Press CTR-C to copy XML [help]


Dependency-Check is an open source tool performing a best effort analysis of 3rd party dependencies; false positives and false negatives may exist in the analysis performed by the tool. Use of the tool and the reporting provided constitutes acceptance for use in an AS IS condition, and there are NO warranties, implied or otherwise, with regard to the analysis or its use. Any use of the tool and the reporting provided is at the user’s risk. In no event shall the copyright holder or OWASP be held liable for any damages whatsoever arising out of or in connection with the use of this tool, the analysis performed, or the resulting report.

How to read the report | Suppressing false positives | Getting Help: github issues

Project: Planmonitor Wonen API

nl.b3p.pmw:planmonitor-wonen-api:1.3.1-SNAPSHOT

Scan Information (show all):

Summary

Summary of Vulnerable Dependencies (click to show all)

Dependency Vulnerability IDs Package Highest Severity CVE Count Confidence Evidence Count
GeographicLib-Java-1.49.jar pkg:maven/net.sf.geographiclib/GeographicLib-Java@1.49   0 32
HdrHistogram-2.2.2.jar pkg:maven/org.hdrhistogram/HdrHistogram@2.2.2   0 25
HikariCP-7.0.2.jar pkg:maven/com.zaxxer/HikariCP@7.0.2   0 37
LatencyUtils-2.0.3.jar cpe:2.3:a:utils_project:utils:2.0.3:*:*:*:*:*:*:* pkg:maven/org.latencyutils/LatencyUtils@2.0.3   0 Highest 20
accessors-smart-2.6.0.jar pkg:maven/net.minidev/accessors-smart@2.6.0   0 43
apiguardian-api-1.1.2.jar pkg:maven/org.apiguardian/apiguardian-api@1.1.2   0 40
asm-9.7.1.jar pkg:maven/org.ow2.asm/asm@9.7.1   0 54
aspectjweaver-1.9.25.1.jar pkg:maven/org.aspectj/aspectjweaver@1.9.25.1   0 49
checker-qual-3.52.0.jar pkg:maven/org.checkerframework/checker-qual@3.52.0   0 44
commons-codec-1.19.0.jar pkg:maven/commons-codec/commons-codec@1.19.0   0 121
commons-collections4-4.4.jar cpe:2.3:a:apache:commons_collections:4.4:*:*:*:*:*:*:* pkg:maven/org.apache.commons/commons-collections4@4.4   0 Highest 105
commons-io-2.21.0.jar cpe:2.3:a:apache:commons_io:2.21.0:*:*:*:*:*:*:* pkg:maven/commons-io/commons-io@2.21.0   0 Highest 127
commons-jxpath-1.4.0.jar cpe:2.3:a:apache:commons_jxpath:1.4.0:*:*:*:*:*:*:* pkg:maven/commons-jxpath/commons-jxpath@1.4.0   0 Highest 72
commons-lang3-3.20.0.jar cpe:2.3:a:apache:commons_lang:3.20.0:*:*:*:*:*:*:* pkg:maven/org.apache.commons/commons-lang3@3.20.0   0 Highest 145
commons-logging-1.3.6.jar pkg:maven/commons-logging/commons-logging@1.3.6   0 129
commons-pool-1.6.jar pkg:maven/commons-pool/commons-pool@1.6   0 75
commons-text-1.13.0.jar cpe:2.3:a:apache:commons_text:1.13.0:*:*:*:*:*:*:* pkg:maven/org.apache.commons/commons-text@1.13.0   0 Highest 73
content-type-2.3.jar pkg:maven/com.nimbusds/content-type@2.3   0 47
ejml-core-0.41.jar pkg:maven/org.ejml/ejml-core@0.41   0 26
ejml-ddense-0.41.jar pkg:maven/org.ejml/ejml-ddense@0.41   0 28
flyway-core-11.20.2.jar pkg:maven/org.flywaydb/flyway-core@11.20.2   0 21
flyway-database-postgresql-11.20.2.jar pkg:maven/org.flywaydb/flyway-database-postgresql@11.20.2   0 21
gt-xml-34.3.jar cpe:2.3:a:geotools:geotools:34.3:*:*:*:*:*:*:*
cpe:2.3:a:xml_library_project:xml_library:34.3:*:*:*:*:*:*:* 		pkg:maven/org.geotools/gt-xml@34.3   0 Highest 40
gt-xsd-core-34.3.jar cpe:2.3:a:geotools:geotools:34.3:*:*:*:*:*:*:* pkg:maven/org.geotools.xsd/gt-xsd-core@34.3   0 Highest 46
hsqldb-2.7.3.jar cpe:2.3:a:hsqldb:hypersql_database:2.7.3:*:*:*:*:*:*:* pkg:maven/org.hsqldb/hsqldb@2.7.3   0 Low 45
httpclient-4.5.14.jar cpe:2.3:a:apache:httpclient:4.5.14:*:*:*:*:*:*:* pkg:maven/org.apache.httpcomponents/httpclient@4.5.14   0 Highest 32
httpcore-4.4.16.jar pkg:maven/org.apache.httpcomponents/httpcore@4.4.16   0 32
imagen-core-0.9.1.jar pkg:maven/org.eclipse.imagen/imagen-core@0.9.1   0 19
indriya-2.2.jar pkg:maven/tech.units/indriya@2.2   0 85
iterators-0.9.1.jar pkg:maven/org.eclipse.imagen/iterators@0.9.1   0 21
jackson-annotations-2.21.jar cpe:2.3:a:fasterxml:jackson-core:2.21:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-modules-java8:2.21:*:*:*:*:*:*:* 		pkg:maven/com.fasterxml.jackson.core/jackson-annotations@2.21   0 Highest 36
jackson-core-2.21.2.jar cpe:2.3:a:fasterxml:jackson-core:2.21.2:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-modules-java8:2.21.2:*:*:*:*:*:*:* 		pkg:maven/com.fasterxml.jackson.core/jackson-core@2.21.2   0 Highest 47
jackson-core-3.1.2.jar cpe:2.3:a:fasterxml:jackson-core:3.1.2:*:*:*:*:*:*:* pkg:maven/tools.jackson.core/jackson-core@3.1.2   0 Highest 50
jackson-databind-2.21.2.jar cpe:2.3:a:fasterxml:jackson-core:2.21.2:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:2.21.2:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-modules-java8:2.21.2:*:*:*:*:*:*:* 		pkg:maven/com.fasterxml.jackson.core/jackson-databind@2.21.2   0 Highest 41
jackson-databind-3.1.2.jar cpe:2.3:a:fasterxml:jackson-core:3.1.2:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-databind:3.1.2:*:*:*:*:*:*:* 		pkg:maven/tools.jackson.core/jackson-databind@3.1.2   0 Highest 37
jakarta.annotation-api-3.0.0.jar cpe:2.3:a:oracle:projects:3.0.0:*:*:*:*:*:*:* pkg:maven/jakarta.annotation/jakarta.annotation-api@3.0.0   0 Low 42
jakarta.inject-api-2.0.1.jar pkg:maven/jakarta.inject/jakarta.inject-api@2.0.1   0 56
jcip-annotations-1.0-1.jar pkg:maven/com.github.stephenc.jcip/jcip-annotations@1.0-1   0 25
jgridshift-core-1.3.jar pkg:maven/it.geosolutions.jgridshift/jgridshift-core@1.3   0 19
json-smart-2.6.0.jar cpe:2.3:a:json-smart_project:json-smart:2.6.0:*:*:*:*:*:*:*
cpe:2.3:a:json-smart_project:json-smart-v2:2.6.0:*:*:*:*:*:*:* 		pkg:maven/net.minidev/json-smart@2.6.0   0 Highest 51
jspecify-1.0.0.jar pkg:maven/org.jspecify/jspecify@1.0.0   0 32
jts-core-1.20.0.jar pkg:maven/org.locationtech.jts/jts-core@1.20.0   0 24
jul-to-slf4j-2.0.17.jar pkg:maven/org.slf4j/jul-to-slf4j@2.0.17   0 31
lang-tag-1.7.jar pkg:maven/com.nimbusds/lang-tag@1.7   0 47
log4j-api-2.25.4.jar cpe:2.3:a:apache:log4j:2.25.4:*:*:*:*:*:*:* pkg:maven/org.apache.logging.log4j/log4j-api@2.25.4   0 Highest 43
logback-core-1.5.32.jar cpe:2.3:a:qos:logback:1.5.32:*:*:*:*:*:*:* pkg:maven/ch.qos.logback/logback-core@1.5.32   0 Highest 39
micrometer-core-1.16.5.jar cpe:2.3:a:4d:4d:1.16.5:*:*:*:*:*:*:* pkg:maven/io.micrometer/micrometer-core@1.16.5   0 Low 65
modernizer-maven-annotations-3.3.0.jar pkg:maven/org.gaul/modernizer-maven-annotations@3.3.0   0 19
net.opengis.fes-34.3.jar cpe:2.3:a:geotools:geotools:34.3:*:*:*:*:*:*:* pkg:maven/org.geotools.ogc/net.opengis.fes@34.3   0 Highest 28
nimbus-jose-jwt-10.4.jar (shaded: com.google.code.gson:gson:2.12.1) cpe:2.3:a:google:gson:2.12.1:*:*:*:*:*:*:* pkg:maven/com.google.code.gson/gson@2.12.1   0 Highest 9
nimbus-jose-jwt-10.4.jar cpe:2.3:a:connect2id:nimbus_jose\+jwt:10.4:*:*:*:*:*:*:* pkg:maven/com.nimbusds/nimbus-jose-jwt@10.4   0 Highest 50
oauth2-oidc-sdk-11.26.1.jar pkg:maven/com.nimbusds/oauth2-oidc-sdk@11.26.1   0 57
org.eclipse.emf.common-2.15.0.jar pkg:maven/org.eclipse.emf/org.eclipse.emf.common@2.15.0
pkg:maven/org.eclipse.emf/org.eclipse.emf.common@2.15.0-SNAPSHOT 		  0 43
org.eclipse.emf.ecore-2.15.0.jar pkg:maven/org.eclipse.emf/org.eclipse.emf.ecore@2.15.0
pkg:maven/org.eclipse.emf/org.eclipse.emf.ecore@2.15.0-SNAPSHOT 		  0 44
org.eclipse.emf.ecore.xmi-2.15.0.jar pkg:maven/org.eclipse.emf/org.eclipse.emf.ecore.xmi@2.15.0
pkg:maven/org.eclipse.emf/org.eclipse.emf.ecore.xmi@2.15.0-SNAPSHOT 		  0 43
org.eclipse.xsd-2.12.0.jar pkg:maven/org.eclipse.xsd/org.eclipse.xsd@2.12.0   0 35
org.w3.xlink-34.3.jar cpe:2.3:a:geotools:geotools:34.3:*:*:*:*:*:*:* pkg:maven/org.geotools.ogc/org.w3.xlink@34.3   0 Highest 29
picocontainer-1.2.jar pkg:maven/picocontainer/picocontainer@1.2   0 26
postgresql-42.7.9.jar cpe:2.3:a:postgresql:postgresql_jdbc_driver:42.7.9:*:*:*:*:*:*:* pkg:maven/org.postgresql/postgresql@42.7.9 HIGH 1 Low 72
prometheus-metrics-config-1.4.3.jar pkg:maven/io.prometheus/prometheus-metrics-config@1.4.3   0 29
prometheus-metrics-core-1.4.3.jar pkg:maven/io.prometheus/prometheus-metrics-core@1.4.3   0 29
prometheus-metrics-exposition-formats-1.4.3.jar pkg:maven/io.prometheus/prometheus-metrics-exposition-formats@1.4.3   0 29
prometheus-metrics-exposition-textformats-1.4.3.jar pkg:maven/io.prometheus/prometheus-metrics-exposition-textformats@1.4.3   0 27
prometheus-metrics-model-1.4.3.jar pkg:maven/io.prometheus/prometheus-metrics-model@1.4.3   0 29
prometheus-metrics-tracer-common-1.4.3.jar pkg:maven/io.prometheus/prometheus-metrics-tracer-common@1.4.3   0 29
re2j-1.8.jar pkg:maven/com.google.re2j/re2j@1.8   0 28
si-quantity-2.1.jar pkg:maven/si.uom/si-quantity@2.1   0 24
si-units-2.1.jar pkg:maven/si.uom/si-units@2.1   0 33
slf4j-api-2.0.17.jar pkg:maven/org.slf4j/slf4j-api@2.0.17   0 29
snakeyaml-2.5.jar cpe:2.3:a:snakeyaml_project:snakeyaml:2.5:*:*:*:*:*:*:* pkg:maven/org.yaml/snakeyaml@2.5   0 Highest 42
spring-boot-sql-4.0.6.jar cpe:2.3:a:vmware:spring_boot:4.0.6:*:*:*:*:*:*:*
cpe:2.3:a:www-sql_project:www-sql:4.0.6:*:*:*:*:*:*:* 		pkg:maven/org.springframework.boot/spring-boot-sql@4.0.6   0 Highest 40
spring-boot-web-server-4.0.6.jar cpe:2.3:a:vmware:spring_boot:4.0.6:*:*:*:*:*:*:* pkg:maven/org.springframework.boot/spring-boot-web-server@4.0.6   0 Highest 42
spring-core-7.0.7.jar cpe:2.3:a:pivotal_software:spring_framework:7.0.7:*:*:*:*:*:*:*
cpe:2.3:a:springsource:spring_framework:7.0.7:*:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_framework:7.0.7:*:*:*:*:*:*:* 		pkg:maven/org.springframework/spring-core@7.0.7   0 Highest 41
spring-security-core-7.0.5.jar cpe:2.3:a:pivotal_software:spring_security:7.0.5:*:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_security:7.0.5:*:*:*:*:*:*:* 		pkg:maven/org.springframework.security/spring-security-core@7.0.5   0 Highest 38
spring-security-oauth2-core-7.0.5.jar cpe:2.3:a:pivotal:spring_security_oauth:7.0.5:*:*:*:*:*:*:*
cpe:2.3:a:pivotal_software:spring_security:7.0.5:*:*:*:*:*:*:*
cpe:2.3:a:pivotal_software:spring_security_oauth:7.0.5:*:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_security:7.0.5:*:*:*:*:*:*:* 		pkg:maven/org.springframework.security/spring-security-oauth2-core@7.0.5   0 Highest 40
spring-security-web-7.0.5.jar: spring-security-webauthn.js   0 0
spring-session-core-4.0.3.jar cpe:2.3:a:vmware:spring_session:4.0.3:*:*:*:*:*:*:* pkg:maven/org.springframework.session/spring-session-core@4.0.3   0 Highest 36
systems-common-2.1.jar pkg:maven/systems.uom/systems-common@2.1   0 37
tomcat-embed-core-11.0.21.jar cpe:2.3:a:apache:tomcat:11.0.21:*:*:*:*:*:*:*
cpe:2.3:a:apache_tomcat:apache_tomcat:11.0.21:*:*:*:*:*:*:* 		pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@11.0.21 CRITICAL 7 Highest 63
tomcat-embed-el-11.0.21.jar pkg:maven/org.apache.tomcat.embed/tomcat-embed-el@11.0.21   0 33
unit-api-2.2.jar pkg:maven/javax.measure/unit-api@2.2   0 109
uom-lib-common-2.2.jar pkg:maven/tech.uom.lib/uom-lib-common@2.2   0 43
utilities-0.9.1.jar pkg:maven/org.eclipse.imagen/utilities@0.9.1   0 24
xml-commons-resolver-1.2.jar pkg:maven/org.apache.xml/xml-commons-resolver@1.2   0 19

Dependencies (vulnerable)

GeographicLib-Java-1.49.jar

Description:

    This is a Java implementation of the geodesic algorithms from
    GeographicLib. This is a self-contained library which makes it
    easy to do geodesic computations for an ellipsoid of revolution in
    a Java program. It requires Java version 1.1 or later.

License:

The MIT License(MIT): http://opensource.org/licenses/MIT
File Path: /home/runner/.m2/repository/net/sf/geographiclib/GeographicLib-Java/1.49/GeographicLib-Java-1.49.jar
MD5: 5536ff35e4bb0b3262c6f62f43105ea4
SHA1: 7ff2164e69fa04e1ef2ca5079e1cee298a936ea1
SHA256:78c292f7e6910d51a15fc9088c301fac3b4c0a43ac5ae17499f5763b4dd9aca8
Referenced In Project/Scope: Planmonitor Wonen API:compile
GeographicLib-Java-1.49.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.geotools/gt-main@34.3

Identifiers

  • pkg:maven/net.sf.geographiclib/GeographicLib-Java@1.49   (Confidence:High)

HdrHistogram-2.2.2.jar

Description:

        HdrHistogram supports the recording and analyzing sampled data value
        counts across a configurable integer value range with configurable value
        precision within the range. Value precision is expressed as the number of
        significant digits in the value recording, and provides control over value
        quantization behavior across the value range and the subsequent value
        resolution at any given level.

License:

Public Domain, per Creative Commons CC0: http://creativecommons.org/publicdomain/zero/1.0/
BSD-2-Clause: https://opensource.org/licenses/BSD-2-Clause
File Path: /home/runner/.m2/repository/org/hdrhistogram/HdrHistogram/2.2.2/HdrHistogram-2.2.2.jar
MD5: 41f807bf0c681d6f692c408a6e217eaf
SHA1: 7959933ebcc0f05b2eaa5af0a0c8689fa257b15c
SHA256:22d1d4316c4ec13a68b559e98c8256d69071593731da96136640f864fa14fad8
Referenced In Project/Scope: Planmonitor Wonen API:runtime
HdrHistogram-2.2.2.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/io.micrometer/micrometer-core@1.16.5

Identifiers

  • pkg:maven/org.hdrhistogram/HdrHistogram@2.2.2   (Confidence:High)

HikariCP-7.0.2.jar

Description:

Ultimate JDBC Connection Pool

License:

The Apache Software License, Version 2.0: https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/com/zaxxer/HikariCP/7.0.2/HikariCP-7.0.2.jar
MD5: c36937c742c20cbdc7bcb47019e33151
SHA1: c2b43c946b86a14a96342379e22b004c56c6166d
SHA256:f1e612fa27345be3107a85431e8a8aeb205c15364ab2f2d411e40a9d7bb08095
Referenced In Project/Scope: Planmonitor Wonen API:compile
HikariCP-7.0.2.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.springframework.boot/spring-boot-starter-jdbc@4.0.6

Identifiers

  • pkg:maven/com.zaxxer/HikariCP@7.0.2   (Confidence:High)

LatencyUtils-2.0.3.jar

Description:

        LatencyUtils is a package that provides latency recording and reporting utilities.

License:

Public Domain, per Creative Commons CC0: http://creativecommons.org/publicdomain/zero/1.0/
File Path: /home/runner/.m2/repository/org/latencyutils/LatencyUtils/2.0.3/LatencyUtils-2.0.3.jar
MD5: 2ad12e1ef7614cecfb0483fa9ac6da73
SHA1: 769c0b82cb2421c8256300e907298a9410a2a3d3
SHA256:a32a9ffa06b2f4e01c5360f8f9df7bc5d9454a5d373cd8f361347fa5a57165ec
Referenced In Project/Scope: Planmonitor Wonen API:runtime
LatencyUtils-2.0.3.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/io.micrometer/micrometer-core@1.16.5

Identifiers

accessors-smart-2.6.0.jar

Description:

Java reflect give poor performance on getter setter an constructor calls, accessors-smart use ASM to speed up those calls.

License:

The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/net/minidev/accessors-smart/2.6.0/accessors-smart-2.6.0.jar
MD5: 0ad72639eea293193f68898da9b0b902
SHA1: 2d96f1d9b6ab7f13261aa81b15703574185747a0
SHA256:222c9f547bb20a99fc486403a398352d1306fb671b38abd7ecab6401df170e61
Referenced In Project/Scope: Planmonitor Wonen API:compile
accessors-smart-2.6.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.springframework.boot/spring-boot-starter-test@4.0.6

Identifiers

  • pkg:maven/net.minidev/accessors-smart@2.6.0   (Confidence:High)

apiguardian-api-1.1.2.jar

Description:

@API Guardian

License:

The Apache License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/org/apiguardian/apiguardian-api/1.1.2/apiguardian-api-1.1.2.jar
MD5: 8c7de3f82037fa4a2e8be2a2f13092af
SHA1: a231e0d844d2721b0fa1b238006d15c6ded6842a
SHA256:b509448ac506d607319f182537f0b35d71007582ec741832a1f111e5b5b70b38
Referenced In Project/Scope: Planmonitor Wonen API:compile
apiguardian-api-1.1.2.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.springframework.boot/spring-boot-starter-test@4.0.6

Identifiers

  • pkg:maven/org.apiguardian/apiguardian-api@1.1.2   (Confidence:High)

asm-9.7.1.jar

Description:

ASM, a very small and fast Java bytecode manipulation framework

License:

BSD-3-Clause: https://asm.ow2.io/license.html
File Path: /home/runner/.m2/repository/org/ow2/asm/asm/9.7.1/asm-9.7.1.jar
MD5: e2cdd32d198ad31427d298eee9d39d8d
SHA1: f0ed132a49244b042cd0e15702ab9f2ce3cc8436
SHA256:8cadd43ac5eb6d09de05faecca38b917a040bb9139c7edeb4cc81c740b713281
Referenced In Project/Scope: Planmonitor Wonen API:compile
asm-9.7.1.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.springframework.boot/spring-boot-starter-test@4.0.6

Identifiers

  • pkg:maven/org.ow2.asm/asm@9.7.1   (Confidence:High)

aspectjweaver-1.9.25.1.jar

Description:

The AspectJ weaver applies aspects to Java classes. It can be used as a Java agent in order to apply load-time
		weaving (LTW) during class-loading and also contains the AspectJ runtime classes.

License:

Eclipse Public License - v 2.0: https://www.eclipse.org/org/documents/epl-2.0/EPL-2.0.txt
File Path: /home/runner/.m2/repository/org/aspectj/aspectjweaver/1.9.25.1/aspectjweaver-1.9.25.1.jar
MD5: 7a88f606f52185a15a1527c968f55dfb
SHA1: a713c790da4d794c7dfb542b550d4e44898d5e23
SHA256:4fe86fdc18faea571f29129c70eaad5d121363504a06d7907be88f6c60ba3116
Referenced In Project/Scope: Planmonitor Wonen API:compile
aspectjweaver-1.9.25.1.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.springframework.boot/spring-boot-starter-aspectj@4.0.6

Identifiers

  • pkg:maven/org.aspectj/aspectjweaver@1.9.25.1   (Confidence:High)

checker-qual-3.52.0.jar

Description:

checker-qual contains annotations (type qualifiers) that a programmerwrites to specify Java code for type-checking by the Checker Framework.

License:

The MIT License: http://opensource.org/licenses/MIT
File Path: /home/runner/.m2/repository/org/checkerframework/checker-qual/3.52.0/checker-qual-3.52.0.jar
MD5: d7eeaac6d7810375c2484fd4faeb2f69
SHA1: 9c17f496846ab1fca8975c6a50ceac0b3bbe63f0
SHA256:0b5bb1a4bdc4e4b1217482fe598efcaab4e1fba7b37f9412639178fc8116fc05
Referenced In Project/Scope: Planmonitor Wonen API:runtime
checker-qual-3.52.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.postgresql/postgresql@42.7.9

Identifiers

  • pkg:maven/org.checkerframework/checker-qual@3.52.0   (Confidence:High)

commons-codec-1.19.0.jar

Description:

     The Apache Commons Codec component contains encoders and decoders for
     formats such as Base16, Base32, Base64, digest, and Hexadecimal. In addition to these
     widely used encoders and decoders, the codec package also maintains a
     collection of phonetic encoding utilities.

License:

https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/commons-codec/commons-codec/1.19.0/commons-codec-1.19.0.jar
MD5: e46fa78c69544eb6239c4e8447e72544
SHA1: 8c0dbe3ae883fceda9b50a6c76e745e548073388
SHA256:5c3881e4f556855e9c532927ee0c9dfde94cc66760d5805c031a59887070af5f
Referenced In Project/Scope: Planmonitor Wonen API:compile
commons-codec-1.19.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.geotools/gt-wfs-ng@34.3

Identifiers

  • pkg:maven/commons-codec/commons-codec@1.19.0   (Confidence:High)

commons-collections4-4.4.jar

Description:

The Apache Commons Collections package contains types that extend and augment the Java Collections Framework.

License:

https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/org/apache/commons/commons-collections4/4.4/commons-collections4-4.4.jar
MD5: 4a37023740719b391f10030362c86be6
SHA1: 62ebe7544cb7164d87e0637a2a6a2bdc981395e8
SHA256:1df8b9430b5c8ed143d7815e403e33ef5371b2400aadbe9bda0883762e0846d1
Referenced In Project/Scope: Planmonitor Wonen API:compile
commons-collections4-4.4.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.geotools/gt-wfs-ng@34.3

Identifiers

commons-io-2.21.0.jar

Description:

The Apache Commons IO library contains utility classes, stream implementations, file filters,
file comparators, endian transformation classes, and much more.

License:

https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/commons-io/commons-io/2.21.0/commons-io-2.21.0.jar
MD5: bc7e020873f086ede85f97bd9f013215
SHA1: 52a6f68fe5afe335cde95461dd5c3412f04996f7
SHA256:7d643a2afea8b058b762aa6fb90e5b256f6c729739f8b3784c3370ddc609e88d
Referenced In Project/Scope: Planmonitor Wonen API:compile
commons-io-2.21.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.geotools/gt-wfs-ng@34.3

Identifiers

commons-jxpath-1.4.0.jar

Description:

A Java-based implementation of XPath 1.0 that, in addition to XML processing, can inspect/modify Java object graphs (the library's explicit purpose) and even mixed Java/XML structures.

License:

https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/commons-jxpath/commons-jxpath/1.4.0/commons-jxpath-1.4.0.jar
MD5: 0f59e33e5a2e7265155b51a1fb592fa4
SHA1: f61af30d8db727b7bb53d285fe074f89d8b68951
SHA256:226cb33a644995b084b3bdd42f2eb861509e6db71d7a343d411ee321387b0860
Referenced In Project/Scope: Planmonitor Wonen API:compile
commons-jxpath-1.4.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.geotools/gt-wfs-ng@34.3

Identifiers

commons-lang3-3.20.0.jar

Description:

  Apache Commons Lang, a package of Java utility classes for the
  classes that are in java.lang's hierarchy, or are considered to be so
  standard as to justify existence in java.lang.

  The code is tested using the latest revision of the JDK for supported
  LTS releases: 8, 11, 17, 21 and 25 currently.
  See https://github.com/apache/commons-lang/blob/master/.github/workflows/maven.yml
  
  Please ensure your build environment is up-to-date and kindly report any build issues.

License:

https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/org/apache/commons/commons-lang3/3.20.0/commons-lang3-3.20.0.jar
MD5: 4b29562ded527aa074e1d44f8646dac5
SHA1: 65897b3e5731220962e659e001904af3c3cbeba9
SHA256:69e5c9fa35da7a51a5fd2099dfe56a2d8d32cf233e2f6d770e796146440263f4
Referenced In Project/Scope: Planmonitor Wonen API:compile
commons-lang3-3.20.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/nl.b3p.pmw/planmonitor-wonen-api@1.3.1-SNAPSHOT

Identifiers

commons-logging-1.3.6.jar

Description:

Apache Commons Logging is a thin adapter allowing configurable bridging to other,
    well-known logging systems.

License:

https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/commons-logging/commons-logging/1.3.6/commons-logging-1.3.6.jar
MD5: fe0ccbe8971fed954a0ad6528fe3ef24
SHA1: 63e78ca6cd446c0ad166d14f03ed99e7efb3896d
SHA256:f8ead8943401081dea0aa824b5b1ba40a0e4ed297a572a0f02258150a0b62357
Referenced In Project/Scope: Planmonitor Wonen API:compile
commons-logging-1.3.6.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.springframework.session/spring-session-jdbc@4.0.3

Identifiers

  • pkg:maven/commons-logging/commons-logging@1.3.6   (Confidence:High)

commons-pool-1.6.jar

Description:

Commons Object Pooling Library

License:

http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/commons-pool/commons-pool/1.6/commons-pool-1.6.jar
MD5: 5ca02245c829422176d23fa530e919cc
SHA1: 4572d589699f09d866a226a14b7f4323c6d8f040
SHA256:46c42b4a38dc6b2db53a9ee5c92c63db103665d56694e2cfce2c95d51a6860cc
Referenced In Project/Scope: Planmonitor Wonen API:compile
commons-pool-1.6.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.geotools/gt-main@34.3

Identifiers

  • pkg:maven/commons-pool/commons-pool@1.6   (Confidence:High)

commons-text-1.13.0.jar

Description:

Apache Commons Text is a set of utility functions and reusable components for the purpose of processing
    and manipulating text that should be of use in a Java environment.

License:

https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/org/apache/commons/commons-text/1.13.0/commons-text-1.13.0.jar
MD5: 4b4766452c04316e3ef6ffe3490d6b10
SHA1: ba2ed5521c491cabf7ecdb57f77922561c2e8958
SHA256:1e323a501127df78ed0987f345d69d65d0ea7fa3d4fb5b3f84aaeba3a8b20f38
Referenced In Project/Scope: Planmonitor Wonen API:compile
commons-text-1.13.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.geotools/gt-main@34.3

Identifiers

content-type-2.3.jar

Description:

Java library for Content (Media) Type representation

License:

The Apache Software License, Version 2.0: https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/com/nimbusds/content-type/2.3/content-type-2.3.jar
MD5: f0fc0d6be73e838863e2197c03a27c3f
SHA1: e3aa0be212d7a42839a8f3f506f5b990bcce0222
SHA256:60349793e006fba96b532cb0c21e10e969fe0db8d87f91c3b9eaf82ba2998895
Referenced In Project/Scope: Planmonitor Wonen API:compile
content-type-2.3.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.springframework.boot/spring-boot-starter-oauth2-client@4.0.6

Identifiers

  • pkg:maven/com.nimbusds/content-type@2.3   (Confidence:High)

ejml-core-0.41.jar

Description:

A fast and easy to use dense and sparse matrix linear algebra library written in Java.

License:

The Apache License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/org/ejml/ejml-core/0.41/ejml-core-0.41.jar
MD5: 200146f623a8eb87196bbc35cae6c2b1
SHA1: 92ac2bee332a5697c42e576b94d563ba8c25877c
SHA256:8d36469e8414d79c875defc0af3b980525d384761c9471d15a4f365b936dd1d5
Referenced In Project/Scope: Planmonitor Wonen API:compile
ejml-core-0.41.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.geotools/gt-main@34.3

Identifiers

  • pkg:maven/org.ejml/ejml-core@0.41   (Confidence:High)

ejml-ddense-0.41.jar

Description:

A fast and easy to use dense and sparse matrix linear algebra library written in Java.

License:

The Apache License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/org/ejml/ejml-ddense/0.41/ejml-ddense-0.41.jar
MD5: 2128d09683d0ed77429fac23f64e42c7
SHA1: 782c80d4c3c8a3432c4641f24c177f336a360f9c
SHA256:355347e9cac7e96d5d724d331a9b04bb14a8a02e1d111f1ac51c79f25d937123
Referenced In Project/Scope: Planmonitor Wonen API:compile
ejml-ddense-0.41.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.geotools/gt-main@34.3

Identifiers

  • pkg:maven/org.ejml/ejml-ddense@0.41   (Confidence:High)

flyway-core-11.20.2.jar

File Path: /home/runner/.m2/repository/org/flywaydb/flyway-core/11.20.2/flyway-core-11.20.2.jar
MD5: 019461d433c5368a81acbdf22cb225dc
SHA1: cc1c084ab77ebd5d8093fa697d24334f467f77a7
SHA256:72fef76d611429c3819e0a839e4b46f3cacf0f390c80da041ddb63f59d9c7d7b
Referenced In Project/Scope: Planmonitor Wonen API:compile
flyway-core-11.20.2.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.flywaydb/flyway-database-postgresql@11.20.2

Identifiers

  • pkg:maven/org.flywaydb/flyway-core@11.20.2   (Confidence:High)

flyway-database-postgresql-11.20.2.jar

File Path: /home/runner/.m2/repository/org/flywaydb/flyway-database-postgresql/11.20.2/flyway-database-postgresql-11.20.2.jar
MD5: a6ef15c17ff1d3591fb0108c842422ed
SHA1: c7597cdcd1f4b9bd084d14f7b98a52256e66de54
SHA256:f3a0ce085f75be6b811f1e5fee2808eaccdb4b23392cd8504829ec0d152a5221
Referenced In Project/Scope: Planmonitor Wonen API:runtime
flyway-database-postgresql-11.20.2.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/nl.b3p.pmw/planmonitor-wonen-api@1.3.1-SNAPSHOT

Identifiers

  • pkg:maven/org.flywaydb/flyway-database-postgresql@11.20.2   (Confidence:High)

gt-xml-34.3.jar

Description:

GTXML Schema Driven Parser

License:

Lesser General Public License (LGPL): http://www.gnu.org/copyleft/lesser.txt
File Path: /home/runner/.m2/repository/org/geotools/gt-xml/34.3/gt-xml-34.3.jar
MD5: baf816b00f20152ffed670612a3e0460
SHA1: 0e7774f7bb9aba2e31e79536754b4f79cc49130e
SHA256:6c67b79206c52864b20069a44cbe23d4a79e3e2f94714d41515cd070054c3e15
Referenced In Project/Scope: Planmonitor Wonen API:compile
gt-xml-34.3.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.geotools/gt-wfs-ng@34.3

Identifiers

  • pkg:maven/org.geotools/gt-xml@34.3   (Confidence:High)
  • cpe:2.3:a:geotools:geotools:34.3:*:*:*:*:*:*:*   (Confidence:Highest)   
  • cpe:2.3:a:xml_library_project:xml_library:34.3:*:*:*:*:*:*:*   (Confidence:Low)   

gt-xsd-core-34.3.jar

Description:

Schema based xml parsing. This module contains tools for creating 
  bindings from xml types to java types. Schema modelling is based 
  on Eclipse XSD.

License:

Lesser General Public License (LGPL): http://www.gnu.org/copyleft/lesser.txt
File Path: /home/runner/.m2/repository/org/geotools/xsd/gt-xsd-core/34.3/gt-xsd-core-34.3.jar
MD5: c483534eb81415dd3ff896dc5ee8975e
SHA1: ebdc8a974f9b76f36f10748428e9f4740069562d
SHA256:39c17fdbfd86c2bb3e6c7f6de5636c21e3d634055033016bbd35b794429c6230
Referenced In Project/Scope: Planmonitor Wonen API:compile
gt-xsd-core-34.3.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.geotools/gt-wfs-ng@34.3

Identifiers

hsqldb-2.7.3.jar

Description:

HSQLDB - Lightweight 100% Java SQL Database Engine

License:

HSQLDB License, a BSD open source license: http://hsqldb.org/web/hsqlLicense.html
File Path: /home/runner/.m2/repository/org/hsqldb/hsqldb/2.7.3/hsqldb-2.7.3.jar
MD5: 724301ab61ff54755deec86c7a724505
SHA1: 85b49338b36f3051d217295596cf92beb92e4bfb
SHA256:6f2f77eedbe75cfbe26bf30d73b13de0cc57fb7cdb27a92ed8c1a012f0e2363a
Referenced In Project/Scope: Planmonitor Wonen API:compile
hsqldb-2.7.3.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.geotools/gt-epsg-hsql@34.3

Identifiers

  • pkg:maven/org.hsqldb/hsqldb@2.7.3   (Confidence:High)
  • cpe:2.3:a:hsqldb:hypersql_database:2.7.3:*:*:*:*:*:*:*   (Confidence:Low)   

httpclient-4.5.14.jar

Description:

   Apache HttpComponents Client

File Path: /home/runner/.m2/repository/org/apache/httpcomponents/httpclient/4.5.14/httpclient-4.5.14.jar
MD5: 2cb357c4b763f47e58af6cad47df6ba3
SHA1: 1194890e6f56ec29177673f2f12d0b8e627dec98
SHA256:c8bc7e1c51a6d4ce72f40d2ebbabf1c4b68bfe76e732104b04381b493478e9d6
Referenced In Project/Scope: Planmonitor Wonen API:compile
httpclient-4.5.14.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.geotools/gt-wfs-ng@34.3

Identifiers

httpcore-4.4.16.jar

Description:

   Apache HttpComponents Core (blocking I/O)

File Path: /home/runner/.m2/repository/org/apache/httpcomponents/httpcore/4.4.16/httpcore-4.4.16.jar
MD5: 28d2cd9bf8789fd2ec774fb88436ebd1
SHA1: 51cf043c87253c9f58b539c9f7e44c8894223850
SHA256:6c9b3dd142a09dc468e23ad39aad6f75a0f2b85125104469f026e52a474e464f
Referenced In Project/Scope: Planmonitor Wonen API:compile
httpcore-4.4.16.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.geotools/gt-wfs-ng@34.3

Identifiers

  • pkg:maven/org.apache.httpcomponents/httpcore@4.4.16   (Confidence:High)

imagen-core-0.9.1.jar

Description:

ImageN core interfaces

File Path: /home/runner/.m2/repository/org/eclipse/imagen/imagen-core/0.9.1/imagen-core-0.9.1.jar
MD5: b1ddd9074bac9df8edec694e48bdda7f
SHA1: 11b91b3bba1b183339084b1dee99b59fcfb8ec8f
SHA256:4f1a8aa346ff2d2460b0372fd47b536a295543aa921e311f4e74bbf2e169ba48
Referenced In Project/Scope: Planmonitor Wonen API:compile
imagen-core-0.9.1.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.geotools/gt-main@34.3

Identifiers

  • pkg:maven/org.eclipse.imagen/imagen-core@0.9.1   (Confidence:High)

indriya-2.2.jar

Description:

Unit Standard (JSR 385) Reference Implementation.

License:

BSD 3-Clause: LICENSE
File Path: /home/runner/.m2/repository/tech/units/indriya/2.2/indriya-2.2.jar
MD5: cefa3a26996e4c70071d27a0c36603ea
SHA1: 647a0e06d60346f3f3c48284f66d34b28ff83340
SHA256:5b61eafd63fd235898dea0e5e614e9636c9d7783705a0c9f1794dd07e3a84b35
Referenced In Project/Scope: Planmonitor Wonen API:compile
indriya-2.2.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.geotools/gt-main@34.3

Identifiers

  • pkg:maven/tech.units/indriya@2.2   (Confidence:High)

iterators-0.9.1.jar

File Path: /home/runner/.m2/repository/org/eclipse/imagen/iterators/0.9.1/iterators-0.9.1.jar
MD5: 924fc22415f5cc838b9db4a43b94119f
SHA1: f74b1c296b3edbd561c7ac77eebf5ded5b531629
SHA256:ba0a3bf97f28410d33f7991f4327b7447184a10bda7275c85b5146446a9de4d7
Referenced In Project/Scope: Planmonitor Wonen API:compile
iterators-0.9.1.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.geotools/gt-main@34.3

Identifiers

  • pkg:maven/org.eclipse.imagen/iterators@0.9.1   (Confidence:High)

jackson-annotations-2.21.jar

Description:

Core annotations used for value types, used by Jackson data binding package.

License:

The Apache Software License, Version 2.0: https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/com/fasterxml/jackson/core/jackson-annotations/2.21/jackson-annotations-2.21.jar
MD5: e0d0c3e7300954f73e43c67d933aaea4
SHA1: b1bc1868bf02dc0bd6c7836257a036a331005309
SHA256:53ca085f4a150f703f49e1aabd935bd03b43e1ea3d55d135438292af22cef56b
Referenced In Project/Scope: Planmonitor Wonen API:compile
jackson-annotations-2.21.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.springframework.boot/spring-boot-starter-json@4.0.6

Identifiers

  • pkg:maven/com.fasterxml.jackson.core/jackson-annotations@2.21   (Confidence:High)
  • cpe:2.3:a:fasterxml:jackson-core:2.21:*:*:*:*:*:*:*   (Confidence:Highest)   
  • cpe:2.3:a:fasterxml:jackson-modules-java8:2.21:*:*:*:*:*:*:*   (Confidence:Low)   

jackson-core-2.21.2.jar

Description:

Core Jackson processing abstractions (aka Streaming API), implementation for JSON

License:

The Apache Software License, Version 2.0: https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/com/fasterxml/jackson/core/jackson-core/2.21.2/jackson-core-2.21.2.jar
MD5: b62c1031b5f38fc58158fc0c559980cb
SHA1: 7d11eac823392f28d8ee7bda77eaadfccbab83e5
SHA256:12e8655b100267b44d0f14d01b1f5082a5105e616174dc4307be1a761e92407b
Referenced In Project/Scope: Planmonitor Wonen API:compile
jackson-core-2.21.2.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.geotools/gt-main@34.3

Identifiers

  • pkg:maven/com.fasterxml.jackson.core/jackson-core@2.21.2   (Confidence:High)
  • cpe:2.3:a:fasterxml:jackson-core:2.21.2:*:*:*:*:*:*:*   (Confidence:Highest)   
  • cpe:2.3:a:fasterxml:jackson-modules-java8:2.21.2:*:*:*:*:*:*:*   (Confidence:Low)   

jackson-core-3.1.2.jar

Description:

Core Jackson processing abstractions (aka Streaming API), implementation for JSON

License:

The Apache Software License, Version 2.0: https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/tools/jackson/core/jackson-core/3.1.2/jackson-core-3.1.2.jar
MD5: 26ca9e27f24af5ffcff54c9ddb1440ee
SHA1: d0da2e67ffb0b7cf5aba0436b315aa3eb3eb37ca
SHA256:bbb00763f5998f03a26f21e47ed500f253c7fc5c158fa3e8a41dbf97aa7416fd
Referenced In Project/Scope: Planmonitor Wonen API:compile
jackson-core-3.1.2.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.springframework.boot/spring-boot-starter-json@4.0.6

Identifiers

jackson-databind-2.21.2.jar

Description:

General data-binding functionality for Jackson: works on core streaming API

License:

The Apache Software License, Version 2.0: https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/com/fasterxml/jackson/core/jackson-databind/2.21.2/jackson-databind-2.21.2.jar
MD5: add2fbe739574bfd1877c2cca25f46d1
SHA1: 71ab8ff75b4fd74afdee0004173fdd15de1d6a28
SHA256:8c982f01f148d805f0aaac2339011244757e0df7c6ff8951f2fa3f433b8ed849
Referenced In Project/Scope: Planmonitor Wonen API:compile
jackson-databind-2.21.2.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.flywaydb/flyway-database-postgresql@11.20.2

Identifiers

jackson-databind-3.1.2.jar

Description:

General data-binding functionality for Jackson: works on core streaming API

License:

The Apache Software License, Version 2.0: https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/tools/jackson/core/jackson-databind/3.1.2/jackson-databind-3.1.2.jar
MD5: c372488080c2db0bcea8a23d3fb012ce
SHA1: 2550e04829fc14566ddab7b9564ba886a9c6a532
SHA256:0a366b1c2f6321e466c2970847b1251a5dc7201b680f320594230b77bfc8ddb2
Referenced In Project/Scope: Planmonitor Wonen API:compile
jackson-databind-3.1.2.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.springframework.boot/spring-boot-starter-json@4.0.6

Identifiers

jakarta.annotation-api-3.0.0.jar

Description:

Jakarta Annotations API

License:

EPL 2.0: https://www.eclipse.org/legal/epl-2.0
GPL2 w/ CPE: https://www.gnu.org/software/classpath/license.html
File Path: /home/runner/.m2/repository/jakarta/annotation/jakarta.annotation-api/3.0.0/jakarta.annotation-api-3.0.0.jar
MD5: 7faffaab962918da4cf5ddfd76609dd2
SHA1: 54f928fadec906a99d558536756d171917b9d936
SHA256:b01f55552284cfb149411e64eabca75e942d26d2e1786b32914250e4330afaa2
Referenced In Project/Scope: Planmonitor Wonen API:compile
jakarta.annotation-api-3.0.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.springframework.boot/spring-boot-starter-webmvc@4.0.6

Identifiers

  • pkg:maven/jakarta.annotation/jakarta.annotation-api@3.0.0   (Confidence:High)
  • cpe:2.3:a:oracle:projects:3.0.0:*:*:*:*:*:*:*   (Confidence:Low)   

jakarta.inject-api-2.0.1.jar

Description:

Jakarta Dependency Injection

License:

The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/jakarta/inject/jakarta.inject-api/2.0.1/jakarta.inject-api-2.0.1.jar
MD5: 72003bf6efcc8455d414bbd7da86c11c
SHA1: 4c28afe1991a941d7702fe1362c365f0a8641d1e
SHA256:f7dc98062fccf14126abb751b64fab12c312566e8cbdc8483598bffcea93af7c
Referenced In Project/Scope: Planmonitor Wonen API:compile
jakarta.inject-api-2.0.1.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.geotools/gt-main@34.3

Identifiers

  • pkg:maven/jakarta.inject/jakarta.inject-api@2.0.1   (Confidence:High)

jcip-annotations-1.0-1.jar

Description:

    A clean room implementation of the JCIP Annotations based entirely on the specification provided by the javadocs.

License:

Apache License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/com/github/stephenc/jcip/jcip-annotations/1.0-1/jcip-annotations-1.0-1.jar
MD5: d62dbfa8789378457ada685e2f614846
SHA1: ef31541dd28ae2cefdd17c7ebf352d93e9058c63
SHA256:4fccff8382aafc589962c4edb262f6aa595e34f1e11e61057d1c6a96e8fc7323
Referenced In Project/Scope: Planmonitor Wonen API:compile
jcip-annotations-1.0-1.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.springframework.boot/spring-boot-starter-oauth2-client@4.0.6

Identifiers

  • pkg:maven/com.github.stephenc.jcip/jcip-annotations@1.0-1   (Confidence:High)

jgridshift-core-1.3.jar

File Path: /home/runner/.m2/repository/it/geosolutions/jgridshift/jgridshift-core/1.3/jgridshift-core-1.3.jar
MD5: 04a57b57bb0654b3d603eaaa748de563
SHA1: 314702a7b6e634e1c74589983a6762974b9c51c8
SHA256:303eb6a6f6f87369f6b9e3dcacefd6f9b0ad55920cd65a7f162ab9a23401c722
Referenced In Project/Scope: Planmonitor Wonen API:compile
jgridshift-core-1.3.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.geotools/gt-main@34.3

Identifiers

  • pkg:maven/it.geosolutions.jgridshift/jgridshift-core@1.3   (Confidence:High)

json-smart-2.6.0.jar

Description:

JSON (JavaScript Object Notation) is a lightweight data-interchange format. It is easy for humans to read and write. It is easy for machines to parse and generate. It is based on a subset of the JavaScript Programming Language, Standard ECMA-262 3rd Edition - December 1999. JSON is a text format that is completely language independent but uses conventions that are familiar to programmers of the C-family of languages, including C, C++, C#, Java, JavaScript, Perl, Python, and many others. These properties make JSON an ideal data-interchange language.

License:

The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/net/minidev/json-smart/2.6.0/json-smart-2.6.0.jar
MD5: fde8981f31c3b972355a5adf26a9ec65
SHA1: 5f858a43a325a8673da6869ab2bc787a1bcb2244
SHA256:1ae4b561458afb540be8ec5c6dbb4f2e715a319a7ae64854998aaf924770d61b
Referenced In Project/Scope: Planmonitor Wonen API:compile
json-smart-2.6.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.springframework.boot/spring-boot-starter-test@4.0.6

Identifiers

jspecify-1.0.0.jar

Description:

An artifact of well-named and well-specified annotations to power static analysis checks

License:

The Apache License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/org/jspecify/jspecify/1.0.0/jspecify-1.0.0.jar
MD5: 9133aba420d0ca3b001dbb6ae9992cf6
SHA1: 7425a601c1c7ec76645a78d22b8c6a627edee507
SHA256:1fad6e6be7557781e4d33729d49ae1cdc8fdda6fe477bb0cc68ce351eafdfbab
Referenced In Project/Scope: Planmonitor Wonen API:compile
jspecify-1.0.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/io.micrometer/micrometer-core@1.16.5

Identifiers

  • pkg:maven/org.jspecify/jspecify@1.0.0   (Confidence:High)

jts-core-1.20.0.jar

Description:

The JTS Topology Suite is an API for 2D linear geometry predicates and functions.

License:

https://github.com/locationtech/jts/blob/master/LICENSE_EPLv2.txt, https://github.com/locationtech/jts/blob/master/LICENSE_EDLv1.txt
File Path: /home/runner/.m2/repository/org/locationtech/jts/jts-core/1.20.0/jts-core-1.20.0.jar
MD5: 8de91edea80ac2de00c07226458649fb
SHA1: 25b72c9548a328cb1aea8a6b89d710a31ade5403
SHA256:6a783d8f9dba3d3cf7265435f134402f63c05838aa6cbcc4297ad3a5b2842baf
Referenced In Project/Scope: Planmonitor Wonen API:compile
jts-core-1.20.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.geotools/gt-main@34.3

Identifiers

  • pkg:maven/org.locationtech.jts/jts-core@1.20.0   (Confidence:High)

jul-to-slf4j-2.0.17.jar

Description:

JUL to SLF4J bridge

License:

https://opensource.org/license/mit
File Path: /home/runner/.m2/repository/org/slf4j/jul-to-slf4j/2.0.17/jul-to-slf4j-2.0.17.jar
MD5: a42936c56611e4794c42908fb3d3a647
SHA1: 524cb6ccc2b68a57604750e1ab8b13b5a786a6aa
SHA256:a7afcd23b9cfd1475e55c94f943b808c5922035e7e2c2a5c65a487a4106bc538
Referenced In Project/Scope: Planmonitor Wonen API:compile
jul-to-slf4j-2.0.17.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.springframework.boot/spring-boot-starter-webmvc@4.0.6

Identifiers

  • pkg:maven/org.slf4j/jul-to-slf4j@2.0.17   (Confidence:High)

lang-tag-1.7.jar

Description:

Java implementation of "Tags for Identifying Languages" (RFC 5646)

License:

The Apache Software License, Version 2.0: https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/com/nimbusds/lang-tag/1.7/lang-tag-1.7.jar
MD5: 31b8a4f76fdbf21f1d667f9d6618e0b2
SHA1: 97c73ecd70bc7e8eefb26c5eea84f251a63f1031
SHA256:e8c1c594e2425bdbea2d860de55c69b69fc5d59454452449a0f0913c2a5b8a31
Referenced In Project/Scope: Planmonitor Wonen API:compile
lang-tag-1.7.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.springframework.boot/spring-boot-starter-oauth2-client@4.0.6

Identifiers

  • pkg:maven/com.nimbusds/lang-tag@1.7   (Confidence:High)

log4j-api-2.25.4.jar

Description:

The logging API of the Log4j project.
    Library and application code can log through this API.
    It contains a simple built-in implementation (`SimpleLogger`) for trivial use cases.
    Production applications are recommended to use Log4j API in combination with a fully-fledged implementation, such as Log4j Core.

License:

Apache-2.0: https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/org/apache/logging/log4j/log4j-api/2.25.4/log4j-api-2.25.4.jar
MD5: 5efb17ae45b749c1fbfedb3d93375cfc
SHA1: 89ff2217b193fb187b134aa6ebcbfa8a28b018a9
SHA256:c4b642a7f047275215de117e0e3847eb2c7711d84a0aa7433e7b3c096daf341d
Referenced In Project/Scope: Planmonitor Wonen API:compile
log4j-api-2.25.4.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.springframework.boot/spring-boot-starter-webmvc@4.0.6

Identifiers

logback-core-1.5.32.jar

Description:

logback-core module

License:

https://www.eclipse.org/legal/epl-v20.html, https://www.gnu.org/licenses/old-licenses/lgpl-2.1.html
File Path: /home/runner/.m2/repository/ch/qos/logback/logback-core/1.5.32/logback-core-1.5.32.jar
MD5: 053d4a28d6ba4c9b6247c6fd859ca64f
SHA1: fdfb3ff9a842303d4a95207294a6c6bc64e2605d
SHA256:6a904d5778d0e361a9692f9cbe68b1b0620ae0f3eda2ec2ed09102755bf036c4
Referenced In Project/Scope: Planmonitor Wonen API:compile
logback-core-1.5.32.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.springframework.boot/spring-boot-starter-webmvc@4.0.6

Identifiers

micrometer-core-1.16.5.jar

Description:

Core module of Micrometer containing instrumentation API and implementation

License:

The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/io/micrometer/micrometer-core/1.16.5/micrometer-core-1.16.5.jar
MD5: 44ff087270426e6bca299885ea999367
SHA1: eed1add84bba09a75ac35733cb0ed6bf5a1d3cb7
SHA256:2908222d2eed9411d0d2a7a3725026cd6d8a8f7a3feab7009746009810248164
Referenced In Project/Scope: Planmonitor Wonen API:compile
micrometer-core-1.16.5.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/nl.b3p.pmw/planmonitor-wonen-api@1.3.1-SNAPSHOT

Identifiers

  • pkg:maven/io.micrometer/micrometer-core@1.16.5   (Confidence:High)
  • cpe:2.3:a:4d:4d:1.16.5:*:*:*:*:*:*:*   (Confidence:Low)   

modernizer-maven-annotations-3.3.0.jar

File Path: /home/runner/.m2/repository/org/gaul/modernizer-maven-annotations/3.3.0/modernizer-maven-annotations-3.3.0.jar
MD5: b145d6fcbfce8a5556c2d4859490be6b
SHA1: dbe5ac52c78408f6c86d2bc726f90ad6c4c5f09b
SHA256:a6a5b63dc2450922eb7c22e8cee674af0e847a4b2f06f0ff2de183dc8a27c138
Referenced In Project/Scope: Planmonitor Wonen API:compile
modernizer-maven-annotations-3.3.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/nl.b3p.pmw/planmonitor-wonen-api@1.3.1-SNAPSHOT

Identifiers

  • pkg:maven/org.gaul/modernizer-maven-annotations@3.3.0   (Confidence:High)

net.opengis.fes-34.3.jar

Description:

Filter Encoding Specification Schema EMF Model

File Path: /home/runner/.m2/repository/org/geotools/ogc/net.opengis.fes/34.3/net.opengis.fes-34.3.jar
MD5: 86ec213b414c815be7ac5cbe69b0c83b
SHA1: 4d4f0cedc2ec47ac173aecd02b2a76c3c6dda2cc
SHA256:22015b017fb33532f982c3ef579130457f23c051dbc888316c2356cbbe36fefe
Referenced In Project/Scope: Planmonitor Wonen API:compile
net.opengis.fes-34.3.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.geotools/gt-wfs-ng@34.3

Identifiers

nimbus-jose-jwt-10.4.jar (shaded: com.google.code.gson:gson:2.12.1)

License:

Apache-2.0: https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/com/nimbusds/nimbus-jose-jwt/10.4/nimbus-jose-jwt-10.4.jar/META-INF/maven/com.google.code.gson/gson/pom.xml
MD5: 54205b633e8a676f5bb25c188631c854
SHA1: d2c3993ff96e5da39a57e5e0b695eda560949b57
SHA256:0b5735ec85f45282f1e2c769779800427b150a8163f405093a9280b71cab1978
Referenced In Project/Scope: Planmonitor Wonen API:compile

Identifiers

nimbus-jose-jwt-10.4.jar

Description:

        Java library for Javascript Object Signing and Encryption (JOSE) and
        JSON Web Tokens (JWT)

License:

The Apache Software License, Version 2.0: https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/com/nimbusds/nimbus-jose-jwt/10.4/nimbus-jose-jwt-10.4.jar
MD5: 814c1bcc5ce8be81124064581de6ae11
SHA1: 0ca983d3f13080567e36ea554a15af38f31a0cb4
SHA256:6f13f3480ddc53d820d276f582f54843cff1daf5c6e35e534947e9de7723b46b
Referenced In Project/Scope: Planmonitor Wonen API:compile
nimbus-jose-jwt-10.4.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.springframework.boot/spring-boot-starter-oauth2-client@4.0.6

Identifiers

oauth2-oidc-sdk-11.26.1.jar

Description:

		OAuth 2.0 SDK with OpenID Connection extensions for developing client
		and server applications.

License:

Apache License, version 2.0: https://www.apache.org/licenses/LICENSE-2.0.html
File Path: /home/runner/.m2/repository/com/nimbusds/oauth2-oidc-sdk/11.26.1/oauth2-oidc-sdk-11.26.1.jar
MD5: b9e743d2476378853b1f2c78128372e9
SHA1: 0fe01570e55df6e4d56ecc0a481d5ccf95ae1363
SHA256:648494b00da090a4df23aa6a05e4dc03f6e8603b29dd807a4491f33d586f7f78
Referenced In Project/Scope: Planmonitor Wonen API:compile
oauth2-oidc-sdk-11.26.1.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.springframework.boot/spring-boot-starter-oauth2-client@4.0.6

Identifiers

  • pkg:maven/com.nimbusds/oauth2-oidc-sdk@11.26.1   (Confidence:High)

org.eclipse.emf.common-2.15.0.jar

Description:

EMF Common

License:

The Eclipse Public License Version 1.0: http://www.eclipse.org/legal/epl-v10.html
File Path: /home/runner/.m2/repository/org/eclipse/emf/org.eclipse.emf.common/2.15.0/org.eclipse.emf.common-2.15.0.jar
MD5: aa878b3e47b671ebc182108e6b4986c6
SHA1: e0f1608a9855651e899d609b106ae78f903a2f04
SHA256:bdb51f83b2daa51446b4ae5d606464e4b22fb7ef98f0477ac95de72551e2978a
Referenced In Project/Scope: Planmonitor Wonen API:compile
org.eclipse.emf.common-2.15.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.geotools/gt-wfs-ng@34.3

Identifiers

  • pkg:maven/org.eclipse.emf/org.eclipse.emf.common@2.15.0   (Confidence:High)
  • pkg:maven/org.eclipse.emf/org.eclipse.emf.common@2.15.0-SNAPSHOT   (Confidence:High)

org.eclipse.emf.ecore-2.15.0.jar

Description:

EMF Ecore

License:

The Eclipse Public License Version 1.0: http://www.eclipse.org/legal/epl-v10.html
File Path: /home/runner/.m2/repository/org/eclipse/emf/org.eclipse.emf.ecore/2.15.0/org.eclipse.emf.ecore-2.15.0.jar
MD5: 566797e186b122fb2cb64a699b1c2d2b
SHA1: ccfc09c8b6a0d4fadde09216d8a07678d38998de
SHA256:d5e3c25344fe27f14f514f5d6deb6e9cc3f6153fa462361261a8d49a3dfe9bbf
Referenced In Project/Scope: Planmonitor Wonen API:compile
org.eclipse.emf.ecore-2.15.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.geotools/gt-wfs-ng@34.3

Identifiers

  • pkg:maven/org.eclipse.emf/org.eclipse.emf.ecore@2.15.0   (Confidence:High)
  • pkg:maven/org.eclipse.emf/org.eclipse.emf.ecore@2.15.0-SNAPSHOT   (Confidence:High)

org.eclipse.emf.ecore.xmi-2.15.0.jar

Description:

EMF XML/XMI Persistence

License:

The Eclipse Public License Version 1.0: http://www.eclipse.org/legal/epl-v10.html
File Path: /home/runner/.m2/repository/org/eclipse/emf/org.eclipse.emf.ecore.xmi/2.15.0/org.eclipse.emf.ecore.xmi-2.15.0.jar
MD5: 7ac89d5bf958f0a2cfab049690f2e68c
SHA1: 9aa1a584be1df1eb0ef8fae7123784af6e51f47a
SHA256:712ff33fef916d2fa4d838992fccae85c4817a71639a9a5933fc44568ed6dc57
Referenced In Project/Scope: Planmonitor Wonen API:compile
org.eclipse.emf.ecore.xmi-2.15.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.geotools/gt-wfs-ng@34.3

Identifiers

  • pkg:maven/org.eclipse.emf/org.eclipse.emf.ecore.xmi@2.15.0   (Confidence:High)
  • pkg:maven/org.eclipse.emf/org.eclipse.emf.ecore.xmi@2.15.0-SNAPSHOT   (Confidence:High)

org.eclipse.xsd-2.12.0.jar

Description:

http://www.eclipse.org

License:

The Eclipse Public License Version 1.0: http://www.eclipse.org/legal/epl-v10.html
File Path: /home/runner/.m2/repository/org/eclipse/xsd/org.eclipse.xsd/2.12.0/org.eclipse.xsd-2.12.0.jar
MD5: 75fa52ffcf1c5d0d9f85ca9aa7a0e3de
SHA1: 1d4c0da59535d3b79e73a91b1f161c97d3103668
SHA256:0cbded7b090a2205c367b6d08f6ab32dc6857265b87673a4e51b77301ef1b953
Referenced In Project/Scope: Planmonitor Wonen API:compile
org.eclipse.xsd-2.12.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.geotools/gt-wfs-ng@34.3

Identifiers

  • pkg:maven/org.eclipse.xsd/org.eclipse.xsd@2.12.0   (Confidence:High)

org.w3.xlink-34.3.jar

Description:

Xlink Schema EMF Model

File Path: /home/runner/.m2/repository/org/geotools/ogc/org.w3.xlink/34.3/org.w3.xlink-34.3.jar
MD5: 013023901d2c754a4619a8df39985a4b
SHA1: 0695b95c5f91bc368746188a50d977ff4b154bd2
SHA256:6e5fe98edca1ae1e98b77cea3e4d9d7e9a4665573dc62feb5d4d7758d6335218
Referenced In Project/Scope: Planmonitor Wonen API:compile
org.w3.xlink-34.3.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.geotools/gt-wfs-ng@34.3

Identifiers

picocontainer-1.2.jar

Description:

Please refer to the main website for documentation.

File Path: /home/runner/.m2/repository/picocontainer/picocontainer/1.2/picocontainer-1.2.jar
MD5: 3e2dea8daea96da71724cae35da4cc0c
SHA1: c55e869dcdddd735acd8789b74863cde8d15d444
SHA256:d729282e385ed351684e649e261b5b02399327c4713c6b100f122942f923412f
Referenced In Project/Scope: Planmonitor Wonen API:compile
picocontainer-1.2.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.geotools/gt-wfs-ng@34.3

Identifiers

  • pkg:maven/picocontainer/picocontainer@1.2   (Confidence:High)

postgresql-42.7.9.jar

Description:

PostgreSQL JDBC Driver Postgresql

License:

BSD-2-Clause: https://jdbc.postgresql.org/about/license.html
File Path: /home/runner/.m2/repository/org/postgresql/postgresql/42.7.9/postgresql-42.7.9.jar
MD5: 8fd1ae9cdd1b53c92ea269e9c9fab92f
SHA1: 2b748cd83a1ba3d6ef62dc64e075d1760f9a6d31
SHA256:88f1fc3992e80ec3b048f798030e9a014aa4783c40afb56d3e7a87ee0adf166f
Referenced In Project/Scope: Planmonitor Wonen API:compile
postgresql-42.7.9.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/nl.b3p.pmw/planmonitor-wonen-api@1.3.1-SNAPSHOT

Identifiers

  • pkg:maven/org.postgresql/postgresql@42.7.9   (Confidence:High)
  • cpe:2.3:a:postgresql:postgresql_jdbc_driver:42.7.9:*:*:*:*:*:*:*   (Confidence:Low)   

CVE-2026-42198  

pgjdbc is an open source postgresql JDBC Driver. From version 42.2.0 to before version 42.7.11, pgjdbc is vulnerable to a client-side denial of service during SCRAM-SHA-256 authentication. A malicious server can instruct the driver to perform SCRAM authentication with a very large iteration count. With a large enough value, the client spends an unbounded amount of CPU time inside PBKDF2 before authentication can fail. A single attempt ties up a CPU core. Repeated or concurrent attempts exhaust client CPU and can wedge connection pools. In affected versions, loginTimeout did not fully mitigate this problem. When loginTimeout expired, the caller could stop waiting, but the worker thread performing the connection attempt could continue running and burning CPU inside the SCRAM PBKDF2 computation. This issue has been patched in version 42.7.11.
CWE-770 Allocation of Resources Without Limits or Throttling

CVSSv3:
  • Base Score: HIGH (7.5)
  • Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RC:R/MAV:A

References:

Vulnerable Software & Versions:

prometheus-metrics-config-1.4.3.jar

Description:

    Configuration for Prometheus metrics and exposition formats.

License:

http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/io/prometheus/prometheus-metrics-config/1.4.3/prometheus-metrics-config-1.4.3.jar
MD5: 46714aa1ccfd6a75a06d05b1a5e0c8fb
SHA1: 785bf741491702f0e755a6a5c9c58a8127db0683
SHA256:3da2d5f0123af9e313bcf26f04c1248afeacd1b0d5c3a35f220034604ac0ec47
Referenced In Project/Scope: Planmonitor Wonen API:compile
prometheus-metrics-config-1.4.3.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/io.micrometer/micrometer-registry-prometheus@1.16.5

Identifiers

  • pkg:maven/io.prometheus/prometheus-metrics-config@1.4.3   (Confidence:High)

prometheus-metrics-core-1.4.3.jar

Description:

    Core Prometheus metric types

License:

http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/io/prometheus/prometheus-metrics-core/1.4.3/prometheus-metrics-core-1.4.3.jar
MD5: bd35856a8c8dbab69058b5638b8e1815
SHA1: 1f00dc12e0bef05dff593a9abd7a4d626b675b0b
SHA256:7ecd546d5238e3d3f5f312f580eaaab10cb05d147597978ab90b78080cc58255
Referenced In Project/Scope: Planmonitor Wonen API:compile
prometheus-metrics-core-1.4.3.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/io.micrometer/micrometer-registry-prometheus@1.16.5

Identifiers

  • pkg:maven/io.prometheus/prometheus-metrics-core@1.4.3   (Confidence:High)

prometheus-metrics-exposition-formats-1.4.3.jar

Description:

    Prometheus exposition formats.

License:

http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/io/prometheus/prometheus-metrics-exposition-formats/1.4.3/prometheus-metrics-exposition-formats-1.4.3.jar
MD5: f1b9f4969a6d4b64ea5b7f1dfab22d0b
SHA1: 14eeb4e0a6a366d6b7562e4457e2a863b837b5bd
SHA256:502ad6b37c44b1a6311f6070a18fc921ffa2e26abb43eaaaf7626aa1b97984b6
Referenced In Project/Scope: Planmonitor Wonen API:runtime
prometheus-metrics-exposition-formats-1.4.3.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/io.micrometer/micrometer-registry-prometheus@1.16.5

Identifiers

  • pkg:maven/io.prometheus/prometheus-metrics-exposition-formats@1.4.3   (Confidence:High)

prometheus-metrics-exposition-textformats-1.4.3.jar

Description:

    Prometheus exposition text formats.

License:

http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/io/prometheus/prometheus-metrics-exposition-textformats/1.4.3/prometheus-metrics-exposition-textformats-1.4.3.jar
MD5: fa00ec1b5682dbc5c6386f7f2d4e8e75
SHA1: 3a4f58da44fdb1a26bbda60cf38930db62f2f887
SHA256:4aeee30d937ae5baf34ca9daced0f84400ec0f034e7beaa8331d9c519d84e3d7
Referenced In Project/Scope: Planmonitor Wonen API:runtime
prometheus-metrics-exposition-textformats-1.4.3.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/io.micrometer/micrometer-registry-prometheus@1.16.5

Identifiers

  • pkg:maven/io.prometheus/prometheus-metrics-exposition-textformats@1.4.3   (Confidence:High)

prometheus-metrics-model-1.4.3.jar

Description:

    Data model for read-only immutable Prometheus metrics snapshots.

License:

http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/io/prometheus/prometheus-metrics-model/1.4.3/prometheus-metrics-model-1.4.3.jar
MD5: 9cfd3913946e59885a5eae3a0b6a5b98
SHA1: b18da634ccdc033468c0a17e56996de09b4e6b36
SHA256:bc3f1825014a14006626086ea779b62893e647e71d1eab075c0bb65057c245f8
Referenced In Project/Scope: Planmonitor Wonen API:compile
prometheus-metrics-model-1.4.3.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/io.micrometer/micrometer-registry-prometheus@1.16.5

Identifiers

  • pkg:maven/io.prometheus/prometheus-metrics-model@1.4.3   (Confidence:High)

prometheus-metrics-tracer-common-1.4.3.jar

Description:

    Common Module for Prometheus integrations with distributed tracing libraries.

License:

http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/io/prometheus/prometheus-metrics-tracer-common/1.4.3/prometheus-metrics-tracer-common-1.4.3.jar
MD5: 36367a2c2f7e05aa1ec584d6dd9669a1
SHA1: 67af5fc22c23e695d986a6301e61964efe9c9f80
SHA256:b816aaf84e45d591e5f66c5b94c7a789dedf2d705e5bf3eec2ae8730f76c68cd
Referenced In Project/Scope: Planmonitor Wonen API:compile
prometheus-metrics-tracer-common-1.4.3.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/io.micrometer/micrometer-registry-prometheus@1.16.5

Identifiers

  • pkg:maven/io.prometheus/prometheus-metrics-tracer-common@1.4.3   (Confidence:High)

re2j-1.8.jar

Description:

Linear time regular expressions for Java

License:

Go License: https://golang.org/LICENSE
File Path: /home/runner/.m2/repository/com/google/re2j/re2j/1.8/re2j-1.8.jar
MD5: 4240e655caa938c61ddbec8b92bfb061
SHA1: 12c25e923e9e4fb1575a7640a2698745c6f19a94
SHA256:7b52c72156dd7f98b3237a5b35c1d34fba381b21048c89208913ad80a45dfbd7
Referenced In Project/Scope: Planmonitor Wonen API:compile
re2j-1.8.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.geotools/gt-main@34.3

Identifiers

  • pkg:maven/com.google.re2j/re2j@1.8   (Confidence:High)

si-quantity-2.1.jar

Description:

Units of Measurement SI (Système International d'Unités)

License:

https://opensource.org/licenses/BSD-3-Clause
File Path: /home/runner/.m2/repository/si/uom/si-quantity/2.1/si-quantity-2.1.jar
MD5: 79685f60efca0051a6c579e1f1522542
SHA1: 5617d2cf30898ffcc760807009fe947483bd867b
SHA256:2cdcfd3e5395db5576f5efc0f224b5bbd0731f3ec7552afee6ee7b63a4f65820
Referenced In Project/Scope: Planmonitor Wonen API:compile
si-quantity-2.1.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.geotools/gt-main@34.3

Identifiers

  • pkg:maven/si.uom/si-quantity@2.1   (Confidence:High)

si-units-2.1.jar

Description:

"Units of Measurement SI (Système International d'Unités)"

License:

"BSD 3-Clause";link="https://opensource.org/licenses/BSD-3-Clause"
File Path: /home/runner/.m2/repository/si/uom/si-units/2.1/si-units-2.1.jar
MD5: 43abf4b896da58d8bca0e87f412a8457
SHA1: 7e812192ff1abbef6c79123249840c42b4e145d4
SHA256:491ed9956ddf4b2e30180b087e1f6fb51debccb6d46785ae0d52026342013c51
Referenced In Project/Scope: Planmonitor Wonen API:compile
si-units-2.1.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.geotools/gt-main@34.3

Identifiers

  • pkg:maven/si.uom/si-units@2.1   (Confidence:High)

slf4j-api-2.0.17.jar

Description:

The slf4j API

License:

https://opensource.org/license/mit
File Path: /home/runner/.m2/repository/org/slf4j/slf4j-api/2.0.17/slf4j-api-2.0.17.jar
MD5: b6480d114a23683498ac3f746f959d2f
SHA1: d9e58ac9c7779ba3bf8142aff6c830617a7fe60f
SHA256:7b751d952061954d5abfed7181c1f645d336091b679891591d63329c622eb832
Referenced In Project/Scope: Planmonitor Wonen API:compile
slf4j-api-2.0.17.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.springframework.boot/spring-boot-starter-jdbc@4.0.6

Identifiers

  • pkg:maven/org.slf4j/slf4j-api@2.0.17   (Confidence:High)

snakeyaml-2.5.jar

Description:

YAML 1.1 parser and emitter for Java

License:

Apache License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/org/yaml/snakeyaml/2.5/snakeyaml-2.5.jar
MD5: 8d3b7581db5c7620db55183f33a4f2ad
SHA1: 2d53ddec134280cb384c1e35d094e5f71c1f2316
SHA256:e6682acf1ace77508ef13649cbf4f8d09d2cf5457bdb61d25ffb6ac0233d78dd
Referenced In Project/Scope: Planmonitor Wonen API:compile
snakeyaml-2.5.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.springframework.boot/spring-boot-starter-webmvc@4.0.6

Identifiers

spring-boot-sql-4.0.6.jar

Description:

Spring Boot SQL

License:

Apache License, Version 2.0: https://www.apache.org/licenses/LICENSE-2.0
File Path: /home/runner/.m2/repository/org/springframework/boot/spring-boot-sql/4.0.6/spring-boot-sql-4.0.6.jar
MD5: ae4bb6a4d7f7b429439592f9321e1b0c
SHA1: 2526bc5a53f0ca3c029a4c02a1360a25c9e226d4
SHA256:aa98cba6a0195ce0a6cc48e075f37f4b11587d91f1004b3b37b47a59897de615
Referenced In Project/Scope: Planmonitor Wonen API:compile
spring-boot-sql-4.0.6.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.springframework.boot/spring-boot-starter-jdbc@4.0.6

Identifiers

spring-boot-web-server-4.0.6.jar

Description:

Spring Boot Web Server

License:

Apache License, Version 2.0: https://www.apache.org/licenses/LICENSE-2.0
File Path: /home/runner/.m2/repository/org/springframework/boot/spring-boot-web-server/4.0.6/spring-boot-web-server-4.0.6.jar
MD5: 8fd94e440c782e11289275c01f1b8f70
SHA1: 8a087bc97418b3082fe402b3241260180fa7133e
SHA256:d75dcc45dd7b09ae9816d74aae772dc22ac7fee6ca69e8e094f2b693229dc556
Referenced In Project/Scope: Planmonitor Wonen API:compile
spring-boot-web-server-4.0.6.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.springframework.boot/spring-boot-starter-webmvc-test@4.0.6

Identifiers

spring-core-7.0.7.jar

Description:

Spring Core

License:

Apache License, Version 2.0: https://www.apache.org/licenses/LICENSE-2.0
File Path: /home/runner/.m2/repository/org/springframework/spring-core/7.0.7/spring-core-7.0.7.jar
MD5: 33ce0cb6c81faaa067b4b05dcd152188
SHA1: 4f85340fd463031cd93a0629a0323bb467ae51aa
SHA256:9e1c13ed6d69002aae7ebc4b7d2d1d07e309013a2fbb63ab266bea8601229785
Referenced In Project/Scope: Planmonitor Wonen API:compile
spring-core-7.0.7.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.springframework.boot/spring-boot-starter-test@4.0.6

Identifiers

spring-security-core-7.0.5.jar

Description:

Spring Security

License:

Apache License, Version 2.0: https://www.apache.org/licenses/LICENSE-2.0
File Path: /home/runner/.m2/repository/org/springframework/security/spring-security-core/7.0.5/spring-security-core-7.0.5.jar
MD5: 0a89cf0352acb65c6ec79a046cf875a8
SHA1: 9d331a891df2aa811eb91ffad056bb5077e471e8
SHA256:344bfbed8025031781218cbd7891f6b9fd750d4f52c923f75948d5e7b11fc2ea
Referenced In Project/Scope: Planmonitor Wonen API:compile
spring-security-core-7.0.5.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.springframework.security/spring-security-test@7.0.5

Identifiers

spring-security-oauth2-core-7.0.5.jar

Description:

Spring Security

License:

Apache License, Version 2.0: https://www.apache.org/licenses/LICENSE-2.0
File Path: /home/runner/.m2/repository/org/springframework/security/spring-security-oauth2-core/7.0.5/spring-security-oauth2-core-7.0.5.jar
MD5: e7cd85052e42fd65c6f98b1b15bcd955
SHA1: 11eae201564bf4f23109040ff2ab0d16413c2dcb
SHA256:3e5d3a855543d4b805551d1685a7ce01ecc32c7bb84f85579a56fdd8fe9286e6
Referenced In Project/Scope: Planmonitor Wonen API:compile
spring-security-oauth2-core-7.0.5.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.springframework.boot/spring-boot-starter-oauth2-client@4.0.6

Identifiers

spring-security-web-7.0.5.jar: spring-security-webauthn.js

File Path: /home/runner/.m2/repository/org/springframework/security/spring-security-web/7.0.5/spring-security-web-7.0.5.jar/org/springframework/security/spring-security-webauthn.js
MD5: d8d90d854a23d021c2e758b3eebce213
SHA1: 7814ccd3adc2388f52b2658bf5fc30b457949ab6
SHA256:044a2b8d7e995bff815565678631a2d3a5cc0aa96ef8ac35cfacb579307f77a9
Referenced In Project/Scope: Planmonitor Wonen API:compile

Identifiers

  • None

spring-session-core-4.0.3.jar

Description:

Spring Session

License:

Apache License, Version 2.0: https://www.apache.org/licenses/LICENSE-2.0
File Path: /home/runner/.m2/repository/org/springframework/session/spring-session-core/4.0.3/spring-session-core-4.0.3.jar
MD5: dd71fbc05c54d5ed7ce9390102d9c7fc
SHA1: 61883df7d1f48ac9a530b6933875c3dfd6ed8653
SHA256:c1cd05c7d2ecaad73cb8409871034b8343b96b831e97a281f77e60c4bd87b673
Referenced In Project/Scope: Planmonitor Wonen API:compile
spring-session-core-4.0.3.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.springframework.session/spring-session-jdbc@4.0.3

Identifiers

systems-common-2.1.jar

Description:

Parent POM for Unit Systems

License:

BSD;link=LICENSE
File Path: /home/runner/.m2/repository/systems/uom/systems-common/2.1/systems-common-2.1.jar
MD5: 8c3a56e267bbd26bb947c826e51bee2b
SHA1: a173cc6f1fedc8b32498d6cc9599251baa72de27
SHA256:b3cc1f3e604dcd18d3bba266db5fd01744bbd6b02f147377d4016585ba375cff
Referenced In Project/Scope: Planmonitor Wonen API:compile
systems-common-2.1.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.geotools/gt-main@34.3

Identifiers

  • pkg:maven/systems.uom/systems-common@2.1   (Confidence:High)

tomcat-embed-core-11.0.21.jar

Description:

Core Tomcat implementation

License:

Apache License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/org/apache/tomcat/embed/tomcat-embed-core/11.0.21/tomcat-embed-core-11.0.21.jar
MD5: d2bca26439a0ff8bdd0317af8e243dd1
SHA1: 6d53989fe9f9416eb1295a9c53c7b6fb8e3c04bb
SHA256:5dbe19880b5025e0b9de7c3de81cb837ce79636ea1da39c8d00a66d3add25567
Referenced In Project/Scope: Planmonitor Wonen API:compile
tomcat-embed-core-11.0.21.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.springframework.boot/spring-boot-starter-webmvc@4.0.6

Identifiers

CVE-2026-41293  

Improper Input Validation vulnerability in Apache Tomcat.

This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.21, from 10.1.0-M1 through 10.1.54, from 9.0.0.M1 through 9.0.117, from 10.0.0-M1 through 10.0.27.
Older, end of support versions may also be affected.

Users are recommended to upgrade to version [FIXED_VERSION], which fixes the issue.
CWE-20 Improper Input Validation

CVSSv3:
  • Base Score: CRITICAL (9.8)
  • Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RC:R/MAV:A

References:

Vulnerable Software & Versions: (show all)

CVE-2026-43512  

DEPRECATED: Authentication Bypass Issues vulnerability in digest authentication in Apache Tomcat.

This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.21, from 10.1.0-M1 through 10.1.54, from 9.0.0.M1 through 9.0.117, from 8.5.0 through 8.5.100, from before 7.0.0.
Older unsupported versions any also be affect

Users are recommended to upgrade to version 11.0.22, 10.1.55 or 9.0.118 which fix the issue.
CWE-592 DEPRECATED: Authentication Bypass Issues

CVSSv3:
  • Base Score: CRITICAL (9.8)
  • Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RC:R/MAV:A

References:

Vulnerable Software & Versions: (show all)

CVE-2026-43515  

Improper Authorization vulnerability when multiple method constraints define an HTTP method for the same extension in Apache Tomcat.

This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.21, from 10.1.0-M1 through 10.1.54, from 9.0.0.M1 through 9.0.117, from 8.5.0 through 8.5.100, from 7.0.0 through 7.0.109.

Users are recommended to upgrade to version 11.0.22, 10.1.55 or 9.0.118 which fix the issue.
CWE-285 Improper Authorization

CVSSv3:
  • Base Score: CRITICAL (9.1)
  • Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N/E:P/RC:R/MAV:A

References:

Vulnerable Software & Versions: (show all)

CVE-2026-41284  

Allocation of Resources Without Limits or Throttling vulnerability in Apache Tomcat.

This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.21, from 10.1.0-M1 through 10.1.54, from 9.0.0.M1 through 9.0.117.
Older, unsupported versions may also be affected.

Users are recommended to upgrade to version [FIXED_VERSION], which fixes the issue.
CWE-770 Allocation of Resources Without Limits or Throttling

CVSSv3:
  • Base Score: HIGH (7.5)
  • Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RC:R/MAV:A

References:

Vulnerable Software & Versions: (show all)

CVE-2026-43513  

Improper Handling of Case Sensitivity vulnerability in LockOutRealm in Apache Tomcat.

This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.21, from 10.1.0-M1 through 10.1.54, from 9.0.0.M1 through 9.0.117, from 8.5.0 through 8.5.100, from 7.0.0 through 7.0.109.
Older unsupported versions may also be affected.

Users are recommended to upgrade to version 11.0.22, 10.1.55 or 9.0.118 which fix the issue.
CWE-178 Improper Handling of Case Sensitivity

CVSSv3:
  • Base Score: HIGH (7.5)
  • Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:P/RC:R/MAV:A

References:

Vulnerable Software & Versions: (show all)

CVE-2026-42498  

Exposure of HTTP Authentication Header to unexpected hosts during WebSocket authentication vulnerability in Apache Tomcat.

This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.21, from 10.1.0-M1 through 10.1.54, from 9.0.2 through 9.0.117, from 8.5.24 through 8.5.100, from 7.0.83 through 7.0.109.

Users are recommended to upgrade to version 11.0.22, 10.1.55 or 9.0.118, which fix the issue.
CWE-200 Exposure of Sensitive Information to an Unauthorized Actor

CVSSv3:
  • Base Score: HIGH (7.3)
  • Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L/E:P/RC:R/MAV:A

References:

Vulnerable Software & Versions: (show all)

CVE-2026-43514  

Observable Timing Discrepancy vulnerability when comparing AJP secret in Apache Tomcat.

This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.21, from 10.1.0-M1 through 10.1.54, from 9.0.0.M1 through 9.0.117, from 8.5.0 through 8.5.100, from 7.0.0 through 7.0.109.
Older unsupported versions may also be affected.

Users are recommended to upgrade to version 11.0.22, 10.1.55 or 9.0.118 which fix the issue.
CWE-208 Observable Timing Discrepancy

CVSSv3:
  • Base Score: LOW (3.7)
  • Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N/E:P/RC:R/MAV:A

References:

Vulnerable Software & Versions: (show all)

tomcat-embed-el-11.0.21.jar

Description:

Core Tomcat implementation

License:

Apache License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/org/apache/tomcat/embed/tomcat-embed-el/11.0.21/tomcat-embed-el-11.0.21.jar
MD5: dd59f123bc31093489237bdda1b8a4a7
SHA1: ab5200daf4fac467fa0e73598cdc10de6ce1c139
SHA256:3745cb768f4ed74c2f4af8fc2453992143997019718f71c915d4545fdbef1fb3
Referenced In Project/Scope: Planmonitor Wonen API:compile
tomcat-embed-el-11.0.21.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.springframework.boot/spring-boot-starter-webmvc@4.0.6

Identifiers

  • pkg:maven/org.apache.tomcat.embed/tomcat-embed-el@11.0.21   (Confidence:High)

unit-api-2.2.jar

Description:

Units of Measurement Standard - This JSR specifies Java
        packages for modeling and working with measurement values, quantities
        and their corresponding units.

License:

BSD 3-Clause: LICENSE
File Path: /home/runner/.m2/repository/javax/measure/unit-api/2.2/unit-api-2.2.jar
MD5: 6cbc2bae2cb63cb4f85c5a187ee7dda2
SHA1: 2b624f7334b94a82c74cb954ede9fb1179b8d30c
SHA256:667487e1ee57298cdc767885f00b86c899b2fe7e72dc00b6560a6aa64f2bc9c4
Referenced In Project/Scope: Planmonitor Wonen API:compile
unit-api-2.2.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.geotools/gt-main@34.3

Identifiers

  • pkg:maven/javax.measure/unit-api@2.2   (Confidence:High)

uom-lib-common-2.2.jar

Description:

Units Common Library

License:

BSD: LICENSE
File Path: /home/runner/.m2/repository/tech/uom/lib/uom-lib-common/2.2/uom-lib-common-2.2.jar
MD5: eb6a1296ea160f731ac81ab8a2c7fed7
SHA1: 94a52abfdad3935c3769b4caab3ce9d384d8fb4e
SHA256:a01ece1c236b7b15a431b0383bdddf06dc6d7a85290e9a62b63904e1e4e0dc0d
Referenced In Project/Scope: Planmonitor Wonen API:compile
uom-lib-common-2.2.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.geotools/gt-main@34.3

Identifiers

  • pkg:maven/tech.uom.lib/uom-lib-common@2.2   (Confidence:High)

utilities-0.9.1.jar

File Path: /home/runner/.m2/repository/org/eclipse/imagen/utilities/0.9.1/utilities-0.9.1.jar
MD5: bfe9aa865760d3886bbceae44cbab15a
SHA1: ecf369ab1d658af967d09b0073a4e02216d00f92
SHA256:29db1c076961bcd67f797d8375b22cdffb8c7bba0e9243639bc33edee50ed4cc
Referenced In Project/Scope: Planmonitor Wonen API:compile
utilities-0.9.1.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.geotools/gt-main@34.3

Identifiers

  • pkg:maven/org.eclipse.imagen/utilities@0.9.1   (Confidence:High)

xml-commons-resolver-1.2.jar

File Path: /home/runner/.m2/repository/org/apache/xml/xml-commons-resolver/1.2/xml-commons-resolver-1.2.jar
MD5: 706c533146c1f4ee46b66659ea14583a
SHA1: 3d0f97750b3a03e0971831566067754ba4bfd68c
SHA256:47dcde8986019314ef78ae7280a94973a21d2ed95075a40a000b42da956429e1
Referenced In Project/Scope: Planmonitor Wonen API:compile
xml-commons-resolver-1.2.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.geotools/gt-wfs-ng@34.3

Identifiers

  • pkg:maven/org.apache.xml/xml-commons-resolver@1.2   (Confidence:High)


This report contains data retrieved from the National Vulnerability Database.
This report may contain data retrieved from the CISA Known Exploited Vulnerability Catalog.
This report may contain data retrieved from the Github Advisory Database (via NPM Audit API).
This report may contain data retrieved from RetireJS.
This report may contain data retrieved from the Sonatype Guide OSS Index API.