From 3f091f6765c8f3ce2c2538454616ac0e4cb1e704 Mon Sep 17 00:00:00 2001
From: Aaron McConnell <amcconnell@duosecurity.com>
Date: Mon, 25 Mar 2024 15:17:58 -0400
Subject: [PATCH] Pin cyclonedx dependency version (#261)

---
 .github/workflows/publish.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/publish.yml b/.github/workflows/publish.yml
index dcbd85d..808f64c 100644
--- a/.github/workflows/publish.yml
+++ b/.github/workflows/publish.yml
@@ -24,7 +24,7 @@ jobs:
         pip install setuptools wheel twine six
     - name: Generate SBOM
       run: |
-        pip install cyclonedx-bom
+        pip install cyclonedx-bom==3.11.7
         cyclonedx-py --e --format json -o cyclonedx-sbom.json
     - name: Convert SBOM
       uses: duosecurity/duo_client_python/.github/actions/sbom-convert@master