Dependency-Check is an open source tool performing a best effort analysis of 3rd party dependencies; false positives and false negatives may exist in the analysis performed by the tool. Use of the tool and the reporting provided constitutes acceptance for use in an AS IS condition, and there are NO warranties, implied or otherwise, with regard to the analysis or its use. Any use of the tool and the reporting provided is at the user’s risk. In no event shall the copyright holder or OWASP be held liable for any damages whatsoever arising out of or in connection with the use of this tool, the analysis performed, or the resulting report.

How to read the report | Suppressing false positives | Getting Help: github issues

 Sponsor

Project: Apache WSS4J

org.apache.wss4j:wss4j:4.0.0-SNAPSHOT

Scan Information (show all):

Summary

Display: Showing Vulnerable Dependencies (click to show all)

DependencyVulnerability IDsPackageHighest SeverityCVE CountConfidenceEvidence Count
bcpkix-jdk18on-1.76.jarcpe:2.3:a:bouncycastle:legion-of-the-bouncy-castle:1.76:*:*:*:*:*:*:*pkg:maven/org.bouncycastle/bcpkix-jdk18on@1.76 0Low66
bcprov-jdk18on-1.76.jarcpe:2.3:a:bouncycastle:bouncy-castle-crypto-package:1.76:*:*:*:*:*:*:*
cpe:2.3:a:bouncycastle:bouncy_castle_crypto_package:1.76:*:*:*:*:*:*:*
cpe:2.3:a:bouncycastle:legion-of-the-bouncy-castle:1.76:*:*:*:*:*:*:*
cpe:2.3:a:bouncycastle:legion-of-the-bouncy-castle-java-crytography-api:1.76:*:*:*:*:*:*:*
cpe:2.3:a:bouncycastle:the_bouncy_castle_crypto_package_for_java:1.76:*:*:*:*:*:*:*
pkg:maven/org.bouncycastle/bcprov-jdk18on@1.76 0Low60
bcutil-jdk18on-1.76.jarcpe:2.3:a:bouncycastle:legion-of-the-bouncy-castle:1.76:*:*:*:*:*:*:*pkg:maven/org.bouncycastle/bcutil-jdk18on@1.76 0Low50
cache-api-1.1.0.jarpkg:maven/javax.cache/cache-api@1.1.0 023
commons-codec-1.15.jarpkg:maven/commons-codec/commons-codec@1.15 0108
cryptacular-1.2.6.jarcpe:2.3:a:vt:cryptacular:1.2.6:*:*:*:*:*:*:*pkg:maven/org.cryptacular/cryptacular@1.2.6 0Highest39
ehcache-3.10.8-jakarta.jar (shaded: org.ehcache.modules:ehcache-107:3.10.8)pkg:maven/org.ehcache.modules/ehcache-107@3.10.8 021
ehcache-3.10.8-jakarta.jar (shaded: org.ehcache.modules:ehcache-api:3.10.8)pkg:maven/org.ehcache.modules/ehcache-api@3.10.8 021
ehcache-3.10.8-jakarta.jar (shaded: org.ehcache.modules:ehcache-core:3.10.8)pkg:maven/org.ehcache.modules/ehcache-core@3.10.8 021
ehcache-3.10.8-jakarta.jar (shaded: org.ehcache.modules:ehcache-impl:3.10.8)pkg:maven/org.ehcache.modules/ehcache-impl@3.10.8 021
ehcache-3.10.8-jakarta.jar (shaded: org.ehcache.modules:ehcache-xml-spi:3.10.8)pkg:maven/org.ehcache.modules/ehcache-xml-spi@3.10.8 021
ehcache-3.10.8-jakarta.jar (shaded: org.ehcache.modules:ehcache-xml:3.10.8)pkg:maven/org.ehcache.modules/ehcache-xml@3.10.8 021
ehcache-3.10.8-jakarta.jar (shaded: org.ehcache:sizeof:0.4.3)pkg:maven/org.ehcache/sizeof@0.4.3 013
ehcache-3.10.8-jakarta.jar (shaded: org.terracotta:offheap-store:2.5.3)pkg:maven/org.terracotta/offheap-store@2.5.3 017
ehcache-3.10.8-jakarta.jar (shaded: org.terracotta:statistics:2.1.2)pkg:maven/org.terracotta/statistics@2.1.2 025
ehcache-3.10.8-jakarta.jar (shaded: org.terracotta:terracotta-utilities-tools:0.0.15)pkg:maven/org.terracotta/terracotta-utilities-tools@0.0.15 019
ehcache-3.10.8-jakarta.jarcpe:2.3:a:service_project:service:3.10.8:*:*:*:*:*:*:*pkg:maven/org.ehcache/ehcache@3.10.8 0Low34
ehcache-3.10.8-jakarta.jar: sizeof-agent.jar 08
failureaccess-1.0.1.jarpkg:maven/com.google.guava/failureaccess@1.0.1 028
guava-32.1.3-jre.jarcpe:2.3:a:google:guava:32.1.3:*:*:*:*:*:*:*pkg:maven/com.google.guava/guava@32.1.3-jre 0Highest27
httpclient5-5.2.1.jarcpe:2.3:a:apache:httpclient:5.2.1:*:*:*:*:*:*:*pkg:maven/org.apache.httpcomponents.client5/httpclient5@5.2.1 0Highest30
httpcore5-5.2.2.jarpkg:maven/org.apache.httpcomponents.core5/httpcore5@5.2.2 030
httpcore5-h2-5.2.jarpkg:maven/org.apache.httpcomponents.core5/httpcore5-h2@5.2 030
istack-commons-runtime-4.0.1.jarpkg:maven/com.sun.istack/istack-commons-runtime@4.0.1 033
jackson-annotations-2.15.2.jarcpe:2.3:a:fasterxml:jackson-modules-java8:2.15.2:*:*:*:*:*:*:*pkg:maven/com.fasterxml.jackson.core/jackson-annotations@2.15.2 0Low38
jackson-core-2.12.7.jarcpe:2.3:a:fasterxml:jackson-modules-java8:2.12.7:*:*:*:*:*:*:*pkg:maven/com.fasterxml.jackson.core/jackson-core@2.12.7 0Low45
jackson-databind-2.15.2.jarcpe:2.3:a:fasterxml:jackson-databind:2.15.2:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-modules-java8:2.15.2:*:*:*:*:*:*:*
pkg:maven/com.fasterxml.jackson.core/jackson-databind@2.15.2MEDIUM1Highest41
jakarta.activation-api-2.1.0.jarpkg:maven/jakarta.activation/jakarta.activation-api@2.1.0 045
jakarta.activation-api-2.1.2.jarpkg:maven/jakarta.activation/jakarta.activation-api@2.1.2 045
jakarta.mail-api-2.1.2.jarpkg:maven/jakarta.mail/jakarta.mail-api@2.1.2 036
jakarta.servlet-api-5.0.0.jarcpe:2.3:a:oracle:projects:5.0.0:*:*:*:*:*:*:*pkg:maven/jakarta.servlet/jakarta.servlet-api@5.0.0 0Low46
jakarta.xml.bind-api-4.0.0.jarpkg:maven/jakarta.xml.bind/jakarta.xml.bind-api@4.0.0 031
jasypt-1.9.3.jarcpe:2.3:a:jasypt_project:jasypt:1.9.3:*:*:*:*:*:*:*pkg:maven/org.jasypt/jasypt@1.9.3 0Highest30
jaxb-core-3.0.2.jarcpe:2.3:a:eclipse:glassfish:3.0.2:*:*:*:*:*:*:*pkg:maven/org.glassfish.jaxb/jaxb-core@3.0.2 0Highest45
jsr305-3.0.2.jarpkg:maven/com.google.code.findbugs/jsr305@3.0.2 017
metrics-core-4.2.19.jarpkg:maven/io.dropwizard.metrics/metrics-core@4.2.19 027
metrics-json-4.2.19.jarpkg:maven/io.dropwizard.metrics/metrics-json@4.2.19 029
neethi-3.2.0.jarpkg:maven/org.apache.neethi/neethi@3.2.0 086
opensaml-core-api-5.0.0.jarcpe:2.3:a:shibboleth:opensaml:5.0.0:*:*:*:*:*:*:*pkg:maven/org.opensaml/opensaml-core-api@5.0.0 0Highest26
org.apache.wss4j:wss4j-bindings:4.0.0-SNAPSHOTcpe:2.3:a:apache:wss4j:4.0.0:snapshot:*:*:*:*:*:*pkg:maven/org.apache.wss4j/wss4j-bindings@4.0.0-SNAPSHOT 0Highest6
org.apache.wss4j:wss4j-policy:4.0.0-SNAPSHOTcpe:2.3:a:apache:wss4j:4.0.0:snapshot:*:*:*:*:*:*pkg:maven/org.apache.wss4j/wss4j-policy@4.0.0-SNAPSHOT 0Highest6
org.apache.wss4j:wss4j-ws-security-common:4.0.0-SNAPSHOTcpe:2.3:a:apache:wss4j:4.0.0:snapshot:*:*:*:*:*:*pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT 0Highest6
org.apache.wss4j:wss4j-ws-security-dom:4.0.0-SNAPSHOTcpe:2.3:a:apache:wss4j:4.0.0:snapshot:*:*:*:*:*:*pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.0-SNAPSHOT 0Highest6
org.apache.wss4j:wss4j-ws-security-stax:4.0.0-SNAPSHOTcpe:2.3:a:apache:wss4j:4.0.0:snapshot:*:*:*:*:*:*pkg:maven/org.apache.wss4j/wss4j-ws-security-stax@4.0.0-SNAPSHOT 0Highest6
shib-networking-9.0.0.jarpkg:maven/net.shibboleth/shib-networking@9.0.0 023
shib-security-9.0.0.jarpkg:maven/net.shibboleth/shib-security@9.0.0 025
shib-support-9.0.0.jarpkg:maven/net.shibboleth/shib-support@9.0.0 023
shib-velocity-9.0.0.jarpkg:maven/net.shibboleth/shib-velocity@9.0.0 025
slf4j-api-2.0.9.jarpkg:maven/org.slf4j/slf4j-api@2.0.9 029
stax2-api-4.2.1.jarpkg:maven/org.codehaus.woodstox/stax2-api@4.2.1 052
txw2-3.0.2.jarcpe:2.3:a:eclipse:glassfish:3.0.2:*:*:*:*:*:*:*pkg:maven/org.glassfish.jaxb/txw2@3.0.2 0Highest35
woodstox-core-6.5.1.jar (shaded: com.sun.xml.bind.jaxb:isorelax:20090621)pkg:maven/com.sun.xml.bind.jaxb/isorelax@20090621 012
woodstox-core-6.5.1.jar (shaded: net.java.dev.msv:xsdlib:2013.6.1)cpe:2.3:a:xml_library_project:xml_library:2013.6.1:*:*:*:*:*:*:*pkg:maven/net.java.dev.msv/xsdlib@2013.6.1 0Low9
woodstox-core-6.5.1.jarcpe:2.3:a:fasterxml:woodstox:6.5.1:*:*:*:*:*:*:*pkg:maven/com.fasterxml.woodstox/woodstox-core@6.5.1 0Highest56
wsdl4j-1.6.3.jarpkg:maven/wsdl4j/wsdl4j@1.6.3 027
xmlsec-4.0.0.jarcpe:2.3:a:apache:santuario_xml_security_for_java:4.0.0:*:*:*:*:*:*:*
cpe:2.3:a:apache:xml_security_for_java:4.0.0:*:*:*:*:*:*:*
pkg:maven/org.apache.santuario/xmlsec@4.0.0 0Low46

Dependencies (vulnerable)

bcpkix-jdk18on-1.76.jar

Description:

The Bouncy Castle Java APIs for CMS, PKCS, EAC, TSP, CMP, CRMF, OCSP, and certificate generation. This jar contains APIs for JDK 1.8 and up. The APIs can be used in conjunction with a JCE/JCA provider such as the one provided with the Bouncy Castle Cryptography APIs.

License:

Bouncy Castle Licence: https://www.bouncycastle.org/licence.html
File Path: /Users/coheigea/.m2/repository/org/bouncycastle/bcpkix-jdk18on/1.76/bcpkix-jdk18on-1.76.jar
MD5: 661d57d384f768f2bf92c0392f88379e
SHA1: 10c9cf5c1b4d64abeda28ee32fbade3b74373622
SHA256:935a388854c329f9a6f32708f30c90045d2f91294fa687281273145d4cf9834a
Referenced In Projects/Scopes:
  • Apache WSS4J Streaming WS-Security:compile
  • Apache WSS4J Web WS-Security:compile
  • Apache WSS4J WS-Security Common:compile
  • Apache WSS4J Streaming WS-SecurityPolicy:compile

bcpkix-jdk18on-1.76.jar is in the transitive dependency tree of the listed items.Included by:
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.0-SNAPSHOT
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT

Identifiers

bcprov-jdk18on-1.76.jar

Description:

The Bouncy Castle Crypto package is a Java implementation of cryptographic algorithms. This jar contains JCE provider and lightweight API for the Bouncy Castle Cryptography APIs for JDK 1.8 and up.

License:

Bouncy Castle Licence: https://www.bouncycastle.org/licence.html
File Path: /Users/coheigea/.m2/repository/org/bouncycastle/bcprov-jdk18on/1.76/bcprov-jdk18on-1.76.jar
MD5: 7020b9a9e1b951f5754a2168a26367f1
SHA1: 3a785d0b41806865ad7e311162bfa3fa60b3965b
SHA256:fda85d777aaae168015860b23a77cad9b8d3a1d5c904fda875313427bd560179
Referenced In Projects/Scopes:
  • Apache WSS4J Web WS-Security:compile
  • Apache WSS4J WS-Security Common:compile
  • Apache WSS4J Streaming WS-SecurityPolicy:compile

bcprov-jdk18on-1.76.jar is in the transitive dependency tree of the listed items.Included by:
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.0-SNAPSHOT
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT

Identifiers

  • pkg:maven/org.bouncycastle/bcprov-jdk18on@1.76  (Confidence:High)
  • cpe:2.3:a:bouncycastle:bouncy-castle-crypto-package:1.76:*:*:*:*:*:*:*  (Confidence:Low)  
  • cpe:2.3:a:bouncycastle:bouncy_castle_crypto_package:1.76:*:*:*:*:*:*:*  (Confidence:Low)  
  • cpe:2.3:a:bouncycastle:legion-of-the-bouncy-castle:1.76:*:*:*:*:*:*:*  (Confidence:Low)  
  • cpe:2.3:a:bouncycastle:legion-of-the-bouncy-castle-java-crytography-api:1.76:*:*:*:*:*:*:*  (Confidence:Low)  
  • cpe:2.3:a:bouncycastle:the_bouncy_castle_crypto_package_for_java:1.76:*:*:*:*:*:*:*  (Confidence:Low)  

bcutil-jdk18on-1.76.jar

Description:

The Bouncy Castle Java APIs for ASN.1 extension and utility APIs used to support bcpkix and bctls. This jar contains APIs for JDK 1.8 and up.

License:

Bouncy Castle Licence: https://www.bouncycastle.org/licence.html
File Path: /Users/coheigea/.m2/repository/org/bouncycastle/bcutil-jdk18on/1.76/bcutil-jdk18on-1.76.jar
MD5: 4df5b021c310b4c7c07d4490318d75cb
SHA1: 8c7594e651a278bcde18e038d8ab55b1f97f4d31
SHA256:1a65ad02958223a3f31373bd72eea942cafd1b1877a3ed0b492c2487e77c3c27
Referenced In Projects/Scopes:
  • Apache WSS4J Streaming WS-Security:compile
  • Apache WSS4J Web WS-Security:compile
  • Apache WSS4J WS-Security Common:compile
  • Apache WSS4J Streaming WS-SecurityPolicy:compile

bcutil-jdk18on-1.76.jar is in the transitive dependency tree of the listed items.Included by:
  • pkg:maven/org.bouncycastle/bcpkix-jdk18on@1.76
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.0-SNAPSHOT
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT

Identifiers

cache-api-1.1.0.jar

License:

Apache License, Version 2.0: https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /Users/coheigea/.m2/repository/javax/cache/cache-api/1.1.0/cache-api-1.1.0.jar
MD5: ac907ad12e9a7ac5d41abf703855002f
SHA1: 77bdcff7814076dfa61611b0db88487c515150b6
SHA256:6c980ad1ae4a6dda3bdb62986c3ef5b41ccf766e12353587ee4e4307e27e155a
Referenced In Projects/Scopes:
  • Apache WSS4J Streaming WS-Security:runtime
  • Apache WSS4J DOM WS-Security:runtime
  • Apache WSS4J Web WS-Security:runtime
  • Apache WSS4J WS-Security Common:compile
  • Apache WSS4J Streaming WS-SecurityPolicy:runtime

cache-api-1.1.0.jar is in the transitive dependency tree of the listed items.Included by:
  • pkg:maven/org.ehcache/ehcache@3.10.8
  • pkg:maven/org.ehcache/ehcache@3.10.8
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.0-SNAPSHOT
  • pkg:maven/org.ehcache/ehcache@3.10.8
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-stax@4.0.0-SNAPSHOT

Identifiers

commons-codec-1.15.jar

Description:

     The Apache Commons Codec package contains simple encoder and decoders for
     various formats such as Base64 and Hexadecimal.  In addition to these
     widely used encoders and decoders, the codec package also maintains a
     collection of phonetic encoding utilities.
  

License:

https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /Users/coheigea/.m2/repository/commons-codec/commons-codec/1.15/commons-codec-1.15.jar
MD5: 303baf002ce6d382198090aedd9d79a2
SHA1: 49d94806b6e3dc933dacbd8acb0fdbab8ebd1e5d
SHA256:b3e9f6d63a790109bf0d056611fbed1cf69055826defeb9894a71369d246ed63
Referenced In Projects/Scopes:
  • Apache WSS4J Streaming WS-Security:compile
  • Apache WSS4J DOM WS-Security:compile
  • Apache WSS4J Web WS-Security:compile
  • Apache WSS4J WS-Security Bindings:compile
  • Apache WSS4J WS-Security Common:compile
  • Apache WSS4J Streaming WS-SecurityPolicy:compile

commons-codec-1.15.jar is in the transitive dependency tree of the listed items.Included by:
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.0-SNAPSHOT
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT
  • pkg:maven/org.apache.wss4j/wss4j-bindings@4.0.0-SNAPSHOT
  • pkg:maven/org.apache.santuario/xmlsec@4.0.0
  • pkg:maven/org.apache.santuario/xmlsec@4.0.0
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT

Identifiers

cryptacular-1.2.6.jar

Description:

The spectacular complement to the Bouncy Castle crypto API for Java.

License:

Apache 2: http://www.apache.org/licenses/LICENSE-2.0.txt
GNU Lesser General Public License: http://www.gnu.org/licenses/lgpl-3.0.txt
File Path: /Users/coheigea/.m2/repository/org/cryptacular/cryptacular/1.2.6/cryptacular-1.2.6.jar
MD5: b4cf54fbc0b44a3233b0daa8b4c0cb83
SHA1: c97954b8bc9fbf63393d6a3b9113a6ce70772b45
SHA256:7a901585834f4533f127c643660435aec9a969af720613dc9126e555be7b1a01
Referenced In Projects/Scopes:
  • Apache WSS4J Streaming WS-Security:compile
  • Apache WSS4J DOM WS-Security:compile
  • Apache WSS4J Web WS-Security:compile
  • Apache WSS4J WS-Security Common:compile
  • Apache WSS4J Streaming WS-SecurityPolicy:compile

cryptacular-1.2.6.jar is in the transitive dependency tree of the listed items.Included by:
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.0-SNAPSHOT
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT

Identifiers

ehcache-3.10.8-jakarta.jar (shaded: org.ehcache.modules:ehcache-107:3.10.8)

Description:

The JSR-107 compatibility module of Ehcache 3

License:

The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /Users/coheigea/.m2/repository/org/ehcache/ehcache/3.10.8/ehcache-3.10.8-jakarta.jar/META-INF/maven/org.ehcache.modules/ehcache-107/pom.xml
MD5: cbb6582f7bae2d80eba99428ba1fa879
SHA1: 93ece0b8696af1b39d5a59f4ac001ff67ade031b
SHA256:881431ccba0094c52fde3d05f6800c5fa488f21ce8e0c253b3080868822362cb
Referenced In Projects/Scopes:
  • Apache WSS4J Streaming WS-Security:runtime
  • Apache WSS4J DOM WS-Security:runtime
  • Apache WSS4J Web WS-Security:runtime
  • Apache WSS4J WS-Security Common:compile
  • Apache WSS4J Streaming WS-SecurityPolicy:runtime

Identifiers

ehcache-3.10.8-jakarta.jar (shaded: org.ehcache.modules:ehcache-api:3.10.8)

Description:

The API module of Ehcache 3

License:

The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /Users/coheigea/.m2/repository/org/ehcache/ehcache/3.10.8/ehcache-3.10.8-jakarta.jar/META-INF/maven/org.ehcache.modules/ehcache-api/pom.xml
MD5: 684f68673f7e1877dd8710c9c20b66a8
SHA1: 5cb0644b5714e1cd3b9ed067db5b74c1d2f90405
SHA256:8cb81dbe787af826481c2a79ad85bef6e46cf429a982a765581142a823db54e5
Referenced In Projects/Scopes:
  • Apache WSS4J Streaming WS-Security:runtime
  • Apache WSS4J DOM WS-Security:runtime
  • Apache WSS4J Web WS-Security:runtime
  • Apache WSS4J WS-Security Common:compile
  • Apache WSS4J Streaming WS-SecurityPolicy:runtime

Identifiers

ehcache-3.10.8-jakarta.jar (shaded: org.ehcache.modules:ehcache-core:3.10.8)

Description:

The Core module of Ehcache 3

License:

The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /Users/coheigea/.m2/repository/org/ehcache/ehcache/3.10.8/ehcache-3.10.8-jakarta.jar/META-INF/maven/org.ehcache.modules/ehcache-core/pom.xml
MD5: 81e4d90adf09bff8de32a927f13fa7dd
SHA1: 1603c939dbc836b9a67ba29c8e3f5bde24a35345
SHA256:d26e487336af1baa60250c41d3f30d6f62fed549c8f282ecccdbb9a905f00a3f
Referenced In Projects/Scopes:
  • Apache WSS4J Streaming WS-Security:runtime
  • Apache WSS4J DOM WS-Security:runtime
  • Apache WSS4J Web WS-Security:runtime
  • Apache WSS4J WS-Security Common:compile
  • Apache WSS4J Streaming WS-SecurityPolicy:runtime

Identifiers

ehcache-3.10.8-jakarta.jar (shaded: org.ehcache.modules:ehcache-impl:3.10.8)

Description:

The implementation module of Ehcache 3

License:

The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /Users/coheigea/.m2/repository/org/ehcache/ehcache/3.10.8/ehcache-3.10.8-jakarta.jar/META-INF/maven/org.ehcache.modules/ehcache-impl/pom.xml
MD5: 68666160c19c3a231099a0d5d61f364f
SHA1: 99176e4618d2a09bbef35ab175273edf50b72f3c
SHA256:9ccbc05db652fe94233c346648fb06d503bfbf27f13aaaec4be87752b14f1d9c
Referenced In Projects/Scopes:
  • Apache WSS4J Streaming WS-Security:runtime
  • Apache WSS4J DOM WS-Security:runtime
  • Apache WSS4J Web WS-Security:runtime
  • Apache WSS4J WS-Security Common:compile
  • Apache WSS4J Streaming WS-SecurityPolicy:runtime

Identifiers

ehcache-3.10.8-jakarta.jar (shaded: org.ehcache.modules:ehcache-xml-spi:3.10.8)

Description:

This module contains the XML parsing SPI for Ehcache 3. This allows Ehcache extension services to provide XML configuration capabilities.

License:

The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /Users/coheigea/.m2/repository/org/ehcache/ehcache/3.10.8/ehcache-3.10.8-jakarta.jar/META-INF/maven/org.ehcache.modules/ehcache-xml-spi/pom.xml
MD5: d692ac727407f129dc07ce98a6c309b2
SHA1: 35f69aaa6f9b7b413aa6c12c969f0e91ba1ffb1f
SHA256:aecb4a20f1ce69a777649b65343557329e031641481841a233973d857d2ba32d
Referenced In Projects/Scopes:
  • Apache WSS4J Streaming WS-Security:runtime
  • Apache WSS4J DOM WS-Security:runtime
  • Apache WSS4J Web WS-Security:runtime
  • Apache WSS4J WS-Security Common:compile
  • Apache WSS4J Streaming WS-SecurityPolicy:runtime

Identifiers

ehcache-3.10.8-jakarta.jar (shaded: org.ehcache.modules:ehcache-xml:3.10.8)

Description:

The module containing all XML parsing logic Ehcache 3

License:

The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /Users/coheigea/.m2/repository/org/ehcache/ehcache/3.10.8/ehcache-3.10.8-jakarta.jar/META-INF/maven/org.ehcache.modules/ehcache-xml/pom.xml
MD5: c0cfdd21ebfc0207a9516d08ab7e2858
SHA1: 0cec45ad454b3eb0d5cd4a5f4fffd71b1e462e31
SHA256:bd6c0ce56beca6eb6b0b6a55fcf3c86a652b8ddc0bb2cf390c8c3f3e660603fe
Referenced In Projects/Scopes:
  • Apache WSS4J Streaming WS-Security:runtime
  • Apache WSS4J DOM WS-Security:runtime
  • Apache WSS4J Web WS-Security:runtime
  • Apache WSS4J WS-Security Common:compile
  • Apache WSS4J Streaming WS-SecurityPolicy:runtime

Identifiers

ehcache-3.10.8-jakarta.jar (shaded: org.ehcache:sizeof:0.4.3)

Description:

SizeOf engine, extracted from Ehcache

License:

The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /Users/coheigea/.m2/repository/org/ehcache/ehcache/3.10.8/ehcache-3.10.8-jakarta.jar/META-INF/maven/org.ehcache/sizeof/pom.xml
MD5: c0ad3baef0ef03d4ca849743f1f26b70
SHA1: 8589b7bd18f4b3e12cd222a44bdcbbada5363da8
SHA256:9c03a981dbff96ff6b7d74dffb5e8a9a46bb66e06ba98d18f6b8ff4472bd0709
Referenced In Projects/Scopes:
  • Apache WSS4J Streaming WS-Security:runtime
  • Apache WSS4J DOM WS-Security:runtime
  • Apache WSS4J Web WS-Security:runtime
  • Apache WSS4J WS-Security Common:compile
  • Apache WSS4J Streaming WS-SecurityPolicy:runtime

Identifiers

ehcache-3.10.8-jakarta.jar (shaded: org.terracotta:offheap-store:2.5.3)

Description:

A library that offers data structures allocated off the java heap.

License:

The Apache License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /Users/coheigea/.m2/repository/org/ehcache/ehcache/3.10.8/ehcache-3.10.8-jakarta.jar/META-INF/maven/org.terracotta/offheap-store/pom.xml
MD5: f5ad26371f4a3b04c5b8a0a089639d87
SHA1: 1979a0cbe0be10a6d5215bb9cbbb5635b9314924
SHA256:d8ae272530d98560cf81066b0409bcba2648a2528c00bd0147253695bb5f0949
Referenced In Projects/Scopes:
  • Apache WSS4J Streaming WS-Security:runtime
  • Apache WSS4J DOM WS-Security:runtime
  • Apache WSS4J Web WS-Security:runtime
  • Apache WSS4J WS-Security Common:compile
  • Apache WSS4J Streaming WS-SecurityPolicy:runtime

Identifiers

ehcache-3.10.8-jakarta.jar (shaded: org.terracotta:statistics:2.1.2)

Description:

A statistics framework used inside Ehcache and the Terracotta products

License:

The Apache License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /Users/coheigea/.m2/repository/org/ehcache/ehcache/3.10.8/ehcache-3.10.8-jakarta.jar/META-INF/maven/org.terracotta/statistics/pom.xml
MD5: 9df3f5a18142de19c1c7f379885a4391
SHA1: 305a0214578ebf1c14e8d78adce1a5af028c8132
SHA256:25c36806fdcd2ab5e4c1c1c5625bc4f966c10a4a93ab3dd321aa82b3f9e43081
Referenced In Projects/Scopes:
  • Apache WSS4J Streaming WS-Security:runtime
  • Apache WSS4J DOM WS-Security:runtime
  • Apache WSS4J Web WS-Security:runtime
  • Apache WSS4J WS-Security Common:compile
  • Apache WSS4J Streaming WS-SecurityPolicy:runtime

Identifiers

ehcache-3.10.8-jakarta.jar (shaded: org.terracotta:terracotta-utilities-tools:0.0.15)

Description:

Utility classes/methods for common Java tasks

License:

The Apache License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /Users/coheigea/.m2/repository/org/ehcache/ehcache/3.10.8/ehcache-3.10.8-jakarta.jar/META-INF/maven/org.terracotta/terracotta-utilities-tools/pom.xml
MD5: e4749433aaf243a0fbc14ddad08bbe55
SHA1: 9b7960438f39f7be178e17bba391f38c7b38c860
SHA256:144603b5fb19b5900a9a28a3a5d7a74f4deeddbdc34d1de8a716f79f91854ada
Referenced In Projects/Scopes:
  • Apache WSS4J Streaming WS-Security:runtime
  • Apache WSS4J DOM WS-Security:runtime
  • Apache WSS4J Web WS-Security:runtime
  • Apache WSS4J WS-Security Common:compile
  • Apache WSS4J Streaming WS-SecurityPolicy:runtime

Identifiers

ehcache-3.10.8-jakarta.jar

Description:

Ehcache is an open-source caching library, compliant with the JSR-107 standard.

License:

LICENSE
File Path: /Users/coheigea/.m2/repository/org/ehcache/ehcache/3.10.8/ehcache-3.10.8-jakarta.jar
MD5: 6767673b52b5c2157bb6b41daef38963
SHA1: 892b8caf98d188d0bac6ff16db564cae13a6874f
SHA256:4530ba51c1768f680bffcc5af722f7b65a0abb3874d9f17a731c7085eb2613e7
Referenced In Projects/Scopes:
  • Apache WSS4J Streaming WS-Security:runtime
  • Apache WSS4J DOM WS-Security:runtime
  • Apache WSS4J Web WS-Security:runtime
  • Apache WSS4J WS-Security Common:compile
  • Apache WSS4J Streaming WS-SecurityPolicy:runtime

ehcache-3.10.8-jakarta.jar is in the transitive dependency tree of the listed items.Included by:
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.0-SNAPSHOT
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-stax@4.0.0-SNAPSHOT
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.0-SNAPSHOT
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-stax@4.0.0-SNAPSHOT

Identifiers

ehcache-3.10.8-jakarta.jar: sizeof-agent.jar

File Path: /Users/coheigea/.m2/repository/org/ehcache/ehcache/3.10.8/ehcache-3.10.8-jakarta.jar/org/ehcache/sizeof/impl/sizeof-agent.jar
MD5: 532dbbf741bfb7f531938786bc0bb970
SHA1: 4e5d8c485b09104825c0d8ec635f775ab522be06
SHA256:60e093acb08d3bc30235ef15941380195cbb85b1ec8b4afd672249f9c530e356
Referenced In Projects/Scopes:

  • Apache WSS4J Streaming WS-Security:runtime
  • Apache WSS4J DOM WS-Security:runtime
  • Apache WSS4J Web WS-Security:runtime
  • Apache WSS4J WS-Security Common:compile
  • Apache WSS4J Streaming WS-SecurityPolicy:runtime

Identifiers

  • None

failureaccess-1.0.1.jar

Description:

    Contains
    com.google.common.util.concurrent.internal.InternalFutureFailureAccess and
    InternalFutures. Most users will never need to use this artifact. Its
    classes is conceptually a part of Guava, but they're in this separate
    artifact so that Android libraries can use them without pulling in all of
    Guava (just as they can use ListenableFuture by depending on the
    listenablefuture artifact).
  

License:

http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /Users/coheigea/.m2/repository/com/google/guava/failureaccess/1.0.1/failureaccess-1.0.1.jar
MD5: 091883993ef5bfa91da01dcc8fc52236
SHA1: 1dcf1de382a0bf95a3d8b0849546c88bac1292c9
SHA256:a171ee4c734dd2da837e4b16be9df4661afab72a41adaf31eb84dfdaf936ca26
Referenced In Projects/Scopes:
  • Apache WSS4J Streaming WS-Security:compile
  • Apache WSS4J DOM WS-Security:compile
  • Apache WSS4J Web WS-Security:compile
  • Apache WSS4J WS-Security Common:compile
  • Apache WSS4J Streaming WS-SecurityPolicy:compile

failureaccess-1.0.1.jar is in the transitive dependency tree of the listed items.Included by:
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT
  • pkg:maven/com.google.guava/guava@32.1.3-jre
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.0-SNAPSHOT
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT

Identifiers

guava-32.1.3-jre.jar

Description:

    Guava is a suite of core and expanded libraries that include
    utility classes, Google's collections, I/O classes, and
    much more.
  

License:

http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /Users/coheigea/.m2/repository/com/google/guava/guava/32.1.3-jre/guava-32.1.3-jre.jar
MD5: adc3cf557a48d15cb71be90948558923
SHA1: 0f306708742ce2bf0fb0901216183bc14073feae
SHA256:6d4e2b5a118aab62e6e5e29d185a0224eed82c85c40ac3d33cf04a270c3b3744
Referenced In Projects/Scopes:
  • Apache WSS4J Streaming WS-Security:compile
  • Apache WSS4J DOM WS-Security:compile
  • Apache WSS4J Web WS-Security:compile
  • Apache WSS4J WS-Security Common:compile
  • Apache WSS4J Streaming WS-SecurityPolicy:compile

guava-32.1.3-jre.jar is in the transitive dependency tree of the listed items.Included by:
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.0-SNAPSHOT
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT

Identifiers

httpclient5-5.2.1.jar

Description:

Apache HttpComponents Client

File Path: /Users/coheigea/.m2/repository/org/apache/httpcomponents/client5/httpclient5/5.2.1/httpclient5-5.2.1.jar
MD5: fbbefc687f2e0c55b34b77edf53d486a
SHA1: 0c900514d3446d9ce5d9dbd90c21192048125440
SHA256:9355f3876baf82fec13ced22c12b62d57536230836406d359459128e4f73ed51
Referenced In Projects/Scopes:

  • Apache WSS4J Streaming WS-Security:compile
  • Apache WSS4J DOM WS-Security:compile
  • Apache WSS4J Web WS-Security:compile
  • Apache WSS4J WS-Security Common:compile
  • Apache WSS4J Streaming WS-SecurityPolicy:compile

httpclient5-5.2.1.jar is in the transitive dependency tree of the listed items.Included by:
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT
  • pkg:maven/org.opensaml/opensaml-saml-impl@5.0.0
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.0-SNAPSHOT

Identifiers

httpcore5-5.2.2.jar

Description:

Apache HttpComponents HTTP/1.1 core components

File Path: /Users/coheigea/.m2/repository/org/apache/httpcomponents/core5/httpcore5/5.2.2/httpcore5-5.2.2.jar
MD5: d6d2a7e9c889aab01e879aa59a2352ce
SHA1: 6da28f5aa6c2b129ef49632e041a5203ce7507b2
SHA256:3299dc185223154cf500db7b7e60d28a4bb0500b35b311b3fdca4ee6acb4b073
Referenced In Projects/Scopes:

  • Apache WSS4J Streaming WS-Security:compile
  • Apache WSS4J DOM WS-Security:compile
  • Apache WSS4J Web WS-Security:compile
  • Apache WSS4J WS-Security Common:compile
  • Apache WSS4J Streaming WS-SecurityPolicy:compile

httpcore5-5.2.2.jar is in the transitive dependency tree of the listed items.Included by:
  • pkg:maven/org.opensaml/opensaml-saml-impl@5.0.0
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.0-SNAPSHOT
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT

Identifiers

httpcore5-h2-5.2.jar

Description:

Apache HttpComponents HTTP/2 Core Components

File Path: /Users/coheigea/.m2/repository/org/apache/httpcomponents/core5/httpcore5-h2/5.2/httpcore5-h2-5.2.jar
MD5: 272112133e0dd0559efdd8f5e615a344
SHA1: 698bd8c759ccc7fd7398f3179ff45d0e5a7ccc16
SHA256:5a087fb8c619979d492a83546f351ddadf32b28cc6a32923229f3fc777171578
Referenced In Projects/Scopes:

  • Apache WSS4J Streaming WS-Security:compile
  • Apache WSS4J DOM WS-Security:compile
  • Apache WSS4J Web WS-Security:compile
  • Apache WSS4J WS-Security Common:compile
  • Apache WSS4J Streaming WS-SecurityPolicy:compile

httpcore5-h2-5.2.jar is in the transitive dependency tree of the listed items.Included by:
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.0-SNAPSHOT
  • pkg:maven/org.opensaml/opensaml-saml-impl@5.0.0
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT

Identifiers

istack-commons-runtime-4.0.1.jar

Description:

istack common utility code

License:

http://www.eclipse.org/org/documents/edl-v10.php
File Path: /Users/coheigea/.m2/repository/com/sun/istack/istack-commons-runtime/4.0.1/istack-commons-runtime-4.0.1.jar
MD5: 0c1301f11d943a0bec02efc57c101409
SHA1: 4e25c41d338aad4a2c92d0020c9ae0335fad5099
SHA256:9f91115f449384886f572bd62c8812ee1004273d4b5c85cac65179ad4c16990f
Referenced In Projects/Scopes:
  • Apache WSS4J Streaming WS-Security:runtime
  • Apache WSS4J Streaming WS-SecurityPolicy:runtime

istack-commons-runtime-4.0.1.jar is in the transitive dependency tree of the listed items.Included by:
  • pkg:maven/org.glassfish.jaxb/jaxb-runtime@3.0.2
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-stax@4.0.0-SNAPSHOT

Identifiers

jackson-annotations-2.15.2.jar

Description:

Core annotations used for value types, used by Jackson data binding package.
  

License:

The Apache Software License, Version 2.0: https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /Users/coheigea/.m2/repository/com/fasterxml/jackson/core/jackson-annotations/2.15.2/jackson-annotations-2.15.2.jar
MD5: 71dabcaac955a8bd17b5bba6580aac5b
SHA1: 4724a65ac8e8d156a24898d50fd5dbd3642870b8
SHA256:04e21f94dcfee4b078fa5a5f53047b785aaba69d19de392f616e7a7fe5d3882f
Referenced In Projects/Scopes:
  • Apache WSS4J Streaming WS-Security:compile
  • Apache WSS4J DOM WS-Security:compile
  • Apache WSS4J Web WS-Security:compile
  • Apache WSS4J WS-Security Common:compile
  • Apache WSS4J Streaming WS-SecurityPolicy:compile

jackson-annotations-2.15.2.jar is in the transitive dependency tree of the listed items.Included by:
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.0-SNAPSHOT
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT
  • pkg:maven/org.opensaml/opensaml-saml-impl@5.0.0

Identifiers

jackson-core-2.12.7.jar

Description:

Core Jackson processing abstractions (aka Streaming API), implementation for JSON

License:

The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /Users/coheigea/.m2/repository/com/fasterxml/jackson/core/jackson-core/2.12.7/jackson-core-2.12.7.jar
MD5: e90114f7c87c241568606cc9e2c61cb1
SHA1: 04669a54b799c105572aa8de2a1ae0fe64a17745
SHA256:3987a6a335046e226e56b81d69668fb5a91b155ea7fd96b0851adbb7d4ac1ca6
Referenced In Projects/Scopes:
  • Apache WSS4J Streaming WS-Security:compile
  • Apache WSS4J DOM WS-Security:compile
  • Apache WSS4J Web WS-Security:compile
  • Apache WSS4J WS-Security Common:compile
  • Apache WSS4J Streaming WS-SecurityPolicy:compile

jackson-core-2.12.7.jar is in the transitive dependency tree of the listed items.Included by:
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT
  • pkg:maven/org.opensaml/opensaml-saml-impl@5.0.0
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.0-SNAPSHOT
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT

Identifiers

jackson-databind-2.15.2.jar

Description:

General data-binding functionality for Jackson: works on core streaming API

License:

The Apache Software License, Version 2.0: https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /Users/coheigea/.m2/repository/com/fasterxml/jackson/core/jackson-databind/2.15.2/jackson-databind-2.15.2.jar
MD5: 20ac0d0526a456274409fa852eb74087
SHA1: 9353b021f10c307c00328f52090de2bdb4b6ff9c
SHA256:0eb2fdad6e40ab8832a78c9b22f58196dd970594e8d3d5a26ead87847c4f3a96
Referenced In Projects/Scopes:
  • Apache WSS4J Streaming WS-Security:compile
  • Apache WSS4J DOM WS-Security:compile
  • Apache WSS4J Web WS-Security:compile
  • Apache WSS4J WS-Security Common:compile
  • Apache WSS4J Streaming WS-SecurityPolicy:compile

jackson-databind-2.15.2.jar is in the transitive dependency tree of the listed items.Included by:
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.0-SNAPSHOT
  • pkg:maven/org.opensaml/opensaml-saml-impl@5.0.0
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT

Identifiers

CVE-2023-35116  

** DISPUTED ** jackson-databind through 2.15.2 allows attackers to cause a denial of service or other unspecified impact via a crafted object that uses cyclic dependencies. NOTE: the vendor's perspective is that this is not a valid vulnerability report, because the steps of constructing a cyclic data structure and trying to serialize it cannot be achieved by an external attacker.
CWE-770 Allocation of Resources Without Limits or Throttling

CVSSv3:
  • Base Score: MEDIUM (4.7)
  • Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H

References:

Vulnerable Software & Versions:

jakarta.activation-api-2.1.0.jar

Description:

  Specification

License:

EDL 1.0: http://www.eclipse.org/org/documents/edl-v10.php
File Path: /Users/coheigea/.m2/repository/jakarta/activation/jakarta.activation-api/2.1.0/jakarta.activation-api-2.1.0.jar
MD5: 7c79641566f97305e17c5f7b9bb33fc3
SHA1: a58861b5deac5e151140511cf57d6b80a83f2d20
SHA256:56e8d994095fe49c28138c60291482f66f18d12ac2b720e938697dce6a3135c7
Referenced In Project/Scope: Apache WSS4J WS-Security Bindings:compile
jakarta.activation-api-2.1.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/jakarta.xml.bind/jakarta.xml.bind-api@4.0.0

Identifiers

jakarta.activation-api-2.1.2.jar

Description:

  Specification

License:

EDL 1.0: http://www.eclipse.org/org/documents/edl-v10.php
File Path: /Users/coheigea/.m2/repository/jakarta/activation/jakarta.activation-api/2.1.2/jakarta.activation-api-2.1.2.jar
MD5: 1af11450fafc7ee26c633d940286bc16
SHA1: 640c0d5aff45dbff1e1a1bc09673ff3a02b1ba12
SHA256:f53f578dd0eb4170c195a4e215c59a38abfb4123dcb95dd902fef92876499fbb
Referenced In Projects/Scopes:
  • Apache WSS4J Streaming WS-Security:compile
  • Apache WSS4J DOM WS-Security:compile
  • Apache WSS4J Web WS-Security:compile
  • Apache WSS4J WS-Security Common:compile
  • Apache WSS4J Streaming WS-SecurityPolicy:compile

jakarta.activation-api-2.1.2.jar is in the transitive dependency tree of the listed items.Included by:
  • pkg:maven/com.sun.xml.messaging.saaj/saaj-impl@3.0.3
  • pkg:maven/com.sun.xml.messaging.saaj/saaj-impl@3.0.3
  • pkg:maven/com.sun.xml.messaging.saaj/saaj-impl@3.0.3
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.0-SNAPSHOT
  • pkg:maven/jakarta.mail/jakarta.mail-api@2.1.2

Identifiers

jakarta.mail-api-2.1.2.jar

Description:

  Specification API

License:

EPL 2.0: http://www.eclipse.org/legal/epl-2.0
GPL2 w/ CPE: https://www.gnu.org/software/classpath/license.html
EDL 1.0: http://www.eclipse.org/org/documents/edl-v10.php
File Path: /Users/coheigea/.m2/repository/jakarta/mail/jakarta.mail-api/2.1.2/jakarta.mail-api-2.1.2.jar
MD5: a0f418c90766053b4acae3f3aecdc6f4
SHA1: e2f24836f1720a6b53d98240a78b4860597428c8
SHA256:0aa8de0f682a5ce381c2572ac110a91a01b30bdbf6694614e7a1f2dbda85a11c
Referenced In Projects/Scopes:
  • Apache WSS4J Streaming WS-Security:compile
  • Apache WSS4J DOM WS-Security:compile
  • Apache WSS4J Web WS-Security:compile
  • Apache WSS4J WS-Security Common:compile
  • Apache WSS4J Streaming WS-SecurityPolicy:compile

jakarta.mail-api-2.1.2.jar is in the transitive dependency tree of the listed items.Included by:
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.0-SNAPSHOT
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT

Identifiers

jakarta.servlet-api-5.0.0.jar

Description:

Jakarta Servlet 5.0

License:

EPL 2.0: http://www.eclipse.org/legal/epl-2.0
GPL2 w/ CPE: https://www.gnu.org/software/classpath/license.html
File Path: /Users/coheigea/.m2/repository/jakarta/servlet/jakarta.servlet-api/5.0.0/jakarta.servlet-api-5.0.0.jar
MD5: b950da93e08cf6d5a2d73dc7a80f9403
SHA1: 2e6b8ccde55522c879434ddec3714683ccae6867
SHA256:33d3a5bda82c7d2f1b898685faa954f1fc34f7b0ae5c2f6ccc6d051e8a10973b
Referenced In Project/Scope: Apache WSS4J Web WS-Security:provided
jakarta.servlet-api-5.0.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.wss4j/wss4j-ws-security-web@4.0.0-SNAPSHOT

Identifiers

jakarta.xml.bind-api-4.0.0.jar

Description:

Jakarta XML Binding API 4.0 Design Specification

License:

http://www.eclipse.org/org/documents/edl-v10.php
File Path: /Users/coheigea/.m2/repository/jakarta/xml/bind/jakarta.xml.bind-api/4.0.0/jakarta.xml.bind-api-4.0.0.jar
MD5: b5132a66e2d3a60904f8035a1f8a34a8
SHA1: bbb399208d288b15ec101fa4fcfc4bd77cedc97a
SHA256:57e3796ad5753640088f5f9d3c53c183f2c250b7dad90529ea3e19a5515aa122
Referenced In Projects/Scopes:
  • Apache WSS4J Streaming WS-Security:compile
  • Apache WSS4J WS-Security Bindings:compile
  • Apache WSS4J Streaming WS-SecurityPolicy:compile

jakarta.xml.bind-api-4.0.0.jar is in the transitive dependency tree of the listed items.Included by:
  • pkg:maven/org.apache.wss4j/wss4j-bindings@4.0.0-SNAPSHOT
  • pkg:maven/org.apache.wss4j/wss4j-bindings@4.0.0-SNAPSHOT
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-stax@4.0.0-SNAPSHOT

Identifiers

jasypt-1.9.3.jar

Description:

Java library which enables encryption in java apps with minimum effort.

License:

The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /Users/coheigea/.m2/repository/org/jasypt/jasypt/1.9.3/jasypt-1.9.3.jar
MD5: 39327c7e38782102ecdb3c9dc4e8dcd3
SHA1: 0d99ef9540f51c617f2a293b460f025d2ee563dd
SHA256:f481fbb8dd8ce754bfde7552af4fcbe8c5e303d53663bb3d8ce9d4338e0e55aa
Referenced In Projects/Scopes:
  • Apache WSS4J Streaming WS-Security:compile
  • Apache WSS4J DOM WS-Security:compile
  • Apache WSS4J Web WS-Security:compile
  • Apache WSS4J WS-Security Common:compile
  • Apache WSS4J Streaming WS-SecurityPolicy:compile

jasypt-1.9.3.jar is in the transitive dependency tree of the listed items.Included by:
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.0-SNAPSHOT
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT

Identifiers

jaxb-core-3.0.2.jar

Description:

JAXB Core module. Contains sources required by XJC, JXC and Runtime modules.

License:

http://www.eclipse.org/org/documents/edl-v10.php
File Path: /Users/coheigea/.m2/repository/org/glassfish/jaxb/jaxb-core/3.0.2/jaxb-core-3.0.2.jar
MD5: d97e45fa20c174781424552e4283e460
SHA1: e83d0b0005525ddd8b8642bd0bb02227fcf871f1
SHA256:f9a360b939597643b2676e35fc497afb561d20e8a513128a5c0070366db11bbd
Referenced In Projects/Scopes:
  • Apache WSS4J Streaming WS-Security:runtime
  • Apache WSS4J Streaming WS-SecurityPolicy:runtime

jaxb-core-3.0.2.jar is in the transitive dependency tree of the listed items.Included by:
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-stax@4.0.0-SNAPSHOT
  • pkg:maven/org.glassfish.jaxb/jaxb-runtime@3.0.2

Identifiers

jsr305-3.0.2.jar

Description:

JSR305 Annotations for Findbugs

License:

The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /Users/coheigea/.m2/repository/com/google/code/findbugs/jsr305/3.0.2/jsr305-3.0.2.jar
MD5: dd83accb899363c32b07d7a1b2e4ce40
SHA1: 25ea2e8b0c338a877313bd4672d3fe056ea78f0d
SHA256:766ad2a0783f2687962c8ad74ceecc38a28b9f72a2d085ee438b7813e928d0c7
Referenced In Projects/Scopes:
  • Apache WSS4J Streaming WS-Security:compile
  • Apache WSS4J DOM WS-Security:compile
  • Apache WSS4J Web WS-Security:compile
  • Apache WSS4J WS-Security Common:compile
  • Apache WSS4J Streaming WS-SecurityPolicy:compile

jsr305-3.0.2.jar is in the transitive dependency tree of the listed items.Included by:
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.0-SNAPSHOT
  • pkg:maven/org.opensaml/opensaml-xacml-impl@5.0.0
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT

Identifiers

metrics-core-4.2.19.jar

Description:

        Metrics is a Java library which gives you unparalleled insight into what your code does in
        production. Metrics provides a powerful toolkit of ways to measure the behavior of critical
        components in your production environment.
    

License:

https://www.apache.org/licenses/LICENSE-2.0.html
File Path: /Users/coheigea/.m2/repository/io/dropwizard/metrics/metrics-core/4.2.19/metrics-core-4.2.19.jar
MD5: dd9caf026f4330b51c6308e6d0749084
SHA1: d32b4c3f3e733bf4cb239ca4204fbed8464973a5
SHA256:fa967bc2b37c8bff5bc377e60e439504fd9df5d335c7a42b37212403250023df
Referenced In Projects/Scopes:
  • Apache WSS4J Streaming WS-Security:compile
  • Apache WSS4J DOM WS-Security:compile
  • Apache WSS4J Web WS-Security:compile
  • Apache WSS4J WS-Security Common:compile
  • Apache WSS4J Streaming WS-SecurityPolicy:compile

metrics-core-4.2.19.jar is in the transitive dependency tree of the listed items.Included by:
  • pkg:maven/org.opensaml/opensaml-saml-impl@5.0.0
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.0-SNAPSHOT
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT

Identifiers

metrics-json-4.2.19.jar

Description:

        A set of Jackson modules which provide serializers for most Metrics classes.
    

License:

https://www.apache.org/licenses/LICENSE-2.0.html
File Path: /Users/coheigea/.m2/repository/io/dropwizard/metrics/metrics-json/4.2.19/metrics-json-4.2.19.jar
MD5: 1340203cea37905d3f72ff20bf04f48b
SHA1: 32afaab5bca42c8cbd4002f906b169d6c0fd4e4f
SHA256:cfbccdfd8fc073dbbd47ae734785c0a2a12a00c0c3903549719fc416e8b646c6
Referenced In Projects/Scopes:
  • Apache WSS4J Streaming WS-Security:compile
  • Apache WSS4J DOM WS-Security:compile
  • Apache WSS4J Web WS-Security:compile
  • Apache WSS4J WS-Security Common:compile
  • Apache WSS4J Streaming WS-SecurityPolicy:compile

metrics-json-4.2.19.jar is in the transitive dependency tree of the listed items.Included by:
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.0-SNAPSHOT
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT
  • pkg:maven/org.opensaml/opensaml-saml-impl@5.0.0
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT

Identifiers

neethi-3.2.0.jar

Description:

Apache Neethi provides general framework for the programmers to use WS Policy. It is compliant with latest WS Policy specification which was published in March 2006. This framework is specifically written to enable the Apache Web services stack to use WS Policy as a way of expressing it's requirements and capabilities.

License:

Apache License, Version 2.0: https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /Users/coheigea/.m2/repository/org/apache/neethi/neethi/3.2.0/neethi-3.2.0.jar
MD5: e6040db3584bfdbadd0515dbdba6b25a
SHA1: 4e409cf251f420f65130d458256f7be1ad68f055
SHA256:6ed3c2cd20444972936c1f9b623862d1415592290ce1eb79e1cf1008f999aa3b
Referenced In Projects/Scopes:
  • Apache WSS4J WS-SecurityPolicy model:compile
  • Apache WSS4J Streaming WS-SecurityPolicy:compile

neethi-3.2.0.jar is in the transitive dependency tree of the listed items.Included by:
  • pkg:maven/org.apache.wss4j/wss4j-policy@4.0.0-SNAPSHOT
  • pkg:maven/org.apache.wss4j/wss4j-policy@4.0.0-SNAPSHOT

Identifiers

opensaml-core-api-5.0.0.jar

Description:

Core API

File Path: /Users/coheigea/.m2/repository/org/opensaml/opensaml-core-api/5.0.0/opensaml-core-api-5.0.0.jar
MD5: ef42622011593154ad3bacf86a53f15c
SHA1: 3ba3187fe2675eef301ce4cd47f793ab8acecea2
SHA256:cbabe54124b7ac7e1bdaea2cc5d3119a99c3ad4d566815782d730af81cc598f7
Referenced In Projects/Scopes:

  • Apache WSS4J Streaming WS-Security:compile
  • Apache WSS4J DOM WS-Security:compile
  • Apache WSS4J Web WS-Security:compile
  • Apache WSS4J WS-Security Common:compile
  • Apache WSS4J Streaming WS-SecurityPolicy:compile

opensaml-core-api-5.0.0.jar is in the transitive dependency tree of the listed items.Included by:
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT
  • pkg:maven/org.opensaml/opensaml-saml-impl@5.0.0
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.0-SNAPSHOT

Identifiers

org.apache.wss4j:wss4j-bindings:4.0.0-SNAPSHOT

Description:

Apache WSS4J parent pom

License:

Apache-2.0 https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /Users/coheigea/src/apache/ws-wss4j/bindings/pom.xml

Referenced In Projects/Scopes:
  • Apache WSS4J Streaming WS-Security
  • Apache WSS4J Streaming WS-SecurityPolicy

org.apache.wss4j:wss4j-bindings:4.0.0-SNAPSHOT is in the transitive dependency tree of the listed items.Included by:
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-stax@4.0.0-SNAPSHOT
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-policy-stax@4.0.0-SNAPSHOT

Identifiers

org.apache.wss4j:wss4j-policy:4.0.0-SNAPSHOT

Description:

Apache WSS4J parent pom

License:

Apache-2.0 https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /Users/coheigea/src/apache/ws-wss4j/policy/pom.xml

Referenced In Project/Scope: Apache WSS4J Streaming WS-SecurityPolicy
org.apache.wss4j:wss4j-policy:4.0.0-SNAPSHOT is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.wss4j/wss4j-ws-security-policy-stax@4.0.0-SNAPSHOT

Identifiers

org.apache.wss4j:wss4j-ws-security-common:4.0.0-SNAPSHOT

Description:

Apache WSS4J parent pom

License:

Apache-2.0 https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /Users/coheigea/src/apache/ws-wss4j/ws-security-common/pom.xml

Referenced In Projects/Scopes:
  • Apache WSS4J Web WS-Security
  • Apache WSS4J Streaming WS-Security
  • Apache WSS4J DOM WS-Security
  • Apache WSS4J Streaming WS-SecurityPolicy

org.apache.wss4j:wss4j-ws-security-common:4.0.0-SNAPSHOT is in the transitive dependency tree of the listed items.Included by:
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-policy-stax@4.0.0-SNAPSHOT
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-web@4.0.0-SNAPSHOT
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.0-SNAPSHOT
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-stax@4.0.0-SNAPSHOT

Identifiers

org.apache.wss4j:wss4j-ws-security-dom:4.0.0-SNAPSHOT

Description:

Apache WSS4J parent pom

License:

Apache-2.0 https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /Users/coheigea/src/apache/ws-wss4j/ws-security-dom/pom.xml

Referenced In Project/Scope: Apache WSS4J Web WS-Security
org.apache.wss4j:wss4j-ws-security-dom:4.0.0-SNAPSHOT is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.wss4j/wss4j-ws-security-web@4.0.0-SNAPSHOT

Identifiers

org.apache.wss4j:wss4j-ws-security-stax:4.0.0-SNAPSHOT

Description:

Apache WSS4J parent pom

License:

Apache-2.0 https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /Users/coheigea/src/apache/ws-wss4j/ws-security-stax/pom.xml

Referenced In Project/Scope: Apache WSS4J Streaming WS-SecurityPolicy
org.apache.wss4j:wss4j-ws-security-stax:4.0.0-SNAPSHOT is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.wss4j/wss4j-ws-security-policy-stax@4.0.0-SNAPSHOT

Identifiers

shib-networking-9.0.0.jar

File Path: /Users/coheigea/.m2/repository/net/shibboleth/shib-networking/9.0.0/shib-networking-9.0.0.jar
MD5: 97a385cac8e1e55ff2cf79e8ef48f3e6
SHA1: 10ceee652f45bb497e0f2524007eb354efeaea0e
SHA256:61fc1ffec5fa24d741c089b37094e283e10bd08f593716395f16bcd82c7cc900
Referenced In Projects/Scopes:

  • Apache WSS4J Streaming WS-Security:compile
  • Apache WSS4J DOM WS-Security:compile
  • Apache WSS4J Web WS-Security:compile
  • Apache WSS4J WS-Security Common:compile
  • Apache WSS4J Streaming WS-SecurityPolicy:compile

shib-networking-9.0.0.jar is in the transitive dependency tree of the listed items.Included by:
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.0-SNAPSHOT
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT
  • pkg:maven/org.opensaml/opensaml-saml-impl@5.0.0
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT

Identifiers

shib-security-9.0.0.jar

File Path: /Users/coheigea/.m2/repository/net/shibboleth/shib-security/9.0.0/shib-security-9.0.0.jar
MD5: a1020cc0e982568ab23c56de6221919c
SHA1: d1148dccbe372beac05208e8aa10a6a248723dcb
SHA256:b5f53872cc8dfbd0e9549f95355cd8108be175fdbfe8ef6c157c06fbcd4bd120
Referenced In Projects/Scopes:

  • Apache WSS4J Streaming WS-Security:compile
  • Apache WSS4J DOM WS-Security:compile
  • Apache WSS4J Web WS-Security:compile
  • Apache WSS4J WS-Security Common:compile
  • Apache WSS4J Streaming WS-SecurityPolicy:compile

shib-security-9.0.0.jar is in the transitive dependency tree of the listed items.Included by:
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.0-SNAPSHOT
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT
  • pkg:maven/org.opensaml/opensaml-saml-impl@5.0.0
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT

Identifiers

shib-support-9.0.0.jar

File Path: /Users/coheigea/.m2/repository/net/shibboleth/shib-support/9.0.0/shib-support-9.0.0.jar
MD5: 3d5cd321af1a63fbd98dee16ef1161fd
SHA1: e9ed90821fe3eb7ff6aa1f99d9336e0e1f5ee473
SHA256:0d3efc49346a57cc013a822f808c9e29879184a9b3ad6a60f3ba7c56a1492eff
Referenced In Projects/Scopes:

  • Apache WSS4J Streaming WS-Security:compile
  • Apache WSS4J DOM WS-Security:compile
  • Apache WSS4J Web WS-Security:compile
  • Apache WSS4J WS-Security Common:compile
  • Apache WSS4J Streaming WS-SecurityPolicy:compile

shib-support-9.0.0.jar is in the transitive dependency tree of the listed items.Included by:
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.0-SNAPSHOT
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT
  • pkg:maven/org.opensaml/opensaml-saml-impl@5.0.0

Identifiers

shib-velocity-9.0.0.jar

File Path: /Users/coheigea/.m2/repository/net/shibboleth/shib-velocity/9.0.0/shib-velocity-9.0.0.jar
MD5: 123f5707e84fcb0c484cd13634cb21b1
SHA1: d570d4cfe3cef3980855d850546b191883a17d37
SHA256:e85b6d1fdca88b0054845e680612ad94bb164187a2c3a24e847894489b73551a
Referenced In Projects/Scopes:

  • Apache WSS4J Streaming WS-Security:compile
  • Apache WSS4J DOM WS-Security:compile
  • Apache WSS4J Web WS-Security:compile
  • Apache WSS4J WS-Security Common:compile
  • Apache WSS4J Streaming WS-SecurityPolicy:compile

shib-velocity-9.0.0.jar is in the transitive dependency tree of the listed items.Included by:
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.0-SNAPSHOT
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT
  • pkg:maven/org.opensaml/opensaml-saml-impl@5.0.0

Identifiers

slf4j-api-2.0.9.jar

Description:

The slf4j API

License:

http://www.opensource.org/licenses/mit-license.php
File Path: /Users/coheigea/.m2/repository/org/slf4j/slf4j-api/2.0.9/slf4j-api-2.0.9.jar
MD5: 45630e54b0f0ac2b3c80462515ad8fda
SHA1: 7cf2726fdcfbc8610f9a71fb3ed639871f315340
SHA256:0818930dc8d7debb403204611691da58e49d42c50b6ffcfdce02dadb7c3c2b6c
Referenced In Projects/Scopes:
  • Apache WSS4J Streaming WS-Security:compile
  • Apache WSS4J DOM WS-Security:compile
  • Apache WSS4J Web WS-Security:compile
  • Apache WSS4J WS-Security Common:compile
  • Apache WSS4J Streaming WS-SecurityPolicy:compile

slf4j-api-2.0.9.jar is in the transitive dependency tree of the listed items.Included by:
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.0-SNAPSHOT
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT

Identifiers

stax2-api-4.2.1.jar

Description:

tax2 API is an extension to basic Stax 1.0 API that adds significant new functionality, such as full-featured bi-direction validation interface and high-performance Typed Access API.
  

License:

The BSD License: http://www.opensource.org/licenses/bsd-license.php
File Path: /Users/coheigea/.m2/repository/org/codehaus/woodstox/stax2-api/4.2.1/stax2-api-4.2.1.jar
MD5: af8377bc7882332e22456616a9f164f6
SHA1: a3f7325c52240418c2ba257b103c3c550e140c83
SHA256:678567e48b51a42c65c699f266539ad3d676d4b1a5b0ad7d89ece8b9d5772579
Referenced In Projects/Scopes:
  • Apache WSS4J WS-Security Common:runtime
  • Apache WSS4J Streaming WS-Security:runtime
  • Apache WSS4J DOM WS-Security:runtime
  • Apache WSS4J Web WS-Security:runtime
  • Apache WSS4J WS-Security Bindings:runtime
  • Apache WSS4J Streaming WS-SecurityPolicy:runtime

stax2-api-4.2.1.jar is in the transitive dependency tree of the listed items.Included by:
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT
  • pkg:maven/org.apache.santuario/xmlsec@4.0.0
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.0-SNAPSHOT
  • pkg:maven/org.apache.santuario/xmlsec@4.0.0
  • pkg:maven/org.apache.wss4j/wss4j-bindings@4.0.0-SNAPSHOT
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT

Identifiers

txw2-3.0.2.jar

Description:

        TXW is a library that allows you to write XML documents.
    

File Path: /Users/coheigea/.m2/repository/org/glassfish/jaxb/txw2/3.0.2/txw2-3.0.2.jar
MD5: 1e918807b59e37de5c379d0720a1c335
SHA1: 8c448a44cdcdbb5dd48ff2eb88cab858ed52cf91
SHA256:b4bcf94fb0a759456e2521724513baec94b78e93127544af162e3cff08d93343
Referenced In Projects/Scopes:

  • Apache WSS4J Streaming WS-Security:runtime
  • Apache WSS4J Streaming WS-SecurityPolicy:runtime

txw2-3.0.2.jar is in the transitive dependency tree of the listed items.Included by:
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-stax@4.0.0-SNAPSHOT
  • pkg:maven/org.glassfish.jaxb/jaxb-runtime@3.0.2

Identifiers

woodstox-core-6.5.1.jar (shaded: com.sun.xml.bind.jaxb:isorelax:20090621)

Description:

Unknown version of isorelax library used in JAXB project

File Path: /Users/coheigea/.m2/repository/com/fasterxml/woodstox/woodstox-core/6.5.1/woodstox-core-6.5.1.jar/META-INF/maven/com.sun.xml.bind.jaxb/isorelax/pom.xml
MD5: 6fbb4bc95fbf2072bc6e3b790553fe81
SHA1: 314ec72948d5c1fc71d553cbbd7a130caa6f9f13
SHA256:cda6451d0231a973352b592ff950e39224ba6ba1a2f35eeab66511b5c225dff1
Referenced In Projects/Scopes:

  • Apache WSS4J WS-Security Common:runtime
  • Apache WSS4J Streaming WS-Security:runtime
  • Apache WSS4J DOM WS-Security:runtime
  • Apache WSS4J Web WS-Security:runtime
  • Apache WSS4J WS-Security Bindings:runtime
  • Apache WSS4J Streaming WS-SecurityPolicy:runtime

Identifiers

woodstox-core-6.5.1.jar (shaded: net.java.dev.msv:xsdlib:2013.6.1)

Description:

XML Schema datatypes library

File Path: /Users/coheigea/.m2/repository/com/fasterxml/woodstox/woodstox-core/6.5.1/woodstox-core-6.5.1.jar/META-INF/maven/net.java.dev.msv/xsdlib/pom.xml
MD5: aaf872ed9d1aabee25e03c2a132ffd8e
SHA1: 47f218a999411ed028f089d59ebef8f14e0fe914
SHA256:d6e83c124436049d83238fc532a26c5d8ccd7e4ab10eba6d96043c850ac82f3c
Referenced In Projects/Scopes:

  • Apache WSS4J WS-Security Common:runtime
  • Apache WSS4J Streaming WS-Security:runtime
  • Apache WSS4J DOM WS-Security:runtime
  • Apache WSS4J Web WS-Security:runtime
  • Apache WSS4J WS-Security Bindings:runtime
  • Apache WSS4J Streaming WS-SecurityPolicy:runtime

Identifiers

woodstox-core-6.5.1.jar

Description:

Woodstox is a high-performance XML processor that implements Stax (JSR-173),
SAX2 and Stax2 APIs
    

License:

The Apache License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /Users/coheigea/.m2/repository/com/fasterxml/woodstox/woodstox-core/6.5.1/woodstox-core-6.5.1.jar
MD5: 961dd4b2afedf95293dfdd8adfc8f211
SHA1: c6e52e84fe959e69a243c83ec7d24cd889444ddf
SHA256:c928d60665c6415fb1c39775cf95cfc44f7f4580cf5ab01b1c380ebffd76887f
Referenced In Projects/Scopes:
  • Apache WSS4J WS-Security Common:runtime
  • Apache WSS4J Streaming WS-Security:runtime
  • Apache WSS4J DOM WS-Security:runtime
  • Apache WSS4J Web WS-Security:runtime
  • Apache WSS4J WS-Security Bindings:runtime
  • Apache WSS4J Streaming WS-SecurityPolicy:runtime

woodstox-core-6.5.1.jar is in the transitive dependency tree of the listed items.Included by:
  • pkg:maven/org.apache.santuario/xmlsec@4.0.0
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.0-SNAPSHOT
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT
  • pkg:maven/org.apache.santuario/xmlsec@4.0.0
  • pkg:maven/org.apache.wss4j/wss4j-bindings@4.0.0-SNAPSHOT
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT

Identifiers

wsdl4j-1.6.3.jar

Description:

Java stub generator for WSDL

License:

CPL: http://www.opensource.org/licenses/cpl1.0.txt
File Path: /Users/coheigea/.m2/repository/wsdl4j/wsdl4j/1.6.3/wsdl4j-1.6.3.jar
MD5: cfc28d89625c5e88589aec7a9aee0208
SHA1: 6d106a6845a3d3477a1560008479312888e94f2f
SHA256:740f448e6b3bc110e02f4a1e56fb57672e732d2ecaf29ae15835051ae8af4725
Referenced In Project/Scope: Apache WSS4J Streaming WS-SecurityPolicy:compile
wsdl4j-1.6.3.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.wss4j/wss4j-ws-security-policy-stax@4.0.0-SNAPSHOT

Identifiers

xmlsec-4.0.0.jar

Description:

        Apache XML Security for Java supports XML-Signature Syntax and Processing,
        W3C Recommendation 12 February 2002, and XML Encryption Syntax and
        Processing, W3C Recommendation 10 December 2002. Since version 1.4,
        the library supports the standard Java API JSR-105: XML Digital Signature APIs.
    

License:

Apache-2.0: https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /Users/coheigea/.m2/repository/org/apache/santuario/xmlsec/4.0.0/xmlsec-4.0.0.jar
MD5: ac2621b7ea7e96a4bcdfb3b64b943dd3
SHA1: dc932051604410a07e8a9f6c034ee7e9cdfac877
SHA256:d73c98ec44b6b2d5a797f5686a3787d194de01adbe7af827d1619f8efe55975f
Referenced In Projects/Scopes:
  • Apache WSS4J Streaming WS-Security:compile
  • Apache WSS4J DOM WS-Security:compile
  • Apache WSS4J Web WS-Security:compile
  • Apache WSS4J WS-Security Bindings:compile
  • Apache WSS4J WS-Security Common:compile
  • Apache WSS4J Streaming WS-SecurityPolicy:compile

xmlsec-4.0.0.jar is in the transitive dependency tree of the listed items.Included by:
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.0-SNAPSHOT
  • pkg:maven/org.apache.wss4j/wss4j-bindings@4.0.0-SNAPSHOT
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT
  • pkg:maven/org.apache.wss4j/wss4j-bindings@4.0.0-SNAPSHOT
  • pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT

Identifiers

  • pkg:maven/org.apache.santuario/xmlsec@4.0.0  (Confidence:High)
  • cpe:2.3:a:apache:santuario_xml_security_for_java:4.0.0:*:*:*:*:*:*:*  (Confidence:Low)  
  • cpe:2.3:a:apache:xml_security_for_java:4.0.0:*:*:*:*:*:*:*  (Confidence:Low)  


This report contains data retrieved from the National Vulnerability Database.
This report may contain data retrieved from the CISA Known Exploited Vulnerability Catalog.
This report may contain data retrieved from the Github Advisory Database (via NPM Audit API).
This report may contain data retrieved from RetireJS.
This report may contain data retrieved from the Sonatype OSS Index.