chore(deps-dev): bump cyclonedx-bom from 3.10.1 to 3.11.0

[dependabot]

Bumps cyclonedx-bom from 3.10.1 to 3.11.0.

Release notes

Sourced from cyclonedx-bom's releases.

v3.11.0

Feature

• Deprecated CLI command cyclonedx-bom prints deprecation warning on STDERR before execution (#489) (2009236)

Documentation

• Fix typo in CLI help page (#490) (a8a8445)
• Fix typos (#482) (edbe3d4)
• Fix shields (#473) (e32b288)

Changelog

Sourced from cyclonedx-bom's changelog.

v3.11.0 (2023-02-11)

Feature

• Deprecated CLI command cyclonedx-bom prints deprecation warning on STDERR before execution (#489) (2009236)

Documentation

• Fix typo in CLI help page (#490) (a8a8445)
• Fix typos (#482) (edbe3d4)
• Fix shields (#473) (e32b288)

Commits

• fe5ea31 3.11.0
• 04a25b1 chore(deps): Bump relekang/python-semantic-release from 7.31.4 to 7.33.1 (#492)
• 2009236 feat: deprecated CLI command cyclonedx-bom prints deprecation warning on ST...
• 4928515 chore: fix lowest requirements for tests (#499)
• 2cf3379 chore(deps): Bump types-toml from 0.10.8 to 0.10.8.3 (#496)
• b5e8e93 chore(deps): Bump pip-requirements-parser from 32.0.0 to 32.0.1 (#493)
• a8a8445 docs: fix typo in CLI help page (#490)
• b1a52fc chore: add Paul Horton & Jan Kowalleck as a maintainer
• edbe3d4 docs: fix typos (#482)
• bd97484 chore(deps): Bump Gr1N/setup-poetry from 7 to 8 (#480)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[github-actions]

flake8 results

  1 files  ±0  11 suites  ±0   0s ⏱️ ±0s
  1 tests ±0    1 ✔️ ±0  0 💤 ±0  0 ❌ ±0 
11 runs  ±0  11 ✔️ ±0  0 💤 ±0  0 ❌ ±0 

Results for commit 65ae2e0. ± Comparison against base commit 70475c0.

[github-actions]

pytest results

91 tests  ±0   67 ✔️  - 22   1m 17s ⏱️ -45s
  1 suites ±0     2 💤 ±  0 
  1 files   ±0   22 ❌ +22 

For more details on these failures, see this check.

Results for commit 65ae2e0. ± Comparison against base commit 70475c0.

[codecov]

Codecov Report

Base: 66.18% // Head: 58.03% // Decreases project coverage by -8.16% ⚠️

Coverage data is based on head (65ae2e0) compared to base (70475c0).
Patch has no changes to coverable lines.

Additional details and impacted files

@@            Coverage Diff             @@
##             main      #81      +/-   ##
==========================================
- Coverage   66.18%   58.03%   -8.16%     
==========================================
  Files          43       43              
  Lines        4208     4208              
==========================================
- Hits         2785     2442     -343     
- Misses       1423     1766     +343     

Flag	Coverage Δ
unittests	58.03% <ø> (-8.16%)	⬇️

Flags with carried forward coverage won't be shown. Click here to find out more.

Impacted Files	Coverage Δ
...ilities_inner_cve_metrics_cvss_metric_v31_inner.py	29.48% <0.00%> (-32.06%)	⬇️
...r_common_vulnerability_scoring_system_version31.py	28.75% <0.00%> (-30.00%)	⬇️
...api/model/cpe_oas_products_inner_cpe_refs_inner.py	31.42% <0.00%> (-28.58%)	⬇️
.../cpe_oas_products_inner_cpe_deprecated_by_inner.py	32.85% <0.00%> (-27.15%)	⬇️
...vulnerabilities_inner_cve_vendor_comments_inner.py	29.72% <0.00%> (-27.03%)	⬇️
.../cpe_match_oas_match_strings_inner_match_string.py	59.75% <0.00%> (-26.83%)	⬇️
src/nvd_api/low_api/model/cve_history_oas.py	58.62% <0.00%> (-26.44%)	⬇️
.../model/cve_history_oas_cve_changes_inner_change.py	60.00% <0.00%> (-26.25%)	⬇️
...tory_oas_cve_changes_inner_change_details_inner.py	58.57% <0.00%> (-25.72%)	⬇️
src/nvd_api/low_api/model/cpe_oas.py	55.81% <0.00%> (-25.59%)	⬇️
... and 11 more

Help us with your feedback. Take ten seconds to tell us how you rate us. Have a feature suggestion? Share it here.

☔ View full report at Codecov.
📢 Do you have feedback about the report comment? Let us know in this issue.

[kannkyo]

@dependabot rebase