{"@context":"https://spdx.org/rdf/3.0.1/spdx-context.jsonld","@graph":[{"type":"CreationInfo","@id":"_:CreationInfo0","created":"2011-04-05T23:00:00Z","createdBy":["http://spdx.org/spdxdocs/bitbake-addba517-4804-5ae3-87c2-0c3a1a5812ba/bitbake/agent/OpenEmbedded"],"createdUsing":["http://spdx.org/spdxdocs/bitbake-addba517-4804-5ae3-87c2-0c3a1a5812ba/bitbake/tool/oe-spdx-creator_1_0"],"specVersion":"3.0.1"},{"type":"CreationInfo","@id":"_:CreationInfo1","created":"2025-07-10T20:43:08Z","createdBy":["http://spdx.org/spdxdocs/bitbake-addba517-4804-5ae3-87c2-0c3a1a5812ba/bitbake/agent/OpenEmbedded"],"createdUsing":["http://spdx.org/spdxdocs/bitbake-addba517-4804-5ae3-87c2-0c3a1a5812ba/bitbake/tool/oe-spdx-creator_1_0"],"specVersion":"3.0.1"},{"type":"Organization","spdxId":"http://spdx.org/spdxdocs/bitbake-addba517-4804-5ae3-87c2-0c3a1a5812ba/bitbake/agent/OpenEmbedded","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias"}],"name":"OpenEmbedded"},{"type":"Tool","spdxId":"http://spdx.org/spdxdocs/bitbake-addba517-4804-5ae3-87c2-0c3a1a5812ba/bitbake/tool/oe-spdx-creator_1_0","creationInfo":"_:CreationInfo0","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias"}],"name":"oe-spdx-creator 1.0"},{"type":"SpdxDocument","spdxId":"http://spdx.org/spdxdocs/nativesdk-ninja-cd4ecc11-aa4a-5a00-933b-ef16de1a231a/6d382d9ed5d94263d3a8c165b87fac2c1f1e64751e06168fdef8b8f45da9ca9a/document/package-nativesdk-ninja-dev","creationInfo":"_:CreationInfo1","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/doc/nativesdk-ninja/package-nativesdk-ninja-dev/nativesdk-ninja/UNIHASH/document/package-nativesdk-ninja-dev","https://rdf.openembedded.org/spdx/3.0/link-name":"03e6184aa1ef6cdf2c9bec0a108b51f73e10a1078491f237254c7b03e4a1a6ec"}],"name":"package-nativesdk-ninja-dev","profileConformance":["build","core","security","simpleLicensing","software"],"rootElement":["http://spdx.org/spdxdocs/nativesdk-ninja-cd4ecc11-aa4a-5a00-933b-ef16de1a231a/6d382d9ed5d94263d3a8c165b87fac2c1f1e64751e06168fdef8b8f45da9ca9a/package/nativesdk-ninja-dev"]},{"type":"software_Package","spdxId":"http://spdx.org/spdxdocs/nativesdk-ninja-cd4ecc11-aa4a-5a00-933b-ef16de1a231a/6d382d9ed5d94263d3a8c165b87fac2c1f1e64751e06168fdef8b8f45da9ca9a/package/nativesdk-ninja-dev","creationInfo":"_:CreationInfo1","description":"Ninja is a small build system with a focus on speed. It differs from other build systems in two major respects: it is designed to have its input files generated by a higher-level build system, and it is designed to run builds as fast as possible.  This package contains symbolic links, header files, and related items necessary for software development.","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/03e6184aa1ef6cdf2c9bec0a108b51f73e10a1078491f237254c7b03e4a1a6ec/nativesdk-ninja/UNIHASH/package/nativesdk-ninja-dev"}],"externalIdentifier":[{"type":"ExternalIdentifier","externalIdentifierType":"cpe23","identifier":"cpe:2.3:*:*:ninja:1.13.1:*:*:*:*:*:*:*"}],"name":"nativesdk-ninja-dev","summary":"Ninja is a small build system with a focus on speed. - Development files","software_primaryPurpose":"install","software_homePage":"https://ninja-build.org/","software_packageVersion":"1.13.1"},{"type":"Relationship","spdxId":"http://spdx.org/spdxdocs/nativesdk-ninja-cd4ecc11-aa4a-5a00-933b-ef16de1a231a/6d382d9ed5d94263d3a8c165b87fac2c1f1e64751e06168fdef8b8f45da9ca9a/relationship/10f7f9c326ae23b8d282fd8ee341c0e9","creationInfo":"_:CreationInfo1","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/03e6184aa1ef6cdf2c9bec0a108b51f73e10a1078491f237254c7b03e4a1a6ec/nativesdk-ninja/UNIHASH/relationship/10f7f9c326ae23b8d282fd8ee341c0e9"}],"from":"http://spdx.org/spdxdocs/nativesdk-ninja-cd4ecc11-aa4a-5a00-933b-ef16de1a231a/6d382d9ed5d94263d3a8c165b87fac2c1f1e64751e06168fdef8b8f45da9ca9a/package/nativesdk-ninja-dev","relationshipType":"hasAssociatedVulnerability","to":["http://spdxdocs.org/openembedded-alias/by-doc-hash/02d3a7d38edfb32b96a6097c3121abb27e49fc6432595f858766b353aeaff9a0/nativesdk-ninja/UNIHASH/vulnerability/CVE-2021-4336"]},{"type":"LifecycleScopedRelationship","spdxId":"http://spdx.org/spdxdocs/nativesdk-ninja-cd4ecc11-aa4a-5a00-933b-ef16de1a231a/6d382d9ed5d94263d3a8c165b87fac2c1f1e64751e06168fdef8b8f45da9ca9a/relationship/b7c359ef378b649b06e93fd7a474ef18","creationInfo":"_:CreationInfo1","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/03e6184aa1ef6cdf2c9bec0a108b51f73e10a1078491f237254c7b03e4a1a6ec/nativesdk-ninja/UNIHASH/relationship/b7c359ef378b649b06e93fd7a474ef18"}],"from":"http://spdxdocs.org/openembedded-alias/by-doc-hash/02d3a7d38edfb32b96a6097c3121abb27e49fc6432595f858766b353aeaff9a0/nativesdk-ninja/UNIHASH/build/recipe","relationshipType":"hasOutput","to":["http://spdx.org/spdxdocs/nativesdk-ninja-cd4ecc11-aa4a-5a00-933b-ef16de1a231a/6d382d9ed5d94263d3a8c165b87fac2c1f1e64751e06168fdef8b8f45da9ca9a/package/nativesdk-ninja-dev"],"scope":"build"},{"type":"Relationship","spdxId":"http://spdx.org/spdxdocs/nativesdk-ninja-cd4ecc11-aa4a-5a00-933b-ef16de1a231a/6d382d9ed5d94263d3a8c165b87fac2c1f1e64751e06168fdef8b8f45da9ca9a/relationship/f30da73dc54a1fabef01f9ad8532dafd","creationInfo":"_:CreationInfo1","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/03e6184aa1ef6cdf2c9bec0a108b51f73e10a1078491f237254c7b03e4a1a6ec/nativesdk-ninja/UNIHASH/relationship/f30da73dc54a1fabef01f9ad8532dafd"}],"from":"http://spdx.org/spdxdocs/nativesdk-ninja-cd4ecc11-aa4a-5a00-933b-ef16de1a231a/6d382d9ed5d94263d3a8c165b87fac2c1f1e64751e06168fdef8b8f45da9ca9a/package/nativesdk-ninja-dev","relationshipType":"hasDeclaredLicense","to":["http://spdxdocs.org/openembedded-alias/by-doc-hash/02d3a7d38edfb32b96a6097c3121abb27e49fc6432595f858766b353aeaff9a0/nativesdk-ninja/UNIHASH/license/3_27_0/Apache-2_0"]},{"type":"security_VexNotAffectedVulnAssessmentRelationship","spdxId":"http://spdx.org/spdxdocs/nativesdk-ninja-cd4ecc11-aa4a-5a00-933b-ef16de1a231a/6d382d9ed5d94263d3a8c165b87fac2c1f1e64751e06168fdef8b8f45da9ca9a/vex-not-affected/964aa13c967f17e14ef77eca76bf5034","creationInfo":"_:CreationInfo1","extension":[{"type":"https://rdf.openembedded.org/spdx/3.0/id-alias","https://rdf.openembedded.org/spdx/3.0/alias":"http://spdxdocs.org/openembedded-alias/by-doc-hash/03e6184aa1ef6cdf2c9bec0a108b51f73e10a1078491f237254c7b03e4a1a6ec/nativesdk-ninja/UNIHASH/vex-not-affected/964aa13c967f17e14ef77eca76bf5034"}],"from":"http://spdxdocs.org/openembedded-alias/by-doc-hash/02d3a7d38edfb32b96a6097c3121abb27e49fc6432595f858766b353aeaff9a0/nativesdk-ninja/UNIHASH/vulnerability/CVE-2021-4336","relationshipType":"doesNotAffect","to":["http://spdx.org/spdxdocs/nativesdk-ninja-cd4ecc11-aa4a-5a00-933b-ef16de1a231a/6d382d9ed5d94263d3a8c165b87fac2c1f1e64751e06168fdef8b8f45da9ca9a/package/nativesdk-ninja-dev"],"security_vexVersion":"1.0.0","security_impactStatement":"This is a different Ninja"}]}