chore(deps): update cyclonedx-python-lib[validation] requirement from <8.0.0,>=7.3.4 to >=7.3.4,<10.0.0

[dependabot]

Updates the requirements on cyclonedx-python-lib[validation] to permit the latest version.

Release notes

Sourced from cyclonedx-python-lib[validation]'s releases.

v9.1.0 (2025-02-27)

Feature

• feat: model.VulnerabilityAnalysis properties for issued/updated datetime (#794)

Fix

• fix: improved comparison functionality of model.VulnerabilityAnalysis (#795)

---

What's Changed

• feat: VulnerabilityAnalysis properties for issued/updated datetime by @​indiVar0508 in CycloneDX/cyclonedx-python-lib#794
• fix: improved comparison functionality of model.VulnerabilityAnalysis by @​jkowalleck in CycloneDX/cyclonedx-python-lib#795

Full Changelog: CycloneDX/cyclonedx-python-lib@v9.0.2...v9.1.0

Changelog

Sourced from cyclonedx-python-lib[validation]'s changelog.

v9.1.0 (2025-02-27)

Feature

• feat: model.VulnerabilityAnalysis properties for issued/updated datetime (#794)

Signed-off-by: Indivar Mishra <[email protected]> (4a3955a)

Fix

• fix: improved comparison functionality of model.VulnerabilityAnalysis (#795)

Signed-off-by: Jan Kowalleck <[email protected]> (7d57c73)

v9.0.2 (2025-02-26)

v9.0.0 (2025-02-26)

Breaking

• feat!: 9.0.1 (#777)

BREAKING Changes

• Fix: model.vulnerability.VulnerabilityReference&#39;s properties are all mandatory (#790 via #792)
• Refactor: Rename spdx.is_compund_expression -> spdx.is_expression (#779)
• Behavior: BomRef affects comparison/hashing (#754 & #780) This is only a breaking change if you relied on ordering of elements.
• Behavior: streamline comparison/hashing functions (#755) This is only a breaking change if you relied on ordering of elements.
• Dependency: bump dependency py-serializable >=2 <3, was >=1.1.1 <2 (#775) This is only a breaking change if you have other packages depend on that specific version.

---

Signed-off-by: Jan Kowalleck <[email protected]>

... (truncated)

Commits

• 65026ac chore(release): 9.1.0
• 7d57c73 fix: improved comparison functionality of model.VulnerabilityAnalysis (#795)
• 4a3955a feat: model.VulnerabilityAnalysis properties for issued/updated datetime (#...
• 4478cac chore(release): 9.0.2
• 54b8ffc chore(release): 9.0.0
• e6f91fa feat!: 9.0.1 (#777)
• 740aaf9 chore(release): 8.9.0
• 845b8d5 feat: avoid raising NoPropertiesProvidedException for optional parameters (...
• 208d5aa chore(deps-dev): update flake8 requirement from 7.1.1 to 7.1.2 (#788)
• e2a4ed3 docs: extended instructions for "contributing" (#783)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)