Dependency-Check is an open source tool performing a best effort analysis of 3rd party dependencies;
false positives and false negatives may exist in the analysis performed by the tool. Use of the tool and
the reporting provided constitutes acceptance for use in an AS IS condition, and there are NO warranties,
implied or otherwise, with regard to the analysis or its use. Any use of the tool and the reporting provided
is at the user’s risk. In no event shall the copyright holder or OWASP be held liable for any damages whatsoever
arising out of or in connection with the use of this tool, the analysis performed, or the resulting report.
Scan Information (
show all ):
dependency-check version : 12.1.8Report Generated On : Tue, 4 Nov 2025 16:23:21 GMTDependencies Scanned : 70 (54 unique)Vulnerable Dependencies : 0 Vulnerabilities Found : 0Vulnerabilities Suppressed : 0 ... NVD API Last Checked : 2025-11-04T16:23:16ZNVD API Last Modified : 2025-11-04T16:22:56ZSummary Summary of Vulnerable Dependencies (click to show all)
Description:
Implementation License:
http://www.eclipse.org/org/documents/edl-v10.php File Path: /Users/oat/.m2/repository/org/eclipse/angus/angus-activation/2.0.2/angus-activation-2.0.2.jar
MD5: 42bba74155dc773eca277ee7a16f74be
SHA1: 41f1e0ddd157c856926ed149ab837d110955a9fc
SHA256: 6dd3bcffc22bce83b07376a0e2e094e4964a3195d4118fb43e380ef35436cc1e
Referenced In Projects/Scopes: Apache WSS4J Streaming WS-Security:runtime Apache WSS4J Streaming WS-SecurityPolicy:runtime angus-activation-2.0.2.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/com.sun.xml.messaging.saaj/saaj-impl@3.0.4 pkg:maven/com.sun.xml.messaging.saaj/saaj-impl@3.0.4 Evidence Type Source Name Value Confidence Vendor file name angus-activation High Vendor jar package name activation Highest Vendor jar package name angus Highest Vendor jar package name eclipse Highest Vendor Manifest bundle-docurl https://www.eclipse.org Low Vendor Manifest bundle-symbolicname angus-activation Medium Vendor Manifest extension-name org.eclipse.angus Medium Vendor Manifest implementation-build-id 2.0.2-RELEASE-c08e320 Low Vendor Manifest Implementation-Vendor Eclipse Foundation High Vendor Manifest provide-capability osgi.serviceloader;osgi.serviceloader="jakarta.activation.spi.MailcapRegistryProvider",osgi.serviceloader;osgi.serviceloader="jakarta.activation.spi.MimeTypeRegistryProvider" Low Vendor Manifest specification-vendor Eclipse Foundation Low Vendor pom artifactid angus-activation Highest Vendor pom artifactid angus-activation Low Vendor pom groupid org.eclipse.angus Highest Vendor pom name Angus Activation Registries High Vendor pom parent-artifactid angus-activation-project Low Product file name angus-activation High Product jar package name activation Highest Product jar package name angus Highest Product jar package name eclipse Highest Product Manifest bundle-docurl https://www.eclipse.org Low Product Manifest Bundle-Name Angus Activation Registries Medium Product Manifest bundle-symbolicname angus-activation Medium Product Manifest extension-name org.eclipse.angus Medium Product Manifest implementation-build-id 2.0.2-RELEASE-c08e320 Low Product Manifest Implementation-Title Angus Activation Registries High Product Manifest provide-capability osgi.serviceloader;osgi.serviceloader="jakarta.activation.spi.MailcapRegistryProvider",osgi.serviceloader;osgi.serviceloader="jakarta.activation.spi.MimeTypeRegistryProvider" Low Product Manifest specification-title Jakarta Activation Specification Medium Product pom artifactid angus-activation Highest Product pom groupid org.eclipse.angus Highest Product pom name Angus Activation Registries High Product pom parent-artifactid angus-activation-project Medium Version file version 2.0.2 High Version Manifest Bundle-Version 2.0.2 High Version pom version 2.0.2 Highest
pkg:maven/org.eclipse.angus/angus-activation@2.0.2 (Confidence :High) cpe:2.3:a:eclipse:jakarta_mail:2.0.2:*:*:*:*:*:*:* (Confidence :Low) suppress Description:
The BC-FJA 2.1.* series is a FIPS 140-3 certified Java implementation with additional Intel native hardware support for AES-NI and SHA-256 where supported. The package has been certified to FIPS 140-3 level 1. This jar contains JCE provider and low-level API for the BC-FJA version 2.1.2, a patched version of BC-FJA-2.1.0, interim FIPS Certificate #4943. Please see certificate for certified platform details. License:
Bouncy Castle Licence: https://www.bouncycastle.org/licence.html File Path: /Users/oat/.m2/repository/org/bouncycastle/bc-fips/2.1.2/bc-fips-2.1.2.jar
MD5: 0e3ce147f5132e096e7c3b22ab23a079
SHA1: 061fbe8383f70489dda95a11a2a4739eb818ff2c
SHA256: 044fcd8a29d236edea8a5b414406cdae63b475f9ad9f05fe2dc904a277941115
Referenced In Project/Scope: Apache WSS4J WS-Security Common:compile
bc-fips-2.1.2.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.1
Evidence Type Source Name Value Confidence Vendor file name bc-fips High Vendor jar package name aes Highest Vendor jar package name bc Highest Vendor jar package name bouncycastle Highest Vendor jar package name certificate Highest Vendor jar package name fips Highest Vendor jar package name org Highest Vendor jar package name provider Highest Vendor Manifest application-library-allowable-codebase * Low Vendor Manifest application-name Bouncy Castle FIPS Provider Medium Vendor Manifest bundle-requiredexecutionenvironment JavaSE-1.8 Low Vendor Manifest bundle-symbolicname bcfips Medium Vendor Manifest caller-allowable-codebase * Low Vendor Manifest codebase * Low Vendor Manifest extension-name org.bouncycastle.bcfips Medium Vendor Manifest Implementation-Vendor BouncyCastle.org High Vendor Manifest Implementation-Vendor-Id org.bouncycastle Medium Vendor Manifest multi-release true Low Vendor Manifest permissions all-permissions Low Vendor Manifest specification-vendor BouncyCastle.org Low Vendor Manifest trusted-library true Low Vendor pom artifactid bc-fips Highest Vendor pom artifactid bc-fips Low Vendor pom developer email feedback-crypto@bouncycastle.org Low Vendor pom developer id feedback-crypto Medium Vendor pom developer name The Legion of the Bouncy Castle Inc. Medium Vendor pom groupid org.bouncycastle Highest Vendor pom name Bouncy Castle Provider (FIPS Distribution) High Vendor pom url https://www.bouncycastle.org/download/bouncy-castle-java-fips/ Highest Product file name bc-fips High Product jar package name aes Highest Product jar package name bc Highest Product jar package name bouncycastle Highest Product jar package name certificate Highest Product jar package name fips Highest Product jar package name org Highest Product jar package name permissions Highest Product jar package name provider Highest Product Manifest application-library-allowable-codebase * Low Product Manifest application-name Bouncy Castle FIPS Provider Medium Product Manifest Bundle-Name bcfips Medium Product Manifest bundle-requiredexecutionenvironment JavaSE-1.8 Low Product Manifest bundle-symbolicname bcfips Medium Product Manifest caller-allowable-codebase * Low Product Manifest codebase * Low Product Manifest extension-name org.bouncycastle.bcfips Medium Product Manifest multi-release true Low Product Manifest permissions all-permissions Low Product Manifest trusted-library true Low Product pom artifactid bc-fips Highest Product pom developer email feedback-crypto@bouncycastle.org Low Product pom developer id feedback-crypto Low Product pom developer name The Legion of the Bouncy Castle Inc. Low Product pom groupid org.bouncycastle Highest Product pom name Bouncy Castle Provider (FIPS Distribution) High Product pom url https://www.bouncycastle.org/download/bouncy-castle-java-fips/ Medium Version file version 2.1.2 High Version Manifest Bundle-Version 2.1.2 High Version Manifest Implementation-Version 2.1.2 High Version pom version 2.1.2 Highest
pkg:maven/org.bouncycastle/bc-fips@2.1.2 (Confidence :High) Description:
The Bouncy Castle Java APIs for CMS, PKCS, EAC, TSP, CMP, CRMF, OCSP, and certificate generation. This jar contains APIs for Java 1.8 and later. The APIs are designed primarily to be used in conjunction with the BC Java provider but may also be used with other providers providing cryptographic services. License:
Bouncy Castle Licence: https://www.bouncycastle.org/licence.html File Path: /Users/oat/.m2/repository/org/bouncycastle/bcpkix-jdk18on/1.82/bcpkix-jdk18on-1.82.jar
MD5: 9958d2f8aa097a31806756542e461079
SHA1: ad7b7155abac3e4e4f73579d5176c11f7659c560
SHA256: bdc723e20834832ac6af136cb5b5ff05e43b71d4fa151cc6510d9212ee086e63
Referenced In Projects/Scopes: Apache WSS4J Streaming WS-Security:compile Apache WSS4J Web WS-Security:compile Apache WSS4J WS-Security Common:compile Apache WSS4J Streaming WS-SecurityPolicy:compile bcpkix-jdk18on-1.82.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.1 pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.1 pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.1 pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.1 Evidence Type Source Name Value Confidence Vendor file name bcpkix-jdk18on High Vendor jar package name bc Highest Vendor jar package name bouncycastle Highest Vendor jar package name cmp Highest Vendor jar package name cms Highest Vendor jar package name crmf Highest Vendor jar package name eac Highest Vendor jar package name ocsp Highest Vendor jar package name pkcs Highest Vendor jar package name pkix Highest Vendor jar package name tsp Highest Vendor Manifest application-library-allowable-codebase * Low Vendor Manifest bundle-requiredexecutionenvironment JavaSE-1.8 Low Vendor Manifest bundle-symbolicname bcpkix Medium Vendor Manifest caller-allowable-codebase * Low Vendor Manifest codebase * Low Vendor Manifest multi-release true Low Vendor Manifest permissions all-permissions Low Vendor Manifest trusted-library true Low Vendor pom artifactid bcpkix-jdk18on Highest Vendor pom artifactid bcpkix-jdk18on Low Vendor pom developer email feedback-crypto@bouncycastle.org Low Vendor pom developer id feedback-crypto Medium Vendor pom developer name The Legion of the Bouncy Castle Inc. Medium Vendor pom groupid org.bouncycastle Highest Vendor pom name Bouncy Castle PKIX, CMS, EAC, TSP, PKCS, OCSP, CMP, and CRMF APIs High Vendor pom url https://www.bouncycastle.org/download/bouncy-castle-java/ Highest Product file name bcpkix-jdk18on High Product jar package name bc Highest Product jar package name bouncycastle Highest Product jar package name cmp Highest Product jar package name cms Highest Product jar package name crmf Highest Product jar package name eac Highest Product jar package name ocsp Highest Product jar package name pkcs Highest Product jar package name pkix Highest Product jar package name tsp Highest Product Manifest application-library-allowable-codebase * Low Product Manifest Bundle-Name bcpkix Medium Product Manifest bundle-requiredexecutionenvironment JavaSE-1.8 Low Product Manifest bundle-symbolicname bcpkix Medium Product Manifest caller-allowable-codebase * Low Product Manifest codebase * Low Product Manifest multi-release true Low Product Manifest permissions all-permissions Low Product Manifest trusted-library true Low Product pom artifactid bcpkix-jdk18on Highest Product pom developer email feedback-crypto@bouncycastle.org Low Product pom developer id feedback-crypto Low Product pom developer name The Legion of the Bouncy Castle Inc. Low Product pom groupid org.bouncycastle Highest Product pom name Bouncy Castle PKIX, CMS, EAC, TSP, PKCS, OCSP, CMP, and CRMF APIs High Product pom url https://www.bouncycastle.org/download/bouncy-castle-java/ Medium Version file version 1.82 High Version Manifest Bundle-Version 1.82 High Version pom version 1.82 Highest
Description:
The Bouncy Castle Crypto package is a Java implementation of cryptographic algorithms. This jar contains the JCA/JCE provider and low-level API for the BC Java version 1.82 for Java 1.8 and later. License:
Bouncy Castle Licence: https://www.bouncycastle.org/licence.html File Path: /Users/oat/.m2/repository/org/bouncycastle/bcprov-jdk18on/1.82/bcprov-jdk18on-1.82.jar
MD5: 73520ba13118979db17136db32a8c401
SHA1: e1118397395d21909a1b7b15120d0c2a68d7fd0c
SHA256: 14cde2fdfaa8890480a8e5b67aceef0c90f96682c1e23c133bafdc9e0b3255ce
Referenced In Projects/Scopes: Apache WSS4J Web WS-Security:compile Apache WSS4J WS-Security Common:compile Apache WSS4J Streaming WS-SecurityPolicy:compile bcprov-jdk18on-1.82.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.1 pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.1 pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.1 Evidence Type Source Name Value Confidence Vendor file name bcprov-jdk18on High Vendor jar package name bc Highest Vendor jar package name bouncycastle Highest Vendor jar package name crypto Highest Vendor jar package name jce Highest Vendor jar package name org Highest Vendor jar package name provider Highest Vendor Manifest application-library-allowable-codebase * Low Vendor Manifest bundle-requiredexecutionenvironment JavaSE-1.8 Low Vendor Manifest bundle-symbolicname bcprov Medium Vendor Manifest caller-allowable-codebase * Low Vendor Manifest codebase * Low Vendor Manifest multi-release true Low Vendor Manifest permissions all-permissions Low Vendor Manifest trusted-library true Low Vendor pom artifactid bcprov-jdk18on Highest Vendor pom artifactid bcprov-jdk18on Low Vendor pom developer email feedback-crypto@bouncycastle.org Low Vendor pom developer id feedback-crypto Medium Vendor pom developer name The Legion of the Bouncy Castle Inc. Medium Vendor pom groupid org.bouncycastle Highest Vendor pom name Bouncy Castle Provider High Vendor pom url https://www.bouncycastle.org/download/bouncy-castle-java/ Highest Product file name bcprov-jdk18on High Product jar package name bc Highest Product jar package name bouncycastle Highest Product jar package name crypto Highest Product jar package name jce Highest Product jar package name org Highest Product jar package name provider Highest Product Manifest application-library-allowable-codebase * Low Product Manifest Bundle-Name bcprov Medium Product Manifest bundle-requiredexecutionenvironment JavaSE-1.8 Low Product Manifest bundle-symbolicname bcprov Medium Product Manifest caller-allowable-codebase * Low Product Manifest codebase * Low Product Manifest multi-release true Low Product Manifest permissions all-permissions Low Product Manifest trusted-library true Low Product pom artifactid bcprov-jdk18on Highest Product pom developer email feedback-crypto@bouncycastle.org Low Product pom developer id feedback-crypto Low Product pom developer name The Legion of the Bouncy Castle Inc. Low Product pom groupid org.bouncycastle Highest Product pom name Bouncy Castle Provider High Product pom url https://www.bouncycastle.org/download/bouncy-castle-java/ Medium Version file version 1.82 High Version Manifest Bundle-Version 1.82 High Version pom version 1.82 Highest
Description:
The Bouncy Castle Java APIs for ASN.1 extension and utility APIs used to support bcpkix and bctls. This jar contains APIs for Java 1.8 and later. License:
Bouncy Castle Licence: https://www.bouncycastle.org/licence.html File Path: /Users/oat/.m2/repository/org/bouncycastle/bcutil-jdk18on/1.82/bcutil-jdk18on-1.82.jar
MD5: ca33a7c1e7e60f68333e127c75f5ab45
SHA1: 1850911d674c91ce6444783ff10478e2c6e9bbf9
SHA256: 4420691958ad1c0ba275a6d6d8a6317adbdbdc9277055b6a72aa89c88cda8c7d
Referenced In Projects/Scopes: Apache WSS4J Streaming WS-Security:compile Apache WSS4J Web WS-Security:compile Apache WSS4J WS-Security Common:compile Apache WSS4J Streaming WS-SecurityPolicy:compile bcutil-jdk18on-1.82.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.1 pkg:maven/org.bouncycastle/bcpkix-jdk18on@1.82 pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.1 pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.1 Evidence Type Source Name Value Confidence Vendor file name bcutil-jdk18on High Vendor jar package name bouncycastle Highest Vendor Manifest application-library-allowable-codebase * Low Vendor Manifest bundle-requiredexecutionenvironment JavaSE-1.8 Low Vendor Manifest bundle-symbolicname bcutil Medium Vendor Manifest caller-allowable-codebase * Low Vendor Manifest codebase * Low Vendor Manifest multi-release true Low Vendor Manifest permissions all-permissions Low Vendor Manifest trusted-library true Low Vendor pom artifactid bcutil-jdk18on Highest Vendor pom artifactid bcutil-jdk18on Low Vendor pom developer email feedback-crypto@bouncycastle.org Low Vendor pom developer id feedback-crypto Medium Vendor pom developer name The Legion of the Bouncy Castle Inc. Medium Vendor pom groupid org.bouncycastle Highest Vendor pom name Bouncy Castle ASN.1 Extension and Utility APIs High Vendor pom url https://www.bouncycastle.org/download/bouncy-castle-java/ Highest Product file name bcutil-jdk18on High Product jar package name bouncycastle Highest Product Manifest application-library-allowable-codebase * Low Product Manifest Bundle-Name bcutil Medium Product Manifest bundle-requiredexecutionenvironment JavaSE-1.8 Low Product Manifest bundle-symbolicname bcutil Medium Product Manifest caller-allowable-codebase * Low Product Manifest codebase * Low Product Manifest multi-release true Low Product Manifest permissions all-permissions Low Product Manifest trusted-library true Low Product pom artifactid bcutil-jdk18on Highest Product pom developer email feedback-crypto@bouncycastle.org Low Product pom developer id feedback-crypto Low Product pom developer name The Legion of the Bouncy Castle Inc. Low Product pom groupid org.bouncycastle Highest Product pom name Bouncy Castle ASN.1 Extension and Utility APIs High Product pom url https://www.bouncycastle.org/download/bouncy-castle-java/ Medium Version file version 1.82 High Version Manifest Bundle-Version 1.82 High Version pom version 1.82 Highest
License:
Apache License, Version 2.0: https://www.apache.org/licenses/LICENSE-2.0.txt File Path: /Users/oat/.m2/repository/javax/cache/cache-api/1.1.0/cache-api-1.1.0.jar
MD5: ac907ad12e9a7ac5d41abf703855002f
SHA1: 77bdcff7814076dfa61611b0db88487c515150b6
SHA256: 6c980ad1ae4a6dda3bdb62986c3ef5b41ccf766e12353587ee4e4307e27e155a
Referenced In Projects/Scopes: Apache WSS4J DOM WS-Security:runtime Apache WSS4J Streaming WS-Security:runtime Apache WSS4J Web WS-Security:runtime Apache WSS4J WS-Security Common:compile Apache WSS4J Streaming WS-SecurityPolicy:runtime cache-api-1.1.0.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.ehcache/ehcache@3.11.1 pkg:maven/org.apache.wss4j/wss4j-ws-security-stax@4.0.1 pkg:maven/org.ehcache/ehcache@3.11.1 pkg:maven/org.ehcache/ehcache@3.11.1 pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.1 Evidence Type Source Name Value Confidence Vendor file name cache-api High Vendor jar package name cache Highest Vendor jar package name javax Highest Vendor jar package name spi Highest Vendor Manifest bundle-symbolicname javax.cache.api Medium Vendor pom artifactid cache-api Highest Vendor pom artifactid cache-api Low Vendor pom groupid javax.cache Highest Vendor pom name JSR107 API and SPI High Vendor pom url jsr107/jsr107spec Highest Product file name cache-api High Product jar package name cache Highest Product jar package name javax Highest Product jar package name spi Highest Product Manifest Bundle-Name JSR107 API and SPI Medium Product Manifest bundle-symbolicname javax.cache.api Medium Product pom artifactid cache-api Highest Product pom groupid javax.cache Highest Product pom name JSR107 API and SPI High Product pom url jsr107/jsr107spec High Version file version 1.1.0 High Version Manifest Bundle-Version 1.1.0 High Version pom version 1.1.0 Highest
pkg:maven/javax.cache/cache-api@1.1.0 (Confidence :High) Description:
The Apache Commons Codec component contains encoders and decoders for
formats such as Base16, Base32, Base64, digest, and Hexadecimal. In addition to these
widely used encoders and decoders, the codec package also maintains a
collection of phonetic encoding utilities.
License:
https://www.apache.org/licenses/LICENSE-2.0.txt File Path: /Users/oat/.m2/repository/commons-codec/commons-codec/1.18.0/commons-codec-1.18.0.jar
MD5: 2abf189633424b9292fd57a3192c0ed5
SHA1: ee45d1cf6ec2cc2b809ff04b4dc7aec858e0df8f
SHA256: ba005f304cef92a3dede24a38ad5ac9b8afccf0d8f75839d6c1338634cf7f6e4
Referenced In Projects/Scopes: Apache WSS4J DOM WS-Security:compile Apache WSS4J Web WS-Security:compile Apache WSS4J WS-Security Bindings:compile Apache WSS4J WS-Security Common:compile Apache WSS4J Streaming WS-SecurityPolicy:compile commons-codec-1.18.0.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.apache.santuario/xmlsec@4.0.4 pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.1 pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.1 pkg:maven/org.apache.santuario/xmlsec@4.0.4 pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.1 Evidence Type Source Name Value Confidence Vendor file name commons-codec High Vendor jar package name apache Highest Vendor jar package name codec Highest Vendor jar package name commons Highest Vendor jar package name digest Highest Vendor Manifest automatic-module-name org.apache.commons.codec Medium Vendor Manifest build-jdk-spec 21 Low Vendor Manifest bundle-docurl https://commons.apache.org/proper/commons-codec/ Low Vendor Manifest bundle-symbolicname org.apache.commons.commons-codec Medium Vendor Manifest Implementation-Vendor The Apache Software Foundation High Vendor Manifest multi-release true Low Vendor Manifest specification-vendor The Apache Software Foundation Low Vendor pom artifactid commons-codec Highest Vendor pom artifactid commons-codec Low Vendor pom developer email bayard@apache.org Low Vendor pom developer email chtompki@apache.org Low Vendor pom developer email dgraham@apache.org Low Vendor pom developer email dlr@finemaltcoding.com Low Vendor pom developer email ggregory at apache.org Low Vendor pom developer email jon@collab.net Low Vendor pom developer email julius@apache.org Low Vendor pom developer email mattsicker@apache.org Low Vendor pom developer email rwaldhoff@apache.org Low Vendor pom developer email sanders@totalsync.com Low Vendor pom developer email tn@apache.org Low Vendor pom developer email tobrien@apache.org Low Vendor pom developer id bayard Medium Vendor pom developer id chtompki Medium Vendor pom developer id dgraham Medium Vendor pom developer id dlr Medium Vendor pom developer id ggregory Medium Vendor pom developer id jon Medium Vendor pom developer id julius Medium Vendor pom developer id mattsicker Medium Vendor pom developer id rwaldhoff Medium Vendor pom developer id sanders Medium Vendor pom developer id tn Medium Vendor pom developer id tobrien Medium Vendor pom developer name Daniel Rall Medium Vendor pom developer name David Graham Medium Vendor pom developer name Gary Gregory Medium Vendor pom developer name Henri Yandell Medium Vendor pom developer name Jon S. Stevens Medium Vendor pom developer name Julius Davies Medium Vendor pom developer name Matt Sicker Medium Vendor pom developer name Rob Tompkins Medium Vendor pom developer name Rodney Waldhoff Medium Vendor pom developer name Scott Sanders Medium Vendor pom developer name Thomas Neidhart Medium Vendor pom developer name Tim OBrien Medium Vendor pom developer org The Apache Software Foundation Medium Vendor pom developer org URL http://juliusdavies.ca/ Medium Vendor pom developer org URL https://www.apache.org/ Medium Vendor pom groupid commons-codec Highest Vendor pom name Apache Commons Codec High Vendor pom parent-artifactid commons-parent Low Vendor pom parent-groupid org.apache.commons Medium Vendor pom url https://commons.apache.org/proper/commons-codec/ Highest Product file name commons-codec High Product jar package name apache Highest Product jar package name codec Highest Product jar package name commons Highest Product jar package name digest Highest Product Manifest automatic-module-name org.apache.commons.codec Medium Product Manifest build-jdk-spec 21 Low Product Manifest bundle-docurl https://commons.apache.org/proper/commons-codec/ Low Product Manifest Bundle-Name Apache Commons Codec Medium Product Manifest bundle-symbolicname org.apache.commons.commons-codec Medium Product Manifest Implementation-Title Apache Commons Codec High Product Manifest multi-release true Low Product Manifest specification-title Apache Commons Codec Medium Product pom artifactid commons-codec Highest Product pom developer email bayard@apache.org Low Product pom developer email chtompki@apache.org Low Product pom developer email dgraham@apache.org Low Product pom developer email dlr@finemaltcoding.com Low Product pom developer email ggregory at apache.org Low Product pom developer email jon@collab.net Low Product pom developer email julius@apache.org Low Product pom developer email mattsicker@apache.org Low Product pom developer email rwaldhoff@apache.org Low Product pom developer email sanders@totalsync.com Low Product pom developer email tn@apache.org Low Product pom developer email tobrien@apache.org Low Product pom developer id bayard Low Product pom developer id chtompki Low Product pom developer id dgraham Low Product pom developer id dlr Low Product pom developer id ggregory Low Product pom developer id jon Low Product pom developer id julius Low Product pom developer id mattsicker Low Product pom developer id rwaldhoff Low Product pom developer id sanders Low Product pom developer id tn Low Product pom developer id tobrien Low Product pom developer name Daniel Rall Low Product pom developer name David Graham Low Product pom developer name Gary Gregory Low Product pom developer name Henri Yandell Low Product pom developer name Jon S. Stevens Low Product pom developer name Julius Davies Low Product pom developer name Matt Sicker Low Product pom developer name Rob Tompkins Low Product pom developer name Rodney Waldhoff Low Product pom developer name Scott Sanders Low Product pom developer name Thomas Neidhart Low Product pom developer name Tim OBrien Low Product pom developer org The Apache Software Foundation Low Product pom developer org URL http://juliusdavies.ca/ Low Product pom developer org URL https://www.apache.org/ Low Product pom groupid commons-codec Highest Product pom name Apache Commons Codec High Product pom parent-artifactid commons-parent Medium Product pom parent-groupid org.apache.commons Medium Product pom url https://commons.apache.org/proper/commons-codec/ Medium Version file version 1.18.0 High Version Manifest Bundle-Version 1.18.0 High Version Manifest Implementation-Version 1.18.0 High Version pom parent-version 1.18.0 Low Version pom version 1.18.0 Highest
pkg:maven/commons-codec/commons-codec@1.18.0 (Confidence :High) Description:
The Apache Commons Codec component contains encoders and decoders for
formats such as Base16, Base32, Base64, digest, and Hexadecimal. In addition to these
widely used encoders and decoders, the codec package also maintains a
collection of phonetic encoding utilities.
License:
https://www.apache.org/licenses/LICENSE-2.0.txt File Path: /Users/oat/.m2/repository/commons-codec/commons-codec/1.19.0/commons-codec-1.19.0.jar
MD5: e46fa78c69544eb6239c4e8447e72544
SHA1: 8c0dbe3ae883fceda9b50a6c76e745e548073388
SHA256: 5c3881e4f556855e9c532927ee0c9dfde94cc66760d5805c031a59887070af5f
Referenced In Project/Scope: Apache WSS4J Streaming WS-Security:compile
commons-codec-1.19.0.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.apache.commons/commons-compress@1.28.0
Evidence Type Source Name Value Confidence Vendor file name commons-codec High Vendor jar package name apache Highest Vendor jar package name codec Highest Vendor jar package name commons Highest Vendor jar package name digest Highest Vendor Manifest automatic-module-name org.apache.commons.codec Medium Vendor Manifest build-jdk-spec 21 Low Vendor Manifest bundle-docurl https://commons.apache.org/proper/commons-codec/ Low Vendor Manifest bundle-symbolicname org.apache.commons.commons-codec Medium Vendor Manifest Implementation-Vendor The Apache Software Foundation High Vendor Manifest multi-release true Low Vendor Manifest specification-vendor The Apache Software Foundation Low Vendor pom artifactid commons-codec Highest Vendor pom artifactid commons-codec Low Vendor pom developer email bayard@apache.org Low Vendor pom developer email chtompki@apache.org Low Vendor pom developer email dgraham@apache.org Low Vendor pom developer email dlr@finemaltcoding.com Low Vendor pom developer email ggregory at apache.org Low Vendor pom developer email jon@collab.net Low Vendor pom developer email julius@apache.org Low Vendor pom developer email mattsicker@apache.org Low Vendor pom developer email rwaldhoff@apache.org Low Vendor pom developer email sanders@totalsync.com Low Vendor pom developer email tn@apache.org Low Vendor pom developer email tobrien@apache.org Low Vendor pom developer id bayard Medium Vendor pom developer id chtompki Medium Vendor pom developer id dgraham Medium Vendor pom developer id dlr Medium Vendor pom developer id ggregory Medium Vendor pom developer id jon Medium Vendor pom developer id julius Medium Vendor pom developer id mattsicker Medium Vendor pom developer id rwaldhoff Medium Vendor pom developer id sanders Medium Vendor pom developer id tn Medium Vendor pom developer id tobrien Medium Vendor pom developer name Daniel Rall Medium Vendor pom developer name David Graham Medium Vendor pom developer name Gary Gregory Medium Vendor pom developer name Henri Yandell Medium Vendor pom developer name Jon S. Stevens Medium Vendor pom developer name Julius Davies Medium Vendor pom developer name Matt Sicker Medium Vendor pom developer name Rob Tompkins Medium Vendor pom developer name Rodney Waldhoff Medium Vendor pom developer name Scott Sanders Medium Vendor pom developer name Thomas Neidhart Medium Vendor pom developer name Tim OBrien Medium Vendor pom developer org The Apache Software Foundation Medium Vendor pom developer org URL http://juliusdavies.ca/ Medium Vendor pom developer org URL https://www.apache.org/ Medium Vendor pom groupid commons-codec Highest Vendor pom name Apache Commons Codec High Vendor pom parent-artifactid commons-parent Low Vendor pom parent-groupid org.apache.commons Medium Vendor pom url https://commons.apache.org/proper/commons-codec/ Highest Product file name commons-codec High Product jar package name apache Highest Product jar package name codec Highest Product jar package name commons Highest Product jar package name digest Highest Product Manifest automatic-module-name org.apache.commons.codec Medium Product Manifest build-jdk-spec 21 Low Product Manifest bundle-docurl https://commons.apache.org/proper/commons-codec/ Low Product Manifest Bundle-Name Apache Commons Codec Medium Product Manifest bundle-symbolicname org.apache.commons.commons-codec Medium Product Manifest Implementation-Title Apache Commons Codec High Product Manifest multi-release true Low Product Manifest specification-title Apache Commons Codec Medium Product pom artifactid commons-codec Highest Product pom developer email bayard@apache.org Low Product pom developer email chtompki@apache.org Low Product pom developer email dgraham@apache.org Low Product pom developer email dlr@finemaltcoding.com Low Product pom developer email ggregory at apache.org Low Product pom developer email jon@collab.net Low Product pom developer email julius@apache.org Low Product pom developer email mattsicker@apache.org Low Product pom developer email rwaldhoff@apache.org Low Product pom developer email sanders@totalsync.com Low Product pom developer email tn@apache.org Low Product pom developer email tobrien@apache.org Low Product pom developer id bayard Low Product pom developer id chtompki Low Product pom developer id dgraham Low Product pom developer id dlr Low Product pom developer id ggregory Low Product pom developer id jon Low Product pom developer id julius Low Product pom developer id mattsicker Low Product pom developer id rwaldhoff Low Product pom developer id sanders Low Product pom developer id tn Low Product pom developer id tobrien Low Product pom developer name Daniel Rall Low Product pom developer name David Graham Low Product pom developer name Gary Gregory Low Product pom developer name Henri Yandell Low Product pom developer name Jon S. Stevens Low Product pom developer name Julius Davies Low Product pom developer name Matt Sicker Low Product pom developer name Rob Tompkins Low Product pom developer name Rodney Waldhoff Low Product pom developer name Scott Sanders Low Product pom developer name Thomas Neidhart Low Product pom developer name Tim OBrien Low Product pom developer org The Apache Software Foundation Low Product pom developer org URL http://juliusdavies.ca/ Low Product pom developer org URL https://www.apache.org/ Low Product pom groupid commons-codec Highest Product pom name Apache Commons Codec High Product pom parent-artifactid commons-parent Medium Product pom parent-groupid org.apache.commons Medium Product pom url https://commons.apache.org/proper/commons-codec/ Medium Version file version 1.19.0 High Version Manifest Bundle-Version 1.19.0 High Version Manifest Implementation-Version 1.19.0 High Version pom parent-version 1.19.0 Low Version pom version 1.19.0 Highest
pkg:maven/commons-codec/commons-codec@1.19.0 (Confidence :High) Description:
The spectacular complement to the Bouncy Castle crypto API for Java. License:
Apache 2: https://www.apache.org/licenses/LICENSE-2.0.txt
GNU Lesser General Public License: https://www.gnu.org/licenses/lgpl-3.0.txt File Path: /Users/oat/.m2/repository/org/cryptacular/cryptacular/1.2.7/cryptacular-1.2.7.jar
MD5: 9171ea0e9f71e98984def0861f5a9a7b
SHA1: 08e2849cd0cc8856899c1190ec8bc9f261fb215e
SHA256: fd5e655cc48c2c4568d8a40770dc07442316d61bcc1c24f199b84deee7e4f727
Referenced In Projects/Scopes: Apache WSS4J Streaming WS-Security:compile Apache WSS4J DOM WS-Security:compile Apache WSS4J Web WS-Security:compile Apache WSS4J WS-Security Common:compile Apache WSS4J Streaming WS-SecurityPolicy:compile cryptacular-1.2.7.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.1 pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.1 pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.1 pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.1 pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.1 Evidence Type Source Name Value Confidence Vendor file name cryptacular High Vendor hint analyzer vendor Virginia Tech Highest Vendor hint analyzer vendor vt Highest Vendor jar package name cryptacular Highest Vendor Manifest build-jdk-spec 1.8 Low Vendor Manifest bundle-symbolicname org.cryptacular Medium Vendor pom artifactid cryptacular Highest Vendor pom artifactid cryptacular Low Vendor pom developer email dfisher@vt.edu Low Vendor pom developer email serac@vt.edu Low Vendor pom developer id dfisher Medium Vendor pom developer id serac Medium Vendor pom developer name Daniel Fisher Medium Vendor pom developer name Marvin S. Addison Medium Vendor pom developer org Virginia Tech Medium Vendor pom developer org URL https://www.vt.edu Medium Vendor pom groupid org.cryptacular Highest Vendor pom name Cryptacular Library High Vendor pom url https://www.cryptacular.org Highest Product file name cryptacular High Product jar package name cryptacular Highest Product Manifest build-jdk-spec 1.8 Low Product Manifest Bundle-Name Cryptacular Library Medium Product Manifest bundle-symbolicname org.cryptacular Medium Product pom artifactid cryptacular Highest Product pom developer email dfisher@vt.edu Low Product pom developer email serac@vt.edu Low Product pom developer id dfisher Low Product pom developer id serac Low Product pom developer name Daniel Fisher Low Product pom developer name Marvin S. Addison Low Product pom developer org Virginia Tech Low Product pom developer org URL https://www.vt.edu Low Product pom groupid org.cryptacular Highest Product pom name Cryptacular Library High Product pom url https://www.cryptacular.org Medium Version file version 1.2.7 High Version Manifest Bundle-Version 1.2.7 High Version pom version 1.2.7 Highest
Description:
The JSR-107 compatibility module of Ehcache 3 License:
The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt File Path: /Users/oat/.m2/repository/org/ehcache/ehcache/3.11.1/ehcache-3.11.1-jakarta.jar/META-INF/maven/org.ehcache.modules/ehcache-107/pom.xml
MD5: 69d49220255e98f45e11d0cdd116b159
SHA1: 317e58355e5657079f22431bcd07e1af8417c983
SHA256: 159bc49a0688fbdf66822eeb461186db6dec66871ba8d58af076b5af71a69f95
Referenced In Projects/Scopes: Apache WSS4J DOM WS-Security:runtime Apache WSS4J Streaming WS-Security:runtime Apache WSS4J Web WS-Security:runtime Apache WSS4J WS-Security Common:compile Apache WSS4J Streaming WS-SecurityPolicy:runtime Evidence Type Source Name Value Confidence Vendor pom artifactid ehcache-107 Low Vendor pom developer email tc-oss-dg@ibm.com Low Vendor pom developer name Terracotta Engineers Medium Vendor pom developer org IBM Corp. Medium Vendor pom developer org URL http://ehcache.org Medium Vendor pom groupid org.ehcache.modules Highest Vendor pom name Ehcache 3 JSR-107 module High Vendor pom organization name IBM Corp. High Vendor pom organization url http://terracotta.org Medium Vendor pom url http://ehcache.org Highest Product pom artifactid ehcache-107 Highest Product pom developer email tc-oss-dg@ibm.com Low Product pom developer name Terracotta Engineers Low Product pom developer org IBM Corp. Low Product pom developer org URL http://ehcache.org Low Product pom groupid org.ehcache.modules Highest Product pom name Ehcache 3 JSR-107 module High Product pom organization name IBM Corp. Low Product pom organization url http://terracotta.org Low Product pom url http://ehcache.org Medium Version pom version 3.11.1 Highest
pkg:maven/org.ehcache.modules/ehcache-107@3.11.1 (Confidence :High) Description:
The API module of Ehcache 3 License:
The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt File Path: /Users/oat/.m2/repository/org/ehcache/ehcache/3.11.1/ehcache-3.11.1-jakarta.jar/META-INF/maven/org.ehcache.modules/ehcache-api/pom.xml
MD5: cac9e73d0010a8f3c599aee8494e5757
SHA1: 3ebbff98c39dae5d5f096558332e02fc9893b5d0
SHA256: d38fedd47de2043c2be99b0cfc49658f26771a848c8031964532b85ee2fb3d0a
Referenced In Projects/Scopes: Apache WSS4J DOM WS-Security:runtime Apache WSS4J Streaming WS-Security:runtime Apache WSS4J Web WS-Security:runtime Apache WSS4J WS-Security Common:compile Apache WSS4J Streaming WS-SecurityPolicy:runtime Evidence Type Source Name Value Confidence Vendor pom artifactid ehcache-api Low Vendor pom developer email tc-oss-dg@ibm.com Low Vendor pom developer name Terracotta Engineers Medium Vendor pom developer org IBM Corp. Medium Vendor pom developer org URL http://ehcache.org Medium Vendor pom groupid org.ehcache.modules Highest Vendor pom name Ehcache 3 API module High Vendor pom organization name IBM Corp. High Vendor pom organization url http://terracotta.org Medium Vendor pom url http://ehcache.org Highest Product pom artifactid ehcache-api Highest Product pom developer email tc-oss-dg@ibm.com Low Product pom developer name Terracotta Engineers Low Product pom developer org IBM Corp. Low Product pom developer org URL http://ehcache.org Low Product pom groupid org.ehcache.modules Highest Product pom name Ehcache 3 API module High Product pom organization name IBM Corp. Low Product pom organization url http://terracotta.org Low Product pom url http://ehcache.org Medium Version pom version 3.11.1 Highest
pkg:maven/org.ehcache.modules/ehcache-api@3.11.1 (Confidence :High) Description:
The Core module of Ehcache 3 License:
The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt File Path: /Users/oat/.m2/repository/org/ehcache/ehcache/3.11.1/ehcache-3.11.1-jakarta.jar/META-INF/maven/org.ehcache.modules/ehcache-core/pom.xml
MD5: ac1d8a477ff15429b7669a30dc5ea863
SHA1: fb036cfe2ee4268c85cb7cef46650f785fd561e4
SHA256: 8dc20a27511a381b2210346534284b64337f3210c50b82ea4c99a616d3167f5c
Referenced In Projects/Scopes: Apache WSS4J DOM WS-Security:runtime Apache WSS4J Streaming WS-Security:runtime Apache WSS4J Web WS-Security:runtime Apache WSS4J WS-Security Common:compile Apache WSS4J Streaming WS-SecurityPolicy:runtime Evidence Type Source Name Value Confidence Vendor pom artifactid ehcache-core Low Vendor pom developer email tc-oss-dg@ibm.com Low Vendor pom developer name Terracotta Engineers Medium Vendor pom developer org IBM Corp. Medium Vendor pom developer org URL http://ehcache.org Medium Vendor pom groupid org.ehcache.modules Highest Vendor pom name Ehcache 3 Core module High Vendor pom organization name IBM Corp. High Vendor pom organization url http://terracotta.org Medium Vendor pom url http://ehcache.org Highest Product pom artifactid ehcache-core Highest Product pom developer email tc-oss-dg@ibm.com Low Product pom developer name Terracotta Engineers Low Product pom developer org IBM Corp. Low Product pom developer org URL http://ehcache.org Low Product pom groupid org.ehcache.modules Highest Product pom name Ehcache 3 Core module High Product pom organization name IBM Corp. Low Product pom organization url http://terracotta.org Low Product pom url http://ehcache.org Medium Version pom version 3.11.1 Highest
pkg:maven/org.ehcache.modules/ehcache-core@3.11.1 (Confidence :High) Description:
The implementation module of Ehcache 3 License:
The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt File Path: /Users/oat/.m2/repository/org/ehcache/ehcache/3.11.1/ehcache-3.11.1-jakarta.jar/META-INF/maven/org.ehcache.modules/ehcache-impl/pom.xml
MD5: 6df36c3920e870734978fee4e2bf5b96
SHA1: fccbe11f2dccdcdb9458079ea103d6e5e84b661c
SHA256: 54cf58d6b1d749831d416b3bc14396c6ab90ea61d3e7807b190653c86e82ca50
Referenced In Projects/Scopes: Apache WSS4J DOM WS-Security:runtime Apache WSS4J Streaming WS-Security:runtime Apache WSS4J Web WS-Security:runtime Apache WSS4J WS-Security Common:compile Apache WSS4J Streaming WS-SecurityPolicy:runtime Evidence Type Source Name Value Confidence Vendor pom artifactid ehcache-impl Low Vendor pom developer email tc-oss-dg@ibm.com Low Vendor pom developer name Terracotta Engineers Medium Vendor pom developer org IBM Corp. Medium Vendor pom developer org URL http://ehcache.org Medium Vendor pom groupid org.ehcache.modules Highest Vendor pom name Ehcache 3 Implementation module High Vendor pom organization name IBM Corp. High Vendor pom organization url http://terracotta.org Medium Vendor pom url http://ehcache.org Highest Product pom artifactid ehcache-impl Highest Product pom developer email tc-oss-dg@ibm.com Low Product pom developer name Terracotta Engineers Low Product pom developer org IBM Corp. Low Product pom developer org URL http://ehcache.org Low Product pom groupid org.ehcache.modules Highest Product pom name Ehcache 3 Implementation module High Product pom organization name IBM Corp. Low Product pom organization url http://terracotta.org Low Product pom url http://ehcache.org Medium Version pom version 3.11.1 Highest
pkg:maven/org.ehcache.modules/ehcache-impl@3.11.1 (Confidence :High) Description:
This module contains the XML parsing SPI for Ehcache 3. This allows Ehcache extension services to provide XML configuration capabilities. License:
The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt File Path: /Users/oat/.m2/repository/org/ehcache/ehcache/3.11.1/ehcache-3.11.1-jakarta.jar/META-INF/maven/org.ehcache.modules/ehcache-xml-spi/pom.xml
MD5: 6fbd8f0856dfb79b3fc832e301297545
SHA1: 80e3d7a9571cb883869cdf231a397932f803bc5d
SHA256: d9522790cfff78a6771dbcf2994c6cc3c979ef68ec189fdd936f996229b9b66c
Referenced In Projects/Scopes: Apache WSS4J DOM WS-Security:runtime Apache WSS4J Streaming WS-Security:runtime Apache WSS4J Web WS-Security:runtime Apache WSS4J WS-Security Common:compile Apache WSS4J Streaming WS-SecurityPolicy:runtime Evidence Type Source Name Value Confidence Vendor pom artifactid ehcache-xml-spi Low Vendor pom developer email tc-oss-dg@ibm.com Low Vendor pom developer name Terracotta Engineers Medium Vendor pom developer org IBM Corp. Medium Vendor pom developer org URL http://ehcache.org Medium Vendor pom groupid org.ehcache.modules Highest Vendor pom name Ehcache 3 XML Parsing SPI Module High Vendor pom organization name IBM Corp. High Vendor pom organization url http://terracotta.org Medium Vendor pom url http://ehcache.org Highest Product pom artifactid ehcache-xml-spi Highest Product pom developer email tc-oss-dg@ibm.com Low Product pom developer name Terracotta Engineers Low Product pom developer org IBM Corp. Low Product pom developer org URL http://ehcache.org Low Product pom groupid org.ehcache.modules Highest Product pom name Ehcache 3 XML Parsing SPI Module High Product pom organization name IBM Corp. Low Product pom organization url http://terracotta.org Low Product pom url http://ehcache.org Medium Version pom version 3.11.1 Highest
pkg:maven/org.ehcache.modules/ehcache-xml-spi@3.11.1 (Confidence :High) Description:
The module containing all XML parsing logic Ehcache 3 License:
The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt File Path: /Users/oat/.m2/repository/org/ehcache/ehcache/3.11.1/ehcache-3.11.1-jakarta.jar/META-INF/maven/org.ehcache.modules/ehcache-xml/pom.xml
MD5: bcf2330b32a208b8a868789aadc39c2d
SHA1: 9b13fe0e56d688075c0d81e7ef140ded68c0b5de
SHA256: 244840d61dbfabf3efd143c88c2463c5d827faaf08fca2a0afbcb2619683221b
Referenced In Projects/Scopes: Apache WSS4J DOM WS-Security:runtime Apache WSS4J Streaming WS-Security:runtime Apache WSS4J Web WS-Security:runtime Apache WSS4J WS-Security Common:compile Apache WSS4J Streaming WS-SecurityPolicy:runtime Evidence Type Source Name Value Confidence Vendor pom artifactid ehcache-xml Low Vendor pom developer email tc-oss-dg@ibm.com Low Vendor pom developer name Terracotta Engineers Medium Vendor pom developer org IBM Corp. Medium Vendor pom developer org URL http://ehcache.org Medium Vendor pom groupid org.ehcache.modules Highest Vendor pom name Ehcache 3 XML Parsing module High Vendor pom organization name IBM Corp. High Vendor pom organization url http://terracotta.org Medium Vendor pom url http://ehcache.org Highest Product pom artifactid ehcache-xml Highest Product pom developer email tc-oss-dg@ibm.com Low Product pom developer name Terracotta Engineers Low Product pom developer org IBM Corp. Low Product pom developer org URL http://ehcache.org Low Product pom groupid org.ehcache.modules Highest Product pom name Ehcache 3 XML Parsing module High Product pom organization name IBM Corp. Low Product pom organization url http://terracotta.org Low Product pom url http://ehcache.org Medium Version pom version 3.11.1 Highest
pkg:maven/org.ehcache.modules/ehcache-xml@3.11.1 (Confidence :High) Description:
SizeOf engine, extracted from Ehcache License:
The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt File Path: /Users/oat/.m2/repository/org/ehcache/ehcache/3.11.1/ehcache-3.11.1-jakarta.jar/META-INF/maven/org.ehcache/sizeof/pom.xml
MD5: 45aae79fee91865112d993701d03f4aa
SHA1: 62a5cd05389cc40675e2325849ec6cc28345b1de
SHA256: 28aff0ee120d4d5128ada923c64b3330690bf5355918940fb1f4e6610370675e
Referenced In Projects/Scopes: Apache WSS4J DOM WS-Security:runtime Apache WSS4J Streaming WS-Security:runtime Apache WSS4J Web WS-Security:runtime Apache WSS4J WS-Security Common:compile Apache WSS4J Streaming WS-SecurityPolicy:runtime Evidence Type Source Name Value Confidence Vendor pom artifactid sizeof Low Vendor pom groupid org.ehcache Highest Vendor pom name Ehcache SizeOf Engine High Vendor pom organization name Terracotta High Vendor pom organization url http://terracotta.org Medium Vendor pom url ehcache/sizeof Highest Product pom artifactid sizeof Highest Product pom groupid org.ehcache Highest Product pom name Ehcache SizeOf Engine High Product pom organization name Terracotta Low Product pom organization url http://terracotta.org Low Product pom url ehcache/sizeof High Version pom version 0.4.4 Highest
pkg:maven/org.ehcache/sizeof@0.4.4 (Confidence :High) File Path: /Users/oat/.m2/repository/org/ehcache/ehcache/3.11.1/ehcache-3.11.1-jakarta.jar/META-INF/maven/org.terracotta/fast-restartable-store/pom.xmlMD5: 6b02cd4185fde1fb20b3cdbab3325d87SHA1: 4bc8d02012766f8b123d7360379de99f51508cc9SHA256: 4ac86b46469d2db241b24c1a3478147e2873f387d2c40f8df067355aaef9216cReferenced In Projects/Scopes:
Apache WSS4J DOM WS-Security:runtime Apache WSS4J Streaming WS-Security:runtime Apache WSS4J Web WS-Security:runtime Apache WSS4J WS-Security Common:compile Apache WSS4J Streaming WS-SecurityPolicy:runtime Evidence Type Source Name Value Confidence Vendor pom artifactid fast-restartable-store Low Vendor pom groupid org.terracotta Highest Vendor pom name fast-restartable-store High Vendor pom parent-artifactid terracotta-parent Low Product pom artifactid fast-restartable-store Highest Product pom groupid org.terracotta Highest Product pom name fast-restartable-store High Product pom parent-artifactid terracotta-parent Medium Version pom parent-version 1.6.11 Low Version pom version 1.6.11 Highest
pkg:maven/org.terracotta/fast-restartable-store@1.6.11 (Confidence :High) Description:
A library that offers data structures allocated off the java heap. License:
The Apache License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt File Path: /Users/oat/.m2/repository/org/ehcache/ehcache/3.11.1/ehcache-3.11.1-jakarta.jar/META-INF/maven/org.terracotta/offheap-store/pom.xml
MD5: a43e704e388e597cb076102032be0c76
SHA1: b074181f248b573cb3fec2595e2a8de668b792a6
SHA256: 1de8312cd933d0db3ca8c3fc6a7976dd7ae52be2e6a8d6c2c28e937c1daf9f06
Referenced In Projects/Scopes: Apache WSS4J DOM WS-Security:runtime Apache WSS4J Streaming WS-Security:runtime Apache WSS4J Web WS-Security:runtime Apache WSS4J WS-Security Common:compile Apache WSS4J Streaming WS-SecurityPolicy:runtime Evidence Type Source Name Value Confidence Vendor pom artifactid offheap-store Low Vendor pom developer email chris.w.dennis@ibm.com Low Vendor pom developer name Chris Dennis Medium Vendor pom developer org Super iPaaS Integration LLC, an IBM Company Medium Vendor pom developer org URL https://terracotta.org Medium Vendor pom groupid org.terracotta Highest Vendor pom name Terracotta Off-Heap Store High Vendor pom parent-artifactid terracotta-parent Low Vendor pom url Terracotta-OSS/offheap-store/ Highest Product pom artifactid offheap-store Highest Product pom developer email chris.w.dennis@ibm.com Low Product pom developer name Chris Dennis Low Product pom developer org Super iPaaS Integration LLC, an IBM Company Low Product pom developer org URL https://terracotta.org Low Product pom groupid org.terracotta Highest Product pom name Terracotta Off-Heap Store High Product pom parent-artifactid terracotta-parent Medium Product pom url Terracotta-OSS/offheap-store/ High Version pom parent-version 2.5.6 Low Version pom version 2.5.6 Highest
pkg:maven/org.terracotta/offheap-store@2.5.6 (Confidence :High) cpe:2.3:a:ibm:i:2.5.6:*:*:*:*:*:*:* (Confidence :Low) suppress Description:
A statistics framework used inside Ehcache and the Terracotta products License:
The Apache License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt File Path: /Users/oat/.m2/repository/org/ehcache/ehcache/3.11.1/ehcache-3.11.1-jakarta.jar/META-INF/maven/org.terracotta/statistics/pom.xml
MD5: f37819fc484173ffac698dc152b81ed9
SHA1: 13c087688b5b42b80584b31aa5a04b1bb7397eaa
SHA256: e8ae82b207c7b8afcca22f2171edb1c0bfabf8cc670a71ecbf3ac890e247b8bb
Referenced In Projects/Scopes: Apache WSS4J DOM WS-Security:runtime Apache WSS4J Streaming WS-Security:runtime Apache WSS4J Web WS-Security:runtime Apache WSS4J WS-Security Common:compile Apache WSS4J Streaming WS-SecurityPolicy:runtime Evidence Type Source Name Value Confidence Vendor pom artifactid statistics Low Vendor pom developer email tc-oss-dg@ibm.com Low Vendor pom developer name Terracotta Engineers Medium Vendor pom developer org Super iPaaS Integration LLC, an IBM Company Medium Vendor pom developer org URL https://terracotta.org Medium Vendor pom groupid org.terracotta Highest Vendor pom name Terracotta Statistics High Vendor pom url Terracotta-OSS/statistics Highest Product pom artifactid statistics Highest Product pom developer email tc-oss-dg@ibm.com Low Product pom developer name Terracotta Engineers Low Product pom developer org Super iPaaS Integration LLC, an IBM Company Low Product pom developer org URL https://terracotta.org Low Product pom groupid org.terracotta Highest Product pom name Terracotta Statistics High Product pom url Terracotta-OSS/statistics High Version pom version 2.1.3 Highest
Description:
Utility classes/methods for common Java tasks License:
The Apache License, Version 2.0: https://www.apache.org/licenses/LICENSE-2.0.txt File Path: /Users/oat/.m2/repository/org/ehcache/ehcache/3.11.1/ehcache-3.11.1-jakarta.jar/META-INF/maven/org.terracotta/terracotta-utilities-tools/pom.xml
MD5: e11d6f2d657627eb413475c95e9df3ef
SHA1: db963e45276dbf5744aa20c9d7d612d604955a49
SHA256: c38800d27bfbb721a1dd30659647340396863cded000c4185c31b3544064267e
Referenced In Projects/Scopes: Apache WSS4J DOM WS-Security:runtime Apache WSS4J Streaming WS-Security:runtime Apache WSS4J Web WS-Security:runtime Apache WSS4J WS-Security Common:compile Apache WSS4J Streaming WS-SecurityPolicy:runtime Evidence Type Source Name Value Confidence Vendor pom artifactid terracotta-utilities-tools Low Vendor pom developer email tc-oss-dg@ibm.com Low Vendor pom developer name Terracotta Engineers Medium Vendor pom developer org Super iPaaS Integration LLC, an IBM Company Medium Vendor pom developer org URL https://terracotta.org Medium Vendor pom groupid org.terracotta Highest Vendor pom name Terracotta Utilities Tools High Vendor pom url terracotta-oss/terracotta-utilities/ Highest Product pom artifactid terracotta-utilities-tools Highest Product pom developer email tc-oss-dg@ibm.com Low Product pom developer name Terracotta Engineers Low Product pom developer org Super iPaaS Integration LLC, an IBM Company Low Product pom developer org URL https://terracotta.org Low Product pom groupid org.terracotta Highest Product pom name Terracotta Utilities Tools High Product pom url terracotta-oss/terracotta-utilities/ High Version pom version 0.0.19 Highest
Description:
Ehcache is an open-source caching library, compliant with the JSR-107 standard. License:
LICENSE File Path: /Users/oat/.m2/repository/org/ehcache/ehcache/3.11.1/ehcache-3.11.1-jakarta.jar
MD5: 827a3140a906560e77cc4a3e16bcdffb
SHA1: e2ae87f1cf97df0caea62ce9c5b8322a96a6aff6
SHA256: 2fcafd8c450135d507470a02a3077f28d51e6ef347f2a85ac9b4e23f4bc6e6b1
Referenced In Projects/Scopes: Apache WSS4J DOM WS-Security:runtime Apache WSS4J Streaming WS-Security:runtime Apache WSS4J Web WS-Security:runtime Apache WSS4J WS-Security Common:compile Apache WSS4J Streaming WS-SecurityPolicy:runtime ehcache-3.11.1-jakarta.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.apache.wss4j/wss4j-ws-security-stax@4.0.1 pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.1 pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.1 pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.1 pkg:maven/org.apache.wss4j/wss4j-ws-security-stax@4.0.1 Evidence Type Source Name Value Confidence Vendor file name ehcache High Vendor jar package name ehcache Highest Vendor jar package name ehcache Low Vendor jar package name org Highest Vendor Manifest bundle-docurl http://ehcache.org Low Vendor Manifest bundle-symbolicname org.ehcache Medium Vendor Manifest implementation-revision f5d1a7e4189e1bcd55cdb6a6c1d256355693dff5 Low Vendor Manifest Implementation-Vendor-Id org.ehcache Medium Vendor Manifest provide-capability osgi.service;objectClass:List="javax.cache.spi.CachingProvider";uses:="javax.cache.spi",osgi.service;objectClass:List="org.ehcache.core.spi.service.ServiceFactory";uses:="org.ehcache.core.spi.service",osgi.service;objectClass:List="org.ehcache.xml.CacheManagerServiceConfigurationParser";uses:="org.ehcache.xml",osgi.service;objectClass:List="org.ehcache.xml.CacheServiceConfigurationParser";uses:="org.ehcache.xml" Low Vendor Manifest service-component OSGI-INF/*.xml Low Vendor pom artifactid ehcache Highest Vendor pom groupid org.ehcache Highest Product file name ehcache High Product jar package name cache Highest Product jar package name cachemanagerserviceconfigurationparser Highest Product jar package name cacheserviceconfigurationparser Highest Product jar package name core Highest Product jar package name ehcache Highest Product jar package name org Highest Product jar package name osgi Highest Product jar package name service Highest Product jar package name spi Highest Product jar package name xml Highest Product Manifest bundle-docurl http://ehcache.org Low Product Manifest Bundle-Name Ehcache 3 Medium Product Manifest bundle-symbolicname org.ehcache Medium Product Manifest implementation-revision f5d1a7e4189e1bcd55cdb6a6c1d256355693dff5 Low Product Manifest Implementation-Title ehcache High Product Manifest provide-capability osgi.service;objectClass:List="javax.cache.spi.CachingProvider";uses:="javax.cache.spi",osgi.service;objectClass:List="org.ehcache.core.spi.service.ServiceFactory";uses:="org.ehcache.core.spi.service",osgi.service;objectClass:List="org.ehcache.xml.CacheManagerServiceConfigurationParser";uses:="org.ehcache.xml",osgi.service;objectClass:List="org.ehcache.xml.CacheServiceConfigurationParser";uses:="org.ehcache.xml" Low Product Manifest service-component OSGI-INF/*.xml Low Product pom artifactid ehcache Highest Version file version 3.11.1 High Version Manifest Implementation-Version 3.11.1 High Version pom version 3.11.1 Highest
File Path: /Users/oat/.m2/repository/org/ehcache/ehcache/3.11.1/ehcache-3.11.1-jakarta.jar/org/ehcache/sizeof/impl/sizeof-agent.jarMD5: 853aa2e129306dae277e14203cb70742SHA1: 49336faf5f79f773a6d04890da59b4e30064f75fSHA256: c7377b7197f14f44cd987535fc3439b5c175e0fdeea434a05bb9be6dc761ae13Referenced In Projects/Scopes:
Apache WSS4J DOM WS-Security:runtime Apache WSS4J Streaming WS-Security:runtime Apache WSS4J Web WS-Security:runtime Apache WSS4J WS-Security Common:compile Apache WSS4J Streaming WS-SecurityPolicy:runtime Evidence Type Source Name Value Confidence Vendor file name sizeof-agent High Vendor jar package name ehcache Low Vendor jar package name impl Low Vendor jar package name sizeof Low Product file name sizeof-agent High Product jar package name impl Low Product jar package name sizeof Low Product jar package name sizeofagent Low
Description:
Contains
com.google.common.util.concurrent.internal.InternalFutureFailureAccess and
InternalFutures. Most users will never need to use this artifact. Its
classes are conceptually a part of Guava, but they're in this separate
artifact so that Android libraries can use them without pulling in all of
Guava (just as they can use ListenableFuture by depending on the
listenablefuture artifact).
License:
http://www.apache.org/licenses/LICENSE-2.0.txt File Path: /Users/oat/.m2/repository/com/google/guava/failureaccess/1.0.3/failureaccess-1.0.3.jar
MD5: 29a782e90f6b37218b18bb880d2a8f4a
SHA1: aeaffd00d57023a2c947393ed251f0354f0985fc
SHA256: cbfc3906b19b8f55dd7cfd6dfe0aa4532e834250d7f080bd8d211a3e246b59cb
Referenced In Projects/Scopes: Apache WSS4J Streaming WS-Security:compile Apache WSS4J DOM WS-Security:compile Apache WSS4J Web WS-Security:compile Apache WSS4J WS-Security Common:compile Apache WSS4J Streaming WS-SecurityPolicy:compile failureaccess-1.0.3.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.1 pkg:maven/com.google.guava/guava@33.5.0-jre pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.1 pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.1 pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.1 Evidence Type Source Name Value Confidence Vendor file name failureaccess High Vendor jar package name common Highest Vendor jar package name concurrent Highest Vendor jar package name google Highest Vendor jar package name util Highest Vendor Manifest build-jdk-spec 17 Low Vendor Manifest bundle-docurl https://github.com/google/guava/ Low Vendor Manifest bundle-symbolicname com.google.guava.failureaccess Medium Vendor Manifest multi-release true Low Vendor pom artifactid failureaccess Highest Vendor pom artifactid failureaccess Low Vendor pom groupid com.google.guava Highest Vendor pom name Guava InternalFutureFailureAccess and InternalFutures High Vendor pom parent-artifactid guava-parent Low Product file name failureaccess High Product jar package name common Highest Product jar package name concurrent Highest Product jar package name google Highest Product jar package name util Highest Product Manifest build-jdk-spec 17 Low Product Manifest bundle-docurl https://github.com/google/guava/ Low Product Manifest Bundle-Name Guava InternalFutureFailureAccess and InternalFutures Medium Product Manifest bundle-symbolicname com.google.guava.failureaccess Medium Product Manifest multi-release true Low Product pom artifactid failureaccess Highest Product pom groupid com.google.guava Highest Product pom name Guava InternalFutureFailureAccess and InternalFutures High Product pom parent-artifactid guava-parent Medium Version file version 1.0.3 High Version Manifest Bundle-Version 1.0.3 High Version pom parent-version 1.0.3 Low Version pom version 1.0.3 Highest
pkg:maven/com.google.guava/failureaccess@1.0.3 (Confidence :High) Description:
Guava is a suite of core and expanded libraries that include
utility classes, Google's collections, I/O classes, and
much more.
License:
http://www.apache.org/licenses/LICENSE-2.0.txt File Path: /Users/oat/.m2/repository/com/google/guava/guava/33.5.0-jre/guava-33.5.0-jre.jar
MD5: d9fbf39a41a5bab891348f07668e18c5
SHA1: 8699de25f2f979108d6c1b804a7ba38cda1116bc
SHA256: 1e301f0c52ac248b0b14fdc3d12283c77252d4d6f48521d572e7d8c4c2cc4ac7
Referenced In Projects/Scopes: Apache WSS4J Streaming WS-Security:compile Apache WSS4J DOM WS-Security:compile Apache WSS4J Web WS-Security:compile Apache WSS4J WS-Security Common:compile Apache WSS4J Streaming WS-SecurityPolicy:compile guava-33.5.0-jre.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.1 pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.1 pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.1 pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.1 pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.1 Evidence Type Source Name Value Confidence Vendor file name guava High Vendor jar package name google Highest Vendor Manifest build-jdk-spec 11 Low Vendor Manifest bundle-docurl https://github.com/google/guava/ Low Vendor Manifest bundle-symbolicname com.google.guava Medium Vendor Manifest multi-release true Low Vendor pom artifactid guava Highest Vendor pom artifactid guava Low Vendor pom groupid com.google.guava Highest Vendor pom name Guava: Google Core Libraries for Java High Vendor pom parent-artifactid guava-parent Low Vendor pom url google/guava Highest Product file name guava High Product jar package name google Highest Product Manifest build-jdk-spec 11 Low Product Manifest bundle-docurl https://github.com/google/guava/ Low Product Manifest Bundle-Name Guava: Google Core Libraries for Java Medium Product Manifest bundle-symbolicname com.google.guava Medium Product Manifest multi-release true Low Product pom artifactid guava Highest Product pom groupid com.google.guava Highest Product pom name Guava: Google Core Libraries for Java High Product pom parent-artifactid guava-parent Medium Product pom url google/guava High Version pom version 33.5.0-jre Highest
Description:
Apache HttpComponents Client File Path: /Users/oat/.m2/repository/org/apache/httpcomponents/client5/httpclient5/5.3.1/httpclient5-5.3.1.jarMD5: de1810a606b27192cbf5bbad9c25a648SHA1: 56b53c8f4bcdaada801d311cf2ff8a24d6d96883SHA256: 08346a757c617f6ecc66af9f099260adde1f3a1351fa81cb22fc17482b31f823Referenced In Projects/Scopes:
Apache WSS4J Streaming WS-Security:compile Apache WSS4J DOM WS-Security:compile Apache WSS4J Web WS-Security:compile Apache WSS4J WS-Security Common:compile Apache WSS4J Streaming WS-SecurityPolicy:compile httpclient5-5.3.1.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.1 pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.1 pkg:maven/org.opensaml/opensaml-saml-impl@5.1.6 pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.1 pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.1 Evidence Type Source Name Value Confidence Vendor file name httpclient5 High Vendor jar package name apache Highest Vendor jar package name client5 Highest Vendor Manifest automatic-module-name org.apache.httpcomponents.client5.httpclient5 Medium Vendor Manifest build-jdk-spec 1.8 Low Vendor Manifest implementation-url https://hc.apache.org/httpcomponents-client-5.0.x/5.3.1/httpclient5/ Low Vendor Manifest Implementation-Vendor The Apache Software Foundation High Vendor Manifest Implementation-Vendor-Id org.apache Medium Vendor Manifest specification-vendor The Apache Software Foundation Low Vendor pom artifactid httpclient5 Highest Vendor pom artifactid httpclient5 Low Vendor pom groupid org.apache.httpcomponents.client5 Highest Vendor pom name Apache HttpClient High Vendor pom parent-artifactid httpclient5-parent Low Product file name httpclient5 High Product jar package name apache Highest Product jar package name client5 Highest Product jar package name hc Highest Product Manifest automatic-module-name org.apache.httpcomponents.client5.httpclient5 Medium Product Manifest build-jdk-spec 1.8 Low Product Manifest Implementation-Title Apache HttpClient High Product Manifest implementation-url https://hc.apache.org/httpcomponents-client-5.0.x/5.3.1/httpclient5/ Low Product Manifest specification-title Apache HttpClient Medium Product pom artifactid httpclient5 Highest Product pom groupid org.apache.httpcomponents.client5 Highest Product pom name Apache HttpClient High Product pom parent-artifactid httpclient5-parent Medium Version file version 5.3.1 High Version Manifest Implementation-Version 5.3.1 High Version pom version 5.3.1 Highest
Related Dependencies httpclient5-cache-5.3.1.jarFile Path: /Users/oat/.m2/repository/org/apache/httpcomponents/client5/httpclient5-cache/5.3.1/httpclient5-cache-5.3.1.jar MD5: ef035c64709044723191e430b7919890 SHA1: 3d3bea8e0b3dd4964225ad8abe4eed5b6ccd6db9 SHA256: bb1852942dcb40566f53bb99f11b5175fd913229ab35b9fa54a33d4644924b10 pkg:maven/org.apache.httpcomponents.client5/httpclient5-cache@5.3.1 Description:
Apache HttpComponents HTTP/1.1 core components File Path: /Users/oat/.m2/repository/org/apache/httpcomponents/core5/httpcore5/5.2.5/httpcore5-5.2.5.jarMD5: 419f7b3172ebee12dd64af978feb4351SHA1: dab1e18842971a45ca8942491ce005ab86a028d7SHA256: 9552b9e06cef3170e37046092de115c33a7cb48ee7ef0d87f1d5650dee7e1b0dReferenced In Projects/Scopes:
Apache WSS4J Streaming WS-Security:compile Apache WSS4J DOM WS-Security:compile Apache WSS4J Web WS-Security:compile Apache WSS4J WS-Security Common:compile Apache WSS4J Streaming WS-SecurityPolicy:compile httpcore5-5.2.5.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.opensaml/opensaml-saml-impl@5.1.6 pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.1 pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.1 pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.1 pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.1 Evidence Type Source Name Value Confidence Vendor file name httpcore5 High Vendor jar package name apache Highest Vendor jar package name core5 Highest Vendor Manifest automatic-module-name org.apache.httpcomponents.core5.httpcore5 Medium Vendor Manifest build-jdk-spec 1.8 Low Vendor Manifest implementation-url https://hc.apache.org/httpcomponents-core-5.2.x/5.2.5/httpcore5/ Low Vendor Manifest Implementation-Vendor The Apache Software Foundation High Vendor Manifest Implementation-Vendor-Id org.apache Medium Vendor Manifest specification-vendor The Apache Software Foundation Low Vendor pom artifactid httpcore5 Highest Vendor pom artifactid httpcore5 Low Vendor pom groupid org.apache.httpcomponents.core5 Highest Vendor pom name Apache HttpComponents Core HTTP/1.1 High Vendor pom parent-artifactid httpcore5-parent Low Product file name httpcore5 High Product jar package name apache Highest Product jar package name core5 Highest Product jar package name hc Highest Product Manifest automatic-module-name org.apache.httpcomponents.core5.httpcore5 Medium Product Manifest build-jdk-spec 1.8 Low Product Manifest Implementation-Title Apache HttpComponents Core HTTP/1.1 High Product Manifest implementation-url https://hc.apache.org/httpcomponents-core-5.2.x/5.2.5/httpcore5/ Low Product Manifest specification-title Apache HttpComponents Core HTTP/1.1 Medium Product pom artifactid httpcore5 Highest Product pom groupid org.apache.httpcomponents.core5 Highest Product pom name Apache HttpComponents Core HTTP/1.1 High Product pom parent-artifactid httpcore5-parent Medium Version file version 5.2.5 High Version Manifest Implementation-Version 5.2.5 High Version pom version 5.2.5 Highest
pkg:maven/org.apache.httpcomponents.core5/httpcore5@5.2.5 (Confidence :High) Description:
Apache HttpComponents HTTP/2 Core Components File Path: /Users/oat/.m2/repository/org/apache/httpcomponents/core5/httpcore5-h2/5.2.4/httpcore5-h2-5.2.4.jarMD5: d407b8144029db656ac5ba3d54ef801fSHA1: 2872764df7b4857549e2880dd32a6f9009166289SHA256: dc1a95e73eb04db93451533d390ce02c53b301a10dc343d08c862f2934b3d30eReferenced In Projects/Scopes:
Apache WSS4J Streaming WS-Security:compile Apache WSS4J DOM WS-Security:compile Apache WSS4J Web WS-Security:compile Apache WSS4J WS-Security Common:compile Apache WSS4J Streaming WS-SecurityPolicy:compile httpcore5-h2-5.2.4.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.1 pkg:maven/org.opensaml/opensaml-saml-impl@5.1.6 pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.1 pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.1 pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.1 Evidence Type Source Name Value Confidence Vendor file name httpcore5-h2 High Vendor jar package name apache Highest Vendor jar package name core5 Highest Vendor Manifest automatic-module-name org.apache.httpcomponents.core5.httpcore5.h2 Medium Vendor Manifest build-jdk-spec 1.8 Low Vendor Manifest implementation-url https://hc.apache.org/httpcomponents-core-5.2.x/5.2.4/httpcore5-h2/ Low Vendor Manifest Implementation-Vendor The Apache Software Foundation High Vendor Manifest Implementation-Vendor-Id org.apache Medium Vendor Manifest specification-vendor The Apache Software Foundation Low Vendor pom artifactid httpcore5-h2 Highest Vendor pom artifactid httpcore5-h2 Low Vendor pom groupid org.apache.httpcomponents.core5 Highest Vendor pom name Apache HttpComponents Core HTTP/2 High Vendor pom parent-artifactid httpcore5-parent Low Product file name httpcore5-h2 High Product jar package name apache Highest Product jar package name core5 Highest Product jar package name hc Highest Product Manifest automatic-module-name org.apache.httpcomponents.core5.httpcore5.h2 Medium Product Manifest build-jdk-spec 1.8 Low Product Manifest Implementation-Title Apache HttpComponents Core HTTP/2 High Product Manifest implementation-url https://hc.apache.org/httpcomponents-core-5.2.x/5.2.4/httpcore5-h2/ Low Product Manifest specification-title Apache HttpComponents Core HTTP/2 Medium Product pom artifactid httpcore5-h2 Highest Product pom groupid org.apache.httpcomponents.core5 Highest Product pom name Apache HttpComponents Core HTTP/2 High Product pom parent-artifactid httpcore5-parent Medium Version file version 5.2.4 High Version Manifest Implementation-Version 5.2.4 High Version pom version 5.2.4 Highest
pkg:maven/org.apache.httpcomponents.core5/httpcore5-h2@5.2.4 (Confidence :High) Description:
istack common utility code License:
http://www.eclipse.org/org/documents/edl-v10.php File Path: /Users/oat/.m2/repository/com/sun/istack/istack-commons-runtime/4.1.2/istack-commons-runtime-4.1.2.jar
MD5: 535154ef647af2a52478c4debec93659
SHA1: 18ec117c85f3ba0ac65409136afa8e42bc74e739
SHA256: 7fd6792361f4dd00f8c56af4a20cecc0066deea4a8f3dec38348af23fc2296ee
Referenced In Projects/Scopes: Apache WSS4J Streaming WS-Security:runtime Apache WSS4J Streaming WS-SecurityPolicy:runtime istack-commons-runtime-4.1.2.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.apache.wss4j/wss4j-ws-security-stax@4.0.1 pkg:maven/org.glassfish.jaxb/jaxb-runtime@4.0.5 Evidence Type Source Name Value Confidence Vendor file name istack-commons-runtime High Vendor jar package name istack Highest Vendor jar package name sun Highest Vendor jar (hint) package name oracle Highest Vendor Manifest bundle-docurl https://www.eclipse.org Low Vendor Manifest bundle-symbolicname com.sun.istack.commons-runtime Medium Vendor Manifest implementation-build-id 4.1.2 - 343a28e Low Vendor Manifest Implementation-Vendor Eclipse Foundation High Vendor Manifest Implementation-Vendor-Id com.sun.istack Medium Vendor pom artifactid istack-commons-runtime Highest Vendor pom artifactid istack-commons-runtime Low Vendor pom groupid com.sun.istack Highest Vendor pom name istack common utility code runtime High Vendor pom parent-artifactid istack-commons Low Product file name istack-commons-runtime High Product jar package name istack Highest Product jar package name sun Highest Product Manifest bundle-docurl https://www.eclipse.org Low Product Manifest Bundle-Name istack common utility code runtime Medium Product Manifest bundle-symbolicname com.sun.istack.commons-runtime Medium Product Manifest implementation-build-id 4.1.2 - 343a28e Low Product pom artifactid istack-commons-runtime Highest Product pom groupid com.sun.istack Highest Product pom name istack common utility code runtime High Product pom parent-artifactid istack-commons Medium Version file version 4.1.2 High Version Manifest Bundle-Version 4.1.2 High Version Manifest implementation-build-id 4.1.2 Low Version pom version 4.1.2 Highest
pkg:maven/com.sun.istack/istack-commons-runtime@4.1.2 (Confidence :High) Description:
Core Jackson processing abstractions (aka Streaming API), implementation for JSON License:
The Apache Software License, Version 2.0: https://www.apache.org/licenses/LICENSE-2.0.txt File Path: /Users/oat/.m2/repository/com/fasterxml/jackson/core/jackson-core/2.16.2/jackson-core-2.16.2.jar
MD5: 64594fea116c698c9612ffba8e94d7b4
SHA1: b4f588bf070f77b604c645a7d60b71eae2e6ea09
SHA256: 4f43e2f1430b2d2413e8e5a3d79138e57e891d6a961b18c28ac90859639d8664
Referenced In Projects/Scopes: Apache WSS4J Streaming WS-Security:compile Apache WSS4J DOM WS-Security:compile Apache WSS4J Web WS-Security:compile Apache WSS4J WS-Security Common:compile Apache WSS4J Streaming WS-SecurityPolicy:compile jackson-core-2.16.2.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.1 pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.1 pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.1 pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.1 pkg:maven/org.opensaml/opensaml-saml-impl@5.1.6 Evidence Type Source Name Value Confidence Vendor file name jackson-core High Vendor jar package name base Highest Vendor jar package name com Highest Vendor jar package name core Highest Vendor jar package name fasterxml Highest Vendor jar package name jackson Highest Vendor jar package name json Highest Vendor Manifest build-jdk-spec 17 Low Vendor Manifest bundle-docurl https://github.com/FasterXML/jackson-core Low Vendor Manifest bundle-symbolicname com.fasterxml.jackson.core.jackson-core Medium Vendor Manifest Implementation-Vendor FasterXML High Vendor Manifest Implementation-Vendor-Id com.fasterxml.jackson.core Medium Vendor Manifest multi-release true Low Vendor Manifest specification-vendor FasterXML Low Vendor pom artifactid jackson-core Highest Vendor pom artifactid jackson-core Low Vendor pom groupid com.fasterxml.jackson.core Highest Vendor pom name Jackson-core High Vendor pom parent-artifactid jackson-base Low Vendor pom parent-groupid com.fasterxml.jackson Medium Vendor pom url FasterXML/jackson-core Highest Product file name jackson-core High Product hint analyzer product java8 Highest Product hint analyzer product modules Highest Product jar package name 17 Highest Product jar package name base Highest Product jar package name com Highest Product jar package name core Highest Product jar package name fasterxml Highest Product jar package name jackson Highest Product jar package name json Highest Product Manifest build-jdk-spec 17 Low Product Manifest bundle-docurl https://github.com/FasterXML/jackson-core Low Product Manifest Bundle-Name Jackson-core Medium Product Manifest bundle-symbolicname com.fasterxml.jackson.core.jackson-core Medium Product Manifest Implementation-Title Jackson-core High Product Manifest multi-release true Low Product Manifest specification-title Jackson-core Medium Product pom artifactid jackson-core Highest Product pom groupid com.fasterxml.jackson.core Highest Product pom name Jackson-core High Product pom parent-artifactid jackson-base Medium Product pom parent-groupid com.fasterxml.jackson Medium Product pom url FasterXML/jackson-core High Version file version 2.16.2 High Version Manifest Bundle-Version 2.16.2 High Version Manifest Implementation-Version 2.16.2 High Version pom version 2.16.2 Highest
Related Dependencies jackson-annotations-2.16.2.jarFile Path: /Users/oat/.m2/repository/com/fasterxml/jackson/core/jackson-annotations/2.16.2/jackson-annotations-2.16.2.jar MD5: ecd24b22f8b55a6374e1bfe8ab261da7 SHA1: dfcd11c847ea7276aa073c25f5fe8ee361748d7f SHA256: d1cdd269ebaa753d1842933194e17d61958f058952d63e03dbfb3d1d78a6926e pkg:maven/com.fasterxml.jackson.core/jackson-annotations@2.16.2 jackson-datatype-jsr310-2.16.2.jarFile Path: /Users/oat/.m2/repository/com/fasterxml/jackson/datatype/jackson-datatype-jsr310/2.16.2/jackson-datatype-jsr310-2.16.2.jar MD5: 17b881ce122838518321585edd2e8586 SHA1: 58e86108e4b1b1e893e7a69b1bbca880acfca143 SHA256: 9d03ad6d47b5f9951b75fb0cae0760156fa827794730cd5ef6cd79d3785cc9c0 pkg:maven/com.fasterxml.jackson.datatype/jackson-datatype-jsr310@2.16.2 pkg:maven/com.fasterxml.jackson.core/jackson-core@2.16.2 (Confidence :High) cpe:2.3:a:fasterxml:jackson-modules-java8:2.16.2:*:*:*:*:*:*:* (Confidence :Low) suppress Description:
General data-binding functionality for Jackson: works on core streaming API License:
The Apache Software License, Version 2.0: https://www.apache.org/licenses/LICENSE-2.0.txt File Path: /Users/oat/.m2/repository/com/fasterxml/jackson/core/jackson-databind/2.16.2/jackson-databind-2.16.2.jar
MD5: d568de5ecd0dbe050ef3d386a6a48039
SHA1: 7fda67535b54d74eebf6157682b835c847410932
SHA256: 53b6025d98c357068296e4b134242443a248c2c582800879f1c4ea93b54bafa6
Referenced In Projects/Scopes: Apache WSS4J Streaming WS-Security:compile Apache WSS4J DOM WS-Security:compile Apache WSS4J Web WS-Security:compile Apache WSS4J WS-Security Common:compile Apache WSS4J Streaming WS-SecurityPolicy:compile jackson-databind-2.16.2.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.opensaml/opensaml-saml-impl@5.1.6 pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.1 pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.1 pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.1 pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.1 Evidence Type Source Name Value Confidence Vendor file name jackson-databind High Vendor jar package name databind Highest Vendor jar package name fasterxml Highest Vendor jar package name jackson Highest Vendor Manifest build-jdk-spec 1.8 Low Vendor Manifest bundle-docurl https://github.com/FasterXML/jackson Low Vendor Manifest bundle-symbolicname com.fasterxml.jackson.core.jackson-databind Medium Vendor Manifest Implementation-Vendor FasterXML High Vendor Manifest Implementation-Vendor-Id com.fasterxml.jackson.core Medium Vendor Manifest multi-release true Low Vendor Manifest specification-vendor FasterXML Low Vendor pom artifactid jackson-databind Highest Vendor pom artifactid jackson-databind Low Vendor pom groupid com.fasterxml.jackson.core Highest Vendor pom name jackson-databind High Vendor pom parent-artifactid jackson-base Low Vendor pom parent-groupid com.fasterxml.jackson Medium Vendor pom url FasterXML/jackson Highest Product file name jackson-databind High Product hint analyzer product java8 Highest Product hint analyzer product modules Highest Product jar package name databind Highest Product jar package name fasterxml Highest Product jar package name jackson Highest Product Manifest build-jdk-spec 1.8 Low Product Manifest bundle-docurl https://github.com/FasterXML/jackson Low Product Manifest Bundle-Name jackson-databind Medium Product Manifest bundle-symbolicname com.fasterxml.jackson.core.jackson-databind Medium Product Manifest Implementation-Title jackson-databind High Product Manifest multi-release true Low Product Manifest specification-title jackson-databind Medium Product pom artifactid jackson-databind Highest Product pom groupid com.fasterxml.jackson.core Highest Product pom name jackson-databind High Product pom parent-artifactid jackson-base Medium Product pom parent-groupid com.fasterxml.jackson Medium Product pom url FasterXML/jackson High Version file version 2.16.2 High Version Manifest Bundle-Version 2.16.2 High Version Manifest Implementation-Version 2.16.2 High Version pom version 2.16.2 Highest
Description:
Specification License:
EDL 1.0: http://www.eclipse.org/org/documents/edl-v10.php File Path: /Users/oat/.m2/repository/jakarta/activation/jakarta.activation-api/2.1.3/jakarta.activation-api-2.1.3.jar
MD5: 76e7b680375ea9f40f3ddbd702efcd25
SHA1: fa165bd70cda600368eee31555222776a46b881f
SHA256: 01b176d718a169263e78290691fc479977186bcc6b333487325084d6586f4627
Referenced In Projects/Scopes: Apache WSS4J Streaming WS-Security:compile Apache WSS4J DOM WS-Security:compile Apache WSS4J Streaming WS-SecurityPolicy:compile jakarta.activation-api-2.1.3.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/com.sun.xml.messaging.saaj/saaj-impl@3.0.4 pkg:maven/com.sun.xml.messaging.saaj/saaj-impl@3.0.4 pkg:maven/com.sun.xml.messaging.saaj/saaj-impl@3.0.4 Evidence Type Source Name Value Confidence Vendor file name jakarta.activation-api High Vendor jar package name activation Highest Vendor jar package name jakarta Highest Vendor Manifest bundle-docurl https://www.eclipse.org Low Vendor Manifest bundle-symbolicname jakarta.activation-api Medium Vendor Manifest extension-name jakarta.activation Medium Vendor Manifest implementation-build-id 7f7d358 Low Vendor Manifest Implementation-Vendor Eclipse Foundation High Vendor Manifest specification-vendor Eclipse Foundation Low Vendor pom artifactid jakarta.activation-api Highest Vendor pom artifactid jakarta.activation-api Low Vendor pom developer email bill.shannon@oracle.com Low Vendor pom developer id shannon Medium Vendor pom developer name Bill Shannon Medium Vendor pom developer org Oracle Medium Vendor pom groupid jakarta.activation Highest Vendor pom name Jakarta Activation API High Vendor pom parent-artifactid project Low Vendor pom parent-groupid org.eclipse.ee4j Medium Vendor pom url jakartaee/jaf-api Highest Vendor pom (hint) developer org sun Medium Product file name jakarta.activation-api High Product jar package name activation Highest Product jar package name jakarta Highest Product Manifest bundle-docurl https://www.eclipse.org Low Product Manifest Bundle-Name Jakarta Activation API Medium Product Manifest bundle-symbolicname jakarta.activation-api Medium Product Manifest extension-name jakarta.activation Medium Product Manifest implementation-build-id 7f7d358 Low Product Manifest Implementation-Title Jakarta Activation API High Product Manifest specification-title Jakarta Activation Specification Medium Product pom artifactid jakarta.activation-api Highest Product pom developer email bill.shannon@oracle.com Low Product pom developer id shannon Low Product pom developer name Bill Shannon Low Product pom developer org Oracle Low Product pom groupid jakarta.activation Highest Product pom name Jakarta Activation API High Product pom parent-artifactid project Medium Product pom parent-groupid org.eclipse.ee4j Medium Product pom url jakartaee/jaf-api High Version file version 2.1.3 High Version Manifest Bundle-Version 2.1.3 High Version pom parent-version 2.1.3 Low Version pom version 2.1.3 Highest
pkg:maven/jakarta.activation/jakarta.activation-api@2.1.3 (Confidence :High) Description:
Specification License:
EDL 1.0: http://www.eclipse.org/org/documents/edl-v10.php File Path: /Users/oat/.m2/repository/jakarta/activation/jakarta.activation-api/2.1.4/jakarta.activation-api-2.1.4.jar
MD5: bc1602eee7bc61a0b86f14bbbb0cc794
SHA1: 9e5c2a0d75dde71a0bedc4dbdbe47b78a5dc50f8
SHA256: c9db52100ce6c8aac95cc39075f95720d2e561b11f8051b81c121ad4effd7004
Referenced In Projects/Scopes: Apache WSS4J Web WS-Security:compile Apache WSS4J WS-Security Bindings:compile Apache WSS4J WS-Security Common:compile jakarta.activation-api-2.1.4.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.1 pkg:maven/jakarta.xml.bind/jakarta.xml.bind-api@4.0.4 pkg:maven/jakarta.mail/jakarta.mail-api@2.1.5 Evidence Type Source Name Value Confidence Vendor file name jakarta.activation-api High Vendor jar package name activation Highest Vendor jar package name jakarta Highest Vendor Manifest bundle-docurl https://www.eclipse.org Low Vendor Manifest bundle-symbolicname jakarta.activation-api Medium Vendor Manifest extension-name jakarta.activation Medium Vendor Manifest implementation-build-id 3dad341 Low Vendor Manifest Implementation-Vendor Eclipse Foundation High Vendor Manifest specification-vendor Eclipse Foundation Low Vendor pom artifactid jakarta.activation-api Highest Vendor pom artifactid jakarta.activation-api Low Vendor pom developer email bill.shannon@oracle.com Low Vendor pom developer id shannon Medium Vendor pom developer name Bill Shannon Medium Vendor pom developer org Oracle Medium Vendor pom groupid jakarta.activation Highest Vendor pom name Jakarta Activation API High Vendor pom parent-artifactid project Low Vendor pom parent-groupid org.eclipse.ee4j Medium Vendor pom url jakartaee/jaf-api Highest Vendor pom (hint) developer org sun Medium Product file name jakarta.activation-api High Product jar package name activation Highest Product jar package name jakarta Highest Product Manifest bundle-docurl https://www.eclipse.org Low Product Manifest Bundle-Name Jakarta Activation API Medium Product Manifest bundle-symbolicname jakarta.activation-api Medium Product Manifest extension-name jakarta.activation Medium Product Manifest implementation-build-id 3dad341 Low Product Manifest Implementation-Title Jakarta Activation API High Product Manifest specification-title Jakarta Activation Specification Medium Product pom artifactid jakarta.activation-api Highest Product pom developer email bill.shannon@oracle.com Low Product pom developer id shannon Low Product pom developer name Bill Shannon Low Product pom developer org Oracle Low Product pom groupid jakarta.activation Highest Product pom name Jakarta Activation API High Product pom parent-artifactid project Medium Product pom parent-groupid org.eclipse.ee4j Medium Product pom url jakartaee/jaf-api High Version file version 2.1.4 High Version Manifest Bundle-Version 2.1.4 High Version pom parent-version 2.1.4 Low Version pom version 2.1.4 Highest
pkg:maven/jakarta.activation/jakarta.activation-api@2.1.4 (Confidence :High) Description:
Specification API License:
EPL 2.0: http://www.eclipse.org/legal/epl-2.0
GPL2 w/ CPE: https://www.gnu.org/software/classpath/license.html
EDL 1.0: http://www.eclipse.org/org/documents/edl-v10.php File Path: /Users/oat/.m2/repository/jakarta/mail/jakarta.mail-api/2.1.5/jakarta.mail-api-2.1.5.jar
MD5: a1872951f46b87594806bb01e342a468
SHA1: be9b3b677ed6083f575c437ebc442a6a4bd2b931
SHA256: aa493753acb7a8c45ba8f4c9cf1230a74e20237056dd5b5c8bc86c583e8cfa0e
Referenced In Projects/Scopes: Apache WSS4J Streaming WS-Security:compile Apache WSS4J DOM WS-Security:compile Apache WSS4J Web WS-Security:compile Apache WSS4J WS-Security Common:compile Apache WSS4J Streaming WS-SecurityPolicy:compile jakarta.mail-api-2.1.5.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.1 pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.1 pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.1 pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.1 pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.1 Evidence Type Source Name Value Confidence Vendor file name jakarta.mail-api High Vendor jar package name jakarta Highest Vendor jar package name mail Highest Vendor jar package name version Highest Vendor Manifest bundle-docurl https://www.eclipse.org Low Vendor Manifest bundle-symbolicname jakarta.mail-api Medium Vendor Manifest extension-name jakarta.mail Medium Vendor Manifest implementation-build-id e187321 Low Vendor Manifest Implementation-Vendor Eclipse Foundation High Vendor Manifest specification-vendor Eclipse Foundation Low Vendor pom artifactid jakarta.mail-api Highest Vendor pom artifactid jakarta.mail-api Low Vendor pom groupid jakarta.mail Highest Vendor pom name Jakarta Mail API High Vendor pom parent-artifactid project Low Vendor pom parent-groupid org.eclipse.ee4j Medium Product file name jakarta.mail-api High Product jar package name jakarta Highest Product jar package name mail Highest Product jar package name version Highest Product Manifest bundle-docurl https://www.eclipse.org Low Product Manifest Bundle-Name Jakarta Mail API Medium Product Manifest bundle-symbolicname jakarta.mail-api Medium Product Manifest extension-name jakarta.mail Medium Product Manifest implementation-build-id e187321 Low Product Manifest Implementation-Title Jakarta Mail API High Product Manifest specification-title Jakarta Mail Specification Medium Product pom artifactid jakarta.mail-api Highest Product pom groupid jakarta.mail Highest Product pom name Jakarta Mail API High Product pom parent-artifactid project Medium Product pom parent-groupid org.eclipse.ee4j Medium Version file version 2.1.5 High Version Manifest Bundle-Version 2.1.5 High Version pom parent-version 2.1.5 Low Version pom version 2.1.5 Highest
Description:
Jakarta Servlet 5.0 License:
EPL 2.0: http://www.eclipse.org/legal/epl-2.0
GPL2 w/ CPE: https://www.gnu.org/software/classpath/license.html File Path: /Users/oat/.m2/repository/jakarta/servlet/jakarta.servlet-api/5.0.0/jakarta.servlet-api-5.0.0.jar
MD5: b950da93e08cf6d5a2d73dc7a80f9403
SHA1: 2e6b8ccde55522c879434ddec3714683ccae6867
SHA256: 33d3a5bda82c7d2f1b898685faa954f1fc34f7b0ae5c2f6ccc6d051e8a10973b
Referenced In Project/Scope: Apache WSS4J Web WS-Security:provided
jakarta.servlet-api-5.0.0.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.apache.wss4j/wss4j-ws-security-web@4.0.1
Evidence Type Source Name Value Confidence Vendor file name jakarta.servlet-api High Vendor jar package name jakarta Highest Vendor jar package name servlet Highest Vendor Manifest automatic-module-name jakarta.servlet Medium Vendor Manifest build-jdk-spec 1.8 Low Vendor Manifest bundle-docurl https://www.eclipse.org Low Vendor Manifest bundle-symbolicname jakarta.servlet-api Medium Vendor Manifest extension-name jakarta.servlet Medium Vendor Manifest Implementation-Vendor Eclipse Foundation High Vendor Manifest Implementation-Vendor-Id org.eclipse Medium Vendor Manifest specification-vendor Eclipse Foundation Low Vendor pom artifactid jakarta.servlet-api Highest Vendor pom artifactid jakarta.servlet-api Low Vendor pom developer id yaminikb Medium Vendor pom developer name Yamini K B Medium Vendor pom developer org Oracle Corporation Medium Vendor pom developer org URL http://www.oracle.com/ Medium Vendor pom groupid jakarta.servlet Highest Vendor pom name Jakarta Servlet High Vendor pom parent-artifactid project Low Vendor pom parent-groupid org.eclipse.ee4j Medium Vendor pom url https://projects.eclipse.org/projects/ee4j.servlet Highest Product file name jakarta.servlet-api High Product jar package name jakarta Highest Product jar package name servlet Highest Product Manifest automatic-module-name jakarta.servlet Medium Product Manifest build-jdk-spec 1.8 Low Product Manifest bundle-docurl https://www.eclipse.org Low Product Manifest Bundle-Name Jakarta Servlet Medium Product Manifest bundle-symbolicname jakarta.servlet-api Medium Product Manifest extension-name jakarta.servlet Medium Product pom artifactid jakarta.servlet-api Highest Product pom developer id yaminikb Low Product pom developer name Yamini K B Low Product pom developer org Oracle Corporation Low Product pom developer org URL http://www.oracle.com/ Low Product pom groupid jakarta.servlet Highest Product pom name Jakarta Servlet High Product pom parent-artifactid project Medium Product pom parent-groupid org.eclipse.ee4j Medium Product pom url https://projects.eclipse.org/projects/ee4j.servlet Medium Version file version 5.0.0 High Version Manifest Bundle-Version 5.0.0 High Version Manifest Implementation-Version 5.0.0 High Version pom parent-version 5.0.0 Low Version pom version 5.0.0 Highest
pkg:maven/jakarta.servlet/jakarta.servlet-api@5.0.0 (Confidence :High) cpe:2.3:a:oracle:projects:5.0.0:*:*:*:*:*:*:* (Confidence :Low) suppress Description:
Jakarta XML Binding API 4.0 Design Specification License:
http://www.eclipse.org/org/documents/edl-v10.php File Path: /Users/oat/.m2/repository/jakarta/xml/bind/jakarta.xml.bind-api/4.0.4/jakarta.xml.bind-api-4.0.4.jar
MD5: 6dd465a232e545193ab8ab77cc4fbdb9
SHA1: d6d2327f3817d9a33a3b6b8f2e15a96bc2e7afdc
SHA256: c507ca69a8c6dd11bf4afeec9e0d412c4fa3933fffb0a84680ea5727e8472124
Referenced In Projects/Scopes: Apache WSS4J Streaming WS-Security:compile Apache WSS4J WS-Security Bindings:compile Apache WSS4J Streaming WS-SecurityPolicy:compile jakarta.xml.bind-api-4.0.4.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.apache.wss4j/wss4j-ws-security-stax@4.0.1 pkg:maven/org.apache.wss4j/wss4j-bindings@4.0.1 pkg:maven/org.apache.wss4j/wss4j-bindings@4.0.1 Evidence Type Source Name Value Confidence Vendor file name jakarta.xml.bind-api High Vendor jar package name bind Highest Vendor jar package name jakarta Highest Vendor jar package name xml Highest Vendor Manifest bundle-docurl https://www.eclipse.org Low Vendor Manifest bundle-symbolicname jakarta.xml.bind-api Medium Vendor Manifest extension-name jakarta.xml.bind Medium Vendor Manifest implementation-build-id 1df980a Low Vendor Manifest specification-vendor Eclipse Foundation Low Vendor pom artifactid jakarta.xml.bind-api Highest Vendor pom artifactid jakarta.xml.bind-api Low Vendor pom groupid jakarta.xml.bind Highest Vendor pom name Jakarta XML Binding API High Vendor pom parent-artifactid jakarta.xml.bind-api-parent Low Product file name jakarta.xml.bind-api High Product jar package name bind Highest Product jar package name jakarta Highest Product jar package name xml Highest Product Manifest bundle-docurl https://www.eclipse.org Low Product Manifest Bundle-Name Jakarta XML Binding API Medium Product Manifest bundle-symbolicname jakarta.xml.bind-api Medium Product Manifest extension-name jakarta.xml.bind Medium Product Manifest implementation-build-id 1df980a Low Product pom artifactid jakarta.xml.bind-api Highest Product pom groupid jakarta.xml.bind Highest Product pom name Jakarta XML Binding API High Product pom parent-artifactid jakarta.xml.bind-api-parent Medium Version file version 4.0.4 High Version Manifest Bundle-Version 4.0.4 High Version Manifest Implementation-Version 4.0.4 High Version pom version 4.0.4 Highest
pkg:maven/jakarta.xml.bind/jakarta.xml.bind-api@4.0.4 (Confidence :High) Description:
Java library which enables encryption in java apps with minimum effort. License:
The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt File Path: /Users/oat/.m2/repository/org/jasypt/jasypt/1.9.3/jasypt-1.9.3.jar
MD5: 39327c7e38782102ecdb3c9dc4e8dcd3
SHA1: 0d99ef9540f51c617f2a293b460f025d2ee563dd
SHA256: f481fbb8dd8ce754bfde7552af4fcbe8c5e303d53663bb3d8ce9d4338e0e55aa
Referenced In Projects/Scopes: Apache WSS4J Streaming WS-Security:compile Apache WSS4J DOM WS-Security:compile Apache WSS4J Web WS-Security:compile Apache WSS4J WS-Security Common:compile Apache WSS4J Streaming WS-SecurityPolicy:compile jasypt-1.9.3.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.1 pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.1 pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.1 pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.1 pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.1 Evidence Type Source Name Value Confidence Vendor file name jasypt High Vendor jar package name encryption Highest Vendor jar package name jasypt Highest Vendor jar package name jasypt Low Vendor jar package name org Highest Vendor pom artifactid jasypt Highest Vendor pom artifactid jasypt Low Vendor pom developer email dfernandez AT users.sourceforge.net Low Vendor pom developer id dfernandez Medium Vendor pom developer name Daniel Fernandez Medium Vendor pom groupid org.jasypt Highest Vendor pom name JASYPT: Java Simplified Encryption High Vendor pom organization name The JASYPT team High Vendor pom organization url http://www.jasypt.org Medium Vendor pom url http://www.jasypt.org Highest Product file name jasypt High Product jar package name encryption Highest Product jar package name jasypt Highest Product jar package name org Highest Product pom artifactid jasypt Highest Product pom developer email dfernandez AT users.sourceforge.net Low Product pom developer id dfernandez Low Product pom developer name Daniel Fernandez Low Product pom groupid org.jasypt Highest Product pom name JASYPT: Java Simplified Encryption High Product pom organization name The JASYPT team Low Product pom organization url http://www.jasypt.org Low Product pom url http://www.jasypt.org Medium Version file version 1.9.3 High Version pom version 1.9.3 Highest
Description:
JAXB Core module. Contains sources required by XJC, JXC and Runtime modules. License:
http://www.eclipse.org/org/documents/edl-v10.php File Path: /Users/oat/.m2/repository/org/glassfish/jaxb/jaxb-core/4.0.5/jaxb-core-4.0.5.jar
MD5: ab09aef6bebd4438b0a02707881801e4
SHA1: 007b4b11ea5542eea4ad55e1080b23be436795b3
SHA256: ad3fd9bf00de3eda9859f70b6cfb011e2fe9904804e16a2665092888ece0fdca
Referenced In Projects/Scopes: Apache WSS4J Streaming WS-Security:runtime Apache WSS4J Streaming WS-SecurityPolicy:runtime jaxb-core-4.0.5.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.apache.wss4j/wss4j-ws-security-stax@4.0.1 pkg:maven/org.glassfish.jaxb/jaxb-runtime@4.0.5 Evidence Type Source Name Value Confidence Vendor file name jaxb-core High Vendor jar package name core Highest Vendor jar package name glassfish Highest Vendor jar package name jaxb Highest Vendor Manifest bundle-docurl https://www.eclipse.org Low Vendor Manifest bundle-symbolicname org.glassfish.jaxb.core Medium Vendor Manifest git-revision cb19596 Low Vendor Manifest implementation-build-id 4.0.5 - cb19596 Low Vendor Manifest Implementation-Vendor Eclipse Foundation High Vendor Manifest Implementation-Vendor-Id org.glassfish.jaxb Medium Vendor Manifest specification-vendor Eclipse Foundation Low Vendor pom artifactid jaxb-core Highest Vendor pom artifactid jaxb-core Low Vendor pom groupid org.glassfish.jaxb Highest Vendor pom name JAXB Core High Vendor pom parent-artifactid jaxb-parent Low Vendor pom parent-groupid com.sun.xml.bind.mvn Medium Vendor pom url https://eclipse-ee4j.github.io/jaxb-ri/ Highest Product file name jaxb-core High Product jar package name core Highest Product jar package name glassfish Highest Product jar package name jaxb Highest Product Manifest bundle-docurl https://www.eclipse.org Low Product Manifest Bundle-Name JAXB Core Medium Product Manifest bundle-symbolicname org.glassfish.jaxb.core Medium Product Manifest git-revision cb19596 Low Product Manifest implementation-build-id 4.0.5 - cb19596 Low Product Manifest Implementation-Title Eclipse Implementation of JAXB High Product Manifest specification-title Jakarta XML Binding Medium Product pom artifactid jaxb-core Highest Product pom groupid org.glassfish.jaxb Highest Product pom name JAXB Core High Product pom parent-artifactid jaxb-parent Medium Product pom parent-groupid com.sun.xml.bind.mvn Medium Product pom url https://eclipse-ee4j.github.io/jaxb-ri/ Medium Version file version 4.0.5 High Version Manifest build-version 4.0.5 Medium Version Manifest Bundle-Version 4.0.5 High Version Manifest implementation-build-id 4.0.5 Low Version pom version 4.0.5 Highest
pkg:maven/org.glassfish.jaxb/jaxb-core@4.0.5 (Confidence :High) Description:
JAXB (JSR 222) Reference Implementation License:
http://www.eclipse.org/org/documents/edl-v10.php File Path: /Users/oat/.m2/repository/org/glassfish/jaxb/jaxb-runtime/4.0.5/jaxb-runtime-4.0.5.jar
MD5: c7384f1f95b8a8e15291485ff9dbe4f3
SHA1: ca84c2a7169b5293e232b9d00d1e4e36d4c3914a
SHA256: 485d8940e76373a7f300815ea5504bf5b726c234425ad30971019d133124cca4
Referenced In Projects/Scopes: Apache WSS4J Streaming WS-Security:runtime Apache WSS4J Streaming WS-SecurityPolicy:runtime jaxb-runtime-4.0.5.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.apache.wss4j/wss4j-ws-security-stax@4.0.1 pkg:maven/org.apache.wss4j/wss4j-ws-security-stax@4.0.1 Evidence Type Source Name Value Confidence Vendor file name jaxb-runtime High Vendor jar package name glassfish Highest Vendor jar package name jaxb Highest Vendor jar package name runtime Highest Vendor Manifest bundle-docurl https://www.eclipse.org Low Vendor Manifest bundle-symbolicname org.glassfish.jaxb.runtime Medium Vendor Manifest git-revision cb19596 Low Vendor Manifest implementation-build-id 4.0.5 - cb19596 Low Vendor Manifest Implementation-Vendor Eclipse Foundation High Vendor Manifest Implementation-Vendor-Id org.glassfish.jaxb Medium Vendor Manifest provide-capability osgi.serviceloader;osgi.serviceloader="jakarta.xml.bind.JAXBContextFactory" Low Vendor Manifest specification-vendor Eclipse Foundation Low Vendor pom artifactid jaxb-runtime Highest Vendor pom artifactid jaxb-runtime Low Vendor pom groupid org.glassfish.jaxb Highest Vendor pom name JAXB Runtime High Vendor pom parent-artifactid jaxb-runtime-parent Low Vendor pom parent-groupid com.sun.xml.bind.mvn Medium Vendor pom url https://eclipse-ee4j.github.io/jaxb-ri/ Highest Product file name jaxb-runtime High Product jar package name glassfish Highest Product jar package name jaxb Highest Product jar package name runtime Highest Product Manifest bundle-docurl https://www.eclipse.org Low Product Manifest Bundle-Name JAXB Runtime Medium Product Manifest bundle-symbolicname org.glassfish.jaxb.runtime Medium Product Manifest git-revision cb19596 Low Product Manifest implementation-build-id 4.0.5 - cb19596 Low Product Manifest Implementation-Title Eclipse Implementation of JAXB High Product Manifest provide-capability osgi.serviceloader;osgi.serviceloader="jakarta.xml.bind.JAXBContextFactory" Low Product Manifest specification-title Jakarta XML Binding Medium Product pom artifactid jaxb-runtime Highest Product pom groupid org.glassfish.jaxb Highest Product pom name JAXB Runtime High Product pom parent-artifactid jaxb-runtime-parent Medium Product pom parent-groupid com.sun.xml.bind.mvn Medium Product pom url https://eclipse-ee4j.github.io/jaxb-ri/ Medium Version file version 4.0.5 High Version Manifest build-version 4.0.5 Medium Version Manifest Bundle-Version 4.0.5 High Version Manifest implementation-build-id 4.0.5 Low Version pom version 4.0.5 Highest
pkg:maven/org.glassfish.jaxb/jaxb-runtime@4.0.5 (Confidence :High) Description:
An artifact of well-named and well-specified annotations to power static analysis checks License:
The Apache License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt File Path: /Users/oat/.m2/repository/org/jspecify/jspecify/1.0.0/jspecify-1.0.0.jar
MD5: 9133aba420d0ca3b001dbb6ae9992cf6
SHA1: 7425a601c1c7ec76645a78d22b8c6a627edee507
SHA256: 1fad6e6be7557781e4d33729d49ae1cdc8fdda6fe477bb0cc68ce351eafdfbab
Referenced In Projects/Scopes: Apache WSS4J Streaming WS-Security:compile Apache WSS4J DOM WS-Security:compile Apache WSS4J Web WS-Security:compile Apache WSS4J WS-Security Common:compile Apache WSS4J Streaming WS-SecurityPolicy:compile jspecify-1.0.0.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.junit.jupiter/junit-jupiter-engine@6.0.0 pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.1 pkg:maven/com.google.guava/guava@33.5.0-jre pkg:maven/org.junit.jupiter/junit-jupiter-engine@6.0.0 pkg:maven/org.junit.jupiter/junit-jupiter-engine@6.0.0 Evidence Type Source Name Value Confidence Vendor file name jspecify High Vendor jar package name annotations Highest Vendor jar package name jspecify Highest Vendor Manifest bundle-docurl https://jspecify.dev/docs/start-here Low Vendor Manifest bundle-symbolicname org.jspecify.jspecify Medium Vendor Manifest multi-release true Low Vendor pom artifactid jspecify Highest Vendor pom artifactid jspecify Low Vendor pom developer email kevinb9n@gmail.com Low Vendor pom developer id kevinb9n Medium Vendor pom developer name Kevin Bourrillion Medium Vendor pom groupid org.jspecify Highest Vendor pom name JSpecify annotations High Vendor pom url http://jspecify.org/ Highest Product file name jspecify High Product jar package name annotations Highest Product jar package name jspecify Highest Product Manifest bundle-docurl https://jspecify.dev/docs/start-here Low Product Manifest Bundle-Name JSpecify annotations Medium Product Manifest bundle-symbolicname org.jspecify.jspecify Medium Product Manifest multi-release true Low Product pom artifactid jspecify Highest Product pom developer email kevinb9n@gmail.com Low Product pom developer id kevinb9n Low Product pom developer name Kevin Bourrillion Low Product pom groupid org.jspecify Highest Product pom name JSpecify annotations High Product pom url http://jspecify.org/ Medium Version file version 1.0.0 High Version Manifest Bundle-Version 1.0.0 High Version Manifest Implementation-Version 1.0.0 High Version pom version 1.0.0 Highest
pkg:maven/org.jspecify/jspecify@1.0.0 (Confidence :High) Description:
JSR305 Annotations for Findbugs License:
The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt File Path: /Users/oat/.m2/repository/com/google/code/findbugs/jsr305/3.0.2/jsr305-3.0.2.jar
MD5: dd83accb899363c32b07d7a1b2e4ce40
SHA1: 25ea2e8b0c338a877313bd4672d3fe056ea78f0d
SHA256: 766ad2a0783f2687962c8ad74ceecc38a28b9f72a2d085ee438b7813e928d0c7
Referenced In Projects/Scopes: Apache WSS4J Streaming WS-Security:compile Apache WSS4J DOM WS-Security:compile Apache WSS4J Web WS-Security:compile Apache WSS4J WS-Security Common:compile Apache WSS4J Streaming WS-SecurityPolicy:compile jsr305-3.0.2.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.1 pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.1 pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.1 pkg:maven/org.opensaml/opensaml-xacml-impl@5.1.6 pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.1 Evidence Type Source Name Value Confidence Vendor file name jsr305 High Vendor Manifest bundle-symbolicname org.jsr-305 Medium Vendor pom artifactid jsr305 Highest Vendor pom artifactid jsr305 Low Vendor pom groupid com.google.code.findbugs Highest Vendor pom name FindBugs-jsr305 High Vendor pom url http://findbugs.sourceforge.net/ Highest Product file name jsr305 High Product Manifest Bundle-Name FindBugs-jsr305 Medium Product Manifest bundle-symbolicname org.jsr-305 Medium Product pom artifactid jsr305 Highest Product pom groupid com.google.code.findbugs Highest Product pom name FindBugs-jsr305 High Product pom url http://findbugs.sourceforge.net/ Medium Version file version 3.0.2 High Version Manifest Bundle-Version 3.0.2 High Version pom version 3.0.2 Highest
pkg:maven/com.google.code.findbugs/jsr305@3.0.2 (Confidence :High) Description:
Apache Neethi provides general framework for the programmers to use WS Policy. It is compliant with latest WS Policy specification which was published in March 2006. This framework is specifically written to enable the Apache Web services stack to use WS Policy as a way of expressing it's requirements and capabilities. License:
Apache-2.0: https://www.apache.org/licenses/LICENSE-2.0.txt File Path: /Users/oat/.m2/repository/org/apache/neethi/neethi/3.2.1/neethi-3.2.1.jar
MD5: 6d100128ec1e1417687c4fc65cf925f1
SHA1: 2d239fd19646201c6dfcc01f3d805b9158d92c94
SHA256: 9aafe21e37e11bebd3bd5b55aa5e97da79eabdd2af19faf0992cf7887d8db5f0
Referenced In Projects/Scopes: Apache WSS4J WS-SecurityPolicy model:compile Apache WSS4J Streaming WS-SecurityPolicy:compile neethi-3.2.1.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.apache.wss4j/wss4j-policy@4.0.1 pkg:maven/org.apache.wss4j/wss4j-policy@4.0.1 Evidence Type Source Name Value Confidence Vendor file name neethi High Vendor jar package name apache Highest Vendor jar package name neethi Highest Vendor jar package name policy Highest Vendor Manifest bundle-docurl https://www.apache.org/ Low Vendor Manifest bundle-symbolicname org.apache.neethi Medium Vendor Manifest Implementation-Vendor The Apache Software Foundation High Vendor Manifest Implementation-Vendor-Id org.apache Medium Vendor Manifest specification-vendor The Apache Software Foundation Low Vendor pom artifactid neethi Highest Vendor pom artifactid neethi Low Vendor pom developer email chatra@gmail.com Low Vendor pom developer email dims@yahoo.com Low Vendor pom developer email dkulp@apache.org Low Vendor pom developer email sanjiva@opensource.lk Low Vendor pom developer email sanka@apache.org Low Vendor pom developer email veithen@apache.org Low Vendor pom developer email werner.dittmann@siemens.com Low Vendor pom developer id chatra Medium Vendor pom developer id dims Medium Vendor pom developer id dkulp Medium Vendor pom developer id sanjiva Medium Vendor pom developer id sanka Medium Vendor pom developer id veithen Medium Vendor pom developer id werner Medium Vendor pom developer name Andreas Veithen Medium Vendor pom developer name Chatra Nakkawita Medium Vendor pom developer name Daniel Kulp Medium Vendor pom developer name Davanum Srinivas Medium Vendor pom developer name Dittmann, Werner Medium Vendor pom developer name Sanjiva Weerawarana Medium Vendor pom developer name Sanka Samaranayake Medium Vendor pom developer org IBM Medium Vendor pom developer org WSO2 Inc. Medium Vendor pom groupid org.apache.neethi Highest Vendor pom name Apache Neethi High Vendor pom organization name The Apache Software Foundation High Vendor pom organization url https://www.apache.org/ Medium Vendor pom parent-artifactid apache Low Vendor pom parent-groupid org.apache Medium Vendor pom url https://ws.apache.org/neethi/ Highest Product file name neethi High Product jar package name apache Highest Product jar package name neethi Highest Product jar package name policy Highest Product Manifest bundle-docurl https://www.apache.org/ Low Product Manifest Bundle-Name Apache Neethi Medium Product Manifest bundle-symbolicname org.apache.neethi Medium Product Manifest Implementation-Title Apache Neethi High Product Manifest specification-title Apache Neethi Medium Product pom artifactid neethi Highest Product pom developer email chatra@gmail.com Low Product pom developer email dims@yahoo.com Low Product pom developer email dkulp@apache.org Low Product pom developer email sanjiva@opensource.lk Low Product pom developer email sanka@apache.org Low Product pom developer email veithen@apache.org Low Product pom developer email werner.dittmann@siemens.com Low Product pom developer id chatra Low Product pom developer id dims Low Product pom developer id dkulp Low Product pom developer id sanjiva Low Product pom developer id sanka Low Product pom developer id veithen Low Product pom developer id werner Low Product pom developer name Andreas Veithen Low Product pom developer name Chatra Nakkawita Low Product pom developer name Daniel Kulp Low Product pom developer name Davanum Srinivas Low Product pom developer name Dittmann, Werner Low Product pom developer name Sanjiva Weerawarana Low Product pom developer name Sanka Samaranayake Low Product pom developer org IBM Low Product pom developer org WSO2 Inc. Low Product pom groupid org.apache.neethi Highest Product pom name Apache Neethi High Product pom organization name The Apache Software Foundation Low Product pom organization url https://www.apache.org/ Low Product pom parent-artifactid apache Medium Product pom parent-groupid org.apache Medium Product pom url https://ws.apache.org/neethi/ Medium Version file version 3.2.1 High Version Manifest Bundle-Version 3.2.1 High Version Manifest Implementation-Version 3.2.1 High Version pom parent-version 3.2.1 Low Version pom version 3.2.1 Highest
pkg:maven/org.apache.neethi/neethi@3.2.1 (Confidence :High) Description:
Core API File Path: /Users/oat/.m2/repository/org/opensaml/opensaml-core-api/5.1.6/opensaml-core-api-5.1.6.jarMD5: 1c6feaf459062a96926a883c8bf14ca6SHA1: 9bcb391af20349d019b947956d73ba44a93d59b4SHA256: 358d99f2b9204a3f44a6542a2a11b3ce809328bab7c6f78a8d09e993b5b61232Referenced In Projects/Scopes:
Apache WSS4J Streaming WS-Security:compile Apache WSS4J DOM WS-Security:compile Apache WSS4J Web WS-Security:compile Apache WSS4J WS-Security Common:compile Apache WSS4J Streaming WS-SecurityPolicy:compile opensaml-core-api-5.1.6.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.1 pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.1 pkg:maven/org.opensaml/opensaml-saml-impl@5.1.6 pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.1 pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.1 Evidence Type Source Name Value Confidence Vendor file name opensaml-core-api High Vendor hint analyzer vendor shibboleth Highest Vendor jar package name core Highest Vendor jar package name opensaml Highest Vendor Manifest automatic-module-name org.opensaml.core Medium Vendor Manifest build-jdk-spec 17 Low Vendor manifest: org/opensaml/core/ Implementation-Vendor opensaml.org Medium Vendor pom artifactid opensaml-core-api Highest Vendor pom artifactid opensaml-core-api Low Vendor pom groupid org.opensaml Highest Vendor pom name OpenSAML :: Core API High Vendor pom parent-artifactid opensaml-parent Low Product file name opensaml-core-api High Product hint analyzer product opensaml Highest Product jar package name core Highest Product jar package name opensaml Highest Product Manifest automatic-module-name org.opensaml.core Medium Product Manifest build-jdk-spec 17 Low Product manifest: org/opensaml/core/ Implementation-Title opensaml-core-api Medium Product pom artifactid opensaml-core-api Highest Product pom groupid org.opensaml Highest Product pom name OpenSAML :: Core API High Product pom parent-artifactid opensaml-parent Medium Version file version 5.1.6 High Version manifest: org/opensaml/core/ Implementation-Version 5.1.6 Medium Version pom version 5.1.6 Highest
Related Dependencies opensaml-core-impl-5.1.6.jarFile Path: /Users/oat/.m2/repository/org/opensaml/opensaml-core-impl/5.1.6/opensaml-core-impl-5.1.6.jar MD5: 158003fde004589304033b0d674e8731 SHA1: 43f8990e6e7b66e20db81efdaad7f8a101745739 SHA256: a7d3f2f4f7834faaa86dbf232bdb8b5f7fdb7633b06aa89622799689c97eacfc pkg:maven/org.opensaml/opensaml-core-impl@5.1.6 opensaml-profile-api-5.1.6.jarFile Path: /Users/oat/.m2/repository/org/opensaml/opensaml-profile-api/5.1.6/opensaml-profile-api-5.1.6.jar MD5: a426e71c5eb6c774b673f95b51fd0bc6 SHA1: a884c24980a667cc40ad3a8fd975fd825813f9f7 SHA256: 76eaf713c8542c1649658cf00e45ecd3c19812f266cbdb306daae11bf6f6a3e7 pkg:maven/org.opensaml/opensaml-profile-api@5.1.6 opensaml-saml-api-5.1.6.jarFile Path: /Users/oat/.m2/repository/org/opensaml/opensaml-saml-api/5.1.6/opensaml-saml-api-5.1.6.jar MD5: 6e36d3ecf540fb40e68b35c88ab0d92e SHA1: ce5f7ee9ad5591ce694c23e3b79fe52c9a3071ab SHA256: 94f059f286a09e6763db0a4638b113387f1dc41047ca7ad1fa37402d9856b4ee pkg:maven/org.opensaml/opensaml-saml-api@5.1.6 opensaml-saml-impl-5.1.6.jarFile Path: /Users/oat/.m2/repository/org/opensaml/opensaml-saml-impl/5.1.6/opensaml-saml-impl-5.1.6.jar MD5: 4b31c2896b16137640456e7029d00661 SHA1: f7c7b467da101f83a8a8598b58b85b5142f3e8b3 SHA256: cf572ac4261bf7b2609e36fcec8002dc25137aefb36b7e4509c1ee2272f3737d pkg:maven/org.opensaml/opensaml-saml-impl@5.1.6 opensaml-security-api-5.1.6.jarFile Path: /Users/oat/.m2/repository/org/opensaml/opensaml-security-api/5.1.6/opensaml-security-api-5.1.6.jar MD5: 32aedbb1fff833ad4d3ae9bedbe25d97 SHA1: cbfabbd2b144f5f28adb0035ce220158f8cd072d SHA256: 591a7fd00d8e6fc3b04586109121ad5a2aa5a370de41bfcbe2170c20a4f17f36 pkg:maven/org.opensaml/opensaml-security-api@5.1.6 opensaml-security-impl-5.1.6.jarFile Path: /Users/oat/.m2/repository/org/opensaml/opensaml-security-impl/5.1.6/opensaml-security-impl-5.1.6.jar MD5: beae916a12c1aed935dbf39128ed7f82 SHA1: 4654624a8cd6e4c95d43d96213e405c54c4e9786 SHA256: 3d323b7ceabcf8cbc03e0551d0c077fbb4b9afa6874dfe998898e8b7561ff92a pkg:maven/org.opensaml/opensaml-security-impl@5.1.6 opensaml-soap-api-5.1.6.jarFile Path: /Users/oat/.m2/repository/org/opensaml/opensaml-soap-api/5.1.6/opensaml-soap-api-5.1.6.jar MD5: dd3b1cba31ea4c5e9bfd5f759c1aebd4 SHA1: c15ffaf06000150a8719b1a7703cc7c898064e9e SHA256: 8936502b829ebe3aee4e5863c58ec3a1abd328eedba11262d1b53c969b127ac6 pkg:maven/org.opensaml/opensaml-soap-api@5.1.6 opensaml-xacml-api-5.1.6.jarFile Path: /Users/oat/.m2/repository/org/opensaml/opensaml-xacml-api/5.1.6/opensaml-xacml-api-5.1.6.jar MD5: 3714f82a0760d68683dd2eac5a5272a7 SHA1: ed99a6840b6d886a63cbed69e3b705d262469432 SHA256: c044a406d434b3c01492a77d676de32e242b456611a3c42e30b66bed74c81dde pkg:maven/org.opensaml/opensaml-xacml-api@5.1.6 opensaml-xacml-impl-5.1.6.jarFile Path: /Users/oat/.m2/repository/org/opensaml/opensaml-xacml-impl/5.1.6/opensaml-xacml-impl-5.1.6.jar MD5: 99baab48a28e6dc330c3acc9952ea528 SHA1: d06f74da16d353ed0a4829164807ee4ee127f7ad SHA256: fe5f2b3915f65de21bdf15dc75492a542ce96e470d6f6b4ae4a9fa993d40b222 pkg:maven/org.opensaml/opensaml-xacml-impl@5.1.6 opensaml-xacml-saml-api-5.1.6.jarFile Path: /Users/oat/.m2/repository/org/opensaml/opensaml-xacml-saml-api/5.1.6/opensaml-xacml-saml-api-5.1.6.jar MD5: 9e5f3763ba9aeb7d26b7de494ca4fdbe SHA1: 2b07ecb5a70e525e5a9295371722bb4e16c7d62c SHA256: 3401c8d65dcc32a63209ff4ef2d4c4b8a80e4636940dda7cc41149f4193d38f1 pkg:maven/org.opensaml/opensaml-xacml-saml-api@5.1.6 opensaml-xacml-saml-impl-5.1.6.jarFile Path: /Users/oat/.m2/repository/org/opensaml/opensaml-xacml-saml-impl/5.1.6/opensaml-xacml-saml-impl-5.1.6.jar MD5: b761da70f7ddbd9f75691e85efbd809d SHA1: cd2191a02ec63cc59fbf127083d000c0e621f8d7 SHA256: c024e6dbfa138b33b73e3fd7e0397a4d585219298d7a8f6e531f1bc09a56187e pkg:maven/org.opensaml/opensaml-xacml-saml-impl@5.1.6 opensaml-xmlsec-api-5.1.6.jarFile Path: /Users/oat/.m2/repository/org/opensaml/opensaml-xmlsec-api/5.1.6/opensaml-xmlsec-api-5.1.6.jar MD5: 804c5f87c24ef417f4e78422f2ef8ed1 SHA1: f6ee6c1f600bc86e893fb50ad3f34c311126c742 SHA256: e59eb655bd3f6bff8c150a781800766245349aa0fab32cb0465e7d2203faf861 pkg:maven/org.opensaml/opensaml-xmlsec-api@5.1.6 opensaml-xmlsec-impl-5.1.6.jarFile Path: /Users/oat/.m2/repository/org/opensaml/opensaml-xmlsec-impl/5.1.6/opensaml-xmlsec-impl-5.1.6.jar MD5: 09719a0983e2e165d3b8ab0ff7d6fa7f SHA1: dc2fbb43bb19fecc904e9f025cfc760d44cf7158 SHA256: 7a674633c8581b59c6ce9e14ed8d96eb2d70c56d37ad4da1492579bf57652b80 pkg:maven/org.opensaml/opensaml-xmlsec-impl@5.1.6 File Path: /Users/oat/.m2/repository/net/shibboleth/shib-networking/9.1.6/shib-networking-9.1.6.jarMD5: e0e7c170126a5e3973d0dee33a8e3d97SHA1: e4059308ebca9f33159df7218dee99f9f0af8871SHA256: 5b0e462da3e0be62c119047848b4e8e5af0e25f5e309bcb4e506938a86338fbeReferenced In Projects/Scopes:
Apache WSS4J Streaming WS-Security:compile Apache WSS4J DOM WS-Security:compile Apache WSS4J Web WS-Security:compile Apache WSS4J WS-Security Common:compile Apache WSS4J Streaming WS-SecurityPolicy:compile shib-networking-9.1.6.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.opensaml/opensaml-saml-impl@5.1.6 pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.1 pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.1 pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.1 pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.1 Evidence Type Source Name Value Confidence Vendor file name shib-networking High Vendor jar package name net Highest Vendor jar package name shared Highest Vendor jar package name shibboleth Highest Vendor Manifest automatic-module-name net.shibboleth.networking Medium Vendor Manifest build-jdk-spec 17 Low Vendor pom artifactid shib-networking Highest Vendor pom artifactid shib-networking Low Vendor pom groupid net.shibboleth Highest Vendor pom name Shibboleth Shared :: Networking Support High Vendor pom parent-artifactid shib-shared-parent Low Product file name shib-networking High Product jar package name net Highest Product jar package name shared Highest Product jar package name shibboleth Highest Product Manifest automatic-module-name net.shibboleth.networking Medium Product Manifest build-jdk-spec 17 Low Product pom artifactid shib-networking Highest Product pom groupid net.shibboleth Highest Product pom name Shibboleth Shared :: Networking Support High Product pom parent-artifactid shib-shared-parent Medium Version file version 9.1.6 High Version pom version 9.1.6 Highest
pkg:maven/net.shibboleth/shib-networking@9.1.6 (Confidence :High) File Path: /Users/oat/.m2/repository/net/shibboleth/shib-security/9.1.6/shib-security-9.1.6.jarMD5: 43189c546edbf62271f092c39b96f559SHA1: 4f191e79c8e2a0b211f4d97ab61c31dd5bd463eeSHA256: 90eb9b9df1fee85141c89fb662c4faa0fe21dd86294f7e8e166ab898f6ac67d0Referenced In Projects/Scopes:
Apache WSS4J Streaming WS-Security:compile Apache WSS4J DOM WS-Security:compile Apache WSS4J Web WS-Security:compile Apache WSS4J WS-Security Common:compile Apache WSS4J Streaming WS-SecurityPolicy:compile shib-security-9.1.6.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.1 pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.1 pkg:maven/org.opensaml/opensaml-saml-impl@5.1.6 pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.1 pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.1 Evidence Type Source Name Value Confidence Vendor file name shib-security High Vendor jar package name net Highest Vendor jar package name security Highest Vendor jar package name shared Highest Vendor jar package name shibboleth Highest Vendor Manifest automatic-module-name net.shibboleth.shared.security Medium Vendor Manifest build-jdk-spec 17 Low Vendor pom artifactid shib-security Highest Vendor pom artifactid shib-security Low Vendor pom groupid net.shibboleth Highest Vendor pom name Shibboleth Shared :: Security Support High Vendor pom parent-artifactid shib-shared-parent Low Product file name shib-security High Product jar package name net Highest Product jar package name security Highest Product jar package name shared Highest Product jar package name shibboleth Highest Product Manifest automatic-module-name net.shibboleth.shared.security Medium Product Manifest build-jdk-spec 17 Low Product pom artifactid shib-security Highest Product pom groupid net.shibboleth Highest Product pom name Shibboleth Shared :: Security Support High Product pom parent-artifactid shib-shared-parent Medium Version file version 9.1.6 High Version pom version 9.1.6 Highest
pkg:maven/net.shibboleth/shib-security@9.1.6 (Confidence :High) File Path: /Users/oat/.m2/repository/net/shibboleth/shib-support/9.1.6/shib-support-9.1.6.jarMD5: ab132a449837bbc112bcd5248a808a65SHA1: a1efb8b1b293b1c01e6fa48d7feeb3b6917ea68dSHA256: c65489418c32289c5fa7a7feb1ad8d5075e4e0ad14fd170b959eb592b53f055aReferenced In Projects/Scopes:
Apache WSS4J Streaming WS-Security:compile Apache WSS4J DOM WS-Security:compile Apache WSS4J Web WS-Security:compile Apache WSS4J WS-Security Common:compile Apache WSS4J Streaming WS-SecurityPolicy:compile shib-support-9.1.6.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.1 pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.1 pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.1 pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.1 pkg:maven/org.opensaml/opensaml-saml-impl@5.1.6 Evidence Type Source Name Value Confidence Vendor file name shib-support High Vendor jar package name net Highest Vendor jar package name shared Highest Vendor jar package name shibboleth Highest Vendor Manifest automatic-module-name net.shibboleth.shared.support Medium Vendor Manifest build-jdk-spec 17 Low Vendor pom artifactid shib-support Highest Vendor pom artifactid shib-support Low Vendor pom groupid net.shibboleth Highest Vendor pom name Shibboleth Shared :: Generic Support Classes High Vendor pom parent-artifactid shib-shared-parent Low Product file name shib-support High Product jar package name net Highest Product jar package name shared Highest Product jar package name shibboleth Highest Product Manifest automatic-module-name net.shibboleth.shared.support Medium Product Manifest build-jdk-spec 17 Low Product pom artifactid shib-support Highest Product pom groupid net.shibboleth Highest Product pom name Shibboleth Shared :: Generic Support Classes High Product pom parent-artifactid shib-shared-parent Medium Version file version 9.1.6 High Version pom version 9.1.6 Highest
pkg:maven/net.shibboleth/shib-support@9.1.6 (Confidence :High) File Path: /Users/oat/.m2/repository/net/shibboleth/shib-velocity/9.1.6/shib-velocity-9.1.6.jarMD5: ef3c28da4b27f5974e5a2592e757222eSHA1: 4d4e83237964e272bc0f0db491eb4421cdf2e1cbSHA256: 99553ad68207c955219128a5521dcec62d476da56509aa3a548a6623402d7615Referenced In Projects/Scopes:
Apache WSS4J Streaming WS-Security:compile Apache WSS4J DOM WS-Security:compile Apache WSS4J Web WS-Security:compile Apache WSS4J WS-Security Common:compile Apache WSS4J Streaming WS-SecurityPolicy:compile shib-velocity-9.1.6.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.1 pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.1 pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.1 pkg:maven/org.opensaml/opensaml-saml-impl@5.1.6 pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.1 Evidence Type Source Name Value Confidence Vendor file name shib-velocity High Vendor jar package name net Highest Vendor jar package name shared Highest Vendor jar package name shibboleth Highest Vendor jar package name velocity Highest Vendor Manifest automatic-module-name net.shibboleth.shared.velocity Medium Vendor Manifest build-jdk-spec 17 Low Vendor pom artifactid shib-velocity Highest Vendor pom artifactid shib-velocity Low Vendor pom groupid net.shibboleth Highest Vendor pom name Shibboleth Shared :: Velocity Support High Vendor pom parent-artifactid shib-shared-parent Low Product file name shib-velocity High Product jar package name net Highest Product jar package name shared Highest Product jar package name shibboleth Highest Product jar package name velocity Highest Product Manifest automatic-module-name net.shibboleth.shared.velocity Medium Product Manifest build-jdk-spec 17 Low Product pom artifactid shib-velocity Highest Product pom groupid net.shibboleth Highest Product pom name Shibboleth Shared :: Velocity Support High Product pom parent-artifactid shib-shared-parent Medium Version file version 9.1.6 High Version pom version 9.1.6 Highest
pkg:maven/net.shibboleth/shib-velocity@9.1.6 (Confidence :High) Description:
The slf4j API License:
https://opensource.org/license/mit File Path: /Users/oat/.m2/repository/org/slf4j/slf4j-api/2.0.17/slf4j-api-2.0.17.jar
MD5: b6480d114a23683498ac3f746f959d2f
SHA1: d9e58ac9c7779ba3bf8142aff6c830617a7fe60f
SHA256: 7b751d952061954d5abfed7181c1f645d336091b679891591d63329c622eb832
Referenced In Projects/Scopes: Apache WSS4J Streaming WS-Security:compile Apache WSS4J DOM WS-Security:compile Apache WSS4J Web WS-Security:compile Apache WSS4J WS-Security Common:compile Apache WSS4J Streaming WS-SecurityPolicy:compile slf4j-api-2.0.17.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.1 pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.1 pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.1 pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.1 pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.1 Evidence Type Source Name Value Confidence Vendor file name slf4j-api High Vendor jar package name slf4j Highest Vendor Manifest build-jdk-spec 21 Low Vendor Manifest bundle-docurl http://www.slf4j.org Low Vendor Manifest bundle-symbolicname slf4j.api Medium Vendor Manifest multi-release true Low Vendor pom artifactid slf4j-api Highest Vendor pom artifactid slf4j-api Low Vendor pom groupid org.slf4j Highest Vendor pom name SLF4J API Module High Vendor pom parent-artifactid slf4j-parent Low Vendor pom url http://www.slf4j.org Highest Product file name slf4j-api High Product jar package name slf4j Highest Product Manifest build-jdk-spec 21 Low Product Manifest bundle-docurl http://www.slf4j.org Low Product Manifest Bundle-Name SLF4J API Module Medium Product Manifest bundle-symbolicname slf4j.api Medium Product Manifest Implementation-Title slf4j-api High Product Manifest multi-release true Low Product pom artifactid slf4j-api Highest Product pom groupid org.slf4j Highest Product pom name SLF4J API Module High Product pom parent-artifactid slf4j-parent Medium Product pom url http://www.slf4j.org Medium Version file version 2.0.17 High Version Manifest Bundle-Version 2.0.17 High Version Manifest Implementation-Version 2.0.17 High Version pom version 2.0.17 Highest
pkg:maven/org.slf4j/slf4j-api@2.0.17 (Confidence :High) Description:
Stax2 API is an extension to basic Stax 1.0 API that adds significant new functionality, such as full-featured bi-direction validation interface and high-performance Typed Access API.
License:
The BSD 2-Clause License: http://www.opensource.org/licenses/bsd-license.php File Path: /Users/oat/.m2/repository/org/codehaus/woodstox/stax2-api/4.2.2/stax2-api-4.2.2.jar
MD5: 6949cace015c0f408f0b846e3735d301
SHA1: b0d746cadea928e5264f2ea294ea9a1bf815bbde
SHA256: a61c48d553efad78bc01fffc4ac528bebbae64cbaec170b2a5e39cf61eb51abe
Referenced In Projects/Scopes: Apache WSS4J WS-Security Common:runtime Apache WSS4J DOM WS-Security:runtime Apache WSS4J Streaming WS-Security:runtime Apache WSS4J Web WS-Security:runtime Apache WSS4J Streaming WS-SecurityPolicy:runtime Apache WSS4J WS-Security Bindings:runtime stax2-api-4.2.2.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.apache.santuario/xmlsec@4.0.4 pkg:maven/org.apache.santuario/xmlsec@4.0.4 pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.1 pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.1 pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.1 pkg:maven/org.apache.wss4j/wss4j-bindings@4.0.1 Evidence Type Source Name Value Confidence Vendor file name stax2-api High Vendor jar package name codehaus Highest Vendor jar package name stax2 Highest Vendor jar package name typed Highest Vendor jar package name validation Highest Vendor Manifest automatic-module-name org.codehaus.stax2 Medium Vendor Manifest build-jdk-spec 1.8 Low Vendor Manifest bundle-docurl http://github.com/FasterXML/stax2-api Low Vendor Manifest bundle-symbolicname stax2-api Medium Vendor Manifest Implementation-Vendor fasterxml.com High Vendor Manifest Implementation-Vendor-Id org.codehaus.woodstox Medium Vendor Manifest specification-vendor fasterxml.com Low Vendor pom artifactid stax2-api Highest Vendor pom artifactid stax2-api Low Vendor pom developer email tatu@fasterxml.com Low Vendor pom developer id tatu Medium Vendor pom developer name Tatu Saloranta Medium Vendor pom groupid org.codehaus.woodstox Highest Vendor pom name Stax2 API High Vendor pom organization name fasterxml.com High Vendor pom organization url http://fasterxml.com Medium Vendor pom parent-artifactid oss-parent Low Vendor pom parent-groupid com.fasterxml Medium Vendor pom url http://github.com/FasterXML/stax2-api Highest Product file name stax2-api High Product jar package name codehaus Highest Product jar package name stax2 Highest Product jar package name typed Highest Product jar package name validation Highest Product Manifest automatic-module-name org.codehaus.stax2 Medium Product Manifest build-jdk-spec 1.8 Low Product Manifest bundle-docurl http://github.com/FasterXML/stax2-api Low Product Manifest Bundle-Name Stax2 API Medium Product Manifest bundle-symbolicname stax2-api Medium Product Manifest Implementation-Title Stax2 API High Product Manifest specification-title Stax2 API Medium Product pom artifactid stax2-api Highest Product pom developer email tatu@fasterxml.com Low Product pom developer id tatu Low Product pom developer name Tatu Saloranta Low Product pom groupid org.codehaus.woodstox Highest Product pom name Stax2 API High Product pom organization name fasterxml.com Low Product pom organization url http://fasterxml.com Low Product pom parent-artifactid oss-parent Medium Product pom parent-groupid com.fasterxml Medium Product pom url http://github.com/FasterXML/stax2-api Medium Version file version 4.2.2 High Version Manifest Bundle-Version 4.2.2 High Version Manifest Implementation-Version 4.2.2 High Version pom parent-version 4.2.2 Low Version pom version 4.2.2 Highest
pkg:maven/org.codehaus.woodstox/stax2-api@4.2.2 (Confidence :High) Description:
TXW is a library that allows you to write XML documents.
File Path: /Users/oat/.m2/repository/org/glassfish/jaxb/txw2/4.0.5/txw2-4.0.5.jarMD5: 2f5aa7dbd5e326562cff6ce720a1485aSHA1: f36a4ef12120a9bb06d766d6a0e54b144fd7ed98SHA256: 917355bc451481f30d043b24d123110517966af34383901773882810dca480e5Referenced In Projects/Scopes:
Apache WSS4J Streaming WS-Security:runtime Apache WSS4J Streaming WS-SecurityPolicy:runtime txw2-4.0.5.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.apache.wss4j/wss4j-ws-security-stax@4.0.1 pkg:maven/org.glassfish.jaxb/jaxb-runtime@4.0.5 Evidence Type Source Name Value Confidence Vendor file name txw2 High Vendor jar package name sun Highest Vendor jar package name txw Highest Vendor jar package name txw2 Highest Vendor jar package name xml Highest Vendor jar (hint) package name oracle Highest Vendor Manifest git-revision cb19596 Low Vendor Manifest Implementation-Vendor Eclipse Foundation High Vendor Manifest Implementation-Vendor-Id org.eclipse Medium Vendor Manifest specification-vendor Eclipse Foundation Low Vendor pom artifactid txw2 Highest Vendor pom artifactid txw2 Low Vendor pom groupid org.glassfish.jaxb Highest Vendor pom name TXW2 Runtime High Vendor pom parent-artifactid jaxb-txw-parent Low Vendor pom parent-groupid com.sun.xml.bind.mvn Medium Vendor pom url https://eclipse-ee4j.github.io/jaxb-ri/ Highest Product file name txw2 High Product jar package name sun Highest Product jar package name txw Highest Product jar package name txw2 Highest Product jar package name xml Highest Product Manifest git-revision cb19596 Low Product Manifest Implementation-Title Eclipse Implementation of JAXB High Product Manifest specification-title Jakarta XML Binding Medium Product pom artifactid txw2 Highest Product pom groupid org.glassfish.jaxb Highest Product pom name TXW2 Runtime High Product pom parent-artifactid jaxb-txw-parent Medium Product pom parent-groupid com.sun.xml.bind.mvn Medium Product pom url https://eclipse-ee4j.github.io/jaxb-ri/ Medium Version file version 4.0.5 High Version Manifest build-version 4.0.5 Medium Version pom version 4.0.5 Highest
pkg:maven/org.glassfish.jaxb/txw2@4.0.5 (Confidence :High) Description:
Unknown version of isorelax library used in JAXB project File Path: /Users/oat/.m2/repository/com/fasterxml/woodstox/woodstox-core/7.1.0/woodstox-core-7.1.0.jar/META-INF/maven/com.sun.xml.bind.jaxb/isorelax/pom.xmlMD5: 6fbb4bc95fbf2072bc6e3b790553fe81SHA1: 314ec72948d5c1fc71d553cbbd7a130caa6f9f13SHA256: cda6451d0231a973352b592ff950e39224ba6ba1a2f35eeab66511b5c225dff1Referenced In Projects/Scopes:
Apache WSS4J WS-Security Common:runtime Apache WSS4J DOM WS-Security:runtime Apache WSS4J Streaming WS-Security:runtime Apache WSS4J Web WS-Security:runtime Apache WSS4J Streaming WS-SecurityPolicy:runtime Apache WSS4J WS-Security Bindings:runtime Evidence Type Source Name Value Confidence Vendor pom artifactid isorelax Low Vendor pom groupid com.sun.xml.bind.jaxb Highest Vendor pom name JAXB isorelax library High Vendor pom parent-artifactid jvnet-parent Low Vendor pom parent-groupid net.java Medium Product pom artifactid isorelax Highest Product pom groupid com.sun.xml.bind.jaxb Highest Product pom name JAXB isorelax library High Product pom parent-artifactid jvnet-parent Medium Product pom parent-groupid net.java Medium Version pom parent-version 20090621 Low Version pom version 20090621 Highest
pkg:maven/com.sun.xml.bind.jaxb/isorelax@20090621 (Confidence :High) Description:
XML Schema datatypes library License:
BSD File Path: /Users/oat/.m2/repository/com/fasterxml/woodstox/woodstox-core/7.1.0/woodstox-core-7.1.0.jar/META-INF/maven/net.java.dev.msv/xsdlib/pom.xml
MD5: f82c4c4c46c8a27ee68f031373064bf9
SHA1: 1b9b8fe3901f3556ed99a477af66f0f645c16cf0
SHA256: 8649b880ac5dbb3549022c40eff4053930ea209c4aaf998925fb3d6dd75fb6c3
Referenced In Projects/Scopes: Apache WSS4J WS-Security Common:runtime Apache WSS4J DOM WS-Security:runtime Apache WSS4J Streaming WS-Security:runtime Apache WSS4J Web WS-Security:runtime Apache WSS4J Streaming WS-SecurityPolicy:runtime Apache WSS4J WS-Security Bindings:runtime Evidence Type Source Name Value Confidence Vendor pom artifactid xsdlib Low Vendor pom groupid net.java.dev.msv Highest Vendor pom name MSV XML Schema Datatype Library High Vendor pom parent-artifactid msv Low Product pom artifactid xsdlib Highest Product pom groupid net.java.dev.msv Highest Product pom name MSV XML Schema Datatype Library High Product pom parent-artifactid msv Medium Version pom version 2022.7 Highest
pkg:maven/net.java.dev.msv/xsdlib@2022.7 (Confidence :High) cpe:2.3:a:xml_library_project:xml_library:2022.7:*:*:*:*:*:*:* (Confidence :Low) suppress Description:
Woodstox is a high-performance XML processor that implements Stax (JSR-173),
SAX2 and Stax2 APIs
License:
The Apache License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt File Path: /Users/oat/.m2/repository/com/fasterxml/woodstox/woodstox-core/7.1.0/woodstox-core-7.1.0.jar
MD5: f8b70141712cd2ac67800ba036f0aa13
SHA1: 95341048cfb852aa05037e6cc83069b8664728c5
SHA256: 81266920a1cdc47306a8a2b4726c99ec89b3fbf31c2470e4f5e477d9d857ca9f
Referenced In Projects/Scopes: Apache WSS4J WS-Security Common:runtime Apache WSS4J DOM WS-Security:runtime Apache WSS4J Streaming WS-Security:runtime Apache WSS4J Web WS-Security:runtime Apache WSS4J Streaming WS-SecurityPolicy:runtime Apache WSS4J WS-Security Bindings:runtime woodstox-core-7.1.0.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.1 pkg:maven/org.apache.wss4j/wss4j-bindings@4.0.1 pkg:maven/org.apache.santuario/xmlsec@4.0.4 pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.1 pkg:maven/org.apache.santuario/xmlsec@4.0.4 pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.1 Evidence Type Source Name Value Confidence Vendor file name woodstox-core High Vendor jar package name stax Highest Vendor Manifest build-jdk-spec 1.8 Low Vendor Manifest bundle-docurl https://github.com/FasterXML/woodstox Low Vendor Manifest bundle-symbolicname com.fasterxml.woodstox.woodstox-core Medium Vendor Manifest Implementation-Vendor FasterXML High Vendor Manifest Implementation-Vendor-Id com.fasterxml.woodstox Medium Vendor Manifest provide-capability osgi.service;objectClass:List="javax.xml.stream.XMLEventFactory";effective:=active,osgi.service;objectClass:List="javax.xml.stream.XMLInputFactory";effective:=active,osgi.service;objectClass:List="javax.xml.stream.XMLOutputFactory";effective:=active,osgi.service;objectClass:List="org.codehaus.stax2.validation.XMLValidationSchemaFactory";effective:=active,osgi.serviceloader;osgi.serviceloader="javax.xml.stream.XMLEventFactory";register:="com.ctc.wstx.stax.WstxEventFactory",osgi.serviceloader;osgi.serviceloader="javax.xml.stream.XMLInputFactory";register:="com.ctc.wstx.stax.WstxInputFactory",osgi.serviceloader;osgi.serviceloader="javax.xml.stream.XMLOutputFactory";register:="com.ctc.wstx.stax.WstxOutputFactory",osgi.serviceloader;osgi.serviceloader="org.codehaus.stax2.validation.XMLValidationSchemaFactory";register:="com.ctc.wstx.dtd.DTDSchemaFactory",osgi.serviceloader;osgi.serviceloader="org.codehaus.stax2.validation.XMLValidationSchemaFactory";register:="com.ctc.wstx.msv.RelaxNGSchemaFactory",osgi.serviceloader;osgi.serviceloader="org.codehaus.stax2.validation.XMLValidationSchemaFactory";register:="com.ctc.wstx.msv.W3CSchemaFactory" Low Vendor Manifest specification-vendor FasterXML Low Vendor pom artifactid woodstox-core Highest Vendor pom artifactid woodstox-core Low Vendor pom developer email tatu@fasterxml.com Low Vendor pom developer id cowtowncoder Medium Vendor pom developer name Tatu Saloranta Medium Vendor pom groupid com.fasterxml.woodstox Highest Vendor pom name Woodstox High Vendor pom organization name FasterXML High Vendor pom organization url http://fasterxml.com Medium Vendor pom parent-artifactid oss-parent Low Vendor pom parent-groupid com.fasterxml Medium Vendor pom url FasterXML/woodstox Highest Product file name woodstox-core High Product jar package name dtd Highest Product jar package name dtdschemafactory Highest Product jar package name msv Highest Product jar package name osgi Highest Product jar package name relaxngschemafactory Highest Product jar package name stax Highest Product jar package name w3cschemafactory Highest Product jar package name wstx Highest Product jar package name wstxeventfactory Highest Product jar package name wstxinputfactory Highest Product jar package name wstxoutputfactory Highest Product Manifest build-jdk-spec 1.8 Low Product Manifest bundle-docurl https://github.com/FasterXML/woodstox Low Product Manifest Bundle-Name Woodstox Medium Product Manifest bundle-symbolicname com.fasterxml.woodstox.woodstox-core Medium Product Manifest Implementation-Title Woodstox High Product Manifest provide-capability osgi.service;objectClass:List="javax.xml.stream.XMLEventFactory";effective:=active,osgi.service;objectClass:List="javax.xml.stream.XMLInputFactory";effective:=active,osgi.service;objectClass:List="javax.xml.stream.XMLOutputFactory";effective:=active,osgi.service;objectClass:List="org.codehaus.stax2.validation.XMLValidationSchemaFactory";effective:=active,osgi.serviceloader;osgi.serviceloader="javax.xml.stream.XMLEventFactory";register:="com.ctc.wstx.stax.WstxEventFactory",osgi.serviceloader;osgi.serviceloader="javax.xml.stream.XMLInputFactory";register:="com.ctc.wstx.stax.WstxInputFactory",osgi.serviceloader;osgi.serviceloader="javax.xml.stream.XMLOutputFactory";register:="com.ctc.wstx.stax.WstxOutputFactory",osgi.serviceloader;osgi.serviceloader="org.codehaus.stax2.validation.XMLValidationSchemaFactory";register:="com.ctc.wstx.dtd.DTDSchemaFactory",osgi.serviceloader;osgi.serviceloader="org.codehaus.stax2.validation.XMLValidationSchemaFactory";register:="com.ctc.wstx.msv.RelaxNGSchemaFactory",osgi.serviceloader;osgi.serviceloader="org.codehaus.stax2.validation.XMLValidationSchemaFactory";register:="com.ctc.wstx.msv.W3CSchemaFactory" Low Product Manifest specification-title Woodstox Medium Product pom artifactid woodstox-core Highest Product pom developer email tatu@fasterxml.com Low Product pom developer id cowtowncoder Low Product pom developer name Tatu Saloranta Low Product pom groupid com.fasterxml.woodstox Highest Product pom name Woodstox High Product pom organization name FasterXML Low Product pom organization url http://fasterxml.com Low Product pom parent-artifactid oss-parent Medium Product pom parent-groupid com.fasterxml Medium Product pom url FasterXML/woodstox High Version file version 7.1.0 High Version Manifest Bundle-Version 7.1.0 High Version Manifest Implementation-Version 7.1.0 High Version pom parent-version 7.1.0 Low Version pom version 7.1.0 Highest
Description:
Java stub generator for WSDL License:
CPL: http://www.opensource.org/licenses/cpl1.0.txt File Path: /Users/oat/.m2/repository/wsdl4j/wsdl4j/1.6.3/wsdl4j-1.6.3.jar
MD5: cfc28d89625c5e88589aec7a9aee0208
SHA1: 6d106a6845a3d3477a1560008479312888e94f2f
SHA256: 740f448e6b3bc110e02f4a1e56fb57672e732d2ecaf29ae15835051ae8af4725
Referenced In Project/Scope: Apache WSS4J Streaming WS-SecurityPolicy:compile
wsdl4j-1.6.3.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.apache.wss4j/wss4j-ws-security-policy-stax@4.0.1
Evidence Type Source Name Value Confidence Vendor file name wsdl4j High Vendor jar package name ibm Highest Vendor jar package name wsdl Highest Vendor Manifest Implementation-Vendor IBM High Vendor Manifest specification-vendor IBM (Java Community Process) Low Vendor pom artifactid wsdl4j Highest Vendor pom artifactid wsdl4j Low Vendor pom developer email wsdl4j-discuss@sourceforge.net Low Vendor pom developer id wsdl4j Medium Vendor pom developer name WSDL4J Medium Vendor pom groupid wsdl4j Highest Vendor pom name WSDL4J High Vendor pom url http://sf.net/projects/wsdl4j Highest Product file name wsdl4j High Product jar package name wsdl Highest Product Manifest Implementation-Title WSDL4J High Product Manifest specification-title JWSDL Medium Product pom artifactid wsdl4j Highest Product pom developer email wsdl4j-discuss@sourceforge.net Low Product pom developer id wsdl4j Low Product pom developer name WSDL4J Low Product pom groupid wsdl4j Highest Product pom name WSDL4J High Product pom url http://sf.net/projects/wsdl4j Medium Version file version 1.6.3 High Version Manifest Implementation-Version 1.6.3 High Version pom version 1.6.3 Highest
pkg:maven/wsdl4j/wsdl4j@1.6.3 (Confidence :High) Description:
Apache XML Security for Java supports XML-Signature Syntax and Processing,
W3C Recommendation 12 February 2002, and XML Encryption Syntax and
Processing, W3C Recommendation 10 December 2002. Since version 1.4,
the library supports the standard Java API JSR-105: XML Digital Signature APIs.
License:
Apache-2.0: https://www.apache.org/licenses/LICENSE-2.0.txt File Path: /Users/oat/.m2/repository/org/apache/santuario/xmlsec/4.0.4/xmlsec-4.0.4.jar
MD5: 7344e57494b9fff766012489fa1bda07
SHA1: b07e7b1a2fa3cb828b0d0112d3ea37829373bce3
SHA256: 8b2f8483b662ba5462126074dadf4d4f33966d8e8244889c6a81d53789da5402
Referenced In Projects/Scopes: Apache WSS4J Streaming WS-Security:compile Apache WSS4J DOM WS-Security:compile Apache WSS4J Web WS-Security:compile Apache WSS4J WS-Security Bindings:compile Apache WSS4J WS-Security Common:compile Apache WSS4J Streaming WS-SecurityPolicy:compile xmlsec-4.0.4.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.apache.wss4j/wss4j-ws-security-dom@4.0.1 pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.1 pkg:maven/org.apache.wss4j/wss4j-bindings@4.0.1 pkg:maven/org.apache.wss4j/wss4j-bindings@4.0.1 pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.1 pkg:maven/org.apache.wss4j/wss4j-ws-security-common@4.0.1 Evidence Type Source Name Value Confidence Vendor file name xmlsec High Vendor jar package name apache Highest Vendor jar package name encryption Highest Vendor jar package name security Highest Vendor jar package name signature Highest Vendor jar package name xml Highest Vendor Manifest build-jdk-spec 11 Low Vendor Manifest bundle-docurl https://www.apache.org/ Low Vendor Manifest bundle-symbolicname org.apache.santuario.xmlsec Medium Vendor Manifest Implementation-Vendor The Apache Software Foundation High Vendor Manifest Implementation-Vendor-Id org.apache Medium Vendor Manifest specification-vendor The Apache Software Foundation Low Vendor pom artifactid xmlsec Highest Vendor pom artifactid xmlsec Low Vendor pom groupid org.apache.santuario Highest Vendor pom name Apache XML Security for Java High Vendor pom organization name The Apache Software Foundation High Vendor pom organization url https://www.apache.org/ Medium Vendor pom parent-artifactid apache Low Vendor pom parent-groupid org.apache Medium Vendor pom url https://santuario.apache.org/ Highest Product file name xmlsec High Product jar package name apache Highest Product jar package name encryption Highest Product jar package name security Highest Product jar package name signature Highest Product jar package name xml Highest Product Manifest build-jdk-spec 11 Low Product Manifest bundle-docurl https://www.apache.org/ Low Product Manifest Bundle-Name Apache XML Security for Java Medium Product Manifest bundle-symbolicname org.apache.santuario.xmlsec Medium Product Manifest Implementation-Title Apache XML Security High Product Manifest specification-title Apache XML Security Medium Product pom artifactid xmlsec Highest Product pom groupid org.apache.santuario Highest Product pom name Apache XML Security for Java High Product pom organization name The Apache Software Foundation Low Product pom organization url https://www.apache.org/ Low Product pom parent-artifactid apache Medium Product pom parent-groupid org.apache Medium Product pom url https://santuario.apache.org/ Medium Version file version 4.0.4 High Version Manifest Bundle-Version 4.0.4 High Version Manifest Implementation-Version 4.0.4 High Version pom parent-version 4.0.4 Low Version pom version 4.0.4 Highest
pkg:maven/org.apache.santuario/xmlsec@4.0.4 (Confidence :High) cpe:2.3:a:apache:santuario_xml_security_for_java:4.0.4:*:*:*:*:*:*:* (Confidence :Low) suppress cpe:2.3:a:apache:xml_security_for_java:4.0.4:*:*:*:*:*:*:* (Confidence :Low) suppress