[
  {
    "advisory": "CVE-2024-0001",
    "advisory_severity": "critical",
    "component": "pkg:pypi/demo-15400@1.0.0",
    "conflict": "policy_deny_vs_scanner_affected",
    "evidence": [
      "sbom:mock-sbom-v1",
      "overlay:00f6635f7e16f4249116313369beadeee8836ae6da36dedaec23b38130b92f24"
    ],
    "policy_overlay_id": "00f6635f7e16f4249116313369beadeee8836ae6da36dedaec23b38130b92f24",
    "policy_rule_id": "RULE-06000",
    "policy_severity": "low",
    "policy_verdict": "deny",
    "reachability": "reachable",
    "snapshot": "graph-40k-policy-overlay-20251122",
    "status": "affected",
    "tenant": "demo-tenant"
  },
  {
    "advisory": "CVE-2024-0002",
    "advisory_severity": "high",
    "component": "pkg:pypi/demo-6040@1.0.0",
    "conflict": "",
    "evidence": [
      "sbom:mock-sbom-v1",
      "overlay:065090e3b6aa2f247cfd6844c5d00dda582516b606f068adbe497ac84fb71f99"
    ],
    "policy_overlay_id": "065090e3b6aa2f247cfd6844c5d00dda582516b606f068adbe497ac84fb71f99",
    "policy_rule_id": "RULE-35600",
    "policy_severity": "critical",
    "policy_verdict": "defer",
    "reachability": "unreachable",
    "snapshot": "graph-40k-policy-overlay-20251122",
    "status": "not_affected",
    "tenant": "demo-tenant"
  },
  {
    "advisory": "CVE-2023-9999",
    "advisory_severity": "medium",
    "component": "pkg:pypi/demo-14320@1.0.0",
    "conflict": "policy_deny_vs_scanner_affected",
    "evidence": [
      "sbom:mock-sbom-v1",
      "overlay:06a3cb2fef361ef22f596d1cb2a9dba7da6cf4316b43892f3aa1041b55fdf457"
    ],
    "policy_overlay_id": "06a3cb2fef361ef22f596d1cb2a9dba7da6cf4316b43892f3aa1041b55fdf457",
    "policy_rule_id": "RULE-04800",
    "policy_severity": "none",
    "policy_verdict": "deny",
    "reachability": "reachable",
    "snapshot": "graph-40k-policy-overlay-20251122",
    "status": "affected",
    "tenant": "demo-tenant"
  },
  {
    "advisory": "CVE-2025-1234",
    "advisory_severity": "low",
    "component": "pkg:pypi/demo-4961@1.0.1",
    "conflict": "",
    "evidence": [
      "sbom:mock-sbom-v1",
      "overlay:076cf3660de3a883d6a148a1850347300bd368e8177491b3c8a880e1f000bda6"
    ],
    "policy_overlay_id": "076cf3660de3a883d6a148a1850347300bd368e8177491b3c8a880e1f000bda6",
    "policy_rule_id": "RULE-34400",
    "policy_severity": "high",
    "policy_verdict": "defer",
    "reachability": "unreachable",
    "snapshot": "graph-40k-policy-overlay-20251122",
    "status": "not_affected",
    "tenant": "demo-tenant"
  },
  {
    "advisory": "CVE-2022-4242",
    "advisory_severity": "none",
    "component": "pkg:pypi/demo-6761@1.0.1",
    "conflict": "policy_deny_vs_scanner_affected",
    "evidence": [
      "sbom:mock-sbom-v1",
      "overlay:08471f5759128be339110c0a72cf3cc6de36da9f5315a148f9e41602af808546"
    ],
    "policy_overlay_id": "08471f5759128be339110c0a72cf3cc6de36da9f5315a148f9e41602af808546",
    "policy_rule_id": "RULE-36400",
    "policy_severity": "none",
    "policy_verdict": "deny",
    "reachability": "reachable",
    "snapshot": "graph-40k-policy-overlay-20251122",
    "status": "affected",
    "tenant": "demo-tenant"
  }
]