Dependency-Check is an open source tool performing a best effort analysis of 3rd party dependencies;
false positives and false negatives may exist in the analysis performed by the tool. Use of the tool and
the reporting provided constitutes acceptance for use in an AS IS condition, and there are NO warranties,
implied or otherwise, with regard to the analysis or its use. Any use of the tool and the reporting provided
is at the user’s risk. In no event shall the copyright holder or OWASP be held liable for any damages whatsoever
arising out of or in connection with the use of this tool, the analysis performed, or the resulting report.
Scan Information (
show all ):
dependency-check version : 12.2.0Report Generated On : Mon, 19 Jan 2026 20:56:15 GMTDependencies Scanned : 46 (32 unique)Vulnerable Dependencies : 1 Vulnerabilities Found : 3Vulnerabilities Suppressed : 0
...
NVD API Last Checked : 2026-01-19T20:29:50ZNVD API Last Modified : 2026-01-19T20:15:49Z
Summary
Summary of Vulnerable Dependencies (click to show all)
File Path: /home/runner/.m2/repository/org/apache/ant/ant/1.10.8/ant-1.10.8.jarMD5: 4492182f592ad9779a5de60e3f0ea3c4SHA1: ae148abb0532b685c5eeb22fdec9d124e89be5deSHA256: b96b46fd2b4b00e42684c3085b0d16dde975e7b8e64822b0bf52edf5fd387d8d
Referenced In Project/Scope: waffle-jetty-jakarta:provided
ant-1.10.8.jar is in the transitive dependency tree of the listed items. Included by:
Evidence
Type Source Name Value Confidence Vendor file name ant High Vendor jar package name ant Highest Vendor jar package name apache Highest Vendor manifest: org/apache/tools/ant/ Implementation-Vendor Apache Software Foundation Medium Vendor pom artifactid ant Highest Vendor pom artifactid ant Low Vendor pom groupid org.apache.ant Highest Vendor pom name Apache Ant Core High Vendor pom parent-artifactid ant-parent Low Vendor pom url https://ant.apache.org/ Highest Product file name ant High Product jar package name ant Highest Product jar package name apache Highest Product jar package name tools Highest Product manifest: org/apache/tools/ant/ Implementation-Title org.apache.tools.ant Medium Product manifest: org/apache/tools/ant/ Specification-Title Apache Ant Medium Product pom artifactid ant Highest Product pom groupid org.apache.ant Highest Product pom name Apache Ant Core High Product pom parent-artifactid ant-parent Medium Product pom url https://ant.apache.org/ Medium Version file version 1.10.8 High Version manifest: org/apache/tools/ant/ Implementation-Version 1.10.8 Medium Version pom version 1.10.8 Highest
Related Dependencies
ant-launcher-1.10.8.jar
File Path: /home/runner/.m2/repository/org/apache/ant/ant-launcher/1.10.8/ant-launcher-1.10.8.jar
MD5: bbb5ba492c747a8e669c17b3e2120550
SHA1: 2ca8688d2dad5694237576db782b37279989614d
SHA256: 5d22f62885a0c8d721a9002e9a00c84381365f65296ed9c8ef78415e8a9fc2a1
pkg:maven/org.apache.ant/ant-launcher@1.10.8
CVE-2020-11979 suppress
As mitigation for CVE-2020-1945 Apache Ant 1.10.8 changed the permissions of temporary files it created so that only the current user was allowed to access them. Unfortunately the fixcrlf task deleted the temporary file and created a new one without said protection, effectively nullifying the effort. This would still allow an attacker to inject modified source files into the build process.
CWE-379 Creation of Temporary File in Directory with Insecure Permissions, NVD-CWE-Other
CVSSv3:
Base Score: HIGH (7.5)
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N/E:3.9/RC:R/MAV:A
CVSSv2:
Base Score: MEDIUM (5.0)
Vector: /AV:N/AC:L/Au:N/C:N/I:P/A:N References:
af854a3a-2127-422b-91ae-364da2661108 - https://lists.apache.org/thread.html/r107ea1b1a7a214bc72fe1a04207546ccef542146ae22952e1013b5cc%40%3Cdev.creadur.apache.org%3E
af854a3a-2127-422b-91ae-364da2661108 - https://lists.apache.org/thread.html/r1dc8518dc99c42ecca5ff82d0d2de64cd5d3a4fa691eb9ee0304781e%40%3Cdev.creadur.apache.org%3E
af854a3a-2127-422b-91ae-364da2661108 - https://lists.apache.org/thread.html/r2306b67f20c24942b872b0a41fbdc9330e8467388158bcd19c1094e0%40%3Cdev.creadur.apache.org%3E
af854a3a-2127-422b-91ae-364da2661108 - https://lists.apache.org/thread.html/r4ca33fad3fb39d130cda287d5a60727d9e706e6f2cf2339b95729490%40%3Cdev.creadur.apache.org%3E
af854a3a-2127-422b-91ae-364da2661108 - https://lists.apache.org/thread.html/r5e1cdd79f019162f76414708b2092acad0a6703d666d72d717319305%40%3Cdev.creadur.apache.org%3E
af854a3a-2127-422b-91ae-364da2661108 - https://lists.apache.org/thread.html/raaeddc41da8f3afb1cb224876084a45f68e437a0afd9889a707e4b0c%40%3Cdev.creadur.apache.org%3E
af854a3a-2127-422b-91ae-364da2661108 - https://lists.apache.org/thread.html/rbfe9ba28b74f39f46ec1bbbac3bef313f35017cf3aac13841a84483a%40%3Cdev.creadur.apache.org%3E
af854a3a-2127-422b-91ae-364da2661108 - https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/AALW42FWNQ35F7KB3JVRC6NBVV7AAYYI/
af854a3a-2127-422b-91ae-364da2661108 - https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DYBRN5C2RW7JRY75IB7Q7ZVKZCHWAQWS/
af854a3a-2127-422b-91ae-364da2661108 - https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/U3NRQQ7ECII4ZNGW7GBC225LVYMPQEKB/
af854a3a-2127-422b-91ae-364da2661108 - MAILING_LIST,VENDOR_ADVISORY
af854a3a-2127-422b-91ae-364da2661108 - PATCH,THIRD_PARTY_ADVISORY
af854a3a-2127-422b-91ae-364da2661108 - PATCH,THIRD_PARTY_ADVISORY
af854a3a-2127-422b-91ae-364da2661108 - PATCH,THIRD_PARTY_ADVISORY
af854a3a-2127-422b-91ae-364da2661108 - PATCH,THIRD_PARTY_ADVISORY
af854a3a-2127-422b-91ae-364da2661108 - PATCH,THIRD_PARTY_ADVISORY
af854a3a-2127-422b-91ae-364da2661108 - PATCH,THIRD_PARTY_ADVISORY
af854a3a-2127-422b-91ae-364da2661108 - THIRD_PARTY_ADVISORY
af854a3a-2127-422b-91ae-364da2661108 - THIRD_PARTY_ADVISORY
security@apache.org - https://lists.apache.org/thread.html/r107ea1b1a7a214bc72fe1a04207546ccef542146ae22952e1013b5cc%40%3Cdev.creadur.apache.org%3E
security@apache.org - https://lists.apache.org/thread.html/r1dc8518dc99c42ecca5ff82d0d2de64cd5d3a4fa691eb9ee0304781e%40%3Cdev.creadur.apache.org%3E
security@apache.org - https://lists.apache.org/thread.html/r2306b67f20c24942b872b0a41fbdc9330e8467388158bcd19c1094e0%40%3Cdev.creadur.apache.org%3E
security@apache.org - https://lists.apache.org/thread.html/r4ca33fad3fb39d130cda287d5a60727d9e706e6f2cf2339b95729490%40%3Cdev.creadur.apache.org%3E
security@apache.org - https://lists.apache.org/thread.html/r5e1cdd79f019162f76414708b2092acad0a6703d666d72d717319305%40%3Cdev.creadur.apache.org%3E
security@apache.org - https://lists.apache.org/thread.html/raaeddc41da8f3afb1cb224876084a45f68e437a0afd9889a707e4b0c%40%3Cdev.creadur.apache.org%3E
security@apache.org - https://lists.apache.org/thread.html/rbfe9ba28b74f39f46ec1bbbac3bef313f35017cf3aac13841a84483a%40%3Cdev.creadur.apache.org%3E
security@apache.org - https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/AALW42FWNQ35F7KB3JVRC6NBVV7AAYYI/
security@apache.org - https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DYBRN5C2RW7JRY75IB7Q7ZVKZCHWAQWS/
security@apache.org - https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/U3NRQQ7ECII4ZNGW7GBC225LVYMPQEKB/
security@apache.org - MAILING_LIST,VENDOR_ADVISORY
security@apache.org - PATCH,THIRD_PARTY_ADVISORY
security@apache.org - PATCH,THIRD_PARTY_ADVISORY
security@apache.org - PATCH,THIRD_PARTY_ADVISORY
security@apache.org - PATCH,THIRD_PARTY_ADVISORY
security@apache.org - PATCH,THIRD_PARTY_ADVISORY
security@apache.org - PATCH,THIRD_PARTY_ADVISORY
security@apache.org - THIRD_PARTY_ADVISORY
security@apache.org - THIRD_PARTY_ADVISORY
Vulnerable Software & Versions: (show all )
CVE-2021-36373 suppress
When reading a specially crafted TAR archive an Apache Ant build can be made to allocate large amounts of memory that finally leads to an out of memory error, even for small inputs. This can be used to disrupt builds using Apache Ant. Apache Ant prior to 1.9.16 and 1.10.11 were affected.
CWE-130 Improper Handling of Length Parameter Inconsistency, NVD-CWE-Other
CVSSv3:
Base Score: MEDIUM (5.5)
Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H/E:1.8/RC:R/MAV:A
CVSSv2:
Base Score: MEDIUM (4.3)
Vector: /AV:N/AC:M/Au:N/C:N/I:N/A:P References:
af854a3a-2127-422b-91ae-364da2661108 - https://lists.apache.org/thread.html/r27919fd4db07c487239c1d9771f480d89ce5ee2750aa9447309b709a%40%3Ccommits.groovy.apache.org%3E
af854a3a-2127-422b-91ae-364da2661108 - https://lists.apache.org/thread.html/r544c9e8487431768465b8b2d13982c75123109bd816acf839d46010d%40%3Ccommits.groovy.apache.org%3E
af854a3a-2127-422b-91ae-364da2661108 - https://lists.apache.org/thread.html/rad36f470647c5a7c02dd78c9973356d2840766d132b597b6444e373a%40%3Cnotifications.groovy.apache.org%3E
af854a3a-2127-422b-91ae-364da2661108 - https://lists.apache.org/thread.html/rf4bb79751a02889623195715925e4fd8932dd3c97e0ade91395a96c6%40%3Cdev.myfaces.apache.org%3E
af854a3a-2127-422b-91ae-364da2661108 - MAILING_LIST,VENDOR_ADVISORY
af854a3a-2127-422b-91ae-364da2661108 - NOT_APPLICABLE
af854a3a-2127-422b-91ae-364da2661108 - PATCH,THIRD_PARTY_ADVISORY
af854a3a-2127-422b-91ae-364da2661108 - PATCH,THIRD_PARTY_ADVISORY
af854a3a-2127-422b-91ae-364da2661108 - PATCH,THIRD_PARTY_ADVISORY
af854a3a-2127-422b-91ae-364da2661108 - PATCH,VENDOR_ADVISORY
af854a3a-2127-422b-91ae-364da2661108 - THIRD_PARTY_ADVISORY
security@apache.org - https://lists.apache.org/thread.html/r27919fd4db07c487239c1d9771f480d89ce5ee2750aa9447309b709a%40%3Ccommits.groovy.apache.org%3E
security@apache.org - https://lists.apache.org/thread.html/r544c9e8487431768465b8b2d13982c75123109bd816acf839d46010d%40%3Ccommits.groovy.apache.org%3E
security@apache.org - https://lists.apache.org/thread.html/rad36f470647c5a7c02dd78c9973356d2840766d132b597b6444e373a%40%3Cnotifications.groovy.apache.org%3E
security@apache.org - https://lists.apache.org/thread.html/rf4bb79751a02889623195715925e4fd8932dd3c97e0ade91395a96c6%40%3Cdev.myfaces.apache.org%3E
security@apache.org - MAILING_LIST,VENDOR_ADVISORY
security@apache.org - NOT_APPLICABLE
security@apache.org - PATCH,THIRD_PARTY_ADVISORY
security@apache.org - PATCH,THIRD_PARTY_ADVISORY
security@apache.org - PATCH,THIRD_PARTY_ADVISORY
security@apache.org - PATCH,VENDOR_ADVISORY
security@apache.org - THIRD_PARTY_ADVISORY
Vulnerable Software & Versions: (show all )
CVE-2021-36374 suppress
When reading a specially crafted ZIP archive, or a derived formats, an Apache Ant build can be made to allocate large amounts of memory that leads to an out of memory error, even for small inputs. This can be used to disrupt builds using Apache Ant. Commonly used derived formats from ZIP archives are for instance JAR files and many office files. Apache Ant prior to 1.9.16 and 1.10.11 were affected.
CWE-130 Improper Handling of Length Parameter Inconsistency, NVD-CWE-Other
CVSSv3:
Base Score: MEDIUM (5.5)
Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H/E:1.8/RC:R/MAV:A
CVSSv2:
Base Score: MEDIUM (4.3)
Vector: /AV:N/AC:M/Au:N/C:N/I:N/A:P References:
af854a3a-2127-422b-91ae-364da2661108 - https://lists.apache.org/thread.html/r27919fd4db07c487239c1d9771f480d89ce5ee2750aa9447309b709a%40%3Ccommits.groovy.apache.org%3E
af854a3a-2127-422b-91ae-364da2661108 - https://lists.apache.org/thread.html/r544c9e8487431768465b8b2d13982c75123109bd816acf839d46010d%40%3Ccommits.groovy.apache.org%3E
af854a3a-2127-422b-91ae-364da2661108 - https://lists.apache.org/thread.html/rad36f470647c5a7c02dd78c9973356d2840766d132b597b6444e373a%40%3Cnotifications.groovy.apache.org%3E
af854a3a-2127-422b-91ae-364da2661108 - https://lists.apache.org/thread.html/rf4bb79751a02889623195715925e4fd8932dd3c97e0ade91395a96c6%40%3Cdev.myfaces.apache.org%3E
af854a3a-2127-422b-91ae-364da2661108 - MAILING_LIST,VENDOR_ADVISORY
af854a3a-2127-422b-91ae-364da2661108 - PATCH,THIRD_PARTY_ADVISORY
af854a3a-2127-422b-91ae-364da2661108 - PATCH,THIRD_PARTY_ADVISORY
af854a3a-2127-422b-91ae-364da2661108 - PATCH,THIRD_PARTY_ADVISORY
af854a3a-2127-422b-91ae-364da2661108 - PATCH,THIRD_PARTY_ADVISORY
af854a3a-2127-422b-91ae-364da2661108 - PATCH,VENDOR_ADVISORY
af854a3a-2127-422b-91ae-364da2661108 - THIRD_PARTY_ADVISORY
security@apache.org - https://lists.apache.org/thread.html/r27919fd4db07c487239c1d9771f480d89ce5ee2750aa9447309b709a%40%3Ccommits.groovy.apache.org%3E
security@apache.org - https://lists.apache.org/thread.html/r544c9e8487431768465b8b2d13982c75123109bd816acf839d46010d%40%3Ccommits.groovy.apache.org%3E
security@apache.org - https://lists.apache.org/thread.html/rad36f470647c5a7c02dd78c9973356d2840766d132b597b6444e373a%40%3Cnotifications.groovy.apache.org%3E
security@apache.org - https://lists.apache.org/thread.html/rf4bb79751a02889623195715925e4fd8932dd3c97e0ade91395a96c6%40%3Cdev.myfaces.apache.org%3E
security@apache.org - MAILING_LIST,VENDOR_ADVISORY
security@apache.org - PATCH,THIRD_PARTY_ADVISORY
security@apache.org - PATCH,THIRD_PARTY_ADVISORY
security@apache.org - PATCH,THIRD_PARTY_ADVISORY
security@apache.org - PATCH,THIRD_PARTY_ADVISORY
security@apache.org - PATCH,VENDOR_ADVISORY
security@apache.org - THIRD_PARTY_ADVISORY
Vulnerable Software & Versions: (show all )
Description:
ASM, a very small and fast Java bytecode manipulation framework
License:
BSD-3-Clause: https://asm.ow2.io/license.html
File Path: /home/runner/.m2/repository/org/ow2/asm/asm/9.9.1/asm-9.9.1.jar
MD5: 1888ad1f49038441bb2d12aa6dffe396
SHA1: 2ceea6ab43bcae1979b2a6d85fc0ca429877e5ab
SHA256: 6f3828a215c920059a5efa2fb55c233d6c54ec5cadca99ce1b1bdd10077c7ddd
Referenced In Project/Scope: waffle-jetty-jakarta:provided
asm-9.9.1.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.ow2.asm/asm-commons@9.9.1
Evidence
Type Source Name Value Confidence Vendor file name asm High Vendor jar package name asm Highest Vendor jar package name objectweb Highest Vendor Manifest bundle-docurl http://asm.ow2.org Low Vendor Manifest bundle-requiredexecutionenvironment J2SE-1.5 Low Vendor Manifest bundle-symbolicname org.objectweb.asm Medium Vendor pom artifactid asm Highest Vendor pom artifactid asm Low Vendor pom developer email ebruneton@free.fr Low Vendor pom developer email eu@javatx.org Low Vendor pom developer email forax@univ-mlv.fr Low Vendor pom developer id ebruneton Medium Vendor pom developer id eu Medium Vendor pom developer id forax Medium Vendor pom developer name Eric Bruneton Medium Vendor pom developer name Eugene Kuleshov Medium Vendor pom developer name Remi Forax Medium Vendor pom groupid org.ow2.asm Highest Vendor pom name asm High Vendor pom organization name OW2 High Vendor pom organization url http://www.ow2.org/ Medium Vendor pom parent-artifactid ow2 Low Vendor pom parent-groupid org.ow2 Medium Vendor pom url http://asm.ow2.io/ Highest Product file name asm High Product jar package name asm Highest Product jar package name objectweb Highest Product Manifest bundle-docurl http://asm.ow2.org Low Product Manifest Bundle-Name org.objectweb.asm Medium Product Manifest bundle-requiredexecutionenvironment J2SE-1.5 Low Product Manifest bundle-symbolicname org.objectweb.asm Medium Product Manifest Implementation-Title ASM, a very small and fast Java bytecode manipulation framework High Product pom artifactid asm Highest Product pom developer email ebruneton@free.fr Low Product pom developer email eu@javatx.org Low Product pom developer email forax@univ-mlv.fr Low Product pom developer id ebruneton Low Product pom developer id eu Low Product pom developer id forax Low Product pom developer name Eric Bruneton Low Product pom developer name Eugene Kuleshov Low Product pom developer name Remi Forax Low Product pom groupid org.ow2.asm Highest Product pom name asm High Product pom organization name OW2 Low Product pom organization url http://www.ow2.org/ Low Product pom parent-artifactid ow2 Medium Product pom parent-groupid org.ow2 Medium Product pom url http://asm.ow2.io/ Medium Version file version 9.9.1 High Version Manifest Bundle-Version 9.9.1 High Version Manifest Implementation-Version 9.9.1 High Version pom parent-version 9.9.1 Low Version pom version 9.9.1 Highest
pkg:maven/org.ow2.asm/asm@9.9.1
(Confidence :High)
Description:
Usefull class adapters based on ASM, a very small and fast Java bytecode manipulation framework
License:
BSD-3-Clause: https://asm.ow2.io/license.html
File Path: /home/runner/.m2/repository/org/ow2/asm/asm-commons/9.9.1/asm-commons-9.9.1.jar
MD5: 7e0ef716c43d92d29e666f820df24e2c
SHA1: ab35de4c537184a09339069f1a3b3aacf2289149
SHA256: c2319e014ce7199f2b7f7d56d6bb991863168c3f4b6cd6c9f542a4937ef7ef88
Referenced In Project/Scope: waffle-jetty-jakarta:provided
asm-commons-9.9.1.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/com.github.waffle/waffle-jetty-jakarta@3.6.0-SNAPSHOT
Evidence
Type Source Name Value Confidence Vendor file name asm-commons High Vendor jar package name asm Highest Vendor jar package name commons Highest Vendor jar package name objectweb Highest Vendor Manifest bundle-docurl http://asm.ow2.org Low Vendor Manifest bundle-requiredexecutionenvironment J2SE-1.5 Low Vendor Manifest bundle-symbolicname org.objectweb.asm.commons Medium Vendor Manifest module-requires org.objectweb.asm;transitive=true,org.objectweb.asm.tree;transitive=true Low Vendor pom artifactid asm-commons Highest Vendor pom artifactid asm-commons Low Vendor pom developer email ebruneton@free.fr Low Vendor pom developer email eu@javatx.org Low Vendor pom developer email forax@univ-mlv.fr Low Vendor pom developer id ebruneton Medium Vendor pom developer id eu Medium Vendor pom developer id forax Medium Vendor pom developer name Eric Bruneton Medium Vendor pom developer name Eugene Kuleshov Medium Vendor pom developer name Remi Forax Medium Vendor pom groupid org.ow2.asm Highest Vendor pom name asm-commons High Vendor pom organization name OW2 High Vendor pom organization url http://www.ow2.org/ Medium Vendor pom parent-artifactid ow2 Low Vendor pom parent-groupid org.ow2 Medium Vendor pom url http://asm.ow2.io/ Highest Product file name asm-commons High Product jar package name asm Highest Product jar package name commons Highest Product jar package name objectweb Highest Product Manifest bundle-docurl http://asm.ow2.org Low Product Manifest Bundle-Name org.objectweb.asm.commons Medium Product Manifest bundle-requiredexecutionenvironment J2SE-1.5 Low Product Manifest bundle-symbolicname org.objectweb.asm.commons Medium Product Manifest Implementation-Title Usefull class adapters based on ASM, a very small and fast Java bytecode manipulation framework High Product Manifest module-requires org.objectweb.asm;transitive=true,org.objectweb.asm.tree;transitive=true Low Product pom artifactid asm-commons Highest Product pom developer email ebruneton@free.fr Low Product pom developer email eu@javatx.org Low Product pom developer email forax@univ-mlv.fr Low Product pom developer id ebruneton Low Product pom developer id eu Low Product pom developer id forax Low Product pom developer name Eric Bruneton Low Product pom developer name Eugene Kuleshov Low Product pom developer name Remi Forax Low Product pom groupid org.ow2.asm Highest Product pom name asm-commons High Product pom organization name OW2 Low Product pom organization url http://www.ow2.org/ Low Product pom parent-artifactid ow2 Medium Product pom parent-groupid org.ow2 Medium Product pom url http://asm.ow2.io/ Medium Version file version 9.9.1 High Version Manifest Bundle-Version 9.9.1 High Version Manifest Implementation-Version 9.9.1 High Version pom parent-version 9.9.1 Low Version pom version 9.9.1 Highest
pkg:maven/org.ow2.asm/asm-commons@9.9.1
(Confidence :High)
Description:
Tree API of ASM, a very small and fast Java bytecode manipulation framework
License:
BSD-3-Clause: https://asm.ow2.io/license.html
File Path: /home/runner/.m2/repository/org/ow2/asm/asm-tree/9.9.1/asm-tree-9.9.1.jar
MD5: 7eb17cd0d09b03fbe473e51edfc6e4d2
SHA1: b6b1b3366296163b4b1f540731aad0a2baa484d8
SHA256: 0f3555096b720b820bbacab0b515589bee0200bee099bda14c561738ae837ba1
Referenced In Project/Scope: waffle-jetty-jakarta:provided
asm-tree-9.9.1.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.ow2.asm/asm-commons@9.9.1
Evidence
Type Source Name Value Confidence Vendor file name asm-tree High Vendor jar package name asm Highest Vendor jar package name objectweb Highest Vendor jar package name tree Highest Vendor Manifest bundle-docurl http://asm.ow2.org Low Vendor Manifest bundle-requiredexecutionenvironment J2SE-1.5 Low Vendor Manifest bundle-symbolicname org.objectweb.asm.tree Medium Vendor Manifest module-requires org.objectweb.asm;transitive=true Low Vendor pom artifactid asm-tree Highest Vendor pom artifactid asm-tree Low Vendor pom developer email ebruneton@free.fr Low Vendor pom developer email eu@javatx.org Low Vendor pom developer email forax@univ-mlv.fr Low Vendor pom developer id ebruneton Medium Vendor pom developer id eu Medium Vendor pom developer id forax Medium Vendor pom developer name Eric Bruneton Medium Vendor pom developer name Eugene Kuleshov Medium Vendor pom developer name Remi Forax Medium Vendor pom groupid org.ow2.asm Highest Vendor pom name asm-tree High Vendor pom organization name OW2 High Vendor pom organization url http://www.ow2.org/ Medium Vendor pom parent-artifactid ow2 Low Vendor pom parent-groupid org.ow2 Medium Vendor pom url http://asm.ow2.io/ Highest Product file name asm-tree High Product jar package name asm Highest Product jar package name objectweb Highest Product jar package name tree Highest Product Manifest bundle-docurl http://asm.ow2.org Low Product Manifest Bundle-Name org.objectweb.asm.tree Medium Product Manifest bundle-requiredexecutionenvironment J2SE-1.5 Low Product Manifest bundle-symbolicname org.objectweb.asm.tree Medium Product Manifest Implementation-Title Tree API of ASM, a very small and fast Java bytecode manipulation framework High Product Manifest module-requires org.objectweb.asm;transitive=true Low Product pom artifactid asm-tree Highest Product pom developer email ebruneton@free.fr Low Product pom developer email eu@javatx.org Low Product pom developer email forax@univ-mlv.fr Low Product pom developer id ebruneton Low Product pom developer id eu Low Product pom developer id forax Low Product pom developer name Eric Bruneton Low Product pom developer name Eugene Kuleshov Low Product pom developer name Remi Forax Low Product pom groupid org.ow2.asm Highest Product pom name asm-tree High Product pom organization name OW2 Low Product pom organization url http://www.ow2.org/ Low Product pom parent-artifactid ow2 Medium Product pom parent-groupid org.ow2 Medium Product pom url http://asm.ow2.io/ Medium Version file version 9.9.1 High Version Manifest Bundle-Version 9.9.1 High Version Manifest Implementation-Version 9.9.1 High Version pom parent-version 9.9.1 Low Version pom version 9.9.1 Highest
pkg:maven/org.ow2.asm/asm-tree@9.9.1
(Confidence :High)
Description:
A high performance caching library
License:
Apache License, Version 2.0: https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/com/github/ben-manes/caffeine/caffeine/3.2.3/caffeine-3.2.3.jar
MD5: 0258f45d43968523cc11beeb01b240f2
SHA1: c097f0f6d21a0e6db88ea55836e26419b30dfe19
SHA256: ca70c90a5d1ce1511880ce9c93d4ad22108f61111d3daf91eb52762b571bd179
Referenced In Project/Scope: waffle-jetty-jakarta:compile
caffeine-3.2.3.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/com.github.waffle/waffle-jna-jakarta@3.6.0-SNAPSHOT
Evidence
Type Source Name Value Confidence Vendor file name caffeine High Vendor jar package name cache Highest Vendor jar package name caffeine Highest Vendor jar package name github Highest Vendor Manifest build-jdk-spec 11 Low Vendor Manifest bundle-symbolicname com.github.ben-manes.caffeine Medium Vendor pom artifactid caffeine Highest Vendor pom artifactid caffeine Low Vendor pom developer email ben.manes@gmail.com Low Vendor pom developer id ben-manes Medium Vendor pom developer name Ben Manes Medium Vendor pom groupid com.github.ben-manes.caffeine Highest Vendor pom name Caffeine cache High Vendor pom url ben-manes/caffeine Highest Product file name caffeine High Product jar package name cache Highest Product jar package name caffeine Highest Product jar package name github Highest Product Manifest build-jdk-spec 11 Low Product Manifest Bundle-Name com.github.ben-manes.caffeine Medium Product Manifest bundle-symbolicname com.github.ben-manes.caffeine Medium Product Manifest Implementation-Title A high performance caching library High Product pom artifactid caffeine Highest Product pom developer email ben.manes@gmail.com Low Product pom developer id ben-manes Low Product pom developer name Ben Manes Low Product pom groupid com.github.ben-manes.caffeine Highest Product pom name Caffeine cache High Product pom url ben-manes/caffeine High Version file version 3.2.3 High Version Manifest Bundle-Version 3.2.3 High Version Manifest Implementation-Version 3.2.3 High Version pom version 3.2.3 Highest
pkg:maven/com.github.ben-manes.caffeine/caffeine@3.2.3
(Confidence :High)
Description:
checker-qual contains annotations (type qualifiers) that a programmerwrites to specify Java code for type-checking by the Checker Framework.
License:
The MIT License: http://opensource.org/licenses/MIT
File Path: /home/runner/.m2/repository/org/checkerframework/checker-qual/3.53.0/checker-qual-3.53.0.jar
MD5: d1ee2a3366a19a8fff01208da2adb48e
SHA1: af1105964a03d7ed8aaf8ea2cb6ec0da7ec6c7a6
SHA256: 7ca002815d92fad79e966b375c2ee7b2b4bf953024bc9a5d5e0c59df13ff5af8
Referenced In Project/Scope: waffle-jetty-jakarta:compile
checker-qual-3.53.0.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/com.github.waffle/waffle-jna-jakarta@3.6.0-SNAPSHOT
Evidence
Type Source Name Value Confidence Vendor file name checker-qual High Vendor jar package name checker Highest Vendor jar package name checkerframework Highest Vendor jar package name framework Highest Vendor jar package name qual Highest Vendor Manifest bundle-symbolicname checker-qual Medium Vendor Manifest implementation-url https://checkerframework.org Low Vendor pom artifactid checker-qual Highest Vendor pom artifactid checker-qual Low Vendor pom developer email mernst@cs.washington.edu Low Vendor pom developer email smillst@cs.washington.edu Low Vendor pom developer id mernst Medium Vendor pom developer id smillst Medium Vendor pom developer name Michael Ernst Medium Vendor pom developer name Suzanne Millstein Medium Vendor pom developer org University of Washington Medium Vendor pom developer org URL https://www.cs.washington.edu/ Medium Vendor pom groupid org.checkerframework Highest Vendor pom name Checker Qual High Vendor pom url https://checkerframework.org/ Highest Product file name checker-qual High Product jar package name checker Highest Product jar package name checkerframework Highest Product jar package name framework Highest Product jar package name qual Highest Product Manifest Bundle-Name checker-qual Medium Product Manifest bundle-symbolicname checker-qual Medium Product Manifest implementation-url https://checkerframework.org Low Product pom artifactid checker-qual Highest Product pom developer email mernst@cs.washington.edu Low Product pom developer email smillst@cs.washington.edu Low Product pom developer id mernst Low Product pom developer id smillst Low Product pom developer name Michael Ernst Low Product pom developer name Suzanne Millstein Low Product pom developer org University of Washington Low Product pom developer org URL https://www.cs.washington.edu/ Low Product pom groupid org.checkerframework Highest Product pom name Checker Qual High Product pom url https://checkerframework.org/ Medium Version file version 3.53.0 High Version Manifest Bundle-Version 3.53.0 High Version Manifest Implementation-Version 3.53.0 High Version pom version 3.53.0 Highest
pkg:maven/org.checkerframework/checker-qual@3.53.0
(Confidence :High)
Description:
WAFFLE JNA Jakarta Pakage implementation
License:
MIT https://raw.github.com/Waffle/waffle/master/LICENSE
File Path: /home/runner/work/waffle/waffle/Source/JNA/waffle-jna-jakarta/pom.xml
Referenced In Project/Scope: waffle-jetty-jakarta
com.github.waffle:waffle-jna-jakarta:3.6.0-SNAPSHOT is in the transitive dependency tree of the listed items. Included by: pkg:maven/com.github.waffle/waffle-jetty-jakarta@3.6.0-SNAPSHOT
Evidence
Type Source Name Value Confidence Vendor file name pom High Vendor project artifactid waffle-jna-jakarta Low Vendor project groupid com.github.waffle Highest Product file name pom High Product project artifactid waffle-jna-jakarta Highest Product project groupid com.github.waffle Low
pkg:maven/com.github.waffle/waffle-jna-jakarta@3.6.0-SNAPSHOT
(Confidence :Highest)
Description:
Eclipse Compiler for Java(TM)
License:
EPL-2.0: https://www.eclipse.org/legal/epl-2.0/
File Path: /home/runner/.m2/repository/org/eclipse/jdt/ecj/3.44.0/ecj-3.44.0.jar
MD5: 8d0d2b80bc3d9431f0bdf3037f3d5954
SHA1: a4e1c9f58954801783e1b49d2f281000f814a779
SHA256: 14c46ddc2e511c46c998da728f6a80f13a689c920f3832402f7ad150f6a6188d
Referenced In Project/Scope: waffle-jetty-jakarta:provided
ecj-3.44.0.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/com.github.waffle/waffle-jetty-jakarta@3.6.0-SNAPSHOT
Evidence
Type Source Name Value Confidence Vendor file name ecj High Vendor jar package name compiler Highest Vendor jar package name core Highest Vendor jar package name eclipse Highest Vendor jar package name jdt Highest Vendor Manifest automatic-module-name org.eclipse.jdt.core.compiler.batch Medium Vendor Manifest build-jdk-spec 21 Low Vendor Manifest bundle-activationpolicy lazy Low Vendor Manifest bundle-requiredexecutionenvironment JavaSE-17 Low Vendor Manifest bundle-symbolicname org.eclipse.jdt.core.compiler.batch Medium Vendor pom artifactid ecj Highest Vendor pom artifactid ecj Low Vendor pom groupid org.eclipse.jdt Highest Vendor pom name Eclipse Compiler for Java(TM) High Vendor pom organization name Eclipse Foundation High Vendor pom organization url https://www.eclipse.org Medium Vendor pom url eclipse-jdt/eclipse.jdt.core/ Highest Product file name ecj High Product jar package name compiler Highest Product jar package name core Highest Product jar package name eclipse Highest Product jar package name jdt Highest Product Manifest automatic-module-name org.eclipse.jdt.core.compiler.batch Medium Product Manifest build-jdk-spec 21 Low Product Manifest bundle-activationpolicy lazy Low Product Manifest Bundle-Name Eclipse Compiler for Java(TM) Medium Product Manifest bundle-requiredexecutionenvironment JavaSE-17 Low Product Manifest bundle-symbolicname org.eclipse.jdt.core.compiler.batch Medium Product pom artifactid ecj Highest Product pom groupid org.eclipse.jdt Highest Product pom name Eclipse Compiler for Java(TM) High Product pom organization name Eclipse Foundation Low Product pom organization url https://www.eclipse.org Low Product pom url eclipse-jdt/eclipse.jdt.core/ High Version file version 3.44.0 High Version pom version 3.44.0 Highest
pkg:maven/org.eclipse.jdt/ecj@3.44.0
(Confidence :High)
Description:
Error Prone is a static analysis tool for Java that catches common programming mistakes at compile-time.
License:
Apache 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/com/google/errorprone/error_prone_annotations/2.46.0/error_prone_annotations-2.46.0.jar
MD5: d0dabea249c067d21d7eb997fbdf5c99
SHA1: 4ecb5d2392c38c46e6cb65e1bf60be708d97005d
SHA256: b67be81ff4b956401146e14eaf1526bc435a9480f2546e91eb45b796631a8a99
Referenced In Project/Scope: waffle-jetty-jakarta:provided
error_prone_annotations-2.46.0.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/com.github.waffle/waffle-jetty-jakarta@3.6.0-SNAPSHOT
Evidence
Type Source Name Value Confidence Vendor file name error_prone_annotations High Vendor jar package name annotations Highest Vendor jar package name errorprone Highest Vendor jar package name google Highest Vendor Manifest build-jdk-spec 21 Low Vendor Manifest bundle-docurl https://errorprone.info/error_prone_annotations Low Vendor Manifest bundle-symbolicname com.google.errorprone.annotations Medium Vendor Manifest multi-release true Low Vendor pom artifactid error_prone_annotations Highest Vendor pom artifactid error_prone_annotations Low Vendor pom groupid com.google.errorprone Highest Vendor pom name error-prone annotations High Vendor pom parent-artifactid error_prone_parent Low Product file name error_prone_annotations High Product jar package name annotations Highest Product jar package name errorprone Highest Product jar package name google Highest Product Manifest build-jdk-spec 21 Low Product Manifest bundle-docurl https://errorprone.info/error_prone_annotations Low Product Manifest Bundle-Name error-prone annotations Medium Product Manifest bundle-symbolicname com.google.errorprone.annotations Medium Product Manifest multi-release true Low Product pom artifactid error_prone_annotations Highest Product pom groupid com.google.errorprone Highest Product pom name error-prone annotations High Product pom parent-artifactid error_prone_parent Medium Version file version 2.46.0 High Version Manifest Bundle-Version 2.46.0 High Version pom version 2.46.0 Highest
pkg:maven/com.google.errorprone/error_prone_annotations@2.46.0
(Confidence :High)
Description:
Jakarta Expression Language Implementation
License:
https://www.eclipse.org/org/documents/epl-2.0/EPL-2.0.txt, https://www.gnu.org/software/classpath/license.html File Path: /home/runner/.m2/repository/org/glassfish/expressly/expressly/6.0.0/expressly-6.0.0.jar
MD5: e19bad48904a955072a576f0efea554b
SHA1: 0524fa43fa48fc68fb62604cf14ce71b31caf7c0
SHA256: 86ee67c7040278bac5204b571f738b8b859f014ceb5f896bd935bacbdaf33cb9
Referenced In Project/Scope: waffle-jetty-jakarta:provided
expressly-6.0.0.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/com.github.waffle/waffle-jetty-jakarta@3.6.0-SNAPSHOT
Evidence
Type Source Name Value Confidence Vendor file name expressly High Vendor jar package name expressly Highest Vendor jar package name glassfish Highest Vendor Manifest automatic-module-name org.glassfish.expressly Medium Vendor Manifest build-jdk-spec 17 Low Vendor Manifest bundle-docurl https://www.eclipse.org Low Vendor Manifest bundle-symbolicname org.glassfish.expressly Medium Vendor Manifest extension-name org.glassfish.expressly Medium Vendor Manifest Implementation-Vendor ${vendorName} High Vendor Manifest specification-vendor Eclipse Foundation Low Vendor pom artifactid expressly Highest Vendor pom artifactid expressly Low Vendor pom developer email expressly-dev@eclipse.org Low Vendor pom developer id jakarta-ee4j-expressly Medium Vendor pom developer name Eclipse Expressly Developers Medium Vendor pom developer org Eclipse Foundation Medium Vendor pom groupid org.glassfish.expressly Highest Vendor pom name Eclipse Expressly High Vendor pom parent-artifactid project Low Vendor pom parent-groupid org.eclipse.ee4j Medium Vendor pom url https://projects.eclipse.org/projects/ee4j.expressly Highest Product file name expressly High Product jar package name expressly Highest Product jar package name glassfish Highest Product Manifest automatic-module-name org.glassfish.expressly Medium Product Manifest build-jdk-spec 17 Low Product Manifest bundle-docurl https://www.eclipse.org Low Product Manifest Bundle-Name Eclipse Expressly Medium Product Manifest bundle-symbolicname org.glassfish.expressly Medium Product Manifest extension-name org.glassfish.expressly Medium Product pom artifactid expressly Highest Product pom developer email expressly-dev@eclipse.org Low Product pom developer id jakarta-ee4j-expressly Low Product pom developer name Eclipse Expressly Developers Low Product pom developer org Eclipse Foundation Low Product pom groupid org.glassfish.expressly Highest Product pom name Eclipse Expressly High Product pom parent-artifactid project Medium Product pom parent-groupid org.eclipse.ee4j Medium Product pom url https://projects.eclipse.org/projects/ee4j.expressly Medium Version file version 6.0.0 High Version Manifest Bundle-Version 6.0.0 High Version Manifest Implementation-Version 6.0.0 High Version pom parent-version 6.0.0 Low Version pom version 6.0.0 Highest
pkg:maven/org.glassfish.expressly/expressly@6.0.0
(Confidence :High)
Description:
A set of annotations that provide additional information to the J2ObjC
translator to modify the result of translation.
License:
Apache License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/com/google/j2objc/j2objc-annotations/3.1/j2objc-annotations-3.1.jar
MD5: abe8bd3abff622b9a8b15c3a737aa741
SHA1: a892ca9507839bbdb900d64310ac98256cab992f
SHA256: 84d3a150518485f8140ea99b8a985656749629f6433c92b80c75b36aba3b099b
Referenced In Project/Scope: waffle-jetty-jakarta:provided
j2objc-annotations-3.1.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/com.github.waffle/waffle-jetty-jakarta@3.6.0-SNAPSHOT
Evidence
Type Source Name Value Confidence Vendor file name j2objc-annotations High Vendor jar package name annotations Highest Vendor jar package name google Highest Vendor jar package name j2objc Highest Vendor Manifest build-jdk-spec 22 Low Vendor Manifest multi-release true Low Vendor pom artifactid j2objc-annotations Highest Vendor pom artifactid j2objc-annotations Low Vendor pom developer email tball@google.com Low Vendor pom developer id tomball Medium Vendor pom developer name Tom Ball Medium Vendor pom developer org Google Medium Vendor pom developer org URL https://www.google.com Medium Vendor pom groupid com.google.j2objc Highest Vendor pom name J2ObjC Annotations High Vendor pom url google/j2objc/ Highest Product file name j2objc-annotations High Product jar package name annotations Highest Product jar package name google Highest Product jar package name j2objc Highest Product Manifest build-jdk-spec 22 Low Product Manifest multi-release true Low Product pom artifactid j2objc-annotations Highest Product pom developer email tball@google.com Low Product pom developer id tomball Low Product pom developer name Tom Ball Low Product pom developer org Google Low Product pom developer org URL https://www.google.com Low Product pom groupid com.google.j2objc Highest Product pom name J2ObjC Annotations High Product pom url google/j2objc/ High Version file version 3.1 High Version pom version 3.1 Highest
pkg:maven/com.google.j2objc/j2objc-annotations@3.1
(Confidence :High)
Description:
Jakarta Annotations API
License:
EPL 2.0: https://www.eclipse.org/legal/epl-2.0
GPL2 w/ CPE: https://www.gnu.org/software/classpath/license.html
File Path: /home/runner/.m2/repository/jakarta/annotation/jakarta.annotation-api/3.0.0/jakarta.annotation-api-3.0.0.jar
MD5: 7faffaab962918da4cf5ddfd76609dd2
SHA1: 54f928fadec906a99d558536756d171917b9d936
SHA256: b01f55552284cfb149411e64eabca75e942d26d2e1786b32914250e4330afaa2
Referenced In Project/Scope: waffle-jetty-jakarta:provided
jakarta.annotation-api-3.0.0.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/com.github.waffle/waffle-jetty-jakarta@3.6.0-SNAPSHOT
Evidence
Type Source Name Value Confidence Vendor file name jakarta.annotation-api High Vendor jar package name annotation Highest Vendor jar package name jakarta Highest Vendor Manifest build-jdk-spec 18 Low Vendor Manifest bundle-docurl https://www.eclipse.org Low Vendor Manifest bundle-symbolicname jakarta.annotation-api Medium Vendor Manifest extension-name jakarta.annotation Medium Vendor Manifest Implementation-Vendor Eclipse Foundation High Vendor Manifest Implementation-Vendor-Id org.glassfish Medium Vendor Manifest specification-vendor Eclipse Foundation Low Vendor pom artifactid jakarta.annotation-api Highest Vendor pom artifactid jakarta.annotation-api Low Vendor pom developer name Dmitry Kornilov Medium Vendor pom developer name Linda De Michiel Medium Vendor pom developer org Oracle Corp. Medium Vendor pom groupid jakarta.annotation Highest Vendor pom name Jakarta Annotations API High Vendor pom parent-artifactid project Low Vendor pom parent-groupid org.eclipse.ee4j Medium Vendor pom url https://projects.eclipse.org/projects/ee4j.ca Highest Product file name jakarta.annotation-api High Product jar package name annotation Highest Product jar package name jakarta Highest Product Manifest build-jdk-spec 18 Low Product Manifest bundle-docurl https://www.eclipse.org Low Product Manifest Bundle-Name Jakarta Annotations API Medium Product Manifest bundle-symbolicname jakarta.annotation-api Medium Product Manifest extension-name jakarta.annotation Medium Product pom artifactid jakarta.annotation-api Highest Product pom developer name Dmitry Kornilov Low Product pom developer name Linda De Michiel Low Product pom developer org Oracle Corp. Low Product pom groupid jakarta.annotation Highest Product pom name Jakarta Annotations API High Product pom parent-artifactid project Medium Product pom parent-groupid org.eclipse.ee4j Medium Product pom url https://projects.eclipse.org/projects/ee4j.ca Medium Version file version 3.0.0 High Version Manifest Bundle-Version 3.0.0 High Version Manifest Implementation-Version 3.0.0 High Version pom parent-version 3.0.0 Low Version pom version 3.0.0 Highest
pkg:maven/jakarta.annotation/jakarta.annotation-api@3.0.0
(Confidence :High)
cpe:2.3:a:oracle:projects:3.0.0:*:*:*:*:*:*:*
(Confidence :Low)
suppress
Description:
Jakarta Expression Language defines an expression language for Java applications
License:
https://www.eclipse.org/org/documents/epl-2.0/EPL-2.0.txt, https://www.gnu.org/software/classpath/license.html File Path: /home/runner/.m2/repository/jakarta/el/jakarta.el-api/6.0.1/jakarta.el-api-6.0.1.jar
MD5: a98f097e059552a75748fcdd067e5c16
SHA1: c7c4a2eb1e40e0ff45ab5e2e52bd77d8c7a75176
SHA256: 7e84b5bed49de32b79cc5e85d90b6f5adb1a953ac67283adbb41c1e297f9c605
Referenced In Project/Scope: waffle-jetty-jakarta:provided
jakarta.el-api-6.0.1.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/com.github.waffle/waffle-jetty-jakarta@3.6.0-SNAPSHOT
Evidence
Type Source Name Value Confidence Vendor file name jakarta.el-api High Vendor jar package name el Highest Vendor jar package name expression Highest Vendor jar package name jakarta Highest Vendor Manifest build-jdk-spec 17 Low Vendor Manifest bundle-docurl https://www.eclipse.org Low Vendor Manifest bundle-symbolicname jakarta.el-api Medium Vendor Manifest extension-name jakarta.el Medium Vendor Manifest Implementation-Vendor Eclipse Foundation High Vendor Manifest specification-vendor Eclipse Foundation Low Vendor pom artifactid jakarta.el-api Highest Vendor pom artifactid jakarta.el-api Low Vendor pom developer email el-dev@eclipse.org Low Vendor pom developer id jakarta-ee4j-el Medium Vendor pom developer name Jakarta Expression Language Developers Medium Vendor pom developer org Eclipse Foundation Medium Vendor pom groupid jakarta.el Highest Vendor pom name Jakarta Expression Language API High Vendor pom parent-artifactid project Low Vendor pom parent-groupid org.eclipse.ee4j Medium Vendor pom url https://projects.eclipse.org/projects/ee4j.el Highest Product file name jakarta.el-api High Product jar package name el Highest Product jar package name expression Highest Product jar package name jakarta Highest Product Manifest build-jdk-spec 17 Low Product Manifest bundle-docurl https://www.eclipse.org Low Product Manifest Bundle-Name Jakarta Expression Language API Medium Product Manifest bundle-symbolicname jakarta.el-api Medium Product Manifest extension-name jakarta.el Medium Product pom artifactid jakarta.el-api Highest Product pom developer email el-dev@eclipse.org Low Product pom developer id jakarta-ee4j-el Low Product pom developer name Jakarta Expression Language Developers Low Product pom developer org Eclipse Foundation Low Product pom groupid jakarta.el Highest Product pom name Jakarta Expression Language API High Product pom parent-artifactid project Medium Product pom parent-groupid org.eclipse.ee4j Medium Product pom url https://projects.eclipse.org/projects/ee4j.el Medium Version file version 6.0.1 High Version Manifest Bundle-Version 6.0.1 High Version Manifest Implementation-Version 6.0.1 High Version pom parent-version 6.0.1 Low Version pom version 6.0.1 Highest
pkg:maven/jakarta.el/jakarta.el-api@6.0.1
(Confidence :High)
cpe:2.3:a:eclipse:jakarta_expression_language:6.0.1:*:*:*:*:*:*:*
(Confidence :Low)
suppress
Description:
Jakarta Servlet 6.0
License:
EPL 2.0: http://www.eclipse.org/legal/epl-2.0
GPL2 w/ CPE: https://www.gnu.org/software/classpath/license.html
File Path: /home/runner/.m2/repository/jakarta/servlet/jakarta.servlet-api/6.0.0/jakarta.servlet-api-6.0.0.jar
MD5: 4bcb3175ed9b7aa3f038d082879ec2a8
SHA1: abecc699286e65035ebba9844c03931357a6a963
SHA256: c034eb1afb158987dbb53a5fea0cadf611c8dae8daadd59c44d9d5ab70129cef
Referenced In Project/Scope: waffle-jetty-jakarta:provided
jakarta.servlet-api-6.0.0.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.eclipse.jetty.ee10/jetty-ee10-servlet@12.1.5
Evidence
Type Source Name Value Confidence Vendor file name jakarta.servlet-api High Vendor jar package name jakarta Highest Vendor jar package name servlet Highest Vendor Manifest build-jdk-spec 11 Low Vendor Manifest bundle-docurl https://www.eclipse.org Low Vendor Manifest bundle-symbolicname jakarta.servlet-api Medium Vendor Manifest extension-name jakarta.servlet Medium Vendor Manifest Implementation-Vendor Eclipse Foundation High Vendor Manifest Implementation-Vendor-Id org.eclipse Medium Vendor Manifest specification-vendor Eclipse Foundation Low Vendor pom artifactid jakarta.servlet-api Highest Vendor pom artifactid jakarta.servlet-api Low Vendor pom developer id yaminikb Medium Vendor pom developer name Yamini K B Medium Vendor pom developer org Oracle Corporation Medium Vendor pom developer org URL http://www.oracle.com/ Medium Vendor pom groupid jakarta.servlet Highest Vendor pom name Jakarta Servlet High Vendor pom parent-artifactid project Low Vendor pom parent-groupid org.eclipse.ee4j Medium Vendor pom url https://projects.eclipse.org/projects/ee4j.servlet Highest Product file name jakarta.servlet-api High Product jar package name jakarta Highest Product jar package name servlet Highest Product Manifest build-jdk-spec 11 Low Product Manifest bundle-docurl https://www.eclipse.org Low Product Manifest Bundle-Name Jakarta Servlet Medium Product Manifest bundle-symbolicname jakarta.servlet-api Medium Product Manifest extension-name jakarta.servlet Medium Product pom artifactid jakarta.servlet-api Highest Product pom developer id yaminikb Low Product pom developer name Yamini K B Low Product pom developer org Oracle Corporation Low Product pom developer org URL http://www.oracle.com/ Low Product pom groupid jakarta.servlet Highest Product pom name Jakarta Servlet High Product pom parent-artifactid project Medium Product pom parent-groupid org.eclipse.ee4j Medium Product pom url https://projects.eclipse.org/projects/ee4j.servlet Medium Version file version 6.0.0 High Version Manifest Bundle-Version 6.0.0 High Version Manifest Implementation-Version 6.0.0 High Version pom parent-version 6.0.0 Low Version pom version 6.0.0 Highest
pkg:maven/jakarta.servlet/jakarta.servlet-api@6.0.0
(Confidence :High)
cpe:2.3:a:oracle:projects:6.0.0:*:*:*:*:*:*:*
(Confidence :Low)
suppress
Description:
JavaServer Pages API
License:
https://www.eclipse.org/org/documents/epl-2.0/EPL-2.0.txt, https://www.gnu.org/software/classpath/license.html File Path: /home/runner/.m2/repository/org/glassfish/web/jakarta.servlet.jsp/3.0.0/jakarta.servlet.jsp-3.0.0.jar
MD5: fca522b72282d53d0819af32a5a2ec9c
SHA1: a1b306dd295439765d0fd2f9b00a48501c892b88
SHA256: 7dde5d9789c030401c80bdfdbcc7a021665a451ba6f4ebdc033196cb7c8dee2a
Referenced In Project/Scope: waffle-jetty-jakarta:provided
jakarta.servlet.jsp-3.0.0.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/com.github.waffle/waffle-jetty-jakarta@3.6.0-SNAPSHOT
Evidence
Type Source Name Value Confidence Vendor file name jakarta.servlet.jsp High Vendor jar package name api Highest Vendor jar package name glassfish Highest Vendor jar package name jsp Highest Vendor jar package name servlet Highest Vendor Manifest build-jdk-spec 1.8 Low Vendor Manifest bundle-docurl https://www.eclipse.org Low Vendor Manifest bundle-symbolicname org.glassfish.web.jakarta.servlet.jsp Medium Vendor Manifest extension-name jakarta.servlet.jsp Medium Vendor Manifest Implementation-Vendor Eclipse Foundation High Vendor Manifest specification-vendor Eclipse Foundation Low Vendor pom artifactid jakarta.servlet.jsp Highest Vendor pom artifactid jakarta.servlet.jsp Low Vendor pom developer email jsp-dev@eclipse.org Low Vendor pom developer id jakarta-ee4j-jsp Medium Vendor pom developer name Jakarta Server Pages Developers Medium Vendor pom developer org Eclipse Foundation Medium Vendor pom groupid org.glassfish.web Highest Vendor pom name Jakarta Server Pages implementation High Vendor pom parent-artifactid project Low Vendor pom parent-groupid org.eclipse.ee4j Medium Vendor pom url https://projects.eclipse.org/projects/ee4j.jsp Highest Product file name jakarta.servlet.jsp High Product jar package name api Highest Product jar package name glassfish Highest Product jar package name jsp Highest Product jar package name servlet Highest Product Manifest build-jdk-spec 1.8 Low Product Manifest bundle-docurl https://www.eclipse.org Low Product Manifest Bundle-Name Jakarta Server Pages implementation Medium Product Manifest bundle-symbolicname org.glassfish.web.jakarta.servlet.jsp Medium Product Manifest extension-name jakarta.servlet.jsp Medium Product pom artifactid jakarta.servlet.jsp Highest Product pom developer email jsp-dev@eclipse.org Low Product pom developer id jakarta-ee4j-jsp Low Product pom developer name Jakarta Server Pages Developers Low Product pom developer org Eclipse Foundation Low Product pom groupid org.glassfish.web Highest Product pom name Jakarta Server Pages implementation High Product pom parent-artifactid project Medium Product pom parent-groupid org.eclipse.ee4j Medium Product pom url https://projects.eclipse.org/projects/ee4j.jsp Medium Version file version 3.0.0 High Version Manifest Bundle-Version 3.0.0 High Version Manifest Implementation-Version 3.0.0 High Version pom parent-version 3.0.0 Low Version pom version 3.0.0 Highest
pkg:maven/org.glassfish.web/jakarta.servlet.jsp@3.0.0
(Confidence :High)
Description:
Jakarta Server Pages API
License:
https://www.eclipse.org/org/documents/epl-2.0/EPL-2.0.txt, https://www.gnu.org/software/classpath/license.html File Path: /home/runner/.m2/repository/jakarta/servlet/jsp/jakarta.servlet.jsp-api/4.0.0/jakarta.servlet.jsp-api-4.0.0.jar
MD5: 6fddc938119e00e6f934c1b37120e338
SHA1: a8de3741b91ba7427306104979ab2f084e831438
SHA256: 873b7d0c2b5734ef8847634299b67ce879080cdece8426147522c4db8e37c14e
Referenced In Project/Scope: waffle-jetty-jakarta:provided
jakarta.servlet.jsp-api-4.0.0.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/com.github.waffle/waffle-jetty-jakarta@3.6.0-SNAPSHOT
Evidence
Type Source Name Value Confidence Vendor file name jakarta.servlet.jsp-api High Vendor jar package name jakarta Highest Vendor jar package name jsp Highest Vendor jar package name servlet Highest Vendor Manifest build-jdk-spec 17 Low Vendor Manifest bundle-docurl https://www.eclipse.org Low Vendor Manifest bundle-symbolicname jakarta.servlet.jsp-api Medium Vendor Manifest extension-name jakarta.servlet.jsp Medium Vendor Manifest Implementation-Vendor Eclipse Foundation High Vendor Manifest specification-vendor Eclipse Foundation Low Vendor pom artifactid jakarta.servlet.jsp-api Highest Vendor pom artifactid jakarta.servlet.jsp-api Low Vendor pom developer email jsp-dev@eclipse.org Low Vendor pom developer id jakarta-ee4j-jsp Medium Vendor pom developer name Jakarta Server Pages Developers Medium Vendor pom developer org Eclipse Foundation Medium Vendor pom groupid jakarta.servlet.jsp Highest Vendor pom name Jakarta Server Pages API High Vendor pom parent-artifactid project Low Vendor pom parent-groupid org.eclipse.ee4j Medium Vendor pom url https://projects.eclipse.org/projects/ee4j.jsp Highest Product file name jakarta.servlet.jsp-api High Product jar package name jakarta Highest Product jar package name jsp Highest Product jar package name servlet Highest Product Manifest build-jdk-spec 17 Low Product Manifest bundle-docurl https://www.eclipse.org Low Product Manifest Bundle-Name Jakarta Server Pages API Medium Product Manifest bundle-symbolicname jakarta.servlet.jsp-api Medium Product Manifest extension-name jakarta.servlet.jsp Medium Product pom artifactid jakarta.servlet.jsp-api Highest Product pom developer email jsp-dev@eclipse.org Low Product pom developer id jakarta-ee4j-jsp Low Product pom developer name Jakarta Server Pages Developers Low Product pom developer org Eclipse Foundation Low Product pom groupid jakarta.servlet.jsp Highest Product pom name Jakarta Server Pages API High Product pom parent-artifactid project Medium Product pom parent-groupid org.eclipse.ee4j Medium Product pom url https://projects.eclipse.org/projects/ee4j.jsp Medium Version file version 4.0.0 High Version Manifest Bundle-Version 4.0.0 High Version Manifest Implementation-Version 4.0.0 High Version pom parent-version 4.0.0 Low Version pom version 4.0.0 Highest
pkg:maven/jakarta.servlet.jsp/jakarta.servlet.jsp-api@4.0.0
(Confidence :High)
Description:
Jakarta Standard Tag Library Implementation
License:
EPL 2.0: http://www.eclipse.org/legal/epl-2.0
GPL2 w/ CPE: https://www.gnu.org/software/classpath/license.html
File Path: /home/runner/.m2/repository/org/glassfish/web/jakarta.servlet.jsp.jstl/3.0.1/jakarta.servlet.jsp.jstl-3.0.1.jar
MD5: 3f6511c0066616415b9ed23a018b1cde
SHA1: 078909a1354585b2a7a2d3b4e348fceff8b6d180
SHA256: 5cc6e60b9e74d38c25fe4f2d22dfd40577f5b8396bc885f7061cd2c525a43b86
Referenced In Project/Scope: waffle-jetty-jakarta:provided
jakarta.servlet.jsp.jstl-3.0.1.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/com.github.waffle/waffle-jetty-jakarta@3.6.0-SNAPSHOT
Evidence
Type Source Name Value Confidence Vendor file name jakarta.servlet.jsp.jstl High Vendor jar package name eclipse Highest Vendor jar package name org Highest Vendor jar package name standard Highest Vendor jar package name tag Highest Vendor Manifest build-jdk-spec 11 Low Vendor Manifest bundle-docurl https://www.eclipse.org Low Vendor Manifest bundle-symbolicname org.glassfish.web.jakarta.servlet.jsp.jstl Medium Vendor Manifest extension-name jakarta.servlet.jsp.jstl Medium Vendor Manifest Implementation-Vendor Eclipse Foundation High Vendor Manifest specification-vendor Eclipse Foundation Low Vendor pom artifactid jakarta.servlet.jsp.jstl Highest Vendor pom artifactid jakarta.servlet.jsp.jstl Low Vendor pom developer id yaminikb Medium Vendor pom developer name Yamini K B Medium Vendor pom developer org Oracle Corporation Medium Vendor pom developer org URL http://www.oracle.com/ Medium Vendor pom groupid org.glassfish.web Highest Vendor pom name Jakarta Standard Tag Library Implementation High Vendor pom parent-artifactid project Low Vendor pom parent-groupid org.eclipse.ee4j Medium Vendor pom url https://projects.eclipse.org/projects/ee4j.jstl Highest Product file name jakarta.servlet.jsp.jstl High Product jar package name eclipse Highest Product jar package name org Highest Product jar package name standard Highest Product jar package name tag Highest Product Manifest build-jdk-spec 11 Low Product Manifest bundle-docurl https://www.eclipse.org Low Product Manifest Bundle-Name Jakarta Standard Tag Library Implementation Medium Product Manifest bundle-symbolicname org.glassfish.web.jakarta.servlet.jsp.jstl Medium Product Manifest extension-name jakarta.servlet.jsp.jstl Medium Product pom artifactid jakarta.servlet.jsp.jstl Highest Product pom developer id yaminikb Low Product pom developer name Yamini K B Low Product pom developer org Oracle Corporation Low Product pom developer org URL http://www.oracle.com/ Low Product pom groupid org.glassfish.web Highest Product pom name Jakarta Standard Tag Library Implementation High Product pom parent-artifactid project Medium Product pom parent-groupid org.eclipse.ee4j Medium Product pom url https://projects.eclipse.org/projects/ee4j.jstl Medium Version file version 3.0.1 High Version Manifest Bundle-Version 3.0.1 High Version Manifest Implementation-Version 3.0.1 High Version pom parent-version 3.0.1 Low Version pom version 3.0.1 Highest
File Path: /home/runner/.m2/repository/eclipse/jdtcore/3.1.0/jdtcore-3.1.0.jarMD5: d1651bf9048165f304e7877f1eaad6dcSHA1: c5e3e72ae7220118c3da808628ec7016d4d8aef2SHA256: b163be93b2131f97dd23ee03c935b34f48c17e74d8f60b644747528ea024e88e
Referenced In Project/Scope: waffle-jetty-jakarta:provided
jdtcore-3.1.0.jar is in the transitive dependency tree of the listed items. Included by:
Evidence
Type Source Name Value Confidence Vendor file name jdtcore High Vendor jar package name core Highest Vendor jar package name eclipse Highest Vendor jar package name jdt Highest Vendor Manifest bundle-localization plugin Low Vendor Manifest bundle-symbolicname org.eclipse.jdt.core; singleton:=true Medium Vendor Manifest eclipse-autostart true Low Vendor pom artifactid jdtcore Highest Vendor pom artifactid jdtcore Low Vendor pom groupid eclipse Highest Vendor pom name jdtcore High Product file name jdtcore High Product jar package name core Highest Product jar package name eclipse Highest Product jar package name jdt Highest Product Manifest bundle-localization plugin Low Product Manifest Bundle-Name %pluginName Medium Product Manifest bundle-symbolicname org.eclipse.jdt.core; singleton:=true Medium Product Manifest eclipse-autostart true Low Product pom artifactid jdtcore Highest Product pom groupid eclipse Highest Product pom name jdtcore High Version file version 3.1.0 High Version Manifest Bundle-Version 3.1.0 High Version pom version 3.1.0 Highest
pkg:maven/eclipse/jdtcore@3.1.0
(Confidence :High)
File Path: /home/runner/.m2/repository/eclipse/jdtcore/3.1.0/jdtcore-3.1.0.jar/jdtCompilerAdapter.jarMD5: e66287f3ce15029d202ffc9c2dc3aa77SHA1: a9d9eb99b7920dd3ee24d601a26cd7e473b0bf6eSHA256: c79595d136ba157fc63286bf29cee69f6ab09cf2b9005ce70ae7eb01431115d9
Referenced In Project/Scope: waffle-jetty-jakarta:provided
Evidence
Type Source Name Value Confidence Vendor file name jdtCompilerAdapter High Vendor jar package name core Low Vendor jar package name eclipse Low Vendor jar package name jdt Low Product file name jdtCompilerAdapter High Product jar package name core Low Product jar package name jdt Low
Description:
Jetty module for Core :: IO
License:
EPL-2.0 OR Apache-2.0
https://www.eclipse.org/legal/epl-2.0/, https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/org/eclipse/jetty/jetty-io/12.1.5/jetty-io-12.1.5.jar
MD5: 7dc223f8ff9aa14da8de2c4802153215
SHA1: de8db8fc9b571209b9d46321acf920238e02c143
SHA256: 9c388018412d9bd9a1b9c35ca373e25fd845706f82549f2a7039ae9fefb45e69
Referenced In Project/Scope: waffle-jetty-jakarta:provided
jetty-io-12.1.5.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.eclipse.jetty/jetty-client@12.1.5
Evidence
Type Source Name Value Confidence Vendor file name jetty-io High Vendor jar package name eclipse Highest Vendor jar package name io Highest Vendor jar package name jetty Highest Vendor Manifest build-jdk-spec 25 Low Vendor Manifest bundle-copyright Copyright (c) 1995 Mort Bay Consulting Pty Ltd and others. Low Vendor Manifest bundle-docurl https://jetty.org/ Low Vendor Manifest bundle-symbolicname org.eclipse.jetty.io Medium Vendor Manifest Implementation-Vendor Eclipse Jetty Project High Vendor Manifest url https://jetty.org/ Low Vendor pom artifactid jetty-io Highest Vendor pom artifactid jetty-io Low Vendor pom groupid org.eclipse.jetty Highest Vendor pom name Core :: IO High Vendor pom parent-artifactid jetty-core Low Product file name jetty-io High Product jar package name eclipse Highest Product jar package name io Highest Product jar package name jetty Highest Product Manifest build-jdk-spec 25 Low Product Manifest bundle-copyright Copyright (c) 1995 Mort Bay Consulting Pty Ltd and others. Low Product Manifest bundle-docurl https://jetty.org/ Low Product Manifest Bundle-Name Core :: IO Medium Product Manifest bundle-symbolicname org.eclipse.jetty.io Medium Product Manifest url https://jetty.org/ Low Product pom artifactid jetty-io Highest Product pom groupid org.eclipse.jetty Highest Product pom name Core :: IO High Product pom parent-artifactid jetty-core Medium Version file version 12.1.5 High Version Manifest Bundle-Version 12.1.5 High Version Manifest Implementation-Version 12.1.5 High Version pom version 12.1.5 Highest
Related Dependencies
jetty-alpn-client-12.1.5.jar
File Path: /home/runner/.m2/repository/org/eclipse/jetty/jetty-alpn-client/12.1.5/jetty-alpn-client-12.1.5.jar
MD5: f41dda56c2b2af661aa0e9b468008453
SHA1: 437fcfda64db5cdbf7d01cb9a8268c1685495510
SHA256: a4fe9fe0f4d6eae1d7c4010e9c04ffdf6222e02a6b684fa90f04e109825954f1
pkg:maven/org.eclipse.jetty/jetty-alpn-client@12.1.5
jetty-client-12.1.5.jar
File Path: /home/runner/.m2/repository/org/eclipse/jetty/jetty-client/12.1.5/jetty-client-12.1.5.jar
MD5: 1d4af694005ec52dccb515cc6d6089f3
SHA1: 596fd1f6d68214c8abdf3bb5e0650c977c1f2506
SHA256: ddcff35a3a1b1f5266bbc78324a7ece4af45717383efbea227aab5918bdc942b
pkg:maven/org.eclipse.jetty/jetty-client@12.1.5
jetty-compression-common-12.1.5.jar
File Path: /home/runner/.m2/repository/org/eclipse/jetty/compression/jetty-compression-common/12.1.5/jetty-compression-common-12.1.5.jar
MD5: 5dc82c221aeeec11cede481f5b387cdc
SHA1: 73041a5d99e33d85b2ee5219a737d9d749583012
SHA256: f9eaa16477daaf7ff41e5489e6d41268c42cd58888396762ef093ace819ab683
pkg:maven/org.eclipse.jetty.compression/jetty-compression-common@12.1.5
jetty-compression-gzip-12.1.5.jar
File Path: /home/runner/.m2/repository/org/eclipse/jetty/compression/jetty-compression-gzip/12.1.5/jetty-compression-gzip-12.1.5.jar
MD5: aa9164859e2fa6439114a5e7ba5d0c70
SHA1: 886991f101138ecebd6a1c7f86fdbe23baa2533a
SHA256: f9a3b082a4eeb0013226c9fd9e9dd60f77c1bf93a87d95e741be9553e769c7b5
pkg:maven/org.eclipse.jetty.compression/jetty-compression-gzip@12.1.5
jetty-ee-webapp-12.1.5.jar
File Path: /home/runner/.m2/repository/org/eclipse/jetty/ee/jetty-ee-webapp/12.1.5/jetty-ee-webapp-12.1.5.jar
MD5: 62e1b8c894e1a2c213e72937816c9f6f
SHA1: 9a5b35fdb0eaadb92d17eb57e76c98b607f64f8b
SHA256: 520f82e932e7dee3b7d2bc4207c0b287815247d6c813df01a054cf3517a08982
pkg:maven/org.eclipse.jetty.ee/jetty-ee-webapp@12.1.5
jetty-ee10-apache-jsp-12.1.5.jar
File Path: /home/runner/.m2/repository/org/eclipse/jetty/ee10/jetty-ee10-apache-jsp/12.1.5/jetty-ee10-apache-jsp-12.1.5.jar
MD5: f8deb002bc38b91d0dd336db31fe3194
SHA1: cc3be0a0c925d7547dd20d4bf6519b89bd9b1abf
SHA256: bc4f6f4dcd5e1bbfe9ce14f829baab08a042d4e72e89ce534bb882ba1f30ba67
pkg:maven/org.eclipse.jetty.ee10/jetty-ee10-apache-jsp@12.1.5
jetty-ee10-servlet-12.1.5.jar
File Path: /home/runner/.m2/repository/org/eclipse/jetty/ee10/jetty-ee10-servlet/12.1.5/jetty-ee10-servlet-12.1.5.jar
MD5: 6172e1ca86b331c8e44bc82736609d02
SHA1: 8c4571a934b75eb667fb03a8f8d945ea079707dc
SHA256: ffd35e86226246c8a57ade503fae733b37e687844c726f63f02c6e5fa9220ace
pkg:maven/org.eclipse.jetty.ee10/jetty-ee10-servlet@12.1.5
jetty-ee10-webapp-12.1.5.jar
File Path: /home/runner/.m2/repository/org/eclipse/jetty/ee10/jetty-ee10-webapp/12.1.5/jetty-ee10-webapp-12.1.5.jar
MD5: 3d6bade44fbdaba80307883f16a5d17f
SHA1: eeba637b6963f552890892fa7ea47109a8fb63c4
SHA256: df98cab1117e202c56ee0a4eb962e34dfbb1d620321bda5a0476dc80dc6e8a10
pkg:maven/org.eclipse.jetty.ee10/jetty-ee10-webapp@12.1.5
jetty-http-12.1.5.jar
File Path: /home/runner/.m2/repository/org/eclipse/jetty/jetty-http/12.1.5/jetty-http-12.1.5.jar
MD5: 5a5bb13aaa8df3dbae10a0d3fa09538b
SHA1: 6e3bb3127cb6aa99a1c6aef18f018847f7b52828
SHA256: 20a6f605e802789990855b81f75dadfa8ab152e81713080c295c333d7cce7daa
pkg:maven/org.eclipse.jetty/jetty-http@12.1.5
jetty-security-12.1.5.jar
File Path: /home/runner/.m2/repository/org/eclipse/jetty/jetty-security/12.1.5/jetty-security-12.1.5.jar
MD5: c8dcb33295f83f78e300c789905c3ad3
SHA1: d511e0ad42e5fac3b3534fafba3e129ff233d779
SHA256: 9972b67058ad7a58a0517cd14502e67e2e1071c74b00f51c6487518f0bfdc02e
pkg:maven/org.eclipse.jetty/jetty-security@12.1.5
jetty-session-12.1.5.jar
File Path: /home/runner/.m2/repository/org/eclipse/jetty/jetty-session/12.1.5/jetty-session-12.1.5.jar
MD5: fee495181da152373d1061b6b00c8da1
SHA1: 603a5b27f446c5461e9ba1e02fa19f7cdec75ab4
SHA256: ebe4f30c6fe7656294d884e1dc8eea4c77b6c861e3c010847a76fd78164ae166
pkg:maven/org.eclipse.jetty/jetty-session@12.1.5
jetty-util-12.1.5.jar
File Path: /home/runner/.m2/repository/org/eclipse/jetty/jetty-util/12.1.5/jetty-util-12.1.5.jar
MD5: 46f9168c80abdce7b9f8c7f599801287
SHA1: 6f0e8a796fa183e5f771b2349490a16ae08c0e18
SHA256: 3b165498c1409db1a2463c367250c9225635cf68cd4529fbb0610324942bbc07
pkg:maven/org.eclipse.jetty/jetty-util@12.1.5
jetty-xml-12.1.5.jar
File Path: /home/runner/.m2/repository/org/eclipse/jetty/jetty-xml/12.1.5/jetty-xml-12.1.5.jar
MD5: 97c201b37497bc418cc3f006a77ce6d6
SHA1: 9985351623f6f73a1b324f9242f28e28a25e9810
SHA256: ec514c229a60a1be448b2771fc09644195966390cc413d09567f109a9362497c
pkg:maven/org.eclipse.jetty/jetty-xml@12.1.5
Description:
The legacy jetty server artifact.
License:
EPL-2.0 OR Apache-2.0
https://www.eclipse.org/legal/epl-2.0/, https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/org/eclipse/jetty/jetty-server/12.1.5/jetty-server-12.1.5.jar
MD5: f56663610098daa47c5138401a5762fe
SHA1: df890fa50e1de86bb130113a59baf874d647b5dd
SHA256: e0964741f132de3bdb48ca59c4b9bb8555f966d46b660c8c88f1e157cedbaa02
Referenced In Project/Scope: waffle-jetty-jakarta:provided
jetty-server-12.1.5.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.eclipse.jetty.ee10/jetty-ee10-servlet@12.1.5
Evidence
Type Source Name Value Confidence Vendor file name jetty-server High Vendor jar package name eclipse Highest Vendor jar package name jetty Highest Vendor jar package name server Highest Vendor Manifest build-jdk-spec 25 Low Vendor Manifest bundle-copyright Copyright (c) 1995 Mort Bay Consulting Pty Ltd and others. Low Vendor Manifest bundle-docurl https://jetty.org/ Low Vendor Manifest bundle-symbolicname org.eclipse.jetty.server Medium Vendor Manifest Implementation-Vendor Eclipse Jetty Project High Vendor Manifest url https://jetty.org/ Low Vendor pom artifactid jetty-server Highest Vendor pom artifactid jetty-server Low Vendor pom groupid org.eclipse.jetty Highest Vendor pom name Core :: Server High Vendor pom parent-artifactid jetty-core Low Product file name jetty-server High Product jar package name eclipse Highest Product jar package name jetty Highest Product jar package name server Highest Product Manifest build-jdk-spec 25 Low Product Manifest bundle-copyright Copyright (c) 1995 Mort Bay Consulting Pty Ltd and others. Low Product Manifest bundle-docurl https://jetty.org/ Low Product Manifest Bundle-Name Core :: Server Medium Product Manifest bundle-symbolicname org.eclipse.jetty.server Medium Product Manifest url https://jetty.org/ Low Product pom artifactid jetty-server Highest Product pom groupid org.eclipse.jetty Highest Product pom name Core :: Server High Product pom parent-artifactid jetty-core Medium Version file version 12.1.5 High Version Manifest Bundle-Version 12.1.5 High Version Manifest Implementation-Version 12.1.5 High Version pom version 12.1.5 Highest
Description:
Java Native Access
License:
LGPL-2.1-or-later: https://www.gnu.org/licenses/old-licenses/lgpl-2.1
Apache-2.0: https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/net/java/dev/jna/jna/5.18.1/jna-5.18.1.jar
MD5: cb531ec131e1c68c045b5d45fe5b9878
SHA1: b27ba04287cc4abe769642fe8318d39fc89bf937
SHA256: 260c4b1e22b1db9e110ee441c4f13ce115f841fa48c41d78750986214b395557
Referenced In Project/Scope: waffle-jetty-jakarta:compile
jna-5.18.1.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/com.github.waffle/waffle-jna-jakarta@3.6.0-SNAPSHOT
Evidence
Type Source Name Value Confidence Vendor file name jna High Vendor jar package name jna Highest Vendor jar package name native Highest Vendor jar package name sun Highest Vendor jar (hint) package name oracle Highest Vendor Manifest automatic-module-name com.sun.jna Medium Vendor Manifest bundle-activationpolicy lazy Low Vendor Manifest bundle-category jni Low Vendor Manifest bundle-nativecode com/sun/jna/win32-x86/jnidispatch.dll; processor=x86;osname=win32, com/sun/jna/win32-x86-64/jnidispatch.dll; processor=x86-64;osname=win32, com/sun/jna/win32-aarch64/jnidispatch.dll; processor=aarch64;osname=win32, com/sun/jna/win32-x86/jnidispatch.dll; processor=x86;osname=win, com/sun/jna/win32-x86-64/jnidispatch.dll; processor=x86-64;osname=win, com/sun/jna/win32-aarch64/jnidispatch.dll; processor=aarch64;osname=win, com/sun/jna/w32ce-arm/jnidispatch.dll; processor=arm;osname=wince, com/sun/jna/sunos-x86/libjnidispatch.so; processor=x86;osname=sunos, com/sun/jna/sunos-x86-64/libjnidispatch.so; processor=x86-64;osname=sunos, com/sun/jna/sunos-sparc/libjnidispatch.so; processor=sparc;osname=sunos, com/sun/jna/sunos-sparcv9/libjnidispatch.so; processor=sparcv9;osname=sunos, com/sun/jna/aix-ppc/libjnidispatch.a; processor=ppc;osname=aix, com/sun/jna/aix-ppc64/libjnidispatch.a; processor=ppc64;osname=aix, com/sun/jna/linux-ppc/libjnidispatch.so; processor=ppc;osname=linux, com/sun/jna/linux-ppc64/libjnidispatch.so; processor=ppc64;osname=linux, com/sun/jna/linux-ppc64le/libjnidispatch.so; processor=ppc64le;osname=linux, com/sun/jna/linux-x86/libjnidispatch.so; processor=x86;osname=linux, com/sun/jna/linux-x86-64/libjnidispatch.so; processor=x86-64;osname=linux, com/sun/jna/linux-arm/libjnidispatch.so; processor=arm;osname=linux, com/sun/jna/linux-arm/libjnidispatch.so; processor=arm_le;osname=linux, com/sun/jna/linux-armel/libjnidispatch.so; processor=armel;osname=linux, com/sun/jna/linux-aarch64/libjnidispatch.so; processor=aarch64;osname=linux, com/sun/jna/linux-ia64/libjnidispatch.so; processor=ia64;osname=linux, com/sun/jna/linux-sparcv9/libjnidispatch.so; processor=sparcv9;osname=linux, com/sun/jna/linux-mips64el/libjnidispatch.so; processor=mips64el;osname=linux, com/sun/jna/linux-s390x/libjnidispatch.so; processor=S390x;osname=linux, com/sun/jna/linux-loongarch64/libjnidispatch.so; processor=loongarch64;osname=linux, com/sun/jna/linux-riscv64/libjnidispatch.so; processor=riscv64;osname=linux, com/sun/jna/dragonflybsd-x86-64/libjnidispatch.so; processor=x86-64;osname=dragonflybsd, com/sun/jna/freebsd-x86/libjnidispatch.so; processor=x86;osname=freebsd, com/sun/jna/freebsd-x86-64/libjnidispatch.so; processor=x86-64;osname=freebsd, com/sun/jna/freebsd-aarch64/libjnidispatch.so; processor=aarch64;osname=freebsd, com/sun/jna/freebsd-ppc64le/libjnidispatch.so; processor=ppc64le;osname=freebsd, com/sun/jna/freebsd-ppc64/libjnidispatch.so; processor=ppc64;osname=freebsd, com/sun/jna/openbsd-x86/libjnidispatch.so; processor=x86;osname=openbsd, com/sun/jna/openbsd-x86-64/libjnidispatch.so; processor=x86-64;osname=openbsd, com/sun/jna/darwin-ppc/libjnidispatch.jnilib; osname=macosx;processor=ppc, com/sun/jna/darwin-ppc64/libjnidispatch.jnilib; osname=macosx;processor=ppc64, com/sun/jna/darwin-x86/libjnidispatch.jnilib; osname=macosx;processor=x86, com/sun/jna/darwin-x86-64/libjnidispatch.jnilib; osname=macosx;processor=x86-64, com/sun/jna/darwin-aarch64/libjnidispatch.jnilib; osname=macosx;processor=aarch64 Low Vendor Manifest bundle-requiredexecutionenvironment JavaSE-1.6 Low Vendor Manifest bundle-symbolicname com.sun.jna Medium Vendor Manifest Implementation-Vendor JNA Development Team High Vendor Manifest specification-vendor JNA Development Team Low Vendor pom artifactid jna Highest Vendor pom artifactid jna Low Vendor pom developer email mblaesing@doppel-helix.eu Low Vendor pom developer id twall Medium Vendor pom developer name Matthias Bläsing Medium Vendor pom developer name Timothy Wall Medium Vendor pom groupid net.java.dev.jna Highest Vendor pom name Java Native Access High Vendor pom url java-native-access/jna Highest Product file name jna High Product jar package name jna Highest Product jar package name library Highest Product jar package name native Highest Product jar package name sun Highest Product jar package name win32 Highest Product Manifest automatic-module-name com.sun.jna Medium Product Manifest bundle-activationpolicy lazy Low Product Manifest bundle-category jni Low Product Manifest Bundle-Name jna Medium Product Manifest bundle-nativecode com/sun/jna/win32-x86/jnidispatch.dll; processor=x86;osname=win32, com/sun/jna/win32-x86-64/jnidispatch.dll; processor=x86-64;osname=win32, com/sun/jna/win32-aarch64/jnidispatch.dll; processor=aarch64;osname=win32, com/sun/jna/win32-x86/jnidispatch.dll; processor=x86;osname=win, com/sun/jna/win32-x86-64/jnidispatch.dll; processor=x86-64;osname=win, com/sun/jna/win32-aarch64/jnidispatch.dll; processor=aarch64;osname=win, com/sun/jna/w32ce-arm/jnidispatch.dll; processor=arm;osname=wince, com/sun/jna/sunos-x86/libjnidispatch.so; processor=x86;osname=sunos, com/sun/jna/sunos-x86-64/libjnidispatch.so; processor=x86-64;osname=sunos, com/sun/jna/sunos-sparc/libjnidispatch.so; processor=sparc;osname=sunos, com/sun/jna/sunos-sparcv9/libjnidispatch.so; processor=sparcv9;osname=sunos, com/sun/jna/aix-ppc/libjnidispatch.a; processor=ppc;osname=aix, com/sun/jna/aix-ppc64/libjnidispatch.a; processor=ppc64;osname=aix, com/sun/jna/linux-ppc/libjnidispatch.so; processor=ppc;osname=linux, com/sun/jna/linux-ppc64/libjnidispatch.so; processor=ppc64;osname=linux, com/sun/jna/linux-ppc64le/libjnidispatch.so; processor=ppc64le;osname=linux, com/sun/jna/linux-x86/libjnidispatch.so; processor=x86;osname=linux, com/sun/jna/linux-x86-64/libjnidispatch.so; processor=x86-64;osname=linux, com/sun/jna/linux-arm/libjnidispatch.so; processor=arm;osname=linux, com/sun/jna/linux-arm/libjnidispatch.so; processor=arm_le;osname=linux, com/sun/jna/linux-armel/libjnidispatch.so; processor=armel;osname=linux, com/sun/jna/linux-aarch64/libjnidispatch.so; processor=aarch64;osname=linux, com/sun/jna/linux-ia64/libjnidispatch.so; processor=ia64;osname=linux, com/sun/jna/linux-sparcv9/libjnidispatch.so; processor=sparcv9;osname=linux, com/sun/jna/linux-mips64el/libjnidispatch.so; processor=mips64el;osname=linux, com/sun/jna/linux-s390x/libjnidispatch.so; processor=S390x;osname=linux, com/sun/jna/linux-loongarch64/libjnidispatch.so; processor=loongarch64;osname=linux, com/sun/jna/linux-riscv64/libjnidispatch.so; processor=riscv64;osname=linux, com/sun/jna/dragonflybsd-x86-64/libjnidispatch.so; processor=x86-64;osname=dragonflybsd, com/sun/jna/freebsd-x86/libjnidispatch.so; processor=x86;osname=freebsd, com/sun/jna/freebsd-x86-64/libjnidispatch.so; processor=x86-64;osname=freebsd, com/sun/jna/freebsd-aarch64/libjnidispatch.so; processor=aarch64;osname=freebsd, com/sun/jna/freebsd-ppc64le/libjnidispatch.so; processor=ppc64le;osname=freebsd, com/sun/jna/freebsd-ppc64/libjnidispatch.so; processor=ppc64;osname=freebsd, com/sun/jna/openbsd-x86/libjnidispatch.so; processor=x86;osname=openbsd, com/sun/jna/openbsd-x86-64/libjnidispatch.so; processor=x86-64;osname=openbsd, com/sun/jna/darwin-ppc/libjnidispatch.jnilib; osname=macosx;processor=ppc, com/sun/jna/darwin-ppc64/libjnidispatch.jnilib; osname=macosx;processor=ppc64, com/sun/jna/darwin-x86/libjnidispatch.jnilib; osname=macosx;processor=x86, com/sun/jna/darwin-x86-64/libjnidispatch.jnilib; osname=macosx;processor=x86-64, com/sun/jna/darwin-aarch64/libjnidispatch.jnilib; osname=macosx;processor=aarch64 Low Product Manifest bundle-requiredexecutionenvironment JavaSE-1.6 Low Product Manifest bundle-symbolicname com.sun.jna Medium Product Manifest Implementation-Title com.sun.jna High Product Manifest specification-title Java Native Access (JNA) Medium Product pom artifactid jna Highest Product pom developer email mblaesing@doppel-helix.eu Low Product pom developer id twall Low Product pom developer name Matthias Bläsing Low Product pom developer name Timothy Wall Low Product pom groupid net.java.dev.jna Highest Product pom name Java Native Access High Product pom url java-native-access/jna High Version file version 5.18.1 High Version Manifest Bundle-Version 5.18.1 High Version pom version 5.18.1 Highest
pkg:maven/net.java.dev.jna/jna@5.18.1
(Confidence :High)
cpe:2.3:a:oracle:java_se:5.18.1:*:*:*:*:*:*:*
(Confidence :Low)
suppress
File Path: /home/runner/.m2/repository/net/java/dev/jna/jna/5.18.1/jna-5.18.1.jar/com/sun/jna/win32-aarch64/jnidispatch.dllMD5: 302945a811fd8e21bcdd5226c73b6f74SHA1: 6b05e299ff2b3eb3b7b7aeac44263f715693607cSHA256: b8f98be314234cf12b5b46c29652f70c0f6abb93ae19b63d3fe2692062aa699d
Referenced In Project/Scope: waffle-jetty-jakarta:compile
Evidence
Type Source Name Value Confidence Vendor file name jnidispatch High Product file name jnidispatch High
File Path: /home/runner/.m2/repository/net/java/dev/jna/jna/5.18.1/jna-5.18.1.jar/com/sun/jna/win32-x86-64/jnidispatch.dllMD5: 2d2475f1f026dd54e9f3e787ae4f81daSHA1: 27ff882ac271db547aee520b38e3ba9aa91e136cSHA256: 5a7ff949f6d93d86491eb5b26b1cfc60051168a60622650224b89995ac420023
Referenced In Project/Scope: waffle-jetty-jakarta:compile
Evidence
Type Source Name Value Confidence Vendor file name jnidispatch High Product file name jnidispatch High
File Path: /home/runner/.m2/repository/net/java/dev/jna/jna/5.18.1/jna-5.18.1.jar/com/sun/jna/win32-x86/jnidispatch.dllMD5: 0caa1ef75a807f9dde05084fa2219a5cSHA1: 2f5e1cd82cde192905c7510ce99037b67d980640SHA256: 752d597cee7e95cb517327146bf42f124c0d6c0bc48b3ecc3b1b3b0531a52f44
Referenced In Project/Scope: waffle-jetty-jakarta:compile
Evidence
Type Source Name Value Confidence Vendor file name jnidispatch High Product file name jnidispatch High
Description:
Java Native Access Platform
License:
LGPL-2.1-or-later: https://www.gnu.org/licenses/old-licenses/lgpl-2.1
Apache-2.0: https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/net/java/dev/jna/jna-platform/5.18.1/jna-platform-5.18.1.jar
MD5: a7af00779ec98bfe22dfb07b1532830d
SHA1: dd817f391efc492041c9ae91127527c13750a789
SHA256: ad14c1b1ec4f43d396231219dfa635ebf828f738eac9f890ea1bc07795892d9a
Referenced In Project/Scope: waffle-jetty-jakarta:compile
jna-platform-5.18.1.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/com.github.waffle/waffle-jna-jakarta@3.6.0-SNAPSHOT
Evidence
Type Source Name Value Confidence Vendor file name jna-platform High Vendor jar package name jna Highest Vendor jar package name platform Highest Vendor jar package name sun Highest Vendor jar (hint) package name oracle Highest Vendor Manifest automatic-module-name com.sun.jna.platform Medium Vendor Manifest bundle-category jni Low Vendor Manifest bundle-requiredexecutionenvironment J2SE-1.4 Low Vendor Manifest bundle-symbolicname com.sun.jna.platform Medium Vendor Manifest Implementation-Vendor JNA Development Team High Vendor Manifest specification-vendor JNA Development Team Low Vendor pom artifactid jna-platform Highest Vendor pom artifactid jna-platform Low Vendor pom developer email mblaesing@doppel-helix.eu Low Vendor pom developer id twall Medium Vendor pom developer name Matthias Bläsing Medium Vendor pom developer name Timothy Wall Medium Vendor pom groupid net.java.dev.jna Highest Vendor pom name Java Native Access Platform High Vendor pom url java-native-access/jna Highest Product file name jna-platform High Product jar package name jna Highest Product jar package name platform Highest Product jar package name sun Highest Product Manifest automatic-module-name com.sun.jna.platform Medium Product Manifest bundle-category jni Low Product Manifest Bundle-Name jna-platform Medium Product Manifest bundle-requiredexecutionenvironment J2SE-1.4 Low Product Manifest bundle-symbolicname com.sun.jna.platform Medium Product Manifest Implementation-Title com.sun.jna High Product Manifest specification-title Java Native Access (JNA) Medium Product pom artifactid jna-platform Highest Product pom developer email mblaesing@doppel-helix.eu Low Product pom developer id twall Low Product pom developer name Matthias Bläsing Low Product pom developer name Timothy Wall Low Product pom groupid net.java.dev.jna Highest Product pom name Java Native Access Platform High Product pom url java-native-access/jna High Version file version 5.18.1 High Version Manifest Bundle-Version 5.18.1 High Version pom version 5.18.1 Highest
pkg:maven/net.java.dev.jna/jna-platform@5.18.1
(Confidence :High)
Description:
An artifact of well-named and well-specified annotations to power static analysis checks
License:
The Apache License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/org/jspecify/jspecify/1.0.0/jspecify-1.0.0.jar
MD5: 9133aba420d0ca3b001dbb6ae9992cf6
SHA1: 7425a601c1c7ec76645a78d22b8c6a627edee507
SHA256: 1fad6e6be7557781e4d33729d49ae1cdc8fdda6fe477bb0cc68ce351eafdfbab
Referenced In Project/Scope: waffle-jetty-jakarta:compile
jspecify-1.0.0.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.junit.jupiter/junit-jupiter-engine@6.0.2
Evidence
Type Source Name Value Confidence Vendor file name jspecify High Vendor jar package name annotations Highest Vendor jar package name jspecify Highest Vendor Manifest bundle-docurl https://jspecify.dev/docs/start-here Low Vendor Manifest bundle-symbolicname org.jspecify.jspecify Medium Vendor Manifest multi-release true Low Vendor pom artifactid jspecify Highest Vendor pom artifactid jspecify Low Vendor pom developer email kevinb9n@gmail.com Low Vendor pom developer id kevinb9n Medium Vendor pom developer name Kevin Bourrillion Medium Vendor pom groupid org.jspecify Highest Vendor pom name JSpecify annotations High Vendor pom url http://jspecify.org/ Highest Product file name jspecify High Product jar package name annotations Highest Product jar package name jspecify Highest Product Manifest bundle-docurl https://jspecify.dev/docs/start-here Low Product Manifest Bundle-Name JSpecify annotations Medium Product Manifest bundle-symbolicname org.jspecify.jspecify Medium Product Manifest multi-release true Low Product pom artifactid jspecify Highest Product pom developer email kevinb9n@gmail.com Low Product pom developer id kevinb9n Low Product pom developer name Kevin Bourrillion Low Product pom groupid org.jspecify Highest Product pom name JSpecify annotations High Product pom url http://jspecify.org/ Medium Version file version 1.0.0 High Version Manifest Bundle-Version 1.0.0 High Version Manifest Implementation-Version 1.0.0 High Version pom version 1.0.0 Highest
pkg:maven/org.jspecify/jspecify@1.0.0
(Confidence :High)
Description:
JSR305 Annotations for Findbugs
License:
The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/com/google/code/findbugs/jsr305/3.0.2/jsr305-3.0.2.jar
MD5: dd83accb899363c32b07d7a1b2e4ce40
SHA1: 25ea2e8b0c338a877313bd4672d3fe056ea78f0d
SHA256: 766ad2a0783f2687962c8ad74ceecc38a28b9f72a2d085ee438b7813e928d0c7
Referenced In Project/Scope: waffle-jetty-jakarta:provided
jsr305-3.0.2.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/com.github.spotbugs/spotbugs-annotations@4.9.8
Evidence
Type Source Name Value Confidence Vendor file name jsr305 High Vendor Manifest bundle-symbolicname org.jsr-305 Medium Vendor pom artifactid jsr305 Highest Vendor pom artifactid jsr305 Low Vendor pom groupid com.google.code.findbugs Highest Vendor pom name FindBugs-jsr305 High Vendor pom url http://findbugs.sourceforge.net/ Highest Product file name jsr305 High Product Manifest Bundle-Name FindBugs-jsr305 Medium Product Manifest bundle-symbolicname org.jsr-305 Medium Product pom artifactid jsr305 Highest Product pom groupid com.google.code.findbugs Highest Product pom name FindBugs-jsr305 High Product pom url http://findbugs.sourceforge.net/ Medium Version file version 3.0.2 High Version Manifest Bundle-Version 3.0.2 High Version pom version 3.0.2 Highest
pkg:maven/com.google.code.findbugs/jsr305@3.0.2
(Confidence :High)
Description:
A rebundling of Apache Tomcat Jasper to remove the tomcat server dependencies, so that the JSP engine can be used by the Eclipse Jetty project.
License:
http://www.apache.org/licenses/LICENSE-2.0 File Path: /home/runner/.m2/repository/org/mortbay/jasper/mortbay-apache-el/10.1.48/mortbay-apache-el-10.1.48.jar
MD5: 108da75741c791cf0f07cc5a8dabf859
SHA1: 80effa98ff84bd4d8d7b00beca355115f651ac44
SHA256: a514b46b243264b6a6d829d330773bbb7b88bd96d1a029d3f4a1b5333be1fdfb
Referenced In Project/Scope: waffle-jetty-jakarta:provided
mortbay-apache-el-10.1.48.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.eclipse.jetty.ee10/jetty-ee10-apache-jsp@12.1.5
Evidence
Type Source Name Value Confidence Vendor file name mortbay-apache-el High Vendor jar package name apache Highest Vendor jar package name el Highest Vendor Manifest automatic-module-name org.mortbay.apache.el Medium Vendor Manifest build-jdk-spec 25 Low Vendor Manifest bundle-docurl https://eclipse.dev/jetty/ Low Vendor Manifest bundle-requiredexecutionenvironment JavaSE-1.7 Low Vendor Manifest bundle-symbolicname org.mortbay.jasper.mortbay-apache-el Medium Vendor Manifest Implementation-Vendor Eclipse.org - Jetty High Vendor Manifest provide-capability osgi.serviceloader;osgi.serviceloader="jakarta.el.ExpressionFactory";register:="org.apache.el.ExpressionFactoryImpl" Low Vendor Manifest url http://www.eclipse.org/jetty Low Vendor pom artifactid mortbay-apache-el Highest Vendor pom artifactid mortbay-apache-el Low Vendor pom groupid org.mortbay.jasper Highest Vendor pom name MortBay :: Apache EL :: Implementation High Vendor pom parent-artifactid jasper-jsp Low Product file name mortbay-apache-el High Product jar package name apache Highest Product jar package name el Highest Product jar package name expressionfactoryimpl Highest Product Manifest automatic-module-name org.mortbay.apache.el Medium Product Manifest build-jdk-spec 25 Low Product Manifest bundle-docurl https://eclipse.dev/jetty/ Low Product Manifest Bundle-Name Mortbay Apache EL Implementation Medium Product Manifest bundle-requiredexecutionenvironment JavaSE-1.7 Low Product Manifest bundle-symbolicname org.mortbay.jasper.mortbay-apache-el Medium Product Manifest provide-capability osgi.serviceloader;osgi.serviceloader="jakarta.el.ExpressionFactory";register:="org.apache.el.ExpressionFactoryImpl" Low Product Manifest url http://www.eclipse.org/jetty Low Product pom artifactid mortbay-apache-el Highest Product pom groupid org.mortbay.jasper Highest Product pom name MortBay :: Apache EL :: Implementation High Product pom parent-artifactid jasper-jsp Medium Version file version 10.1.48 High Version Manifest Bundle-Version 10.1.48 High Version Manifest Implementation-Version 10.1.48 High Version pom version 10.1.48 Highest
pkg:maven/org.mortbay.jasper/mortbay-apache-el@10.1.48
(Confidence :High)
cpe:2.3:a:eclipse:jetty:10.1.48:*:*:*:*:*:*:*
(Confidence :Low)
suppress
cpe:2.3:a:jetty:jetty:10.1.48:*:*:*:*:*:*:*
(Confidence :Low)
suppress
cpe:2.3:a:mortbay:jetty:10.1.48:*:*:*:*:*:*:*
(Confidence :Low)
suppress
cpe:2.3:a:mortbay_jetty:jetty:10.1.48:*:*:*:*:*:*:*
(Confidence :Low)
suppress
Description:
A rebundling of Apache Tomcat Jasper to remove the tomcat server dependencies, so that the JSP engine can be used by the Eclipse Jetty project.
License:
http://www.apache.org/licenses/LICENSE-2.0 File Path: /home/runner/.m2/repository/org/mortbay/jasper/mortbay-apache-jsp/10.1.48/mortbay-apache-jsp-10.1.48.jar
MD5: acd38d1ac03b8c73d212ec45307adeb7
SHA1: b180b84f6296ae8684b627912a1171bb2d1a2da2
SHA256: 2c79b11167a9646248cc697c436503757459de9e1752fd489f68e5beadda437f
Referenced In Project/Scope: waffle-jetty-jakarta:provided
mortbay-apache-jsp-10.1.48.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.eclipse.jetty.ee10/jetty-ee10-apache-jsp@12.1.5
Evidence
Type Source Name Value Confidence Vendor file name mortbay-apache-jsp High Vendor jar package name apache Highest Vendor jar package name jasper Highest Vendor Manifest automatic-module-name org.mortbay.apache.jasper Medium Vendor Manifest build-jdk-spec 25 Low Vendor Manifest bundle-docurl https://eclipse.dev/jetty/ Low Vendor Manifest bundle-requiredexecutionenvironment JavaSE-1.7 Low Vendor Manifest bundle-symbolicname org.mortbay.jasper.mortbay-apache-jsp Medium Vendor Manifest Implementation-Vendor Eclipse.org - Jetty High Vendor Manifest url http://www.eclipse.org/jetty Low Vendor pom artifactid mortbay-apache-jsp Highest Vendor pom artifactid mortbay-apache-jsp Low Vendor pom groupid org.mortbay.jasper Highest Vendor pom name MortBay :: Apache Jasper :: JSP Implementation High Vendor pom parent-artifactid jasper-jsp Low Product file name mortbay-apache-jsp High Product jar package name apache Highest Product jar package name jasper Highest Product jar package name tomcat Highest Product Manifest automatic-module-name org.mortbay.apache.jasper Medium Product Manifest build-jdk-spec 25 Low Product Manifest bundle-docurl https://eclipse.dev/jetty/ Low Product Manifest Bundle-Name Mortbay Jasper Medium Product Manifest bundle-requiredexecutionenvironment JavaSE-1.7 Low Product Manifest bundle-symbolicname org.mortbay.jasper.mortbay-apache-jsp Medium Product Manifest url http://www.eclipse.org/jetty Low Product pom artifactid mortbay-apache-jsp Highest Product pom groupid org.mortbay.jasper Highest Product pom name MortBay :: Apache Jasper :: JSP Implementation High Product pom parent-artifactid jasper-jsp Medium Version file version 10.1.48 High Version Manifest Bundle-Version 10.1.48 High Version Manifest Implementation-Version 10.1.48 High Version pom version 10.1.48 Highest
pkg:maven/org.mortbay.jasper/mortbay-apache-jsp@10.1.48
(Confidence :High)
cpe:2.3:a:apache:tomcat:10.1.48:*:*:*:*:*:*:*
(Confidence :Low)
suppress
Description:
The slf4j API
License:
https://opensource.org/license/mit File Path: /home/runner/.m2/repository/org/slf4j/slf4j-api/2.0.17/slf4j-api-2.0.17.jar
MD5: b6480d114a23683498ac3f746f959d2f
SHA1: d9e58ac9c7779ba3bf8142aff6c830617a7fe60f
SHA256: 7b751d952061954d5abfed7181c1f645d336091b679891591d63329c622eb832
Referenced In Project/Scope: waffle-jetty-jakarta:compile
slf4j-api-2.0.17.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/com.github.waffle/waffle-jna-jakarta@3.6.0-SNAPSHOT
Evidence
Type Source Name Value Confidence Vendor file name slf4j-api High Vendor jar package name slf4j Highest Vendor Manifest build-jdk-spec 21 Low Vendor Manifest bundle-docurl http://www.slf4j.org Low Vendor Manifest bundle-symbolicname slf4j.api Medium Vendor Manifest multi-release true Low Vendor pom artifactid slf4j-api Highest Vendor pom artifactid slf4j-api Low Vendor pom groupid org.slf4j Highest Vendor pom name SLF4J API Module High Vendor pom parent-artifactid slf4j-parent Low Vendor pom url http://www.slf4j.org Highest Product file name slf4j-api High Product jar package name slf4j Highest Product Manifest build-jdk-spec 21 Low Product Manifest bundle-docurl http://www.slf4j.org Low Product Manifest Bundle-Name SLF4J API Module Medium Product Manifest bundle-symbolicname slf4j.api Medium Product Manifest Implementation-Title slf4j-api High Product Manifest multi-release true Low Product pom artifactid slf4j-api Highest Product pom groupid org.slf4j Highest Product pom name SLF4J API Module High Product pom parent-artifactid slf4j-parent Medium Product pom url http://www.slf4j.org Medium Version file version 2.0.17 High Version Manifest Bundle-Version 2.0.17 High Version Manifest Implementation-Version 2.0.17 High Version pom version 2.0.17 Highest
pkg:maven/org.slf4j/slf4j-api@2.0.17
(Confidence :High)
Description:
Annotations the SpotBugs tool supports
License:
GNU LESSER GENERAL PUBLIC LICENSE, Version 2.1: https://www.gnu.org/licenses/old-licenses/lgpl-2.1.en.html
File Path: /home/runner/.m2/repository/com/github/spotbugs/spotbugs-annotations/4.9.8/spotbugs-annotations-4.9.8.jar
MD5: d4c2e7bd090be697ad409a4e75684a94
SHA1: ca4a2783a6123e67124fd7feb4caccd2e2ac9a73
SHA256: 6f69d6fe9c55a54dcb30e87d8fa2d5f52246af50d7a3445246d9539ef221be1c
Referenced In Project/Scope: waffle-jetty-jakarta:provided
spotbugs-annotations-4.9.8.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/com.github.waffle/waffle-jetty-jakarta@3.6.0-SNAPSHOT
Evidence
Type Source Name Value Confidence Vendor file name spotbugs-annotations High Vendor Manifest automatic-module-name com.github.spotbugs.annotations Medium Vendor Manifest bundle-requiredexecutionenvironment JavaSE-1.8 Low Vendor Manifest bundle-symbolicname spotbugs-annotations Medium Vendor pom artifactid spotbugs-annotations Highest Vendor pom artifactid spotbugs-annotations Low Vendor pom developer email andreas.sewe@codetrails.com Low Vendor pom developer email dbrosius@mebigfatguy.com Low Vendor pom developer email loskutov@gmx.de Low Vendor pom developer email skypencil@gmail.com Low Vendor pom developer id henrik242 Medium Vendor pom developer id iloveeclipse Medium Vendor pom developer id jsotuyod Medium Vendor pom developer id KengoTODA Medium Vendor pom developer id mebigfatguy Medium Vendor pom developer id sewe Medium Vendor pom developer id ThrawnCA Medium Vendor pom developer name Andreas Sewe Medium Vendor pom developer name Andrey Loskutov Medium Vendor pom developer name Dave Brosius Medium Vendor pom developer name Juan Martín Sotuyo Dodero Medium Vendor pom developer name Kengo TODA Medium Vendor pom groupid com.github.spotbugs Highest Vendor pom name SpotBugs Annotations High Vendor pom url https://spotbugs.github.io/ Highest Product file name spotbugs-annotations High Product Manifest automatic-module-name com.github.spotbugs.annotations Medium Product Manifest Bundle-Name spotbugs-annotations Medium Product Manifest bundle-requiredexecutionenvironment JavaSE-1.8 Low Product Manifest bundle-symbolicname spotbugs-annotations Medium Product pom artifactid spotbugs-annotations Highest Product pom developer email andreas.sewe@codetrails.com Low Product pom developer email dbrosius@mebigfatguy.com Low Product pom developer email loskutov@gmx.de Low Product pom developer email skypencil@gmail.com Low Product pom developer id henrik242 Low Product pom developer id iloveeclipse Low Product pom developer id jsotuyod Low Product pom developer id KengoTODA Low Product pom developer id mebigfatguy Low Product pom developer id sewe Low Product pom developer id ThrawnCA Low Product pom developer name Andreas Sewe Low Product pom developer name Andrey Loskutov Low Product pom developer name Dave Brosius Low Product pom developer name Juan Martín Sotuyo Dodero Low Product pom developer name Kengo TODA Low Product pom groupid com.github.spotbugs Highest Product pom name SpotBugs Annotations High Product pom url https://spotbugs.github.io/ Medium Version file version 4.9.8 High Version Manifest Bundle-Version 4.9.8 High Version pom version 4.9.8 Highest
pkg:maven/com.github.spotbugs/spotbugs-annotations@4.9.8
(Confidence :High)