{"@context":"https://spdx.org/rdf/3.0.1/spdx-context.jsonld","@graph":[{"type":"CreationInfo","@id":"_:CreationInfo0","created":"2011-04-05T23:00:00Z","createdBy":["http://spdx.org/spdxdocs/bitbake-addba517-4804-5ae3-87c2-0c3a1a5812ba/bitbake/agent/OpenEmbedded"],"createdUsing":["http://spdx.org/spdxdocs/bitbake-addba517-4804-5ae3-87c2-0c3a1a5812ba/bitbake/tool/oe-spdx-creator_1_0"],"specVersion":"3.0.1"},{"type":"CreationInfo","@id":"_:CreationInfo1","created":"2025-07-30T21:31:58Z","createdBy":["http://spdx.org/spdxdocs/bitbake-addba517-4804-5ae3-87c2-0c3a1a5812ba/bitbake/agent/OpenEmbedded"],"createdUsing":["http://spdx.org/spdxdocs/bitbake-addba517-4804-5ae3-87c2-0c3a1a5812ba/bitbake/tool/oe-spdx-creator_1_0"],"specVersion":"3.0.1"},{"type":"Organization","spdxId":"http://spdx.org/spdxdocs/bitbake-addba517-4804-5ae3-87c2-0c3a1a5812ba/bitbake/agent/OpenEmbedded","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias"}],"name":"OpenEmbedded"},{"type":"Tool","spdxId":"http://spdx.org/spdxdocs/bitbake-addba517-4804-5ae3-87c2-0c3a1a5812ba/bitbake/tool/oe-spdx-creator_1_0","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias"}],"name":"oe-spdx-creator 1.0"},{"type":"SpdxDocument","spdxId":"http://spdx.org/spdxdocs/python3-pip-c9d94f59-6e7b-5717-ab06-2f64e29f3508/b84062a98d0a65b616ccace3f6faebaf52f8c313aacc0c5f7dcaacfa441e5128/document/package-python3-pip-dev","creationInfo":"_:CreationInfo1","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/doc/python3-pip/package-python3-pip-dev/python3-pip/UNIHASH/document/package-python3-pip-dev","https://rdf.openembedded.org/spdx/3.0/link-name":"79c54cb1fe221364a57be308a6d88acab99a686a44ced4013b3de1e58ee16b67"}],"name":"package-python3-pip-dev","profileConformance":["build","core","security","simpleLicensing","software"],"rootElement":["http://spdx.org/spdxdocs/python3-pip-c9d94f59-6e7b-5717-ab06-2f64e29f3508/b84062a98d0a65b616ccace3f6faebaf52f8c313aacc0c5f7dcaacfa441e5128/package/python3-pip-dev"]},{"type":"software_Package","spdxId":"http://spdx.org/spdxdocs/python3-pip-c9d94f59-6e7b-5717-ab06-2f64e29f3508/b84062a98d0a65b616ccace3f6faebaf52f8c313aacc0c5f7dcaacfa441e5128/package/python3-pip-dev","creationInfo":"_:CreationInfo1","description":"The PyPA recommended tool for installing Python packages.  This package contains symbolic links, header files, and related items necessary for software development.","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/79c54cb1fe221364a57be308a6d88acab99a686a44ced4013b3de1e58ee16b67/python3-pip/UNIHASH/package/python3-pip-dev"}],"externalIdentifier":[{"type":"ExternalIdentifier","externalIdentifierType":"cpe23","identifier":"cpe:2.3:*:python:pip:25.2:*:*:*:*:*:*:*"}],"name":"python3-pip-dev","summary":"The PyPA recommended tool for installing Python packages - Development files","software_primaryPurpose":"install","software_homePage":"https://pypi.org/project/pip","software_packageVersion":"25.2"},{"type":"Relationship","spdxId":"http://spdx.org/spdxdocs/python3-pip-c9d94f59-6e7b-5717-ab06-2f64e29f3508/b84062a98d0a65b616ccace3f6faebaf52f8c313aacc0c5f7dcaacfa441e5128/relationship/695e2880262680714b427887c32b8cf4","creationInfo":"_:CreationInfo1","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/79c54cb1fe221364a57be308a6d88acab99a686a44ced4013b3de1e58ee16b67/python3-pip/UNIHASH/relationship/695e2880262680714b427887c32b8cf4"}],"from":"http://spdx.org/spdxdocs/python3-pip-c9d94f59-6e7b-5717-ab06-2f64e29f3508/b84062a98d0a65b616ccace3f6faebaf52f8c313aacc0c5f7dcaacfa441e5128/package/python3-pip-dev","relationshipType":"hasAssociatedVulnerability","to":["http://spdxdocs.org/openembedded-alias/by-doc-hash/cc4587c3ac07cb2790833920aa090106a93b9ad52708072e6a923d741ffba883/python3-pip/UNIHASH/vulnerability/CVE-2026-1703"]},{"type":"LifecycleScopedRelationship","spdxId":"http://spdx.org/spdxdocs/python3-pip-c9d94f59-6e7b-5717-ab06-2f64e29f3508/b84062a98d0a65b616ccace3f6faebaf52f8c313aacc0c5f7dcaacfa441e5128/relationship/705dc14c21814b8a4f24ff97e978cf5c","creationInfo":"_:CreationInfo1","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/79c54cb1fe221364a57be308a6d88acab99a686a44ced4013b3de1e58ee16b67/python3-pip/UNIHASH/relationship/705dc14c21814b8a4f24ff97e978cf5c"}],"from":"http://spdxdocs.org/openembedded-alias/by-doc-hash/cc4587c3ac07cb2790833920aa090106a93b9ad52708072e6a923d741ffba883/python3-pip/UNIHASH/build/recipe","relationshipType":"hasOutput","to":["http://spdx.org/spdxdocs/python3-pip-c9d94f59-6e7b-5717-ab06-2f64e29f3508/b84062a98d0a65b616ccace3f6faebaf52f8c313aacc0c5f7dcaacfa441e5128/package/python3-pip-dev"],"scope":"build"},{"type":"Relationship","spdxId":"http://spdx.org/spdxdocs/python3-pip-c9d94f59-6e7b-5717-ab06-2f64e29f3508/b84062a98d0a65b616ccace3f6faebaf52f8c313aacc0c5f7dcaacfa441e5128/relationship/ef34e3015080743eb5de3ad4dcfef957","creationInfo":"_:CreationInfo1","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/79c54cb1fe221364a57be308a6d88acab99a686a44ced4013b3de1e58ee16b67/python3-pip/UNIHASH/relationship/ef34e3015080743eb5de3ad4dcfef957"}],"from":"http://spdx.org/spdxdocs/python3-pip-c9d94f59-6e7b-5717-ab06-2f64e29f3508/b84062a98d0a65b616ccace3f6faebaf52f8c313aacc0c5f7dcaacfa441e5128/package/python3-pip-dev","relationshipType":"hasDeclaredLicense","to":["http://spdxdocs.org/openembedded-alias/by-doc-hash/cc4587c3ac07cb2790833920aa090106a93b9ad52708072e6a923d741ffba883/python3-pip/UNIHASH/license/3_27_0/MIT_AND_Apache-2_0_AND_MPL-2_0_AND_LGPL-2_1-only_AND_BSD-3-Clause_AND_PSF-2_0_AND_BSD-2-Clause"]},{"type":"security_VexFixedVulnAssessmentRelationship","spdxId":"http://spdx.org/spdxdocs/python3-pip-c9d94f59-6e7b-5717-ab06-2f64e29f3508/b84062a98d0a65b616ccace3f6faebaf52f8c313aacc0c5f7dcaacfa441e5128/vex-fixed/cb41495130f8fbd34e122c832f22f4c6","creationInfo":"_:CreationInfo1","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/79c54cb1fe221364a57be308a6d88acab99a686a44ced4013b3de1e58ee16b67/python3-pip/UNIHASH/vex-fixed/cb41495130f8fbd34e122c832f22f4c6"}],"from":"http://spdxdocs.org/openembedded-alias/by-doc-hash/cc4587c3ac07cb2790833920aa090106a93b9ad52708072e6a923d741ffba883/python3-pip/UNIHASH/vulnerability/CVE-2026-1703","relationshipType":"fixedIn","to":["http://spdx.org/spdxdocs/python3-pip-c9d94f59-6e7b-5717-ab06-2f64e29f3508/b84062a98d0a65b616ccace3f6faebaf52f8c313aacc0c5f7dcaacfa441e5128/package/python3-pip-dev"],"security_vexVersion":"1.0.0"}]}