chore: bump cyclonedx-python-lib from 8.3.0 to 8.4.0 (#321)

Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Aleg Vilinski <[email protected]>
Festo-se · Nov 4, 2024 · 80fd606 · 80fd606
1 parent 3352829
commit 80fd606
Show file tree

Hide file tree

Showing 3 changed files with 16 additions and 21 deletions.
diff --git a/cdxev/initialize_sbom.py b/cdxev/initialize_sbom.py
@@ -1,7 +1,6 @@
 # SPDX-License-Identifier: GPL-3.0-or-later
 
 import json
-import warnings
 from datetime import datetime
 from typing import Any, Union
 
@@ -95,20 +94,16 @@ def initialize_sbom(
         component=metadata_component,
         timestamp=timestamp,
     )
-    with warnings.catch_warnings():
-        warnings.simplefilter("ignore")
-        # ignore warning caused by absence of components
-        # required due to an implementation in the cyclonedx-python-lib
-        #  https://github.com/CycloneDX/cyclonedx-python-lib/issues/617
-        sbom = Bom(
-            version=1,
-            metadata=metadata,
-            dependencies=[Dependency(bom_ref, dependencies=[])],
-        )
-
-        my_json_outputter = JsonV1Dot6(sbom)
-        serialized_json: dict[str, Any] = json.loads(
-            my_json_outputter.output_as_string(indent=4)
-        )
+
+    sbom = Bom(
+        version=1,
+        metadata=metadata,
+        dependencies=[Dependency(bom_ref, dependencies=[])],
+    )
+
+    my_json_outputter = JsonV1Dot6(sbom)
+    serialized_json: dict[str, Any] = json.loads(
+        my_json_outputter.output_as_string(indent=4)
+    )
 
     return serialized_json
diff --git a/poetry.lock b/poetry.lock
diff --git a/pyproject.toml b/pyproject.toml
@@ -32,7 +32,7 @@ pyicu = [
 ]
 natsort = "^8.4.0"
 univers = "30.12.1"
-cyclonedx-python-lib = "8.3.0"
+cyclonedx-python-lib = "8.4.0"
 
 [tool.poetry.group.dev.dependencies]
 flake8 = "7.1.1"