Dependency-Check is an open source tool performing a best effort analysis of 3rd party dependencies;
false positives and false negatives may exist in the analysis performed by the tool. Use of the tool and
the reporting provided constitutes acceptance for use in an AS IS condition, and there are NO warranties,
implied or otherwise, with regard to the analysis or its use. Any use of the tool and the reporting provided
is at the user’s risk. In no event shall the copyright holder or OWASP be held liable for any damages whatsoever
arising out of or in connection with the use of this tool, the analysis performed, or the resulting report.
Scan Information (
show all ):
dependency-check version : 8.4.2Report Generated On : Wed, 1 Nov 2023 13:26:55 GMTDependencies Scanned : 72 (56 unique)Vulnerable Dependencies : 1 Vulnerabilities Found : 1Vulnerabilities Suppressed : 0 ... NVD CVE Checked : 2023-11-01T11:28:55NVD CVE Modified : 2023-11-01T10:00:01VersionCheckOn : 2023-10-24T06:06:55kev.checked : 1698838147Summary Display:
Showing Vulnerable Dependencies (click to show all) Description:
The Bouncy Castle Java APIs for CMS, PKCS, EAC, TSP, CMP, CRMF, OCSP, and certificate generation. This jar contains APIs for JDK 1.8 and up. The APIs can be used in conjunction with a JCE/JCA provider such as the one provided with the Bouncy Castle Cryptography APIs. License:
Bouncy Castle Licence: https://www.bouncycastle.org/licence.html File Path: /Users/coheigea/.m2/repository/org/bouncycastle/bcpkix-jdk18on/1.76/bcpkix-jdk18on-1.76.jar
MD5: 661d57d384f768f2bf92c0392f88379e
SHA1: 10c9cf5c1b4d64abeda28ee32fbade3b74373622
SHA256: 935a388854c329f9a6f32708f30c90045d2f91294fa687281273145d4cf9834a
Referenced In Projects/Scopes: Apache WSS4J Streaming WS-Security:compile Apache WSS4J Web WS-Security:compile Apache WSS4J WS-Security Common:compile Apache WSS4J Streaming WS-SecurityPolicy:compile bcpkix-jdk18on-1.76.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.0-SNAPSHOT pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT Evidence Type Source Name Value Confidence Vendor file name bcpkix-jdk18on High Vendor jar package name bouncycastle Highest Vendor jar package name cmp Highest Vendor jar package name cms Highest Vendor jar package name crmf Highest Vendor jar package name eac Highest Vendor jar package name ocsp Highest Vendor jar package name pkcs Highest Vendor jar package name pkix Highest Vendor jar package name tsp Highest Vendor Manifest application-library-allowable-codebase * Low Vendor Manifest application-name Bouncy Castle PKIX API Medium Vendor Manifest automatic-module-name org.bouncycastle.pkix Medium Vendor Manifest bundle-requiredexecutionenvironment J2SE-1.5 Low Vendor Manifest bundle-symbolicname bcpkix Medium Vendor Manifest caller-allowable-codebase * Low Vendor Manifest codebase * Low Vendor Manifest extension-name org.bouncycastle.bcpkix Medium Vendor Manifest Implementation-Vendor BouncyCastle.org High Vendor Manifest Implementation-Vendor-Id org.bouncycastle Medium Vendor Manifest multi-release true Low Vendor Manifest originally-created-by 25.362-b09 (Private Build) Low Vendor Manifest permissions all-permissions Low Vendor Manifest specification-vendor BouncyCastle.org Low Vendor Manifest trusted-library true Low Vendor pom artifactid bcpkix-jdk18on Highest Vendor pom artifactid bcpkix-jdk18on Low Vendor pom developer email feedback-crypto@bouncycastle.org Low Vendor pom developer id feedback-crypto Medium Vendor pom developer name The Legion of the Bouncy Castle Inc. Medium Vendor pom groupid org.bouncycastle Highest Vendor pom name Bouncy Castle PKIX, CMS, EAC, TSP, PKCS, OCSP, CMP, and CRMF APIs High Vendor pom url https://www.bouncycastle.org/java.html Highest Product file name bcpkix-jdk18on High Product jar package name bouncycastle Highest Product jar package name cmp Highest Product jar package name cms Highest Product jar package name crmf Highest Product jar package name eac Highest Product jar package name ocsp Highest Product jar package name pkcs Highest Product jar package name pkix Highest Product jar package name tsp Highest Product Manifest application-library-allowable-codebase * Low Product Manifest application-name Bouncy Castle PKIX API Medium Product Manifest automatic-module-name org.bouncycastle.pkix Medium Product Manifest Bundle-Name bcpkix Medium Product Manifest bundle-requiredexecutionenvironment J2SE-1.5 Low Product Manifest bundle-symbolicname bcpkix Medium Product Manifest caller-allowable-codebase * Low Product Manifest codebase * Low Product Manifest extension-name org.bouncycastle.bcpkix Medium Product Manifest multi-release true Low Product Manifest originally-created-by 25.362-b09 (Private Build) Low Product Manifest permissions all-permissions Low Product Manifest trusted-library true Low Product pom artifactid bcpkix-jdk18on Highest Product pom developer email feedback-crypto@bouncycastle.org Low Product pom developer id feedback-crypto Low Product pom developer name The Legion of the Bouncy Castle Inc. Low Product pom groupid org.bouncycastle Highest Product pom name Bouncy Castle PKIX, CMS, EAC, TSP, PKCS, OCSP, CMP, and CRMF APIs High Product pom url https://www.bouncycastle.org/java.html Medium Version file version 1.76 High Version Manifest Bundle-Version 1.76 High Version pom version 1.76 Highest
Description:
The Bouncy Castle Crypto package is a Java implementation of cryptographic algorithms. This jar contains JCE provider and lightweight API for the Bouncy Castle Cryptography APIs for JDK 1.8 and up. License:
Bouncy Castle Licence: https://www.bouncycastle.org/licence.html File Path: /Users/coheigea/.m2/repository/org/bouncycastle/bcprov-jdk18on/1.76/bcprov-jdk18on-1.76.jar
MD5: 7020b9a9e1b951f5754a2168a26367f1
SHA1: 3a785d0b41806865ad7e311162bfa3fa60b3965b
SHA256: fda85d777aaae168015860b23a77cad9b8d3a1d5c904fda875313427bd560179
Referenced In Projects/Scopes: Apache WSS4J Web WS-Security:compile Apache WSS4J WS-Security Common:compile Apache WSS4J Streaming WS-SecurityPolicy:compile bcprov-jdk18on-1.76.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.0-SNAPSHOT pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT Evidence Type Source Name Value Confidence Vendor file name bcprov-jdk18on High Vendor jar package name bouncycastle Highest Vendor jar package name crypto Highest Vendor jar package name jce Highest Vendor jar package name org Highest Vendor jar package name provider Highest Vendor Manifest application-library-allowable-codebase * Low Vendor Manifest application-name Bouncy Castle Provider Medium Vendor Manifest automatic-module-name org.bouncycastle.provider Medium Vendor Manifest bundle-requiredexecutionenvironment J2SE-1.5 Low Vendor Manifest bundle-symbolicname bcprov Medium Vendor Manifest caller-allowable-codebase * Low Vendor Manifest codebase * Low Vendor Manifest extension-name org.bouncycastle.bcprovider Medium Vendor Manifest Implementation-Vendor BouncyCastle.org High Vendor Manifest Implementation-Vendor-Id org.bouncycastle Medium Vendor Manifest multi-release true Low Vendor Manifest originally-created-by 25.362-b09 (Private Build) Low Vendor Manifest permissions all-permissions Low Vendor Manifest specification-vendor BouncyCastle.org Low Vendor Manifest trusted-library true Low Vendor pom artifactid bcprov-jdk18on Highest Vendor pom artifactid bcprov-jdk18on Low Vendor pom developer email feedback-crypto@bouncycastle.org Low Vendor pom developer id feedback-crypto Medium Vendor pom developer name The Legion of the Bouncy Castle Inc. Medium Vendor pom groupid org.bouncycastle Highest Vendor pom name Bouncy Castle Provider High Vendor pom url https://www.bouncycastle.org/java.html Highest Product file name bcprov-jdk18on High Product hint analyzer product legion-of-the-bouncy-castle-java-crytography-api High Product hint analyzer product the_bouncy_castle_crypto_package_for_java High Product jar package name bouncycastle Highest Product jar package name crypto Highest Product jar package name jce Highest Product jar package name org Highest Product jar package name provider Highest Product Manifest application-library-allowable-codebase * Low Product Manifest application-name Bouncy Castle Provider Medium Product Manifest automatic-module-name org.bouncycastle.provider Medium Product Manifest Bundle-Name bcprov Medium Product Manifest bundle-requiredexecutionenvironment J2SE-1.5 Low Product Manifest bundle-symbolicname bcprov Medium Product Manifest caller-allowable-codebase * Low Product Manifest codebase * Low Product Manifest extension-name org.bouncycastle.bcprovider Medium Product Manifest multi-release true Low Product Manifest originally-created-by 25.362-b09 (Private Build) Low Product Manifest permissions all-permissions Low Product Manifest trusted-library true Low Product pom artifactid bcprov-jdk18on Highest Product pom developer email feedback-crypto@bouncycastle.org Low Product pom developer id feedback-crypto Low Product pom developer name The Legion of the Bouncy Castle Inc. Low Product pom groupid org.bouncycastle Highest Product pom name Bouncy Castle Provider High Product pom url https://www.bouncycastle.org/java.html Medium Version file version 1.76 High Version Manifest Bundle-Version 1.76 High Version pom version 1.76 Highest
pkg:maven/org.bouncycastle/bcprov-jdk18on@1.76 (Confidence :High)cpe:2.3:a:bouncycastle:bouncy-castle-crypto-package:1.76:*:*:*:*:*:*:* (Confidence :Low) suppress cpe:2.3:a:bouncycastle:bouncy_castle_crypto_package:1.76:*:*:*:*:*:*:* (Confidence :Low) suppress cpe:2.3:a:bouncycastle:legion-of-the-bouncy-castle:1.76:*:*:*:*:*:*:* (Confidence :Low) suppress cpe:2.3:a:bouncycastle:legion-of-the-bouncy-castle-java-crytography-api:1.76:*:*:*:*:*:*:* (Confidence :Low) suppress cpe:2.3:a:bouncycastle:the_bouncy_castle_crypto_package_for_java:1.76:*:*:*:*:*:*:* (Confidence :Low) suppress Description:
The Bouncy Castle Java APIs for ASN.1 extension and utility APIs used to support bcpkix and bctls. This jar contains APIs for JDK 1.8 and up. License:
Bouncy Castle Licence: https://www.bouncycastle.org/licence.html File Path: /Users/coheigea/.m2/repository/org/bouncycastle/bcutil-jdk18on/1.76/bcutil-jdk18on-1.76.jar
MD5: 4df5b021c310b4c7c07d4490318d75cb
SHA1: 8c7594e651a278bcde18e038d8ab55b1f97f4d31
SHA256: 1a65ad02958223a3f31373bd72eea942cafd1b1877a3ed0b492c2487e77c3c27
Referenced In Projects/Scopes: Apache WSS4J Streaming WS-Security:compile Apache WSS4J Web WS-Security:compile Apache WSS4J WS-Security Common:compile Apache WSS4J Streaming WS-SecurityPolicy:compile bcutil-jdk18on-1.76.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.bouncycastle/bcpkix-jdk18on@1.76 pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.0-SNAPSHOT pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT Evidence Type Source Name Value Confidence Vendor file name bcutil-jdk18on High Vendor jar package name bouncycastle Highest Vendor Manifest application-library-allowable-codebase * Low Vendor Manifest application-name Bouncy Castle Utility APIs Medium Vendor Manifest automatic-module-name org.bouncycastle.util Medium Vendor Manifest bundle-requiredexecutionenvironment J2SE-1.5 Low Vendor Manifest bundle-symbolicname bcutil Medium Vendor Manifest caller-allowable-codebase * Low Vendor Manifest codebase * Low Vendor Manifest extension-name org.bouncycastle.bcutil Medium Vendor Manifest Implementation-Vendor BouncyCastle.org High Vendor Manifest Implementation-Vendor-Id org.bouncycastle Medium Vendor Manifest multi-release true Low Vendor Manifest originally-created-by 25.362-b09 (Private Build) Low Vendor Manifest permissions all-permissions Low Vendor Manifest specification-vendor BouncyCastle.org Low Vendor Manifest trusted-library true Low Vendor pom artifactid bcutil-jdk18on Highest Vendor pom artifactid bcutil-jdk18on Low Vendor pom developer email feedback-crypto@bouncycastle.org Low Vendor pom developer id feedback-crypto Medium Vendor pom developer name The Legion of the Bouncy Castle Inc. Medium Vendor pom groupid org.bouncycastle Highest Vendor pom name Bouncy Castle ASN.1 Extension and Utility APIs High Vendor pom url https://www.bouncycastle.org/java.html Highest Product file name bcutil-jdk18on High Product jar package name bouncycastle Highest Product Manifest application-library-allowable-codebase * Low Product Manifest application-name Bouncy Castle Utility APIs Medium Product Manifest automatic-module-name org.bouncycastle.util Medium Product Manifest Bundle-Name bcutil Medium Product Manifest bundle-requiredexecutionenvironment J2SE-1.5 Low Product Manifest bundle-symbolicname bcutil Medium Product Manifest caller-allowable-codebase * Low Product Manifest codebase * Low Product Manifest extension-name org.bouncycastle.bcutil Medium Product Manifest multi-release true Low Product Manifest originally-created-by 25.362-b09 (Private Build) Low Product Manifest permissions all-permissions Low Product Manifest trusted-library true Low Product pom artifactid bcutil-jdk18on Highest Product pom developer email feedback-crypto@bouncycastle.org Low Product pom developer id feedback-crypto Low Product pom developer name The Legion of the Bouncy Castle Inc. Low Product pom groupid org.bouncycastle Highest Product pom name Bouncy Castle ASN.1 Extension and Utility APIs High Product pom url https://www.bouncycastle.org/java.html Medium Version file version 1.76 High Version Manifest Bundle-Version 1.76 High Version pom version 1.76 Highest
License:
Apache License, Version 2.0: https://www.apache.org/licenses/LICENSE-2.0.txt File Path: /Users/coheigea/.m2/repository/javax/cache/cache-api/1.1.0/cache-api-1.1.0.jar
MD5: ac907ad12e9a7ac5d41abf703855002f
SHA1: 77bdcff7814076dfa61611b0db88487c515150b6
SHA256: 6c980ad1ae4a6dda3bdb62986c3ef5b41ccf766e12353587ee4e4307e27e155a
Referenced In Projects/Scopes: Apache WSS4J Streaming WS-Security:runtime Apache WSS4J DOM WS-Security:runtime Apache WSS4J Web WS-Security:runtime Apache WSS4J WS-Security Common:compile Apache WSS4J Streaming WS-SecurityPolicy:runtime cache-api-1.1.0.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.ehcache/ehcache@3.10.8 pkg:maven/org.ehcache/ehcache@3.10.8 pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.0-SNAPSHOT pkg:maven/org.ehcache/ehcache@3.10.8 pkg:maven/org.apache.wss4j/wss4j-ws-security-stax@4.0.0-SNAPSHOT Evidence Type Source Name Value Confidence Vendor file name cache-api High Vendor jar package name cache Highest Vendor jar package name javax Highest Vendor jar package name spi Highest Vendor Manifest bundle-symbolicname javax.cache.api Medium Vendor pom artifactid cache-api Highest Vendor pom artifactid cache-api Low Vendor pom groupid javax.cache Highest Vendor pom name JSR107 API and SPI High Vendor pom url jsr107/jsr107spec Highest Product file name cache-api High Product jar package name cache Highest Product jar package name javax Highest Product jar package name spi Highest Product Manifest Bundle-Name JSR107 API and SPI Medium Product Manifest bundle-symbolicname javax.cache.api Medium Product pom artifactid cache-api Highest Product pom groupid javax.cache Highest Product pom name JSR107 API and SPI High Product pom url jsr107/jsr107spec High Version file version 1.1.0 High Version Manifest Bundle-Version 1.1.0 High Version pom version 1.1.0 Highest
Description:
The Apache Commons Codec package contains simple encoder and decoders for
various formats such as Base64 and Hexadecimal. In addition to these
widely used encoders and decoders, the codec package also maintains a
collection of phonetic encoding utilities.
License:
https://www.apache.org/licenses/LICENSE-2.0.txt File Path: /Users/coheigea/.m2/repository/commons-codec/commons-codec/1.15/commons-codec-1.15.jar
MD5: 303baf002ce6d382198090aedd9d79a2
SHA1: 49d94806b6e3dc933dacbd8acb0fdbab8ebd1e5d
SHA256: b3e9f6d63a790109bf0d056611fbed1cf69055826defeb9894a71369d246ed63
Referenced In Projects/Scopes: Apache WSS4J Streaming WS-Security:compile Apache WSS4J DOM WS-Security:compile Apache WSS4J Web WS-Security:compile Apache WSS4J WS-Security Bindings:compile Apache WSS4J WS-Security Common:compile Apache WSS4J Streaming WS-SecurityPolicy:compile commons-codec-1.15.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.0-SNAPSHOT pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT pkg:maven/org.apache.wss4j/wss4j-bindings@4.0.0-SNAPSHOT pkg:maven/org.apache.santuario/xmlsec@4.0.0 pkg:maven/org.apache.santuario/xmlsec@4.0.0 pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT Evidence Type Source Name Value Confidence Vendor file name commons-codec High Vendor jar package name apache Highest Vendor jar package name codec Highest Vendor jar package name commons Highest Vendor jar package name encoder Highest Vendor Manifest automatic-module-name org.apache.commons.codec Medium Vendor Manifest build-jdk-spec 1.8 Low Vendor Manifest bundle-docurl https://commons.apache.org/proper/commons-codec/ Low Vendor Manifest bundle-symbolicname org.apache.commons.commons-codec Medium Vendor Manifest Implementation-Vendor The Apache Software Foundation High Vendor Manifest specification-vendor The Apache Software Foundation Low Vendor pom artifactid commons-codec Highest Vendor pom artifactid commons-codec Low Vendor pom developer email bayard@apache.org Low Vendor pom developer email chtompki@apache.org Low Vendor pom developer email dgraham@apache.org Low Vendor pom developer email dlr@finemaltcoding.com Low Vendor pom developer email ggregory@apache.org Low Vendor pom developer email jon@collab.net Low Vendor pom developer email julius@apache.org Low Vendor pom developer email rwaldhoff@apache.org Low Vendor pom developer email sanders@totalsync.com Low Vendor pom developer email tn@apache.org Low Vendor pom developer email tobrien@apache.org Low Vendor pom developer id bayard Medium Vendor pom developer id chtompki Medium Vendor pom developer id dgraham Medium Vendor pom developer id dlr Medium Vendor pom developer id ggregory Medium Vendor pom developer id jon Medium Vendor pom developer id julius Medium Vendor pom developer id rwaldhoff Medium Vendor pom developer id sanders Medium Vendor pom developer id tn Medium Vendor pom developer id tobrien Medium Vendor pom developer name Daniel Rall Medium Vendor pom developer name David Graham Medium Vendor pom developer name Gary Gregory Medium Vendor pom developer name Henri Yandell Medium Vendor pom developer name Jon S. Stevens Medium Vendor pom developer name Julius Davies Medium Vendor pom developer name Rob Tompkins Medium Vendor pom developer name Rodney Waldhoff Medium Vendor pom developer name Scott Sanders Medium Vendor pom developer name Thomas Neidhart Medium Vendor pom developer name Tim OBrien Medium Vendor pom developer org URL http://juliusdavies.ca/ Medium Vendor pom groupid commons-codec Highest Vendor pom name Apache Commons Codec High Vendor pom parent-artifactid commons-parent Low Vendor pom parent-groupid org.apache.commons Medium Vendor pom url https://commons.apache.org/proper/commons-codec/ Highest Product file name commons-codec High Product jar package name apache Highest Product jar package name codec Highest Product jar package name commons Highest Product jar package name encoder Highest Product Manifest automatic-module-name org.apache.commons.codec Medium Product Manifest build-jdk-spec 1.8 Low Product Manifest bundle-docurl https://commons.apache.org/proper/commons-codec/ Low Product Manifest Bundle-Name Apache Commons Codec Medium Product Manifest bundle-symbolicname org.apache.commons.commons-codec Medium Product Manifest Implementation-Title Apache Commons Codec High Product Manifest specification-title Apache Commons Codec Medium Product pom artifactid commons-codec Highest Product pom developer email bayard@apache.org Low Product pom developer email chtompki@apache.org Low Product pom developer email dgraham@apache.org Low Product pom developer email dlr@finemaltcoding.com Low Product pom developer email ggregory@apache.org Low Product pom developer email jon@collab.net Low Product pom developer email julius@apache.org Low Product pom developer email rwaldhoff@apache.org Low Product pom developer email sanders@totalsync.com Low Product pom developer email tn@apache.org Low Product pom developer email tobrien@apache.org Low Product pom developer id bayard Low Product pom developer id chtompki Low Product pom developer id dgraham Low Product pom developer id dlr Low Product pom developer id ggregory Low Product pom developer id jon Low Product pom developer id julius Low Product pom developer id rwaldhoff Low Product pom developer id sanders Low Product pom developer id tn Low Product pom developer id tobrien Low Product pom developer name Daniel Rall Low Product pom developer name David Graham Low Product pom developer name Gary Gregory Low Product pom developer name Henri Yandell Low Product pom developer name Jon S. Stevens Low Product pom developer name Julius Davies Low Product pom developer name Rob Tompkins Low Product pom developer name Rodney Waldhoff Low Product pom developer name Scott Sanders Low Product pom developer name Thomas Neidhart Low Product pom developer name Tim OBrien Low Product pom developer org URL http://juliusdavies.ca/ Low Product pom groupid commons-codec Highest Product pom name Apache Commons Codec High Product pom parent-artifactid commons-parent Medium Product pom parent-groupid org.apache.commons Medium Product pom url https://commons.apache.org/proper/commons-codec/ Medium Version file version 1.15 High Version Manifest Implementation-Version 1.15 High Version pom parent-version 1.15 Low Version pom version 1.15 Highest
Description:
The spectacular complement to the Bouncy Castle crypto API for Java. License:
Apache 2: http://www.apache.org/licenses/LICENSE-2.0.txt
GNU Lesser General Public License: http://www.gnu.org/licenses/lgpl-3.0.txt File Path: /Users/coheigea/.m2/repository/org/cryptacular/cryptacular/1.2.6/cryptacular-1.2.6.jar
MD5: b4cf54fbc0b44a3233b0daa8b4c0cb83
SHA1: c97954b8bc9fbf63393d6a3b9113a6ce70772b45
SHA256: 7a901585834f4533f127c643660435aec9a969af720613dc9126e555be7b1a01
Referenced In Projects/Scopes: Apache WSS4J Streaming WS-Security:compile Apache WSS4J DOM WS-Security:compile Apache WSS4J Web WS-Security:compile Apache WSS4J WS-Security Common:compile Apache WSS4J Streaming WS-SecurityPolicy:compile cryptacular-1.2.6.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.0-SNAPSHOT pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT Evidence Type Source Name Value Confidence Vendor file name cryptacular High Vendor hint analyzer vendor Virginia Tech Highest Vendor hint analyzer vendor vt Highest Vendor jar package name cryptacular Highest Vendor Manifest build-jdk-spec 1.8 Low Vendor Manifest bundle-symbolicname org.cryptacular Medium Vendor pom artifactid cryptacular Highest Vendor pom artifactid cryptacular Low Vendor pom developer email dfisher@vt.edu Low Vendor pom developer email serac@vt.edu Low Vendor pom developer id dfisher Medium Vendor pom developer id serac Medium Vendor pom developer name Daniel Fisher Medium Vendor pom developer name Marvin S. Addison Medium Vendor pom developer org Virginia Tech Medium Vendor pom developer org URL http://www.vt.edu Medium Vendor pom groupid org.cryptacular Highest Vendor pom name Cryptacular Library High Vendor pom url http://www.cryptacular.org Highest Product file name cryptacular High Product jar package name cryptacular Highest Product Manifest build-jdk-spec 1.8 Low Product Manifest Bundle-Name Cryptacular Library Medium Product Manifest bundle-symbolicname org.cryptacular Medium Product pom artifactid cryptacular Highest Product pom developer email dfisher@vt.edu Low Product pom developer email serac@vt.edu Low Product pom developer id dfisher Low Product pom developer id serac Low Product pom developer name Daniel Fisher Low Product pom developer name Marvin S. Addison Low Product pom developer org Virginia Tech Low Product pom developer org URL http://www.vt.edu Low Product pom groupid org.cryptacular Highest Product pom name Cryptacular Library High Product pom url http://www.cryptacular.org Medium Version file version 1.2.6 High Version Manifest Bundle-Version 1.2.6 High Version pom version 1.2.6 Highest
Description:
The JSR-107 compatibility module of Ehcache 3 License:
The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt File Path: /Users/coheigea/.m2/repository/org/ehcache/ehcache/3.10.8/ehcache-3.10.8-jakarta.jar/META-INF/maven/org.ehcache.modules/ehcache-107/pom.xml
MD5: cbb6582f7bae2d80eba99428ba1fa879
SHA1: 93ece0b8696af1b39d5a59f4ac001ff67ade031b
SHA256: 881431ccba0094c52fde3d05f6800c5fa488f21ce8e0c253b3080868822362cb
Referenced In Projects/Scopes: Apache WSS4J Streaming WS-Security:runtime Apache WSS4J DOM WS-Security:runtime Apache WSS4J Web WS-Security:runtime Apache WSS4J WS-Security Common:compile Apache WSS4J Streaming WS-SecurityPolicy:runtime Evidence Type Source Name Value Confidence Vendor pom artifactid ehcache-107 Low Vendor pom developer email tc-oss@softwareag.com Low Vendor pom developer name Terracotta Engineers Medium Vendor pom developer org Terracotta Inc., a wholly-owned subsidiary of Software AG USA, Inc. Medium Vendor pom developer org URL http://ehcache.org Medium Vendor pom groupid org.ehcache.modules Highest Vendor pom name Ehcache 3 JSR-107 module High Vendor pom organization name Terracotta Inc., a wholly-owned subsidiary of Software AG USA, Inc. High Vendor pom organization url http://terracotta.org Medium Vendor pom url http://ehcache.org Highest Product pom artifactid ehcache-107 Highest Product pom developer email tc-oss@softwareag.com Low Product pom developer name Terracotta Engineers Low Product pom developer org Terracotta Inc., a wholly-owned subsidiary of Software AG USA, Inc. Low Product pom developer org URL http://ehcache.org Low Product pom groupid org.ehcache.modules Highest Product pom name Ehcache 3 JSR-107 module High Product pom organization name Terracotta Inc., a wholly-owned subsidiary of Software AG USA, Inc. Low Product pom organization url http://terracotta.org Low Product pom url http://ehcache.org Medium Version pom version 3.10.8 Highest
Description:
The API module of Ehcache 3 License:
The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt File Path: /Users/coheigea/.m2/repository/org/ehcache/ehcache/3.10.8/ehcache-3.10.8-jakarta.jar/META-INF/maven/org.ehcache.modules/ehcache-api/pom.xml
MD5: 684f68673f7e1877dd8710c9c20b66a8
SHA1: 5cb0644b5714e1cd3b9ed067db5b74c1d2f90405
SHA256: 8cb81dbe787af826481c2a79ad85bef6e46cf429a982a765581142a823db54e5
Referenced In Projects/Scopes: Apache WSS4J Streaming WS-Security:runtime Apache WSS4J DOM WS-Security:runtime Apache WSS4J Web WS-Security:runtime Apache WSS4J WS-Security Common:compile Apache WSS4J Streaming WS-SecurityPolicy:runtime Evidence Type Source Name Value Confidence Vendor pom artifactid ehcache-api Low Vendor pom developer email tc-oss@softwareag.com Low Vendor pom developer name Terracotta Engineers Medium Vendor pom developer org Terracotta Inc., a wholly-owned subsidiary of Software AG USA, Inc. Medium Vendor pom developer org URL http://ehcache.org Medium Vendor pom groupid org.ehcache.modules Highest Vendor pom name Ehcache 3 API module High Vendor pom organization name Terracotta Inc., a wholly-owned subsidiary of Software AG USA, Inc. High Vendor pom organization url http://terracotta.org Medium Vendor pom url http://ehcache.org Highest Product pom artifactid ehcache-api Highest Product pom developer email tc-oss@softwareag.com Low Product pom developer name Terracotta Engineers Low Product pom developer org Terracotta Inc., a wholly-owned subsidiary of Software AG USA, Inc. Low Product pom developer org URL http://ehcache.org Low Product pom groupid org.ehcache.modules Highest Product pom name Ehcache 3 API module High Product pom organization name Terracotta Inc., a wholly-owned subsidiary of Software AG USA, Inc. Low Product pom organization url http://terracotta.org Low Product pom url http://ehcache.org Medium Version pom version 3.10.8 Highest
Description:
The Core module of Ehcache 3 License:
The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt File Path: /Users/coheigea/.m2/repository/org/ehcache/ehcache/3.10.8/ehcache-3.10.8-jakarta.jar/META-INF/maven/org.ehcache.modules/ehcache-core/pom.xml
MD5: 81e4d90adf09bff8de32a927f13fa7dd
SHA1: 1603c939dbc836b9a67ba29c8e3f5bde24a35345
SHA256: d26e487336af1baa60250c41d3f30d6f62fed549c8f282ecccdbb9a905f00a3f
Referenced In Projects/Scopes: Apache WSS4J Streaming WS-Security:runtime Apache WSS4J DOM WS-Security:runtime Apache WSS4J Web WS-Security:runtime Apache WSS4J WS-Security Common:compile Apache WSS4J Streaming WS-SecurityPolicy:runtime Evidence Type Source Name Value Confidence Vendor pom artifactid ehcache-core Low Vendor pom developer email tc-oss@softwareag.com Low Vendor pom developer name Terracotta Engineers Medium Vendor pom developer org Terracotta Inc., a wholly-owned subsidiary of Software AG USA, Inc. Medium Vendor pom developer org URL http://ehcache.org Medium Vendor pom groupid org.ehcache.modules Highest Vendor pom name Ehcache 3 Core module High Vendor pom organization name Terracotta Inc., a wholly-owned subsidiary of Software AG USA, Inc. High Vendor pom organization url http://terracotta.org Medium Vendor pom url http://ehcache.org Highest Product pom artifactid ehcache-core Highest Product pom developer email tc-oss@softwareag.com Low Product pom developer name Terracotta Engineers Low Product pom developer org Terracotta Inc., a wholly-owned subsidiary of Software AG USA, Inc. Low Product pom developer org URL http://ehcache.org Low Product pom groupid org.ehcache.modules Highest Product pom name Ehcache 3 Core module High Product pom organization name Terracotta Inc., a wholly-owned subsidiary of Software AG USA, Inc. Low Product pom organization url http://terracotta.org Low Product pom url http://ehcache.org Medium Version pom version 3.10.8 Highest
Description:
The implementation module of Ehcache 3 License:
The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt File Path: /Users/coheigea/.m2/repository/org/ehcache/ehcache/3.10.8/ehcache-3.10.8-jakarta.jar/META-INF/maven/org.ehcache.modules/ehcache-impl/pom.xml
MD5: 68666160c19c3a231099a0d5d61f364f
SHA1: 99176e4618d2a09bbef35ab175273edf50b72f3c
SHA256: 9ccbc05db652fe94233c346648fb06d503bfbf27f13aaaec4be87752b14f1d9c
Referenced In Projects/Scopes: Apache WSS4J Streaming WS-Security:runtime Apache WSS4J DOM WS-Security:runtime Apache WSS4J Web WS-Security:runtime Apache WSS4J WS-Security Common:compile Apache WSS4J Streaming WS-SecurityPolicy:runtime Evidence Type Source Name Value Confidence Vendor pom artifactid ehcache-impl Low Vendor pom developer email tc-oss@softwareag.com Low Vendor pom developer name Terracotta Engineers Medium Vendor pom developer org Terracotta Inc., a wholly-owned subsidiary of Software AG USA, Inc. Medium Vendor pom developer org URL http://ehcache.org Medium Vendor pom groupid org.ehcache.modules Highest Vendor pom name Ehcache 3 Implementation module High Vendor pom organization name Terracotta Inc., a wholly-owned subsidiary of Software AG USA, Inc. High Vendor pom organization url http://terracotta.org Medium Vendor pom url http://ehcache.org Highest Product pom artifactid ehcache-impl Highest Product pom developer email tc-oss@softwareag.com Low Product pom developer name Terracotta Engineers Low Product pom developer org Terracotta Inc., a wholly-owned subsidiary of Software AG USA, Inc. Low Product pom developer org URL http://ehcache.org Low Product pom groupid org.ehcache.modules Highest Product pom name Ehcache 3 Implementation module High Product pom organization name Terracotta Inc., a wholly-owned subsidiary of Software AG USA, Inc. Low Product pom organization url http://terracotta.org Low Product pom url http://ehcache.org Medium Version pom version 3.10.8 Highest
Description:
This module contains the XML parsing SPI for Ehcache 3. This allows Ehcache extension services to provide XML configuration capabilities. License:
The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt File Path: /Users/coheigea/.m2/repository/org/ehcache/ehcache/3.10.8/ehcache-3.10.8-jakarta.jar/META-INF/maven/org.ehcache.modules/ehcache-xml-spi/pom.xml
MD5: d692ac727407f129dc07ce98a6c309b2
SHA1: 35f69aaa6f9b7b413aa6c12c969f0e91ba1ffb1f
SHA256: aecb4a20f1ce69a777649b65343557329e031641481841a233973d857d2ba32d
Referenced In Projects/Scopes: Apache WSS4J Streaming WS-Security:runtime Apache WSS4J DOM WS-Security:runtime Apache WSS4J Web WS-Security:runtime Apache WSS4J WS-Security Common:compile Apache WSS4J Streaming WS-SecurityPolicy:runtime Evidence Type Source Name Value Confidence Vendor pom artifactid ehcache-xml-spi Low Vendor pom developer email tc-oss@softwareag.com Low Vendor pom developer name Terracotta Engineers Medium Vendor pom developer org Terracotta Inc., a wholly-owned subsidiary of Software AG USA, Inc. Medium Vendor pom developer org URL http://ehcache.org Medium Vendor pom groupid org.ehcache.modules Highest Vendor pom name Ehcache 3 XML Parsing SPI Module High Vendor pom organization name Terracotta Inc., a wholly-owned subsidiary of Software AG USA, Inc. High Vendor pom organization url http://terracotta.org Medium Vendor pom url http://ehcache.org Highest Product pom artifactid ehcache-xml-spi Highest Product pom developer email tc-oss@softwareag.com Low Product pom developer name Terracotta Engineers Low Product pom developer org Terracotta Inc., a wholly-owned subsidiary of Software AG USA, Inc. Low Product pom developer org URL http://ehcache.org Low Product pom groupid org.ehcache.modules Highest Product pom name Ehcache 3 XML Parsing SPI Module High Product pom organization name Terracotta Inc., a wholly-owned subsidiary of Software AG USA, Inc. Low Product pom organization url http://terracotta.org Low Product pom url http://ehcache.org Medium Version pom version 3.10.8 Highest
Description:
The module containing all XML parsing logic Ehcache 3 License:
The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt File Path: /Users/coheigea/.m2/repository/org/ehcache/ehcache/3.10.8/ehcache-3.10.8-jakarta.jar/META-INF/maven/org.ehcache.modules/ehcache-xml/pom.xml
MD5: c0cfdd21ebfc0207a9516d08ab7e2858
SHA1: 0cec45ad454b3eb0d5cd4a5f4fffd71b1e462e31
SHA256: bd6c0ce56beca6eb6b0b6a55fcf3c86a652b8ddc0bb2cf390c8c3f3e660603fe
Referenced In Projects/Scopes: Apache WSS4J Streaming WS-Security:runtime Apache WSS4J DOM WS-Security:runtime Apache WSS4J Web WS-Security:runtime Apache WSS4J WS-Security Common:compile Apache WSS4J Streaming WS-SecurityPolicy:runtime Evidence Type Source Name Value Confidence Vendor pom artifactid ehcache-xml Low Vendor pom developer email tc-oss@softwareag.com Low Vendor pom developer name Terracotta Engineers Medium Vendor pom developer org Terracotta Inc., a wholly-owned subsidiary of Software AG USA, Inc. Medium Vendor pom developer org URL http://ehcache.org Medium Vendor pom groupid org.ehcache.modules Highest Vendor pom name Ehcache 3 XML Parsing module High Vendor pom organization name Terracotta Inc., a wholly-owned subsidiary of Software AG USA, Inc. High Vendor pom organization url http://terracotta.org Medium Vendor pom url http://ehcache.org Highest Product pom artifactid ehcache-xml Highest Product pom developer email tc-oss@softwareag.com Low Product pom developer name Terracotta Engineers Low Product pom developer org Terracotta Inc., a wholly-owned subsidiary of Software AG USA, Inc. Low Product pom developer org URL http://ehcache.org Low Product pom groupid org.ehcache.modules Highest Product pom name Ehcache 3 XML Parsing module High Product pom organization name Terracotta Inc., a wholly-owned subsidiary of Software AG USA, Inc. Low Product pom organization url http://terracotta.org Low Product pom url http://ehcache.org Medium Version pom version 3.10.8 Highest
Description:
SizeOf engine, extracted from Ehcache License:
The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt File Path: /Users/coheigea/.m2/repository/org/ehcache/ehcache/3.10.8/ehcache-3.10.8-jakarta.jar/META-INF/maven/org.ehcache/sizeof/pom.xml
MD5: c0ad3baef0ef03d4ca849743f1f26b70
SHA1: 8589b7bd18f4b3e12cd222a44bdcbbada5363da8
SHA256: 9c03a981dbff96ff6b7d74dffb5e8a9a46bb66e06ba98d18f6b8ff4472bd0709
Referenced In Projects/Scopes: Apache WSS4J Streaming WS-Security:runtime Apache WSS4J DOM WS-Security:runtime Apache WSS4J Web WS-Security:runtime Apache WSS4J WS-Security Common:compile Apache WSS4J Streaming WS-SecurityPolicy:runtime Evidence Type Source Name Value Confidence Vendor pom artifactid sizeof Low Vendor pom groupid org.ehcache Highest Vendor pom name Ehcache SizeOf Engine High Vendor pom organization name Terracotta High Vendor pom organization url http://terracotta.org Medium Vendor pom url ehcache/sizeof Highest Product pom artifactid sizeof Highest Product pom groupid org.ehcache Highest Product pom name Ehcache SizeOf Engine High Product pom organization name Terracotta Low Product pom organization url http://terracotta.org Low Product pom url ehcache/sizeof High Version pom version 0.4.3 Highest
Description:
A library that offers data structures allocated off the java heap. License:
The Apache License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt File Path: /Users/coheigea/.m2/repository/org/ehcache/ehcache/3.10.8/ehcache-3.10.8-jakarta.jar/META-INF/maven/org.terracotta/offheap-store/pom.xml
MD5: f5ad26371f4a3b04c5b8a0a089639d87
SHA1: 1979a0cbe0be10a6d5215bb9cbbb5635b9314924
SHA256: d8ae272530d98560cf81066b0409bcba2648a2528c00bd0147253695bb5f0949
Referenced In Projects/Scopes: Apache WSS4J Streaming WS-Security:runtime Apache WSS4J DOM WS-Security:runtime Apache WSS4J Web WS-Security:runtime Apache WSS4J WS-Security Common:compile Apache WSS4J Streaming WS-SecurityPolicy:runtime Evidence Type Source Name Value Confidence Vendor pom artifactid offheap-store Low Vendor pom developer email chris.dennis@terracottatech.com Low Vendor pom developer name Chris Dennis Medium Vendor pom developer org Terracotta Inc., a wholly-owned subsidiary of Software AG USA, Inc. Medium Vendor pom developer org URL https://terracotta.org Medium Vendor pom groupid org.terracotta Highest Vendor pom name Terracotta Off-Heap Store High Vendor pom url Terracotta-OSS/offheap-store/ Highest Product pom artifactid offheap-store Highest Product pom developer email chris.dennis@terracottatech.com Low Product pom developer name Chris Dennis Low Product pom developer org Terracotta Inc., a wholly-owned subsidiary of Software AG USA, Inc. Low Product pom developer org URL https://terracotta.org Low Product pom groupid org.terracotta Highest Product pom name Terracotta Off-Heap Store High Product pom url Terracotta-OSS/offheap-store/ High Version pom version 2.5.3 Highest
Description:
A statistics framework used inside Ehcache and the Terracotta products License:
The Apache License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt File Path: /Users/coheigea/.m2/repository/org/ehcache/ehcache/3.10.8/ehcache-3.10.8-jakarta.jar/META-INF/maven/org.terracotta/statistics/pom.xml
MD5: 9df3f5a18142de19c1c7f379885a4391
SHA1: 305a0214578ebf1c14e8d78adce1a5af028c8132
SHA256: 25c36806fdcd2ab5e4c1c1c5625bc4f966c10a4a93ab3dd321aa82b3f9e43081
Referenced In Projects/Scopes: Apache WSS4J Streaming WS-Security:runtime Apache WSS4J DOM WS-Security:runtime Apache WSS4J Web WS-Security:runtime Apache WSS4J WS-Security Common:compile Apache WSS4J Streaming WS-SecurityPolicy:runtime Evidence Type Source Name Value Confidence Vendor pom artifactid statistics Low Vendor pom developer email chris.dennis@terracottatech.com Low Vendor pom developer email Chris.Schanck@terracottatech.com Low Vendor pom developer email ludovic.orban@terracottatech.com Low Vendor pom developer name Chris Dennis Medium Vendor pom developer name Chris Schanck Medium Vendor pom developer name Ludovic Orban Medium Vendor pom developer org Terracotta Inc., a wholly-owned subsidiary of Software AG USA, Inc. Medium Vendor pom developer org URL https://terracotta.org Medium Vendor pom groupid org.terracotta Highest Vendor pom name Terracotta Statistics High Vendor pom url Terracotta-OSS/statistics Highest Product pom artifactid statistics Highest Product pom developer email chris.dennis@terracottatech.com Low Product pom developer email Chris.Schanck@terracottatech.com Low Product pom developer email ludovic.orban@terracottatech.com Low Product pom developer name Chris Dennis Low Product pom developer name Chris Schanck Low Product pom developer name Ludovic Orban Low Product pom developer org Terracotta Inc., a wholly-owned subsidiary of Software AG USA, Inc. Low Product pom developer org URL https://terracotta.org Low Product pom groupid org.terracotta Highest Product pom name Terracotta Statistics High Product pom url Terracotta-OSS/statistics High Version pom version 2.1.2 Highest
Description:
Utility classes/methods for common Java tasks License:
The Apache License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt File Path: /Users/coheigea/.m2/repository/org/ehcache/ehcache/3.10.8/ehcache-3.10.8-jakarta.jar/META-INF/maven/org.terracotta/terracotta-utilities-tools/pom.xml
MD5: e4749433aaf243a0fbc14ddad08bbe55
SHA1: 9b7960438f39f7be178e17bba391f38c7b38c860
SHA256: 144603b5fb19b5900a9a28a3a5d7a74f4deeddbdc34d1de8a716f79f91854ada
Referenced In Projects/Scopes: Apache WSS4J Streaming WS-Security:runtime Apache WSS4J DOM WS-Security:runtime Apache WSS4J Web WS-Security:runtime Apache WSS4J WS-Security Common:compile Apache WSS4J Streaming WS-SecurityPolicy:runtime Evidence Type Source Name Value Confidence Vendor pom artifactid terracotta-utilities-tools Low Vendor pom developer email clifford.johnson@softwareag.com Low Vendor pom developer name Clifford W Johnson Medium Vendor pom developer org Terracotta Inc., a wholly-owned subsidiary of Software AG USA, Inc. Medium Vendor pom developer org URL https://terracotta.org Medium Vendor pom groupid org.terracotta Highest Vendor pom name Terracotta Utilities Tools High Vendor pom parent-artifactid terracotta-utilities-parent Low Vendor pom url Terracotta-OSS/terracotta-utilities/ Highest Product pom artifactid terracotta-utilities-tools Highest Product pom developer email clifford.johnson@softwareag.com Low Product pom developer name Clifford W Johnson Low Product pom developer org Terracotta Inc., a wholly-owned subsidiary of Software AG USA, Inc. Low Product pom developer org URL https://terracotta.org Low Product pom groupid org.terracotta Highest Product pom name Terracotta Utilities Tools High Product pom parent-artifactid terracotta-utilities-parent Medium Product pom url Terracotta-OSS/terracotta-utilities/ High Version pom version 0.0.15 Highest
Description:
Ehcache is an open-source caching library, compliant with the JSR-107 standard. License:
LICENSE File Path: /Users/coheigea/.m2/repository/org/ehcache/ehcache/3.10.8/ehcache-3.10.8-jakarta.jar
MD5: 6767673b52b5c2157bb6b41daef38963
SHA1: 892b8caf98d188d0bac6ff16db564cae13a6874f
SHA256: 4530ba51c1768f680bffcc5af722f7b65a0abb3874d9f17a731c7085eb2613e7
Referenced In Projects/Scopes: Apache WSS4J Streaming WS-Security:runtime Apache WSS4J DOM WS-Security:runtime Apache WSS4J Web WS-Security:runtime Apache WSS4J WS-Security Common:compile Apache WSS4J Streaming WS-SecurityPolicy:runtime ehcache-3.10.8-jakarta.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.0-SNAPSHOT pkg:maven/org.apache.wss4j/wss4j-ws-security-stax@4.0.0-SNAPSHOT pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.0-SNAPSHOT pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT pkg:maven/org.apache.wss4j/wss4j-ws-security-stax@4.0.0-SNAPSHOT Evidence Type Source Name Value Confidence Vendor file name ehcache High Vendor jar package name ehcache Highest Vendor jar package name ehcache Low Vendor jar package name org Highest Vendor Manifest bundle-docurl http://ehcache.org Low Vendor Manifest bundle-symbolicname org.ehcache Medium Vendor Manifest implementation-revision e8c3b4a333f3ffc60d5b8d60ac3f64741efc81e9 Low Vendor Manifest Implementation-Vendor-Id org.ehcache Medium Vendor Manifest provide-capability osgi.service;objectClass:List="javax.cache.spi.CachingProvider";uses:="javax.cache.spi",osgi.service;objectClass:List="org.ehcache.core.spi.service.ServiceFactory";uses:="org.ehcache.core.spi.service",osgi.service;objectClass:List="org.ehcache.xml.CacheManagerServiceConfigurationParser";uses:="org.ehcache.xml",osgi.service;objectClass:List="org.ehcache.xml.CacheServiceConfigurationParser";uses:="org.ehcache.xml" Low Vendor Manifest service-component OSGI-INF/*.xml Low Vendor pom artifactid ehcache Highest Vendor pom groupid org.ehcache Highest Product file name ehcache High Product jar package name cache Highest Product jar package name cachemanagerserviceconfigurationparser Highest Product jar package name cacheserviceconfigurationparser Highest Product jar package name core Highest Product jar package name ehcache Highest Product jar package name org Highest Product jar package name osgi Highest Product jar package name service Highest Product jar package name spi Highest Product jar package name xml Highest Product Manifest bundle-docurl http://ehcache.org Low Product Manifest Bundle-Name Ehcache 3 Medium Product Manifest bundle-symbolicname org.ehcache Medium Product Manifest implementation-revision e8c3b4a333f3ffc60d5b8d60ac3f64741efc81e9 Low Product Manifest Implementation-Title ehcache High Product Manifest provide-capability osgi.service;objectClass:List="javax.cache.spi.CachingProvider";uses:="javax.cache.spi",osgi.service;objectClass:List="org.ehcache.core.spi.service.ServiceFactory";uses:="org.ehcache.core.spi.service",osgi.service;objectClass:List="org.ehcache.xml.CacheManagerServiceConfigurationParser";uses:="org.ehcache.xml",osgi.service;objectClass:List="org.ehcache.xml.CacheServiceConfigurationParser";uses:="org.ehcache.xml" Low Product Manifest service-component OSGI-INF/*.xml Low Product pom artifactid ehcache Highest Version file version 3.10.8 High Version Manifest Implementation-Version 3.10.8 High Version pom version 3.10.8 Highest
File Path: /Users/coheigea/.m2/repository/org/ehcache/ehcache/3.10.8/ehcache-3.10.8-jakarta.jar/org/ehcache/sizeof/impl/sizeof-agent.jarMD5: 532dbbf741bfb7f531938786bc0bb970SHA1: 4e5d8c485b09104825c0d8ec635f775ab522be06SHA256: 60e093acb08d3bc30235ef15941380195cbb85b1ec8b4afd672249f9c530e356Referenced In Projects/Scopes:
Apache WSS4J Streaming WS-Security:runtime Apache WSS4J DOM WS-Security:runtime Apache WSS4J Web WS-Security:runtime Apache WSS4J WS-Security Common:compile Apache WSS4J Streaming WS-SecurityPolicy:runtime Evidence Type Source Name Value Confidence Vendor file name sizeof-agent High Vendor jar package name ehcache Low Vendor jar package name impl Low Vendor jar package name sizeof Low Product file name sizeof-agent High Product jar package name impl Low Product jar package name sizeof Low Product jar package name sizeofagent Low
Description:
Contains
com.google.common.util.concurrent.internal.InternalFutureFailureAccess and
InternalFutures. Most users will never need to use this artifact. Its
classes is conceptually a part of Guava, but they're in this separate
artifact so that Android libraries can use them without pulling in all of
Guava (just as they can use ListenableFuture by depending on the
listenablefuture artifact).
License:
http://www.apache.org/licenses/LICENSE-2.0.txt File Path: /Users/coheigea/.m2/repository/com/google/guava/failureaccess/1.0.1/failureaccess-1.0.1.jar
MD5: 091883993ef5bfa91da01dcc8fc52236
SHA1: 1dcf1de382a0bf95a3d8b0849546c88bac1292c9
SHA256: a171ee4c734dd2da837e4b16be9df4661afab72a41adaf31eb84dfdaf936ca26
Referenced In Projects/Scopes: Apache WSS4J Streaming WS-Security:compile Apache WSS4J DOM WS-Security:compile Apache WSS4J Web WS-Security:compile Apache WSS4J WS-Security Common:compile Apache WSS4J Streaming WS-SecurityPolicy:compile failureaccess-1.0.1.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT pkg:maven/com.google.guava/guava@32.1.3-jre pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.0-SNAPSHOT pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT Evidence Type Source Name Value Confidence Vendor file name failureaccess High Vendor jar package name common Highest Vendor jar package name concurrent Highest Vendor jar package name google Highest Vendor jar package name util Highest Vendor Manifest bundle-docurl https://github.com/google/guava/ Low Vendor Manifest bundle-symbolicname com.google.guava.failureaccess Medium Vendor pom artifactid failureaccess Highest Vendor pom artifactid failureaccess Low Vendor pom groupid com.google.guava Highest Vendor pom name Guava InternalFutureFailureAccess and InternalFutures High Vendor pom parent-artifactid guava-parent Low Product file name failureaccess High Product jar package name common Highest Product jar package name concurrent Highest Product jar package name google Highest Product jar package name util Highest Product Manifest bundle-docurl https://github.com/google/guava/ Low Product Manifest Bundle-Name Guava InternalFutureFailureAccess and InternalFutures Medium Product Manifest bundle-symbolicname com.google.guava.failureaccess Medium Product pom artifactid failureaccess Highest Product pom groupid com.google.guava Highest Product pom name Guava InternalFutureFailureAccess and InternalFutures High Product pom parent-artifactid guava-parent Medium Version file version 1.0.1 High Version Manifest Bundle-Version 1.0.1 High Version pom parent-version 1.0.1 Low Version pom version 1.0.1 Highest
Description:
Guava is a suite of core and expanded libraries that include
utility classes, Google's collections, I/O classes, and
much more.
License:
http://www.apache.org/licenses/LICENSE-2.0.txt File Path: /Users/coheigea/.m2/repository/com/google/guava/guava/32.1.3-jre/guava-32.1.3-jre.jar
MD5: adc3cf557a48d15cb71be90948558923
SHA1: 0f306708742ce2bf0fb0901216183bc14073feae
SHA256: 6d4e2b5a118aab62e6e5e29d185a0224eed82c85c40ac3d33cf04a270c3b3744
Referenced In Projects/Scopes: Apache WSS4J Streaming WS-Security:compile Apache WSS4J DOM WS-Security:compile Apache WSS4J Web WS-Security:compile Apache WSS4J WS-Security Common:compile Apache WSS4J Streaming WS-SecurityPolicy:compile guava-32.1.3-jre.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.0-SNAPSHOT pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT Evidence Type Source Name Value Confidence Vendor file name guava High Vendor jar package name common Highest Vendor jar package name google Highest Vendor Manifest automatic-module-name com.google.common Medium Vendor Manifest build-jdk-spec 11 Low Vendor Manifest bundle-docurl https://github.com/google/guava/ Low Vendor Manifest bundle-symbolicname com.google.guava Medium Vendor pom artifactid guava Highest Vendor pom artifactid guava Low Vendor pom groupid com.google.guava Highest Vendor pom name Guava: Google Core Libraries for Java High Vendor pom parent-artifactid guava-parent Low Vendor pom url google/guava Highest Product file name guava High Product jar package name common Highest Product jar package name google Highest Product Manifest automatic-module-name com.google.common Medium Product Manifest build-jdk-spec 11 Low Product Manifest bundle-docurl https://github.com/google/guava/ Low Product Manifest Bundle-Name Guava: Google Core Libraries for Java Medium Product Manifest bundle-symbolicname com.google.guava Medium Product pom artifactid guava Highest Product pom groupid com.google.guava Highest Product pom name Guava: Google Core Libraries for Java High Product pom parent-artifactid guava-parent Medium Product pom url google/guava High Version pom version 32.1.3-jre Highest
Description:
Apache HttpComponents Client File Path: /Users/coheigea/.m2/repository/org/apache/httpcomponents/client5/httpclient5/5.2.1/httpclient5-5.2.1.jarMD5: fbbefc687f2e0c55b34b77edf53d486aSHA1: 0c900514d3446d9ce5d9dbd90c21192048125440SHA256: 9355f3876baf82fec13ced22c12b62d57536230836406d359459128e4f73ed51Referenced In Projects/Scopes:
Apache WSS4J Streaming WS-Security:compile Apache WSS4J DOM WS-Security:compile Apache WSS4J Web WS-Security:compile Apache WSS4J WS-Security Common:compile Apache WSS4J Streaming WS-SecurityPolicy:compile httpclient5-5.2.1.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT pkg:maven/org.opensaml/opensaml-saml-impl@5.0.0 pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.0-SNAPSHOT Evidence Type Source Name Value Confidence Vendor file name httpclient5 High Vendor jar package name apache Highest Vendor jar package name client5 Highest Vendor Manifest automatic-module-name org.apache.httpcomponents.client5.httpclient5 Medium Vendor Manifest build-jdk-spec 1.8 Low Vendor Manifest implementation-url https://hc.apache.org/httpcomponents-client-5.0.x/5.2.1/httpclient5/ Low Vendor Manifest Implementation-Vendor The Apache Software Foundation High Vendor Manifest Implementation-Vendor-Id org.apache Medium Vendor Manifest specification-vendor The Apache Software Foundation Low Vendor pom artifactid httpclient5 Highest Vendor pom artifactid httpclient5 Low Vendor pom groupid org.apache.httpcomponents.client5 Highest Vendor pom name Apache HttpClient High Vendor pom parent-artifactid httpclient5-parent Low Product file name httpclient5 High Product jar package name apache Highest Product jar package name client5 Highest Product jar package name hc Highest Product Manifest automatic-module-name org.apache.httpcomponents.client5.httpclient5 Medium Product Manifest build-jdk-spec 1.8 Low Product Manifest Implementation-Title Apache HttpClient High Product Manifest implementation-url https://hc.apache.org/httpcomponents-client-5.0.x/5.2.1/httpclient5/ Low Product Manifest specification-title Apache HttpClient Medium Product pom artifactid httpclient5 Highest Product pom groupid org.apache.httpcomponents.client5 Highest Product pom name Apache HttpClient High Product pom parent-artifactid httpclient5-parent Medium Version file version 5.2.1 High Version Manifest Implementation-Version 5.2.1 High Version pom version 5.2.1 Highest
Related Dependencies httpclient5-cache-5.2.1.jarFile Path: /Users/coheigea/.m2/repository/org/apache/httpcomponents/client5/httpclient5-cache/5.2.1/httpclient5-cache-5.2.1.jar MD5: 401dd79daca6eea73909979406378963 SHA1: 979f627e7c69b015425aa43ca2fd43f2d90c769b SHA256: cde4eae9477a83b3972a77c2a84753c745281392d9941d0f416ac1931160dc14 pkg:maven/org.apache.httpcomponents.client5/httpclient5-cache@5.2.1 Description:
Apache HttpComponents HTTP/1.1 core components File Path: /Users/coheigea/.m2/repository/org/apache/httpcomponents/core5/httpcore5/5.2.2/httpcore5-5.2.2.jarMD5: d6d2a7e9c889aab01e879aa59a2352ceSHA1: 6da28f5aa6c2b129ef49632e041a5203ce7507b2SHA256: 3299dc185223154cf500db7b7e60d28a4bb0500b35b311b3fdca4ee6acb4b073Referenced In Projects/Scopes:
Apache WSS4J Streaming WS-Security:compile Apache WSS4J DOM WS-Security:compile Apache WSS4J Web WS-Security:compile Apache WSS4J WS-Security Common:compile Apache WSS4J Streaming WS-SecurityPolicy:compile httpcore5-5.2.2.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.opensaml/opensaml-saml-impl@5.0.0 pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.0-SNAPSHOT pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT Evidence Type Source Name Value Confidence Vendor file name httpcore5 High Vendor jar package name apache Highest Vendor jar package name core5 Highest Vendor Manifest automatic-module-name org.apache.httpcomponents.core5.httpcore5 Medium Vendor Manifest build-jdk-spec 1.8 Low Vendor Manifest implementation-url https://hc.apache.org/httpcomponents-core-5.2.x/5.2.2/httpcore5/ Low Vendor Manifest Implementation-Vendor The Apache Software Foundation High Vendor Manifest Implementation-Vendor-Id org.apache Medium Vendor Manifest specification-vendor The Apache Software Foundation Low Vendor pom artifactid httpcore5 Highest Vendor pom artifactid httpcore5 Low Vendor pom groupid org.apache.httpcomponents.core5 Highest Vendor pom name Apache HttpComponents Core HTTP/1.1 High Vendor pom parent-artifactid httpcore5-parent Low Product file name httpcore5 High Product jar package name apache Highest Product jar package name core5 Highest Product jar package name hc Highest Product Manifest automatic-module-name org.apache.httpcomponents.core5.httpcore5 Medium Product Manifest build-jdk-spec 1.8 Low Product Manifest Implementation-Title Apache HttpComponents Core HTTP/1.1 High Product Manifest implementation-url https://hc.apache.org/httpcomponents-core-5.2.x/5.2.2/httpcore5/ Low Product Manifest specification-title Apache HttpComponents Core HTTP/1.1 Medium Product pom artifactid httpcore5 Highest Product pom groupid org.apache.httpcomponents.core5 Highest Product pom name Apache HttpComponents Core HTTP/1.1 High Product pom parent-artifactid httpcore5-parent Medium Version file version 5.2.2 High Version Manifest Implementation-Version 5.2.2 High Version pom version 5.2.2 Highest
Description:
Apache HttpComponents HTTP/2 Core Components File Path: /Users/coheigea/.m2/repository/org/apache/httpcomponents/core5/httpcore5-h2/5.2/httpcore5-h2-5.2.jarMD5: 272112133e0dd0559efdd8f5e615a344SHA1: 698bd8c759ccc7fd7398f3179ff45d0e5a7ccc16SHA256: 5a087fb8c619979d492a83546f351ddadf32b28cc6a32923229f3fc777171578Referenced In Projects/Scopes:
Apache WSS4J Streaming WS-Security:compile Apache WSS4J DOM WS-Security:compile Apache WSS4J Web WS-Security:compile Apache WSS4J WS-Security Common:compile Apache WSS4J Streaming WS-SecurityPolicy:compile httpcore5-h2-5.2.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.0-SNAPSHOT pkg:maven/org.opensaml/opensaml-saml-impl@5.0.0 pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT Evidence Type Source Name Value Confidence Vendor file name httpcore5-h2 High Vendor jar package name apache Highest Vendor jar package name core5 Highest Vendor Manifest automatic-module-name org.apache.httpcomponents.core5.httpcore5.h2 Medium Vendor Manifest build-jdk-spec 1.8 Low Vendor Manifest implementation-url https://hc.apache.org/httpcomponents-core-5.2.x/5.2/httpcore5-h2/ Low Vendor Manifest Implementation-Vendor The Apache Software Foundation High Vendor Manifest Implementation-Vendor-Id org.apache Medium Vendor Manifest specification-vendor The Apache Software Foundation Low Vendor pom artifactid httpcore5-h2 Highest Vendor pom artifactid httpcore5-h2 Low Vendor pom groupid org.apache.httpcomponents.core5 Highest Vendor pom name Apache HttpComponents Core HTTP/2 High Vendor pom parent-artifactid httpcore5-parent Low Product file name httpcore5-h2 High Product jar package name apache Highest Product jar package name core5 Highest Product jar package name hc Highest Product Manifest automatic-module-name org.apache.httpcomponents.core5.httpcore5.h2 Medium Product Manifest build-jdk-spec 1.8 Low Product Manifest Implementation-Title Apache HttpComponents Core HTTP/2 High Product Manifest implementation-url https://hc.apache.org/httpcomponents-core-5.2.x/5.2/httpcore5-h2/ Low Product Manifest specification-title Apache HttpComponents Core HTTP/2 Medium Product pom artifactid httpcore5-h2 Highest Product pom groupid org.apache.httpcomponents.core5 Highest Product pom name Apache HttpComponents Core HTTP/2 High Product pom parent-artifactid httpcore5-parent Medium Version file version 5.2 High Version Manifest Implementation-Version 5.2 High Version pom version 5.2 Highest
Description:
istack common utility code License:
http://www.eclipse.org/org/documents/edl-v10.php File Path: /Users/coheigea/.m2/repository/com/sun/istack/istack-commons-runtime/4.0.1/istack-commons-runtime-4.0.1.jar
MD5: 0c1301f11d943a0bec02efc57c101409
SHA1: 4e25c41d338aad4a2c92d0020c9ae0335fad5099
SHA256: 9f91115f449384886f572bd62c8812ee1004273d4b5c85cac65179ad4c16990f
Referenced In Projects/Scopes: Apache WSS4J Streaming WS-Security:runtime Apache WSS4J Streaming WS-SecurityPolicy:runtime istack-commons-runtime-4.0.1.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.glassfish.jaxb/jaxb-runtime@3.0.2 pkg:maven/org.apache.wss4j/wss4j-ws-security-stax@4.0.0-SNAPSHOT Evidence Type Source Name Value Confidence Vendor file name istack-commons-runtime High Vendor jar package name com Highest Vendor jar package name istack Highest Vendor jar package name sun Highest Vendor jar (hint) package name oracle Highest Vendor Manifest bundle-docurl https://www.eclipse.org Low Vendor Manifest bundle-symbolicname com.sun.istack.commons-runtime Medium Vendor Manifest implementation-build-id 4.0.1 - 9352f77 Low Vendor Manifest Implementation-Vendor Eclipse Foundation High Vendor Manifest Implementation-Vendor-Id com.sun.istack Medium Vendor Manifest multi-release true Low Vendor pom artifactid istack-commons-runtime Highest Vendor pom artifactid istack-commons-runtime Low Vendor pom groupid com.sun.istack Highest Vendor pom name istack common utility code runtime High Vendor pom parent-artifactid istack-commons Low Product file name istack-commons-runtime High Product jar package name com Highest Product jar package name istack Highest Product jar package name sun Highest Product Manifest bundle-docurl https://www.eclipse.org Low Product Manifest Bundle-Name istack common utility code runtime Medium Product Manifest bundle-symbolicname com.sun.istack.commons-runtime Medium Product Manifest implementation-build-id 4.0.1 - 9352f77 Low Product Manifest multi-release true Low Product pom artifactid istack-commons-runtime Highest Product pom groupid com.sun.istack Highest Product pom name istack common utility code runtime High Product pom parent-artifactid istack-commons Medium Version file version 4.0.1 High Version Manifest Bundle-Version 4.0.1 High Version Manifest implementation-build-id 4.0.1 Low Version pom version 4.0.1 Highest
Description:
Core annotations used for value types, used by Jackson data binding package.
License:
The Apache Software License, Version 2.0: https://www.apache.org/licenses/LICENSE-2.0.txt File Path: /Users/coheigea/.m2/repository/com/fasterxml/jackson/core/jackson-annotations/2.15.2/jackson-annotations-2.15.2.jar
MD5: 71dabcaac955a8bd17b5bba6580aac5b
SHA1: 4724a65ac8e8d156a24898d50fd5dbd3642870b8
SHA256: 04e21f94dcfee4b078fa5a5f53047b785aaba69d19de392f616e7a7fe5d3882f
Referenced In Projects/Scopes: Apache WSS4J Streaming WS-Security:compile Apache WSS4J DOM WS-Security:compile Apache WSS4J Web WS-Security:compile Apache WSS4J WS-Security Common:compile Apache WSS4J Streaming WS-SecurityPolicy:compile jackson-annotations-2.15.2.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.0-SNAPSHOT pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT pkg:maven/org.opensaml/opensaml-saml-impl@5.0.0 Evidence Type Source Name Value Confidence Vendor file name jackson-annotations High Vendor jar package name fasterxml Highest Vendor jar package name jackson Highest Vendor Manifest build-jdk-spec 1.8 Low Vendor Manifest bundle-docurl https://github.com/FasterXML/jackson Low Vendor Manifest bundle-symbolicname com.fasterxml.jackson.core.jackson-annotations Medium Vendor Manifest Implementation-Vendor FasterXML High Vendor Manifest Implementation-Vendor-Id com.fasterxml.jackson.core Medium Vendor Manifest specification-vendor FasterXML Low Vendor pom artifactid jackson-annotations Highest Vendor pom artifactid jackson-annotations Low Vendor pom groupid com.fasterxml.jackson.core Highest Vendor pom name Jackson-annotations High Vendor pom parent-artifactid jackson-parent Low Vendor pom parent-groupid com.fasterxml.jackson Medium Vendor pom url FasterXML/jackson Highest Product file name jackson-annotations High Product hint analyzer product java8 Highest Product hint analyzer product modules Highest Product jar package name fasterxml Highest Product jar package name jackson Highest Product Manifest build-jdk-spec 1.8 Low Product Manifest bundle-docurl https://github.com/FasterXML/jackson Low Product Manifest Bundle-Name Jackson-annotations Medium Product Manifest bundle-symbolicname com.fasterxml.jackson.core.jackson-annotations Medium Product Manifest Implementation-Title Jackson-annotations High Product Manifest specification-title Jackson-annotations Medium Product pom artifactid jackson-annotations Highest Product pom groupid com.fasterxml.jackson.core Highest Product pom name Jackson-annotations High Product pom parent-artifactid jackson-parent Medium Product pom parent-groupid com.fasterxml.jackson Medium Product pom url FasterXML/jackson High Version file version 2.15.2 High Version Manifest Bundle-Version 2.15.2 High Version Manifest Implementation-Version 2.15.2 High Version pom parent-version 2.15.2 Low Version pom version 2.15.2 Highest
Related Dependencies jackson-datatype-jsr310-2.15.2.jarFile Path: /Users/coheigea/.m2/repository/com/fasterxml/jackson/datatype/jackson-datatype-jsr310/2.15.2/jackson-datatype-jsr310-2.15.2.jar MD5: 94d6cec0fe6ad8b81752beb500bd4bbc SHA1: 30d16ec2aef6d8094c5e2dce1d95034ca8b6cb42 SHA256: 7574c81ad570476ef6aad26f419288fd466733f3315bee3012f2f29c9dc008c8 pkg:maven/com.fasterxml.jackson.datatype/jackson-datatype-jsr310@2.15.2 Description:
Core Jackson processing abstractions (aka Streaming API), implementation for JSON License:
The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt File Path: /Users/coheigea/.m2/repository/com/fasterxml/jackson/core/jackson-core/2.12.7/jackson-core-2.12.7.jar
MD5: e90114f7c87c241568606cc9e2c61cb1
SHA1: 04669a54b799c105572aa8de2a1ae0fe64a17745
SHA256: 3987a6a335046e226e56b81d69668fb5a91b155ea7fd96b0851adbb7d4ac1ca6
Referenced In Projects/Scopes: Apache WSS4J Streaming WS-Security:compile Apache WSS4J DOM WS-Security:compile Apache WSS4J Web WS-Security:compile Apache WSS4J WS-Security Common:compile Apache WSS4J Streaming WS-SecurityPolicy:compile jackson-core-2.12.7.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT pkg:maven/org.opensaml/opensaml-saml-impl@5.0.0 pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.0-SNAPSHOT pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT Evidence Type Source Name Value Confidence Vendor file name jackson-core High Vendor jar package name base Highest Vendor jar package name core Highest Vendor jar package name fasterxml Highest Vendor jar package name jackson Highest Vendor jar package name json Highest Vendor Manifest build-jdk-spec 1.8 Low Vendor Manifest bundle-docurl https://github.com/FasterXML/jackson-core Low Vendor Manifest bundle-symbolicname com.fasterxml.jackson.core.jackson-core Medium Vendor Manifest implementation-build-date 2022-05-26 17:27:52+0000 Low Vendor Manifest Implementation-Vendor FasterXML High Vendor Manifest Implementation-Vendor-Id com.fasterxml.jackson.core Medium Vendor Manifest specification-vendor FasterXML Low Vendor pom artifactid jackson-core Highest Vendor pom artifactid jackson-core Low Vendor pom groupid com.fasterxml.jackson.core Highest Vendor pom name Jackson-core High Vendor pom parent-artifactid jackson-base Low Vendor pom parent-groupid com.fasterxml.jackson Medium Vendor pom url FasterXML/jackson-core Highest Product file name jackson-core High Product hint analyzer product java8 Highest Product hint analyzer product modules Highest Product jar package name base Highest Product jar package name core Highest Product jar package name fasterxml Highest Product jar package name jackson Highest Product jar package name json Highest Product Manifest build-jdk-spec 1.8 Low Product Manifest bundle-docurl https://github.com/FasterXML/jackson-core Low Product Manifest Bundle-Name Jackson-core Medium Product Manifest bundle-symbolicname com.fasterxml.jackson.core.jackson-core Medium Product Manifest implementation-build-date 2022-05-26 17:27:52+0000 Low Product Manifest Implementation-Title Jackson-core High Product Manifest specification-title Jackson-core Medium Product pom artifactid jackson-core Highest Product pom groupid com.fasterxml.jackson.core Highest Product pom name Jackson-core High Product pom parent-artifactid jackson-base Medium Product pom parent-groupid com.fasterxml.jackson Medium Product pom url FasterXML/jackson-core High Version file version 2.12.7 High Version Manifest Bundle-Version 2.12.7 High Version Manifest Implementation-Version 2.12.7 High Version pom version 2.12.7 Highest
Description:
General data-binding functionality for Jackson: works on core streaming API License:
The Apache Software License, Version 2.0: https://www.apache.org/licenses/LICENSE-2.0.txt File Path: /Users/coheigea/.m2/repository/com/fasterxml/jackson/core/jackson-databind/2.15.2/jackson-databind-2.15.2.jar
MD5: 20ac0d0526a456274409fa852eb74087
SHA1: 9353b021f10c307c00328f52090de2bdb4b6ff9c
SHA256: 0eb2fdad6e40ab8832a78c9b22f58196dd970594e8d3d5a26ead87847c4f3a96
Referenced In Projects/Scopes: Apache WSS4J Streaming WS-Security:compile Apache WSS4J DOM WS-Security:compile Apache WSS4J Web WS-Security:compile Apache WSS4J WS-Security Common:compile Apache WSS4J Streaming WS-SecurityPolicy:compile jackson-databind-2.15.2.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.0-SNAPSHOT pkg:maven/org.opensaml/opensaml-saml-impl@5.0.0 pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT Evidence Type Source Name Value Confidence Vendor file name jackson-databind High Vendor jar package name databind Highest Vendor jar package name fasterxml Highest Vendor jar package name jackson Highest Vendor Manifest build-jdk-spec 1.8 Low Vendor Manifest bundle-docurl https://github.com/FasterXML/jackson Low Vendor Manifest bundle-symbolicname com.fasterxml.jackson.core.jackson-databind Medium Vendor Manifest Implementation-Vendor FasterXML High Vendor Manifest Implementation-Vendor-Id com.fasterxml.jackson.core Medium Vendor Manifest multi-release true Low Vendor Manifest specification-vendor FasterXML Low Vendor pom artifactid jackson-databind Highest Vendor pom artifactid jackson-databind Low Vendor pom groupid com.fasterxml.jackson.core Highest Vendor pom name jackson-databind High Vendor pom parent-artifactid jackson-base Low Vendor pom parent-groupid com.fasterxml.jackson Medium Vendor pom url FasterXML/jackson Highest Product file name jackson-databind High Product hint analyzer product java8 Highest Product hint analyzer product modules Highest Product jar package name databind Highest Product jar package name fasterxml Highest Product jar package name jackson Highest Product Manifest build-jdk-spec 1.8 Low Product Manifest bundle-docurl https://github.com/FasterXML/jackson Low Product Manifest Bundle-Name jackson-databind Medium Product Manifest bundle-symbolicname com.fasterxml.jackson.core.jackson-databind Medium Product Manifest Implementation-Title jackson-databind High Product Manifest multi-release true Low Product Manifest specification-title jackson-databind Medium Product pom artifactid jackson-databind Highest Product pom groupid com.fasterxml.jackson.core Highest Product pom name jackson-databind High Product pom parent-artifactid jackson-base Medium Product pom parent-groupid com.fasterxml.jackson Medium Product pom url FasterXML/jackson High Version file version 2.15.2 High Version Manifest Bundle-Version 2.15.2 High Version Manifest Implementation-Version 2.15.2 High Version pom version 2.15.2 Highest
CVE-2023-35116 suppress
** DISPUTED ** jackson-databind through 2.15.2 allows attackers to cause a denial of service or other unspecified impact via a crafted object that uses cyclic dependencies. NOTE: the vendor's perspective is that this is not a valid vulnerability report, because the steps of constructing a cyclic data structure and trying to serialize it cannot be achieved by an external attacker. CWE-770 Allocation of Resources Without Limits or Throttling
CVSSv3:
Base Score: MEDIUM (4.7) Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H References:
Vulnerable Software & Versions:
Description:
Specification License:
EDL 1.0: http://www.eclipse.org/org/documents/edl-v10.php File Path: /Users/coheigea/.m2/repository/jakarta/activation/jakarta.activation-api/2.1.0/jakarta.activation-api-2.1.0.jar
MD5: 7c79641566f97305e17c5f7b9bb33fc3
SHA1: a58861b5deac5e151140511cf57d6b80a83f2d20
SHA256: 56e8d994095fe49c28138c60291482f66f18d12ac2b720e938697dce6a3135c7
Referenced In Project/Scope: Apache WSS4J WS-Security Bindings:compile
jakarta.activation-api-2.1.0.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/jakarta.xml.bind/jakarta.xml.bind-api@4.0.0
Evidence Type Source Name Value Confidence Vendor file name jakarta.activation-api High Vendor jar package name activation Highest Vendor jar package name jakarta Highest Vendor Manifest bundle-docurl https://www.eclipse.org Low Vendor Manifest bundle-symbolicname jakarta.activation-api Medium Vendor Manifest extension-name jakarta.activation Medium Vendor Manifest implementation-build-id 0766560 Low Vendor Manifest Implementation-Vendor Eclipse Foundation High Vendor Manifest specification-vendor Eclipse Foundation Low Vendor pom artifactid jakarta.activation-api Highest Vendor pom artifactid jakarta.activation-api Low Vendor pom developer email bill.shannon@oracle.com Low Vendor pom developer id shannon Medium Vendor pom developer name Bill Shannon Medium Vendor pom developer org Oracle Medium Vendor pom groupid jakarta.activation Highest Vendor pom name Jakarta Activation API High Vendor pom parent-artifactid project Low Vendor pom parent-groupid org.eclipse.ee4j Medium Vendor pom url eclipse-ee4j/jaf Highest Vendor pom (hint) developer org sun Medium Product file name jakarta.activation-api High Product jar package name activation Highest Product jar package name jakarta Highest Product Manifest bundle-docurl https://www.eclipse.org Low Product Manifest Bundle-Name Jakarta Activation API Medium Product Manifest bundle-symbolicname jakarta.activation-api Medium Product Manifest extension-name jakarta.activation Medium Product Manifest implementation-build-id 0766560 Low Product Manifest Implementation-Title Jakarta Activation API High Product Manifest specification-title Jakarta Activation Specification Medium Product pom artifactid jakarta.activation-api Highest Product pom developer email bill.shannon@oracle.com Low Product pom developer id shannon Low Product pom developer name Bill Shannon Low Product pom developer org Oracle Low Product pom groupid jakarta.activation Highest Product pom name Jakarta Activation API High Product pom parent-artifactid project Medium Product pom parent-groupid org.eclipse.ee4j Medium Product pom url eclipse-ee4j/jaf High Version file version 2.1.0 High Version Manifest Bundle-Version 2.1.0 High Version pom parent-version 2.1.0 Low Version pom version 2.1.0 Highest
Description:
Specification License:
EDL 1.0: http://www.eclipse.org/org/documents/edl-v10.php File Path: /Users/coheigea/.m2/repository/jakarta/activation/jakarta.activation-api/2.1.2/jakarta.activation-api-2.1.2.jar
MD5: 1af11450fafc7ee26c633d940286bc16
SHA1: 640c0d5aff45dbff1e1a1bc09673ff3a02b1ba12
SHA256: f53f578dd0eb4170c195a4e215c59a38abfb4123dcb95dd902fef92876499fbb
Referenced In Projects/Scopes: Apache WSS4J Streaming WS-Security:compile Apache WSS4J DOM WS-Security:compile Apache WSS4J Web WS-Security:compile Apache WSS4J WS-Security Common:compile Apache WSS4J Streaming WS-SecurityPolicy:compile jakarta.activation-api-2.1.2.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/com.sun.xml.messaging.saaj/saaj-impl@3.0.3 pkg:maven/com.sun.xml.messaging.saaj/saaj-impl@3.0.3 pkg:maven/com.sun.xml.messaging.saaj/saaj-impl@3.0.3 pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.0-SNAPSHOT pkg:maven/jakarta.mail/jakarta.mail-api@2.1.2 Evidence Type Source Name Value Confidence Vendor file name jakarta.activation-api High Vendor jar package name activation Highest Vendor jar package name jakarta Highest Vendor Manifest bundle-docurl https://www.eclipse.org Low Vendor Manifest bundle-symbolicname jakarta.activation-api Medium Vendor Manifest extension-name jakarta.activation Medium Vendor Manifest implementation-build-id 0750e49 Low Vendor Manifest Implementation-Vendor Eclipse Foundation High Vendor Manifest specification-vendor Eclipse Foundation Low Vendor pom artifactid jakarta.activation-api Highest Vendor pom artifactid jakarta.activation-api Low Vendor pom developer email bill.shannon@oracle.com Low Vendor pom developer id shannon Medium Vendor pom developer name Bill Shannon Medium Vendor pom developer org Oracle Medium Vendor pom groupid jakarta.activation Highest Vendor pom name Jakarta Activation API High Vendor pom parent-artifactid project Low Vendor pom parent-groupid org.eclipse.ee4j Medium Vendor pom url jakartaee/jaf-api Highest Vendor pom (hint) developer org sun Medium Product file name jakarta.activation-api High Product jar package name activation Highest Product jar package name jakarta Highest Product Manifest bundle-docurl https://www.eclipse.org Low Product Manifest Bundle-Name Jakarta Activation API Medium Product Manifest bundle-symbolicname jakarta.activation-api Medium Product Manifest extension-name jakarta.activation Medium Product Manifest implementation-build-id 0750e49 Low Product Manifest Implementation-Title Jakarta Activation API High Product Manifest specification-title Jakarta Activation Specification Medium Product pom artifactid jakarta.activation-api Highest Product pom developer email bill.shannon@oracle.com Low Product pom developer id shannon Low Product pom developer name Bill Shannon Low Product pom developer org Oracle Low Product pom groupid jakarta.activation Highest Product pom name Jakarta Activation API High Product pom parent-artifactid project Medium Product pom parent-groupid org.eclipse.ee4j Medium Product pom url jakartaee/jaf-api High Version file version 2.1.2 High Version Manifest Bundle-Version 2.1.2 High Version pom parent-version 2.1.2 Low Version pom version 2.1.2 Highest
Description:
Specification API License:
EPL 2.0: http://www.eclipse.org/legal/epl-2.0
GPL2 w/ CPE: https://www.gnu.org/software/classpath/license.html
EDL 1.0: http://www.eclipse.org/org/documents/edl-v10.php File Path: /Users/coheigea/.m2/repository/jakarta/mail/jakarta.mail-api/2.1.2/jakarta.mail-api-2.1.2.jar
MD5: a0f418c90766053b4acae3f3aecdc6f4
SHA1: e2f24836f1720a6b53d98240a78b4860597428c8
SHA256: 0aa8de0f682a5ce381c2572ac110a91a01b30bdbf6694614e7a1f2dbda85a11c
Referenced In Projects/Scopes: Apache WSS4J Streaming WS-Security:compile Apache WSS4J DOM WS-Security:compile Apache WSS4J Web WS-Security:compile Apache WSS4J WS-Security Common:compile Apache WSS4J Streaming WS-SecurityPolicy:compile jakarta.mail-api-2.1.2.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.0-SNAPSHOT pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT Evidence Type Source Name Value Confidence Vendor file name jakarta.mail-api High Vendor jar package name jakarta Highest Vendor jar package name mail Highest Vendor jar package name version Highest Vendor Manifest bundle-docurl https://www.eclipse.org Low Vendor Manifest bundle-symbolicname jakarta.mail-api Medium Vendor Manifest extension-name jakarta.mail Medium Vendor Manifest implementation-build-id ff9c94a Low Vendor Manifest Implementation-Vendor Eclipse Foundation High Vendor Manifest specification-vendor Eclipse Foundation Low Vendor pom artifactid jakarta.mail-api Highest Vendor pom artifactid jakarta.mail-api Low Vendor pom groupid jakarta.mail Highest Vendor pom name Jakarta Mail API High Vendor pom parent-artifactid project Low Vendor pom parent-groupid org.eclipse.ee4j Medium Product file name jakarta.mail-api High Product jar package name jakarta Highest Product jar package name mail Highest Product jar package name version Highest Product Manifest bundle-docurl https://www.eclipse.org Low Product Manifest Bundle-Name Jakarta Mail API Medium Product Manifest bundle-symbolicname jakarta.mail-api Medium Product Manifest extension-name jakarta.mail Medium Product Manifest implementation-build-id ff9c94a Low Product Manifest Implementation-Title Jakarta Mail API High Product Manifest specification-title Jakarta Mail Specification Medium Product pom artifactid jakarta.mail-api Highest Product pom groupid jakarta.mail Highest Product pom name Jakarta Mail API High Product pom parent-artifactid project Medium Product pom parent-groupid org.eclipse.ee4j Medium Version file version 2.1.2 High Version Manifest Bundle-Version 2.1.2 High Version pom parent-version 2.1.2 Low Version pom version 2.1.2 Highest
Description:
Jakarta Servlet 5.0 License:
EPL 2.0: http://www.eclipse.org/legal/epl-2.0
GPL2 w/ CPE: https://www.gnu.org/software/classpath/license.html File Path: /Users/coheigea/.m2/repository/jakarta/servlet/jakarta.servlet-api/5.0.0/jakarta.servlet-api-5.0.0.jar
MD5: b950da93e08cf6d5a2d73dc7a80f9403
SHA1: 2e6b8ccde55522c879434ddec3714683ccae6867
SHA256: 33d3a5bda82c7d2f1b898685faa954f1fc34f7b0ae5c2f6ccc6d051e8a10973b
Referenced In Project/Scope: Apache WSS4J Web WS-Security:provided
jakarta.servlet-api-5.0.0.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.apache.wss4j/wss4j-ws-security-web@4.0.0-SNAPSHOT
Evidence Type Source Name Value Confidence Vendor file name jakarta.servlet-api High Vendor jar package name jakarta Highest Vendor jar package name servlet Highest Vendor Manifest automatic-module-name jakarta.servlet Medium Vendor Manifest build-jdk-spec 1.8 Low Vendor Manifest bundle-docurl https://www.eclipse.org Low Vendor Manifest bundle-symbolicname jakarta.servlet-api Medium Vendor Manifest extension-name jakarta.servlet Medium Vendor Manifest Implementation-Vendor Eclipse Foundation High Vendor Manifest Implementation-Vendor-Id org.eclipse Medium Vendor Manifest specification-vendor Eclipse Foundation Low Vendor pom artifactid jakarta.servlet-api Highest Vendor pom artifactid jakarta.servlet-api Low Vendor pom developer id yaminikb Medium Vendor pom developer name Yamini K B Medium Vendor pom developer org Oracle Corporation Medium Vendor pom developer org URL http://www.oracle.com/ Medium Vendor pom groupid jakarta.servlet Highest Vendor pom name Jakarta Servlet High Vendor pom parent-artifactid project Low Vendor pom parent-groupid org.eclipse.ee4j Medium Vendor pom url https://projects.eclipse.org/projects/ee4j.servlet Highest Product file name jakarta.servlet-api High Product jar package name jakarta Highest Product jar package name servlet Highest Product Manifest automatic-module-name jakarta.servlet Medium Product Manifest build-jdk-spec 1.8 Low Product Manifest bundle-docurl https://www.eclipse.org Low Product Manifest Bundle-Name Jakarta Servlet Medium Product Manifest bundle-symbolicname jakarta.servlet-api Medium Product Manifest extension-name jakarta.servlet Medium Product pom artifactid jakarta.servlet-api Highest Product pom developer id yaminikb Low Product pom developer name Yamini K B Low Product pom developer org Oracle Corporation Low Product pom developer org URL http://www.oracle.com/ Low Product pom groupid jakarta.servlet Highest Product pom name Jakarta Servlet High Product pom parent-artifactid project Medium Product pom parent-groupid org.eclipse.ee4j Medium Product pom url https://projects.eclipse.org/projects/ee4j.servlet Medium Version file version 5.0.0 High Version Manifest Bundle-Version 5.0.0 High Version Manifest Implementation-Version 5.0.0 High Version pom parent-version 5.0.0 Low Version pom version 5.0.0 Highest
Description:
Jakarta XML Binding API 4.0 Design Specification License:
http://www.eclipse.org/org/documents/edl-v10.php File Path: /Users/coheigea/.m2/repository/jakarta/xml/bind/jakarta.xml.bind-api/4.0.0/jakarta.xml.bind-api-4.0.0.jar
MD5: b5132a66e2d3a60904f8035a1f8a34a8
SHA1: bbb399208d288b15ec101fa4fcfc4bd77cedc97a
SHA256: 57e3796ad5753640088f5f9d3c53c183f2c250b7dad90529ea3e19a5515aa122
Referenced In Projects/Scopes: Apache WSS4J Streaming WS-Security:compile Apache WSS4J WS-Security Bindings:compile Apache WSS4J Streaming WS-SecurityPolicy:compile jakarta.xml.bind-api-4.0.0.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.apache.wss4j/wss4j-bindings@4.0.0-SNAPSHOT pkg:maven/org.apache.wss4j/wss4j-bindings@4.0.0-SNAPSHOT pkg:maven/org.apache.wss4j/wss4j-ws-security-stax@4.0.0-SNAPSHOT Evidence Type Source Name Value Confidence Vendor file name jakarta.xml.bind-api High Vendor jar package name bind Highest Vendor jar package name jakarta Highest Vendor jar package name xml Highest Vendor Manifest bundle-docurl https://www.eclipse.org Low Vendor Manifest bundle-symbolicname jakarta.xml.bind-api Medium Vendor Manifest extension-name jakarta.xml.bind Medium Vendor Manifest implementation-build-id 7e887b2 Low Vendor Manifest specification-vendor Eclipse Foundation Low Vendor pom artifactid jakarta.xml.bind-api Highest Vendor pom artifactid jakarta.xml.bind-api Low Vendor pom groupid jakarta.xml.bind Highest Vendor pom name Jakarta XML Binding API High Vendor pom parent-artifactid jakarta.xml.bind-api-parent Low Product file name jakarta.xml.bind-api High Product jar package name bind Highest Product jar package name jakarta Highest Product jar package name xml Highest Product Manifest bundle-docurl https://www.eclipse.org Low Product Manifest Bundle-Name Jakarta XML Binding API Medium Product Manifest bundle-symbolicname jakarta.xml.bind-api Medium Product Manifest extension-name jakarta.xml.bind Medium Product Manifest implementation-build-id 7e887b2 Low Product pom artifactid jakarta.xml.bind-api Highest Product pom groupid jakarta.xml.bind Highest Product pom name Jakarta XML Binding API High Product pom parent-artifactid jakarta.xml.bind-api-parent Medium Version file version 4.0.0 High Version Manifest Bundle-Version 4.0.0 High Version Manifest Implementation-Version 4.0.0 High Version pom version 4.0.0 Highest
Description:
Java library which enables encryption in java apps with minimum effort. License:
The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt File Path: /Users/coheigea/.m2/repository/org/jasypt/jasypt/1.9.3/jasypt-1.9.3.jar
MD5: 39327c7e38782102ecdb3c9dc4e8dcd3
SHA1: 0d99ef9540f51c617f2a293b460f025d2ee563dd
SHA256: f481fbb8dd8ce754bfde7552af4fcbe8c5e303d53663bb3d8ce9d4338e0e55aa
Referenced In Projects/Scopes: Apache WSS4J Streaming WS-Security:compile Apache WSS4J DOM WS-Security:compile Apache WSS4J Web WS-Security:compile Apache WSS4J WS-Security Common:compile Apache WSS4J Streaming WS-SecurityPolicy:compile jasypt-1.9.3.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.0-SNAPSHOT pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT Evidence Type Source Name Value Confidence Vendor file name jasypt High Vendor jar package name encryption Highest Vendor jar package name jasypt Highest Vendor jar package name jasypt Low Vendor jar package name org Highest Vendor pom artifactid jasypt Highest Vendor pom artifactid jasypt Low Vendor pom developer email dfernandez AT users.sourceforge.net Low Vendor pom developer id dfernandez Medium Vendor pom developer name Daniel Fernandez Medium Vendor pom groupid org.jasypt Highest Vendor pom name JASYPT: Java Simplified Encryption High Vendor pom organization name The JASYPT team High Vendor pom organization url http://www.jasypt.org Medium Vendor pom url http://www.jasypt.org Highest Product file name jasypt High Product jar package name encryption Highest Product jar package name jasypt Highest Product jar package name org Highest Product pom artifactid jasypt Highest Product pom developer email dfernandez AT users.sourceforge.net Low Product pom developer id dfernandez Low Product pom developer name Daniel Fernandez Low Product pom groupid org.jasypt Highest Product pom name JASYPT: Java Simplified Encryption High Product pom organization name The JASYPT team Low Product pom organization url http://www.jasypt.org Low Product pom url http://www.jasypt.org Medium Version file version 1.9.3 High Version pom version 1.9.3 Highest
Description:
JAXB Core module. Contains sources required by XJC, JXC and Runtime modules. License:
http://www.eclipse.org/org/documents/edl-v10.php File Path: /Users/coheigea/.m2/repository/org/glassfish/jaxb/jaxb-core/3.0.2/jaxb-core-3.0.2.jar
MD5: d97e45fa20c174781424552e4283e460
SHA1: e83d0b0005525ddd8b8642bd0bb02227fcf871f1
SHA256: f9a360b939597643b2676e35fc497afb561d20e8a513128a5c0070366db11bbd
Referenced In Projects/Scopes: Apache WSS4J Streaming WS-Security:runtime Apache WSS4J Streaming WS-SecurityPolicy:runtime jaxb-core-3.0.2.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.apache.wss4j/wss4j-ws-security-stax@4.0.0-SNAPSHOT pkg:maven/org.glassfish.jaxb/jaxb-runtime@3.0.2 Evidence Type Source Name Value Confidence Vendor file name jaxb-core High Vendor jar package name core Highest Vendor jar package name glassfish Highest Vendor jar package name jaxb Highest Vendor jar package name org Highest Vendor Manifest bundle-docurl https://www.eclipse.org Low Vendor Manifest bundle-symbolicname org.glassfish.jaxb.core Medium Vendor Manifest git-revision 1120e83 Low Vendor Manifest implementation-build-id 3.0.2 - 1120e83 Low Vendor Manifest Implementation-Vendor Eclipse Foundation High Vendor Manifest Implementation-Vendor-Id org.glassfish.jaxb Medium Vendor Manifest multi-release true Low Vendor pom artifactid jaxb-core Highest Vendor pom artifactid jaxb-core Low Vendor pom groupid org.glassfish.jaxb Highest Vendor pom name JAXB Core High Vendor pom parent-artifactid jaxb-parent Low Vendor pom parent-groupid com.sun.xml.bind.mvn Medium Vendor pom url https://eclipse-ee4j.github.io/jaxb-ri/ Highest Product file name jaxb-core High Product jar package name core Highest Product jar package name glassfish Highest Product jar package name jaxb Highest Product jar package name org Highest Product Manifest bundle-docurl https://www.eclipse.org Low Product Manifest Bundle-Name JAXB Core Medium Product Manifest bundle-symbolicname org.glassfish.jaxb.core Medium Product Manifest git-revision 1120e83 Low Product Manifest implementation-build-id 3.0.2 - 1120e83 Low Product Manifest Implementation-Title Jakarta XML Binding Implementation High Product Manifest multi-release true Low Product Manifest specification-title Jakarta XML Binding Medium Product pom artifactid jaxb-core Highest Product pom groupid org.glassfish.jaxb Highest Product pom name JAXB Core High Product pom parent-artifactid jaxb-parent Medium Product pom parent-groupid com.sun.xml.bind.mvn Medium Product pom url https://eclipse-ee4j.github.io/jaxb-ri/ Medium Version file version 3.0.2 High Version Manifest build-id 3.0.2 Medium Version Manifest Bundle-Version 3.0.2 High Version Manifest implementation-build-id 3.0.2 Low Version Manifest Implementation-Version 3.0.2 High Version Manifest major-version 3.0.2 Medium Version pom version 3.0.2 Highest
Related Dependencies jaxb-runtime-3.0.2.jarFile Path: /Users/coheigea/.m2/repository/org/glassfish/jaxb/jaxb-runtime/3.0.2/jaxb-runtime-3.0.2.jar MD5: 9873391a222ff387e3167498d363d97a SHA1: 9897322f5de201bfbfcd1f4f46ffdd4204673b3c SHA256: 7b3a3784b9c6e343a8d38fc108602ba810177f03f2d8d1e7258b1cef7fd9d4c7 pkg:maven/org.glassfish.jaxb/jaxb-runtime@3.0.2 Description:
JSR305 Annotations for Findbugs License:
The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt File Path: /Users/coheigea/.m2/repository/com/google/code/findbugs/jsr305/3.0.2/jsr305-3.0.2.jar
MD5: dd83accb899363c32b07d7a1b2e4ce40
SHA1: 25ea2e8b0c338a877313bd4672d3fe056ea78f0d
SHA256: 766ad2a0783f2687962c8ad74ceecc38a28b9f72a2d085ee438b7813e928d0c7
Referenced In Projects/Scopes: Apache WSS4J Streaming WS-Security:compile Apache WSS4J DOM WS-Security:compile Apache WSS4J Web WS-Security:compile Apache WSS4J WS-Security Common:compile Apache WSS4J Streaming WS-SecurityPolicy:compile jsr305-3.0.2.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.0-SNAPSHOT pkg:maven/org.opensaml/opensaml-xacml-impl@5.0.0 pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT Evidence Type Source Name Value Confidence Vendor file name jsr305 High Vendor Manifest bundle-symbolicname org.jsr-305 Medium Vendor pom artifactid jsr305 Highest Vendor pom artifactid jsr305 Low Vendor pom groupid com.google.code.findbugs Highest Vendor pom name FindBugs-jsr305 High Vendor pom url http://findbugs.sourceforge.net/ Highest Product file name jsr305 High Product Manifest Bundle-Name FindBugs-jsr305 Medium Product Manifest bundle-symbolicname org.jsr-305 Medium Product pom artifactid jsr305 Highest Product pom groupid com.google.code.findbugs Highest Product pom name FindBugs-jsr305 High Product pom url http://findbugs.sourceforge.net/ Medium Version file version 3.0.2 High Version Manifest Bundle-Version 3.0.2 High Version pom version 3.0.2 Highest
Description:
Metrics is a Java library which gives you unparalleled insight into what your code does in
production. Metrics provides a powerful toolkit of ways to measure the behavior of critical
components in your production environment.
License:
https://www.apache.org/licenses/LICENSE-2.0.html File Path: /Users/coheigea/.m2/repository/io/dropwizard/metrics/metrics-core/4.2.19/metrics-core-4.2.19.jar
MD5: dd9caf026f4330b51c6308e6d0749084
SHA1: d32b4c3f3e733bf4cb239ca4204fbed8464973a5
SHA256: fa967bc2b37c8bff5bc377e60e439504fd9df5d335c7a42b37212403250023df
Referenced In Projects/Scopes: Apache WSS4J Streaming WS-Security:compile Apache WSS4J DOM WS-Security:compile Apache WSS4J Web WS-Security:compile Apache WSS4J WS-Security Common:compile Apache WSS4J Streaming WS-SecurityPolicy:compile metrics-core-4.2.19.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.opensaml/opensaml-saml-impl@5.0.0 pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.0-SNAPSHOT pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT Evidence Type Source Name Value Confidence Vendor file name metrics-core High Vendor jar package name codahale Highest Vendor jar package name metrics Highest Vendor Manifest automatic-module-name com.codahale.metrics Medium Vendor Manifest build-jdk-spec 11 Low Vendor Manifest bundle-symbolicname io.dropwizard.metrics.core Medium Vendor pom artifactid metrics-core Highest Vendor pom artifactid metrics-core Low Vendor pom groupid io.dropwizard.metrics Highest Vendor pom name Metrics Core High Vendor pom parent-artifactid metrics-parent Low Product file name metrics-core High Product jar package name codahale Highest Product jar package name metrics Highest Product Manifest automatic-module-name com.codahale.metrics Medium Product Manifest build-jdk-spec 11 Low Product Manifest Bundle-Name Metrics Core Medium Product Manifest bundle-symbolicname io.dropwizard.metrics.core Medium Product Manifest Implementation-Title Metrics Core High Product pom artifactid metrics-core Highest Product pom groupid io.dropwizard.metrics Highest Product pom name Metrics Core High Product pom parent-artifactid metrics-parent Medium Version file version 4.2.19 High Version Manifest Bundle-Version 4.2.19 High Version Manifest Implementation-Version 4.2.19 High Version pom version 4.2.19 Highest
Description:
A set of Jackson modules which provide serializers for most Metrics classes.
License:
https://www.apache.org/licenses/LICENSE-2.0.html File Path: /Users/coheigea/.m2/repository/io/dropwizard/metrics/metrics-json/4.2.19/metrics-json-4.2.19.jar
MD5: 1340203cea37905d3f72ff20bf04f48b
SHA1: 32afaab5bca42c8cbd4002f906b169d6c0fd4e4f
SHA256: cfbccdfd8fc073dbbd47ae734785c0a2a12a00c0c3903549719fc416e8b646c6
Referenced In Projects/Scopes: Apache WSS4J Streaming WS-Security:compile Apache WSS4J DOM WS-Security:compile Apache WSS4J Web WS-Security:compile Apache WSS4J WS-Security Common:compile Apache WSS4J Streaming WS-SecurityPolicy:compile metrics-json-4.2.19.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.0-SNAPSHOT pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT pkg:maven/org.opensaml/opensaml-saml-impl@5.0.0 pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT Evidence Type Source Name Value Confidence Vendor file name metrics-json High Vendor jar package name codahale Highest Vendor jar package name json Highest Vendor jar package name metrics Highest Vendor Manifest automatic-module-name com.codahale.metrics.json Medium Vendor Manifest build-jdk-spec 11 Low Vendor Manifest bundle-symbolicname io.dropwizard.metrics.json Medium Vendor pom artifactid metrics-json Highest Vendor pom artifactid metrics-json Low Vendor pom groupid io.dropwizard.metrics Highest Vendor pom name Jackson Integration for Metrics High Vendor pom parent-artifactid metrics-parent Low Product file name metrics-json High Product jar package name codahale Highest Product jar package name json Highest Product jar package name metrics Highest Product Manifest automatic-module-name com.codahale.metrics.json Medium Product Manifest build-jdk-spec 11 Low Product Manifest Bundle-Name Jackson Integration for Metrics Medium Product Manifest bundle-symbolicname io.dropwizard.metrics.json Medium Product Manifest Implementation-Title Jackson Integration for Metrics High Product pom artifactid metrics-json Highest Product pom groupid io.dropwizard.metrics Highest Product pom name Jackson Integration for Metrics High Product pom parent-artifactid metrics-parent Medium Version file version 4.2.19 High Version Manifest Bundle-Version 4.2.19 High Version Manifest Implementation-Version 4.2.19 High Version pom version 4.2.19 Highest
Description:
Apache Neethi provides general framework for the programmers to use WS Policy. It is compliant with latest WS Policy specification which was published in March 2006. This framework is specifically written to enable the Apache Web services stack to use WS Policy as a way of expressing it's requirements and capabilities. License:
Apache License, Version 2.0: https://www.apache.org/licenses/LICENSE-2.0.txt File Path: /Users/coheigea/.m2/repository/org/apache/neethi/neethi/3.2.0/neethi-3.2.0.jar
MD5: e6040db3584bfdbadd0515dbdba6b25a
SHA1: 4e409cf251f420f65130d458256f7be1ad68f055
SHA256: 6ed3c2cd20444972936c1f9b623862d1415592290ce1eb79e1cf1008f999aa3b
Referenced In Projects/Scopes: Apache WSS4J WS-SecurityPolicy model:compile Apache WSS4J Streaming WS-SecurityPolicy:compile neethi-3.2.0.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.apache.wss4j/wss4j-policy@4.0.0-SNAPSHOT pkg:maven/org.apache.wss4j/wss4j-policy@4.0.0-SNAPSHOT Evidence Type Source Name Value Confidence Vendor file name neethi High Vendor jar package name apache Highest Vendor jar package name neethi Highest Vendor jar package name policy Highest Vendor Manifest bundle-docurl https://www.apache.org/ Low Vendor Manifest bundle-symbolicname org.apache.neethi Medium Vendor Manifest Implementation-Vendor The Apache Software Foundation High Vendor Manifest Implementation-Vendor-Id org.apache Medium Vendor Manifest specification-vendor The Apache Software Foundation Low Vendor pom artifactid neethi Highest Vendor pom artifactid neethi Low Vendor pom developer email chatra@gmail.com Low Vendor pom developer email dims@yahoo.com Low Vendor pom developer email dkulp@apache.org Low Vendor pom developer email sanjiva@opensource.lk Low Vendor pom developer email sanka@apache.org Low Vendor pom developer email veithen@apache.org Low Vendor pom developer email werner.dittmann@siemens.com Low Vendor pom developer id chatra Medium Vendor pom developer id dims Medium Vendor pom developer id dkulp Medium Vendor pom developer id sanjiva Medium Vendor pom developer id sanka Medium Vendor pom developer id veithen Medium Vendor pom developer id werner Medium Vendor pom developer name Andreas Veithen Medium Vendor pom developer name Chatra Nakkawita Medium Vendor pom developer name Daniel Kulp Medium Vendor pom developer name Davanum Srinivas Medium Vendor pom developer name Dittmann, Werner Medium Vendor pom developer name Sanjiva Weerawarana Medium Vendor pom developer name Sanka Samaranayake Medium Vendor pom developer org IBM Medium Vendor pom developer org WSO2 Inc. Medium Vendor pom groupid org.apache.neethi Highest Vendor pom name Apache Neethi High Vendor pom organization name The Apache Software Foundation High Vendor pom organization url https://www.apache.org/ Medium Vendor pom parent-artifactid apache Low Vendor pom parent-groupid org.apache Medium Vendor pom url https://ws.apache.org/neethi/ Highest Product file name neethi High Product jar package name apache Highest Product jar package name neethi Highest Product jar package name policy Highest Product Manifest bundle-docurl https://www.apache.org/ Low Product Manifest Bundle-Name Apache Neethi Medium Product Manifest bundle-symbolicname org.apache.neethi Medium Product Manifest Implementation-Title Apache Neethi High Product Manifest specification-title Apache Neethi Medium Product pom artifactid neethi Highest Product pom developer email chatra@gmail.com Low Product pom developer email dims@yahoo.com Low Product pom developer email dkulp@apache.org Low Product pom developer email sanjiva@opensource.lk Low Product pom developer email sanka@apache.org Low Product pom developer email veithen@apache.org Low Product pom developer email werner.dittmann@siemens.com Low Product pom developer id chatra Low Product pom developer id dims Low Product pom developer id dkulp Low Product pom developer id sanjiva Low Product pom developer id sanka Low Product pom developer id veithen Low Product pom developer id werner Low Product pom developer name Andreas Veithen Low Product pom developer name Chatra Nakkawita Low Product pom developer name Daniel Kulp Low Product pom developer name Davanum Srinivas Low Product pom developer name Dittmann, Werner Low Product pom developer name Sanjiva Weerawarana Low Product pom developer name Sanka Samaranayake Low Product pom developer org IBM Low Product pom developer org WSO2 Inc. Low Product pom groupid org.apache.neethi Highest Product pom name Apache Neethi High Product pom organization name The Apache Software Foundation Low Product pom organization url https://www.apache.org/ Low Product pom parent-artifactid apache Medium Product pom parent-groupid org.apache Medium Product pom url https://ws.apache.org/neethi/ Medium Version file version 3.2.0 High Version Manifest Bundle-Version 3.2.0 High Version Manifest Implementation-Version 3.2.0 High Version pom parent-version 3.2.0 Low Version pom version 3.2.0 Highest
Description:
Core API File Path: /Users/coheigea/.m2/repository/org/opensaml/opensaml-core-api/5.0.0/opensaml-core-api-5.0.0.jarMD5: ef42622011593154ad3bacf86a53f15cSHA1: 3ba3187fe2675eef301ce4cd47f793ab8acecea2SHA256: cbabe54124b7ac7e1bdaea2cc5d3119a99c3ad4d566815782d730af81cc598f7Referenced In Projects/Scopes:
Apache WSS4J Streaming WS-Security:compile Apache WSS4J DOM WS-Security:compile Apache WSS4J Web WS-Security:compile Apache WSS4J WS-Security Common:compile Apache WSS4J Streaming WS-SecurityPolicy:compile opensaml-core-api-5.0.0.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT pkg:maven/org.opensaml/opensaml-saml-impl@5.0.0 pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.0-SNAPSHOT Evidence Type Source Name Value Confidence Vendor file name opensaml-core-api High Vendor hint analyzer vendor shibboleth Highest Vendor jar package name core Highest Vendor jar package name opensaml Highest Vendor Manifest automatic-module-name org.opensaml.core Medium Vendor Manifest build-jdk-spec 17 Low Vendor manifest: org/opensaml/core/ Implementation-Vendor opensaml.org Medium Vendor pom artifactid opensaml-core-api Highest Vendor pom artifactid opensaml-core-api Low Vendor pom groupid org.opensaml Highest Vendor pom name OpenSAML :: Core API High Vendor pom parent-artifactid opensaml-parent Low Product file name opensaml-core-api High Product hint analyzer product opensaml Highest Product jar package name core Highest Product jar package name opensaml Highest Product Manifest automatic-module-name org.opensaml.core Medium Product Manifest build-jdk-spec 17 Low Product manifest: org/opensaml/core/ Implementation-Title opensaml-core-api Medium Product pom artifactid opensaml-core-api Highest Product pom groupid org.opensaml Highest Product pom name OpenSAML :: Core API High Product pom parent-artifactid opensaml-parent Medium Version file version 5.0.0 High Version manifest: org/opensaml/core/ Implementation-Version 5.0.0 Medium Version pom version 5.0.0 Highest
Related Dependencies opensaml-core-impl-5.0.0.jarFile Path: /Users/coheigea/.m2/repository/org/opensaml/opensaml-core-impl/5.0.0/opensaml-core-impl-5.0.0.jar MD5: d15cfa8cf82a5214976565d0e08d3c72 SHA1: f0ea999b9accc297c7cabf48dbed9cba9488ac1f SHA256: 0e08ad25a1727cb3aab354d61375e8252f2fd9bea5d01848d094ae57f8550e28 pkg:maven/org.opensaml/opensaml-core-impl@5.0.0 opensaml-profile-api-5.0.0.jarFile Path: /Users/coheigea/.m2/repository/org/opensaml/opensaml-profile-api/5.0.0/opensaml-profile-api-5.0.0.jar MD5: bf3aebe240176a6afdefcfd5904f525a SHA1: 5672efaa9df2a380d9038b00fe19a8ee4a3f8ccb SHA256: cec513a1077a1d6182ada04e62f88638c676e6dcd04d93f3bc7c480aaef68e3d pkg:maven/org.opensaml/opensaml-profile-api@5.0.0 opensaml-saml-api-5.0.0.jarFile Path: /Users/coheigea/.m2/repository/org/opensaml/opensaml-saml-api/5.0.0/opensaml-saml-api-5.0.0.jar MD5: 4982fe304b0fa159ac69647e0fe886c4 SHA1: adec564b850a536033cd5ce1f0f1a9d4e62a7774 SHA256: 4518d12ea3c8122e5ce26b4fca1b8c2fc9eefbaa9d308a8f05635ec893359cc9 pkg:maven/org.opensaml/opensaml-saml-api@5.0.0 opensaml-saml-impl-5.0.0.jarFile Path: /Users/coheigea/.m2/repository/org/opensaml/opensaml-saml-impl/5.0.0/opensaml-saml-impl-5.0.0.jar MD5: ea831521cfdd2dd6f91a0d7c7b8f4fe9 SHA1: 1d4ad1190b7a69d81f4f6135a8b072a44640be0d SHA256: 247055e276fbd249fbd0251999ee6ef9be302503193856210ad959f383ca06e1 pkg:maven/org.opensaml/opensaml-saml-impl@5.0.0 opensaml-security-api-5.0.0.jarFile Path: /Users/coheigea/.m2/repository/org/opensaml/opensaml-security-api/5.0.0/opensaml-security-api-5.0.0.jar MD5: 6ed2fd7cfc4248d81a1ab836de256ae4 SHA1: de38cfe93d9f4bf7fd44f652b25d2d2e3fffd211 SHA256: 0a7f1c26830db82f40c8f00632c158f566cd24b5c1d7ccc8239b3b0ce259718b pkg:maven/org.opensaml/opensaml-security-api@5.0.0 opensaml-security-impl-5.0.0.jarFile Path: /Users/coheigea/.m2/repository/org/opensaml/opensaml-security-impl/5.0.0/opensaml-security-impl-5.0.0.jar MD5: 4b8384fadfd63b55358542b7f66451de SHA1: d076d3802f0865eaccab945ae1327a0d1c63b67f SHA256: da0267d20d1a5cd36215a65c9043f44b9c0fe09e18f6d286a1b97b4076bba862 pkg:maven/org.opensaml/opensaml-security-impl@5.0.0 opensaml-soap-api-5.0.0.jarFile Path: /Users/coheigea/.m2/repository/org/opensaml/opensaml-soap-api/5.0.0/opensaml-soap-api-5.0.0.jar MD5: c5c09615714304375a476930592d8f20 SHA1: a67a4287ea14070dfe48e8d407f1d7c4b148526e SHA256: a3bc2d44d22da5420f1745c144a931deef59607a61de6ed0c49aac7de8baeb5f pkg:maven/org.opensaml/opensaml-soap-api@5.0.0 opensaml-xacml-api-5.0.0.jarFile Path: /Users/coheigea/.m2/repository/org/opensaml/opensaml-xacml-api/5.0.0/opensaml-xacml-api-5.0.0.jar MD5: 94363d0e86b7a7a3e92fec69c67f909d SHA1: 535b7b1f39c733669a4fd499e21c9c498e7240f6 SHA256: 148880722436320c201ff81f1b1ce46e7057864a4b8766ec3ed7d6d39eaba7a3 pkg:maven/org.opensaml/opensaml-xacml-api@5.0.0 opensaml-xacml-impl-5.0.0.jarFile Path: /Users/coheigea/.m2/repository/org/opensaml/opensaml-xacml-impl/5.0.0/opensaml-xacml-impl-5.0.0.jar MD5: fa9e67cfb57a112b79d35e3c495f88a7 SHA1: b4741768343676d94ecdbbabf0eb697189a9ee6d SHA256: d034ad8fda073212ed647d8d2e8a3952bc70eb8d9f86d426d7b730d0506c023e pkg:maven/org.opensaml/opensaml-xacml-impl@5.0.0 opensaml-xacml-saml-api-5.0.0.jarFile Path: /Users/coheigea/.m2/repository/org/opensaml/opensaml-xacml-saml-api/5.0.0/opensaml-xacml-saml-api-5.0.0.jar MD5: b460c23e2494531c6ce880ffd90f22da SHA1: 59779363ce7ea6c91ffcf8f569466eabd65f3102 SHA256: c3596b9c79753eb97b2020496d235ef804c59878e857be8761ebfc967b39d1b1 pkg:maven/org.opensaml/opensaml-xacml-saml-api@5.0.0 opensaml-xacml-saml-impl-5.0.0.jarFile Path: /Users/coheigea/.m2/repository/org/opensaml/opensaml-xacml-saml-impl/5.0.0/opensaml-xacml-saml-impl-5.0.0.jar MD5: f4bdf519e059126a91886d1c37fca14b SHA1: d0bddd6cb4734370e4f246a7e699690c56a6529a SHA256: e03e39b106018371cf2568643af5a6951b6c88417e6430ea1c445406bf3d534c pkg:maven/org.opensaml/opensaml-xacml-saml-impl@5.0.0 opensaml-xmlsec-api-5.0.0.jarFile Path: /Users/coheigea/.m2/repository/org/opensaml/opensaml-xmlsec-api/5.0.0/opensaml-xmlsec-api-5.0.0.jar MD5: e629c1c3e4aaf854761ffbbb084f7894 SHA1: 60d679a4f4d2f9cbbcd63c6c2bc9c1a37c7eeda5 SHA256: 93cbc35d56c7fbc3f138983154d2a4aa153fc871acb865dd3752931d479173fc pkg:maven/org.opensaml/opensaml-xmlsec-api@5.0.0 opensaml-xmlsec-impl-5.0.0.jarFile Path: /Users/coheigea/.m2/repository/org/opensaml/opensaml-xmlsec-impl/5.0.0/opensaml-xmlsec-impl-5.0.0.jar MD5: 8fcdc25306d3b53779504875a0b348ff SHA1: 264a33c44eb18d09cd969042878c16bf3393064f SHA256: 4d1fb0464b18e35f8ae19707d6381bcad22cd8dd45d07581ab4e348912ada9d7 pkg:maven/org.opensaml/opensaml-xmlsec-impl@5.0.0 Description:
Apache WSS4J parent pom License:
Apache-2.0 https://www.apache.org/licenses/LICENSE-2.0.txt File Path: /Users/coheigea/src/apache/ws-wss4j/bindings/pom.xml
Referenced In Projects/Scopes: Apache WSS4J Streaming WS-Security Apache WSS4J Streaming WS-SecurityPolicy org.apache.wss4j:wss4j-bindings:4.0.0-SNAPSHOT is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.apache.wss4j/wss4j-ws-security-stax@4.0.0-SNAPSHOT pkg:maven/org.apache.wss4j/wss4j-ws-security-policy-stax@4.0.0-SNAPSHOT Evidence Type Source Name Value Confidence Vendor file name pom High Vendor project artifactid wss4j-bindings Low Vendor project groupid org.apache.wss4j Highest Product file name pom High Product project artifactid wss4j-bindings Highest Product project groupid org.apache.wss4j Low
Description:
Apache WSS4J parent pom License:
Apache-2.0 https://www.apache.org/licenses/LICENSE-2.0.txt File Path: /Users/coheigea/src/apache/ws-wss4j/policy/pom.xml
Referenced In Project/Scope: Apache WSS4J Streaming WS-SecurityPolicy
org.apache.wss4j:wss4j-policy:4.0.0-SNAPSHOT is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.apache.wss4j/wss4j-ws-security-policy-stax@4.0.0-SNAPSHOT
Evidence Type Source Name Value Confidence Vendor file name pom High Vendor project artifactid wss4j-policy Low Vendor project groupid org.apache.wss4j Highest Product file name pom High Product project artifactid wss4j-policy Highest Product project groupid org.apache.wss4j Low
Description:
Apache WSS4J parent pom License:
Apache-2.0 https://www.apache.org/licenses/LICENSE-2.0.txt File Path: /Users/coheigea/src/apache/ws-wss4j/ws-security-common/pom.xml
Referenced In Projects/Scopes: Apache WSS4J Web WS-Security Apache WSS4J Streaming WS-Security Apache WSS4J DOM WS-Security Apache WSS4J Streaming WS-SecurityPolicy org.apache.wss4j:wss4j-ws-security-common:4.0.0-SNAPSHOT is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.apache.wss4j/wss4j-ws-security-policy-stax@4.0.0-SNAPSHOT pkg:maven/org.apache.wss4j/wss4j-ws-security-web@4.0.0-SNAPSHOT pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.0-SNAPSHOT pkg:maven/org.apache.wss4j/wss4j-ws-security-stax@4.0.0-SNAPSHOT Evidence Type Source Name Value Confidence Vendor file name pom High Vendor project artifactid wss4j-ws-security-common Low Vendor project groupid org.apache.wss4j Highest Product file name pom High Product project artifactid wss4j-ws-security-common Highest Product project groupid org.apache.wss4j Low
Description:
Apache WSS4J parent pom License:
Apache-2.0 https://www.apache.org/licenses/LICENSE-2.0.txt File Path: /Users/coheigea/src/apache/ws-wss4j/ws-security-dom/pom.xml
Referenced In Project/Scope: Apache WSS4J Web WS-Security
org.apache.wss4j:wss4j-ws-security-dom:4.0.0-SNAPSHOT is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.apache.wss4j/wss4j-ws-security-web@4.0.0-SNAPSHOT
Evidence Type Source Name Value Confidence Vendor file name pom High Vendor project artifactid wss4j-ws-security-dom Low Vendor project groupid org.apache.wss4j Highest Product file name pom High Product project artifactid wss4j-ws-security-dom Highest Product project groupid org.apache.wss4j Low
Description:
Apache WSS4J parent pom License:
Apache-2.0 https://www.apache.org/licenses/LICENSE-2.0.txt File Path: /Users/coheigea/src/apache/ws-wss4j/ws-security-stax/pom.xml
Referenced In Project/Scope: Apache WSS4J Streaming WS-SecurityPolicy
org.apache.wss4j:wss4j-ws-security-stax:4.0.0-SNAPSHOT is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.apache.wss4j/wss4j-ws-security-policy-stax@4.0.0-SNAPSHOT
Evidence Type Source Name Value Confidence Vendor file name pom High Vendor project artifactid wss4j-ws-security-stax Low Vendor project groupid org.apache.wss4j Highest Product file name pom High Product project artifactid wss4j-ws-security-stax Highest Product project groupid org.apache.wss4j Low
File Path: /Users/coheigea/.m2/repository/net/shibboleth/shib-networking/9.0.0/shib-networking-9.0.0.jarMD5: 97a385cac8e1e55ff2cf79e8ef48f3e6SHA1: 10ceee652f45bb497e0f2524007eb354efeaea0eSHA256: 61fc1ffec5fa24d741c089b37094e283e10bd08f593716395f16bcd82c7cc900Referenced In Projects/Scopes:
Apache WSS4J Streaming WS-Security:compile Apache WSS4J DOM WS-Security:compile Apache WSS4J Web WS-Security:compile Apache WSS4J WS-Security Common:compile Apache WSS4J Streaming WS-SecurityPolicy:compile shib-networking-9.0.0.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.0-SNAPSHOT pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT pkg:maven/org.opensaml/opensaml-saml-impl@5.0.0 pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT Evidence Type Source Name Value Confidence Vendor file name shib-networking High Vendor jar package name net Highest Vendor jar package name shared Highest Vendor jar package name shibboleth Highest Vendor Manifest automatic-module-name net.shibboleth.networking Medium Vendor Manifest build-jdk-spec 17 Low Vendor pom artifactid shib-networking Highest Vendor pom artifactid shib-networking Low Vendor pom groupid net.shibboleth Highest Vendor pom name Shibboleth Shared :: Networking Support High Vendor pom parent-artifactid shib-shared-parent Low Product file name shib-networking High Product jar package name net Highest Product jar package name shared Highest Product jar package name shibboleth Highest Product Manifest automatic-module-name net.shibboleth.networking Medium Product Manifest build-jdk-spec 17 Low Product pom artifactid shib-networking Highest Product pom groupid net.shibboleth Highest Product pom name Shibboleth Shared :: Networking Support High Product pom parent-artifactid shib-shared-parent Medium Version file version 9.0.0 High Version pom version 9.0.0 Highest
File Path: /Users/coheigea/.m2/repository/net/shibboleth/shib-security/9.0.0/shib-security-9.0.0.jarMD5: a1020cc0e982568ab23c56de6221919cSHA1: d1148dccbe372beac05208e8aa10a6a248723dcbSHA256: b5f53872cc8dfbd0e9549f95355cd8108be175fdbfe8ef6c157c06fbcd4bd120Referenced In Projects/Scopes:
Apache WSS4J Streaming WS-Security:compile Apache WSS4J DOM WS-Security:compile Apache WSS4J Web WS-Security:compile Apache WSS4J WS-Security Common:compile Apache WSS4J Streaming WS-SecurityPolicy:compile shib-security-9.0.0.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.0-SNAPSHOT pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT pkg:maven/org.opensaml/opensaml-saml-impl@5.0.0 pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT Evidence Type Source Name Value Confidence Vendor file name shib-security High Vendor jar package name net Highest Vendor jar package name security Highest Vendor jar package name shared Highest Vendor jar package name shibboleth Highest Vendor Manifest automatic-module-name net.shibboleth.shared.security Medium Vendor Manifest build-jdk-spec 17 Low Vendor pom artifactid shib-security Highest Vendor pom artifactid shib-security Low Vendor pom groupid net.shibboleth Highest Vendor pom name Shibboleth Shared :: Security Support High Vendor pom parent-artifactid shib-shared-parent Low Product file name shib-security High Product jar package name net Highest Product jar package name security Highest Product jar package name shared Highest Product jar package name shibboleth Highest Product Manifest automatic-module-name net.shibboleth.shared.security Medium Product Manifest build-jdk-spec 17 Low Product pom artifactid shib-security Highest Product pom groupid net.shibboleth Highest Product pom name Shibboleth Shared :: Security Support High Product pom parent-artifactid shib-shared-parent Medium Version file version 9.0.0 High Version pom version 9.0.0 Highest
File Path: /Users/coheigea/.m2/repository/net/shibboleth/shib-support/9.0.0/shib-support-9.0.0.jarMD5: 3d5cd321af1a63fbd98dee16ef1161fdSHA1: e9ed90821fe3eb7ff6aa1f99d9336e0e1f5ee473SHA256: 0d3efc49346a57cc013a822f808c9e29879184a9b3ad6a60f3ba7c56a1492effReferenced In Projects/Scopes:
Apache WSS4J Streaming WS-Security:compile Apache WSS4J DOM WS-Security:compile Apache WSS4J Web WS-Security:compile Apache WSS4J WS-Security Common:compile Apache WSS4J Streaming WS-SecurityPolicy:compile shib-support-9.0.0.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.0-SNAPSHOT pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT pkg:maven/org.opensaml/opensaml-saml-impl@5.0.0 Evidence Type Source Name Value Confidence Vendor file name shib-support High Vendor jar package name net Highest Vendor jar package name shared Highest Vendor jar package name shibboleth Highest Vendor Manifest automatic-module-name net.shibboleth.shared.support Medium Vendor Manifest build-jdk-spec 17 Low Vendor pom artifactid shib-support Highest Vendor pom artifactid shib-support Low Vendor pom groupid net.shibboleth Highest Vendor pom name Shibboleth Shared :: Generic Support Classes High Vendor pom parent-artifactid shib-shared-parent Low Product file name shib-support High Product jar package name net Highest Product jar package name shared Highest Product jar package name shibboleth Highest Product Manifest automatic-module-name net.shibboleth.shared.support Medium Product Manifest build-jdk-spec 17 Low Product pom artifactid shib-support Highest Product pom groupid net.shibboleth Highest Product pom name Shibboleth Shared :: Generic Support Classes High Product pom parent-artifactid shib-shared-parent Medium Version file version 9.0.0 High Version pom version 9.0.0 Highest
File Path: /Users/coheigea/.m2/repository/net/shibboleth/shib-velocity/9.0.0/shib-velocity-9.0.0.jarMD5: 123f5707e84fcb0c484cd13634cb21b1SHA1: d570d4cfe3cef3980855d850546b191883a17d37SHA256: e85b6d1fdca88b0054845e680612ad94bb164187a2c3a24e847894489b73551aReferenced In Projects/Scopes:
Apache WSS4J Streaming WS-Security:compile Apache WSS4J DOM WS-Security:compile Apache WSS4J Web WS-Security:compile Apache WSS4J WS-Security Common:compile Apache WSS4J Streaming WS-SecurityPolicy:compile shib-velocity-9.0.0.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.0-SNAPSHOT pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT pkg:maven/org.opensaml/opensaml-saml-impl@5.0.0 Evidence Type Source Name Value Confidence Vendor file name shib-velocity High Vendor jar package name net Highest Vendor jar package name shared Highest Vendor jar package name shibboleth Highest Vendor jar package name velocity Highest Vendor Manifest automatic-module-name net.shibboleth.shared.velocity Medium Vendor Manifest build-jdk-spec 17 Low Vendor pom artifactid shib-velocity Highest Vendor pom artifactid shib-velocity Low Vendor pom groupid net.shibboleth Highest Vendor pom name Shibboleth Shared :: Velocity Support High Vendor pom parent-artifactid shib-shared-parent Low Product file name shib-velocity High Product jar package name net Highest Product jar package name shared Highest Product jar package name shibboleth Highest Product jar package name velocity Highest Product Manifest automatic-module-name net.shibboleth.shared.velocity Medium Product Manifest build-jdk-spec 17 Low Product pom artifactid shib-velocity Highest Product pom groupid net.shibboleth Highest Product pom name Shibboleth Shared :: Velocity Support High Product pom parent-artifactid shib-shared-parent Medium Version file version 9.0.0 High Version pom version 9.0.0 Highest
Description:
The slf4j API License:
http://www.opensource.org/licenses/mit-license.php File Path: /Users/coheigea/.m2/repository/org/slf4j/slf4j-api/2.0.9/slf4j-api-2.0.9.jar
MD5: 45630e54b0f0ac2b3c80462515ad8fda
SHA1: 7cf2726fdcfbc8610f9a71fb3ed639871f315340
SHA256: 0818930dc8d7debb403204611691da58e49d42c50b6ffcfdce02dadb7c3c2b6c
Referenced In Projects/Scopes: Apache WSS4J Streaming WS-Security:compile Apache WSS4J DOM WS-Security:compile Apache WSS4J Web WS-Security:compile Apache WSS4J WS-Security Common:compile Apache WSS4J Streaming WS-SecurityPolicy:compile slf4j-api-2.0.9.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.0-SNAPSHOT pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT Evidence Type Source Name Value Confidence Vendor file name slf4j-api High Vendor jar package name slf4j Highest Vendor Manifest build-jdk-spec 20 Low Vendor Manifest bundle-docurl http://www.slf4j.org Low Vendor Manifest bundle-symbolicname slf4j.api Medium Vendor Manifest multi-release true Low Vendor pom artifactid slf4j-api Highest Vendor pom artifactid slf4j-api Low Vendor pom groupid org.slf4j Highest Vendor pom name SLF4J API Module High Vendor pom parent-artifactid slf4j-parent Low Vendor pom url http://www.slf4j.org Highest Product file name slf4j-api High Product jar package name slf4j Highest Product Manifest build-jdk-spec 20 Low Product Manifest bundle-docurl http://www.slf4j.org Low Product Manifest Bundle-Name SLF4J API Module Medium Product Manifest bundle-symbolicname slf4j.api Medium Product Manifest Implementation-Title slf4j-api High Product Manifest multi-release true Low Product pom artifactid slf4j-api Highest Product pom groupid org.slf4j Highest Product pom name SLF4J API Module High Product pom parent-artifactid slf4j-parent Medium Product pom url http://www.slf4j.org Medium Version file version 2.0.9 High Version Manifest Bundle-Version 2.0.9 High Version Manifest Implementation-Version 2.0.9 High Version pom version 2.0.9 Highest
Description:
tax2 API is an extension to basic Stax 1.0 API that adds significant new functionality, such as full-featured bi-direction validation interface and high-performance Typed Access API.
License:
The BSD License: http://www.opensource.org/licenses/bsd-license.php File Path: /Users/coheigea/.m2/repository/org/codehaus/woodstox/stax2-api/4.2.1/stax2-api-4.2.1.jar
MD5: af8377bc7882332e22456616a9f164f6
SHA1: a3f7325c52240418c2ba257b103c3c550e140c83
SHA256: 678567e48b51a42c65c699f266539ad3d676d4b1a5b0ad7d89ece8b9d5772579
Referenced In Projects/Scopes: Apache WSS4J WS-Security Common:runtime Apache WSS4J Streaming WS-Security:runtime Apache WSS4J DOM WS-Security:runtime Apache WSS4J Web WS-Security:runtime Apache WSS4J WS-Security Bindings:runtime Apache WSS4J Streaming WS-SecurityPolicy:runtime stax2-api-4.2.1.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT pkg:maven/org.apache.santuario/xmlsec@4.0.0 pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.0-SNAPSHOT pkg:maven/org.apache.santuario/xmlsec@4.0.0 pkg:maven/org.apache.wss4j/wss4j-bindings@4.0.0-SNAPSHOT pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT Evidence Type Source Name Value Confidence Vendor file name stax2-api High Vendor jar package name codehaus Highest Vendor jar package name stax2 Highest Vendor jar package name typed Highest Vendor jar package name validation Highest Vendor Manifest automatic-module-name org.codehaus.stax2 Medium Vendor Manifest bundle-docurl http://github.com/FasterXML/stax2-api Low Vendor Manifest bundle-symbolicname stax2-api Medium Vendor Manifest implementation-build-date 2020-05-14 04:15:18+0000 Low Vendor Manifest Implementation-Vendor fasterxml.com High Vendor Manifest Implementation-Vendor-Id org.codehaus.woodstox Medium Vendor Manifest specification-vendor fasterxml.com Low Vendor pom artifactid stax2-api Highest Vendor pom artifactid stax2-api Low Vendor pom developer email tatu@fasterxml.com Low Vendor pom developer id tatu Medium Vendor pom developer name Tatu Saloranta Medium Vendor pom groupid org.codehaus.woodstox Highest Vendor pom name Stax2 API High Vendor pom organization name fasterxml.com High Vendor pom organization url http://fasterxml.com Medium Vendor pom parent-artifactid oss-parent Low Vendor pom parent-groupid com.fasterxml Medium Vendor pom url http://github.com/FasterXML/stax2-api Highest Product file name stax2-api High Product jar package name codehaus Highest Product jar package name stax2 Highest Product jar package name typed Highest Product jar package name validation Highest Product Manifest automatic-module-name org.codehaus.stax2 Medium Product Manifest bundle-docurl http://github.com/FasterXML/stax2-api Low Product Manifest Bundle-Name Stax2 API Medium Product Manifest bundle-symbolicname stax2-api Medium Product Manifest implementation-build-date 2020-05-14 04:15:18+0000 Low Product Manifest Implementation-Title Stax2 API High Product Manifest specification-title Stax2 API Medium Product pom artifactid stax2-api Highest Product pom developer email tatu@fasterxml.com Low Product pom developer id tatu Low Product pom developer name Tatu Saloranta Low Product pom groupid org.codehaus.woodstox Highest Product pom name Stax2 API High Product pom organization name fasterxml.com Low Product pom organization url http://fasterxml.com Low Product pom parent-artifactid oss-parent Medium Product pom parent-groupid com.fasterxml Medium Product pom url http://github.com/FasterXML/stax2-api Medium Version file version 4.2.1 High Version Manifest Bundle-Version 4.2.1 High Version Manifest Implementation-Version 4.2.1 High Version pom parent-version 4.2.1 Low Version pom version 4.2.1 Highest
Description:
TXW is a library that allows you to write XML documents.
File Path: /Users/coheigea/.m2/repository/org/glassfish/jaxb/txw2/3.0.2/txw2-3.0.2.jarMD5: 1e918807b59e37de5c379d0720a1c335SHA1: 8c448a44cdcdbb5dd48ff2eb88cab858ed52cf91SHA256: b4bcf94fb0a759456e2521724513baec94b78e93127544af162e3cff08d93343Referenced In Projects/Scopes:
Apache WSS4J Streaming WS-Security:runtime Apache WSS4J Streaming WS-SecurityPolicy:runtime txw2-3.0.2.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.apache.wss4j/wss4j-ws-security-stax@4.0.0-SNAPSHOT pkg:maven/org.glassfish.jaxb/jaxb-runtime@3.0.2 Evidence Type Source Name Value Confidence Vendor file name txw2 High Vendor jar package name sun Highest Vendor jar package name txw Highest Vendor jar package name txw2 Highest Vendor jar package name xml Highest Vendor jar (hint) package name oracle Highest Vendor Manifest git-revision 1120e83 Low Vendor Manifest Implementation-Vendor Eclipse Foundation High Vendor Manifest Implementation-Vendor-Id org.eclipse Medium Vendor pom artifactid txw2 Highest Vendor pom artifactid txw2 Low Vendor pom groupid org.glassfish.jaxb Highest Vendor pom name TXW2 Runtime High Vendor pom parent-artifactid jaxb-txw-parent Low Vendor pom parent-groupid com.sun.xml.bind.mvn Medium Vendor pom url https://eclipse-ee4j.github.io/jaxb-ri/ Highest Product file name txw2 High Product jar package name sun Highest Product jar package name txw Highest Product jar package name txw2 Highest Product jar package name xml Highest Product Manifest git-revision 1120e83 Low Product Manifest Implementation-Title Jakarta XML Binding Implementation High Product Manifest specification-title Jakarta XML Binding Medium Product pom artifactid txw2 Highest Product pom groupid org.glassfish.jaxb Highest Product pom name TXW2 Runtime High Product pom parent-artifactid jaxb-txw-parent Medium Product pom parent-groupid com.sun.xml.bind.mvn Medium Product pom url https://eclipse-ee4j.github.io/jaxb-ri/ Medium Version file version 3.0.2 High Version Manifest build-id 3.0.2 Medium Version Manifest Implementation-Version 3.0.2 High Version Manifest major-version 3.0.2 Medium Version pom version 3.0.2 Highest
Description:
Unknown version of isorelax library used in JAXB project File Path: /Users/coheigea/.m2/repository/com/fasterxml/woodstox/woodstox-core/6.5.1/woodstox-core-6.5.1.jar/META-INF/maven/com.sun.xml.bind.jaxb/isorelax/pom.xmlMD5: 6fbb4bc95fbf2072bc6e3b790553fe81SHA1: 314ec72948d5c1fc71d553cbbd7a130caa6f9f13SHA256: cda6451d0231a973352b592ff950e39224ba6ba1a2f35eeab66511b5c225dff1Referenced In Projects/Scopes:
Apache WSS4J WS-Security Common:runtime Apache WSS4J Streaming WS-Security:runtime Apache WSS4J DOM WS-Security:runtime Apache WSS4J Web WS-Security:runtime Apache WSS4J WS-Security Bindings:runtime Apache WSS4J Streaming WS-SecurityPolicy:runtime Evidence Type Source Name Value Confidence Vendor pom artifactid isorelax Low Vendor pom groupid com.sun.xml.bind.jaxb Highest Vendor pom name JAXB isorelax library High Vendor pom parent-artifactid jvnet-parent Low Vendor pom parent-groupid net.java Medium Product pom artifactid isorelax Highest Product pom groupid com.sun.xml.bind.jaxb Highest Product pom name JAXB isorelax library High Product pom parent-artifactid jvnet-parent Medium Product pom parent-groupid net.java Medium Version pom parent-version 20090621 Low Version pom version 20090621 Highest
Description:
XML Schema datatypes library File Path: /Users/coheigea/.m2/repository/com/fasterxml/woodstox/woodstox-core/6.5.1/woodstox-core-6.5.1.jar/META-INF/maven/net.java.dev.msv/xsdlib/pom.xmlMD5: aaf872ed9d1aabee25e03c2a132ffd8eSHA1: 47f218a999411ed028f089d59ebef8f14e0fe914SHA256: d6e83c124436049d83238fc532a26c5d8ccd7e4ab10eba6d96043c850ac82f3cReferenced In Projects/Scopes:
Apache WSS4J WS-Security Common:runtime Apache WSS4J Streaming WS-Security:runtime Apache WSS4J DOM WS-Security:runtime Apache WSS4J Web WS-Security:runtime Apache WSS4J WS-Security Bindings:runtime Apache WSS4J Streaming WS-SecurityPolicy:runtime Evidence Type Source Name Value Confidence Vendor pom artifactid xsdlib Low Vendor pom groupid net.java.dev.msv Highest Vendor pom name MSV XML Schema Library High Vendor pom parent-artifactid msv Low Product pom artifactid xsdlib Highest Product pom groupid net.java.dev.msv Highest Product pom name MSV XML Schema Library High Product pom parent-artifactid msv Medium Version pom version 2013.6.1 Highest
Description:
Woodstox is a high-performance XML processor that implements Stax (JSR-173),
SAX2 and Stax2 APIs
License:
The Apache License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt File Path: /Users/coheigea/.m2/repository/com/fasterxml/woodstox/woodstox-core/6.5.1/woodstox-core-6.5.1.jar
MD5: 961dd4b2afedf95293dfdd8adfc8f211
SHA1: c6e52e84fe959e69a243c83ec7d24cd889444ddf
SHA256: c928d60665c6415fb1c39775cf95cfc44f7f4580cf5ab01b1c380ebffd76887f
Referenced In Projects/Scopes: Apache WSS4J WS-Security Common:runtime Apache WSS4J Streaming WS-Security:runtime Apache WSS4J DOM WS-Security:runtime Apache WSS4J Web WS-Security:runtime Apache WSS4J WS-Security Bindings:runtime Apache WSS4J Streaming WS-SecurityPolicy:runtime woodstox-core-6.5.1.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.apache.santuario/xmlsec@4.0.0 pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.0-SNAPSHOT pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT pkg:maven/org.apache.santuario/xmlsec@4.0.0 pkg:maven/org.apache.wss4j/wss4j-bindings@4.0.0-SNAPSHOT pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT Evidence Type Source Name Value Confidence Vendor file name woodstox-core High Vendor jar package name stax Highest Vendor Manifest build-jdk-spec 1.8 Low Vendor Manifest bundle-docurl https://github.com/FasterXML/woodstox Low Vendor Manifest bundle-symbolicname com.fasterxml.woodstox.woodstox-core Medium Vendor Manifest Implementation-Vendor FasterXML High Vendor Manifest Implementation-Vendor-Id com.fasterxml.woodstox Medium Vendor Manifest provide-capability osgi.service;objectClass:List="javax.xml.stream.XMLEventFactory";effective:=active,osgi.service;objectClass:List="javax.xml.stream.XMLInputFactory";effective:=active,osgi.service;objectClass:List="javax.xml.stream.XMLOutputFactory";effective:=active,osgi.service;objectClass:List="org.codehaus.stax2.validation.XMLValidationSchemaFactory";effective:=active,osgi.serviceloader;osgi.serviceloader="javax.xml.stream.XMLEventFactory";register:="com.ctc.wstx.stax.WstxEventFactory",osgi.serviceloader;osgi.serviceloader="javax.xml.stream.XMLInputFactory";register:="com.ctc.wstx.stax.WstxInputFactory",osgi.serviceloader;osgi.serviceloader="javax.xml.stream.XMLOutputFactory";register:="com.ctc.wstx.stax.WstxOutputFactory",osgi.serviceloader;osgi.serviceloader="org.codehaus.stax2.validation.XMLValidationSchemaFactory";register:="com.ctc.wstx.dtd.DTDSchemaFactory",osgi.serviceloader;osgi.serviceloader="org.codehaus.stax2.validation.XMLValidationSchemaFactory";register:="com.ctc.wstx.msv.RelaxNGSchemaFactory",osgi.serviceloader;osgi.serviceloader="org.codehaus.stax2.validation.XMLValidationSchemaFactory";register:="com.ctc.wstx.msv.W3CSchemaFactory" Low Vendor Manifest specification-vendor FasterXML Low Vendor pom artifactid woodstox-core Highest Vendor pom artifactid woodstox-core Low Vendor pom developer email tatu@fasterxml.com Low Vendor pom developer id cowtowncoder Medium Vendor pom developer name Tatu Saloranta Medium Vendor pom groupid com.fasterxml.woodstox Highest Vendor pom name Woodstox High Vendor pom organization name FasterXML High Vendor pom organization url http://fasterxml.com Medium Vendor pom parent-artifactid oss-parent Low Vendor pom parent-groupid com.fasterxml Medium Vendor pom url FasterXML/woodstox Highest Product file name woodstox-core High Product jar package name dtd Highest Product jar package name dtdschemafactory Highest Product jar package name msv Highest Product jar package name osgi Highest Product jar package name relaxngschemafactory Highest Product jar package name stax Highest Product jar package name w3cschemafactory Highest Product jar package name wstx Highest Product jar package name wstxeventfactory Highest Product jar package name wstxinputfactory Highest Product jar package name wstxoutputfactory Highest Product Manifest build-jdk-spec 1.8 Low Product Manifest bundle-docurl https://github.com/FasterXML/woodstox Low Product Manifest Bundle-Name Woodstox Medium Product Manifest bundle-symbolicname com.fasterxml.woodstox.woodstox-core Medium Product Manifest Implementation-Title Woodstox High Product Manifest provide-capability osgi.service;objectClass:List="javax.xml.stream.XMLEventFactory";effective:=active,osgi.service;objectClass:List="javax.xml.stream.XMLInputFactory";effective:=active,osgi.service;objectClass:List="javax.xml.stream.XMLOutputFactory";effective:=active,osgi.service;objectClass:List="org.codehaus.stax2.validation.XMLValidationSchemaFactory";effective:=active,osgi.serviceloader;osgi.serviceloader="javax.xml.stream.XMLEventFactory";register:="com.ctc.wstx.stax.WstxEventFactory",osgi.serviceloader;osgi.serviceloader="javax.xml.stream.XMLInputFactory";register:="com.ctc.wstx.stax.WstxInputFactory",osgi.serviceloader;osgi.serviceloader="javax.xml.stream.XMLOutputFactory";register:="com.ctc.wstx.stax.WstxOutputFactory",osgi.serviceloader;osgi.serviceloader="org.codehaus.stax2.validation.XMLValidationSchemaFactory";register:="com.ctc.wstx.dtd.DTDSchemaFactory",osgi.serviceloader;osgi.serviceloader="org.codehaus.stax2.validation.XMLValidationSchemaFactory";register:="com.ctc.wstx.msv.RelaxNGSchemaFactory",osgi.serviceloader;osgi.serviceloader="org.codehaus.stax2.validation.XMLValidationSchemaFactory";register:="com.ctc.wstx.msv.W3CSchemaFactory" Low Product Manifest specification-title Woodstox Medium Product pom artifactid woodstox-core Highest Product pom developer email tatu@fasterxml.com Low Product pom developer id cowtowncoder Low Product pom developer name Tatu Saloranta Low Product pom groupid com.fasterxml.woodstox Highest Product pom name Woodstox High Product pom organization name FasterXML Low Product pom organization url http://fasterxml.com Low Product pom parent-artifactid oss-parent Medium Product pom parent-groupid com.fasterxml Medium Product pom url FasterXML/woodstox High Version file version 6.5.1 High Version Manifest Bundle-Version 6.5.1 High Version Manifest Implementation-Version 6.5.1 High Version pom parent-version 6.5.1 Low Version pom version 6.5.1 Highest
Description:
Java stub generator for WSDL License:
CPL: http://www.opensource.org/licenses/cpl1.0.txt File Path: /Users/coheigea/.m2/repository/wsdl4j/wsdl4j/1.6.3/wsdl4j-1.6.3.jar
MD5: cfc28d89625c5e88589aec7a9aee0208
SHA1: 6d106a6845a3d3477a1560008479312888e94f2f
SHA256: 740f448e6b3bc110e02f4a1e56fb57672e732d2ecaf29ae15835051ae8af4725
Referenced In Project/Scope: Apache WSS4J Streaming WS-SecurityPolicy:compile
wsdl4j-1.6.3.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.apache.wss4j/wss4j-ws-security-policy-stax@4.0.0-SNAPSHOT
Evidence Type Source Name Value Confidence Vendor file name wsdl4j High Vendor jar package name ibm Highest Vendor jar package name wsdl Highest Vendor Manifest Implementation-Vendor IBM High Vendor Manifest specification-vendor IBM (Java Community Process) Low Vendor pom artifactid wsdl4j Highest Vendor pom artifactid wsdl4j Low Vendor pom developer email wsdl4j-discuss@sourceforge.net Low Vendor pom developer id wsdl4j Medium Vendor pom developer name WSDL4J Medium Vendor pom groupid wsdl4j Highest Vendor pom name WSDL4J High Vendor pom url http://sf.net/projects/wsdl4j Highest Product file name wsdl4j High Product jar package name wsdl Highest Product Manifest Implementation-Title WSDL4J High Product Manifest specification-title JWSDL Medium Product pom artifactid wsdl4j Highest Product pom developer email wsdl4j-discuss@sourceforge.net Low Product pom developer id wsdl4j Low Product pom developer name WSDL4J Low Product pom groupid wsdl4j Highest Product pom name WSDL4J High Product pom url http://sf.net/projects/wsdl4j Medium Version file version 1.6.3 High Version Manifest Implementation-Version 1.6.3 High Version pom version 1.6.3 Highest
Description:
Apache XML Security for Java supports XML-Signature Syntax and Processing,
W3C Recommendation 12 February 2002, and XML Encryption Syntax and
Processing, W3C Recommendation 10 December 2002. Since version 1.4,
the library supports the standard Java API JSR-105: XML Digital Signature APIs.
License:
Apache-2.0: https://www.apache.org/licenses/LICENSE-2.0.txt File Path: /Users/coheigea/.m2/repository/org/apache/santuario/xmlsec/4.0.0/xmlsec-4.0.0.jar
MD5: ac2621b7ea7e96a4bcdfb3b64b943dd3
SHA1: dc932051604410a07e8a9f6c034ee7e9cdfac877
SHA256: d73c98ec44b6b2d5a797f5686a3787d194de01adbe7af827d1619f8efe55975f
Referenced In Projects/Scopes: Apache WSS4J Streaming WS-Security:compile Apache WSS4J DOM WS-Security:compile Apache WSS4J Web WS-Security:compile Apache WSS4J WS-Security Bindings:compile Apache WSS4J WS-Security Common:compile Apache WSS4J Streaming WS-SecurityPolicy:compile xmlsec-4.0.0.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.0-SNAPSHOT pkg:maven/org.apache.wss4j/wss4j-bindings@4.0.0-SNAPSHOT pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT pkg:maven/org.apache.wss4j/wss4j-bindings@4.0.0-SNAPSHOT pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.0-SNAPSHOT Evidence Type Source Name Value Confidence Vendor file name xmlsec High Vendor jar package name apache Highest Vendor jar package name encryption Highest Vendor jar package name security Highest Vendor jar package name signature Highest Vendor jar package name xml Highest Vendor Manifest build-jdk-spec 11 Low Vendor Manifest bundle-docurl https://www.apache.org/ Low Vendor Manifest bundle-symbolicname org.apache.santuario.xmlsec Medium Vendor Manifest Implementation-Vendor The Apache Software Foundation High Vendor Manifest Implementation-Vendor-Id org.apache Medium Vendor Manifest specification-vendor The Apache Software Foundation Low Vendor pom artifactid xmlsec Highest Vendor pom artifactid xmlsec Low Vendor pom groupid org.apache.santuario Highest Vendor pom name Apache XML Security for Java High Vendor pom organization name The Apache Software Foundation High Vendor pom organization url https://www.apache.org/ Medium Vendor pom parent-artifactid apache Low Vendor pom parent-groupid org.apache Medium Vendor pom url https://santuario.apache.org/ Highest Product file name xmlsec High Product jar package name apache Highest Product jar package name encryption Highest Product jar package name security Highest Product jar package name signature Highest Product jar package name xml Highest Product Manifest build-jdk-spec 11 Low Product Manifest bundle-docurl https://www.apache.org/ Low Product Manifest Bundle-Name Apache XML Security for Java Medium Product Manifest bundle-symbolicname org.apache.santuario.xmlsec Medium Product Manifest Implementation-Title Apache XML Security High Product Manifest specification-title Apache XML Security Medium Product pom artifactid xmlsec Highest Product pom groupid org.apache.santuario Highest Product pom name Apache XML Security for Java High Product pom organization name The Apache Software Foundation Low Product pom organization url https://www.apache.org/ Low Product pom parent-artifactid apache Medium Product pom parent-groupid org.apache Medium Product pom url https://santuario.apache.org/ Medium Version file version 4.0.0 High Version Manifest Bundle-Version 4.0.0 High Version Manifest Implementation-Version 4.0.0 High Version pom parent-version 4.0.0 Low Version pom version 4.0.0 Highest
pkg:maven/org.apache.santuario/xmlsec@4.0.0 (Confidence :High)cpe:2.3:a:apache:santuario_xml_security_for_java:4.0.0:*:*:*:*:*:*:* (Confidence :Low) suppress cpe:2.3:a:apache:xml_security_for_java:4.0.0:*:*:*:*:*:*:* (Confidence :Low) suppress