400: Uncontrolled Resource Consumption. The impact is: Denial of service. The component is: Date handler. The attack vector is: Attacker provides very long strings, which the library attempts to match using a regular expression. The fixed version is: 4.7.11.",
+      "recommendation": "",
+      "created": "2019-07-17T21:15:00+00:00",
+      "published": "2019-07-17T21:15:00+00:00",
+      "updated": "2020-09-30T13:40:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::lodash:2.4.2::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2017-16026",
+      "bom-ref": "CVE-2017-16026",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-7xfp-9c55-5vqj",
+        "name": "GitHub"
+      },
+      "ratings": [
+        {
+          "score": 5.9,
+          "severity": "medium",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 7.1,
+          "severity": "high",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        20
+      ],
+      "description": "Remote Memory Exposure in request\n\nAffected versions of `request` will disclose local system memory to remote systems in certain circumstances. When a multipart request is made, and the type of `body` is `number`, then a buffer of that size will be allocated and sent to the remote server as the body.\n\n## Proof of Concept\n\n```\nvar request = require('request');\nvar http = require('http');\n\nvar serveFunction = function (req, res){\n\treq.on('data', function (data) {\n            console.log(data)\n        });\n\tres.end();\n};\nvar server = http.createServer(serveFunction);\nserver.listen(8000);\n\nrequest({\n\tmethod: \"POST\",\n\turi: 'http://localhost:8000',\n\tmultipart: [{body:500}]\n},function(err,res,body){});\n```\n\n\n## Recommendation\n\nUpdate to version 2.68.0 or later",
+      "recommendation": "",
+      "created": "2018-06-04T19:29:00+00:00",
+      "published": "2018-06-04T19:29:00+00:00",
+      "updated": "2019-10-09T23:24:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::request:2.36.0::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2017-16138",
+      "bom-ref": "CVE-2017-16138",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-wrvr-8mpx-r7pp",
+        "name": "GitHub"
+      },
+      "ratings": [
+        {
+          "score": 7.5,
+          "severity": "high",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 5,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        400
+      ],
+      "description": "Regular Expression Denial of Service in mime\n\nAffected versions of `mime` are vulnerable to regular expression denial of service when a mime lookup is performed on untrusted user input.\n\n\n## Recommendation\n\nUpdate to version 2.0.3 or later.",
+      "recommendation": "",
+      "created": "2018-06-07T02:29:00+00:00",
+      "published": "2018-06-07T02:29:00+00:00",
+      "updated": "2019-10-09T23:24:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::mime:1.2.11::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2016-2515",
+      "bom-ref": "CVE-2016-2515",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-jcpv-g9rr-qxrc",
+        "name": "GitHub"
+      },
+      "ratings": [
+        {
+          "score": 7.5,
+          "severity": "high",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 7.8,
+          "severity": "high",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        399
+      ],
+      "description": "Regular Expression Denial of Service in hawk\n\nVersions of `hawk` prior to 3.1.3, or 4.x prior to 4.1.1 are affected by a regular expression denial of service vulnerability related to excessively long headers and URI's.\n\n\n\n## Recommendation\n\nUpdate to hawk version 4.1.1 or later.",
+      "recommendation": "",
+      "created": "2016-04-13T16:59:00+00:00",
+      "published": "2016-04-13T16:59:00+00:00",
+      "updated": "2016-04-20T15:25:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::hawk:1.0.0::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2014-10064",
+      "bom-ref": "CVE-2014-10064",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-f9cm-p3w6-xvr3",
+        "name": "GitHub"
+      },
+      "ratings": [
+        {
+          "score": 7.5,
+          "severity": "high",
+          "method": "CVSSv3"
+        },
+        {
+          "score": 5,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        399
+      ],
+      "description": "Denial-of-Service Extended Event Loop Blocking in qs\n\nVersions prior to 1.0.0 of `qs` are affected by a denial of service vulnerability that results from excessive recursion in parsing a deeply nested JSON string.\n\n\n\n\n## Recommendation\n\nUpdate to version 1.0.0 or later",
+      "recommendation": "",
+      "created": "2018-05-31T20:29:00+00:00",
+      "published": "2018-05-31T20:29:00+00:00",
+      "updated": "2019-10-09T23:09:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::qs:0.6.6::*:*:*:*:*:*"
+        }
+      ]
+    },
+    {
+      "id": "CVE-2014-7191",
+      "bom-ref": "CVE-2014-7191",
+      "source": {
+        "url": "https://github.com/advisories/GHSA-crvj-3gj9-gm2p",
+        "name": "GitHub"
+      },
+      "ratings": [
+        {
+          "score": 5,
+          "severity": "medium",
+          "method": "CVSSv2"
+        }
+      ],
+      "cwes": [
+        399
+      ],
+      "description": "High severity vulnerability that affects qs\n\nWithdrawn, accidental duplicate publish.\r\n\r\nThe qs module before 1.0.0 in Node.js does not call the compact function for array data, which allows remote attackers to cause a denial of service (memory consumption) by using a large index value to create a sparse array.",
+      "recommendation": "Change qs to 1.0.0",
+      "created": "2014-10-19T01:55:00+00:00",
+      "published": "2014-10-19T01:55:00+00:00",
+      "updated": "2017-09-08T01:29:00+00:00",
+      "affects": [
+        {
+          "ref": "cpe:2.3:a::qs:0.6.6::*:*:*:*:*:*"
+        }
+      ]
+    }
+  ]
+}
\ No newline at end of file
diff --git a/sampleData/owasp-nodejs-goat-with-vulns.zip b/sampleData/owasp-nodejs-goat-with-vulns.zip
new file mode 100644
index 0000000..4507451
Binary files /dev/null and b/sampleData/owasp-nodejs-goat-with-vulns.zip differ
diff --git a/sampleData/sample-unsupported-format.json b/sampleData/sample-unsupported-format.json
new file mode 100644
index 0000000..225a4bd
--- /dev/null
+++ b/sampleData/sample-unsupported-format.json
@@ -0,0 +1,871 @@
+{
+	"bom_format": "CycloneDx",
+	"spec_version": "1",
+	"version": 1,
+	"components": [
+		{
+			"cpe": "cpe:2.3:a:com.fasterxml.jackson.core:jackson-databind:~:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/com.fasterxml.jackson.core\/jackson-databind@~",
+			"name": "",
+			"version": "",
+			"bom-ref": "21402",
+			"licenses": []
+		},
+		{
+			"cpe": "cpe:2.3:a:com.fasterxml.jackson.core:jackson-databind:2.10.0:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/com.fasterxml.jackson.core\/jackson-databind@2.10.0",
+			"name": "",
+			"version": "2.10.0",
+			"bom-ref": "21405",
+			"licenses": []
+		},
+		{
+			"cpe": "cpe:2.3:a:seq:seq:0.3.5:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/seq\/seq@0.3.5",
+			"name": "",
+			"version": "0.3.5",
+			"bom-ref": "20722",
+			"licenses": []
+		},
+		{
+			"cpe": "cpe:2.3:a:brace-expansion:brace-expansion:1.0.11:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/brace-expansion\/brace-expansion@1.0.11",
+			"name": "",
+			"version": "1.0.11",
+			"bom-ref": "21633",
+			"licenses": []
+		},
+		{
+			"cpe": "cpe:2.3:a:brace-expansion:brace-expansion:1.1.11:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/brace-expansion\/brace-expansion@1.1.11",
+			"name": "",
+			"version": "1.1.11",
+			"bom-ref": "21641",
+			"licenses": []
+		},
+		{
+			"cpe": "cpe:2.3:a:brace-expansion:brace-expansion:1.4.3:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/brace-expansion\/brace-expansion@1.4.3",
+			"name": "",
+			"version": "1.4.3",
+			"bom-ref": "21642",
+			"licenses": []
+		},
+		{
+			"cpe": "cpe:2.3:a:brace-expansion:brace-expansion:2.5.0:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/brace-expansion\/brace-expansion@2.5.0",
+			"name": "",
+			"version": "2.5.0",
+			"bom-ref": "21643",
+			"licenses": []
+		},
+		{
+			"cpe": "cpe:2.3:a:extend:extend:3.0.0:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/extend\/extend@3.0.0",
+			"name": "",
+			"version": "3.0.0",
+			"bom-ref": "21215",
+			"licenses": []
+		},
+		{
+			"cpe": "cpe:2.3:a:extend:extend:3.0.1:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/extend\/extend@3.0.1",
+			"name": "",
+			"version": "3.0.1",
+			"bom-ref": "21219",
+			"licenses": []
+		},
+		{
+			"cpe": "cpe:2.3:a:extend:extend:3.0.2:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/extend\/extend@3.0.2",
+			"name": "",
+			"version": "3.0.2",
+			"bom-ref": "21223",
+			"licenses": []
+		},
+		{
+			"cpe": "cpe:2.3:o:linux:linux-kernel:4.14.1:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/linux\/linux-kernel@4.14.1",
+			"name": "",
+			"version": "4.14.1",
+			"bom-ref": "21825",
+			"licenses": []
+		},
+		{
+			"cpe": "cpe:2.3:o:linux:linux-kernel:5.1.5:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/linux\/linux-kernel@5.1.5",
+			"name": "",
+			"version": "5.1.5",
+			"bom-ref": "21826",
+			"licenses": []
+		},
+		{
+			"cpe": "cpe:2.3:o:linux:linux-kernel:5.2.9:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/linux\/linux-kernel@5.2.9",
+			"name": "",
+			"version": "5.2.9",
+			"bom-ref": "21828",
+			"licenses": []
+		},
+		{
+			"cpe": "cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/redhat\/enterprise_linux_desktop@6.0",
+			"name": "",
+			"version": "6.0",
+			"bom-ref": "21832",
+			"licenses": []
+		},
+		{
+			"cpe": "cpe:2.3:a:cryptiles_project:cryptiles:2.0.5:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/cryptiles_project\/cryptiles@2.0.5",
+			"name": "",
+			"version": "2.0.5",
+			"bom-ref": "21871",
+			"licenses": []
+		},
+		{
+			"cpe": "cpe:2.3:a:minimatch:minimatch:3.0.3:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/minimatch\/minimatch@3.0.3",
+			"name": "",
+			"version": "3.0.3",
+			"bom-ref": "21492",
+			"licenses": []
+		},
+		{
+			"cpe": "cpe:2.3:a:minimatch:minimatch:3.0.4:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/minimatch\/minimatch@3.0.4",
+			"name": "",
+			"version": "3.0.4",
+			"bom-ref": "21496",
+			"licenses": []
+		},
+		{
+			"cpe": "cpe:2.3:a:wavpack:wavpack:5.1.0:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/wavpack\/wavpack@5.1.0",
+			"name": "",
+			"version": "5.1.0",
+			"bom-ref": "21837",
+			"licenses": []
+		},
+		{
+			"cpe": "cpe:2.3:a:json-iterator:go:1.1.6:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/json-iterator\/go@1.1.6",
+			"name": "",
+			"version": "1.1.6",
+			"bom-ref": "21805",
+			"licenses": []
+		},
+		{
+			"cpe": "cpe:2.3:a:boltdb:bolt:1.3.1:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/boltdb\/bolt@1.3.1",
+			"name": "",
+			"version": "1.3.1",
+			"bom-ref": "21811",
+			"licenses": []
+		},
+		{
+			"cpe": "cpe:2.3:a:x:image:~:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/x\/image@~",
+			"name": "",
+			"version": "",
+			"bom-ref": "21818",
+			"licenses": []
+		},
+		{
+			"cpe": "cpe:2.3:a:nuget:core:2.5.0:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/nuget\/core@2.5.0",
+			"name": "",
+			"version": "2.5.0",
+			"bom-ref": "21417",
+			"licenses": []
+		},
+		{
+			"cpe": "cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/redhat\/enterprise_linux_desktop@6.0",
+			"name": "",
+			"version": "6.0",
+			"bom-ref": "21832",
+			"licenses": []
+		},
+		{
+			"cpe": "cpe:2.3::~:jszip:3.2.2:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/~\/jszip@3.2.2",
+			"name": "jszip",
+			"version": "3.2.2",
+			"bom-ref": "22244",
+			"licenses": [
+				{
+					"id": "MIT"
+				},
+				{
+					"id": "GPL-3.0-or-later"
+				}
+			]
+		},
+		{
+			"cpe": "cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/redhat\/enterprise_linux_desktop@6.0",
+			"name": "",
+			"version": "6.0",
+			"bom-ref": "21832",
+			"licenses": []
+		},
+		{
+			"cpe": "cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/redhat\/enterprise_linux_desktop@6.0",
+			"name": "",
+			"version": "6.0",
+			"bom-ref": "21832",
+			"licenses": []
+		},
+		{
+			"cpe": "cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/redhat\/enterprise_linux_desktop@6.0",
+			"name": "",
+			"version": "6.0",
+			"bom-ref": "21832",
+			"licenses": []
+		},
+		{
+			"cpe": "cpe:2.3:a:this_dependency_definitely_does_not_have_a_vulnerability:this_dependency_definitely_does_not_have_a_vulnerability:2.2.4:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/this_dependency_definitely_does_not_have_a_vulnerability\/this_dependency_definitely_does_not_have_a_vulnerability@2.2.4",
+			"name": "",
+			"version": "2.2.4",
+			"bom-ref": "21894",
+			"licenses": []
+		},
+		{
+			"cpe": "cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/redhat\/enterprise_linux_desktop@6.0",
+			"name": "",
+			"version": "6.0",
+			"bom-ref": "21832",
+			"licenses": []
+		},
+		{
+			"cpe": "cpe:2.3:a:django:django:2.2.4:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/django\/django@2.2.4",
+			"name": "",
+			"version": "2.2.4",
+			"bom-ref": "21796",
+			"licenses": []
+		},
+		{
+			"cpe": "cpe:2.3::symfony:symfony:4.4.7:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/symfony\/symfony@4.4.7",
+			"name": "symfony",
+			"version": "4.4.7",
+			"bom-ref": "22111",
+			"licenses": [
+				{
+					"id": "MIT"
+				}
+			]
+		},
+		{
+			"cpe": "cpe:2.3::apache:thrift:0.12.0:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/apache\/thrift@0.12.0",
+			"name": "",
+			"version": "0.12.0",
+			"bom-ref": "21981",
+			"licenses": []
+		},
+		{
+			"cpe": "cpe:2.3::org.apache.thrift:libthrift:0.12.0:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/org.apache.thrift\/libthrift@0.12.0",
+			"name": "",
+			"version": "0.12.0",
+			"bom-ref": "22037",
+			"licenses": []
+		},
+		{
+			"cpe": "cpe:2.3::org.apache.httpcomponents:httpclient:4.5.6:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/org.apache.httpcomponents\/httpclient@4.5.6",
+			"name": "",
+			"version": "4.5.6",
+			"bom-ref": "22082",
+			"licenses": []
+		},
+		{
+			"cpe": "cpe:2.3::org.apache.thrift:libthrift:0.12.0:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/org.apache.thrift\/libthrift@0.12.0",
+			"name": "",
+			"version": "0.12.0",
+			"bom-ref": "22037",
+			"licenses": []
+		},
+		{
+			"cpe": "cpe:2.3::org.apache.httpcomponents:httpclient:4.5.6:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/org.apache.httpcomponents\/httpclient@4.5.6",
+			"name": "",
+			"version": "4.5.6",
+			"bom-ref": "22082",
+			"licenses": []
+		},
+		{
+			"cpe": "cpe:2.3::debug:debug:2.6.4:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/debug\/debug@2.6.4",
+			"name": "debug",
+			"version": "2.6.4",
+			"bom-ref": "22163",
+			"licenses": [
+				{
+					"id": "MIT"
+				}
+			]
+		},
+		{
+			"cpe": "cpe:2.3::depd:depd:1.1.2:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/depd\/depd@1.1.2",
+			"name": "",
+			"version": "1.1.2",
+			"bom-ref": "22168",
+			"licenses": []
+		},
+		{
+			"cpe": "cpe:2.3::destroy:destroy:1.0.4:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/destroy\/destroy@1.0.4",
+			"name": "",
+			"version": "1.0.4",
+			"bom-ref": "22170",
+			"licenses": []
+		},
+		{
+			"cpe": "cpe:2.3::ee-first:ee-first:1.1.1:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/ee-first\/ee-first@1.1.1",
+			"name": "",
+			"version": "1.1.1",
+			"bom-ref": "22172",
+			"licenses": []
+		},
+		{
+			"cpe": "cpe:2.3::encodeurl:encodeurl:1.0.2:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/encodeurl\/encodeurl@1.0.2",
+			"name": "",
+			"version": "1.0.2",
+			"bom-ref": "22174",
+			"licenses": []
+		},
+		{
+			"cpe": "cpe:2.3::escape-html:escape-html:1.0.3:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/escape-html\/escape-html@1.0.3",
+			"name": "",
+			"version": "1.0.3",
+			"bom-ref": "22176",
+			"licenses": []
+		},
+		{
+			"cpe": "cpe:2.3::etag:etag:1.8.1:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/etag\/etag@1.8.1",
+			"name": "",
+			"version": "1.8.1",
+			"bom-ref": "22178",
+			"licenses": []
+		},
+		{
+			"cpe": "cpe:2.3::fresh:fresh:0.5.0:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/fresh\/fresh@0.5.0",
+			"name": "",
+			"version": "0.5.0",
+			"bom-ref": "22180",
+			"licenses": []
+		},
+		{
+			"cpe": "cpe:2.3::http-errors:http-errors:1.6.3:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/http-errors\/http-errors@1.6.3",
+			"name": "",
+			"version": "1.6.3",
+			"bom-ref": "22182",
+			"licenses": []
+		},
+		{
+			"cpe": "cpe:2.3::inherits:inherits:2.0.3:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/inherits\/inherits@2.0.3",
+			"name": "",
+			"version": "2.0.3",
+			"bom-ref": "22184",
+			"licenses": []
+		},
+		{
+			"cpe": "cpe:2.3::~:lodash:3.10.1:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/~\/lodash@3.10.1",
+			"name": "lodash",
+			"version": "3.10.1",
+			"bom-ref": "22191",
+			"licenses": [
+				{
+					"id": "MIT"
+				}
+			]
+		},
+		{
+			"cpe": "cpe:2.3::~:lodash:4.17.21:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/~\/lodash@4.17.21",
+			"name": "lodash",
+			"version": "4.17.21",
+			"bom-ref": "22194",
+			"licenses": [
+				{
+					"id": "MIT"
+				}
+			]
+		},
+		{
+			"cpe": "cpe:2.3::~:mime:1.3.4:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/~\/mime@1.3.4",
+			"name": "",
+			"version": "1.3.4",
+			"bom-ref": "21021",
+			"licenses": []
+		},
+		{
+			"cpe": "cpe:2.3::ms:ms:0.7.3:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/ms\/ms@0.7.3",
+			"name": "",
+			"version": "0.7.3",
+			"bom-ref": "22196",
+			"licenses": []
+		},
+		{
+			"cpe": "cpe:2.3::ms:ms:1.0.0:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/ms\/ms@1.0.0",
+			"name": "",
+			"version": "1.0.0",
+			"bom-ref": "22197",
+			"licenses": []
+		},
+		{
+			"cpe": "cpe:2.3::~:on-finished:2.3.0:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/~\/on-finished@2.3.0",
+			"name": "",
+			"version": "2.3.0",
+			"bom-ref": "22201",
+			"licenses": []
+		},
+		{
+			"cpe": "cpe:2.3::parseurl:parseurl:1.3.3:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/parseurl\/parseurl@1.3.3",
+			"name": "",
+			"version": "1.3.3",
+			"bom-ref": "22203",
+			"licenses": []
+		},
+		{
+			"cpe": "cpe:2.3::range-parser:range-parser:1.2.1:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/range-parser\/range-parser@1.2.1",
+			"name": "",
+			"version": "1.2.1",
+			"bom-ref": "22205",
+			"licenses": [
+				{
+					"id": "MIT"
+				}
+			]
+		},
+		{
+			"cpe": "cpe:2.3::~:send:0.15.2:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/~\/send@0.15.2",
+			"name": "",
+			"version": "0.15.2",
+			"bom-ref": "22209",
+			"licenses": []
+		},
+		{
+			"cpe": "cpe:2.3::~:serve-static:1.12.2:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/~\/serve-static@1.12.2",
+			"name": "",
+			"version": "1.12.2",
+			"bom-ref": "22211",
+			"licenses": []
+		},
+		{
+			"cpe": "cpe:2.3::setprototypeof:setprototypeof:1.1.0:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/setprototypeof\/setprototypeof@1.1.0",
+			"name": "",
+			"version": "1.1.0",
+			"bom-ref": "22226",
+			"licenses": []
+		},
+		{
+			"cpe": "cpe:2.3::statuses:statuses:1.3.1:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/statuses\/statuses@1.3.1",
+			"name": "",
+			"version": "1.3.1",
+			"bom-ref": "22228",
+			"licenses": []
+		},
+		{
+			"cpe": "cpe:2.3::statuses:statuses:1.5.0:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/statuses\/statuses@1.5.0",
+			"name": "",
+			"version": "1.5.0",
+			"bom-ref": "22229",
+			"licenses": []
+		},
+		{
+			"cpe": "cpe:2.3::~:serve-static:1.12.2:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/~\/serve-static@1.12.2",
+			"name": "",
+			"version": "1.12.2",
+			"bom-ref": "22211",
+			"licenses": []
+		},
+		{
+			"cpe": "cpe:2.3::~:lodash:3.10.1:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/~\/lodash@3.10.1",
+			"name": "",
+			"version": "3.10.1",
+			"bom-ref": "22191",
+			"licenses": []
+		},
+		{
+			"cpe": "cpe:2.3::~:serve-static:1.12.2:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/~\/serve-static@1.12.2",
+			"name": "",
+			"version": "1.12.2",
+			"bom-ref": "22211",
+			"licenses": []
+		},
+		{
+			"cpe": "cpe:2.3::~:lodash:3.10.1:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/~\/lodash@3.10.1",
+			"name": "",
+			"version": "3.10.1",
+			"bom-ref": "22191",
+			"licenses": []
+		},
+		{
+			"cpe": "cpe:2.3::~:minimatch:3.0.1:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/~\/minimatch@3.0.1",
+			"name": "",
+			"version": "3.0.1",
+			"bom-ref": "21568",
+			"licenses": []
+		},
+		{
+			"cpe": "cpe:2.3::~:benchmark:2.0.0:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/~\/benchmark@2.0.0",
+			"name": "",
+			"version": "2.0.0",
+			"bom-ref": "22246",
+			"licenses": []
+		},
+		{
+			"cpe": "cpe:2.3::~:docdown:0.2.0:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/~\/docdown@0.2.0",
+			"name": "",
+			"version": "0.2.0",
+			"bom-ref": "22249",
+			"licenses": []
+		},
+		{
+			"cpe": "cpe:2.3::~:lodash:3.10.1:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/~\/lodash@3.10.1",
+			"name": "",
+			"version": "3.10.1",
+			"bom-ref": "22191",
+			"licenses": []
+		},
+		{
+			"cpe": "cpe:2.3::~:lodash:3.10.1:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/~\/lodash@3.10.1",
+			"name": "",
+			"version": "3.10.1",
+			"bom-ref": "22191",
+			"licenses": []
+		},
+		{
+			"cpe": "cpe:2.3::~:lodash:3.10.1:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/~\/lodash@3.10.1",
+			"name": "",
+			"version": "3.10.1",
+			"bom-ref": "22191",
+			"licenses": []
+		},
+		{
+			"cpe": "cpe:2.3::~:serialize-javascript:1.9.1:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/~\/serialize-javascript@1.9.1",
+			"name": "",
+			"version": "1.9.1",
+			"bom-ref": "22224",
+			"licenses": []
+		},
+		{
+			"cpe": "cpe:2.3::~:copy-webpack-plugin:4.4.1:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/~\/copy-webpack-plugin@4.4.1",
+			"name": "",
+			"version": "4.4.1",
+			"bom-ref": "22219",
+			"licenses": []
+		},
+		{
+			"cpe": "cpe:2.3::debug:debug:2.6.4:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/debug\/debug@2.6.4",
+			"name": "",
+			"version": "2.6.4",
+			"bom-ref": "22163",
+			"licenses": []
+		},
+		{
+			"cpe": "cpe:2.3::depd:depd:1.1.2:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/depd\/depd@1.1.2",
+			"name": "",
+			"version": "1.1.2",
+			"bom-ref": "22168",
+			"licenses": []
+		},
+		{
+			"cpe": "cpe:2.3::destroy:destroy:1.0.4:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/destroy\/destroy@1.0.4",
+			"name": "",
+			"version": "1.0.4",
+			"bom-ref": "22170",
+			"licenses": []
+		},
+		{
+			"cpe": "cpe:2.3::ee-first:ee-first:1.1.1:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/ee-first\/ee-first@1.1.1",
+			"name": "",
+			"version": "1.1.1",
+			"bom-ref": "22172",
+			"licenses": []
+		},
+		{
+			"cpe": "cpe:2.3::encodeurl:encodeurl:1.0.2:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/encodeurl\/encodeurl@1.0.2",
+			"name": "",
+			"version": "1.0.2",
+			"bom-ref": "22174",
+			"licenses": []
+		},
+		{
+			"cpe": "cpe:2.3::escape-html:escape-html:1.0.3:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/escape-html\/escape-html@1.0.3",
+			"name": "",
+			"version": "1.0.3",
+			"bom-ref": "22176",
+			"licenses": []
+		},
+		{
+			"cpe": "cpe:2.3::etag:etag:1.8.1:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/etag\/etag@1.8.1",
+			"name": "",
+			"version": "1.8.1",
+			"bom-ref": "22178",
+			"licenses": []
+		},
+		{
+			"cpe": "cpe:2.3::fresh:fresh:0.5.0:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/fresh\/fresh@0.5.0",
+			"name": "",
+			"version": "0.5.0",
+			"bom-ref": "22180",
+			"licenses": []
+		},
+		{
+			"cpe": "cpe:2.3::http-errors:http-errors:1.6.3:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/http-errors\/http-errors@1.6.3",
+			"name": "",
+			"version": "1.6.3",
+			"bom-ref": "22182",
+			"licenses": []
+		},
+		{
+			"cpe": "cpe:2.3::inherits:inherits:2.0.3:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/inherits\/inherits@2.0.3",
+			"name": "",
+			"version": "2.0.3",
+			"bom-ref": "22184",
+			"licenses": []
+		},
+		{
+			"cpe": "cpe:2.3::~:lodash:3.10.1:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/~\/lodash@3.10.1",
+			"name": "",
+			"version": "3.10.1",
+			"bom-ref": "22191",
+			"licenses": []
+		},
+		{
+			"cpe": "cpe:2.3::~:mime:1.3.4:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/~\/mime@1.3.4",
+			"name": "",
+			"version": "1.3.4",
+			"bom-ref": "21021",
+			"licenses": []
+		},
+		{
+			"cpe": "cpe:2.3::ms:ms:0.7.3:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/ms\/ms@0.7.3",
+			"name": "",
+			"version": "0.7.3",
+			"bom-ref": "22196",
+			"licenses": []
+		},
+		{
+			"cpe": "cpe:2.3::ms:ms:1.0.0:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/ms\/ms@1.0.0",
+			"name": "",
+			"version": "1.0.0",
+			"bom-ref": "22197",
+			"licenses": []
+		},
+		{
+			"cpe": "cpe:2.3::~:on-finished:2.3.0:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/~\/on-finished@2.3.0",
+			"name": "",
+			"version": "2.3.0",
+			"bom-ref": "22201",
+			"licenses": []
+		},
+		{
+			"cpe": "cpe:2.3::parseurl:parseurl:1.3.3:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/parseurl\/parseurl@1.3.3",
+			"name": "",
+			"version": "1.3.3",
+			"bom-ref": "22203",
+			"licenses": []
+		},
+		{
+			"cpe": "cpe:2.3::range-parser:range-parser:1.2.1:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/range-parser\/range-parser@1.2.1",
+			"name": "",
+			"version": "1.2.1",
+			"bom-ref": "22205",
+			"licenses": []
+		},
+		{
+			"cpe": "cpe:2.3::~:send:0.15.2:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/~\/send@0.15.2",
+			"name": "",
+			"version": "0.15.2",
+			"bom-ref": "22209",
+			"licenses": []
+		},
+		{
+			"cpe": "cpe:2.3::~:serve-static:1.12.2:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/~\/serve-static@1.12.2",
+			"name": "",
+			"version": "1.12.2",
+			"bom-ref": "22211",
+			"licenses": []
+		},
+		{
+			"cpe": "cpe:2.3::setprototypeof:setprototypeof:1.1.0:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/setprototypeof\/setprototypeof@1.1.0",
+			"name": "",
+			"version": "1.1.0",
+			"bom-ref": "22226",
+			"licenses": []
+		},
+		{
+			"cpe": "cpe:2.3::statuses:statuses:1.3.1:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/statuses\/statuses@1.3.1",
+			"name": "",
+			"version": "1.3.1",
+			"bom-ref": "22228",
+			"licenses": []
+		},
+		{
+			"cpe": "cpe:2.3::statuses:statuses:1.5.0:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/statuses\/statuses@1.5.0",
+			"name": "",
+			"version": "1.5.0",
+			"bom-ref": "22229",
+			"licenses": []
+		},
+		{
+			"cpe": "cpe:2.3:a:org.apache.logging.log4j:log4j-core:2.13.1:~:~:~:~:~:~:~",
+			"purl": "pkg:maven\/org.apache.logging.log4j\/log4j-core@2.13.1",
+			"name": "",
+			"version": "2.13.1",
+			"bom-ref": "22351",
+			"licenses": []
+		}
+	],
+	"vulnerabilities": [
+		{
+			"id": "CVE-2018-14634",
+			"bom-ref": "CVE-2018-14634",
+			"ratings": [
+				{
+					"score": 7.8,
+					"severity": "high",
+					"method": "CVSSv3"
+				},
+				{
+					"score": 7.2,
+					"severity": "high",
+					"method": "CVSSv2"
+				}
+			],
+			"cwes": [],
+			"affects": [
+				{
+					"ref": "21825"
+				},
+				{
+					"ref": "21826"
+				},
+				{
+					"ref": "21828"
+				}
+			]
+		},
+		{
+			"id": "debricked-cve-1",
+			"bom-ref": "debricked-cve-1",
+			"source": {
+				"url": "https:\/\/www.vuln-source.com",
+				"name": "debricked"
+			},
+			"ratings": [],
+			"cwes": [],
+			"description": "Lorem Ipsum",
+			"affects": [
+				{
+					"ref": "21417"
+				}
+			]
+		},
+		{
+			"id": "debricked-cve-4",
+			"bom-ref": "debricked-cve-4",
+			"ratings": [],
+			"cwes": [],
+			"affects": [
+				{
+					"ref": "21417"
+				}
+			]
+		},
+		{
+			"id": "debricked-cve-5",
+			"bom-ref": "debricked-cve-5",
+			"ratings": [
+				{
+					"score": 10.0,
+					"severity": "critical",
+					"method": "CVSSv3"
+				}
+			],
+			"cwes": [],
+			"affects": [
+				{
+					"ref": "21417"
+				}
+			]
+		},
+		{
+			"id": "debricked-cve-6",
+			"bom-ref": "debricked-cve-6",
+			"ratings": [],
+			"cwes": [],
+			"affects": [
+				{
+					"ref": "21417"
+				}
+			]
+		}
+	]
+}
\ No newline at end of file
diff --git a/sampleData/sample1.json b/sampleData/sample1.json
new file mode 100644
index 0000000..15fd9f5
--- /dev/null
+++ b/sampleData/sample1.json
@@ -0,0 +1,508 @@
+{
+	"bomFormat": "CycloneDX",
+	"specVersion": "1.4",
+	"version": 1,
+	"serialNumber": "urn:uuid:3f1ed2d0-4266-4da9-bb6f-1ca73b64f99f",
+	"metadata": {
+		"timestamp": "2022-05-04T11:50:31+00:00",
+		"tools": [{
+			"vendor": "Micro Focus",
+			"name": "Debricked",
+			"version": "1.0.1",
+			"component": "component",
+			"supplier": "tenant\/company_name"
+		}]
+	},
+	"components": [{
+		"type": "library",
+		"description": "description",
+		"cpe": "cpe:2.3:a:python:python:3.6.6::*:*:*:*:*:*",
+		"purl": "pkg:composer\/python\/python@3.6.6",
+		"name": "python (Composer)",
+		"version": "3.6.6",
+		"bom-ref": "cpe:2.3:a:python:python:3.6.6::*:*:*:*:*:*",
+		"licenses": []
+	}, {
+		"cpe": "cpe:2.3:a:com.fasterxml.jackson.core:jackson-databind:~:~:~:~:~:~:~:~",
+		"purl": "pkg:maven\/com.fasterxml.jackson.core\/jackson-databind@~",
+		"name": "",
+		"version": "",
+		"bom-ref": "21402",
+		"licenses": []
+	}, {
+		"cpe": "cpe:2.3:a:com.fasterxml.jackson.core:jackson-databind:2.10.0:~:~:~:~:~:~:~",
+		"purl": "pkg:maven\/com.fasterxml.jackson.core\/jackson-databind@2.10.0",
+		"name": "",
+		"version": "2.10.0",
+		"bom-ref": "21405",
+		"licenses": []
+	}, {
+		"cpe": "cpe:2.3:a:seq:seq:0.3.5:~:~:~:~:~:~:~",
+		"purl": "pkg:maven\/seq\/seq@0.3.5",
+		"name": "",
+		"version": "0.3.5",
+		"bom-ref": "20722",
+		"licenses": []
+	}, {
+		"cpe": "cpe:2.3:a:brace-expansion:brace-expansion:1.0.11:~:~:~:~:~:~:~",
+		"purl": "pkg:maven\/brace-expansion\/brace-expansion@1.0.11",
+		"name": "",
+		"version": "1.0.11",
+		"bom-ref": "21633",
+		"licenses": []
+	}, {
+		"cpe": "cpe:2.3:a:brace-expansion:brace-expansion:1.1.11:~:~:~:~:~:~:~",
+		"purl": "pkg:maven\/brace-expansion\/brace-expansion@1.1.11",
+		"name": "",
+		"version": "1.1.11",
+		"bom-ref": "21641",
+		"licenses": []
+	}, {
+		"cpe": "cpe:2.3:a:brace-expansion:brace-expansion:1.4.3:~:~:~:~:~:~:~",
+		"purl": "pkg:maven\/brace-expansion\/brace-expansion@1.4.3",
+		"name": "",
+		"version": "1.4.3",
+		"bom-ref": "21642",
+		"licenses": []
+	}, {
+		"cpe": "cpe:2.3:a:brace-expansion:brace-expansion:2.5.0:~:~:~:~:~:~:~",
+		"purl": "pkg:maven\/brace-expansion\/brace-expansion@2.5.0",
+		"name": "",
+		"version": "2.5.0",
+		"bom-ref": "21643",
+		"licenses": []
+	}, {
+		"cpe": "cpe:2.3:a:extend:extend:3.0.0:~:~:~:~:~:~:~",
+		"purl": "pkg:maven\/extend\/extend@3.0.0",
+		"name": "",
+		"version": "3.0.0",
+		"bom-ref": "21215",
+		"licenses": []
+	}, {
+		"cpe": "cpe:2.3:a:extend:extend:3.0.1:~:~:~:~:~:~:~",
+		"purl": "pkg:maven\/extend\/extend@3.0.1",
+		"name": "",
+		"version": "3.0.1",
+		"bom-ref": "21219",
+		"licenses": []
+	}, {
+		"cpe": "cpe:2.3:a:extend:extend:3.0.2:~:~:~:~:~:~:~",
+		"purl": "pkg:maven\/extend\/extend@3.0.2",
+		"name": "",
+		"version": "3.0.2",
+		"bom-ref": "21223",
+		"licenses": []
+	}, {
+		"cpe": "cpe:2.3:o:linux:linux-kernel:4.14.1:~:~:~:~:~:~:~",
+		"purl": "pkg:maven\/linux\/linux-kernel@4.14.1",
+		"name": "",
+		"version": "4.14.1",
+		"bom-ref": "21825",
+		"licenses": []
+	}, {
+		"cpe": "cpe:2.3:o:linux:linux-kernel:5.1.5:~:~:~:~:~:~:~",
+		"purl": "pkg:maven\/linux\/linux-kernel@5.1.5",
+		"name": "",
+		"version": "5.1.5",
+		"bom-ref": "21826",
+		"licenses": []
+	}, {
+		"cpe": "cpe:2.3:o:linux:linux-kernel:5.2.9:~:~:~:~:~:~:~",
+		"purl": "pkg:maven\/linux\/linux-kernel@5.2.9",
+		"name": "",
+		"version": "5.2.9",
+		"bom-ref": "21828",
+		"licenses": []
+	}, {
+		"cpe": "cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:~:~:~:~:~:~:~",
+		"purl": "pkg:maven\/redhat\/enterprise_linux_desktop@6.0",
+		"name": "",
+		"version": "6.0",
+		"bom-ref": "21832",
+		"licenses": []
+	}, {
+		"cpe": "cpe:2.3:a:cryptiles_project:cryptiles:2.0.5:~:~:~:~:~:~:~",
+		"purl": "pkg:maven\/cryptiles_project\/cryptiles@2.0.5",
+		"name": "",
+		"version": "2.0.5",
+		"bom-ref": "21871",
+		"licenses": []
+	}, {
+		"cpe": "cpe:2.3:a:minimatch:minimatch:3.0.3:~:~:~:~:~:~:~",
+		"purl": "pkg:maven\/minimatch\/minimatch@3.0.3",
+		"name": "",
+		"version": "3.0.3",
+		"bom-ref": "21492",
+		"licenses": []
+	}, {
+		"cpe": "cpe:2.3:a:minimatch:minimatch:3.0.4:~:~:~:~:~:~:~",
+		"purl": "pkg:maven\/minimatch\/minimatch@3.0.4",
+		"name": "",
+		"version": "3.0.4",
+		"bom-ref": "21496",
+		"licenses": []
+	}, {
+		"cpe": "cpe:2.3:a:wavpack:wavpack:5.1.0:~:~:~:~:~:~:~",
+		"purl": "pkg:maven\/wavpack\/wavpack@5.1.0",
+		"name": "",
+		"version": "5.1.0",
+		"bom-ref": "21837",
+		"licenses": []
+	}, {
+		"cpe": "cpe:2.3:a:json-iterator:go:1.1.6:~:~:~:~:~:~:~",
+		"purl": "pkg:maven\/json-iterator\/go@1.1.6",
+		"name": "",
+		"version": "1.1.6",
+		"bom-ref": "21805",
+		"licenses": []
+	}, {
+		"cpe": "cpe:2.3:a:boltdb:bolt:1.3.1:~:~:~:~:~:~:~",
+		"purl": "pkg:maven\/boltdb\/bolt@1.3.1",
+		"name": "",
+		"version": "1.3.1",
+		"bom-ref": "21811",
+		"licenses": []
+	}, {
+		"cpe": "cpe:2.3:a:x:image:~:~:~:~:~:~:~:~",
+		"purl": "pkg:maven\/x\/image@~",
+		"name": "",
+		"version": "",
+		"bom-ref": "21818",
+		"licenses": []
+	}, {
+		"cpe": "cpe:2.3:a:nuget:core:2.5.0:~:~:~:~:~:~:~",
+		"purl": "pkg:maven\/nuget\/core@2.5.0",
+		"name": "",
+		"version": "2.5.0",
+		"bom-ref": "21417",
+		"licenses": []
+	}, {
+		"cpe": "cpe:2.3::~:jszip:3.2.2:~:~:~:~:~:~:~",
+		"purl": "pkg:maven\/~\/jszip@3.2.2",
+		"name": "jszip",
+		"version": "3.2.2",
+		"bom-ref": "22244",
+		"licenses": [{
+			"id": "MIT"
+		}, {
+			"id": "GPL-3.0-or-later"
+		}]
+	}, {
+		"cpe": "cpe:2.3:a:this_dependency_definitely_does_not_have_a_vulnerability:this_dependency_definitely_does_not_have_a_vulnerability:2.2.4:~:~:~:~:~:~:~",
+		"purl": "pkg:maven\/this_dependency_definitely_does_not_have_a_vulnerability\/this_dependency_definitely_does_not_have_a_vulnerability@2.2.4",
+		"name": "",
+		"version": "2.2.4",
+		"bom-ref": "21894",
+		"licenses": []
+	}, {
+		"cpe": "cpe:2.3:a:django:django:2.2.4:~:~:~:~:~:~:~",
+		"purl": "pkg:maven\/django\/django@2.2.4",
+		"name": "",
+		"version": "2.2.4",
+		"bom-ref": "21796",
+		"licenses": []
+	}, {
+		"cpe": "cpe:2.3::symfony:symfony:4.4.7:~:~:~:~:~:~:~",
+		"purl": "pkg:maven\/symfony\/symfony@4.4.7",
+		"name": "symfony",
+		"version": "4.4.7",
+		"bom-ref": "22111",
+		"licenses": [{
+			"id": "MIT"
+		}]
+	}, {
+		"cpe": "cpe:2.3::apache:thrift:0.12.0:~:~:~:~:~:~:~",
+		"purl": "pkg:maven\/apache\/thrift@0.12.0",
+		"name": "",
+		"version": "0.12.0",
+		"bom-ref": "21981",
+		"licenses": []
+	}, {
+		"cpe": "cpe:2.3::org.apache.thrift:libthrift:0.12.0:~:~:~:~:~:~:~",
+		"purl": "pkg:maven\/org.apache.thrift\/libthrift@0.12.0",
+		"name": "",
+		"version": "0.12.0",
+		"bom-ref": "22037",
+		"licenses": []
+	}, {
+		"cpe": "cpe:2.3::org.apache.httpcomponents:httpclient:4.5.6:~:~:~:~:~:~:~",
+		"purl": "pkg:maven\/org.apache.httpcomponents\/httpclient@4.5.6",
+		"name": "",
+		"version": "4.5.6",
+		"bom-ref": "22082",
+		"licenses": []
+	}, {
+		"cpe": "cpe:2.3::debug:debug:2.6.4:~:~:~:~:~:~:~",
+		"purl": "pkg:maven\/debug\/debug@2.6.4",
+		"name": "debug",
+		"version": "2.6.4",
+		"bom-ref": "22163",
+		"licenses": [{
+			"id": "MIT"
+		}]
+	}, {
+		"cpe": "cpe:2.3::depd:depd:1.1.2:~:~:~:~:~:~:~",
+		"purl": "pkg:maven\/depd\/depd@1.1.2",
+		"name": "",
+		"version": "1.1.2",
+		"bom-ref": "22168",
+		"licenses": []
+	}, {
+		"cpe": "cpe:2.3::destroy:destroy:1.0.4:~:~:~:~:~:~:~",
+		"purl": "pkg:maven\/destroy\/destroy@1.0.4",
+		"name": "",
+		"version": "1.0.4",
+		"bom-ref": "22170",
+		"licenses": []
+	}, {
+		"cpe": "cpe:2.3::ee-first:ee-first:1.1.1:~:~:~:~:~:~:~",
+		"purl": "pkg:maven\/ee-first\/ee-first@1.1.1",
+		"name": "",
+		"version": "1.1.1",
+		"bom-ref": "22172",
+		"licenses": []
+	}, {
+		"cpe": "cpe:2.3::encodeurl:encodeurl:1.0.2:~:~:~:~:~:~:~",
+		"purl": "pkg:maven\/encodeurl\/encodeurl@1.0.2",
+		"name": "",
+		"version": "1.0.2",
+		"bom-ref": "22174",
+		"licenses": []
+	}, {
+		"cpe": "cpe:2.3::escape-html:escape-html:1.0.3:~:~:~:~:~:~:~",
+		"purl": "pkg:maven\/escape-html\/escape-html@1.0.3",
+		"name": "",
+		"version": "1.0.3",
+		"bom-ref": "22176",
+		"licenses": []
+	}, {
+		"cpe": "cpe:2.3::etag:etag:1.8.1:~:~:~:~:~:~:~",
+		"purl": "pkg:maven\/etag\/etag@1.8.1",
+		"name": "",
+		"version": "1.8.1",
+		"bom-ref": "22178",
+		"licenses": []
+	}, {
+		"cpe": "cpe:2.3::fresh:fresh:0.5.0:~:~:~:~:~:~:~",
+		"purl": "pkg:maven\/fresh\/fresh@0.5.0",
+		"name": "",
+		"version": "0.5.0",
+		"bom-ref": "22180",
+		"licenses": []
+	}, {
+		"cpe": "cpe:2.3::http-errors:http-errors:1.6.3:~:~:~:~:~:~:~",
+		"purl": "pkg:maven\/http-errors\/http-errors@1.6.3",
+		"name": "",
+		"version": "1.6.3",
+		"bom-ref": "22182",
+		"licenses": []
+	}, {
+		"cpe": "cpe:2.3::inherits:inherits:2.0.3:~:~:~:~:~:~:~",
+		"purl": "pkg:maven\/inherits\/inherits@2.0.3",
+		"name": "",
+		"version": "2.0.3",
+		"bom-ref": "22184",
+		"licenses": []
+	}, {
+		"cpe": "cpe:2.3::~:lodash:3.10.1:~:~:~:~:~:~:~",
+		"purl": "pkg:maven\/~\/lodash@3.10.1",
+		"name": "lodash",
+		"version": "3.10.1",
+		"bom-ref": "22191",
+		"licenses": [{
+			"id": "MIT"
+		}]
+	}, {
+		"cpe": "cpe:2.3::~:lodash:4.17.21:~:~:~:~:~:~:~",
+		"purl": "pkg:maven\/~\/lodash@4.17.21",
+		"name": "lodash",
+		"version": "4.17.21",
+		"bom-ref": "22194",
+		"licenses": [{
+			"id": "MIT"
+		}]
+	}, {
+		"cpe": "cpe:2.3::~:mime:1.3.4:~:~:~:~:~:~:~",
+		"purl": "pkg:maven\/~\/mime@1.3.4",
+		"name": "",
+		"version": "1.3.4",
+		"bom-ref": "21021",
+		"licenses": []
+	}, {
+		"cpe": "cpe:2.3::ms:ms:0.7.3:~:~:~:~:~:~:~",
+		"purl": "pkg:maven\/ms\/ms@0.7.3",
+		"name": "",
+		"version": "0.7.3",
+		"bom-ref": "22196",
+		"licenses": []
+	}, {
+		"cpe": "cpe:2.3::ms:ms:1.0.0:~:~:~:~:~:~:~",
+		"purl": "pkg:maven\/ms\/ms@1.0.0",
+		"name": "",
+		"version": "1.0.0",
+		"bom-ref": "22197",
+		"licenses": []
+	}, {
+		"cpe": "cpe:2.3::~:on-finished:2.3.0:~:~:~:~:~:~:~",
+		"purl": "pkg:maven\/~\/on-finished@2.3.0",
+		"name": "",
+		"version": "2.3.0",
+		"bom-ref": "22201",
+		"licenses": []
+	}, {
+		"cpe": "cpe:2.3::parseurl:parseurl:1.3.3:~:~:~:~:~:~:~",
+		"purl": "pkg:maven\/parseurl\/parseurl@1.3.3",
+		"name": "",
+		"version": "1.3.3",
+		"bom-ref": "22203",
+		"licenses": []
+	}, {
+		"cpe": "cpe:2.3::range-parser:range-parser:1.2.1:~:~:~:~:~:~:~",
+		"purl": "pkg:maven\/range-parser\/range-parser@1.2.1",
+		"name": "",
+		"version": "1.2.1",
+		"bom-ref": "22205",
+		"licenses": [{
+			"id": "MIT"
+		}]
+	}, {
+		"cpe": "cpe:2.3::~:send:0.15.2:~:~:~:~:~:~:~",
+		"purl": "pkg:maven\/~\/send@0.15.2",
+		"name": "",
+		"version": "0.15.2",
+		"bom-ref": "22209",
+		"licenses": []
+	}, {
+		"cpe": "cpe:2.3::~:serve-static:1.12.2:~:~:~:~:~:~:~",
+		"purl": "pkg:maven\/~\/serve-static@1.12.2",
+		"name": "",
+		"version": "1.12.2",
+		"bom-ref": "22211",
+		"licenses": []
+	}, {
+		"cpe": "cpe:2.3::setprototypeof:setprototypeof:1.1.0:~:~:~:~:~:~:~",
+		"purl": "pkg:maven\/setprototypeof\/setprototypeof@1.1.0",
+		"name": "",
+		"version": "1.1.0",
+		"bom-ref": "22226",
+		"licenses": []
+	}, {
+		"cpe": "cpe:2.3::statuses:statuses:1.3.1:~:~:~:~:~:~:~",
+		"purl": "pkg:maven\/statuses\/statuses@1.3.1",
+		"name": "",
+		"version": "1.3.1",
+		"bom-ref": "22228",
+		"licenses": []
+	}, {
+		"cpe": "cpe:2.3::statuses:statuses:1.5.0:~:~:~:~:~:~:~",
+		"purl": "pkg:maven\/statuses\/statuses@1.5.0",
+		"name": "",
+		"version": "1.5.0",
+		"bom-ref": "22229",
+		"licenses": []
+	}, {
+		"cpe": "cpe:2.3::~:minimatch:3.0.1:~:~:~:~:~:~:~",
+		"purl": "pkg:maven\/~\/minimatch@3.0.1",
+		"name": "",
+		"version": "3.0.1",
+		"bom-ref": "21568",
+		"licenses": []
+	}, {
+		"cpe": "cpe:2.3::~:benchmark:2.0.0:~:~:~:~:~:~:~",
+		"purl": "pkg:maven\/~\/benchmark@2.0.0",
+		"name": "",
+		"version": "2.0.0",
+		"bom-ref": "22246",
+		"licenses": []
+	}, {
+		"cpe": "cpe:2.3::~:docdown:0.2.0:~:~:~:~:~:~:~",
+		"purl": "pkg:maven\/~\/docdown@0.2.0",
+		"name": "",
+		"version": "0.2.0",
+		"bom-ref": "22249",
+		"licenses": []
+	}, {
+		"cpe": "cpe:2.3::~:serialize-javascript:1.9.1:~:~:~:~:~:~:~",
+		"purl": "pkg:maven\/~\/serialize-javascript@1.9.1",
+		"name": "",
+		"version": "1.9.1",
+		"bom-ref": "22224",
+		"licenses": []
+	}, {
+		"cpe": "cpe:2.3::~:copy-webpack-plugin:4.4.1:~:~:~:~:~:~:~",
+		"purl": "pkg:maven\/~\/copy-webpack-plugin@4.4.1",
+		"name": "",
+		"version": "4.4.1",
+		"bom-ref": "22219",
+		"licenses": []
+	}, {
+		"cpe": "cpe:2.3:a:org.apache.logging.log4j:log4j-core:2.13.1:~:~:~:~:~:~:~",
+		"purl": "pkg:maven\/org.apache.logging.log4j\/log4j-core@2.13.1",
+		"name": "",
+		"version": "2.13.1",
+		"bom-ref": "22351",
+		"licenses": []
+	}],
+	"vulnerabilities": [{
+		"id": "CVE-2018-14634",
+		"bom-ref": "CVE-2018-14634",
+		"ratings": [{
+			"score": 7.8,
+			"severity": "high",
+			"method": "CVSSv3"
+		}, {
+			"score": 7.2,
+			"severity": "high",
+			"method": "CVSSv2"
+		}],
+		"cwes": [],
+		"affects": [{
+			"ref": "21825"
+		}, {
+			"ref": "21826"
+		}, {
+			"ref": "21828"
+		}]
+	}, {
+		"id": "debricked-cve-1",
+		"bom-ref": "debricked-cve-1",
+		"source": {
+			"url": "https:\/\/www.vuln-source.com",
+			"name": "debricked"
+		},
+		"ratings": [],
+		"cwes": [],
+		"description": "Lorem Ipsum",
+		"affects": [{
+			"ref": "21417"
+		}]
+	}, {
+		"id": "debricked-cve-4",
+		"bom-ref": "debricked-cve-4",
+		"ratings": [],
+		"cwes": [],
+		"affects": [{
+			"ref": "21417"
+		}]
+	}, {
+		"id": "debricked-cve-5",
+		"bom-ref": "debricked-cve-5",
+		"ratings": [{
+			"score": 10.0,
+			"severity": "critical",
+			"method": "CVSSv3"
+		}],
+		"cwes": [],
+		"affects": [{
+			"ref": "21417"
+		}]
+	}, {
+		"id": "debricked-cve-6",
+		"bom-ref": "debricked-cve-6",
+		"ratings": [],
+		"cwes": [],
+		"affects": [{
+			"ref": "21417"
+		}]
+	}]
+}
\ No newline at end of file
diff --git a/sampleData/sample1.zip b/sampleData/sample1.zip
new file mode 100644
index 0000000..ad06821
Binary files /dev/null and b/sampleData/sample1.zip differ
diff --git a/sampleData/scan.info b/sampleData/scan.info
new file mode 100644
index 0000000..1e3ce23
--- /dev/null
+++ b/sampleData/scan.info
@@ -0,0 +1 @@
+engineType=DEBRICKED
\ No newline at end of file
diff --git a/settings.gradle b/settings.gradle
new file mode 100644
index 0000000..931ef78
--- /dev/null
+++ b/settings.gradle
@@ -0,0 +1,3 @@
+rootProject.name = 'fortify-ssc-parser-debricked-cyclonedx'
+include 'fortify-ssc-parser-debricked-cyclonedx'
+include 'fortify-ssc-22.2+-parser-debricked-cyclonedx'