Dependency-Check is an open source tool performing a best effort analysis of 3rd party dependencies;
false positives and false negatives may exist in the analysis performed by the tool. Use of the tool and
the reporting provided constitutes acceptance for use in an AS IS condition, and there are NO warranties,
implied or otherwise, with regard to the analysis or its use. Any use of the tool and the reporting provided
is at the user’s risk. In no event shall the copyright holder or OWASP be held liable for any damages whatsoever
arising out of or in connection with the use of this tool, the analysis performed, or the resulting report.
Scan Information (
show all ):
dependency-check version : 11.1.0Report Generated On : Sun, 3 Nov 2024 23:39:42 GMTDependencies Scanned : 120 (67 unique)Vulnerable Dependencies : 3 Vulnerabilities Found : 5Vulnerabilities Suppressed : 0 ... NVD API Last Checked : 2024-11-03T23:39:31ZNVD API Last Modified : 2024-11-03T23:15:03ZSummary Display:
Showing Vulnerable Dependencies (click to show all) GeographicLib-Java-1.49.jarDescription:
This is a Java implementation of the geodesic algorithms from
GeographicLib. This is a self-contained library which makes it
easy to do geodesic computations for an ellipsoid of revolution in
a Java program. It requires Java version 1.1 or later.
License:
The MIT License(MIT): http://opensource.org/licenses/MIT File Path: /home/runner/.m2/repository/net/sf/geographiclib/GeographicLib-Java/1.49/GeographicLib-Java-1.49.jar
MD5: 5536ff35e4bb0b3262c6f62f43105ea4
SHA1: 7ff2164e69fa04e1ef2ca5079e1cee298a936ea1
SHA256: 78c292f7e6910d51a15fc9088c301fac3b4c0a43ac5ae17499f5763b4dd9aca8
Referenced In Project/Scope: Planmonitor Wonen API:compile
GeographicLib-Java-1.49.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.geotools/gt-main@32.0
Evidence Type Source Name Value Confidence Vendor file name GeographicLib-Java High Vendor jar package name geodesic Highest Vendor jar package name geographiclib Highest Vendor jar package name geographiclib Low Vendor jar package name net Highest Vendor jar package name net Low Vendor jar package name sf Highest Vendor jar package name sf Low Vendor pom artifactid GeographicLib-Java Highest Vendor pom artifactid GeographicLib-Java Low Vendor pom developer email charles@karney.com Low Vendor pom developer name Charles Karney Medium Vendor pom developer org URL
https://sourceforge.net/u/karney/profile/
Medium Vendor pom groupid net.sf.geographiclib Highest Vendor pom name Java implementation of GeographicLib High Vendor pom url https://geographiclib.sourceforge.io Highest Product file name GeographicLib-Java High Product jar package name geodesic Highest Product jar package name geographiclib Highest Product jar package name geographiclib Low Product jar package name net Highest Product jar package name sf Highest Product jar package name sf Low Product pom artifactid GeographicLib-Java Highest Product pom developer email charles@karney.com Low Product pom developer name Charles Karney Low Product pom developer org URL
https://sourceforge.net/u/karney/profile/
Low Product pom groupid net.sf.geographiclib Highest Product pom name Java implementation of GeographicLib High Product pom url https://geographiclib.sourceforge.io Medium Version file version 1.49 High Version pom version 1.49 Highest
HdrHistogram-2.2.2.jarDescription:
HdrHistogram supports the recording and analyzing sampled data value
counts across a configurable integer value range with configurable value
precision within the range. Value precision is expressed as the number of
significant digits in the value recording, and provides control over value
quantization behavior across the value range and the subsequent value
resolution at any given level.
License:
Public Domain, per Creative Commons CC0: http://creativecommons.org/publicdomain/zero/1.0/
BSD-2-Clause: https://opensource.org/licenses/BSD-2-Clause File Path: /home/runner/.m2/repository/org/hdrhistogram/HdrHistogram/2.2.2/HdrHistogram-2.2.2.jar
MD5: 41f807bf0c681d6f692c408a6e217eaf
SHA1: 7959933ebcc0f05b2eaa5af0a0c8689fa257b15c
SHA256: 22d1d4316c4ec13a68b559e98c8256d69071593731da96136640f864fa14fad8
Referenced In Project/Scope: Planmonitor Wonen API:runtime
HdrHistogram-2.2.2.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/io.micrometer/micrometer-registry-prometheus@1.13.6
Evidence Type Source Name Value Confidence Vendor file name HdrHistogram High Vendor jar package name hdrhistogram Highest Vendor Manifest build-jdk-spec 20 Low Vendor Manifest bundle-symbolicname org.hdrhistogram.HdrHistogram Medium Vendor pom artifactid HdrHistogram Highest Vendor pom artifactid HdrHistogram Low Vendor pom developer id giltene Medium Vendor pom developer name Gil Tene Medium Vendor pom groupid org.hdrhistogram Highest Vendor pom name HdrHistogram High Vendor pom url http://hdrhistogram.github.io/HdrHistogram/ Highest Product file name HdrHistogram High Product jar package name hdrhistogram Highest Product Manifest build-jdk-spec 20 Low Product Manifest Bundle-Name HdrHistogram Medium Product Manifest bundle-symbolicname org.hdrhistogram.HdrHistogram Medium Product pom artifactid HdrHistogram Highest Product pom developer id giltene Low Product pom developer name Gil Tene Low Product pom groupid org.hdrhistogram Highest Product pom name HdrHistogram High Product pom url http://hdrhistogram.github.io/HdrHistogram/ Medium Version file version 2.2.2 High Version Manifest Bundle-Version 2.2.2 High Version pom version 2.2.2 Highest
HikariCP-5.1.0.jarDescription:
Ultimate JDBC Connection Pool License:
The Apache Software License, Version 2.0: https://www.apache.org/licenses/LICENSE-2.0.txt File Path: /home/runner/.m2/repository/com/zaxxer/HikariCP/5.1.0/HikariCP-5.1.0.jar
MD5: 37404f82207a28141bd9b0fe6b1d0a16
SHA1: 8c96e36c14461fc436bb02b264b96ef3ca5dca8c
SHA256: a47a6ee62379694ee52c30036f0931b72f9aee2a801d590341ed82bd839e2134
Referenced In Project/Scope: Planmonitor Wonen API:compile
HikariCP-5.1.0.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.springframework.boot/spring-boot-starter-jdbc@3.3.5
Evidence Type Source Name Value Confidence Vendor file name HikariCP High Vendor jar package name pool Highest Vendor jar package name zaxxer Highest Vendor Manifest build-jdk-spec 11 Low Vendor Manifest bundle-docurl https://github.com/brettwooldridge Low Vendor Manifest bundle-symbolicname com.zaxxer.HikariCP Medium Vendor Manifest originally-created-by Apache Maven Bundle Plugin Low Vendor pom artifactid HikariCP Highest Vendor pom artifactid HikariCP Low Vendor pom developer email brett.wooldridge@gmail.com Low Vendor pom developer name Brett Wooldridge Medium Vendor pom groupid com.zaxxer Highest Vendor pom name HikariCP High Vendor pom organization name Zaxxer.com High Vendor pom organization url brettwooldridge Medium Vendor pom url brettwooldridge/HikariCP Highest Product file name HikariCP High Product jar package name pool Highest Product jar package name zaxxer Highest Product Manifest build-jdk-spec 11 Low Product Manifest bundle-docurl https://github.com/brettwooldridge Low Product Manifest Bundle-Name HikariCP Medium Product Manifest bundle-symbolicname com.zaxxer.HikariCP Medium Product Manifest originally-created-by Apache Maven Bundle Plugin Low Product pom artifactid HikariCP Highest Product pom developer email brett.wooldridge@gmail.com Low Product pom developer name Brett Wooldridge Low Product pom groupid com.zaxxer Highest Product pom name HikariCP High Product pom organization name Zaxxer.com Low Product pom url brettwooldridge High Product pom url brettwooldridge/HikariCP High Version file version 5.1.0 High Version Manifest Bundle-Version 5.1.0 High Version pom version 5.1.0 Highest
LatencyUtils-2.0.3.jarDescription:
LatencyUtils is a package that provides latency recording and reporting utilities.
License:
Public Domain, per Creative Commons CC0: http://creativecommons.org/publicdomain/zero/1.0/ File Path: /home/runner/.m2/repository/org/latencyutils/LatencyUtils/2.0.3/LatencyUtils-2.0.3.jar
MD5: 2ad12e1ef7614cecfb0483fa9ac6da73
SHA1: 769c0b82cb2421c8256300e907298a9410a2a3d3
SHA256: a32a9ffa06b2f4e01c5360f8f9df7bc5d9454a5d373cd8f361347fa5a57165ec
Referenced In Project/Scope: Planmonitor Wonen API:runtime
LatencyUtils-2.0.3.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/io.micrometer/micrometer-registry-prometheus@1.13.6
Evidence Type Source Name Value Confidence Vendor file name LatencyUtils High Vendor jar package name latencyutils Highest Vendor jar package name latencyutils Low Vendor pom artifactid LatencyUtils Highest Vendor pom artifactid LatencyUtils Low Vendor pom developer id giltene Medium Vendor pom developer name Gil Tene Medium Vendor pom groupid org.latencyutils Highest Vendor pom name LatencyUtils High Vendor pom url http://latencyutils.github.io/LatencyUtils/ Highest Product file name LatencyUtils High Product jar package name latencyutils Highest Product pom artifactid LatencyUtils Highest Product pom developer id giltene Low Product pom developer name Gil Tene Low Product pom groupid org.latencyutils Highest Product pom name LatencyUtils High Product pom url http://latencyutils.github.io/LatencyUtils/ Medium Version file version 2.0.3 High Version pom version 2.0.3 Highest
apiguardian-api-1.1.2.jarDescription:
@API Guardian License:
The Apache License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt File Path: /home/runner/.m2/repository/org/apiguardian/apiguardian-api/1.1.2/apiguardian-api-1.1.2.jar
MD5: 8c7de3f82037fa4a2e8be2a2f13092af
SHA1: a231e0d844d2721b0fa1b238006d15c6ded6842a
SHA256: b509448ac506d607319f182537f0b35d71007582ec741832a1f111e5b5b70b38
Referenced In Project/Scope: Planmonitor Wonen API:compile
apiguardian-api-1.1.2.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.springframework.boot/spring-boot-starter-test@3.3.5
Evidence Type Source Name Value Confidence Vendor file name apiguardian-api High Vendor jar package name api Highest Vendor jar package name apiguardian Highest Vendor Manifest build-date 2021-06-27 Low Vendor Manifest build-revision aa952a1b9d5b4e9cc0af853e2c140c2455b397be Low Vendor Manifest build-time 14:53:10.089+0200 Low Vendor Manifest bundle-docurl https://github.com/apiguardian-team/apiguardian Low Vendor Manifest bundle-symbolicname org.apiguardian.api Medium Vendor Manifest Implementation-Vendor apiguardian.org High Vendor Manifest specification-vendor apiguardian.org Low Vendor pom artifactid apiguardian-api Highest Vendor pom artifactid apiguardian-api Low Vendor pom developer email team@apiguardian.org Low Vendor pom developer id apiguardian Medium Vendor pom developer name @API Guardian Team Medium Vendor pom groupid org.apiguardian Highest Vendor pom name org.apiguardian:apiguardian-api High Vendor pom url apiguardian-team/apiguardian Highest Product file name apiguardian-api High Product jar package name api Highest Product jar package name apiguardian Highest Product Manifest build-date 2021-06-27 Low Product Manifest build-revision aa952a1b9d5b4e9cc0af853e2c140c2455b397be Low Product Manifest build-time 14:53:10.089+0200 Low Product Manifest bundle-docurl https://github.com/apiguardian-team/apiguardian Low Product Manifest Bundle-Name apiguardian-api Medium Product Manifest bundle-symbolicname org.apiguardian.api Medium Product Manifest Implementation-Title apiguardian-api High Product Manifest specification-title apiguardian-api Medium Product pom artifactid apiguardian-api Highest Product pom developer email team@apiguardian.org Low Product pom developer id apiguardian Low Product pom developer name @API Guardian Team Low Product pom groupid org.apiguardian Highest Product pom name org.apiguardian:apiguardian-api High Product pom url apiguardian-team/apiguardian High Version file version 1.1.2 High Version Manifest Bundle-Version 1.1.2 High Version Manifest Implementation-Version 1.1.2 High Version pom version 1.1.2 Highest
aspectjweaver-1.9.22.1.jarDescription:
The AspectJ weaver applies aspects to Java classes. It can be used as a Java agent in order to apply load-time
weaving (LTW) during class-loading and also contains the AspectJ runtime classes. License:
Eclipse Public License - v 2.0: https://www.eclipse.org/org/documents/epl-2.0/EPL-2.0.txt File Path: /home/runner/.m2/repository/org/aspectj/aspectjweaver/1.9.22.1/aspectjweaver-1.9.22.1.jar
MD5: f2edbc088126174a11b68279bd26c6eb
SHA1: bca243d0af0db4758fbae45c5f4995cb5dabb612
SHA256: cd2dd01ec2424c05669df4d557f6c6cd7ed87b05257ee3c866b4c5b116b18a78
Referenced In Project/Scope: Planmonitor Wonen API:compile
aspectjweaver-1.9.22.1.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.springframework.boot/spring-boot-starter-aop@3.3.5
Evidence Type Source Name Value Confidence Vendor file name aspectjweaver High Vendor jar package name agent Highest Vendor jar package name and Highest Vendor jar package name aspectj Highest Vendor jar package name aspects Highest Vendor jar package name ltw Highest Vendor jar package name org Highest Vendor jar package name runtime Highest Vendor jar package name weaver Highest Vendor Manifest automatic-module-name org.aspectj.weaver Medium Vendor Manifest can-redefine-classes true Low Vendor manifest: org/aspectj/weaver/ Implementation-Vendor https://www.eclipse.org/aspectj/ Medium Vendor pom artifactid aspectjweaver Highest Vendor pom artifactid aspectjweaver Low Vendor pom developer email aclement@vmware.com Low Vendor pom developer email kriegaex@aspectj.dev Low Vendor pom developer id aclement Medium Vendor pom developer id kriegaex Medium Vendor pom developer name Alexander Kriegisch Medium Vendor pom developer name Andy Clement Medium Vendor pom groupid org.aspectj Highest Vendor pom name AspectJ Weaver High Vendor pom url https://www.eclipse.org/aspectj/ Highest Product file name aspectjweaver High Product jar package name agent Highest Product jar package name and Highest Product jar package name aspectj Highest Product jar package name aspects Highest Product jar package name ltw Highest Product jar package name org Highest Product jar package name runtime Highest Product jar package name weaver Highest Product Manifest automatic-module-name org.aspectj.weaver Medium Product Manifest can-redefine-classes true Low Product manifest: org/aspectj/weaver/ Implementation-Title org.aspectj.weaver Medium Product manifest: org/aspectj/weaver/ Specification-Title AspectJ Weaver Classes Medium Product pom artifactid aspectjweaver Highest Product pom developer email aclement@vmware.com Low Product pom developer email kriegaex@aspectj.dev Low Product pom developer id aclement Low Product pom developer id kriegaex Low Product pom developer name Alexander Kriegisch Low Product pom developer name Andy Clement Low Product pom groupid org.aspectj Highest Product pom name AspectJ Weaver High Product pom url https://www.eclipse.org/aspectj/ Medium Version file version 1.9.22.1 High Version manifest: org/aspectj/weaver/ Implementation-Version 1.9.22.1 Medium Version pom version 1.9.22.1 Highest
checker-qual-3.42.0.jarDescription:
checker-qual contains annotations (type qualifiers) that a programmer
writes to specify Java code for type-checking by the Checker Framework.
License:
The MIT License: http://opensource.org/licenses/MIT File Path: /home/runner/.m2/repository/org/checkerframework/checker-qual/3.42.0/checker-qual-3.42.0.jar
MD5: 4c55448dcbfe9c3702f7758fc8fe0086
SHA1: 638ec33f363a94d41a4f03c3e7d3dcfba64e402d
SHA256: ccaedd33af0b7894d9f2f3b644f4d19e43928e32902e61ac4d10777830f5aac7
Referenced In Project/Scope: Planmonitor Wonen API:runtime
checker-qual-3.42.0.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.postgresql/postgresql@42.7.4
Evidence Type Source Name Value Confidence Vendor file name checker-qual High Vendor jar package name checker Highest Vendor jar package name checkerframework Highest Vendor jar package name framework Highest Vendor jar package name qual Highest Vendor Manifest automatic-module-name org.checkerframework.checker.qual Medium Vendor Manifest bundle-symbolicname checker-qual Medium Vendor Manifest implementation-url https://checkerframework.org Low Vendor pom artifactid checker-qual Highest Vendor pom artifactid checker-qual Low Vendor pom developer email mernst@cs.washington.edu Low Vendor pom developer email smillst@cs.washington.edu Low Vendor pom developer id mernst Medium Vendor pom developer id smillst Medium Vendor pom developer name Michael Ernst Medium Vendor pom developer name Suzanne Millstein Medium Vendor pom developer org University of Washington Medium Vendor pom developer org URL https://www.cs.washington.edu/ Medium Vendor pom groupid org.checkerframework Highest Vendor pom name Checker Qual High Vendor pom url https://checkerframework.org/ Highest Product file name checker-qual High Product jar package name checker Highest Product jar package name checkerframework Highest Product jar package name framework Highest Product jar package name qual Highest Product Manifest automatic-module-name org.checkerframework.checker.qual Medium Product Manifest Bundle-Name checker-qual Medium Product Manifest bundle-symbolicname checker-qual Medium Product Manifest implementation-url https://checkerframework.org Low Product pom artifactid checker-qual Highest Product pom developer email mernst@cs.washington.edu Low Product pom developer email smillst@cs.washington.edu Low Product pom developer id mernst Low Product pom developer id smillst Low Product pom developer name Michael Ernst Low Product pom developer name Suzanne Millstein Low Product pom developer org University of Washington Low Product pom developer org URL https://www.cs.washington.edu/ Low Product pom groupid org.checkerframework Highest Product pom name Checker Qual High Product pom url https://checkerframework.org/ Medium Version file version 3.42.0 High Version Manifest Bundle-Version 3.42.0 High Version Manifest Implementation-Version 3.42.0 High Version pom version 3.42.0 Highest
commons-codec-1.16.1.jarDescription:
The Apache Commons Codec component contains encoder and decoders for
various formats such as Base16, Base32, Base64, digest, and Hexadecimal. In addition to these
widely used encoders and decoders, the codec package also maintains a
collection of phonetic encoding utilities.
License:
https://www.apache.org/licenses/LICENSE-2.0.txt File Path: /home/runner/.m2/repository/commons-codec/commons-codec/1.16.1/commons-codec-1.16.1.jar
MD5: 6c5be822d8d3fa61c3b54c4c8978dfdc
SHA1: 47bd4d333fba53406f6c6c51884ddbca435c8862
SHA256: ec87bfb55f22cbd1b21e2190eeda28b2b312ed2a431ee49fbdcc01812d04a5e4
Referenced In Project/Scope: Planmonitor Wonen API:compile
commons-codec-1.16.1.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.geotools/gt-wfs-ng@32.0
Evidence Type Source Name Value Confidence Vendor file name commons-codec High Vendor jar package name apache Highest Vendor jar package name codec Highest Vendor jar package name commons Highest Vendor jar package name digest Highest Vendor jar package name encoder Highest Vendor Manifest automatic-module-name org.apache.commons.codec Medium Vendor Manifest build-jdk-spec 21 Low Vendor Manifest bundle-docurl https://commons.apache.org/proper/commons-codec/ Low Vendor Manifest bundle-symbolicname org.apache.commons.commons-codec Medium Vendor Manifest Implementation-Vendor The Apache Software Foundation High Vendor Manifest multi-release true Low Vendor Manifest specification-vendor The Apache Software Foundation Low Vendor pom artifactid commons-codec Highest Vendor pom artifactid commons-codec Low Vendor pom developer email bayard@apache.org Low Vendor pom developer email chtompki@apache.org Low Vendor pom developer email dgraham@apache.org Low Vendor pom developer email dlr@finemaltcoding.com Low Vendor pom developer email ggregory at apache.org Low Vendor pom developer email jon@collab.net Low Vendor pom developer email julius@apache.org Low Vendor pom developer email mattsicker@apache.org Low Vendor pom developer email rwaldhoff@apache.org Low Vendor pom developer email sanders@totalsync.com Low Vendor pom developer email tn@apache.org Low Vendor pom developer email tobrien@apache.org Low Vendor pom developer id bayard Medium Vendor pom developer id chtompki Medium Vendor pom developer id dgraham Medium Vendor pom developer id dlr Medium Vendor pom developer id ggregory Medium Vendor pom developer id jon Medium Vendor pom developer id julius Medium Vendor pom developer id mattsicker Medium Vendor pom developer id rwaldhoff Medium Vendor pom developer id sanders Medium Vendor pom developer id tn Medium Vendor pom developer id tobrien Medium Vendor pom developer name Daniel Rall Medium Vendor pom developer name David Graham Medium Vendor pom developer name Gary Gregory Medium Vendor pom developer name Henri Yandell Medium Vendor pom developer name Jon S. Stevens Medium Vendor pom developer name Julius Davies Medium Vendor pom developer name Matt Sicker Medium Vendor pom developer name Rob Tompkins Medium Vendor pom developer name Rodney Waldhoff Medium Vendor pom developer name Scott Sanders Medium Vendor pom developer name Thomas Neidhart Medium Vendor pom developer name Tim OBrien Medium Vendor pom developer org The Apache Software Foundation Medium Vendor pom developer org URL http://juliusdavies.ca/ Medium Vendor pom developer org URL https://www.apache.org/ Medium Vendor pom groupid commons-codec Highest Vendor pom name Apache Commons Codec High Vendor pom parent-artifactid commons-parent Low Vendor pom parent-groupid org.apache.commons Medium Vendor pom url https://commons.apache.org/proper/commons-codec/ Highest Product file name commons-codec High Product jar package name apache Highest Product jar package name codec Highest Product jar package name commons Highest Product jar package name digest Highest Product jar package name encoder Highest Product Manifest automatic-module-name org.apache.commons.codec Medium Product Manifest build-jdk-spec 21 Low Product Manifest bundle-docurl https://commons.apache.org/proper/commons-codec/ Low Product Manifest Bundle-Name Apache Commons Codec Medium Product Manifest bundle-symbolicname org.apache.commons.commons-codec Medium Product Manifest Implementation-Title Apache Commons Codec High Product Manifest multi-release true Low Product Manifest specification-title Apache Commons Codec Medium Product pom artifactid commons-codec Highest Product pom developer email bayard@apache.org Low Product pom developer email chtompki@apache.org Low Product pom developer email dgraham@apache.org Low Product pom developer email dlr@finemaltcoding.com Low Product pom developer email ggregory at apache.org Low Product pom developer email jon@collab.net Low Product pom developer email julius@apache.org Low Product pom developer email mattsicker@apache.org Low Product pom developer email rwaldhoff@apache.org Low Product pom developer email sanders@totalsync.com Low Product pom developer email tn@apache.org Low Product pom developer email tobrien@apache.org Low Product pom developer id bayard Low Product pom developer id chtompki Low Product pom developer id dgraham Low Product pom developer id dlr Low Product pom developer id ggregory Low Product pom developer id jon Low Product pom developer id julius Low Product pom developer id mattsicker Low Product pom developer id rwaldhoff Low Product pom developer id sanders Low Product pom developer id tn Low Product pom developer id tobrien Low Product pom developer name Daniel Rall Low Product pom developer name David Graham Low Product pom developer name Gary Gregory Low Product pom developer name Henri Yandell Low Product pom developer name Jon S. Stevens Low Product pom developer name Julius Davies Low Product pom developer name Matt Sicker Low Product pom developer name Rob Tompkins Low Product pom developer name Rodney Waldhoff Low Product pom developer name Scott Sanders Low Product pom developer name Thomas Neidhart Low Product pom developer name Tim OBrien Low Product pom developer org The Apache Software Foundation Low Product pom developer org URL http://juliusdavies.ca/ Low Product pom developer org URL https://www.apache.org/ Low Product pom groupid commons-codec Highest Product pom name Apache Commons Codec High Product pom parent-artifactid commons-parent Medium Product pom parent-groupid org.apache.commons Medium Product pom url https://commons.apache.org/proper/commons-codec/ Medium Version file version 1.16.1 High Version Manifest Bundle-Version 1.16.1 High Version Manifest Implementation-Version 1.16.1 High Version pom parent-version 1.16.1 Low Version pom version 1.16.1 Highest
commons-collections4-4.4.jarDescription:
The Apache Commons Collections package contains types that extend and augment the Java Collections Framework. License:
https://www.apache.org/licenses/LICENSE-2.0.txt File Path: /home/runner/.m2/repository/org/apache/commons/commons-collections4/4.4/commons-collections4-4.4.jar
MD5: 4a37023740719b391f10030362c86be6
SHA1: 62ebe7544cb7164d87e0637a2a6a2bdc981395e8
SHA256: 1df8b9430b5c8ed143d7815e403e33ef5371b2400aadbe9bda0883762e0846d1
Referenced In Project/Scope: Planmonitor Wonen API:compile
commons-collections4-4.4.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.geotools/gt-wfs-ng@32.0
Evidence Type Source Name Value Confidence Vendor file name commons-collections4 High Vendor jar package name apache Highest Vendor jar package name collections4 Highest Vendor jar package name commons Highest Vendor Manifest automatic-module-name org.apache.commons.collections4 Medium Vendor Manifest bundle-docurl https://commons.apache.org/proper/commons-collections/ Low Vendor Manifest bundle-symbolicname org.apache.commons.commons-collections4 Medium Vendor Manifest implementation-url https://commons.apache.org/proper/commons-collections/ Low Vendor Manifest Implementation-Vendor The Apache Software Foundation High Vendor Manifest Implementation-Vendor-Id org.apache.commons Medium Vendor Manifest specification-vendor The Apache Software Foundation Low Vendor pom artifactid commons-collections4 Highest Vendor pom artifactid commons-collections4 Low Vendor pom developer id adriannistor Medium Vendor pom developer id amamment Medium Vendor pom developer id bayard Medium Vendor pom developer id chtompki Medium Vendor pom developer id craigmcc Medium Vendor pom developer id dlaha Medium Vendor pom developer id geirm Medium Vendor pom developer id ggregory Medium Vendor pom developer id jcarman Medium Vendor pom developer id luc Medium Vendor pom developer id matth Medium Vendor pom developer id mbenson Medium Vendor pom developer id morgand Medium Vendor pom developer id rdonkin Medium Vendor pom developer id rwaldhoff Medium Vendor pom developer id scolebourne Medium Vendor pom developer id tn Medium Vendor pom developer name Adrian Nistor Medium Vendor pom developer name Arun M. Thomas Medium Vendor pom developer name Craig McClanahan Medium Vendor pom developer name Dipanjan Laha Medium Vendor pom developer name Gary Gregory Medium Vendor pom developer name Geir Magnusson Medium Vendor pom developer name Henri Yandell Medium Vendor pom developer name James Carman Medium Vendor pom developer name Luc Maisonobe Medium Vendor pom developer name Matt Benson Medium Vendor pom developer name Matthew Hawthorne Medium Vendor pom developer name Morgan Delagrange Medium Vendor pom developer name Rob Tompkins Medium Vendor pom developer name Robert Burrell Donkin Medium Vendor pom developer name Rodney Waldhoff Medium Vendor pom developer name Stephen Colebourne Medium Vendor pom developer name Thomas Neidhart Medium Vendor pom groupid org.apache.commons Highest Vendor pom name Apache Commons Collections High Vendor pom parent-artifactid commons-parent Low Vendor pom url https://commons.apache.org/proper/commons-collections/ Highest Product file name commons-collections4 High Product jar package name apache Highest Product jar package name collections4 Highest Product jar package name commons Highest Product Manifest automatic-module-name org.apache.commons.collections4 Medium Product Manifest bundle-docurl https://commons.apache.org/proper/commons-collections/ Low Product Manifest Bundle-Name Apache Commons Collections Medium Product Manifest bundle-symbolicname org.apache.commons.commons-collections4 Medium Product Manifest Implementation-Title Apache Commons Collections High Product Manifest implementation-url https://commons.apache.org/proper/commons-collections/ Low Product Manifest specification-title Apache Commons Collections Medium Product pom artifactid commons-collections4 Highest Product pom developer id adriannistor Low Product pom developer id amamment Low Product pom developer id bayard Low Product pom developer id chtompki Low Product pom developer id craigmcc Low Product pom developer id dlaha Low Product pom developer id geirm Low Product pom developer id ggregory Low Product pom developer id jcarman Low Product pom developer id luc Low Product pom developer id matth Low Product pom developer id mbenson Low Product pom developer id morgand Low Product pom developer id rdonkin Low Product pom developer id rwaldhoff Low Product pom developer id scolebourne Low Product pom developer id tn Low Product pom developer name Adrian Nistor Low Product pom developer name Arun M. Thomas Low Product pom developer name Craig McClanahan Low Product pom developer name Dipanjan Laha Low Product pom developer name Gary Gregory Low Product pom developer name Geir Magnusson Low Product pom developer name Henri Yandell Low Product pom developer name James Carman Low Product pom developer name Luc Maisonobe Low Product pom developer name Matt Benson Low Product pom developer name Matthew Hawthorne Low Product pom developer name Morgan Delagrange Low Product pom developer name Rob Tompkins Low Product pom developer name Robert Burrell Donkin Low Product pom developer name Rodney Waldhoff Low Product pom developer name Stephen Colebourne Low Product pom developer name Thomas Neidhart Low Product pom groupid org.apache.commons Highest Product pom name Apache Commons Collections High Product pom parent-artifactid commons-parent Medium Product pom url https://commons.apache.org/proper/commons-collections/ Medium Version file version 4.4 High Version Manifest Implementation-Version 4.4 High Version pom parent-version 4.4 Low Version pom version 4.4 Highest
commons-io-2.16.1.jarDescription:
The Apache Commons IO library contains utility classes, stream implementations, file filters,
file comparators, endian transformation classes, and much more.
License:
https://www.apache.org/licenses/LICENSE-2.0.txt File Path: /home/runner/.m2/repository/commons-io/commons-io/2.16.1/commons-io-2.16.1.jar
MD5: ed8191a5a217940140001b0acfed18d9
SHA1: 377d592e740dc77124e0901291dbfaa6810a200e
SHA256: f41f7baacd716896447ace9758621f62c1c6b0a91d89acee488da26fc477c84f
Referenced In Project/Scope: Planmonitor Wonen API:compile
commons-io-2.16.1.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.geotools/gt-wfs-ng@32.0
Evidence Type Source Name Value Confidence Vendor file name commons-io High Vendor jar package name apache Highest Vendor jar package name commons Highest Vendor jar package name file Highest Vendor jar package name io Highest Vendor Manifest automatic-module-name org.apache.commons.io Medium Vendor Manifest build-jdk-spec 17 Low Vendor Manifest bundle-docurl https://commons.apache.org/proper/commons-io/ Low Vendor Manifest bundle-symbolicname org.apache.commons.commons-io Medium Vendor Manifest Implementation-Vendor The Apache Software Foundation High Vendor Manifest multi-release true Low Vendor Manifest specification-vendor The Apache Software Foundation Low Vendor pom artifactid commons-io Highest Vendor pom artifactid commons-io Low Vendor pom developer email bayard@apache.org Low Vendor pom developer email dion@apache.org Low Vendor pom developer email ggregory at apache.org Low Vendor pom developer email jeremias@apache.org Low Vendor pom developer email jochen.wiedmann@gmail.com Low Vendor pom developer email krosenvold@apache.org Low Vendor pom developer email martinc@apache.org Low Vendor pom developer email matth@apache.org Low Vendor pom developer email nicolaken@apache.org Low Vendor pom developer email roxspring@apache.org Low Vendor pom developer email sanders@apache.org Low Vendor pom developer id bayard Medium Vendor pom developer id dion Medium Vendor pom developer id ggregory Medium Vendor pom developer id jeremias Medium Vendor pom developer id jochen Medium Vendor pom developer id jukka Medium Vendor pom developer id krosenvold Medium Vendor pom developer id martinc Medium Vendor pom developer id matth Medium Vendor pom developer id niallp Medium Vendor pom developer id nicolaken Medium Vendor pom developer id roxspring Medium Vendor pom developer id sanders Medium Vendor pom developer id scolebourne Medium Vendor pom developer name dIon Gillard Medium Vendor pom developer name Gary Gregory Medium Vendor pom developer name Henri Yandell Medium Vendor pom developer name Jeremias Maerki Medium Vendor pom developer name Jochen Wiedmann Medium Vendor pom developer name Jukka Zitting Medium Vendor pom developer name Kristian Rosenvold Medium Vendor pom developer name Martin Cooper Medium Vendor pom developer name Matthew Hawthorne Medium Vendor pom developer name Niall Pemberton Medium Vendor pom developer name Nicola Ken Barozzi Medium Vendor pom developer name Rob Oxspring Medium Vendor pom developer name Scott Sanders Medium Vendor pom developer name Stephen Colebourne Medium Vendor pom developer org The Apache Software Foundation Medium Vendor pom developer org URL https://www.apache.org/ Medium Vendor pom groupid commons-io Highest Vendor pom name Apache Commons IO High Vendor pom parent-artifactid commons-parent Low Vendor pom parent-groupid org.apache.commons Medium Vendor pom url https://commons.apache.org/proper/commons-io/ Highest Product file name commons-io High Product jar package name apache Highest Product jar package name commons Highest Product jar package name file Highest Product jar package name io Highest Product Manifest automatic-module-name org.apache.commons.io Medium Product Manifest build-jdk-spec 17 Low Product Manifest bundle-docurl https://commons.apache.org/proper/commons-io/ Low Product Manifest Bundle-Name Apache Commons IO Medium Product Manifest bundle-symbolicname org.apache.commons.commons-io Medium Product Manifest Implementation-Title Apache Commons IO High Product Manifest multi-release true Low Product Manifest specification-title Apache Commons IO Medium Product pom artifactid commons-io Highest Product pom developer email bayard@apache.org Low Product pom developer email dion@apache.org Low Product pom developer email ggregory at apache.org Low Product pom developer email jeremias@apache.org Low Product pom developer email jochen.wiedmann@gmail.com Low Product pom developer email krosenvold@apache.org Low Product pom developer email martinc@apache.org Low Product pom developer email matth@apache.org Low Product pom developer email nicolaken@apache.org Low Product pom developer email roxspring@apache.org Low Product pom developer email sanders@apache.org Low Product pom developer id bayard Low Product pom developer id dion Low Product pom developer id ggregory Low Product pom developer id jeremias Low Product pom developer id jochen Low Product pom developer id jukka Low Product pom developer id krosenvold Low Product pom developer id martinc Low Product pom developer id matth Low Product pom developer id niallp Low Product pom developer id nicolaken Low Product pom developer id roxspring Low Product pom developer id sanders Low Product pom developer id scolebourne Low Product pom developer name dIon Gillard Low Product pom developer name Gary Gregory Low Product pom developer name Henri Yandell Low Product pom developer name Jeremias Maerki Low Product pom developer name Jochen Wiedmann Low Product pom developer name Jukka Zitting Low Product pom developer name Kristian Rosenvold Low Product pom developer name Martin Cooper Low Product pom developer name Matthew Hawthorne Low Product pom developer name Niall Pemberton Low Product pom developer name Nicola Ken Barozzi Low Product pom developer name Rob Oxspring Low Product pom developer name Scott Sanders Low Product pom developer name Stephen Colebourne Low Product pom developer org The Apache Software Foundation Low Product pom developer org URL https://www.apache.org/ Low Product pom groupid commons-io Highest Product pom name Apache Commons IO High Product pom parent-artifactid commons-parent Medium Product pom parent-groupid org.apache.commons Medium Product pom url https://commons.apache.org/proper/commons-io/ Medium Version file version 2.16.1 High Version Manifest Bundle-Version 2.16.1 High Version Manifest Implementation-Version 2.16.1 High Version pom parent-version 2.16.1 Low Version pom version 2.16.1 Highest
commons-jxpath-1.3.jarDescription:
A Java-based implementation of XPath 1.0 that, in addition to XML processing, can inspect/modify Java object graphs (the library's explicit purpose) and even mixed Java/XML structures. License:
http://www.apache.org/licenses/LICENSE-2.0.txt File Path: /home/runner/.m2/repository/commons-jxpath/commons-jxpath/1.3/commons-jxpath-1.3.jar
MD5: 61a9aa8ff43ba10853571d57f724bf88
SHA1: c22d7d0f0f40eb7059a23cfa61773a416768b137
SHA256: fcbc0ad917d9d6a73c6df21fac322e00d213ef19cd94815a007c407a8a3ff449
Referenced In Project/Scope: Planmonitor Wonen API:compile
commons-jxpath-1.3.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.geotools/gt-wfs-ng@32.0
Evidence Type Source Name Value Confidence Vendor file name commons-jxpath High Vendor jar package name apache Highest Vendor jar package name commons Highest Vendor jar package name jxpath Highest Vendor jar package name xml Highest Vendor Manifest bundle-docurl http://commons.apache.org/jxpath/ Low Vendor Manifest bundle-symbolicname org.apache.commons.jxpath Medium Vendor Manifest Implementation-Vendor The Apache Software Foundation High Vendor Manifest Implementation-Vendor-Id org.apache Medium Vendor Manifest specification-vendor The Apache Software Foundation Low Vendor pom artifactid commons-jxpath Highest Vendor pom artifactid commons-jxpath Low Vendor pom developer email Craig.McClanahan@eng.sun.com Low Vendor pom developer email dmitri@apache.org Low Vendor pom developer email mbenson@apache.org Low Vendor pom developer id craigmcc Medium Vendor pom developer id dmitri Medium Vendor pom developer id mbenson Medium Vendor pom developer name Craig McClanahan Medium Vendor pom developer name Dmitri Plotnikov Medium Vendor pom developer name Matt Benson Medium Vendor pom developer org Sun Microsystems Medium Vendor pom groupid commons-jxpath Highest Vendor pom name Commons JXPath High Vendor pom parent-artifactid commons-parent Low Vendor pom parent-groupid org.apache.commons Medium Vendor pom url http://commons.apache.org/jxpath/ Highest Product file name commons-jxpath High Product jar package name apache Highest Product jar package name commons Highest Product jar package name jxpath Highest Product jar package name xml Highest Product Manifest bundle-docurl http://commons.apache.org/jxpath/ Low Product Manifest Bundle-Name Commons JXPath Medium Product Manifest bundle-symbolicname org.apache.commons.jxpath Medium Product Manifest Implementation-Title Commons JXPath High Product Manifest specification-title Commons JXPath Medium Product pom artifactid commons-jxpath Highest Product pom developer email Craig.McClanahan@eng.sun.com Low Product pom developer email dmitri@apache.org Low Product pom developer email mbenson@apache.org Low Product pom developer id craigmcc Low Product pom developer id dmitri Low Product pom developer id mbenson Low Product pom developer name Craig McClanahan Low Product pom developer name Dmitri Plotnikov Low Product pom developer name Matt Benson Low Product pom developer org Sun Microsystems Low Product pom groupid commons-jxpath Highest Product pom name Commons JXPath High Product pom parent-artifactid commons-parent Medium Product pom parent-groupid org.apache.commons Medium Product pom url http://commons.apache.org/jxpath/ Medium Version file version 1.3 High Version Manifest Bundle-Version 1.3 High Version Manifest Implementation-Version 1.3 High Version pom parent-version 1.3 Low Version pom version 1.3 Highest
CVE-2022-41852 (OSSINDEX) suppress
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none.
Sonatype's research suggests that this CVE's details differ from those defined at NVD. See https://ossindex.sonatype.org/vulnerability/CVE-2022-41852 for details CWE-470 Use of Externally-Controlled Input to Select Classes or Code ('Unsafe Reflection')
CVSSv3:
Base Score: CRITICAL (9.800000190734863) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H References:
Vulnerable Software & Versions (OSSINDEX):
cpe:2.3:a:commons-jxpath:commons-jxpath:1.3:*:*:*:*:*:*:* CVE-2022-40159 suppress
** DISPUTED ** This record was originally reported by the oss-fuzz project who failed to consider the security context in which JXPath is intended to be used and failed to contact the JXPath maintainers prior to requesting the CVE allocation. The CVE was then allocated by Google in breach of the CNA rules. After review by the JXPath maintainers, the original report was found to be invalid. CWE-787 Out-of-bounds Write, CWE-121 Stack-based Buffer Overflow
CVSSv3:
Base Score: MEDIUM (6.5) Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H/E:2.8/RC:R/MAV:A References:
Vulnerable Software & Versions:
CVE-2022-40160 suppress
** DISPUTED ** This record was originally reported by the oss-fuzz project who failed to consider the security context in which JXPath is intended to be used and failed to contact the JXPath maintainers prior to requesting the CVE allocation. The CVE was then allocated by Google in breach of the CNA rules. After review by the JXPath maintainers, the original report was found to be invalid. CWE-787 Out-of-bounds Write, CWE-121 Stack-based Buffer Overflow
CVSSv3:
Base Score: MEDIUM (6.5) Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H/E:2.8/RC:R/MAV:A References:
Vulnerable Software & Versions:
commons-lang3-3.16.0.jarDescription:
Apache Commons Lang, a package of Java utility classes for the
classes that are in java.lang's hierarchy, or are considered to be so
standard as to justify existence in java.lang.
The code is tested using the latest revision of the JDK for supported
LTS releases: 8, 11, 17 and 21 currently.
See https://github.com/apache/commons-lang/blob/master/.github/workflows/maven.yml
Please ensure your build environment is up-to-date and kindly report any build issues.
License:
https://www.apache.org/licenses/LICENSE-2.0.txt File Path: /home/runner/.m2/repository/org/apache/commons/commons-lang3/3.16.0/commons-lang3-3.16.0.jar
MD5: 67bc6dbd753fc276d69aeb4cfa205e15
SHA1: 3eb54effe40946dfb06dc5cd6c7ce4116cd51ea4
SHA256: 08709dd74d602b705ce4017d26544210056a4ba583d5b20c09373406fe7a00f8
Referenced In Project/Scope: Planmonitor Wonen API:compile
commons-lang3-3.16.0.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/nl.b3p.pmw/planmonitor-wonen-api@1.0.0-SNAPSHOT
Evidence Type Source Name Value Confidence Vendor file name commons-lang3 High Vendor jar package name apache Highest Vendor jar package name commons Highest Vendor jar package name lang3 Highest Vendor Manifest automatic-module-name org.apache.commons.lang3 Medium Vendor Manifest build-jdk-spec 21 Low Vendor Manifest bundle-docurl https://commons.apache.org/proper/commons-lang/ Low Vendor Manifest bundle-symbolicname org.apache.commons.lang3 Medium Vendor Manifest Implementation-Vendor The Apache Software Foundation High Vendor Manifest multi-release true Low Vendor Manifest specification-vendor The Apache Software Foundation Low Vendor pom artifactid commons-lang3 Highest Vendor pom artifactid commons-lang3 Low Vendor pom developer email bayard@apache.org Low Vendor pom developer email britter@apache.org Low Vendor pom developer email chtompki@apache.org Low Vendor pom developer email djones@apache.org Low Vendor pom developer email dlr@finemaltcoding.com Low Vendor pom developer email ggregory at apache.org Low Vendor pom developer email jcarman@apache.org Low Vendor pom developer email joerg.schaible@gmx.de Low Vendor pom developer email lguibert@apache.org Low Vendor pom developer email oheger@apache.org Low Vendor pom developer email pbenedict@apache.org Low Vendor pom developer email rdonkin@apache.org Low Vendor pom developer email scolebourne@joda.org Low Vendor pom developer email stevencaswell@apache.org Low Vendor pom developer id bayard Medium Vendor pom developer id britter Medium Vendor pom developer id chtompki Medium Vendor pom developer id djones Medium Vendor pom developer id dlr Medium Vendor pom developer id fredrik Medium Vendor pom developer id ggregory Medium Vendor pom developer id jcarman Medium Vendor pom developer id joehni Medium Vendor pom developer id lguibert Medium Vendor pom developer id mbenson Medium Vendor pom developer id niallp Medium Vendor pom developer id oheger Medium Vendor pom developer id pbenedict Medium Vendor pom developer id rdonkin Medium Vendor pom developer id scaswell Medium Vendor pom developer id scolebourne Medium Vendor pom developer name Benedikt Ritter Medium Vendor pom developer name Daniel Rall Medium Vendor pom developer name Duncan Jones Medium Vendor pom developer name Fredrik Westermarck Medium Vendor pom developer name Gary Gregory Medium Vendor pom developer name Henri Yandell Medium Vendor pom developer name James Carman Medium Vendor pom developer name Joerg Schaible Medium Vendor pom developer name Loic Guibert Medium Vendor pom developer name Matt Benson Medium Vendor pom developer name Niall Pemberton Medium Vendor pom developer name Oliver Heger Medium Vendor pom developer name Paul Benedict Medium Vendor pom developer name Rob Tompkins Medium Vendor pom developer name Robert Burrell Donkin Medium Vendor pom developer name Stephen Colebourne Medium Vendor pom developer name Steven Caswell Medium Vendor pom developer org Carman Consulting, Inc. Medium Vendor pom developer org CollabNet, Inc. Medium Vendor pom developer org SITA ATS Ltd Medium Vendor pom developer org The Apache Software Foundation Medium Vendor pom developer org URL https://www.apache.org/ Medium Vendor pom groupid org.apache.commons Highest Vendor pom name Apache Commons Lang High Vendor pom parent-artifactid commons-parent Low Vendor pom url https://commons.apache.org/proper/commons-lang/ Highest Product file name commons-lang3 High Product jar package name apache Highest Product jar package name commons Highest Product jar package name lang3 Highest Product Manifest automatic-module-name org.apache.commons.lang3 Medium Product Manifest build-jdk-spec 21 Low Product Manifest bundle-docurl https://commons.apache.org/proper/commons-lang/ Low Product Manifest Bundle-Name Apache Commons Lang Medium Product Manifest bundle-symbolicname org.apache.commons.lang3 Medium Product Manifest Implementation-Title Apache Commons Lang High Product Manifest multi-release true Low Product Manifest specification-title Apache Commons Lang Medium Product pom artifactid commons-lang3 Highest Product pom developer email bayard@apache.org Low Product pom developer email britter@apache.org Low Product pom developer email chtompki@apache.org Low Product pom developer email djones@apache.org Low Product pom developer email dlr@finemaltcoding.com Low Product pom developer email ggregory at apache.org Low Product pom developer email jcarman@apache.org Low Product pom developer email joerg.schaible@gmx.de Low Product pom developer email lguibert@apache.org Low Product pom developer email oheger@apache.org Low Product pom developer email pbenedict@apache.org Low Product pom developer email rdonkin@apache.org Low Product pom developer email scolebourne@joda.org Low Product pom developer email stevencaswell@apache.org Low Product pom developer id bayard Low Product pom developer id britter Low Product pom developer id chtompki Low Product pom developer id djones Low Product pom developer id dlr Low Product pom developer id fredrik Low Product pom developer id ggregory Low Product pom developer id jcarman Low Product pom developer id joehni Low Product pom developer id lguibert Low Product pom developer id mbenson Low Product pom developer id niallp Low Product pom developer id oheger Low Product pom developer id pbenedict Low Product pom developer id rdonkin Low Product pom developer id scaswell Low Product pom developer id scolebourne Low Product pom developer name Benedikt Ritter Low Product pom developer name Daniel Rall Low Product pom developer name Duncan Jones Low Product pom developer name Fredrik Westermarck Low Product pom developer name Gary Gregory Low Product pom developer name Henri Yandell Low Product pom developer name James Carman Low Product pom developer name Joerg Schaible Low Product pom developer name Loic Guibert Low Product pom developer name Matt Benson Low Product pom developer name Niall Pemberton Low Product pom developer name Oliver Heger Low Product pom developer name Paul Benedict Low Product pom developer name Rob Tompkins Low Product pom developer name Robert Burrell Donkin Low Product pom developer name Stephen Colebourne Low Product pom developer name Steven Caswell Low Product pom developer org Carman Consulting, Inc. Low Product pom developer org CollabNet, Inc. Low Product pom developer org SITA ATS Ltd Low Product pom developer org The Apache Software Foundation Low Product pom developer org URL https://www.apache.org/ Low Product pom groupid org.apache.commons Highest Product pom name Apache Commons Lang High Product pom parent-artifactid commons-parent Medium Product pom url https://commons.apache.org/proper/commons-lang/ Medium Version file version 3.16.0 High Version Manifest Bundle-Version 3.16.0 High Version Manifest Implementation-Version 3.16.0 High Version pom parent-version 3.16.0 Low Version pom version 3.16.0 Highest
commons-pool-1.6.jarDescription:
Commons Object Pooling Library License:
http://www.apache.org/licenses/LICENSE-2.0.txt File Path: /home/runner/.m2/repository/commons-pool/commons-pool/1.6/commons-pool-1.6.jar
MD5: 5ca02245c829422176d23fa530e919cc
SHA1: 4572d589699f09d866a226a14b7f4323c6d8f040
SHA256: 46c42b4a38dc6b2db53a9ee5c92c63db103665d56694e2cfce2c95d51a6860cc
Referenced In Project/Scope: Planmonitor Wonen API:compile
commons-pool-1.6.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.geotools/gt-main@32.0
Evidence Type Source Name Value Confidence Vendor file name commons-pool High Vendor jar package name apache Highest Vendor jar package name commons Highest Vendor jar package name pool Highest Vendor Manifest bundle-docurl http://commons.apache.org/pool/ Low Vendor Manifest bundle-symbolicname org.apache.commons.pool Medium Vendor Manifest implementation-build UNKNOWN_BRANCH@r??????; 2012-01-04 10:31:47-0500 Low Vendor Manifest Implementation-Vendor The Apache Software Foundation High Vendor Manifest Implementation-Vendor-Id org.apache Medium Vendor Manifest specification-vendor The Apache Software Foundation Low Vendor pom artifactid commons-pool Highest Vendor pom artifactid commons-pool Low Vendor pom developer id craigmcc Medium Vendor pom developer id dirkv Medium Vendor pom developer id dweinr1 Medium Vendor pom developer id geirm Medium Vendor pom developer id ggregory Medium Vendor pom developer id morgand Medium Vendor pom developer id rdonkin Medium Vendor pom developer id rwaldhoff Medium Vendor pom developer id sandymac Medium Vendor pom developer name Craig McClanahan Medium Vendor pom developer name David Weinrich Medium Vendor pom developer name Dirk Verbeeck Medium Vendor pom developer name Gary Gregory Medium Vendor pom developer name Geir Magnusson Medium Vendor pom developer name Morgan Delagrange Medium Vendor pom developer name Robert Burrell Donkin Medium Vendor pom developer name Rodney Waldhoff Medium Vendor pom developer name Sandy McArthur Medium Vendor pom developer org Apache Software Foundation Medium Vendor pom groupid commons-pool Highest Vendor pom name Commons Pool High Vendor pom parent-artifactid commons-parent Low Vendor pom parent-groupid org.apache.commons Medium Vendor pom url http://commons.apache.org/pool/ Highest Product file name commons-pool High Product jar package name apache Highest Product jar package name commons Highest Product jar package name pool Highest Product Manifest bundle-docurl http://commons.apache.org/pool/ Low Product Manifest Bundle-Name Commons Pool Medium Product Manifest bundle-symbolicname org.apache.commons.pool Medium Product Manifest implementation-build UNKNOWN_BRANCH@r??????; 2012-01-04 10:31:47-0500 Low Product Manifest Implementation-Title Commons Pool High Product Manifest specification-title Commons Pool Medium Product pom artifactid commons-pool Highest Product pom developer id craigmcc Low Product pom developer id dirkv Low Product pom developer id dweinr1 Low Product pom developer id geirm Low Product pom developer id ggregory Low Product pom developer id morgand Low Product pom developer id rdonkin Low Product pom developer id rwaldhoff Low Product pom developer id sandymac Low Product pom developer name Craig McClanahan Low Product pom developer name David Weinrich Low Product pom developer name Dirk Verbeeck Low Product pom developer name Gary Gregory Low Product pom developer name Geir Magnusson Low Product pom developer name Morgan Delagrange Low Product pom developer name Robert Burrell Donkin Low Product pom developer name Rodney Waldhoff Low Product pom developer name Sandy McArthur Low Product pom developer org Apache Software Foundation Low Product pom groupid commons-pool Highest Product pom name Commons Pool High Product pom parent-artifactid commons-parent Medium Product pom parent-groupid org.apache.commons Medium Product pom url http://commons.apache.org/pool/ Medium Version file version 1.6 High Version Manifest Implementation-Version 1.6 High Version pom parent-version 1.6 Low Version pom version 1.6 Highest
commons-text-1.12.0.jarDescription:
Apache Commons Text is a set of utility functions and reusable components for the purpose of processing
and manipulating text that should be of use in a Java environment.
License:
https://www.apache.org/licenses/LICENSE-2.0.txt File Path: /home/runner/.m2/repository/org/apache/commons/commons-text/1.12.0/commons-text-1.12.0.jar
MD5: 544add6fbc8d4b100b07c3692d08099e
SHA1: 66aa90dc099701c4d3b14bd256c328f592ccf0d6
SHA256: de023257ff166044a56bd1aa9124e843cd05dac5806cc705a9311f3556d5a15f
Referenced In Project/Scope: Planmonitor Wonen API:compile
commons-text-1.12.0.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.geotools/gt-main@32.0
Evidence Type Source Name Value Confidence Vendor file name commons-text High Vendor jar package name apache Highest Vendor jar package name commons Highest Vendor jar package name text Highest Vendor Manifest automatic-module-name org.apache.commons.text Medium Vendor Manifest build-jdk-spec 17 Low Vendor Manifest bundle-docurl https://commons.apache.org/proper/commons-text Low Vendor Manifest bundle-symbolicname org.apache.commons.text Medium Vendor Manifest Implementation-Vendor The Apache Software Foundation High Vendor Manifest multi-release true Low Vendor Manifest specification-vendor The Apache Software Foundation Low Vendor pom artifactid commons-text Highest Vendor pom artifactid commons-text Low Vendor pom developer email britter@apache.org Low Vendor pom developer email chtompki@apache.org Low Vendor pom developer email djones@apache.org Low Vendor pom developer email ggregory at apache.org Low Vendor pom developer email kinow@apache.org Low Vendor pom developer id britter Medium Vendor pom developer id chtompki Medium Vendor pom developer id djones Medium Vendor pom developer id ggregory Medium Vendor pom developer id kinow Medium Vendor pom developer name Benedikt Ritter Medium Vendor pom developer name Bruno P. Kinoshita Medium Vendor pom developer name Duncan Jones Medium Vendor pom developer name Gary Gregory Medium Vendor pom developer name Rob Tompkins Medium Vendor pom developer org The Apache Software Foundation Medium Vendor pom developer org URL https://www.apache.org/ Medium Vendor pom groupid org.apache.commons Highest Vendor pom name Apache Commons Text High Vendor pom parent-artifactid commons-parent Low Vendor pom url https://commons.apache.org/proper/commons-text Highest Product file name commons-text High Product jar package name apache Highest Product jar package name commons Highest Product jar package name text Highest Product Manifest automatic-module-name org.apache.commons.text Medium Product Manifest build-jdk-spec 17 Low Product Manifest bundle-docurl https://commons.apache.org/proper/commons-text Low Product Manifest Bundle-Name Apache Commons Text Medium Product Manifest bundle-symbolicname org.apache.commons.text Medium Product Manifest Implementation-Title Apache Commons Text High Product Manifest multi-release true Low Product Manifest specification-title Apache Commons Text Medium Product pom artifactid commons-text Highest Product pom developer email britter@apache.org Low Product pom developer email chtompki@apache.org Low Product pom developer email djones@apache.org Low Product pom developer email ggregory at apache.org Low Product pom developer email kinow@apache.org Low Product pom developer id britter Low Product pom developer id chtompki Low Product pom developer id djones Low Product pom developer id ggregory Low Product pom developer id kinow Low Product pom developer name Benedikt Ritter Low Product pom developer name Bruno P. Kinoshita Low Product pom developer name Duncan Jones Low Product pom developer name Gary Gregory Low Product pom developer name Rob Tompkins Low Product pom developer org The Apache Software Foundation Low Product pom developer org URL https://www.apache.org/ Low Product pom groupid org.apache.commons Highest Product pom name Apache Commons Text High Product pom parent-artifactid commons-parent Medium Product pom url https://commons.apache.org/proper/commons-text Medium Version file version 1.12.0 High Version Manifest Bundle-Version 1.12.0 High Version Manifest Implementation-Version 1.12.0 High Version pom parent-version 1.12.0 Low Version pom version 1.12.0 Highest
ejml-core-0.41.jarDescription:
A fast and easy to use dense and sparse matrix linear algebra library written in Java. License:
The Apache License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt File Path: /home/runner/.m2/repository/org/ejml/ejml-core/0.41/ejml-core-0.41.jar
MD5: 200146f623a8eb87196bbc35cae6c2b1
SHA1: 92ac2bee332a5697c42e576b94d563ba8c25877c
SHA256: 8d36469e8414d79c875defc0af3b980525d384761c9471d15a4f365b936dd1d5
Referenced In Project/Scope: Planmonitor Wonen API:compile
ejml-core-0.41.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.geotools/gt-main@32.0
Evidence Type Source Name Value Confidence Vendor file name ejml-core High Vendor jar package name ejml Highest Vendor jar package name ejml Low Vendor jar package name matrix Highest Vendor jar package name sparse Highest Vendor pom artifactid ejml-core Highest Vendor pom artifactid ejml-core Low Vendor pom developer email peter.abeles@gmail.com Low Vendor pom developer id pabeles Medium Vendor pom developer name Peter Abeles Medium Vendor pom groupid org.ejml Highest Vendor pom name EJML High Vendor pom url http://ejml.org/ Highest Product file name ejml-core High Product jar package name ejml Highest Product jar package name matrix Highest Product jar package name sparse Highest Product pom artifactid ejml-core Highest Product pom developer email peter.abeles@gmail.com Low Product pom developer id pabeles Low Product pom developer name Peter Abeles Low Product pom groupid org.ejml Highest Product pom name EJML High Product pom url http://ejml.org/ Medium Version file version 0.41 High Version pom version 0.41 Highest
ejml-ddense-0.41.jarDescription:
A fast and easy to use dense and sparse matrix linear algebra library written in Java. License:
The Apache License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt File Path: /home/runner/.m2/repository/org/ejml/ejml-ddense/0.41/ejml-ddense-0.41.jar
MD5: 2128d09683d0ed77429fac23f64e42c7
SHA1: 782c80d4c3c8a3432c4641f24c177f336a360f9c
SHA256: 355347e9cac7e96d5d724d331a9b04bb14a8a02e1d111f1ac51c79f25d937123
Referenced In Project/Scope: Planmonitor Wonen API:compile
ejml-ddense-0.41.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.geotools/gt-main@32.0
Evidence Type Source Name Value Confidence Vendor file name ejml-ddense High Vendor jar package name dense Highest Vendor jar package name dense Low Vendor jar package name ejml Highest Vendor jar package name ejml Low Vendor jar package name row Low Vendor pom artifactid ejml-ddense Highest Vendor pom artifactid ejml-ddense Low Vendor pom developer email peter.abeles@gmail.com Low Vendor pom developer id pabeles Medium Vendor pom developer name Peter Abeles Medium Vendor pom groupid org.ejml Highest Vendor pom name EJML High Vendor pom url http://ejml.org/ Highest Product file name ejml-ddense High Product jar package name dense Highest Product jar package name dense Low Product jar package name ejml Highest Product jar package name row Low Product pom artifactid ejml-ddense Highest Product pom developer email peter.abeles@gmail.com Low Product pom developer id pabeles Low Product pom developer name Peter Abeles Low Product pom groupid org.ejml Highest Product pom name EJML High Product pom url http://ejml.org/ Medium Version file version 0.41 High Version pom version 0.41 Highest
flyway-core-10.17.2.jarFile Path: /home/runner/.m2/repository/org/flywaydb/flyway-core/10.17.2/flyway-core-10.17.2.jarMD5: 21a2b0e8c32cc0dcfbc98dc36037b620SHA1: 26206c0d6164f965dd4bafd556734005a420eb9cSHA256: 104f16acd144d37d83a2f65a45bda8f2c98b9a5c63a32fdc342b1f8ef55eb515Referenced In Project/Scope: Planmonitor Wonen API:compileflyway-core-10.17.2.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/nl.b3p.pmw/planmonitor-wonen-api@1.0.0-SNAPSHOT
Evidence Type Source Name Value Confidence Vendor file name flyway-core High Vendor jar package name core Highest Vendor jar package name flyway Highest Vendor jar package name flywaydb Highest Vendor Manifest build-jdk-spec 17 Low Vendor pom artifactid flyway-core Highest Vendor pom artifactid flyway-core Low Vendor pom groupid org.flywaydb Highest Vendor pom name ${project.artifactId} High Vendor pom parent-artifactid flyway-parent Low Product file name flyway-core High Product jar package name core Highest Product jar package name flyway Highest Product jar package name flywaydb Highest Product Manifest build-jdk-spec 17 Low Product pom artifactid flyway-core Highest Product pom groupid org.flywaydb Highest Product pom name ${project.artifactId} High Product pom parent-artifactid flyway-parent Medium Version file version 10.17.2 High Version pom version 10.17.2 Highest
flyway-database-postgresql-10.17.2.jarFile Path: /home/runner/.m2/repository/org/flywaydb/flyway-database-postgresql/10.17.2/flyway-database-postgresql-10.17.2.jarMD5: bfe0ce65370c51e3dd429c6fb7d33507SHA1: 39211fea2f6998d98772da01bce5bfa769b23b63SHA256: b5f5fc0101f4e7f7da94a52ee6382b4d6dba187b1d61fd51256067265d7c23b7Referenced In Project/Scope: Planmonitor Wonen API:compileflyway-database-postgresql-10.17.2.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/nl.b3p.pmw/planmonitor-wonen-api@1.0.0-SNAPSHOT
Evidence Type Source Name Value Confidence Vendor file name flyway-database-postgresql High Vendor jar package name database Highest Vendor jar package name flywaydb Highest Vendor jar package name postgresql Highest Vendor Manifest build-jdk-spec 17 Low Vendor pom artifactid flyway-database-postgresql Highest Vendor pom artifactid flyway-database-postgresql Low Vendor pom groupid org.flywaydb Highest Vendor pom name ${project.artifactId} High Vendor pom parent-artifactid flyway-parent Low Product file name flyway-database-postgresql High Product jar package name database Highest Product jar package name flywaydb Highest Product jar package name postgresql Highest Product Manifest build-jdk-spec 17 Low Product pom artifactid flyway-database-postgresql Highest Product pom groupid org.flywaydb Highest Product pom name ${project.artifactId} High Product pom parent-artifactid flyway-parent Medium Version file version 10.17.2 High Version pom version 10.17.2 Highest
gt-xml-32.0.jarDescription:
GTXML Schema Driven Parser License:
Lesser General Public License (LGPL): http://www.gnu.org/copyleft/lesser.txt File Path: /home/runner/.m2/repository/org/geotools/gt-xml/32.0/gt-xml-32.0.jar
MD5: f3df745199a8156f77dc9258d9c68248
SHA1: 9589744f5419edaab3a5ea31471cd2f95a71b1b0
SHA256: 74a8c1df8c6d2eacbe031da3e89c42252f1e4c82b8f54e492e72136583f3ce91
Referenced In Project/Scope: Planmonitor Wonen API:compile
gt-xml-32.0.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.geotools/gt-wfs-ng@32.0
Evidence Type Source Name Value Confidence Vendor file name gt-xml High Vendor jar package name geotools Highest Vendor jar package name schema Highest Vendor jar package name xml Highest Vendor Manifest automatic-module-name org.geotools.xml Medium Vendor Manifest build-jdk-spec 11 Low Vendor Manifest build-timestamp 18-Sep-2024 09:32 Low Vendor Manifest git-revision 1e7dfc3f76d52f53b7a7b0af9bc02d5a1c321535 Low Vendor pom artifactid gt-xml Highest Vendor pom artifactid gt-xml Low Vendor pom developer email jdeolive@users.sourceforge.net Low Vendor pom developer email jive@users.sourceforge.net Low Vendor pom developer name Jody Garnett Medium Vendor pom developer name Justin Deoliveira Medium Vendor pom developer org Refractions Research Medium Vendor pom developer org The Open Planning Project Medium Vendor pom groupid org.geotools Highest Vendor pom name XML Parsing Support High Vendor pom parent-artifactid library Low Product file name gt-xml High Product jar package name geotools Highest Product jar package name schema Highest Product jar package name xml Highest Product Manifest automatic-module-name org.geotools.xml Medium Product Manifest build-jdk-spec 11 Low Product Manifest build-timestamp 18-Sep-2024 09:32 Low Product Manifest git-revision 1e7dfc3f76d52f53b7a7b0af9bc02d5a1c321535 Low Product pom artifactid gt-xml Highest Product pom developer email jdeolive@users.sourceforge.net Low Product pom developer email jive@users.sourceforge.net Low Product pom developer name Jody Garnett Low Product pom developer name Justin Deoliveira Low Product pom developer org Refractions Research Low Product pom developer org The Open Planning Project Low Product pom groupid org.geotools Highest Product pom name XML Parsing Support High Product pom parent-artifactid library Medium Version file version 32.0 High Version Manifest project-version 32.0 Medium Version pom version 32.0 Highest
gt-xsd-core-32.0.jarDescription:
Schema based xml parsing. This module contains tools for creating
bindings from xml types to java types. Schema modelling is based
on Eclipse XSD. License:
Lesser General Public License (LGPL): http://www.gnu.org/copyleft/lesser.txt File Path: /home/runner/.m2/repository/org/geotools/xsd/gt-xsd-core/32.0/gt-xsd-core-32.0.jar
MD5: f7af0a490a7a7de075c985e34f3747e8
SHA1: 543d4d253186f111deef555a415225b15d29245b
SHA256: 201ff1dce7fa4473cc86bb3bac7ecf01ad5ca2b652def770a451c3c5961040ca
Referenced In Project/Scope: Planmonitor Wonen API:compile
gt-xsd-core-32.0.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.geotools/gt-wfs-ng@32.0
Evidence Type Source Name Value Confidence Vendor file name gt-xsd-core High Vendor jar package name bindings Highest Vendor jar package name geotools Highest Vendor jar package name xml Highest Vendor jar package name xsd Highest Vendor Manifest automatic-module-name org.geotools.xsd.xsd_core Medium Vendor Manifest build-timestamp 18-Sep-2024 09:32 Low Vendor Manifest git-revision 1e7dfc3f76d52f53b7a7b0af9bc02d5a1c321535 Low Vendor pom artifactid gt-xsd-core Highest Vendor pom artifactid gt-xsd-core Low Vendor pom developer email jdeolive@users.sourceforge.net Low Vendor pom developer email jive@users.sourceforge.net Low Vendor pom developer id jdeolive Medium Vendor pom developer id jive Medium Vendor pom developer name Jody Garnett Medium Vendor pom developer name Justin Deoliveira Medium Vendor pom developer org Refractions Research Medium Vendor pom developer org The Open Planning Project Medium Vendor pom groupid org.geotools.xsd Highest Vendor pom name XML Parsing High Vendor pom parent-artifactid xsd Low Product file name gt-xsd-core High Product jar package name bindings Highest Product jar package name geotools Highest Product jar package name xml Highest Product jar package name xsd Highest Product Manifest automatic-module-name org.geotools.xsd.xsd_core Medium Product Manifest build-timestamp 18-Sep-2024 09:32 Low Product Manifest git-revision 1e7dfc3f76d52f53b7a7b0af9bc02d5a1c321535 Low Product pom artifactid gt-xsd-core Highest Product pom developer email jdeolive@users.sourceforge.net Low Product pom developer email jive@users.sourceforge.net Low Product pom developer id jdeolive Low Product pom developer id jive Low Product pom developer name Jody Garnett Low Product pom developer name Justin Deoliveira Low Product pom developer org Refractions Research Low Product pom developer org The Open Planning Project Low Product pom groupid org.geotools.xsd Highest Product pom name XML Parsing High Product pom parent-artifactid xsd Medium Version file version 32.0 High Version Manifest project-version 32.0 Medium Version pom version 32.0 Highest
Related Dependencies hsqldb-2.7.3.jarDescription:
HSQLDB - Lightweight 100% Java SQL Database Engine License:
HSQLDB License, a BSD open source license: http://hsqldb.org/web/hsqlLicense.html File Path: /home/runner/.m2/repository/org/hsqldb/hsqldb/2.7.3/hsqldb-2.7.3.jar
MD5: 724301ab61ff54755deec86c7a724505
SHA1: 85b49338b36f3051d217295596cf92beb92e4bfb
SHA256: 6f2f77eedbe75cfbe26bf30d73b13de0cc57fb7cdb27a92ed8c1a012f0e2363a
Referenced In Project/Scope: Planmonitor Wonen API:compile
hsqldb-2.7.3.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.geotools/gt-epsg-hsql@32.0
Evidence Type Source Name Value Confidence Vendor file name hsqldb High Vendor jar package name database Highest Vendor jar package name hsqldb Highest Vendor jar package name java Highest Vendor Manifest bundle-symbolicname org.hsqldb.hsqldb Medium Vendor Manifest originally-created-by 11.0.21+9 (Eclipse Adoptium) Low Vendor Manifest specification-vendor The HSQL Development Group Low Vendor pom artifactid hsqldb Highest Vendor pom artifactid hsqldb Low Vendor pom developer email blaine.simpson@admc.com Low Vendor pom developer email ft@cluedup.com Low Vendor pom developer id fredt Medium Vendor pom developer id unsaved Medium Vendor pom developer name Blaine Simpson Medium Vendor pom developer name Fred Toussi Medium Vendor pom groupid org.hsqldb Highest Vendor pom name HyperSQL Database High Vendor pom organization name The HSQL Development Group High Vendor pom organization url http://hsqldb.org Medium Vendor pom url http://hsqldb.org Highest Product file name hsqldb High Product jar package name database Highest Product jar package name hsqldb Highest Product jar package name java Highest Product Manifest Bundle-Name HSQLDB Medium Product Manifest bundle-symbolicname org.hsqldb.hsqldb Medium Product Manifest Implementation-Title Standard runtime High Product Manifest originally-created-by 11.0.21+9 (Eclipse Adoptium) Low Product Manifest specification-title HSQLDB Medium Product pom artifactid hsqldb Highest Product pom developer email blaine.simpson@admc.com Low Product pom developer email ft@cluedup.com Low Product pom developer id fredt Low Product pom developer id unsaved Low Product pom developer name Blaine Simpson Low Product pom developer name Fred Toussi Low Product pom groupid org.hsqldb Highest Product pom name HyperSQL Database High Product pom organization name The HSQL Development Group Low Product pom organization url http://hsqldb.org Low Product pom url http://hsqldb.org Medium Version file version 2.7.3 High Version Manifest Bundle-Version 2.7.3 High Version Manifest Implementation-Version 2.7.3 High Version pom version 2.7.3 Highest
httpclient-4.5.14.jarDescription:
Apache HttpComponents Client
File Path: /home/runner/.m2/repository/org/apache/httpcomponents/httpclient/4.5.14/httpclient-4.5.14.jarMD5: 2cb357c4b763f47e58af6cad47df6ba3SHA1: 1194890e6f56ec29177673f2f12d0b8e627dec98SHA256: c8bc7e1c51a6d4ce72f40d2ebbabf1c4b68bfe76e732104b04381b493478e9d6Referenced In Project/Scope: Planmonitor Wonen API:compilehttpclient-4.5.14.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.geotools/gt-wfs-ng@32.0
Evidence Type Source Name Value Confidence Vendor file name httpclient High Vendor jar package name apache Highest Vendor jar package name client Highest Vendor jar package name httpclient Highest Vendor Manifest automatic-module-name org.apache.httpcomponents.httpclient Medium Vendor Manifest implementation-url http://hc.apache.org/httpcomponents-client-ga Low Vendor Manifest Implementation-Vendor The Apache Software Foundation High Vendor Manifest Implementation-Vendor-Id org.apache.httpcomponents Medium Vendor Manifest specification-vendor The Apache Software Foundation Low Vendor pom artifactid httpclient Highest Vendor pom artifactid httpclient Low Vendor pom groupid org.apache.httpcomponents Highest Vendor pom name Apache HttpClient High Vendor pom parent-artifactid httpcomponents-client Low Vendor pom url http://hc.apache.org/httpcomponents-client-ga Highest Product file name httpclient High Product jar package name apache Highest Product jar package name client Highest Product jar package name http Highest Product jar package name httpclient Highest Product Manifest automatic-module-name org.apache.httpcomponents.httpclient Medium Product Manifest Implementation-Title Apache HttpClient High Product Manifest implementation-url http://hc.apache.org/httpcomponents-client-ga Low Product Manifest specification-title Apache HttpClient Medium Product pom artifactid httpclient Highest Product pom groupid org.apache.httpcomponents Highest Product pom name Apache HttpClient High Product pom parent-artifactid httpcomponents-client Medium Product pom url http://hc.apache.org/httpcomponents-client-ga Medium Version file version 4.5.14 High Version Manifest Implementation-Version 4.5.14 High Version pom version 4.5.14 Highest
httpcore-4.4.16.jarDescription:
Apache HttpComponents Core (blocking I/O)
File Path: /home/runner/.m2/repository/org/apache/httpcomponents/httpcore/4.4.16/httpcore-4.4.16.jarMD5: 28d2cd9bf8789fd2ec774fb88436ebd1SHA1: 51cf043c87253c9f58b539c9f7e44c8894223850SHA256: 6c9b3dd142a09dc468e23ad39aad6f75a0f2b85125104469f026e52a474e464fReferenced In Project/Scope: Planmonitor Wonen API:compilehttpcore-4.4.16.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.geotools/gt-wfs-ng@32.0
Evidence Type Source Name Value Confidence Vendor file name httpcore High Vendor jar package name apache Highest Vendor Manifest automatic-module-name org.apache.httpcomponents.httpcore Medium Vendor Manifest implementation-build ${scmBranch}@r${buildNumber}; 2022-11-26 09:44:32+0000 Low Vendor Manifest implementation-url http://hc.apache.org/httpcomponents-core-ga Low Vendor Manifest Implementation-Vendor The Apache Software Foundation High Vendor Manifest Implementation-Vendor-Id org.apache Medium Vendor Manifest specification-vendor The Apache Software Foundation Low Vendor Manifest url http://hc.apache.org/httpcomponents-core-ga Low Vendor pom artifactid httpcore Highest Vendor pom artifactid httpcore Low Vendor pom groupid org.apache.httpcomponents Highest Vendor pom name Apache HttpCore High Vendor pom parent-artifactid httpcomponents-core Low Vendor pom url http://hc.apache.org/httpcomponents-core-ga Highest Product file name httpcore High Product jar package name apache Highest Product jar package name http Highest Product Manifest automatic-module-name org.apache.httpcomponents.httpcore Medium Product Manifest implementation-build ${scmBranch}@r${buildNumber}; 2022-11-26 09:44:32+0000 Low Product Manifest Implementation-Title HttpComponents Apache HttpCore High Product Manifest implementation-url http://hc.apache.org/httpcomponents-core-ga Low Product Manifest specification-title HttpComponents Apache HttpCore Medium Product Manifest url http://hc.apache.org/httpcomponents-core-ga Low Product pom artifactid httpcore Highest Product pom groupid org.apache.httpcomponents Highest Product pom name Apache HttpCore High Product pom parent-artifactid httpcomponents-core Medium Product pom url http://hc.apache.org/httpcomponents-core-ga Medium Version file version 4.4.16 High Version Manifest Implementation-Version 4.4.16 High Version pom version 4.4.16 Highest
indriya-2.2.jarDescription:
Unit Standard (JSR 385) Reference Implementation. License:
BSD 3-Clause: LICENSE File Path: /home/runner/.m2/repository/tech/units/indriya/2.2/indriya-2.2.jar
MD5: cefa3a26996e4c70071d27a0c36603ea
SHA1: 647a0e06d60346f3f3c48284f66d34b28ff83340
SHA256: 5b61eafd63fd235898dea0e5e614e9636c9d7783705a0c9f1794dd07e3a84b35
Referenced In Project/Scope: Planmonitor Wonen API:compile
indriya-2.2.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.geotools/gt-main@32.0
Evidence Type Source Name Value Confidence Vendor file name indriya High Vendor jar package name indriya Highest Vendor jar package name tech Highest Vendor jar package name unit Highest Vendor jar package name units Highest Vendor Manifest automatic-module-name tech.units.indriya Medium Vendor Manifest build-jdk-spec 17 Low Vendor Manifest bundle-docurl http://unitsofmeasurement.github.io Low Vendor Manifest bundle-symbolicname tech.units.indriya Medium Vendor Manifest implementation-url http://units.tech Low Vendor Manifest Implementation-Vendor Units of Measurement project High Vendor Manifest multi-release true Low Vendor Manifest specification-vendor Jean-Marie Dautelle, Werner Keil, Otavio Santana Low Vendor pom artifactid indriya Highest Vendor pom artifactid indriya Low Vendor pom developer email jean-marie@dautelle.com Low Vendor pom developer email martin.desruisseaux@geomatys.com Low Vendor pom developer email otaviopolianasantana@gmail.com Low Vendor pom developer email werner.keil@gmx.net Low Vendor pom developer id dautelle Medium Vendor pom developer id desruisseaux Medium Vendor pom developer id keilw Medium Vendor pom developer id otaviojava Medium Vendor pom developer name Jean-Marie Dautelle Medium Vendor pom developer name Martin Desruisseaux Medium Vendor pom developer name Otávio Gonçalves de Santana Medium Vendor pom developer name Werner Keil Medium Vendor pom developer org Airbus Medium Vendor pom developer org Creative Arts & Technologies Medium Vendor pom developer org Geomatys Medium Vendor pom developer org Individual / SouJava Medium Vendor pom developer org URL http://www.airbus.com Medium Vendor pom developer org URL http://www.catmedia.us Medium Vendor pom developer org URL http://www.geomatys.com Medium Vendor pom groupid tech.units Highest Vendor pom name Units of Measurement Reference Implementation High Vendor pom organization name Units of Measurement project High Vendor pom organization url http://unitsofmeasurement.github.io Medium Vendor pom parent-artifactid uom-parent Low Vendor pom parent-groupid tech.uom Medium Vendor pom url http://units.tech Highest Product file name indriya High Product jar package name indriya Highest Product jar package name tech Highest Product jar package name unit Highest Product jar package name units Highest Product Manifest automatic-module-name tech.units.indriya Medium Product Manifest build-jdk-spec 17 Low Product Manifest bundle-docurl http://unitsofmeasurement.github.io Low Product Manifest Bundle-Name Units of Measurement Reference Implementation Medium Product Manifest bundle-symbolicname tech.units.indriya Medium Product Manifest Implementation-Title Units of Measurement Reference Implementation High Product Manifest implementation-url http://units.tech Low Product Manifest multi-release true Low Product Manifest specification-title Unit API Medium Product pom artifactid indriya Highest Product pom developer email jean-marie@dautelle.com Low Product pom developer email martin.desruisseaux@geomatys.com Low Product pom developer email otaviopolianasantana@gmail.com Low Product pom developer email werner.keil@gmx.net Low Product pom developer id dautelle Low Product pom developer id desruisseaux Low Product pom developer id keilw Low Product pom developer id otaviojava Low Product pom developer name Jean-Marie Dautelle Low Product pom developer name Martin Desruisseaux Low Product pom developer name Otávio Gonçalves de Santana Low Product pom developer name Werner Keil Low Product pom developer org Airbus Low Product pom developer org Creative Arts & Technologies Low Product pom developer org Geomatys Low Product pom developer org Individual / SouJava Low Product pom developer org URL http://www.airbus.com Low Product pom developer org URL http://www.catmedia.us Low Product pom developer org URL http://www.geomatys.com Low Product pom groupid tech.units Highest Product pom name Units of Measurement Reference Implementation High Product pom organization name Units of Measurement project Low Product pom organization url http://unitsofmeasurement.github.io Low Product pom parent-artifactid uom-parent Medium Product pom parent-groupid tech.uom Medium Product pom url http://units.tech Medium Version file version 2.2 High Version Manifest Implementation-Version 2.2 High Version pom version 2.2 Highest
jackson-core-2.17.2.jarDescription:
Core Jackson processing abstractions (aka Streaming API), implementation for JSON License:
The Apache Software License, Version 2.0: https://www.apache.org/licenses/LICENSE-2.0.txt File Path: /home/runner/.m2/repository/com/fasterxml/jackson/core/jackson-core/2.17.2/jackson-core-2.17.2.jar
MD5: 50c2dab1f29136714d5ef5c6c640336c
SHA1: 969a35cb35c86512acbadcdbbbfb044c877db814
SHA256: 721a189241dab0525d9e858e5cb604d3ecc0ede081e2de77d6f34fa5779a5b46
Referenced In Project/Scope: Planmonitor Wonen API:compile
jackson-core-2.17.2.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/nl.b3p.pmw/planmonitor-wonen-api@1.0.0-SNAPSHOT
Evidence Type Source Name Value Confidence Vendor file name jackson-core High Vendor jar package name base Highest Vendor jar package name com Highest Vendor jar package name core Highest Vendor jar package name fasterxml Highest Vendor jar package name jackson Highest Vendor jar package name json Highest Vendor Manifest build-jdk-spec 1.8 Low Vendor Manifest bundle-docurl https://github.com/FasterXML/jackson-core Low Vendor Manifest bundle-symbolicname com.fasterxml.jackson.core.jackson-core Medium Vendor Manifest Implementation-Vendor FasterXML High Vendor Manifest Implementation-Vendor-Id com.fasterxml.jackson.core Medium Vendor Manifest multi-release true Low Vendor Manifest specification-vendor FasterXML Low Vendor pom artifactid jackson-core Highest Vendor pom artifactid jackson-core Low Vendor pom groupid com.fasterxml.jackson.core Highest Vendor pom name Jackson-core High Vendor pom parent-artifactid jackson-base Low Vendor pom parent-groupid com.fasterxml.jackson Medium Vendor pom url FasterXML/jackson-core Highest Product file name jackson-core High Product hint analyzer product java8 Highest Product hint analyzer product modules Highest Product jar package name base Highest Product jar package name com Highest Product jar package name core Highest Product jar package name fasterxml Highest Product jar package name jackson Highest Product jar package name json Highest Product Manifest build-jdk-spec 1.8 Low Product Manifest bundle-docurl https://github.com/FasterXML/jackson-core Low Product Manifest Bundle-Name Jackson-core Medium Product Manifest bundle-symbolicname com.fasterxml.jackson.core.jackson-core Medium Product Manifest Implementation-Title Jackson-core High Product Manifest multi-release true Low Product Manifest specification-title Jackson-core Medium Product pom artifactid jackson-core Highest Product pom groupid com.fasterxml.jackson.core Highest Product pom name Jackson-core High Product pom parent-artifactid jackson-base Medium Product pom parent-groupid com.fasterxml.jackson Medium Product pom url FasterXML/jackson-core High Version file version 2.17.2 High Version Manifest Bundle-Version 2.17.2 High Version Manifest Implementation-Version 2.17.2 High Version pom version 2.17.2 Highest
Related Dependencies jackson-annotations-2.17.2.jarFile Path: /home/runner/.m2/repository/com/fasterxml/jackson/core/jackson-annotations/2.17.2/jackson-annotations-2.17.2.jar MD5: e68e7e593ae47e106421688707683297 SHA1: 147b7b9412ffff24339f8aba080b292448e08698 SHA256: 873a606e23507969f9bbbea939d5e19274a88775ea5a169ba7e2d795aa5156e1 pkg:maven/com.fasterxml.jackson.core/jackson-annotations@2.17.2 jackson-datatype-jdk8-2.17.2.jarFile Path: /home/runner/.m2/repository/com/fasterxml/jackson/datatype/jackson-datatype-jdk8/2.17.2/jackson-datatype-jdk8-2.17.2.jar MD5: 91bac611e3aa2883dc0e8850d7790f04 SHA1: efd3dd0e1d0db8bc72abbe71c15e697bb83b4b45 SHA256: aaa98d3edabf50426bd822fad1442fbdada6e470969326cbcab5c2798f1738d9 pkg:maven/com.fasterxml.jackson.datatype/jackson-datatype-jdk8@2.17.2 jackson-datatype-jsr310-2.17.2.jarFile Path: /home/runner/.m2/repository/com/fasterxml/jackson/datatype/jackson-datatype-jsr310/2.17.2/jackson-datatype-jsr310-2.17.2.jar MD5: 6b3cd2fed41104d9ee9d8695547672af SHA1: 267b85e9ba2892a37be6d80aa9ca1438a0d8c210 SHA256: 9b80024a9822e70b07f6bb13824c76c137c1064a1b5eb518374ab141870fdbcc pkg:maven/com.fasterxml.jackson.datatype/jackson-datatype-jsr310@2.17.2 jackson-module-parameter-names-2.17.2.jar jackson-databind-2.17.2.jarDescription:
General data-binding functionality for Jackson: works on core streaming API License:
The Apache Software License, Version 2.0: https://www.apache.org/licenses/LICENSE-2.0.txt File Path: /home/runner/.m2/repository/com/fasterxml/jackson/core/jackson-databind/2.17.2/jackson-databind-2.17.2.jar
MD5: 3e1ff7c1f0fda885946619a47ef9d5de
SHA1: e6deb029e5901e027c129341fac39e515066b68c
SHA256: c04993f33c0f845342653784f14f38373d005280e6359db5f808701cfae73c0c
Referenced In Project/Scope: Planmonitor Wonen API:compile
jackson-databind-2.17.2.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/nl.b3p.pmw/planmonitor-wonen-api@1.0.0-SNAPSHOT
Evidence Type Source Name Value Confidence Vendor file name jackson-databind High Vendor jar package name databind Highest Vendor jar package name fasterxml Highest Vendor jar package name jackson Highest Vendor Manifest build-jdk-spec 1.8 Low Vendor Manifest bundle-docurl https://github.com/FasterXML/jackson Low Vendor Manifest bundle-symbolicname com.fasterxml.jackson.core.jackson-databind Medium Vendor Manifest Implementation-Vendor FasterXML High Vendor Manifest Implementation-Vendor-Id com.fasterxml.jackson.core Medium Vendor Manifest multi-release true Low Vendor Manifest specification-vendor FasterXML Low Vendor pom artifactid jackson-databind Highest Vendor pom artifactid jackson-databind Low Vendor pom groupid com.fasterxml.jackson.core Highest Vendor pom name jackson-databind High Vendor pom parent-artifactid jackson-base Low Vendor pom parent-groupid com.fasterxml.jackson Medium Vendor pom url FasterXML/jackson Highest Product file name jackson-databind High Product hint analyzer product java8 Highest Product hint analyzer product modules Highest Product jar package name databind Highest Product jar package name fasterxml Highest Product jar package name jackson Highest Product Manifest build-jdk-spec 1.8 Low Product Manifest bundle-docurl https://github.com/FasterXML/jackson Low Product Manifest Bundle-Name jackson-databind Medium Product Manifest bundle-symbolicname com.fasterxml.jackson.core.jackson-databind Medium Product Manifest Implementation-Title jackson-databind High Product Manifest multi-release true Low Product Manifest specification-title jackson-databind Medium Product pom artifactid jackson-databind Highest Product pom groupid com.fasterxml.jackson.core Highest Product pom name jackson-databind High Product pom parent-artifactid jackson-base Medium Product pom parent-groupid com.fasterxml.jackson Medium Product pom url FasterXML/jackson High Version file version 2.17.2 High Version Manifest Bundle-Version 2.17.2 High Version Manifest Implementation-Version 2.17.2 High Version pom version 2.17.2 Highest
jackson-dataformat-toml-2.17.2.jarDescription:
Support for reading and writing TOML-encoded data via Jackson abstractions.
License:
The Apache Software License, Version 2.0: https://www.apache.org/licenses/LICENSE-2.0.txt File Path: /home/runner/.m2/repository/com/fasterxml/jackson/dataformat/jackson-dataformat-toml/2.17.2/jackson-dataformat-toml-2.17.2.jar
MD5: 8de66b34d5acdf8b26227df2aa148cdb
SHA1: f085b1a94428c4546eef48f00cfa63286f54a8e2
SHA256: bc7ecf3f1bf76a26daddf2c7ab4facc017ce6e8c5c8c6b8f29cb610494828017
Referenced In Project/Scope: Planmonitor Wonen API:compile
jackson-dataformat-toml-2.17.2.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.flywaydb/flyway-core@10.17.2
Evidence Type Source Name Value Confidence Vendor file name jackson-dataformat-toml High Vendor jar package name dataformat Highest Vendor jar package name fasterxml Highest Vendor jar package name jackson Highest Vendor jar package name toml Highest Vendor Manifest build-jdk-spec 1.8 Low Vendor Manifest bundle-docurl https://github.com/FasterXML/jackson-dataformats-text Low Vendor Manifest bundle-symbolicname com.fasterxml.jackson.dataformat.jackson-dataformat-toml Medium Vendor Manifest Implementation-Vendor FasterXML High Vendor Manifest Implementation-Vendor-Id com.fasterxml.jackson.dataformat Medium Vendor Manifest multi-release true Low Vendor Manifest specification-vendor FasterXML Low Vendor pom artifactid jackson-dataformat-toml Highest Vendor pom artifactid jackson-dataformat-toml Low Vendor pom groupid com.fasterxml.jackson.dataformat Highest Vendor pom name Jackson-dataformat-TOML High Vendor pom parent-artifactid jackson-dataformats-text Low Vendor pom url FasterXML/jackson-dataformats-text Highest Product file name jackson-dataformat-toml High Product jar package name dataformat Highest Product jar package name fasterxml Highest Product jar package name jackson Highest Product jar package name toml Highest Product Manifest build-jdk-spec 1.8 Low Product Manifest bundle-docurl https://github.com/FasterXML/jackson-dataformats-text Low Product Manifest Bundle-Name Jackson-dataformat-TOML Medium Product Manifest bundle-symbolicname com.fasterxml.jackson.dataformat.jackson-dataformat-toml Medium Product Manifest Implementation-Title Jackson-dataformat-TOML High Product Manifest multi-release true Low Product Manifest specification-title Jackson-dataformat-TOML Medium Product pom artifactid jackson-dataformat-toml Highest Product pom groupid com.fasterxml.jackson.dataformat Highest Product pom name Jackson-dataformat-TOML High Product pom parent-artifactid jackson-dataformats-text Medium Product pom url FasterXML/jackson-dataformats-text High Version file version 2.17.2 High Version Manifest Bundle-Version 2.17.2 High Version Manifest Implementation-Version 2.17.2 High Version pom version 2.17.2 Highest
jai_core-1.1.3.jarDescription:
The Java Advanced Imaging API extends the Java 2 platform by allowing sophisticated, high-performance image processing to be incorporated into Java applets and applications. It is a set of classes providing imaging functionality beyond that of Java 2D and the Java Foundation classes, though it is designed for compatibility with those APIs. This API implements a set of core image processing capabilities including image tiling, regions of interest, deferred execution and a set of core image processing operators, including many common point, area, and frequency domain operators. License:
JDL (Java Distribution License): https://jai.dev.java.net/jdl-jai.pdf File Path: /home/runner/.m2/repository/javax/media/jai_core/1.1.3/jai_core-1.1.3.jar
MD5: f398bc038307ee434bac1b93ba3ab02d
SHA1: b179d2efb1174658483e8b41bf4ac9d2eb5de438
SHA256: 8b696cf067533545f44c2f68339e24ab1a2669153ed2081aa5be8749f4d592bf
Referenced In Project/Scope: Planmonitor Wonen API:compile
jai_core-1.1.3.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.geotools/gt-main@32.0
Evidence Type Source Name Value Confidence Vendor file name jai_core High Vendor jar package name jai Highest Vendor jar package name javax Highest Vendor jar package name media Highest Vendor jar package name sun Highest Vendor jar (hint) package name oracle Highest Vendor Manifest extension-name javax.media.jai Medium Vendor Manifest Implementation-Vendor Sun Microsystems, Inc. High Vendor Manifest specification-vendor Sun Microsystems, Inc. Low Vendor pom artifactid jai_core Highest Vendor pom artifactid jai_core Low Vendor pom groupid javax.media Highest Vendor pom name Java Advanced Imaging High Vendor pom url https://jai.dev.java.net/ Highest Product file name jai_core High Product jar package name jai Highest Product jar package name javax Highest Product jar package name media Highest Product Manifest extension-name javax.media.jai Medium Product Manifest Implementation-Title javax.media.jai High Product Manifest specification-title Java Advanced Imaging Medium Product pom artifactid jai_core Highest Product pom groupid javax.media Highest Product pom name Java Advanced Imaging High Product pom url https://jai.dev.java.net/ Medium Version file version 1.1.3 High Version Manifest Implementation-Version 1.1.3 High Version pom version 1.1.3 Highest
jakarta.annotation-api-2.1.1.jarDescription:
Jakarta Annotations API License:
EPL 2.0: http://www.eclipse.org/legal/epl-2.0
GPL2 w/ CPE: https://www.gnu.org/software/classpath/license.html File Path: /home/runner/.m2/repository/jakarta/annotation/jakarta.annotation-api/2.1.1/jakarta.annotation-api-2.1.1.jar
MD5: 5dac2f68e8288d0add4dc92cb161711d
SHA1: 48b9bda22b091b1f48b13af03fe36db3be6e1ae3
SHA256: 5f65fdaf424eee2b55e1d882ba9bb376be93fb09b37b808be6e22e8851c909fe
Referenced In Project/Scope: Planmonitor Wonen API:compile
jakarta.annotation-api-2.1.1.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.springframework.boot/spring-boot-starter-web@3.3.5
Evidence Type Source Name Value Confidence Vendor file name jakarta.annotation-api High Vendor jar package name annotation Highest Vendor jar package name jakarta Highest Vendor Manifest build-jdk-spec 11 Low Vendor Manifest bundle-docurl https://www.eclipse.org Low Vendor Manifest bundle-symbolicname jakarta.annotation-api Medium Vendor Manifest extension-name jakarta.annotation Medium Vendor Manifest Implementation-Vendor Eclipse Foundation High Vendor Manifest Implementation-Vendor-Id org.glassfish Medium Vendor Manifest specification-vendor Eclipse Foundation Low Vendor pom artifactid jakarta.annotation-api Highest Vendor pom artifactid jakarta.annotation-api Low Vendor pom developer name Dmitry Kornilov Medium Vendor pom developer name Linda De Michiel Medium Vendor pom developer org Oracle Corp. Medium Vendor pom groupid jakarta.annotation Highest Vendor pom name Jakarta Annotations API High Vendor pom parent-artifactid project Low Vendor pom parent-groupid org.eclipse.ee4j Medium Vendor pom url https://projects.eclipse.org/projects/ee4j.ca Highest Product file name jakarta.annotation-api High Product jar package name annotation Highest Product jar package name jakarta Highest Product Manifest build-jdk-spec 11 Low Product Manifest bundle-docurl https://www.eclipse.org Low Product Manifest Bundle-Name Jakarta Annotations API Medium Product Manifest bundle-symbolicname jakarta.annotation-api Medium Product Manifest extension-name jakarta.annotation Medium Product pom artifactid jakarta.annotation-api Highest Product pom developer name Dmitry Kornilov Low Product pom developer name Linda De Michiel Low Product pom developer org Oracle Corp. Low Product pom groupid jakarta.annotation Highest Product pom name Jakarta Annotations API High Product pom parent-artifactid project Medium Product pom parent-groupid org.eclipse.ee4j Medium Product pom url https://projects.eclipse.org/projects/ee4j.ca Medium Version file version 2.1.1 High Version Manifest Bundle-Version 2.1.1 High Version Manifest Implementation-Version 2.1.1 High Version pom parent-version 2.1.1 Low Version pom version 2.1.1 Highest
jakarta.inject-api-2.0.1.jarDescription:
Jakarta Dependency Injection License:
The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt File Path: /home/runner/.m2/repository/jakarta/inject/jakarta.inject-api/2.0.1/jakarta.inject-api-2.0.1.jar
MD5: 72003bf6efcc8455d414bbd7da86c11c
SHA1: 4c28afe1991a941d7702fe1362c365f0a8641d1e
SHA256: f7dc98062fccf14126abb751b64fab12c312566e8cbdc8483598bffcea93af7c
Referenced In Project/Scope: Planmonitor Wonen API:compile
jakarta.inject-api-2.0.1.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.geotools/gt-main@32.0
Evidence Type Source Name Value Confidence Vendor file name jakarta.inject-api High Vendor jar package name inject Highest Vendor jar package name jakarta Highest Vendor Manifest build-jdk-spec 11 Low Vendor Manifest bundle-docurl https://www.eclipse.org Low Vendor Manifest bundle-symbolicname jakarta.inject.jakarta.inject-api Medium Vendor pom artifactid jakarta.inject-api Highest Vendor pom artifactid jakarta.inject-api Low Vendor pom developer email asd[at]redhat[dot]com Low Vendor pom developer email manovotn[at]redhat[dot]com Low Vendor pom developer email mkouba[at]redhat[dot]com Low Vendor pom developer email tremes[at]redhat[dot]com Low Vendor pom developer id asabotdu Medium Vendor pom developer id manovotn Medium Vendor pom developer id mkouba Medium Vendor pom developer id tremes Medium Vendor pom developer name Antoine Sabot-Durand Medium Vendor pom developer name Martin Kouba Medium Vendor pom developer name Matej Novotny Medium Vendor pom developer name Tomas Remes Medium Vendor pom developer org Red Hat Inc. Medium Vendor pom groupid jakarta.inject Highest Vendor pom name Jakarta Dependency Injection High Vendor pom parent-artifactid project Low Vendor pom parent-groupid org.eclipse.ee4j Medium Vendor pom url eclipse-ee4j/injection-api Highest Product file name jakarta.inject-api High Product jar package name inject Highest Product jar package name jakarta Highest Product Manifest build-jdk-spec 11 Low Product Manifest bundle-docurl https://www.eclipse.org Low Product Manifest Bundle-Name Jakarta Dependency Injection Medium Product Manifest bundle-symbolicname jakarta.inject.jakarta.inject-api Medium Product pom artifactid jakarta.inject-api Highest Product pom developer email asd[at]redhat[dot]com Low Product pom developer email manovotn[at]redhat[dot]com Low Product pom developer email mkouba[at]redhat[dot]com Low Product pom developer email tremes[at]redhat[dot]com Low Product pom developer id asabotdu Low Product pom developer id manovotn Low Product pom developer id mkouba Low Product pom developer id tremes Low Product pom developer name Antoine Sabot-Durand Low Product pom developer name Martin Kouba Low Product pom developer name Matej Novotny Low Product pom developer name Tomas Remes Low Product pom developer org Red Hat Inc. Low Product pom groupid jakarta.inject Highest Product pom name Jakarta Dependency Injection High Product pom parent-artifactid project Medium Product pom parent-groupid org.eclipse.ee4j Medium Product pom url eclipse-ee4j/injection-api High Version file version 2.0.1 High Version Manifest Bundle-Version 2.0.1 High Version pom parent-version 2.0.1 Low Version pom version 2.0.1 Highest
jgridshift-core-1.3.jarFile Path: /home/runner/.m2/repository/it/geosolutions/jgridshift/jgridshift-core/1.3/jgridshift-core-1.3.jarMD5: 04a57b57bb0654b3d603eaaa748de563SHA1: 314702a7b6e634e1c74589983a6762974b9c51c8SHA256: 303eb6a6f6f87369f6b9e3dcacefd6f9b0ad55920cd65a7f162ab9a23401c722Referenced In Project/Scope: Planmonitor Wonen API:compilejgridshift-core-1.3.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.geotools/gt-main@32.0
Evidence Type Source Name Value Confidence Vendor file name jgridshift-core High Vendor jar package name au Low Vendor jar package name com Low Vendor jar package name jgridshift Highest Vendor jar package name objectix Low Vendor pom artifactid jgridshift-core Highest Vendor pom artifactid jgridshift-core Low Vendor pom groupid it.geosolutions.jgridshift Highest Vendor pom parent-artifactid jgridshift Low Product file name jgridshift-core High Product jar package name com Low Product jar package name jgridshift Highest Product jar package name jgridshift Low Product jar package name objectix Low Product pom artifactid jgridshift-core Highest Product pom groupid it.geosolutions.jgridshift Highest Product pom parent-artifactid jgridshift Medium Version file version 1.3 High Version pom version 1.3 Highest
jts-core-1.20.0.jarDescription:
The JTS Topology Suite is an API for 2D linear geometry predicates and functions. License:
https://github.com/locationtech/jts/blob/master/LICENSE_EPLv2.txt, https://github.com/locationtech/jts/blob/master/LICENSE_EDLv1.txt File Path: /home/runner/.m2/repository/org/locationtech/jts/jts-core/1.20.0/jts-core-1.20.0.jar
MD5: 8de91edea80ac2de00c07226458649fb
SHA1: 25b72c9548a328cb1aea8a6b89d710a31ade5403
SHA256: 6a783d8f9dba3d3cf7265435f134402f63c05838aa6cbcc4297ad3a5b2842baf
Referenced In Project/Scope: Planmonitor Wonen API:compile
jts-core-1.20.0.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.geotools/gt-main@32.0
Evidence Type Source Name Value Confidence Vendor file name jts-core High Vendor jar package name jts Highest Vendor jar package name locationtech Highest Vendor Manifest automatic-module-name org.locationtech.jts Medium Vendor Manifest bundle-symbolicname org.locationtech.jts.jts-core Medium Vendor pom artifactid jts-core Highest Vendor pom artifactid jts-core Low Vendor pom groupid org.locationtech.jts Highest Vendor pom name : High Vendor pom parent-artifactid jts-modules Low Product file name jts-core High Product jar package name geometry Highest Product jar package name jts Highest Product jar package name locationtech Highest Product Manifest automatic-module-name org.locationtech.jts Medium Product Manifest Bundle-Name jts-core Medium Product Manifest bundle-symbolicname org.locationtech.jts.jts-core Medium Product pom artifactid jts-core Highest Product pom groupid org.locationtech.jts Highest Product pom name : High Product pom parent-artifactid jts-modules Medium Version file version 1.20.0 High Version Manifest Bundle-Version 1.20.0 High Version pom version 1.20.0 Highest
jul-to-slf4j-2.0.16.jarDescription:
JUL to SLF4J bridge License:
http://www.opensource.org/licenses/mit-license.php File Path: /home/runner/.m2/repository/org/slf4j/jul-to-slf4j/2.0.16/jul-to-slf4j-2.0.16.jar
MD5: 410ad2f2230e0150216d86e12a4af995
SHA1: 6d57da3e961daac65bcca0dd3def6cd11e48a24a
SHA256: 0f2ec396ea29c9a440890d1f09fdb82fdd574b47b298435764235451c193861d
Referenced In Project/Scope: Planmonitor Wonen API:compile
jul-to-slf4j-2.0.16.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.springframework.boot/spring-boot-starter-web@3.3.5
Evidence Type Source Name Value Confidence Vendor file name jul-to-slf4j High Vendor jar package name bridge Highest Vendor jar package name slf4j Highest Vendor Manifest build-jdk-spec 21 Low Vendor Manifest bundle-docurl http://www.slf4j.org Low Vendor Manifest bundle-symbolicname jul.to.slf4j Medium Vendor Manifest multi-release true Low Vendor pom artifactid jul-to-slf4j Highest Vendor pom artifactid jul-to-slf4j Low Vendor pom groupid org.slf4j Highest Vendor pom name JUL to SLF4J bridge High Vendor pom parent-artifactid slf4j-parent Low Vendor pom url http://www.slf4j.org Highest Product file name jul-to-slf4j High Product jar package name bridge Highest Product jar package name slf4j Highest Product Manifest build-jdk-spec 21 Low Product Manifest bundle-docurl http://www.slf4j.org Low Product Manifest Bundle-Name JUL to SLF4J bridge Medium Product Manifest bundle-symbolicname jul.to.slf4j Medium Product Manifest Implementation-Title jul-to-slf4j High Product Manifest multi-release true Low Product pom artifactid jul-to-slf4j Highest Product pom groupid org.slf4j Highest Product pom name JUL to SLF4J bridge High Product pom parent-artifactid slf4j-parent Medium Product pom url http://www.slf4j.org Medium Version file version 2.0.16 High Version Manifest Bundle-Version 2.0.16 High Version Manifest Implementation-Version 2.0.16 High Version pom version 2.0.16 Highest
log4j-api-2.23.1.jarDescription:
The Apache Log4j API License:
Apache-2.0: https://www.apache.org/licenses/LICENSE-2.0.txt File Path: /home/runner/.m2/repository/org/apache/logging/log4j/log4j-api/2.23.1/log4j-api-2.23.1.jar
MD5: bee2e2dcbeeb983bdb6b71c9c3476b6a
SHA1: 9c15c29c526d9c6783049c0a77722693c66706e1
SHA256: 92ec1fd36ab3bc09de6198d2d7c0914685c0f7127ea931acc32fd2ecdd82ea89
Referenced In Project/Scope: Planmonitor Wonen API:compile
log4j-api-2.23.1.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.springframework.boot/spring-boot-starter-web@3.3.5
Evidence Type Source Name Value Confidence Vendor file name log4j-api High Vendor jar package name apache Highest Vendor jar package name log4j Highest Vendor jar package name logging Highest Vendor jar package name org Highest Vendor Manifest build-jdk-spec 17 Low Vendor Manifest bundle-activationpolicy lazy Low Vendor Manifest bundle-symbolicname org.apache.logging.log4j.api Medium Vendor Manifest Implementation-Vendor The Apache Software Foundation High Vendor Manifest multi-release true Low Vendor Manifest provide-capability osgi.service;objectClass:List="org.apache.logging.log4j.util.PropertySource";effective:=active,osgi.serviceloader;osgi.serviceloader="org.apache.logging.log4j.util.PropertySource";register:="org.apache.logging.log4j.util.EnvironmentPropertySource",osgi.serviceloader;osgi.serviceloader="org.apache.logging.log4j.util.PropertySource";register:="org.apache.logging.log4j.util.SystemPropertiesPropertySource" Low Vendor Manifest specification-vendor The Apache Software Foundation Low Vendor pom artifactid log4j-api Highest Vendor pom artifactid log4j-api Low Vendor pom groupid org.apache.logging.log4j Highest Vendor pom name Apache Log4j API High Vendor pom parent-artifactid log4j Low Product file name log4j-api High Product jar package name apache Highest Product jar package name log4j Highest Product jar package name logging Highest Product jar package name org Highest Product jar package name util Highest Product Manifest build-jdk-spec 17 Low Product Manifest bundle-activationpolicy lazy Low Product Manifest Bundle-Name Apache Log4j API Medium Product Manifest bundle-symbolicname org.apache.logging.log4j.api Medium Product Manifest Implementation-Title Apache Log4j API High Product Manifest multi-release true Low Product Manifest provide-capability osgi.service;objectClass:List="org.apache.logging.log4j.util.PropertySource";effective:=active,osgi.serviceloader;osgi.serviceloader="org.apache.logging.log4j.util.PropertySource";register:="org.apache.logging.log4j.util.EnvironmentPropertySource",osgi.serviceloader;osgi.serviceloader="org.apache.logging.log4j.util.PropertySource";register:="org.apache.logging.log4j.util.SystemPropertiesPropertySource" Low Product Manifest specification-title Apache Log4j API Medium Product pom artifactid log4j-api Highest Product pom groupid org.apache.logging.log4j Highest Product pom name Apache Log4j API High Product pom parent-artifactid log4j Medium Version file version 2.23.1 High Version Manifest Bundle-Version 2.23.1 High Version Manifest Implementation-Version 2.23.1 High Version pom version 2.23.1 Highest
log4j-to-slf4j-2.23.1.jarDescription:
The Apache Log4j binding between Log4j 2 API and SLF4J. License:
Apache-2.0: https://www.apache.org/licenses/LICENSE-2.0.txt File Path: /home/runner/.m2/repository/org/apache/logging/log4j/log4j-to-slf4j/2.23.1/log4j-to-slf4j-2.23.1.jar
MD5: d60143628bb91f9dfa0148c213388b39
SHA1: 425ad1eb8a39904d2830e907a324e956fb456520
SHA256: 7937a84055156910234e3b42868f55e68ff4b7becbb6ffd10146f72f5bf54dd5
Referenced In Project/Scope: Planmonitor Wonen API:compile
log4j-to-slf4j-2.23.1.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.springframework.boot/spring-boot-starter-web@3.3.5
Evidence Type Source Name Value Confidence Vendor file name log4j-to-slf4j High Vendor jar package name apache Highest Vendor jar package name logging Highest Vendor jar package name slf4j Highest Vendor Manifest build-jdk-spec 17 Low Vendor Manifest bundle-activationpolicy lazy Low Vendor Manifest bundle-symbolicname org.apache.logging.log4j.to.slf4j Medium Vendor Manifest Implementation-Vendor The Apache Software Foundation High Vendor Manifest multi-release false Low Vendor Manifest provide-capability osgi.service;objectClass:List="org.apache.logging.log4j.spi.Provider";effective:=active,osgi.serviceloader;osgi.serviceloader="org.apache.logging.log4j.spi.Provider";register:="org.apache.logging.slf4j.SLF4JProvider" Low Vendor Manifest specification-vendor The Apache Software Foundation Low Vendor pom artifactid log4j-to-slf4j Highest Vendor pom artifactid log4j-to-slf4j Low Vendor pom groupid org.apache.logging.log4j Highest Vendor pom name Apache Log4j to SLF4J Adapter High Vendor pom parent-artifactid log4j Low Product file name log4j-to-slf4j High Product jar package name apache Highest Product jar package name logging Highest Product jar package name slf4j Highest Product jar package name slf4jprovider Highest Product Manifest build-jdk-spec 17 Low Product Manifest bundle-activationpolicy lazy Low Product Manifest Bundle-Name Apache Log4j to SLF4J Adapter Medium Product Manifest bundle-symbolicname org.apache.logging.log4j.to.slf4j Medium Product Manifest Implementation-Title Apache Log4j to SLF4J Adapter High Product Manifest multi-release false Low Product Manifest provide-capability osgi.service;objectClass:List="org.apache.logging.log4j.spi.Provider";effective:=active,osgi.serviceloader;osgi.serviceloader="org.apache.logging.log4j.spi.Provider";register:="org.apache.logging.slf4j.SLF4JProvider" Low Product Manifest specification-title Apache Log4j to SLF4J Adapter Medium Product pom artifactid log4j-to-slf4j Highest Product pom groupid org.apache.logging.log4j Highest Product pom name Apache Log4j to SLF4J Adapter High Product pom parent-artifactid log4j Medium Version file version 2.23.1 High Version Manifest Bundle-Version 2.23.1 High Version Manifest Implementation-Version 2.23.1 High Version pom version 2.23.1 Highest
logback-core-1.5.11.jarDescription:
logback-core module License:
http://www.eclipse.org/legal/epl-v10.html, http://www.gnu.org/licenses/old-licenses/lgpl-2.1.html File Path: /home/runner/.m2/repository/ch/qos/logback/logback-core/1.5.11/logback-core-1.5.11.jar
MD5: cfba493f06b32d0b225ccb6015bc1170
SHA1: 727bdb8dc75b6c392f9be56224503948abc248e8
SHA256: e0f242aa3c4411ce8c7ec304a5afeaa75224680890f5f813153ef807cbb9542e
Referenced In Project/Scope: Planmonitor Wonen API:compile
logback-core-1.5.11.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.springframework.boot/spring-boot-starter-web@3.3.5
Evidence Type Source Name Value Confidence Vendor file name logback-core High Vendor jar package name ch Highest Vendor jar package name core Highest Vendor jar package name logback Highest Vendor jar package name qos Highest Vendor Manifest build-jdk-spec 21 Low Vendor Manifest bundle-docurl http://www.qos.ch Low Vendor Manifest bundle-symbolicname ch.qos.logback.core Medium Vendor Manifest Implementation-Vendor QOS.ch High Vendor Manifest multi-release true Low Vendor Manifest originally-created-by Apache Maven Bundle Plugin 5.1.8 Low Vendor Manifest specification-vendor QOS.ch Low Vendor pom artifactid logback-core Highest Vendor pom artifactid logback-core Low Vendor pom groupid ch.qos.logback Highest Vendor pom name Logback Core Module High Vendor pom parent-artifactid logback-parent Low Product file name logback-core High Product jar package name 21 Highest Product jar package name ch Highest Product jar package name core Highest Product jar package name logback Highest Product jar package name qos Highest Product Manifest build-jdk-spec 21 Low Product Manifest bundle-docurl http://www.qos.ch Low Product Manifest Bundle-Name Logback Core Module Medium Product Manifest bundle-symbolicname ch.qos.logback.core Medium Product Manifest Implementation-Title Logback Core Module High Product Manifest multi-release true Low Product Manifest originally-created-by Apache Maven Bundle Plugin 5.1.8 Low Product Manifest specification-title Logback Core Module Medium Product pom artifactid logback-core Highest Product pom groupid ch.qos.logback Highest Product pom name Logback Core Module High Product pom parent-artifactid logback-parent Medium Version file version 1.5.11 High Version Manifest Bundle-Version 1.5.11 High Version Manifest Implementation-Version 1.5.11 High Version pom version 1.5.11 Highest
Related Dependencies logback-classic-1.5.11.jarFile Path: /home/runner/.m2/repository/ch/qos/logback/logback-classic/1.5.11/logback-classic-1.5.11.jar MD5: b184ef4f3a946f23ddfcd1522fb4f483 SHA1: c4473fb51fea6682ad477cf3c2206b8b9623b9d8 SHA256: e223cce321ccb435d23e1dadfc6ceeccd862e2dabb1a2a5675318426f7fa1978 pkg:maven/ch.qos.logback/logback-classic@1.5.11 micrometer-core-1.13.6.jarDescription:
Core module of Micrometer containing instrumentation API and implementation License:
The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt File Path: /home/runner/.m2/repository/io/micrometer/micrometer-core/1.13.6/micrometer-core-1.13.6.jar
MD5: 51181ad9a7aee015a3bbcc34e5106df4
SHA1: 7620ca432f0e499bce51169e2f80c9ffee069d57
SHA256: 35966fbdcd552864729a2c136e0dff23683b5c3bc5ff701146c3e9f2098f28e7
Referenced In Project/Scope: Planmonitor Wonen API:compile
micrometer-core-1.13.6.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/io.micrometer/micrometer-registry-prometheus@1.13.6
Evidence Type Source Name Value Confidence Vendor file name micrometer-core High Vendor jar package name core Highest Vendor jar package name io Highest Vendor jar package name micrometer Highest Vendor Manifest automatic-module-name micrometer.core Medium Vendor Manifest branch HEAD Low Vendor Manifest build-date 2024-10-14_21:48:46 Low Vendor Manifest build-date-utc 2024-10-14T21:48:46.502305085Z Low Vendor Manifest build-host 5dd5ad5c7b4d Low Vendor Manifest build-job deploy Low Vendor Manifest build-number 38113 Low Vendor Manifest build-timezone Etc/UTC Low Vendor Manifest build-url https://circleci.com/gh/micrometer-metrics/micrometer/38113 Low Vendor Manifest built-os Linux Low Vendor Manifest built-status release Low Vendor Manifest bundle-symbolicname micrometer-core Medium Vendor Manifest change 0b4d07f Low Vendor Manifest full-change 0b4d07f598184a47a9241c0b0665093708ed82a3 Low Vendor Manifest module-email tludwig@vmware.com Low Vendor Manifest module-origin micrometer-metrics/micrometer.git Low Vendor Manifest module-owner tludwig@vmware.com Low Vendor Manifest module-source /micrometer-core Low Vendor Manifest multi-release true Low Vendor pom artifactid micrometer-core Highest Vendor pom artifactid micrometer-core Low Vendor pom developer email tludwig@vmware.com Low Vendor pom developer id shakuzen Medium Vendor pom developer name Tommy Ludwig Medium Vendor pom groupid io.micrometer Highest Vendor pom name micrometer-core High Vendor pom url micrometer-metrics/micrometer Highest Product file name micrometer-core High Product jar package name core Highest Product jar package name io Highest Product jar package name micrometer Highest Product Manifest automatic-module-name micrometer.core Medium Product Manifest branch HEAD Low Product Manifest build-date 2024-10-14_21:48:46 Low Product Manifest build-date-utc 2024-10-14T21:48:46.502305085Z Low Product Manifest build-host 5dd5ad5c7b4d Low Product Manifest build-job deploy Low Product Manifest build-number 38113 Low Product Manifest build-timezone Etc/UTC Low Product Manifest build-url https://circleci.com/gh/micrometer-metrics/micrometer/38113 Low Product Manifest built-os Linux Low Product Manifest built-status release Low Product Manifest Bundle-Name micrometer-core Medium Product Manifest bundle-symbolicname micrometer-core Medium Product Manifest change 0b4d07f Low Product Manifest full-change 0b4d07f598184a47a9241c0b0665093708ed82a3 Low Product Manifest Implementation-Title io.micrometer#micrometer-core;1.13.6 High Product Manifest module-email tludwig@vmware.com Low Product Manifest module-origin micrometer-metrics/micrometer.git Low Product Manifest module-owner tludwig@vmware.com Low Product Manifest module-source /micrometer-core Low Product Manifest multi-release true Low Product pom artifactid micrometer-core Highest Product pom developer email tludwig@vmware.com Low Product pom developer id shakuzen Low Product pom developer name Tommy Ludwig Low Product pom groupid io.micrometer Highest Product pom name micrometer-core High Product pom url micrometer-metrics/micrometer High Version file version 1.13.6 High Version Manifest Bundle-Version 1.13.6 High Version Manifest Implementation-Version 1.13.6 High Version pom version 1.13.6 Highest
Related Dependencies micrometer-commons-1.13.6.jarFile Path: /home/runner/.m2/repository/io/micrometer/micrometer-commons/1.13.6/micrometer-commons-1.13.6.jar MD5: e54aedafca666392e260bc1dc4c219f5 SHA1: 224f398df08315a8f9cda21fcb4f062d24da4a49 SHA256: a65be5dfcc3c782bf0ca28cea535c18b2260e24a773ddff053b85fc6a93c706e pkg:maven/io.micrometer/micrometer-commons@1.13.6 micrometer-jakarta9-1.13.6.jarFile Path: /home/runner/.m2/repository/io/micrometer/micrometer-jakarta9/1.13.6/micrometer-jakarta9-1.13.6.jar MD5: 34827c293ff767add8b811a22144290f SHA1: acdec61d99543a94d2488e725e20bbc1f4d5a568 SHA256: 9ac8ef7e5370c53039d0625b5b71af535064c5b14d75549da0b9f67e339fadd7 pkg:maven/io.micrometer/micrometer-jakarta9@1.13.6 micrometer-observation-1.13.6.jarFile Path: /home/runner/.m2/repository/io/micrometer/micrometer-observation/1.13.6/micrometer-observation-1.13.6.jar MD5: c100604bcd56708d43ec73e61d500617 SHA1: 8650b5372db17587f1271cd130beafa93d7eb573 SHA256: 73f5dbd085b0a9aeed414ea6c0c1ba457337036e0e4b68a4fb5d4498683d0edd pkg:maven/io.micrometer/micrometer-observation@1.13.6 micrometer-registry-prometheus-1.13.6.jarDescription:
MeterRegistry implementation for Prometheus using io.prometheus:prometheus-metrics-core. If you have compatibility issues with this module, you can go back to io.micrometer:micrometer-registry-prometheus-simpleclient that uses io.prometheus:simpleclient_common. License:
The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt File Path: /home/runner/.m2/repository/io/micrometer/micrometer-registry-prometheus/1.13.6/micrometer-registry-prometheus-1.13.6.jar
MD5: 75ba5055b55e52cbf2619ee3742892f1
SHA1: 92467f0a3b741e3718ad61185304432e5ca5e7a6
SHA256: 2a84a0864fe694a560771519d8a0a7650d82f6b83287c87d13f4a6944cf0c866
Referenced In Project/Scope: Planmonitor Wonen API:compile
micrometer-registry-prometheus-1.13.6.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/nl.b3p.pmw/planmonitor-wonen-api@1.0.0-SNAPSHOT
Evidence Type Source Name Value Confidence Vendor file name micrometer-registry-prometheus High Vendor jar package name io Highest Vendor jar package name micrometer Highest Vendor Manifest automatic-module-name micrometer.registry.prometheus Medium Vendor Manifest branch HEAD Low Vendor Manifest build-date 2024-10-14_21:48:47 Low Vendor Manifest build-date-utc 2024-10-14T21:48:47.877667359Z Low Vendor Manifest build-host 5dd5ad5c7b4d Low Vendor Manifest build-job deploy Low Vendor Manifest build-number 38113 Low Vendor Manifest build-timezone Etc/UTC Low Vendor Manifest build-url https://circleci.com/gh/micrometer-metrics/micrometer/38113 Low Vendor Manifest built-os Linux Low Vendor Manifest built-status release Low Vendor Manifest bundle-symbolicname micrometer-registry-prometheus Medium Vendor Manifest change 0b4d07f Low Vendor Manifest full-change 0b4d07f598184a47a9241c0b0665093708ed82a3 Low Vendor Manifest module-email tludwig@vmware.com Low Vendor Manifest module-origin micrometer-metrics/micrometer.git Low Vendor Manifest module-owner tludwig@vmware.com Low Vendor Manifest module-source /implementations/micrometer-registry-prometheus Low Vendor pom artifactid micrometer-registry-prometheus Highest Vendor pom artifactid micrometer-registry-prometheus Low Vendor pom developer email tludwig@vmware.com Low Vendor pom developer id shakuzen Medium Vendor pom developer name Tommy Ludwig Medium Vendor pom groupid io.micrometer Highest Vendor pom name micrometer-registry-prometheus High Vendor pom url micrometer-metrics/micrometer Highest Product file name micrometer-registry-prometheus High Product jar package name io Highest Product jar package name micrometer Highest Product Manifest automatic-module-name micrometer.registry.prometheus Medium Product Manifest branch HEAD Low Product Manifest build-date 2024-10-14_21:48:47 Low Product Manifest build-date-utc 2024-10-14T21:48:47.877667359Z Low Product Manifest build-host 5dd5ad5c7b4d Low Product Manifest build-job deploy Low Product Manifest build-number 38113 Low Product Manifest build-timezone Etc/UTC Low Product Manifest build-url https://circleci.com/gh/micrometer-metrics/micrometer/38113 Low Product Manifest built-os Linux Low Product Manifest built-status release Low Product Manifest Bundle-Name micrometer-registry-prometheus Medium Product Manifest bundle-symbolicname micrometer-registry-prometheus Medium Product Manifest change 0b4d07f Low Product Manifest full-change 0b4d07f598184a47a9241c0b0665093708ed82a3 Low Product Manifest Implementation-Title io.micrometer#micrometer-registry-prometheus;1.13.6 High Product Manifest module-email tludwig@vmware.com Low Product Manifest module-origin micrometer-metrics/micrometer.git Low Product Manifest module-owner tludwig@vmware.com Low Product Manifest module-source /implementations/micrometer-registry-prometheus Low Product pom artifactid micrometer-registry-prometheus Highest Product pom developer email tludwig@vmware.com Low Product pom developer id shakuzen Low Product pom developer name Tommy Ludwig Low Product pom groupid io.micrometer Highest Product pom name micrometer-registry-prometheus High Product pom url micrometer-metrics/micrometer High Version file version 1.13.6 High Version Manifest Bundle-Version 1.13.6 High Version Manifest Implementation-Version 1.13.6 High Version pom version 1.13.6 Highest
net.opengis.fes-32.0.jarDescription:
Filter Encoding Specification Schema EMF Model File Path: /home/runner/.m2/repository/org/geotools/ogc/net.opengis.fes/32.0/net.opengis.fes-32.0.jarMD5: 4d0dd88e5187631c9c55dcb44745e950SHA1: 4d84dd03dd5aabdcbb0a19a8738b6de933e21e41SHA256: bea1db821b87ef333285d768294168bae022d75212a13fc30b4c6a806b9e854eReferenced In Project/Scope: Planmonitor Wonen API:compilenet.opengis.fes-32.0.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.geotools/gt-wfs-ng@32.0
Evidence Type Source Name Value Confidence Vendor file name net.opengis.fes High Vendor jar package name net Highest Vendor jar package name opengis Highest Vendor Manifest automatic-module-name org.geotools.ogc.net.opengis.fes Medium Vendor Manifest build-jdk-spec 11 Low Vendor Manifest build-timestamp 18-Sep-2024 09:32 Low Vendor Manifest git-revision 1e7dfc3f76d52f53b7a7b0af9bc02d5a1c321535 Low Vendor pom artifactid net.opengis.fes Highest Vendor pom artifactid net.opengis.fes Low Vendor pom groupid org.geotools.ogc Highest Vendor pom name Filter Encoding Specification Model High Vendor pom parent-artifactid ogc Low Vendor pom parent-groupid org.geotools Medium Product file name net.opengis.fes High Product jar package name net Highest Product jar package name opengis Highest Product Manifest automatic-module-name org.geotools.ogc.net.opengis.fes Medium Product Manifest build-jdk-spec 11 Low Product Manifest build-timestamp 18-Sep-2024 09:32 Low Product Manifest git-revision 1e7dfc3f76d52f53b7a7b0af9bc02d5a1c321535 Low Product pom artifactid net.opengis.fes Highest Product pom groupid org.geotools.ogc Highest Product pom name Filter Encoding Specification Model High Product pom parent-artifactid ogc Medium Product pom parent-groupid org.geotools Medium Version file version 32.0 High Version Manifest project-version 32.0 Medium Version pom version 32.0 Highest
Related Dependencies net.opengis.ows-32.0.jarFile Path: /home/runner/.m2/repository/org/geotools/ogc/net.opengis.ows/32.0/net.opengis.ows-32.0.jar MD5: 6518e68f2f0374ee33d16bf3b886c974 SHA1: bf9031aa46d27a6b14ef4ac69276b41af2ae7a8d SHA256: b45d7e3a9eb4dd21ded629ed21ee89b9b9a9b62d366b6bf56738856087c0e868 pkg:maven/org.geotools.ogc/net.opengis.ows@32.0 net.opengis.wfs-32.0.jarFile Path: /home/runner/.m2/repository/org/geotools/ogc/net.opengis.wfs/32.0/net.opengis.wfs-32.0.jar MD5: 2cd67746ddd3fd6ddb15a927e9cb10c2 SHA1: 0c6825aa94e472a99d95ec3f600ba41bba373c53 SHA256: 67b8b96f04e4bc69ab9f56b7ab55c295103e2f7b151cc69426608c9b3f827a9a pkg:maven/org.geotools.ogc/net.opengis.wfs@32.0 org.eclipse.emf.ecore-2.15.0.jarDescription:
EMF Ecore License:
The Eclipse Public License Version 1.0: http://www.eclipse.org/legal/epl-v10.html File Path: /home/runner/.m2/repository/org/eclipse/emf/org.eclipse.emf.ecore/2.15.0/org.eclipse.emf.ecore-2.15.0.jar
MD5: 566797e186b122fb2cb64a699b1c2d2b
SHA1: ccfc09c8b6a0d4fadde09216d8a07678d38998de
SHA256: d5e3c25344fe27f14f514f5d6deb6e9cc3f6153fa462361261a8d49a3dfe9bbf
Referenced In Project/Scope: Planmonitor Wonen API:compile
org.eclipse.emf.ecore-2.15.0.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.geotools/gt-wfs-ng@32.0
Evidence Type Source Name Value Confidence Vendor file name org.eclipse.emf.ecore High Vendor jar package name eclipse Highest Vendor jar package name ecore Highest Vendor jar package name emf Highest Vendor Manifest automatic-module-name org.eclipse.emf.ecore Medium Vendor Manifest bundle-activationpolicy lazy Low Vendor Manifest bundle-localization plugin Low Vendor Manifest bundle-requiredexecutionenvironment J2SE-1.5 Low Vendor Manifest bundle-symbolicname org.eclipse.emf.ecore;singleton:=true Medium Vendor Manifest eclipse-buddypolicy dependent Low Vendor Manifest eclipse-lazystart true Low Vendor Manifest require-bundle org.eclipse.core.runtime;bundle-version="[3.6.0,4.0.0)";resolution:=optional;x-installation:=greedy,org.eclipse.emf.common;bundle-version="[2.15.0,3.0.0)";visibility:=reexport,org.eclipse.core.resources;bundle-version="[3.6.0,4.0.0)";resolution:=optional Low Vendor pom artifactid eclipse.emf.ecore Low Vendor pom artifactid org.eclipse.emf.ecore Highest Vendor pom developer email info@eclipse.org Low Vendor pom developer id eclipse Medium Vendor pom developer name Eclipse.org Medium Vendor pom groupid org.eclipse.emf Highest Vendor pom name org.eclipse.emf.ecore High Vendor pom parent-artifactid org.eclipse.emf.plugins Low Vendor pom url http://www.eclipse.org/emf Highest Product file name org.eclipse.emf.ecore High Product jar package name eclipse Highest Product jar package name ecore Highest Product jar package name emf Highest Product jar package name plugin Highest Product Manifest automatic-module-name org.eclipse.emf.ecore Medium Product Manifest bundle-activationpolicy lazy Low Product Manifest bundle-localization plugin Low Product Manifest Bundle-Name %pluginName Medium Product Manifest bundle-requiredexecutionenvironment J2SE-1.5 Low Product Manifest bundle-symbolicname org.eclipse.emf.ecore;singleton:=true Medium Product Manifest eclipse-buddypolicy dependent Low Product Manifest eclipse-lazystart true Low Product Manifest require-bundle org.eclipse.core.runtime;bundle-version="[3.6.0,4.0.0)";resolution:=optional;x-installation:=greedy,org.eclipse.emf.common;bundle-version="[2.15.0,3.0.0)";visibility:=reexport,org.eclipse.core.resources;bundle-version="[3.6.0,4.0.0)";resolution:=optional Low Product pom artifactid eclipse.emf.ecore Highest Product pom artifactid org.eclipse.emf.ecore Highest Product pom developer email info@eclipse.org Low Product pom developer id eclipse Low Product pom developer name Eclipse.org Low Product pom groupid org.eclipse.emf Highest Product pom name org.eclipse.emf.ecore High Product pom parent-artifactid org.eclipse.emf.plugins Medium Product pom url http://www.eclipse.org/emf Medium Version file version 2.15.0 High Version pom version 2.15.0 Highest
Related Dependencies org.eclipse.emf.common-2.15.0.jar org.eclipse.emf.ecore.xmi-2.15.0.jar CVE-2023-4218 suppress
In Eclipse IDE versions < 2023-09 (4.29) some files with xml content are parsed vulnerable against all sorts of XXE attacks. The user just needs to open any evil project or update an open project with a vulnerable file (for example for review a foreign repository or patch).
CWE-611 Improper Restriction of XML External Entity Reference
CVSSv3:
Base Score: MEDIUM (5.0) Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N/E:1.3/RC:R/MAV:A References:
Vulnerable Software & Versions: (show all )
org.eclipse.xsd-2.12.0.jarDescription:
http://www.eclipse.org License:
The Eclipse Public License Version 1.0: http://www.eclipse.org/legal/epl-v10.html File Path: /home/runner/.m2/repository/org/eclipse/xsd/org.eclipse.xsd/2.12.0/org.eclipse.xsd-2.12.0.jar
MD5: 75fa52ffcf1c5d0d9f85ca9aa7a0e3de
SHA1: 1d4c0da59535d3b79e73a91b1f161c97d3103668
SHA256: 0cbded7b090a2205c367b6d08f6ab32dc6857265b87673a4e51b77301ef1b953
Referenced In Project/Scope: Planmonitor Wonen API:compile
org.eclipse.xsd-2.12.0.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.geotools/gt-wfs-ng@32.0
Evidence Type Source Name Value Confidence Vendor file name org.eclipse.xsd High Vendor jar package name eclipse Highest Vendor jar package name xsd Highest Vendor Manifest bundle-activationpolicy lazy Low Vendor Manifest bundle-localization plugin Low Vendor Manifest bundle-requiredexecutionenvironment J2SE-1.5 Low Vendor Manifest bundle-symbolicname org.eclipse.xsd; singleton:=true Medium Vendor Manifest eclipse-lazystart true Low Vendor Manifest require-bundle org.eclipse.core.runtime;bundle-version="[3.5.0,4.0.0)",org.eclipse.emf.ecore;visibility:="reexport";bundle-version="[2.12.0,3.0.0)" Low Vendor pom artifactid eclipse.xsd Low Vendor pom artifactid org.eclipse.xsd Highest Vendor pom developer email info@eclipse.org Low Vendor pom developer id eclipse Medium Vendor pom developer name Eclipse.org Medium Vendor pom groupid org.eclipse.xsd Highest Vendor pom name org.eclipse.xsd High Vendor pom url http://www.eclipse.org/emf Highest Product file name org.eclipse.xsd High Product jar package name eclipse Highest Product jar package name ecore Highest Product jar package name xsd Highest Product Manifest bundle-activationpolicy lazy Low Product Manifest bundle-localization plugin Low Product Manifest Bundle-Name %pluginName Medium Product Manifest bundle-requiredexecutionenvironment J2SE-1.5 Low Product Manifest bundle-symbolicname org.eclipse.xsd; singleton:=true Medium Product Manifest eclipse-lazystart true Low Product Manifest require-bundle org.eclipse.core.runtime;bundle-version="[3.5.0,4.0.0)",org.eclipse.emf.ecore;visibility:="reexport";bundle-version="[2.12.0,3.0.0)" Low Product pom artifactid eclipse.xsd Highest Product pom artifactid org.eclipse.xsd Highest Product pom developer email info@eclipse.org Low Product pom developer id eclipse Low Product pom developer name Eclipse.org Low Product pom groupid org.eclipse.xsd Highest Product pom name org.eclipse.xsd High Product pom url http://www.eclipse.org/emf Medium Version file version 2.12.0 High Version pom version 2.12.0 Highest
CVE-2023-4218 suppress
In Eclipse IDE versions < 2023-09 (4.29) some files with xml content are parsed vulnerable against all sorts of XXE attacks. The user just needs to open any evil project or update an open project with a vulnerable file (for example for review a foreign repository or patch).
CWE-611 Improper Restriction of XML External Entity Reference
CVSSv3:
Base Score: MEDIUM (5.0) Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N/E:1.3/RC:R/MAV:A References:
Vulnerable Software & Versions: (show all )
org.w3.xlink-32.0.jarDescription:
Xlink Schema EMF Model File Path: /home/runner/.m2/repository/org/geotools/ogc/org.w3.xlink/32.0/org.w3.xlink-32.0.jarMD5: d77105568e728d190a77eaed6616629eSHA1: 471b1c5e11622e1061a205f2b71d1f8495634290SHA256: a2fc1bac91cdb93f336342e2fbdd0e315dd237b71c508e891dd2ca798d460c92Referenced In Project/Scope: Planmonitor Wonen API:compileorg.w3.xlink-32.0.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.geotools/gt-wfs-ng@32.0
Evidence Type Source Name Value Confidence Vendor file name org.w3.xlink High Vendor jar package name w3 Highest Vendor jar package name xlink Highest Vendor Manifest automatic-module-name org.geotools.ogc.org.w3.xlink Medium Vendor Manifest build-jdk-spec 11 Low Vendor Manifest build-timestamp 18-Sep-2024 09:32 Low Vendor Manifest git-revision 1e7dfc3f76d52f53b7a7b0af9bc02d5a1c321535 Low Vendor pom artifactid org.w3.xlink Highest Vendor pom artifactid w3.xlink Low Vendor pom groupid org.geotools.ogc Highest Vendor pom name Xlink Model High Vendor pom parent-artifactid ogc Low Vendor pom parent-groupid org.geotools Medium Product file name org.w3.xlink High Product jar package name w3 Highest Product jar package name xlink Highest Product Manifest automatic-module-name org.geotools.ogc.org.w3.xlink Medium Product Manifest build-jdk-spec 11 Low Product Manifest build-timestamp 18-Sep-2024 09:32 Low Product Manifest git-revision 1e7dfc3f76d52f53b7a7b0af9bc02d5a1c321535 Low Product pom artifactid org.w3.xlink Highest Product pom artifactid w3.xlink Highest Product pom groupid org.geotools.ogc Highest Product pom name Xlink Model High Product pom parent-artifactid ogc Medium Product pom parent-groupid org.geotools Medium Version file version 32.0 High Version Manifest project-version 32.0 Medium Version pom version 32.0 Highest
picocontainer-1.2.jarDescription:
Please refer to the main website for documentation. File Path: /home/runner/.m2/repository/picocontainer/picocontainer/1.2/picocontainer-1.2.jarMD5: 3e2dea8daea96da71724cae35da4cc0cSHA1: c55e869dcdddd735acd8789b74863cde8d15d444SHA256: d729282e385ed351684e649e261b5b02399327c4713c6b100f122942f923412fReferenced In Project/Scope: Planmonitor Wonen API:compilepicocontainer-1.2.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.geotools/gt-wfs-ng@32.0
Evidence Type Source Name Value Confidence Vendor file name picocontainer High Vendor jar package name picocontainer Highest Vendor Manifest extension-name picocontainer Medium Vendor Manifest Implementation-Vendor Codehaus High Vendor Manifest specification-vendor Codehaus Low Vendor pom artifactid picocontainer Highest Vendor pom artifactid picocontainer Low Vendor pom groupid picocontainer Highest Vendor pom name PicoContainer Core High Vendor pom organization name Codehaus High Vendor pom organization url http://codehaus.org/ Medium Vendor pom url http://www.picocontainer.org/ Highest Product file name picocontainer High Product jar package name picocontainer Highest Product Manifest extension-name picocontainer Medium Product Manifest Implementation-Title org.picocontainer High Product Manifest specification-title Small footprint Dependency Injection container Medium Product pom artifactid picocontainer Highest Product pom groupid picocontainer Highest Product pom name PicoContainer Core High Product pom organization name Codehaus Low Product pom organization url http://codehaus.org/ Low Product pom url http://www.picocontainer.org/ Medium Version file version 1.2 High Version Manifest Implementation-Version 1.2 High Version pom version 1.2 Highest
postgresql-42.7.4.jarDescription:
PostgreSQL JDBC Driver Postgresql License:
BSD-2-Clause: https://jdbc.postgresql.org/about/license.html File Path: /home/runner/.m2/repository/org/postgresql/postgresql/42.7.4/postgresql-42.7.4.jar
MD5: ef7e9be503b5c6243697d628fb196cad
SHA1: 264310fd7b2cd76738787dc0b9f7ea2e3b11adc1
SHA256: 188976721ead8e8627eb6d8389d500dccc0c9bebd885268a3047180274a6031e
Referenced In Project/Scope: Planmonitor Wonen API:compile
postgresql-42.7.4.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/nl.b3p.pmw/planmonitor-wonen-api@1.0.0-SNAPSHOT
Evidence Type Source Name Value Confidence Vendor file name postgresql High Vendor jar package name driver Highest Vendor jar package name jdbc Highest Vendor jar package name postgresql Highest Vendor Manifest automatic-module-name org.postgresql.jdbc Medium Vendor Manifest bundle-copyright Copyright (c) 2003-2024, PostgreSQL Global Development Group Low Vendor Manifest bundle-docurl https://jdbc.postgresql.org/ Low Vendor Manifest bundle-symbolicname org.postgresql.jdbc Medium Vendor Manifest Implementation-Vendor PostgreSQL Global Development Group High Vendor Manifest Implementation-Vendor-Id org.postgresql Medium Vendor Manifest provide-capability osgi.service;effective:=active;objectClass="org.osgi.service.jdbc.DataSourceFactory";osgi.jdbc.driver.class="org.postgresql.Driver";osgi.jdbc.driver.name="PostgreSQL JDBC Driver" Low Vendor Manifest specification-vendor Oracle Corporation Low Vendor pom artifactid postgresql Highest Vendor pom artifactid postgresql Low Vendor pom developer id bokken Medium Vendor pom developer id davecramer Medium Vendor pom developer id jurka Medium Vendor pom developer id oliver Medium Vendor pom developer id ringerc Medium Vendor pom developer id vlsi Medium Vendor pom developer name Brett Okken Medium Vendor pom developer name Craig Ringer Medium Vendor pom developer name Dave Cramer Medium Vendor pom developer name Kris Jurka Medium Vendor pom developer name Oliver Jowett Medium Vendor pom developer name Vladimir Sitnikov Medium Vendor pom groupid org.postgresql Highest Vendor pom name PostgreSQL JDBC Driver High Vendor pom organization name PostgreSQL Global Development Group High Vendor pom organization url https://jdbc.postgresql.org/ Medium Vendor pom url https://jdbc.postgresql.org Highest Product file name postgresql High Product hint analyzer product pgjdbc Highest Product hint analyzer product postgresql_jdbc_driver Highest Product jar package name driver Highest Product jar package name jdbc Highest Product jar package name osgi Highest Product jar package name postgresql Highest Product Manifest automatic-module-name org.postgresql.jdbc Medium Product Manifest bundle-copyright Copyright (c) 2003-2024, PostgreSQL Global Development Group Low Product Manifest bundle-docurl https://jdbc.postgresql.org/ Low Product Manifest Bundle-Name PostgreSQL JDBC Driver Medium Product Manifest bundle-symbolicname org.postgresql.jdbc Medium Product Manifest Implementation-Title PostgreSQL JDBC Driver High Product Manifest provide-capability osgi.service;effective:=active;objectClass="org.osgi.service.jdbc.DataSourceFactory";osgi.jdbc.driver.class="org.postgresql.Driver";osgi.jdbc.driver.name="PostgreSQL JDBC Driver" Low Product Manifest specification-title JDBC Medium Product pom artifactid postgresql Highest Product pom developer id bokken Low Product pom developer id davecramer Low Product pom developer id jurka Low Product pom developer id oliver Low Product pom developer id ringerc Low Product pom developer id vlsi Low Product pom developer name Brett Okken Low Product pom developer name Craig Ringer Low Product pom developer name Dave Cramer Low Product pom developer name Kris Jurka Low Product pom developer name Oliver Jowett Low Product pom developer name Vladimir Sitnikov Low Product pom groupid org.postgresql Highest Product pom name PostgreSQL JDBC Driver High Product pom organization name PostgreSQL Global Development Group Low Product pom organization url https://jdbc.postgresql.org/ Low Product pom url https://jdbc.postgresql.org Medium Version file version 42.7.4 High Version Manifest Bundle-Version 42.7.4 High Version Manifest Implementation-Version 42.7.4 High Version pom version 42.7.4 Highest
prometheus-metrics-config-1.2.1.jarDescription:
Configuration for Prometheus metrics and exposition formats.
License:
The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt File Path: /home/runner/.m2/repository/io/prometheus/prometheus-metrics-config/1.2.1/prometheus-metrics-config-1.2.1.jar
MD5: 88d8f9b9640588bac87e27ea61513050
SHA1: bcccb14176161671c4cb858b0ca50d680237fdbe
SHA256: b9fb02ef15e63d02aedea7fc57b3bdeae4dcfc91c905af60fffe66b8950f951f
Referenced In Project/Scope: Planmonitor Wonen API:compile
prometheus-metrics-config-1.2.1.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/io.micrometer/micrometer-registry-prometheus@1.13.6
Evidence Type Source Name Value Confidence Vendor file name prometheus-metrics-config High Vendor jar package name config Highest Vendor jar package name io Highest Vendor jar package name metrics Highest Vendor jar package name prometheus Highest Vendor Manifest automatic-module-name io.prometheus.metrics.config Medium Vendor Manifest bundle-symbolicname io.prometheus.metrics-config Medium Vendor pom artifactid prometheus-metrics-config Highest Vendor pom artifactid prometheus-metrics-config Low Vendor pom developer email fabian@fstab.de Low Vendor pom developer id fstab Medium Vendor pom developer name Fabian Stäber Medium Vendor pom groupid io.prometheus Highest Vendor pom name Prometheus Metrics Config High Vendor pom parent-artifactid client_java Low Product file name prometheus-metrics-config High Product jar package name config Highest Product jar package name io Highest Product jar package name metrics Highest Product jar package name prometheus Highest Product Manifest automatic-module-name io.prometheus.metrics.config Medium Product Manifest Bundle-Name Prometheus Metrics Config Medium Product Manifest bundle-symbolicname io.prometheus.metrics-config Medium Product pom artifactid prometheus-metrics-config Highest Product pom developer email fabian@fstab.de Low Product pom developer id fstab Low Product pom developer name Fabian Stäber Low Product pom groupid io.prometheus Highest Product pom name Prometheus Metrics Config High Product pom parent-artifactid client_java Medium Version file version 1.2.1 High Version Manifest Bundle-Version 1.2.1 High Version pom version 1.2.1 Highest
prometheus-metrics-core-1.2.1.jarDescription:
Core Prometheus metric types
License:
The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt File Path: /home/runner/.m2/repository/io/prometheus/prometheus-metrics-core/1.2.1/prometheus-metrics-core-1.2.1.jar
MD5: ad9629ea22769f13aff56afaecd8a28b
SHA1: 362330b5934a128e91e331f1497cd275fec1a81c
SHA256: 47ae6ba7f38550637c9d6a0e83b7959cd974ace32b60beb948f91d2edb35461b
Referenced In Project/Scope: Planmonitor Wonen API:compile
prometheus-metrics-core-1.2.1.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/io.micrometer/micrometer-registry-prometheus@1.13.6
Evidence Type Source Name Value Confidence Vendor file name prometheus-metrics-core High Vendor jar package name core Highest Vendor jar package name io Highest Vendor jar package name metrics Highest Vendor jar package name prometheus Highest Vendor Manifest automatic-module-name io.prometheus.metrics.core Medium Vendor Manifest bundle-symbolicname io.prometheus.metrics-core Medium Vendor pom artifactid prometheus-metrics-core Highest Vendor pom artifactid prometheus-metrics-core Low Vendor pom developer email fabian@fstab.de Low Vendor pom developer id fstab Medium Vendor pom developer name Fabian Stäber Medium Vendor pom groupid io.prometheus Highest Vendor pom name Prometheus Metrics Core High Vendor pom parent-artifactid client_java Low Product file name prometheus-metrics-core High Product jar package name core Highest Product jar package name io Highest Product jar package name metrics Highest Product jar package name prometheus Highest Product Manifest automatic-module-name io.prometheus.metrics.core Medium Product Manifest Bundle-Name Prometheus Metrics Core Medium Product Manifest bundle-symbolicname io.prometheus.metrics-core Medium Product pom artifactid prometheus-metrics-core Highest Product pom developer email fabian@fstab.de Low Product pom developer id fstab Low Product pom developer name Fabian Stäber Low Product pom groupid io.prometheus Highest Product pom name Prometheus Metrics Core High Product pom parent-artifactid client_java Medium Version file version 1.2.1 High Version Manifest Bundle-Version 1.2.1 High Version pom version 1.2.1 Highest
prometheus-metrics-exposition-formats-1.2.1.jarDescription:
Prometheus exposition formats.
License:
The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt File Path: /home/runner/.m2/repository/io/prometheus/prometheus-metrics-exposition-formats/1.2.1/prometheus-metrics-exposition-formats-1.2.1.jar
MD5: 153a1d7a7e61f0cda873a7c1782d6819
SHA1: 64190364467197c39bcc296ec80a99f6c979a7dc
SHA256: c618f0210980d6272fefcd76b2964883380a828ba6fc399a9bf84253d5d39107
Referenced In Project/Scope: Planmonitor Wonen API:runtime
prometheus-metrics-exposition-formats-1.2.1.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/io.micrometer/micrometer-registry-prometheus@1.13.6
Evidence Type Source Name Value Confidence Vendor file name prometheus-metrics-exposition-formats High Vendor jar package name expositionformats Highest Vendor jar package name io Highest Vendor jar package name metrics Highest Vendor jar package name prometheus Highest Vendor Manifest automatic-module-name io.prometheus.metrics.expositionformats Medium Vendor Manifest bundle-symbolicname io.prometheus.metrics-exposition-formats Medium Vendor pom artifactid prometheus-metrics-exposition-formats Highest Vendor pom artifactid prometheus-metrics-exposition-formats Low Vendor pom developer email fabian@fstab.de Low Vendor pom developer id fstab Medium Vendor pom developer name Fabian Stäber Medium Vendor pom groupid io.prometheus Highest Vendor pom name Prometheus Metrics Exposition Formats High Vendor pom parent-artifactid client_java Low Product file name prometheus-metrics-exposition-formats High Product jar package name expositionformats Highest Product jar package name io Highest Product jar package name metrics Highest Product jar package name prometheus Highest Product Manifest automatic-module-name io.prometheus.metrics.expositionformats Medium Product Manifest Bundle-Name Prometheus Metrics Exposition Formats Medium Product Manifest bundle-symbolicname io.prometheus.metrics-exposition-formats Medium Product pom artifactid prometheus-metrics-exposition-formats Highest Product pom developer email fabian@fstab.de Low Product pom developer id fstab Low Product pom developer name Fabian Stäber Low Product pom groupid io.prometheus Highest Product pom name Prometheus Metrics Exposition Formats High Product pom parent-artifactid client_java Medium Version file version 1.2.1 High Version Manifest Bundle-Version 1.2.1 High Version pom version 1.2.1 Highest
prometheus-metrics-model-1.2.1.jarDescription:
Data model for read-only immutable Prometheus metrics snapshots.
License:
The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt File Path: /home/runner/.m2/repository/io/prometheus/prometheus-metrics-model/1.2.1/prometheus-metrics-model-1.2.1.jar
MD5: 3183f9c7748cf28ef38ac7bdcb441e05
SHA1: 99caac1a3f974de6bc9882fbf6a09ea055733c7b
SHA256: 3520279e1fa7fbf0febd32b3a68863e389f32a152062e6627aff5a20c8408061
Referenced In Project/Scope: Planmonitor Wonen API:compile
prometheus-metrics-model-1.2.1.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/io.micrometer/micrometer-registry-prometheus@1.13.6
Evidence Type Source Name Value Confidence Vendor file name prometheus-metrics-model High Vendor jar package name io Highest Vendor jar package name metrics Highest Vendor jar package name model Highest Vendor jar package name prometheus Highest Vendor Manifest automatic-module-name io.prometheus.metrics.model Medium Vendor Manifest bundle-symbolicname io.prometheus.metrics-model Medium Vendor pom artifactid prometheus-metrics-model Highest Vendor pom artifactid prometheus-metrics-model Low Vendor pom developer email fabian@fstab.de Low Vendor pom developer id fstab Medium Vendor pom developer name Fabian Stäber Medium Vendor pom groupid io.prometheus Highest Vendor pom name Prometheus Metrics Model High Vendor pom parent-artifactid client_java Low Product file name prometheus-metrics-model High Product jar package name io Highest Product jar package name metrics Highest Product jar package name model Highest Product jar package name prometheus Highest Product Manifest automatic-module-name io.prometheus.metrics.model Medium Product Manifest Bundle-Name Prometheus Metrics Model Medium Product Manifest bundle-symbolicname io.prometheus.metrics-model Medium Product pom artifactid prometheus-metrics-model Highest Product pom developer email fabian@fstab.de Low Product pom developer id fstab Low Product pom developer name Fabian Stäber Low Product pom groupid io.prometheus Highest Product pom name Prometheus Metrics Model High Product pom parent-artifactid client_java Medium Version file version 1.2.1 High Version Manifest Bundle-Version 1.2.1 High Version pom version 1.2.1 Highest
prometheus-metrics-shaded-protobuf-1.2.1.jarDescription:
Shaded (reolocated to another package) dependencies for the Protobuf library used to create the Prometheus
Protobuf format
License:
The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt File Path: /home/runner/.m2/repository/io/prometheus/prometheus-metrics-shaded-protobuf/1.2.1/prometheus-metrics-shaded-protobuf-1.2.1.jar
MD5: 798d9caf489a86be67e3b0e1eba6e3c5
SHA1: 2b8ace486645dbaba1f3a694bd3a081f4d7a3aa5
SHA256: e6060c7ef59fcf1c110677b01a96e4a08ab23d138700a6e2d0999163122750e1
Referenced In Project/Scope: Planmonitor Wonen API:runtime
prometheus-metrics-shaded-protobuf-1.2.1.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/io.micrometer/micrometer-registry-prometheus@1.13.6
Evidence Type Source Name Value Confidence Vendor file name prometheus-metrics-shaded-protobuf High Vendor jar package name io Highest Vendor jar package name io Low Vendor jar package name metrics Highest Vendor jar package name metrics Low Vendor jar package name prometheus Highest Vendor jar package name prometheus Low Vendor jar package name shaded Highest Vendor pom artifactid prometheus-metrics-shaded-protobuf Highest Vendor pom artifactid prometheus-metrics-shaded-protobuf Low Vendor pom developer email fabian@fstab.de Low Vendor pom developer id fstab Medium Vendor pom developer name Fabian Stäber Medium Vendor pom groupid io.prometheus Highest Vendor pom name Shaded Protobuf High Vendor pom parent-artifactid prometheus-metrics-shaded-dependencies Low Product file name prometheus-metrics-shaded-protobuf High Product jar package name io Highest Product jar package name metrics Highest Product jar package name metrics Low Product jar package name prometheus Highest Product jar package name prometheus Low Product jar package name shaded Highest Product jar package name shaded Low Product pom artifactid prometheus-metrics-shaded-protobuf Highest Product pom developer email fabian@fstab.de Low Product pom developer id fstab Low Product pom developer name Fabian Stäber Low Product pom groupid io.prometheus Highest Product pom name Shaded Protobuf High Product pom parent-artifactid prometheus-metrics-shaded-dependencies Medium Version file version 1.2.1 High Version pom version 1.2.1 Highest
prometheus-metrics-tracer-common-1.2.1.jarDescription:
Common Module for Prometheus integrations with distributed tracing libraries.
License:
The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt File Path: /home/runner/.m2/repository/io/prometheus/prometheus-metrics-tracer-common/1.2.1/prometheus-metrics-tracer-common-1.2.1.jar
MD5: a0818de6ef86484d332d9cc3dede9d9b
SHA1: 74cc4ac3226a3937d6e5c74c06454258e7901cec
SHA256: c55e5d5272518e9cb468b13f252f828565b976ec78b8470cd7c622dc201ca82d
Referenced In Project/Scope: Planmonitor Wonen API:compile
prometheus-metrics-tracer-common-1.2.1.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/io.micrometer/micrometer-registry-prometheus@1.13.6
Evidence Type Source Name Value Confidence Vendor file name prometheus-metrics-tracer-common High Vendor jar package name io Highest Vendor jar package name metrics Highest Vendor jar package name prometheus Highest Vendor jar package name tracer Highest Vendor Manifest automatic-module-name io.prometheus.metrics.tracer.common Medium Vendor Manifest bundle-symbolicname io.prometheus.metrics-tracer-common Medium Vendor pom artifactid prometheus-metrics-tracer-common Highest Vendor pom artifactid prometheus-metrics-tracer-common Low Vendor pom developer email fabian@fstab.de Low Vendor pom developer id fstab Medium Vendor pom developer name Fabian Stäber Medium Vendor pom groupid io.prometheus Highest Vendor pom name Prometheus Metrics Tracer Common High Vendor pom parent-artifactid prometheus-metrics-tracer Low Product file name prometheus-metrics-tracer-common High Product jar package name io Highest Product jar package name metrics Highest Product jar package name prometheus Highest Product jar package name tracer Highest Product Manifest automatic-module-name io.prometheus.metrics.tracer.common Medium Product Manifest Bundle-Name Prometheus Metrics Tracer Common Medium Product Manifest bundle-symbolicname io.prometheus.metrics-tracer-common Medium Product pom artifactid prometheus-metrics-tracer-common Highest Product pom developer email fabian@fstab.de Low Product pom developer id fstab Low Product pom developer name Fabian Stäber Low Product pom groupid io.prometheus Highest Product pom name Prometheus Metrics Tracer Common High Product pom parent-artifactid prometheus-metrics-tracer Medium Version file version 1.2.1 High Version Manifest Bundle-Version 1.2.1 High Version pom version 1.2.1 Highest
re2j-1.6.jarDescription:
Linear time regular expressions for Java License:
Go License: https://golang.org/LICENSE File Path: /home/runner/.m2/repository/com/google/re2j/re2j/1.6/re2j-1.6.jar
MD5: 5f4aed37b6b18b402b2790160a50cd13
SHA1: a13e879fd7971738d06020fefeb108cc14e14169
SHA256: c8b5c3472d4db594a865b2e47f835d07fb8b1415eeba559dccfb0a6945f033cd
Referenced In Project/Scope: Planmonitor Wonen API:compile
re2j-1.6.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.geotools/gt-main@32.0
Evidence Type Source Name Value Confidence Vendor file name re2j High Vendor jar package name google Highest Vendor jar package name google Low Vendor jar package name re2 Highest Vendor jar package name re2j Highest Vendor jar package name re2j Low Vendor pom artifactid re2j Highest Vendor pom artifactid re2j Low Vendor pom developer email re2j-discuss@googlegroups.com Low Vendor pom developer id dev Medium Vendor pom developer name The RE2/J Contributors Medium Vendor pom groupid com.google.re2j Highest Vendor pom name RE2/J High Vendor pom url http://github.com/google/re2j Highest Product file name re2j High Product jar package name google Highest Product jar package name re2 Highest Product jar package name re2j Highest Product jar package name re2j Low Product pom artifactid re2j Highest Product pom developer email re2j-discuss@googlegroups.com Low Product pom developer id dev Low Product pom developer name The RE2/J Contributors Low Product pom groupid com.google.re2j Highest Product pom name RE2/J High Product pom url http://github.com/google/re2j Medium Version file version 1.6 High Version pom version 1.6 Highest
si-quantity-2.1.jarDescription:
Units of Measurement SI (Système International d'Unités) License:
https://opensource.org/licenses/BSD-3-Clause File Path: /home/runner/.m2/repository/si/uom/si-quantity/2.1/si-quantity-2.1.jar
MD5: 79685f60efca0051a6c579e1f1522542
SHA1: 5617d2cf30898ffcc760807009fe947483bd867b
SHA256: 2cdcfd3e5395db5576f5efc0f224b5bbd0731f3ec7552afee6ee7b63a4f65820
Referenced In Project/Scope: Planmonitor Wonen API:compile
si-quantity-2.1.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.geotools/gt-main@32.0
Evidence Type Source Name Value Confidence Vendor file name si-quantity High Vendor jar package name quantity Highest Vendor jar package name si Highest Vendor jar package name uom Highest Vendor Manifest bundle-docurl https://unitsofmeasurement.github.io/ Low Vendor Manifest bundle-symbolicname si.uom.si-quantity Medium Vendor pom artifactid si-quantity Highest Vendor pom artifactid si-quantity Low Vendor pom groupid si.uom Highest Vendor pom name SI Quantities High Vendor pom parent-artifactid si-parent Low Product file name si-quantity High Product jar package name quantity Highest Product jar package name si Highest Product jar package name uom Highest Product Manifest bundle-docurl https://unitsofmeasurement.github.io/ Low Product Manifest Bundle-Name SI Quantities Medium Product Manifest bundle-symbolicname si.uom.si-quantity Medium Product pom artifactid si-quantity Highest Product pom groupid si.uom Highest Product pom name SI Quantities High Product pom parent-artifactid si-parent Medium Version file version 2.1 High Version pom version 2.1 Highest
si-units-2.1.jarDescription:
"Units of Measurement SI (Système International d'Unités)" License:
"BSD 3-Clause";link="https://opensource.org/licenses/BSD-3-Clause" File Path: /home/runner/.m2/repository/si/uom/si-units/2.1/si-units-2.1.jar
MD5: 43abf4b896da58d8bca0e87f412a8457
SHA1: 7e812192ff1abbef6c79123249840c42b4e145d4
SHA256: 491ed9956ddf4b2e30180b087e1f6fb51debccb6d46785ae0d52026342013c51
Referenced In Project/Scope: Planmonitor Wonen API:compile
si-units-2.1.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.geotools/gt-main@32.0
Evidence Type Source Name Value Confidence Vendor file name si-units High Vendor jar package name si Highest Vendor jar package name uom Highest Vendor Manifest build-jdk-spec 14 Low Vendor Manifest bundle-developers dautelle;email="jean-marie@dautelle.com";name="Jean-Marie Dautelle";organization=Airbus;organizationUrl="https://www.airbus.com";roles="Architect,Java Developer,Spec Lead";timezone="+1",keilw;email="werner@catmedia.us";name="Werner Keil";organization="Creative Arts & Technologies";organizationUrl="http://www.catmedia.us";roles="Architect,Java Developer,Spec Lead";timezone="+1",otaviojava;email="otaviopolianasantana@gmail.com";name="Otávio Gonçalves de Santana";organization="Individual / SouJava";roles="Expert,Java Developer,Spec Lead";timezone="+1",desruisseaux;email="martin.desruisseaux@geomatys.com";name="Martin Desruisseaux";organization=Geomatys;organizationUrl="http://www.geomatys.com";roles="Expert,Java Developer";timezone="+1",thodorisbais;email="thodoris.bais@gmail.com";name="Thodoris Bais";organization="Individual / Utrecht JUG";roles="Expert,Java Developer";timezone="+1",Daniel-Dos;email="daniel.dias.analistati@gmail.com";name="Daniel Dias";organization="Individual / SouJava";roles="Expert,Java Developer";timezone=-5,jhg023;name="Jacob Glickman";organization=Individual;roles="Expert,Java Developer";timezone=-4,magesh678;name="Magesh Kasthuri";organization=Individual;roles="Expert,Java Developer";timezone="+4" Low Vendor Manifest bundle-docurl https://unitsofmeasurement.github.io/si-parent/si-units/ Low Vendor Manifest bundle-symbolicname si-units Medium Vendor Manifest implementation-url https://unitsofmeasurement.github.io/ Low Vendor Manifest Implementation-Vendor Units of Measurement contributors High Vendor Manifest specification-vendor Units of Measurement Low Vendor pom artifactid si-units Highest Vendor pom artifactid si-units Low Vendor pom groupid si.uom Highest Vendor pom name SI Units High Vendor pom parent-artifactid si-parent Low Product file name si-units High Product jar package name si Highest Product jar package name uom Highest Product Manifest build-jdk-spec 14 Low Product Manifest bundle-developers dautelle;email="jean-marie@dautelle.com";name="Jean-Marie Dautelle";organization=Airbus;organizationUrl="https://www.airbus.com";roles="Architect,Java Developer,Spec Lead";timezone="+1",keilw;email="werner@catmedia.us";name="Werner Keil";organization="Creative Arts & Technologies";organizationUrl="http://www.catmedia.us";roles="Architect,Java Developer,Spec Lead";timezone="+1",otaviojava;email="otaviopolianasantana@gmail.com";name="Otávio Gonçalves de Santana";organization="Individual / SouJava";roles="Expert,Java Developer,Spec Lead";timezone="+1",desruisseaux;email="martin.desruisseaux@geomatys.com";name="Martin Desruisseaux";organization=Geomatys;organizationUrl="http://www.geomatys.com";roles="Expert,Java Developer";timezone="+1",thodorisbais;email="thodoris.bais@gmail.com";name="Thodoris Bais";organization="Individual / Utrecht JUG";roles="Expert,Java Developer";timezone="+1",Daniel-Dos;email="daniel.dias.analistati@gmail.com";name="Daniel Dias";organization="Individual / SouJava";roles="Expert,Java Developer";timezone=-5,jhg023;name="Jacob Glickman";organization=Individual;roles="Expert,Java Developer";timezone=-4,magesh678;name="Magesh Kasthuri";organization=Individual;roles="Expert,Java Developer";timezone="+4" Low Product Manifest bundle-docurl https://unitsofmeasurement.github.io/si-parent/si-units/ Low Product Manifest Bundle-Name SI Units Medium Product Manifest bundle-symbolicname si-units Medium Product Manifest Implementation-Title SI Units High Product Manifest implementation-url https://unitsofmeasurement.github.io/ Low Product Manifest specification-title International System of Units Medium Product pom artifactid si-units Highest Product pom groupid si.uom Highest Product pom name SI Units High Product pom parent-artifactid si-parent Medium Version file version 2.1 High Version Manifest Implementation-Version 2.1 High Version pom version 2.1 Highest
slf4j-api-2.0.16.jarDescription:
The slf4j API License:
http://www.opensource.org/licenses/mit-license.php File Path: /home/runner/.m2/repository/org/slf4j/slf4j-api/2.0.16/slf4j-api-2.0.16.jar
MD5: c8de8f5d740584cb24b5652cfba8b3c4
SHA1: 0172931663a09a1fa515567af5fbef00897d3c04
SHA256: a12578dde1ba00bd9b816d388a0b879928d00bab3c83c240f7013bf4196c579a
Referenced In Project/Scope: Planmonitor Wonen API:compile
slf4j-api-2.0.16.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.springframework.boot/spring-boot-starter-jdbc@3.3.5
Evidence Type Source Name Value Confidence Vendor file name slf4j-api High Vendor jar package name slf4j Highest Vendor Manifest build-jdk-spec 21 Low Vendor Manifest bundle-docurl http://www.slf4j.org Low Vendor Manifest bundle-symbolicname slf4j.api Medium Vendor Manifest multi-release true Low Vendor pom artifactid slf4j-api Highest Vendor pom artifactid slf4j-api Low Vendor pom groupid org.slf4j Highest Vendor pom name SLF4J API Module High Vendor pom parent-artifactid slf4j-parent Low Vendor pom url http://www.slf4j.org Highest Product file name slf4j-api High Product jar package name slf4j Highest Product Manifest build-jdk-spec 21 Low Product Manifest bundle-docurl http://www.slf4j.org Low Product Manifest Bundle-Name SLF4J API Module Medium Product Manifest bundle-symbolicname slf4j.api Medium Product Manifest Implementation-Title slf4j-api High Product Manifest multi-release true Low Product pom artifactid slf4j-api Highest Product pom groupid org.slf4j Highest Product pom name SLF4J API Module High Product pom parent-artifactid slf4j-parent Medium Product pom url http://www.slf4j.org Medium Version file version 2.0.16 High Version Manifest Bundle-Version 2.0.16 High Version Manifest Implementation-Version 2.0.16 High Version pom version 2.0.16 Highest
snakeyaml-2.2.jarDescription:
YAML 1.1 parser and emitter for Java License:
Apache License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt File Path: /home/runner/.m2/repository/org/yaml/snakeyaml/2.2/snakeyaml-2.2.jar
MD5: d78aacf5f2de5b52f1a327470efd1ad7
SHA1: 3af797a25458550a16bf89acc8e4ab2b7f2bfce0
SHA256: 1467931448a0817696ae2805b7b8b20bfb082652bf9c4efaed528930dc49389b
Referenced In Project/Scope: Planmonitor Wonen API:compile
snakeyaml-2.2.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.springframework.boot/spring-boot-starter-web@3.3.5
Evidence Type Source Name Value Confidence Vendor file name snakeyaml High Vendor jar package name emitter Highest Vendor jar package name org Highest Vendor jar package name parser Highest Vendor jar package name snakeyaml Highest Vendor jar package name yaml Highest Vendor Manifest build-jdk-spec 11 Low Vendor Manifest bundle-symbolicname org.yaml.snakeyaml Medium Vendor Manifest multi-release true Low Vendor pom artifactid snakeyaml Highest Vendor pom artifactid snakeyaml Low Vendor pom developer email alexander.maslov@gmail.com Low Vendor pom developer email public.somov@gmail.com Low Vendor pom developer id asomov Medium Vendor pom developer id maslovalex Medium Vendor pom developer name Alexander Maslov Medium Vendor pom developer name Andrey Somov Medium Vendor pom groupid org.yaml Highest Vendor pom name SnakeYAML High Vendor pom url https://bitbucket.org/snakeyaml/snakeyaml Highest Product file name snakeyaml High Product jar package name emitter Highest Product jar package name org Highest Product jar package name parser Highest Product jar package name snakeyaml Highest Product jar package name yaml Highest Product Manifest build-jdk-spec 11 Low Product Manifest Bundle-Name SnakeYAML Medium Product Manifest bundle-symbolicname org.yaml.snakeyaml Medium Product Manifest multi-release true Low Product pom artifactid snakeyaml Highest Product pom developer email alexander.maslov@gmail.com Low Product pom developer email public.somov@gmail.com Low Product pom developer id asomov Low Product pom developer id maslovalex Low Product pom developer name Alexander Maslov Low Product pom developer name Andrey Somov Low Product pom groupid org.yaml Highest Product pom name SnakeYAML High Product pom url https://bitbucket.org/snakeyaml/snakeyaml Medium Version file version 2.2 High Version pom version 2.2 Highest
spring-boot-3.3.5.jarDescription:
Spring Boot License:
Apache License, Version 2.0: https://www.apache.org/licenses/LICENSE-2.0 File Path: /home/runner/.m2/repository/org/springframework/boot/spring-boot/3.3.5/spring-boot-3.3.5.jar
MD5: 1fd61eea0bc1381ce479c63d9ce2910e
SHA1: 1a0d1dc425d445503bd01c9aa3683aaebc524e3b
SHA256: 6a4a5c8a5b58c209705881e487b49445679ab69c858623fef700f634e24eb9c2
Referenced In Project/Scope: Planmonitor Wonen API:compile
spring-boot-3.3.5.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.springframework.boot/spring-boot-starter-web@3.3.5
Evidence Type Source Name Value Confidence Vendor file name spring-boot High Vendor hint analyzer vendor pivotal software Highest Vendor hint analyzer vendor SpringSource Highest Vendor hint analyzer vendor vmware Highest Vendor jar package name boot Highest Vendor jar package name springframework Highest Vendor Manifest automatic-module-name spring.boot Medium Vendor Manifest build-jdk-spec 17 Low Vendor pom artifactid spring-boot Highest Vendor pom artifactid spring-boot Low Vendor pom developer email ask@spring.io Low Vendor pom developer name Spring Medium Vendor pom developer org VMware, Inc. Medium Vendor pom developer org URL https://www.spring.io Medium Vendor pom groupid org.springframework.boot Highest Vendor pom name spring-boot High Vendor pom organization name VMware, Inc. High Vendor pom organization url https://spring.io Medium Vendor pom url https://spring.io/projects/spring-boot Highest Product file name spring-boot High Product jar package name boot Highest Product jar package name springframework Highest Product Manifest automatic-module-name spring.boot Medium Product Manifest build-jdk-spec 17 Low Product Manifest Implementation-Title Spring Boot High Product pom artifactid spring-boot Highest Product pom developer email ask@spring.io Low Product pom developer name Spring Low Product pom developer org VMware, Inc. Low Product pom developer org URL https://www.spring.io Low Product pom groupid org.springframework.boot Highest Product pom name spring-boot High Product pom organization name VMware, Inc. Low Product pom organization url https://spring.io Low Product pom url https://spring.io/projects/spring-boot Medium Version file version 3.3.5 High Version Manifest Implementation-Version 3.3.5 High Version pom version 3.3.5 Highest
Related Dependencies spring-boot-actuator-3.3.5.jarFile Path: /home/runner/.m2/repository/org/springframework/boot/spring-boot-actuator/3.3.5/spring-boot-actuator-3.3.5.jar MD5: ad8cd0b551f30d8aa3901e2b180ed574 SHA1: da2ee79b18d1e62e4225cdd02f690645988b2536 SHA256: 85bec816deaff50d088f6327f4792373be4efa24c7142f774eb10c3e2e79dc42 pkg:maven/org.springframework.boot/spring-boot-actuator@3.3.5 spring-boot-actuator-autoconfigure-3.3.5.jarFile Path: /home/runner/.m2/repository/org/springframework/boot/spring-boot-actuator-autoconfigure/3.3.5/spring-boot-actuator-autoconfigure-3.3.5.jar MD5: 0bc0877d3fba8fd601d2091db54bca7f SHA1: 8617ea7b29a74350ce526444e193cfca4c06854d SHA256: 6efa4cb3c2343dcf59fa1b0dac9ed69fe3cfb98c7873215e18c432f3da807358 pkg:maven/org.springframework.boot/spring-boot-actuator-autoconfigure@3.3.5 spring-boot-autoconfigure-3.3.5.jarFile Path: /home/runner/.m2/repository/org/springframework/boot/spring-boot-autoconfigure/3.3.5/spring-boot-autoconfigure-3.3.5.jar MD5: 6b832bb3ddf5faa1ec96993cd9ccbe92 SHA1: 1efbbd46eeef054986796200313f4bb0d53a7268 SHA256: 4e9d0d98414d92cc1844f84b88d58a0c968fde51e7333be48dffe424bab77844 pkg:maven/org.springframework.boot/spring-boot-autoconfigure@3.3.5 spring-boot-configuration-processor-3.3.5.jarFile Path: /home/runner/.m2/repository/org/springframework/boot/spring-boot-configuration-processor/3.3.5/spring-boot-configuration-processor-3.3.5.jar MD5: 32b01a1f304ac4697006763790ca2e6f SHA1: 33b9d3f722281e8f9dbbd284135ee8b9909c42cf SHA256: 81c398495000ebc54c0853647fb252fb6c0f94e25faaf913088bbeabe7acc908 pkg:maven/org.springframework.boot/spring-boot-configuration-processor@3.3.5 spring-boot-starter-3.3.5.jarFile Path: /home/runner/.m2/repository/org/springframework/boot/spring-boot-starter/3.3.5/spring-boot-starter-3.3.5.jar MD5: 4825a9dceacb76ba93723db223f48110 SHA1: 16b7a9acf1918a8f763e871ada3794e9ffd4a980 SHA256: b93286578561c145c254b6223d401d715de2fa4a68e93cfddef4ec1485e78fe5 pkg:maven/org.springframework.boot/spring-boot-starter@3.3.5 spring-boot-starter-actuator-3.3.5.jarFile Path: /home/runner/.m2/repository/org/springframework/boot/spring-boot-starter-actuator/3.3.5/spring-boot-starter-actuator-3.3.5.jar MD5: c3e50bcf0d24a6652815b0bc0e0297a1 SHA1: cb9256a44af4e67d60f4245c3d0a085ff359788d SHA256: 74b60c1f87c55a4dd2af3e8b13c147a8f2a39cad015d160f2689dd9195cec7f0 pkg:maven/org.springframework.boot/spring-boot-starter-actuator@3.3.5 spring-boot-starter-aop-3.3.5.jarFile Path: /home/runner/.m2/repository/org/springframework/boot/spring-boot-starter-aop/3.3.5/spring-boot-starter-aop-3.3.5.jar MD5: da44ea1e9fa2d4e3f2c3dc97d293fd9b SHA1: 872157ff7d70996d6302f61aad1b176b4905a169 SHA256: 452c9503297f9f34c14bc15484b26af6a9442c1739f6debcb19c3e19b5adcdf4 pkg:maven/org.springframework.boot/spring-boot-starter-aop@3.3.5 spring-boot-starter-jdbc-3.3.5.jarFile Path: /home/runner/.m2/repository/org/springframework/boot/spring-boot-starter-jdbc/3.3.5/spring-boot-starter-jdbc-3.3.5.jar MD5: a2d2ca67d375f9dde12dc4ba8bd4fba0 SHA1: 64c2c63ff90dffcd6996b3cd11e5d7e9805884d2 SHA256: b145e3872cea568c077bb799dd73ca6249a0284a076844b14f2622bb8ab0c150 pkg:maven/org.springframework.boot/spring-boot-starter-jdbc@3.3.5 spring-boot-starter-json-3.3.5.jarFile Path: /home/runner/.m2/repository/org/springframework/boot/spring-boot-starter-json/3.3.5/spring-boot-starter-json-3.3.5.jar MD5: 4a8f860be8f76019614b5816b0dffa0f SHA1: a92dd0bc808c9de278bc62bc37db4e409027657a SHA256: a2db1ba5bec8e99c54ec22fb7615557c02c82e26de46d6f6ec20c4ad30e25f27 pkg:maven/org.springframework.boot/spring-boot-starter-json@3.3.5 spring-boot-starter-logging-3.3.5.jarFile Path: /home/runner/.m2/repository/org/springframework/boot/spring-boot-starter-logging/3.3.5/spring-boot-starter-logging-3.3.5.jar MD5: 7232763d96faa463230c81e2f8d9bedd SHA1: de318d4baa64f02631accf51d708e906b304b4cc SHA256: c8099e083f51280529657736d7a186c377e9f7e458363d8f5d0028d3166fac28 pkg:maven/org.springframework.boot/spring-boot-starter-logging@3.3.5 spring-boot-starter-security-3.3.5.jarFile Path: /home/runner/.m2/repository/org/springframework/boot/spring-boot-starter-security/3.3.5/spring-boot-starter-security-3.3.5.jar MD5: 1a257ebbead1d57de44475188ea93935 SHA1: 662a0cd1672e55cdde5f8af1be79e18653e13c3d SHA256: 8db280cf0dc3d2b10f14a787c01a1add88f79b918acc1c917cac75be66e8259e pkg:maven/org.springframework.boot/spring-boot-starter-security@3.3.5 spring-boot-starter-tomcat-3.3.5.jarFile Path: /home/runner/.m2/repository/org/springframework/boot/spring-boot-starter-tomcat/3.3.5/spring-boot-starter-tomcat-3.3.5.jar MD5: 253e4a44c408358621e1f4c95aebf6a3 SHA1: 9fcf404e2efc06612af0c194e6d4f4162c6aac24 SHA256: 4a949fb40ecc2445c3d26275411c292a4b931e1b6c3ebcd9e83e1d6c309c6a25 pkg:maven/org.springframework.boot/spring-boot-starter-tomcat@3.3.5 spring-boot-starter-web-3.3.5.jarDescription:
Starter for building web, including RESTful, applications using Spring MVC. Uses Tomcat as the default embedded container License:
Apache License, Version 2.0: https://www.apache.org/licenses/LICENSE-2.0 File Path: /home/runner/.m2/repository/org/springframework/boot/spring-boot-starter-web/3.3.5/spring-boot-starter-web-3.3.5.jar
MD5: e6478322bec747283e2165acf757cf77
SHA1: 51cc6cd5fb15f4eecfadea4ac689ed290e65c2cc
SHA256: ae05f9cb1abee7d296df9b66ce147ad8c8d9a70850bc8d17dcf8af5d5a1e31b1
Referenced In Project/Scope: Planmonitor Wonen API:compile
spring-boot-starter-web-3.3.5.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/nl.b3p.pmw/planmonitor-wonen-api@1.0.0-SNAPSHOT
Evidence Type Source Name Value Confidence Vendor file name spring-boot-starter-web High Vendor hint analyzer vendor pivotal software Highest Vendor hint analyzer vendor SpringSource Highest Vendor hint analyzer vendor vmware Highest Vendor Manifest automatic-module-name spring.boot.starter.web Medium Vendor Manifest build-jdk-spec 17 Low Vendor Manifest spring-boot-jar-type dependencies-starter Low Vendor pom artifactid spring-boot-starter-web Highest Vendor pom artifactid spring-boot-starter-web Low Vendor pom developer email ask@spring.io Low Vendor pom developer name Spring Medium Vendor pom developer org VMware, Inc. Medium Vendor pom developer org URL https://www.spring.io Medium Vendor pom groupid org.springframework.boot Highest Vendor pom name spring-boot-starter-web High Vendor pom organization name VMware, Inc. High Vendor pom organization url https://spring.io Medium Vendor pom url https://spring.io/projects/spring-boot Highest Product file name spring-boot-starter-web High Product Manifest automatic-module-name spring.boot.starter.web Medium Product Manifest build-jdk-spec 17 Low Product Manifest Implementation-Title Starter for building web, including RESTful, applications using Spring MVC. Uses Tomcat as the default embedded container High Product Manifest spring-boot-jar-type dependencies-starter Low Product pom artifactid spring-boot-starter-web Highest Product pom developer email ask@spring.io Low Product pom developer name Spring Low Product pom developer org VMware, Inc. Low Product pom developer org URL https://www.spring.io Low Product pom groupid org.springframework.boot Highest Product pom name spring-boot-starter-web High Product pom organization name VMware, Inc. Low Product pom organization url https://spring.io Low Product pom url https://spring.io/projects/spring-boot Medium Version file version 3.3.5 High Version Manifest Implementation-Version 3.3.5 High Version pom version 3.3.5 Highest
spring-core-6.1.14.jarDescription:
Spring Core License:
Apache License, Version 2.0: https://www.apache.org/licenses/LICENSE-2.0 File Path: /home/runner/.m2/repository/org/springframework/spring-core/6.1.14/spring-core-6.1.14.jar
MD5: ade8db4ec4caaac31838585ed70f2246
SHA1: 45d2d808015bf6c5411e457fa09e843042dc3a76
SHA256: e15a1179fc9642ffed13ca55e2863e2da524ccd1083b7c6f1b5cfd5733f3b2c5
Referenced In Project/Scope: Planmonitor Wonen API:compile
spring-core-6.1.14.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.springframework.boot/spring-boot-starter-test@3.3.5
Evidence Type Source Name Value Confidence Vendor file name spring-core High Vendor hint analyzer vendor pivotal software Highest Vendor hint analyzer vendor SpringSource Highest Vendor hint analyzer vendor vmware Highest Vendor jar package name core Highest Vendor jar package name io Highest Vendor jar package name org Highest Vendor jar package name springframework Highest Vendor Manifest automatic-module-name spring.core Medium Vendor Manifest multi-release true Low Vendor pom artifactid spring-core Highest Vendor pom artifactid spring-core Low Vendor pom developer email juergen.hoeller@broadcom.com Low Vendor pom developer id jhoeller Medium Vendor pom developer name Juergen Hoeller Medium Vendor pom groupid org.springframework Highest Vendor pom name Spring Core High Vendor pom organization name Spring IO High Vendor pom organization url https://spring.io/projects/spring-framework Medium Vendor pom url spring-projects/spring-framework Highest Product file name spring-core High Product hint analyzer product springsource_spring_framework Highest Product jar package name core Highest Product jar package name io Highest Product jar package name org Highest Product jar package name springframework Highest Product Manifest automatic-module-name spring.core Medium Product Manifest Implementation-Title spring-core High Product Manifest multi-release true Low Product pom artifactid spring-core Highest Product pom developer email juergen.hoeller@broadcom.com Low Product pom developer id jhoeller Low Product pom developer name Juergen Hoeller Low Product pom groupid org.springframework Highest Product pom name Spring Core High Product pom organization name Spring IO Low Product pom organization url https://spring.io/projects/spring-framework Low Product pom url spring-projects/spring-framework High Version file version 6.1.14 High Version Manifest Implementation-Version 6.1.14 High Version pom version 6.1.14 Highest
Related Dependencies spring-aop-6.1.14.jarFile Path: /home/runner/.m2/repository/org/springframework/spring-aop/6.1.14/spring-aop-6.1.14.jar MD5: f40aa41366b7b7c5b86a802155003951 SHA1: 3d5002d4c415c1ff4720f214c804d3d7e7d10111 SHA256: 15596939a6dbcca5812dee1ab9a8b36f69536bfd80672798927d5f1ac0d384e5 pkg:maven/org.springframework/spring-aop@6.1.14 spring-beans-6.1.14.jarFile Path: /home/runner/.m2/repository/org/springframework/spring-beans/6.1.14/spring-beans-6.1.14.jar MD5: 676e951a31092c618000a396abc48eae SHA1: be71b919145e20fb7f38c81467d7d0f1c09ad1bd SHA256: 6cad84b2a35a33a85a313a19445a43e5432b68e4f0bbf6c2bfc4a885a93dd727 pkg:maven/org.springframework/spring-beans@6.1.14 spring-context-6.1.14.jarFile Path: /home/runner/.m2/repository/org/springframework/spring-context/6.1.14/spring-context-6.1.14.jar MD5: ed19fe4257cdba65249b46cb13fdd094 SHA1: b3d96fb4310376a608465c3544b7cfb790293787 SHA256: da76b53f6a20f09b38052a300435f3245780d30deb46ec5dd75314cda06fd365 pkg:maven/org.springframework/spring-context@6.1.14 spring-expression-6.1.14.jarFile Path: /home/runner/.m2/repository/org/springframework/spring-expression/6.1.14/spring-expression-6.1.14.jar MD5: 659f1a93d777bba25fcdf02d29474a0b SHA1: 495646d4968fb90aa97bc05a7d298d0c32898a1d SHA256: 69ed6b052397a929a0e4c452f63f2c9a3d22e046d8b80d878190205ddb259518 pkg:maven/org.springframework/spring-expression@6.1.14 spring-jcl-6.1.14.jarFile Path: /home/runner/.m2/repository/org/springframework/spring-jcl/6.1.14/spring-jcl-6.1.14.jar MD5: 0523f2619f56ecfb10a8ebc447b89ac3 SHA1: 842b2b24a375efd79af436860d22ba4e0082ff4b SHA256: 9975c462bacee7a0c1aa79e55aa4faed02bd28dc78d1252404da87f5f7fb4cb1 pkg:maven/org.springframework/spring-jcl@6.1.14 spring-jdbc-6.1.14.jarFile Path: /home/runner/.m2/repository/org/springframework/spring-jdbc/6.1.14/spring-jdbc-6.1.14.jar MD5: f84f2b60ff99b6227582746733a02a01 SHA1: 30ecdc7b9031553835ae16fa786fb24297adc857 SHA256: 11e23e6ad73f637498786542ea260185c519c0a092f084f1c54ec0e5ebeb84df pkg:maven/org.springframework/spring-jdbc@6.1.14 spring-tx-6.1.14.jarFile Path: /home/runner/.m2/repository/org/springframework/spring-tx/6.1.14/spring-tx-6.1.14.jar MD5: 17a340ec41c4c814dc8da7e09289bae1 SHA1: f6cc1a08472e8ac51298a26bbe0f8b3d47d43175 SHA256: deb826c513a2fbfa7568b59e367f9316c6109ffa7d330bb31f9defad9834eafb pkg:maven/org.springframework/spring-tx@6.1.14 spring-security-core-6.3.4.jarDescription:
Spring Security License:
Apache License, Version 2.0: https://www.apache.org/licenses/LICENSE-2.0 File Path: /home/runner/.m2/repository/org/springframework/security/spring-security-core/6.3.4/spring-security-core-6.3.4.jar
MD5: faf2244250a17a2f80b3c5766623e15d
SHA1: b090f940b1db00f58f5cad0675ce82670cc75904
SHA256: 81d8125481af81c667aa19c5f5bbbe02b4d65d16bb0c78a2642c0d2ae4f05622
Referenced In Project/Scope: Planmonitor Wonen API:compile
spring-security-core-6.3.4.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.springframework.security/spring-security-test@6.3.4
Evidence Type Source Name Value Confidence Vendor file name spring-security-core High Vendor hint analyzer vendor pivotal software Highest Vendor hint analyzer vendor SpringSource Highest Vendor hint analyzer vendor vmware Highest Vendor jar package name core Highest Vendor jar package name security Highest Vendor jar package name springframework Highest Vendor Manifest automatic-module-name spring.security.core Medium Vendor pom artifactid spring-security-core Highest Vendor pom artifactid spring-security-core Low Vendor pom developer email info@pivotal.io Low Vendor pom developer name Pivotal Medium Vendor pom developer org Pivotal Software, Inc. Medium Vendor pom developer org URL https://www.spring.io Medium Vendor pom groupid org.springframework.security Highest Vendor pom name spring-security-core High Vendor pom organization name Pivotal Software, Inc. High Vendor pom organization url https://spring.io Medium Vendor pom url https://spring.io/projects/spring-security Highest Product file name spring-security-core High Product jar package name core Highest Product jar package name security Highest Product jar package name springframework Highest Product Manifest automatic-module-name spring.security.core Medium Product Manifest Implementation-Title spring-security-core High Product pom artifactid spring-security-core Highest Product pom developer email info@pivotal.io Low Product pom developer name Pivotal Low Product pom developer org Pivotal Software, Inc. Low Product pom developer org URL https://www.spring.io Low Product pom groupid org.springframework.security Highest Product pom name spring-security-core High Product pom organization name Pivotal Software, Inc. Low Product pom organization url https://spring.io Low Product pom url https://spring.io/projects/spring-security Medium Version file version 6.3.4 High Version Manifest Implementation-Version 6.3.4 High Version pom version 6.3.4 Highest
Related Dependencies spring-security-config-6.3.4.jarFile Path: /home/runner/.m2/repository/org/springframework/security/spring-security-config/6.3.4/spring-security-config-6.3.4.jar MD5: 22cf7dabd6c9da8bee5209c1fd1c86b9 SHA1: ef05a0653492b58f3cfb11f5ee4b69007e259f57 SHA256: 3a9e8aa87ac383c5c458af094d231faf0bd42c7ef56e95ee6dbc86209c77863c pkg:maven/org.springframework.security/spring-security-config@6.3.4 spring-security-crypto-6.3.4.jarFile Path: /home/runner/.m2/repository/org/springframework/security/spring-security-crypto/6.3.4/spring-security-crypto-6.3.4.jar MD5: edb5be9a1c1915f2013bf76967b9cdd9 SHA1: 220656844844c23d07e8f0105e75c74530db2657 SHA256: 45de11bff410e6b003bbfb3dcbfb08e34c102f106076c071b33ee373e9aa6f72 pkg:maven/org.springframework.security/spring-security-crypto@6.3.4 spring-security-web-6.3.4.jarDescription:
Spring Security License:
Apache License, Version 2.0: https://www.apache.org/licenses/LICENSE-2.0 File Path: /home/runner/.m2/repository/org/springframework/security/spring-security-web/6.3.4/spring-security-web-6.3.4.jar
MD5: be09e80b9f0c2d8ea2bc64869a1e0716
SHA1: d0b9e554c0cc3291086a53e3537935b820d82742
SHA256: b15e61386643e91e8952affc336e31880c5795adede8de83648156bd9647ecb7
Referenced In Project/Scope: Planmonitor Wonen API:compile
spring-security-web-6.3.4.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.springframework.boot/spring-boot-starter-security@3.3.5
Evidence Type Source Name Value Confidence Vendor file name spring-security-web High Vendor hint analyzer vendor pivotal software Highest Vendor hint analyzer vendor SpringSource Highest Vendor hint analyzer vendor vmware Highest Vendor jar package name security Highest Vendor jar package name springframework Highest Vendor jar package name web Highest Vendor Manifest automatic-module-name spring.security.web Medium Vendor pom artifactid spring-security-web Highest Vendor pom artifactid spring-security-web Low Vendor pom developer email info@pivotal.io Low Vendor pom developer name Pivotal Medium Vendor pom developer org Pivotal Software, Inc. Medium Vendor pom developer org URL https://www.spring.io Medium Vendor pom groupid org.springframework.security Highest Vendor pom name spring-security-web High Vendor pom organization name Pivotal Software, Inc. High Vendor pom organization url https://spring.io Medium Vendor pom url https://spring.io/projects/spring-security Highest Product file name spring-security-web High Product jar package name security Highest Product jar package name springframework Highest Product jar package name web Highest Product Manifest automatic-module-name spring.security.web Medium Product Manifest Implementation-Title spring-security-web High Product pom artifactid spring-security-web Highest Product pom developer email info@pivotal.io Low Product pom developer name Pivotal Low Product pom developer org Pivotal Software, Inc. Low Product pom developer org URL https://www.spring.io Low Product pom groupid org.springframework.security Highest Product pom name spring-security-web High Product pom organization name Pivotal Software, Inc. Low Product pom organization url https://spring.io Low Product pom url https://spring.io/projects/spring-security Medium Version file version 6.3.4 High Version Manifest Implementation-Version 6.3.4 High Version pom version 6.3.4 Highest
spring-web-6.1.14.jarDescription:
Spring Web License:
Apache License, Version 2.0: https://www.apache.org/licenses/LICENSE-2.0 File Path: /home/runner/.m2/repository/org/springframework/spring-web/6.1.14/spring-web-6.1.14.jar
MD5: 60eeffc4f82256cbbd08ac976f24e250
SHA1: b45eaad7df4f37ce224acdcb555a6a3dd5c246b2
SHA256: 8fbbd95e27361aa9f656bee18d32bad062b4210d584909893cbc83dd9c64f472
Referenced In Project/Scope: Planmonitor Wonen API:compile
spring-web-6.1.14.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.springframework.boot/spring-boot-starter-web@3.3.5
Evidence Type Source Name Value Confidence Vendor file name spring-web High Vendor hint analyzer vendor pivotal software Highest Vendor hint analyzer vendor SpringSource Highest Vendor hint analyzer vendor vmware Highest Vendor jar package name springframework Highest Vendor jar package name web Highest Vendor Manifest automatic-module-name spring.web Medium Vendor pom artifactid spring-web Highest Vendor pom artifactid spring-web Low Vendor pom developer email juergen.hoeller@broadcom.com Low Vendor pom developer id jhoeller Medium Vendor pom developer name Juergen Hoeller Medium Vendor pom groupid org.springframework Highest Vendor pom name Spring Web High Vendor pom organization name Spring IO High Vendor pom organization url https://spring.io/projects/spring-framework Medium Vendor pom url spring-projects/spring-framework Highest Product file name spring-web High Product hint analyzer product springsource_spring_framework Highest Product jar package name springframework Highest Product jar package name web Highest Product Manifest automatic-module-name spring.web Medium Product Manifest Implementation-Title spring-web High Product pom artifactid spring-web Highest Product pom developer email juergen.hoeller@broadcom.com Low Product pom developer id jhoeller Low Product pom developer name Juergen Hoeller Low Product pom groupid org.springframework Highest Product pom name Spring Web High Product pom organization name Spring IO Low Product pom organization url https://spring.io/projects/spring-framework Low Product pom url spring-projects/spring-framework High Version file version 6.1.14 High Version Manifest Implementation-Version 6.1.14 High Version pom version 6.1.14 Highest
Related Dependencies spring-webmvc-6.1.14.jarFile Path: /home/runner/.m2/repository/org/springframework/spring-webmvc/6.1.14/spring-webmvc-6.1.14.jar MD5: 8a0a9223944f008cbc885f4dc42bbdb7 SHA1: 804478303aac6f91ea566efd4fef3dc06380528a SHA256: 9f096f7530ed385348d269dd9ad642dff47f50cbc758f17d69484952cdd0cbc0 pkg:maven/org.springframework/spring-webmvc@6.1.14 systems-common-2.1.jarDescription:
Parent POM for Unit Systems License:
BSD;link=LICENSE File Path: /home/runner/.m2/repository/systems/uom/systems-common/2.1/systems-common-2.1.jar
MD5: 8c3a56e267bbd26bb947c826e51bee2b
SHA1: a173cc6f1fedc8b32498d6cc9599251baa72de27
SHA256: b3cc1f3e604dcd18d3bba266db5fd01744bbd6b02f147377d4016585ba375cff
Referenced In Project/Scope: Planmonitor Wonen API:compile
systems-common-2.1.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.geotools/gt-main@32.0
Evidence Type Source Name Value Confidence Vendor file name systems-common High Vendor jar package name common Highest Vendor jar package name systems Highest Vendor jar package name uom Highest Vendor Manifest automatic-module-name systems.uom.common Medium Vendor Manifest build-jdk-spec 14 Low Vendor Manifest bundle-developers dautelle;email="jean-marie@dautelle.com";name="Jean-Marie Dautelle";organization=Airbus;organizationUrl="https://www.airbus.com";roles="Architect,Java Developer,Spec Lead";timezone="+1",keilw;email="werner@catmedia.us";name="Werner Keil";organization="Creative Arts & Technologies";organizationUrl="http://www.catmedia.us";roles="Architect,Java Developer,Spec Lead";timezone="+1",otaviojava;email="otaviopolianasantana@gmail.com";name="Otávio Gonçalves de Santana";organization="Individual / SouJava";roles="Expert,Java Developer,Spec Lead";timezone="+1",desruisseaux;email="martin.desruisseaux@geomatys.com";name="Martin Desruisseaux";organization=Geomatys;organizationUrl="http://www.geomatys.com";roles="Expert,Java Developer";timezone="+1",thodorisbais;email="thodoris.bais@gmail.com";name="Thodoris Bais";organization="Individual / Utrecht JUG";roles="Expert,Java Developer";timezone="+1",Daniel-Dos;email="daniel.dias.analistati@gmail.com";name="Daniel Dias";organization="Individual / SouJava";roles="Expert,Java Developer";timezone=-5,jhg023;name="Jacob Glickman";organization=Individual;roles="Expert,Java Developer";timezone=-4,magesh678;name="Magesh Kasthuri";organization=Individual;roles="Expert,Java Developer";timezone="+4" Low Vendor Manifest bundle-docurl http://www.uom.systems/systems-common Low Vendor Manifest bundle-symbolicname systems-common Medium Vendor Manifest implementation-url http://uom.technology Low Vendor Manifest Implementation-Vendor Units of Measurement contributors High Vendor Manifest specification-vendor Units of Measurement project Low Vendor pom artifactid systems-common Highest Vendor pom artifactid systems-common Low Vendor pom groupid systems.uom Highest Vendor pom name Units of Measurement Common Unit Systems High Vendor pom parent-artifactid systems-parent Low Product file name systems-common High Product jar package name common Highest Product jar package name systems Highest Product jar package name uom Highest Product Manifest automatic-module-name systems.uom.common Medium Product Manifest build-jdk-spec 14 Low Product Manifest bundle-developers dautelle;email="jean-marie@dautelle.com";name="Jean-Marie Dautelle";organization=Airbus;organizationUrl="https://www.airbus.com";roles="Architect,Java Developer,Spec Lead";timezone="+1",keilw;email="werner@catmedia.us";name="Werner Keil";organization="Creative Arts & Technologies";organizationUrl="http://www.catmedia.us";roles="Architect,Java Developer,Spec Lead";timezone="+1",otaviojava;email="otaviopolianasantana@gmail.com";name="Otávio Gonçalves de Santana";organization="Individual / SouJava";roles="Expert,Java Developer,Spec Lead";timezone="+1",desruisseaux;email="martin.desruisseaux@geomatys.com";name="Martin Desruisseaux";organization=Geomatys;organizationUrl="http://www.geomatys.com";roles="Expert,Java Developer";timezone="+1",thodorisbais;email="thodoris.bais@gmail.com";name="Thodoris Bais";organization="Individual / Utrecht JUG";roles="Expert,Java Developer";timezone="+1",Daniel-Dos;email="daniel.dias.analistati@gmail.com";name="Daniel Dias";organization="Individual / SouJava";roles="Expert,Java Developer";timezone=-5,jhg023;name="Jacob Glickman";organization=Individual;roles="Expert,Java Developer";timezone=-4,magesh678;name="Magesh Kasthuri";organization=Individual;roles="Expert,Java Developer";timezone="+4" Low Product Manifest bundle-docurl http://www.uom.systems/systems-common Low Product Manifest Bundle-Name Units of Measurement Common Unit Systems Medium Product Manifest bundle-symbolicname systems-common Medium Product Manifest Implementation-Title Units of Measurement Common Unit Systems High Product Manifest implementation-url http://uom.technology Low Product Manifest specification-title Units of Measurement Systems Medium Product pom artifactid systems-common Highest Product pom groupid systems.uom Highest Product pom name Units of Measurement Common Unit Systems High Product pom parent-artifactid systems-parent Medium Version file version 2.1 High Version Manifest Implementation-Version 2.1 High Version pom version 2.1 Highest
tomcat-embed-core-10.1.31.jarDescription:
Core Tomcat implementation License:
Apache License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt File Path: /home/runner/.m2/repository/org/apache/tomcat/embed/tomcat-embed-core/10.1.31/tomcat-embed-core-10.1.31.jar
MD5: 45e6600ff27fbef8cac1a76e264a820f
SHA1: a91cc0a95157228d9cccb1a9e8fb9c77c048c937
SHA256: 7f87f59ca35642cdda2f33bb9ecebe9754071b4d836c555966db8ca7f20c242b
Referenced In Project/Scope: Planmonitor Wonen API:compile
tomcat-embed-core-10.1.31.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.springframework.boot/spring-boot-starter-web@3.3.5
Evidence Type Source Name Value Confidence Vendor file name tomcat-embed-core High Vendor jar package name apache Highest Vendor jar package name core Highest Vendor jar package name tomcat Highest Vendor Manifest bundle-symbolicname org.apache.tomcat-embed-core Medium Vendor Manifest Implementation-Vendor Apache Software Foundation High Vendor Manifest provide-capability osgi.contract;osgi.contract=JakartaAuthentication;version:Version="3.0";uses:="jakarta.security.auth.message,jakarta.security.auth.message.callback,jakarta.security.auth.message.config,jakarta.security.auth.message.module",osgi.contract;osgi.contract=JakartaServlet;version:Version="6.0";uses:="jakarta.servlet,jakarta.servlet.annotation,jakarta.servlet.descriptor,jakarta.servlet.http,jakarta.servlet.resources" Low Vendor Manifest specification-vendor Apache Software Foundation Low Vendor manifest: jakarta/security/auth/message/ Implementation-Vendor Apache Software Foundation Medium Vendor manifest: jakarta/security/auth/message/callback/ Implementation-Vendor Apache Software Foundation Medium Vendor manifest: jakarta/security/auth/message/config/ Implementation-Vendor Apache Software Foundation Medium Vendor manifest: jakarta/security/auth/message/module/ Implementation-Vendor Apache Software Foundation Medium Vendor manifest: jakarta/servlet/ Implementation-Vendor Apache Software Foundation Medium Vendor manifest: jakarta/servlet/annotation/ Implementation-Vendor Apache Software Foundation Medium Vendor manifest: jakarta/servlet/descriptor/ Implementation-Vendor Apache Software Foundation Medium Vendor manifest: jakarta/servlet/http/ Implementation-Vendor Apache Software Foundation Medium Vendor manifest: jakarta/servlet/resources/ Implementation-Vendor Apache Software Foundation Medium Vendor pom artifactid tomcat-embed-core Highest Vendor pom artifactid tomcat-embed-core Low Vendor pom groupid org.apache.tomcat.embed Highest Vendor pom url https://tomcat.apache.org/ Highest Product file name tomcat-embed-core High Product jar package name annotation Highest Product jar package name apache Highest Product jar package name auth Highest Product jar package name core Highest Product jar package name descriptor Highest Product jar package name http Highest Product jar package name jakarta Highest Product jar package name message Highest Product jar package name security Highest Product jar package name servlet Highest Product jar package name tomcat Highest Product Manifest Bundle-Name tomcat-embed-core Medium Product Manifest bundle-symbolicname org.apache.tomcat-embed-core Medium Product Manifest Implementation-Title Apache Tomcat High Product Manifest provide-capability osgi.contract;osgi.contract=JakartaAuthentication;version:Version="3.0";uses:="jakarta.security.auth.message,jakarta.security.auth.message.callback,jakarta.security.auth.message.config,jakarta.security.auth.message.module",osgi.contract;osgi.contract=JakartaServlet;version:Version="6.0";uses:="jakarta.servlet,jakarta.servlet.annotation,jakarta.servlet.descriptor,jakarta.servlet.http,jakarta.servlet.resources" Low Product Manifest specification-title Apache Tomcat Medium Product manifest: jakarta/security/auth/message/ Implementation-Title jakarta.security.auth.message Medium Product manifest: jakarta/security/auth/message/ Specification-Title Jakarta Authentication SPI for Containers Medium Product manifest: jakarta/security/auth/message/callback/ Implementation-Title jakarta.security.auth.message Medium Product manifest: jakarta/security/auth/message/callback/ Specification-Title Jakarta Authentication SPI for Containers Medium Product manifest: jakarta/security/auth/message/config/ Implementation-Title jakarta.security.auth.message Medium Product manifest: jakarta/security/auth/message/config/ Specification-Title Jakarta Authentication SPI for Containers Medium Product manifest: jakarta/security/auth/message/module/ Implementation-Title jakarta.security.auth.message Medium Product manifest: jakarta/security/auth/message/module/ Specification-Title Jakarta Authentication SPI for Containers Medium Product manifest: jakarta/servlet/ Implementation-Title jakarta.servlet Medium Product manifest: jakarta/servlet/ Specification-Title Jakarta Servlet Medium Product manifest: jakarta/servlet/annotation/ Implementation-Title jakarta.servlet Medium Product manifest: jakarta/servlet/annotation/ Specification-Title Jakarta Servlet Medium Product manifest: jakarta/servlet/descriptor/ Implementation-Title jakarta.servlet Medium Product manifest: jakarta/servlet/descriptor/ Specification-Title Jakarta Servlet Medium Product manifest: jakarta/servlet/http/ Implementation-Title jakarta.servlet Medium Product manifest: jakarta/servlet/http/ Specification-Title Jakarta Servlet Medium Product manifest: jakarta/servlet/resources/ Implementation-Title jakarta.servlet Medium Product manifest: jakarta/servlet/resources/ Specification-Title Jakarta Servlet Medium Product pom artifactid tomcat-embed-core Highest Product pom groupid org.apache.tomcat.embed Highest Product pom url https://tomcat.apache.org/ Medium Version file version 10.1.31 High Version Manifest Bundle-Version 10.1.31 High Version Manifest Implementation-Version 10.1.31 High Version pom version 10.1.31 Highest
Related Dependencies tomcat-embed-websocket-10.1.31.jarFile Path: /home/runner/.m2/repository/org/apache/tomcat/embed/tomcat-embed-websocket/10.1.31/tomcat-embed-websocket-10.1.31.jar MD5: 637ca4c893f9567ecbdee9078e81f298 SHA1: 6f755a475e44ece496ae3402de0c6c2dbea63921 SHA256: 62c837ea5f7fd1ab92c6a349fced8812971edcb87683a111fd54fe6d5268a59c pkg:maven/org.apache.tomcat.embed/tomcat-embed-websocket@10.1.31 tomcat-embed-el-10.1.31.jarDescription:
Core Tomcat implementation License:
Apache License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt File Path: /home/runner/.m2/repository/org/apache/tomcat/embed/tomcat-embed-el/10.1.31/tomcat-embed-el-10.1.31.jar
MD5: 3c2f7a4f7b4289225c8f6494ae4d7259
SHA1: ab21108d69bb42160eff7b905f606a1d0c21ae67
SHA256: 0e120a96d333acf0e58fb4b74584e85fe41358225440cc4c2dee958f738d07b9
Referenced In Project/Scope: Planmonitor Wonen API:compile
tomcat-embed-el-10.1.31.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.springframework.boot/spring-boot-starter-web@3.3.5
Evidence Type Source Name Value Confidence Vendor file name tomcat-embed-el High Vendor jar package name apache Highest Vendor jar package name el Highest Vendor Manifest bundle-symbolicname org.apache.tomcat-embed-jasper-el Medium Vendor Manifest Implementation-Vendor Apache Software Foundation High Vendor Manifest provide-capability osgi.contract;osgi.contract=JakartaExpressionLanguage;version:Version="5.0";uses:="jakarta.el",osgi.service;objectClass:List="jakarta.el.ExpressionFactory";effective:=active,osgi.serviceloader;osgi.serviceloader="jakarta.el.ExpressionFactory";register:="org.apache.el.ExpressionFactoryImpl" Low Vendor Manifest specification-vendor Apache Software Foundation Low Vendor manifest: jakarta/el/ Implementation-Vendor Apache Software Foundation Medium Vendor pom artifactid tomcat-embed-el Highest Vendor pom artifactid tomcat-embed-el Low Vendor pom groupid org.apache.tomcat.embed Highest Vendor pom url https://tomcat.apache.org/ Highest Product file name tomcat-embed-el High Product jar package name apache Highest Product jar package name el Highest Product jar package name expression Highest Product jar package name expressionfactory Highest Product jar package name expressionfactoryimpl Highest Product jar package name jakarta Highest Product Manifest Bundle-Name tomcat-embed-jasper-el Medium Product Manifest bundle-symbolicname org.apache.tomcat-embed-jasper-el Medium Product Manifest Implementation-Title Apache Tomcat High Product Manifest provide-capability osgi.contract;osgi.contract=JakartaExpressionLanguage;version:Version="5.0";uses:="jakarta.el",osgi.service;objectClass:List="jakarta.el.ExpressionFactory";effective:=active,osgi.serviceloader;osgi.serviceloader="jakarta.el.ExpressionFactory";register:="org.apache.el.ExpressionFactoryImpl" Low Product Manifest specification-title Apache Tomcat Medium Product manifest: jakarta/el/ Implementation-Title jakarta.annotation Medium Product manifest: jakarta/el/ Specification-Title Jakarta Expression Language Medium Product pom artifactid tomcat-embed-el Highest Product pom groupid org.apache.tomcat.embed Highest Product pom url https://tomcat.apache.org/ Medium Version file version 10.1.31 High Version Manifest Bundle-Version 10.1.31 High Version Manifest Implementation-Version 10.1.31 High Version pom version 10.1.31 Highest
unit-api-2.2.jarDescription:
Units of Measurement Standard - This JSR specifies Java
packages for modeling and working with measurement values, quantities
and their corresponding units. License:
BSD 3-Clause: LICENSE File Path: /home/runner/.m2/repository/javax/measure/unit-api/2.2/unit-api-2.2.jar
MD5: 6cbc2bae2cb63cb4f85c5a187ee7dda2
SHA1: 2b624f7334b94a82c74cb954ede9fb1179b8d30c
SHA256: 667487e1ee57298cdc767885f00b86c899b2fe7e72dc00b6560a6aa64f2bc9c4
Referenced In Project/Scope: Planmonitor Wonen API:compile
unit-api-2.2.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.geotools/gt-main@32.0
Evidence Type Source Name Value Confidence Vendor file name unit-api High Vendor jar package name javax Highest Vendor jar package name measure Highest Vendor jar package name unit Highest Vendor Manifest automatic-module-name java.measure Medium Vendor Manifest build-jdk-spec 17 Low Vendor Manifest bundle-docurl http://unitsofmeasurement.github.io Low Vendor Manifest bundle-symbolicname javax.measure.unit-api Medium Vendor Manifest Implementation-Vendor Jean-Marie Dautelle, Werner Keil, Otavio Santana High Vendor Manifest multi-release true Low Vendor Manifest specification-vendor Jean-Marie Dautelle, Werner Keil, Otavio Santana Low Vendor pom artifactid unit-api Highest Vendor pom artifactid unit-api Low Vendor pom developer email daniel.dias.analistati@gmail.com Low Vendor pom developer email jean-marie@dautelle.com Low Vendor pom developer email martin.desruisseaux@geomatys.com Low Vendor pom developer email otaviopolianasantana@gmail.com Low Vendor pom developer email thodoris.bais@gmail.com Low Vendor pom developer email werner.keil@gmx.net Low Vendor pom developer id Daniel-Dos Medium Vendor pom developer id dautelle Medium Vendor pom developer id desruisseaux Medium Vendor pom developer id jhg023 Medium Vendor pom developer id keilw Medium Vendor pom developer id magesh678 Medium Vendor pom developer id mohalmo Medium Vendor pom developer id otaviojava Medium Vendor pom developer id thodorisbais Medium Vendor pom developer name Daniel Dias Medium Vendor pom developer name Jacob Glickman Medium Vendor pom developer name Jean-Marie Dautelle Medium Vendor pom developer name Magesh Kasthuri Medium Vendor pom developer name Martin Desruisseaux Medium Vendor pom developer name Mohammed Al-Moayed Medium Vendor pom developer name Otávio Gonçalves de Santana Medium Vendor pom developer name Thodoris Bais Medium Vendor pom developer name Werner Keil Medium Vendor pom developer org Airbus Medium Vendor pom developer org Creative Arts & Technologies Medium Vendor pom developer org Geomatys Medium Vendor pom developer org Individual Medium Vendor pom developer org Individual / SouJava Medium Vendor pom developer org Individual / Utrecht JUG Medium Vendor pom developer org URL http://www.airbus.com Medium Vendor pom developer org URL http://www.catmedia.us Medium Vendor pom developer org URL http://www.geomatys.com Medium Vendor pom groupid javax.measure Highest Vendor pom name Units of Measurement API High Vendor pom organization name Jean-Marie Dautelle, Werner Keil, Otavio Santana High Vendor pom organization url http://unitsofmeasurement.github.io Medium Vendor pom parent-artifactid uom-parent Low Vendor pom parent-groupid tech.uom Medium Vendor pom url https://unitsofmeasurement.github.io/unit-api/ Highest Product file name unit-api High Product jar package name javax Highest Product jar package name measure Highest Product jar package name unit Highest Product Manifest automatic-module-name java.measure Medium Product Manifest build-jdk-spec 17 Low Product Manifest bundle-docurl http://unitsofmeasurement.github.io Low Product Manifest Bundle-Name Units of Measurement API Medium Product Manifest bundle-symbolicname javax.measure.unit-api Medium Product Manifest Implementation-Title Units of Measurement API High Product Manifest multi-release true Low Product Manifest specification-title Units of Measurement API Medium Product pom artifactid unit-api Highest Product pom developer email daniel.dias.analistati@gmail.com Low Product pom developer email jean-marie@dautelle.com Low Product pom developer email martin.desruisseaux@geomatys.com Low Product pom developer email otaviopolianasantana@gmail.com Low Product pom developer email thodoris.bais@gmail.com Low Product pom developer email werner.keil@gmx.net Low Product pom developer id Daniel-Dos Low Product pom developer id dautelle Low Product pom developer id desruisseaux Low Product pom developer id jhg023 Low Product pom developer id keilw Low Product pom developer id magesh678 Low Product pom developer id mohalmo Low Product pom developer id otaviojava Low Product pom developer id thodorisbais Low Product pom developer name Daniel Dias Low Product pom developer name Jacob Glickman Low Product pom developer name Jean-Marie Dautelle Low Product pom developer name Magesh Kasthuri Low Product pom developer name Martin Desruisseaux Low Product pom developer name Mohammed Al-Moayed Low Product pom developer name Otávio Gonçalves de Santana Low Product pom developer name Thodoris Bais Low Product pom developer name Werner Keil Low Product pom developer org Airbus Low Product pom developer org Creative Arts & Technologies Low Product pom developer org Geomatys Low Product pom developer org Individual Low Product pom developer org Individual / SouJava Low Product pom developer org Individual / Utrecht JUG Low Product pom developer org URL http://www.airbus.com Low Product pom developer org URL http://www.catmedia.us Low Product pom developer org URL http://www.geomatys.com Low Product pom groupid javax.measure Highest Product pom name Units of Measurement API High Product pom organization name Jean-Marie Dautelle, Werner Keil, Otavio Santana Low Product pom organization url http://unitsofmeasurement.github.io Low Product pom parent-artifactid uom-parent Medium Product pom parent-groupid tech.uom Medium Product pom url https://unitsofmeasurement.github.io/unit-api/ Medium Version file version 2.2 High Version Manifest Implementation-Version 2.2 High Version pom version 2.2 Highest
uom-lib-common-2.2.jarDescription:
Units Common Library License:
BSD: LICENSE File Path: /home/runner/.m2/repository/tech/uom/lib/uom-lib-common/2.2/uom-lib-common-2.2.jar
MD5: eb6a1296ea160f731ac81ab8a2c7fed7
SHA1: 94a52abfdad3935c3769b4caab3ce9d384d8fb4e
SHA256: a01ece1c236b7b15a431b0383bdddf06dc6d7a85290e9a62b63904e1e4e0dc0d
Referenced In Project/Scope: Planmonitor Wonen API:compile
uom-lib-common-2.2.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.geotools/gt-main@32.0
Evidence Type Source Name Value Confidence Vendor file name uom-lib-common High Vendor jar package name common Highest Vendor jar package name lib Highest Vendor jar package name tech Highest Vendor jar package name uom Highest Vendor Manifest build-jdk-spec 17 Low Vendor Manifest bundle-developers dautelle;email="jean-marie@dautelle.com";name="Jean-Marie Dautelle";organization=Airbus;organizationUrl="https://www.airbus.com";roles="Architect,Java Developer,Spec Lead";timezone="+1",keilw;email="werner@catmedia.us";name="Werner Keil";organization=CATMedia;organizationUrl="http://www.catmedia.us";roles="Architect,Java Developer,Spec Lead";timezone="+1",otaviojava;email="otaviopolianasantana@gmail.com";name="Otávio Gonçalves de Santana";organization="Individual / SouJava";roles="Expert,Java Developer,Spec Lead";timezone=0,desruisseaux;email="martin.desruisseaux@geomatys.com";name="Martin Desruisseaux";organization=Geomatys;organizationUrl="http://www.geomatys.com";roles="Expert,Java Developer";timezone="+1",thodorisbais;email="thodoris.bais@gmail.com";name="Teo Bais";organization="Individual / Utrecht JUG";roles="Expert,Java Developer";timezone="+1",Daniel-Dos;email="daniel.dias.analistati@gmail.com";name="Daniel Dias";organization="Individual / SouJava";roles="Expert,Java Developer";timezone=-5,jhg023;name="Jacob Glickman";organization=Individual;roles="Expert,Java Developer";timezone=-4,magesh678;name="Magesh Kasthuri";organization=Individual;roles="Expert,Java Developer";timezone="+4" Low Vendor Manifest bundle-docurl https://unitsofmeasurement.github.io/uom-lib Low Vendor Manifest bundle-symbolicname uom-lib-common Medium Vendor Manifest implementation-url https://unitsofmeasurement.github.io Low Vendor Manifest Implementation-Vendor Units of Measurement contributors High Vendor Manifest specification-vendor Units of Measurement project Low Vendor pom artifactid uom-lib-common Highest Vendor pom artifactid uom-lib-common Low Vendor pom groupid tech.uom.lib Highest Vendor pom name Units of Measurement Common Library for Java High Vendor pom organization name Units of Measurement project High Vendor pom organization url https://unitsofmeasurement.github.io Medium Vendor pom parent-artifactid uom-lib Low Vendor pom url https://unitsofmeasurement.github.io/uom-lib Highest Product file name uom-lib-common High Product jar package name common Highest Product jar package name lib Highest Product jar package name tech Highest Product jar package name uom Highest Product Manifest build-jdk-spec 17 Low Product Manifest bundle-developers dautelle;email="jean-marie@dautelle.com";name="Jean-Marie Dautelle";organization=Airbus;organizationUrl="https://www.airbus.com";roles="Architect,Java Developer,Spec Lead";timezone="+1",keilw;email="werner@catmedia.us";name="Werner Keil";organization=CATMedia;organizationUrl="http://www.catmedia.us";roles="Architect,Java Developer,Spec Lead";timezone="+1",otaviojava;email="otaviopolianasantana@gmail.com";name="Otávio Gonçalves de Santana";organization="Individual / SouJava";roles="Expert,Java Developer,Spec Lead";timezone=0,desruisseaux;email="martin.desruisseaux@geomatys.com";name="Martin Desruisseaux";organization=Geomatys;organizationUrl="http://www.geomatys.com";roles="Expert,Java Developer";timezone="+1",thodorisbais;email="thodoris.bais@gmail.com";name="Teo Bais";organization="Individual / Utrecht JUG";roles="Expert,Java Developer";timezone="+1",Daniel-Dos;email="daniel.dias.analistati@gmail.com";name="Daniel Dias";organization="Individual / SouJava";roles="Expert,Java Developer";timezone=-5,jhg023;name="Jacob Glickman";organization=Individual;roles="Expert,Java Developer";timezone=-4,magesh678;name="Magesh Kasthuri";organization=Individual;roles="Expert,Java Developer";timezone="+4" Low Product Manifest bundle-docurl https://unitsofmeasurement.github.io/uom-lib Low Product Manifest Bundle-Name Units of Measurement Common Library for Java Medium Product Manifest bundle-symbolicname uom-lib-common Medium Product Manifest Implementation-Title Units of Measurement Common Library for Java High Product Manifest implementation-url https://unitsofmeasurement.github.io Low Product Manifest specification-title Units of Measurement Medium Product pom artifactid uom-lib-common Highest Product pom groupid tech.uom.lib Highest Product pom name Units of Measurement Common Library for Java High Product pom organization name Units of Measurement project Low Product pom organization url https://unitsofmeasurement.github.io Low Product pom parent-artifactid uom-lib Medium Product pom url https://unitsofmeasurement.github.io/uom-lib Medium Version file version 2.2 High Version Manifest Implementation-Version 2.2 High Version pom version 2.2 Highest
xml-commons-resolver-1.2.jarFile Path: /home/runner/.m2/repository/org/apache/xml/xml-commons-resolver/1.2/xml-commons-resolver-1.2.jarMD5: 706c533146c1f4ee46b66659ea14583aSHA1: 3d0f97750b3a03e0971831566067754ba4bfd68cSHA256: 47dcde8986019314ef78ae7280a94973a21d2ed95075a40a000b42da956429e1Referenced In Project/Scope: Planmonitor Wonen API:compilexml-commons-resolver-1.2.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.geotools/gt-wfs-ng@32.0
Evidence Type Source Name Value Confidence Vendor file name xml-commons-resolver High Vendor jar package name apache Highest Vendor jar package name resolver Highest Vendor jar package name xml Highest Vendor manifest: org/apache/xml/resolver Implementation-Vendor Apache Software Foundation Medium Vendor pom artifactid xml-commons-resolver Highest Vendor pom artifactid xml-commons-resolver Low Vendor pom groupid org.apache.xml Highest Product file name xml-commons-resolver High Product jar package name apache Highest Product jar package name catalog Highest Product jar package name resolver Highest Product jar package name xml Highest Product manifest: org/apache/xml/resolver Implementation-Title org.apache.xml.resolver.Catalog Medium Product pom artifactid xml-commons-resolver Highest Product pom groupid org.apache.xml Highest Version file version 1.2 High Version manifest: org/apache/xml/resolver Implementation-Version 1.2 Medium Version pom version 1.2 Highest