Press CTR-C to copy XML [help]


Dependency-Check is an open source tool performing a best effort analysis of 3rd party dependencies; false positives and false negatives may exist in the analysis performed by the tool. Use of the tool and the reporting provided constitutes acceptance for use in an AS IS condition, and there are NO warranties, implied or otherwise, with regard to the analysis or its use. Any use of the tool and the reporting provided is at the user’s risk. In no event shall the copyright holder or OWASP be held liable for any damages whatsoever arising out of or in connection with the use of this tool, the analysis performed, or the resulting report.

How to read the report | Suppressing false positives | Getting Help: github issues

 Sponsor

Project: spotbugs-maven-plugin

com.github.spotbugs:spotbugs-maven-plugin:4.9.3.0

Scan Information (show all):

Summary

Display: Showing Vulnerable Dependencies (click to show all)

DependencyVulnerability IDsPackageHighest SeverityCVE CountConfidenceEvidence Count
Saxon-HE-12.5.jarcpe:2.3:a:kay_framework_project:kay_framework:12.5:*:*:*:*:*:*:*pkg:maven/net.sf.saxon/Saxon-HE@12.5 0Low55
ant-1.10.15.jarcpe:2.3:a:apache:ant:1.10.15:*:*:*:*:*:*:*pkg:maven/org.apache.ant/ant@1.10.15 0Highest24
aopalliance-1.0.jarpkg:maven/aopalliance/aopalliance@1.0 020
asm-9.7.1.jarpkg:maven/org.ow2.asm/asm@9.7.1 054
asm-analysis-9.7.1.jarpkg:maven/org.ow2.asm/asm-analysis@9.7.1 060
asm-commons-9.7.1.jarpkg:maven/org.ow2.asm/asm-commons@9.7.1 058
asm-tree-9.7.1.jarpkg:maven/org.ow2.asm/asm-tree@9.7.1 058
asm-util-9.7.1.jarpkg:maven/org.ow2.asm/asm-util@9.7.1 058
bcel-6.10.0.jarcpe:2.3:a:apache:commons_bcel:6.10.0:*:*:*:*:*:*:*pkg:maven/org.apache.bcel/bcel@6.10.0 0Low77
checker-qual-3.49.0.jarpkg:maven/org.checkerframework/checker-qual@3.49.0 044
commons-beanutils-1.10.1.jarcpe:2.3:a:apache:commons_beanutils:1.10.1:*:*:*:*:*:*:*pkg:maven/commons-beanutils/commons-beanutils@1.10.1 0Highest170
commons-codec-1.18.0.jarpkg:maven/commons-codec/commons-codec@1.18.0 0121
commons-collections-3.2.2.jarcpe:2.3:a:apache:commons_collections:3.2.2:*:*:*:*:*:*:*pkg:maven/commons-collections/commons-collections@3.2.2 0Highest84
commons-compress-1.26.1.jarcpe:2.3:a:apache:commons_compress:1.26.1:*:*:*:*:*:*:*pkg:maven/org.apache.commons/commons-compress@1.26.1 0Highest109
commons-digester3-3.2.jarpkg:maven/org.apache.commons/commons-digester3@3.2 0105
commons-io-2.18.0.jarcpe:2.3:a:apache:commons_io:2.18.0:*:*:*:*:*:*:*pkg:maven/commons-io/commons-io@2.18.0 0Highest125
commons-lang3-3.17.0.jarpkg:maven/org.apache.commons/commons-lang3@3.17.0 0145
commons-logging-1.3.5.jarpkg:maven/commons-logging/commons-logging@1.3.5 0129
commons-text-1.13.0.jarcpe:2.3:a:apache:commons_text:1.13.0:*:*:*:*:*:*:*pkg:maven/org.apache.commons/commons-text@1.13.0 0Highest73
dom4j-2.1.4.jarcpe:2.3:a:dom4j_project:dom4j:2.1.4:*:*:*:*:*:*:*pkg:maven/org.dom4j/dom4j@2.1.4 0Highest21
doxia-core-2.0.0.jarpkg:maven/org.apache.maven.doxia/doxia-core@2.0.0 026
doxia-integration-tools-2.0.0.jarpkg:maven/org.apache.maven.doxia/doxia-integration-tools@2.0.0 028
doxia-module-apt-2.0.0.jarpkg:maven/org.apache.maven.doxia/doxia-module-apt@2.0.0 028
doxia-module-xdoc-2.0.0.jarpkg:maven/org.apache.maven.doxia/doxia-module-xdoc@2.0.0 028
doxia-module-xhtml5-2.0.0.jarpkg:maven/org.apache.maven.doxia/doxia-module-xhtml5@2.0.0 028
doxia-sink-api-2.0.0.jarpkg:maven/org.apache.maven.doxia/doxia-sink-api@2.0.0 028
doxia-site-model-2.0.0.jarpkg:maven/org.apache.maven.doxia/doxia-site-model@2.0.0 028
doxia-site-renderer-2.0.0.jarpkg:maven/org.apache.maven.doxia/doxia-site-renderer@2.0.0 026
doxia-skin-model-2.0.0.jarpkg:maven/org.apache.maven.doxia/doxia-skin-model@2.0.0 026
error_prone_annotations-2.36.0.jarpkg:maven/com.google.errorprone/error_prone_annotations@2.36.0 029
failureaccess-1.0.2.jarpkg:maven/com.google.guava/failureaccess@1.0.2 032
groovy-4.0.26.jarcpe:2.3:a:apache:groovy:4.0.26:*:*:*:*:*:*:*pkg:maven/org.apache.groovy/groovy@4.0.26 0Highest289
groovy-ant-4.0.26.jarcpe:2.3:a:apache:ant:4.0.26:*:*:*:*:*:*:*
cpe:2.3:a:apache:groovy:4.0.26:*:*:*:*:*:*:*		pkg:maven/org.apache.groovy/groovy-ant@4.0.26 0Highest288
gson-2.12.1.jarcpe:2.3:a:google:gson:2.12.1:*:*:*:*:*:*:*pkg:maven/com.google.code.gson/gson@2.12.1 0Highest31
guava-33.2.1-jre.jarcpe:2.3:a:google:guava:33.2.1:*:*:*:*:*:*:*pkg:maven/com.google.guava/guava@33.2.1-jre 0Highest27
guice-5.1.0.jarpkg:maven/com.google.inject/guice@5.1.0 034
httpclient5-5.1.3.jarcpe:2.3:a:apache:httpclient:5.1.3:*:*:*:*:*:*:*pkg:maven/org.apache.httpcomponents.client5/httpclient5@5.1.3 0Highest30
httpcore5-5.1.3.jarpkg:maven/org.apache.httpcomponents.core5/httpcore5@5.1.3 030
httpcore5-h2-5.1.3.jarpkg:maven/org.apache.httpcomponents.core5/httpcore5-h2@5.1.3 030
j2objc-annotations-3.0.0.jarpkg:maven/com.google.j2objc/j2objc-annotations@3.0.0 033
javaparser-core-3.26.3.jarpkg:maven/com.github.javaparser/javaparser-core@3.26.3 027
javax.inject-1.jarpkg:maven/javax.inject/javax.inject@1 020
jaxen-2.0.0.jarpkg:maven/jaxen/jaxen@2.0.0 025
jcip-annotations-1.0-1.jarpkg:maven/com.github.stephenc.jcip/jcip-annotations@1.0-1 025
json-simple-3.0.2.jarpkg:maven/com.github.cliftonlabs/json-simple@3.0.2 033
jsr305-3.0.2.jarpkg:maven/com.google.code.findbugs/jsr305@3.0.2 017
log4j-api-2.24.3.jarcpe:2.3:a:apache:log4j:2.24.3:*:*:*:*:*:*:*pkg:maven/org.apache.logging.log4j/log4j-api@2.24.3 0Highest41
log4j-to-slf4j-2.24.3.jarpkg:maven/org.apache.logging.log4j/log4j-to-slf4j@2.24.3 037
lombok-1.18.36.jar: mavenEcjBootstrapAgent.jar 07
lombok-1.18.36.jarpkg:maven/org.projectlombok/lombok@1.18.36 036
maven-archiver-3.6.2.jarpkg:maven/org.apache.maven/maven-archiver@3.6.2 029
maven-artifact-3.9.9.jarpkg:maven/org.apache.maven/maven-artifact@3.9.9 026
maven-builder-support-3.9.9.jarpkg:maven/org.apache.maven/maven-builder-support@3.9.9 024
maven-core-3.9.9.jarcpe:2.3:a:apache:maven:3.9.9:*:*:*:*:*:*:*pkg:maven/org.apache.maven/maven-core@3.9.9 0Highest24
maven-model-3.9.9.jarpkg:maven/org.apache.maven/maven-model@3.9.9 026
maven-model-builder-3.9.9.jarpkg:maven/org.apache.maven/maven-model-builder@3.9.9 032
maven-plugin-annotations-3.15.1.jarpkg:maven/org.apache.maven.plugin-tools/maven-plugin-annotations@3.15.1 026
maven-plugin-api-3.9.9.jarpkg:maven/org.apache.maven/maven-plugin-api@3.9.9 026
maven-reporting-api-4.0.0.jarpkg:maven/org.apache.maven.reporting/maven-reporting-api@4.0.0 029
maven-reporting-impl-4.0.0.jarpkg:maven/org.apache.maven.reporting/maven-reporting-impl@4.0.0 029
maven-repository-metadata-3.9.9.jarpkg:maven/org.apache.maven/maven-repository-metadata@3.9.9 026
maven-resolver-api-1.9.22.jarpkg:maven/org.apache.maven.resolver/maven-resolver-api@1.9.22 034
maven-resolver-impl-1.9.22.jarpkg:maven/org.apache.maven.resolver/maven-resolver-impl@1.9.22 032
maven-resolver-named-locks-1.9.22.jarpkg:maven/org.apache.maven.resolver/maven-resolver-named-locks@1.9.22 033
maven-resolver-provider-3.9.9.jarpkg:maven/org.apache.maven/maven-resolver-provider@3.9.9 026
maven-resolver-spi-1.9.22.jarpkg:maven/org.apache.maven.resolver/maven-resolver-spi@1.9.22 032
maven-resolver-util-1.9.22.jarpkg:maven/org.apache.maven.resolver/maven-resolver-util@1.9.22 036
maven-settings-3.9.9.jarpkg:maven/org.apache.maven/maven-settings@3.9.9 026
maven-settings-builder-3.9.9.jarpkg:maven/org.apache.maven/maven-settings-builder@3.9.9 026
maven-shared-utils-3.4.2.jarcpe:2.3:a:apache:maven_shared_utils:3.4.2:*:*:*:*:*:*:*
cpe:2.3:a:utils_project:utils:3.4.2:*:*:*:*:*:*:*		pkg:maven/org.apache.maven.shared/maven-shared-utils@3.4.2 0Highest29
modernizer-maven-annotations-3.1.0.jarpkg:maven/org.gaul/modernizer-maven-annotations@3.1.0 019
org.eclipse.sisu.inject-0.9.0.M3.jarpkg:maven/org.eclipse.sisu/org.eclipse.sisu.inject@0.9.0.M3 034
org.eclipse.sisu.plexus-0.9.0.M3.jarpkg:maven/org.eclipse.sisu/org.eclipse.sisu.plexus@0.9.0.M3 029
plexus-archiver-4.9.2.jarcpe:2.3:a:codehaus-plexus:plexus-archiver:4.9.2:*:*:*:*:*:*:*pkg:maven/org.codehaus.plexus/plexus-archiver@4.9.2 0Highest29
plexus-cipher-2.0.jarpkg:maven/org.codehaus.plexus/plexus-cipher@2.0 020
plexus-classworlds-2.8.0.jarpkg:maven/org.codehaus.plexus/plexus-classworlds@2.8.0 030
plexus-component-annotations-2.2.0.jarpkg:maven/org.codehaus.plexus/plexus-component-annotations@2.2.0 023
plexus-i18n-1.0-beta-10.jarpkg:maven/org.codehaus.plexus/plexus-i18n@1.0-beta-10 024
plexus-interpolation-1.27.jarpkg:maven/org.codehaus.plexus/plexus-interpolation@1.27 027
plexus-io-3.4.2.jarpkg:maven/org.codehaus.plexus/plexus-io@3.4.2 024
plexus-resources-1.3.0.jarpkg:maven/org.codehaus.plexus/plexus-resources@1.3.0 022
plexus-sec-dispatcher-2.0.jarcpe:2.3:a:sec_project:sec:2.0:*:*:*:*:*:*:*pkg:maven/org.codehaus.plexus/plexus-sec-dispatcher@2.0 0Highest20
plexus-utils-4.0.2.jarcpe:2.3:a:codehaus-plexus:plexus-utils:4.0.2:*:*:*:*:*:*:*
cpe:2.3:a:utils_project:utils:4.0.2:*:*:*:*:*:*:*		pkg:maven/org.codehaus.plexus/plexus-utils@4.0.2 0Highest219
plexus-velocity-2.2.0.jarpkg:maven/org.codehaus.plexus/plexus-velocity@2.2.0 027
plexus-xml-3.0.1.jarpkg:maven/org.codehaus.plexus/plexus-xml@3.0.1 029
qdox-1.12.1.jarpkg:maven/com.thoughtworks.qdox/qdox@1.12.1 055
slf4j-api-2.0.17.jarpkg:maven/org.slf4j/slf4j-api@2.0.17 029
slf4j-simple-2.0.17.jarpkg:maven/org.slf4j/slf4j-simple@2.0.17 037
snappy-0.4.jarcpe:2.3:a:dain:snappy:0.4:*:*:*:*:*:*:*pkg:maven/org.iq80.snappy/snappy@0.4MEDIUM1Highest32
spotbugs-4.9.3.jarpkg:maven/com.github.spotbugs/spotbugs@4.9.3 048
spotbugs-annotations-4.9.3.jarpkg:maven/com.github.spotbugs/spotbugs-annotations@4.9.3 053
velocity-engine-core-2.4.jarcpe:2.3:a:apache:velocity_engine:2.4:*:*:*:*:*:*:*pkg:maven/org.apache.velocity/velocity-engine-core@2.4 0Highest30
velocity-tools-generic-3.1.jarcpe:2.3:a:apache:velocity_tools:3.1:*:*:*:*:*:*:*pkg:maven/org.apache.velocity.tools/velocity-tools-generic@3.1 0Highest28
xmlresolver-5.2.2-data.jarpkg:maven/org.xmlresolver/xmlresolver@5.2.2 012
xmlresolver-5.2.2.jarpkg:maven/org.xmlresolver/xmlresolver@5.2.2 026
xz-1.9.jarpkg:maven/org.tukaani/xz@1.9 033
zstd-jni-1.5.5-11.jar: libzstd-jni-1.5.5-11.dll 04
zstd-jni-1.5.5-11.jar: libzstd-jni-1.5.5-11.dll 04
zstd-jni-1.5.5-11.jar: libzstd-jni-1.5.5-11.dll 04
zstd-jni-1.5.5-11.jarpkg:maven/com.github.luben/zstd-jni@1.5.5-11 043

Dependencies (vulnerable)

Saxon-HE-12.5.jar

Description:

The XSLT and XQuery Processor

License:

Mozilla Public License Version 2.0: http://www.mozilla.org/MPL/2.0/
File Path: C:\Users\Jeremy\.m2\repository\net\sf\saxon\Saxon-HE\12.5\Saxon-HE-12.5.jar
MD5: 39b53a0dcd01522e79223e2506061d44
SHA1: 57c007520e2879387b8d13d0a512e9566eeffa73
SHA256:98c3a91e6e5aaf9b3e2b37601e04b214a6e67098493cdd8232fcb705fddcb674
Referenced In Project/Scope: spotbugs-maven-plugin:runtime
Saxon-HE-12.5.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs@4.9.3

Identifiers

ant-1.10.15.jar

File Path: C:\Users\Jeremy\.m2\repository\org\apache\ant\ant\1.10.15\ant-1.10.15.jar
MD5: 688b6e5ca5900863c26af4fe4ee7e924
SHA1: da854f5503ee061a5a3b2cfcbe98ee27aa4a5ef9
SHA256:763acda4a69588c9ea8817a952851ff0c2fc4bffa1d081c2565dc407f29d5794
Referenced In Project/Scope: spotbugs-maven-plugin:compile
ant-1.10.15.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.groovy/groovy-ant@4.0.26

Identifiers

aopalliance-1.0.jar

Description:

AOP Alliance

License:

Public Domain
File Path: C:\Users\Jeremy\.m2\repository\aopalliance\aopalliance\1.0\aopalliance-1.0.jar
MD5: 04177054e180d09e3998808efa0401c7
SHA1: 0235ba8b489512805ac13a8f9ea77a1ca5ebe3e8
SHA256:0addec670fedcd3f113c5c8091d783280d23f75e3acb841b61a9cdb079376a08
Referenced In Project/Scope: spotbugs-maven-plugin:provided
aopalliance-1.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven/maven-core@3.9.9

Identifiers

asm-9.7.1.jar

Description:

ASM, a very small and fast Java bytecode manipulation framework

License:

BSD-3-Clause: https://asm.ow2.io/license.html
File Path: C:\Users\Jeremy\.m2\repository\org\ow2\asm\asm\9.7.1\asm-9.7.1.jar
MD5: e2cdd32d198ad31427d298eee9d39d8d
SHA1: f0ed132a49244b042cd0e15702ab9f2ce3cc8436
SHA256:8cadd43ac5eb6d09de05faecca38b917a040bb9139c7edeb4cc81c740b713281
Referenced In Project/Scope: spotbugs-maven-plugin:compile
asm-9.7.1.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs@4.9.3

Identifiers

asm-analysis-9.7.1.jar

Description:

Static code analysis API of ASM, a very small and fast Java bytecode manipulation framework

License:

BSD-3-Clause: https://asm.ow2.io/license.html
File Path: C:\Users\Jeremy\.m2\repository\org\ow2\asm\asm-analysis\9.7.1\asm-analysis-9.7.1.jar
MD5: 4cd9e7178dfb85371bba3077e40cd514
SHA1: f97a3b319f0ed6a8cd944dc79060d3912a28985f
SHA256:85b29371884ba31bb76edf22323c2c24e172c3267a67152eba3d1ccc2e041ef2
Referenced In Project/Scope: spotbugs-maven-plugin:compile
asm-analysis-9.7.1.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs@4.9.3

Identifiers

asm-commons-9.7.1.jar

Description:

Usefull class adapters based on ASM, a very small and fast Java bytecode manipulation framework

License:

BSD-3-Clause: https://asm.ow2.io/license.html
File Path: C:\Users\Jeremy\.m2\repository\org\ow2\asm\asm-commons\9.7.1\asm-commons-9.7.1.jar
MD5: 8344aea3c8b7d707e9d35a62710e77c9
SHA1: 406c6a2225cfe1819f102a161e54cc16a5c24f75
SHA256:9a579b54d292ad9be171d4313fd4739c635592c2b5ac3a459bbd1049cddec6a0
Referenced In Project/Scope: spotbugs-maven-plugin:compile
asm-commons-9.7.1.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs@4.9.3

Identifiers

asm-tree-9.7.1.jar

Description:

Tree API of ASM, a very small and fast Java bytecode manipulation framework

License:

BSD-3-Clause: https://asm.ow2.io/license.html
File Path: C:\Users\Jeremy\.m2\repository\org\ow2\asm\asm-tree\9.7.1\asm-tree-9.7.1.jar
MD5: e85029f613b6469989cc7cf53fe06b74
SHA1: 3a53139787663b139de76b627fca0084ab60d32c
SHA256:9929881f59eb6b840e86d54570c77b59ce721d104e6dfd7a40978991c2d3b41f
Referenced In Project/Scope: spotbugs-maven-plugin:compile
asm-tree-9.7.1.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs@4.9.3

Identifiers

asm-util-9.7.1.jar

Description:

Utilities for ASM, a very small and fast Java bytecode manipulation framework

License:

BSD-3-Clause: https://asm.ow2.io/license.html
File Path: C:\Users\Jeremy\.m2\repository\org\ow2\asm\asm-util\9.7.1\asm-util-9.7.1.jar
MD5: 36d373a9cd6cad9b35db9f984c6b4bbb
SHA1: 9e23359b598ec6b74b23e53110dd5c577adf2243
SHA256:f885be71b5c90556f5f1ad1c4f9276b29b96057c497d46666fe4ddbec3cb43c6
Referenced In Project/Scope: spotbugs-maven-plugin:compile
asm-util-9.7.1.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs@4.9.3

Identifiers

bcel-6.10.0.jar

Description:

Apache Commons Bytecode Engineering Library

License:

https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\org\apache\bcel\bcel\6.10.0\bcel-6.10.0.jar
MD5: f942224903d1f1d1a2658c36bbec7901
SHA1: 34f0f3f24d2cd6627e304cbdd5ce2b9ca0671e4c
SHA256:afd26d78e921d5f843f5745c44a6edede5b1f607179d8ac76797a57bcbd430e2
Referenced In Project/Scope: spotbugs-maven-plugin:compile
bcel-6.10.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs@4.9.3

Identifiers

checker-qual-3.49.0.jar

Description:

checker-qual contains annotations (type qualifiers) that a programmerwrites to specify Java code for type-checking by the Checker Framework.

License:

The MIT License: http://opensource.org/licenses/MIT
File Path: C:\Users\Jeremy\.m2\repository\org\checkerframework\checker-qual\3.49.0\checker-qual-3.49.0.jar
MD5: 308726c2d700ebe3d3377930adedb8c4
SHA1: 54be36cb42c9b991c109e467e2bfa82af4cda44e
SHA256:8b9d9a36eaaf7c0fc26503c83cd97d8c9c0f9e2913cc2a6e92ac26c735d4dcbe
Referenced In Project/Scope: spotbugs-maven-plugin:compile
checker-qual-3.49.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs-maven-plugin@4.9.3.0

Identifiers

commons-beanutils-1.10.1.jar

Description:

Apache Commons BeanUtils provides an easy-to-use but flexible wrapper around reflection and introspection.

License:

https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\commons-beanutils\commons-beanutils\1.10.1\commons-beanutils-1.10.1.jar
MD5: 27ac839d60e2bff6b222827756fde6cb
SHA1: 22c392b43aa32e1364fb39647111edfa91df9070
SHA256:707a09e86ed1cf5516cdabdf1710d8fe201b6e26e7233870dce1d0ccf2a468d1
Referenced In Project/Scope: spotbugs-maven-plugin:compile
commons-beanutils-1.10.1.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven.doxia/doxia-site-renderer@2.0.0

Identifiers

commons-codec-1.18.0.jar

Description:

     The Apache Commons Codec component contains encoders and decoders for
     formats such as Base16, Base32, Base64, digest, and Hexadecimal. In addition to these
     widely used encoders and decoders, the codec package also maintains a
     collection of phonetic encoding utilities.

License:

https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\commons-codec\commons-codec\1.18.0\commons-codec-1.18.0.jar
MD5: 2abf189633424b9292fd57a3192c0ed5
SHA1: ee45d1cf6ec2cc2b809ff04b4dc7aec858e0df8f
SHA256:ba005f304cef92a3dede24a38ad5ac9b8afccf0d8f75839d6c1338634cf7f6e4
Referenced In Project/Scope: spotbugs-maven-plugin:compile
commons-codec-1.18.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven.reporting/maven-reporting-impl@4.0.0

Identifiers

commons-collections-3.2.2.jar

Description:

Types that extend and augment the Java Collections Framework.

License:

http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\commons-collections\commons-collections\3.2.2\commons-collections-3.2.2.jar
MD5: f54a8510f834a1a57166970bfc982e94
SHA1: 8ad72fe39fa8c91eaaf12aadb21e0c3661fe26d5
SHA256:eeeae917917144a68a741d4c0dff66aa5c5c5fd85593ff217bced3fc8ca783b8
Referenced In Project/Scope: spotbugs-maven-plugin:compile
commons-collections-3.2.2.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven.doxia/doxia-site-renderer@2.0.0

Identifiers

commons-compress-1.26.1.jar

Description:

Apache Commons Compress defines an API for working with
compression and archive formats. These include bzip2, gzip, pack200,
LZMA, XZ, Snappy, traditional Unix Compress, DEFLATE, DEFLATE64, LZ4,
Brotli, Zstandard and ar, cpio, jar, tar, zip, dump, 7z, arj.

License:

https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\org\apache\commons\commons-compress\1.26.1\commons-compress-1.26.1.jar
MD5: 7af7d22a7280508327d809b183114a92
SHA1: 44331c1130c370e726a2e1a3e6fba6d2558ef04a
SHA256:27bb5d40f37c3bb7205b4a0540247df057715e9f6cbbd97d626ab8b50318bb04
Referenced In Project/Scope: spotbugs-maven-plugin:compile
commons-compress-1.26.1.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven.reporting/maven-reporting-impl@4.0.0

Identifiers

commons-digester3-3.2.jar

Description:

    The Apache Commons Digester package lets you configure an XML to Java
    object mapping module which triggers certain actions called rules whenever
    a particular pattern of nested XML elements is recognized.

License:

http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\org\apache\commons\commons-digester3\3.2\commons-digester3-3.2.jar
MD5: 41d2c62c7aedafa7a3627794abc83f71
SHA1: c3f68c5ff25ec5204470fd8fdf4cb8feff5e8a79
SHA256:1c150e3d2df4b4237b47e28fea2079fb0da324578d5cca6a5fed2e37a62082ec
Referenced In Project/Scope: spotbugs-maven-plugin:compile
commons-digester3-3.2.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven.doxia/doxia-site-renderer@2.0.0

Identifiers

commons-io-2.18.0.jar

Description:

The Apache Commons IO library contains utility classes, stream implementations, file filters,
file comparators, endian transformation classes, and much more.

License:

https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\commons-io\commons-io\2.18.0\commons-io-2.18.0.jar
MD5: 8cce74ccf461cd6502ae04c908eca917
SHA1: 44084ef756763795b31c578403dd028ff4a22950
SHA256:f3ca0f8d63c40e23a56d54101c60d5edee136b42d84bfb85bc7963093109cf8b
Referenced In Project/Scope: spotbugs-maven-plugin:compile
commons-io-2.18.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs-maven-plugin@4.9.3.0

Identifiers

commons-lang3-3.17.0.jar

Description:

  Apache Commons Lang, a package of Java utility classes for the
  classes that are in java.lang's hierarchy, or are considered to be so
  standard as to justify existence in java.lang.

  The code is tested using the latest revision of the JDK for supported
  LTS releases: 8, 11, 17 and 21 currently.
  See https://github.com/apache/commons-lang/blob/master/.github/workflows/maven.yml
  
  Please ensure your build environment is up-to-date and kindly report any build issues.

License:

https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\org\apache\commons\commons-lang3\3.17.0\commons-lang3-3.17.0.jar
MD5: 7730df72b7fdff4a3a32d89a314f826a
SHA1: b17d2136f0460dcc0d2016ceefca8723bdf4ee70
SHA256:6ee731df5c8e5a2976a1ca023b6bb320ea8d3539fbe64c8a1d5cb765127c33b4
Referenced In Project/Scope: spotbugs-maven-plugin:compile
commons-lang3-3.17.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs@4.9.3

Identifiers

commons-logging-1.3.5.jar

Description:

Apache Commons Logging is a thin adapter allowing configurable bridging to other,
    well-known logging systems.

License:

https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\commons-logging\commons-logging\1.3.5\commons-logging-1.3.5.jar
MD5: 9ca067b073153c86c2da350c0f2cdf70
SHA1: a3fcc5d3c29b2b03433aa2d2f2d2c1b1638924a1
SHA256:6d7a744e4027649fbb50895df9497d109f98c766a637062fe8d2eabbb3140ba4
Referenced In Project/Scope: spotbugs-maven-plugin:compile
commons-logging-1.3.5.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven.doxia/doxia-site-renderer@2.0.0

Identifiers

commons-text-1.13.0.jar

Description:

Apache Commons Text is a set of utility functions and reusable components for the purpose of processing
    and manipulating text that should be of use in a Java environment.

License:

https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\org\apache\commons\commons-text\1.13.0\commons-text-1.13.0.jar
MD5: 4b4766452c04316e3ef6ffe3490d6b10
SHA1: ba2ed5521c491cabf7ecdb57f77922561c2e8958
SHA256:1e323a501127df78ed0987f345d69d65d0ea7fa3d4fb5b3f84aaeba3a8b20f38
Referenced In Project/Scope: spotbugs-maven-plugin:compile
commons-text-1.13.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs@4.9.3

Identifiers

dom4j-2.1.4.jar

Description:

flexible XML framework for Java

License:

Plexus: https://github.com/dom4j/dom4j/blob/master/LICENSE
File Path: C:\Users\Jeremy\.m2\repository\org\dom4j\dom4j\2.1.4\dom4j-2.1.4.jar
MD5: 8246840e53db2781ca941e4d3f9ad715
SHA1: 35c16721b88cf17b8279fcb134c0abb161cc0e9b
SHA256:235a9167a8a199be04b5326d92927ca0adeb90d11f69fe2e821b34ce8433b591
Referenced In Project/Scope: spotbugs-maven-plugin:compile
dom4j-2.1.4.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs@4.9.3

Identifiers

doxia-core-2.0.0.jar

Description:

Doxia core classes and interfaces.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\doxia\doxia-core\2.0.0\doxia-core-2.0.0.jar
MD5: c0fb5fa304380a070a896e79a62b6932
SHA1: 6b8dd422ff321fdbf32a0196b85cce3d63cfe68c
SHA256:939183cf5ced6741745b2475a4adf78ca85885ee0dad6dae28dd3f25bd447ff3
Referenced In Project/Scope: spotbugs-maven-plugin:compile
doxia-core-2.0.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs-maven-plugin@4.9.3.0

Identifiers

doxia-integration-tools-2.0.0.jar

Description:

A collection of tools to help the integration of Doxia Sitetools in Maven plugins.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\doxia\doxia-integration-tools\2.0.0\doxia-integration-tools-2.0.0.jar
MD5: b8e18118b11a20e0ddc66b235989682e
SHA1: ce08d289ed826416983860fb2adced6dd7ade550
SHA256:4aee72f9b30b507964c2f52b63f70e7b41fb9d957359cb5dc13c428abb4b6189
Referenced In Project/Scope: spotbugs-maven-plugin:compile
doxia-integration-tools-2.0.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs-maven-plugin@4.9.3.0

Identifiers

doxia-module-apt-2.0.0.jar

Description:

A Doxia module for Almost Plain Text source documents.
    APT format is supported both as source and target formats.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\doxia\doxia-module-apt\2.0.0\doxia-module-apt-2.0.0.jar
MD5: f6613830c1f558b909b32d3e3e271911
SHA1: 0505b4e8d57eb3f8c3d66adcca85ce09311742ba
SHA256:f4a846c448ca85358279184a310f6ee3f46fa39688f74a72961c1bfe222f28a6
Referenced In Project/Scope: spotbugs-maven-plugin:runtime
doxia-module-apt-2.0.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven.reporting/maven-reporting-impl@4.0.0

Identifiers

doxia-module-xdoc-2.0.0.jar

Description:

A Doxia module for Xdoc source documents.
    Xdoc format is supported both as source and target formats.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\doxia\doxia-module-xdoc\2.0.0\doxia-module-xdoc-2.0.0.jar
MD5: dd12065dc641017da7006cb39f0490e5
SHA1: fe3a51c0226cb7cdfdcc97b73681f6ee80fad72c
SHA256:7956aca14f8adbc48bac86b218701dd44cc990063a69edbfca363b105994a474
Referenced In Project/Scope: spotbugs-maven-plugin:runtime
doxia-module-xdoc-2.0.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven.reporting/maven-reporting-impl@4.0.0

Identifiers

doxia-module-xhtml5-2.0.0.jar

Description:

A Doxia module for Xhtml5 source documents.
    Xhtml5 format is supported both as source and target formats.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\doxia\doxia-module-xhtml5\2.0.0\doxia-module-xhtml5-2.0.0.jar
MD5: 2369dd687d9b13d115157299d09ca7d4
SHA1: 15fbcfe42e0a50eb33adbc061c9b4db84ec0470e
SHA256:c91557679a0eb9fde3175055628ceb7b8fd5ab6d308340770d236fb06265dc26
Referenced In Project/Scope: spotbugs-maven-plugin:compile
doxia-module-xhtml5-2.0.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven.doxia/doxia-site-renderer@2.0.0

Identifiers

doxia-sink-api-2.0.0.jar

Description:

Doxia Sink API.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\doxia\doxia-sink-api\2.0.0\doxia-sink-api-2.0.0.jar
MD5: 0ac989158733a584c6b82e6ab1edc8ec
SHA1: d767d78857c1fb3cbd21ae3a7870894476ecb0fc
SHA256:fba33eaee3b01547bcd14b05ebc37f7dacef1819ad9ee7a5b27899afd3472cf4
Referenced In Project/Scope: spotbugs-maven-plugin:compile
doxia-sink-api-2.0.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs-maven-plugin@4.9.3.0

Identifiers

doxia-site-model-2.0.0.jar

Description:

The Site Model handles the descriptor for sites, also known as site.xml.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\doxia\doxia-site-model\2.0.0\doxia-site-model-2.0.0.jar
MD5: 4da689094c6e4a2d6457d21ce959ac42
SHA1: 6a43c5b58b9acbf789618efdda23d5cb9fb0981f
SHA256:f6ec9ef75a41d1b826e5ecf02d92c5de90a6bc70ea93d5340988703223bf2205
Referenced In Project/Scope: spotbugs-maven-plugin:compile
doxia-site-model-2.0.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven.reporting/maven-reporting-impl@4.0.0

Identifiers

doxia-site-renderer-2.0.0.jar

Description:

The Site Renderer handles the rendering of sites, merging site model with document content.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\doxia\doxia-site-renderer\2.0.0\doxia-site-renderer-2.0.0.jar
MD5: 0af057ade4d5bc3b41a06cf1100bbd93
SHA1: b68214ec1d3250a4594f598f054977d961e66ac8
SHA256:6cdee370194f4b9f742d12ef46528042f480d9bdf3de832de2792e1ae9ffc68d
Referenced In Project/Scope: spotbugs-maven-plugin:compile
doxia-site-renderer-2.0.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs-maven-plugin@4.9.3.0

Identifiers

doxia-skin-model-2.0.0.jar

Description:

The Skin Model defines metadata for Doxia Sitetools skins.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\doxia\doxia-skin-model\2.0.0\doxia-skin-model-2.0.0.jar
MD5: 9daee5a484a8a9cb32b2fe6cfea42531
SHA1: 86913a4d7f1acbf26d426c97adecb18e21938ebf
SHA256:3ced0d90353f49e8eb1458f54664b93ec117d79b9789a576da41e2f6f99723e0
Referenced In Project/Scope: spotbugs-maven-plugin:compile
doxia-skin-model-2.0.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven.doxia/doxia-site-renderer@2.0.0

Identifiers

error_prone_annotations-2.36.0.jar

Description:

Error Prone is a static analysis tool for Java that catches common programming mistakes at compile-time.

License:

Apache 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\com\google\errorprone\error_prone_annotations\2.36.0\error_prone_annotations-2.36.0.jar
MD5: 0e48e5ba2cd0a8d8d09bad849b99f6a6
SHA1: 227d4d4957ccc3dc5761bd897e3a0ee587e750a7
SHA256:77440e270b0bc9a249903c5a076c36a722c4886ca4f42675f2903a1c53ed61a5
Referenced In Project/Scope: spotbugs-maven-plugin:provided
error_prone_annotations-2.36.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs-maven-plugin@4.9.3.0

Identifiers

failureaccess-1.0.2.jar

Description:

    Contains
    com.google.common.util.concurrent.internal.InternalFutureFailureAccess and
    InternalFutures. Most users will never need to use this artifact. Its
    classes are conceptually a part of Guava, but they're in this separate
    artifact so that Android libraries can use them without pulling in all of
    Guava (just as they can use ListenableFuture by depending on the
    listenablefuture artifact).

License:

http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\com\google\guava\failureaccess\1.0.2\failureaccess-1.0.2.jar
MD5: 3f75955b49b6758fd6d1e1bd9bf777b3
SHA1: c4a06a64e650562f30b7bf9aaec1bfed43aca12b
SHA256:8a8f81cf9b359e3f6dfa691a1e776985c061ef2f223c9b2c80753e1b458e8064
Referenced In Project/Scope: spotbugs-maven-plugin:provided
failureaccess-1.0.2.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven/maven-core@3.9.9

Identifiers

groovy-4.0.26.jar

Description:

Groovy: A powerful multi-faceted language for the JVM

License:

The Apache Software License, Version 2.0: https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\org\apache\groovy\groovy\4.0.26\groovy-4.0.26.jar
MD5: 583bf446dffdd30dae251ab2245a261a
SHA1: 1031daf8a73986def8b43c9bbf5d67671eb26553
SHA256:ae3196ed31fa11e8506f9c40a6b34fdaff06a8eeda78a8a6ebaeb1a2a0ad35dc
Referenced In Project/Scope: spotbugs-maven-plugin:compile
groovy-4.0.26.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs-maven-plugin@4.9.3.0

Identifiers

groovy-ant-4.0.26.jar

Description:

Groovy: A powerful multi-faceted language for the JVM

License:

The Apache Software License, Version 2.0: https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\org\apache\groovy\groovy-ant\4.0.26\groovy-ant-4.0.26.jar
MD5: 009ba3808f97d0cd7b23d8a6f98f3a6d
SHA1: 6d4a3b9479cb03ebd373a75e63809074bd6e110a
SHA256:2bbd99b499fc8d161f5b9aed8478dfd5473cebf7cbbd9b0eccf512cab6865367
Referenced In Project/Scope: spotbugs-maven-plugin:compile
groovy-ant-4.0.26.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs-maven-plugin@4.9.3.0

Identifiers

gson-2.12.1.jar

Description:

Gson JSON library

License:

Apache-2.0: https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\com\google\code\gson\gson\2.12.1\gson-2.12.1.jar
MD5: 6901ee290ab94954f46a32a30062c773
SHA1: 4e773a317740b83b43cfc3d652962856041697cb
SHA256:ebee13d5fb7477cd7f1cc010e0c356df8ca80709715248da97f79e35ccb4fbec
Referenced In Project/Scope: spotbugs-maven-plugin:compile
gson-2.12.1.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs@4.9.3

Identifiers

guava-33.2.1-jre.jar

Description:

    Guava is a suite of core and expanded libraries that include
    utility classes, Google's collections, I/O classes, and
    much more.

License:

http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\com\google\guava\guava\33.2.1-jre\guava-33.2.1-jre.jar
MD5: 872309e5982530bdc7e68096c0d53cd2
SHA1: 818e780da2c66c63bbb6480fef1f3855eeafa3e4
SHA256:452b2d9787b7d366fa8cf5ed9a1c40404542d05effa7a598da03bbbbb76d9f31
Referenced In Project/Scope: spotbugs-maven-plugin:provided
guava-33.2.1-jre.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven/maven-core@3.9.9

Identifiers

guice-5.1.0.jar

Description:

Guice is a lightweight dependency injection framework for Java 6 and above

License:

http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\com\google\inject\guice\5.1.0\guice-5.1.0.jar
MD5: 2560169296aa94492af34af2115e9511
SHA1: da25056c694c54ba16e78e4fc35f17fc60f0d1b4
SHA256:4130e50bfac48099c860f0d903b91860c81a249c90f38245f8fed58fc817bc26
Referenced In Project/Scope: spotbugs-maven-plugin:provided
guice-5.1.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven/maven-core@3.9.9

Identifiers

httpclient5-5.1.3.jar

Description:

Apache HttpComponents Client

File Path: C:\Users\Jeremy\.m2\repository\org\apache\httpcomponents\client5\httpclient5\5.1.3\httpclient5-5.1.3.jar
MD5: 757bfb86277b9b11798db8fdb351bf74
SHA1: 13c984b7b881afcff3a7f0bb95878724a48a4b66
SHA256:28c759254f4e35319e078bb6ffea75676608dc12cb243b24fb3c8732522977fe
Referenced In Project/Scope: spotbugs-maven-plugin:runtime
httpclient5-5.1.3.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs@4.9.3

Identifiers

httpcore5-5.1.3.jar

Description:

Apache HttpComponents HTTP/1.1 core components

File Path: C:\Users\Jeremy\.m2\repository\org\apache\httpcomponents\core5\httpcore5\5.1.3\httpcore5-5.1.3.jar
MD5: e3311847fc70a84038fb2c079dd08c4a
SHA1: d1638d1e5f2793f187d4144c702a93524ba6fd3b
SHA256:f2bf2f2c7772169c9e30699719667ad30f9b46c4e9d7841907deb2d12d9923fe
Referenced In Project/Scope: spotbugs-maven-plugin:runtime
httpcore5-5.1.3.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs@4.9.3

Identifiers

httpcore5-h2-5.1.3.jar

Description:

Apache HttpComponents HTTP/2 Core Components

File Path: C:\Users\Jeremy\.m2\repository\org\apache\httpcomponents\core5\httpcore5-h2\5.1.3\httpcore5-h2-5.1.3.jar
MD5: e12cc9746f6635675a408e641c95b177
SHA1: 4664b59b09f5ee008e37a963bbb92f4068e91696
SHA256:d0e78ba15aa8ebe77982b660ac4b09a95d6e035dbdbea762577dc1c8e2935807
Referenced In Project/Scope: spotbugs-maven-plugin:runtime
httpcore5-h2-5.1.3.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs@4.9.3

Identifiers

j2objc-annotations-3.0.0.jar

Description:

    A set of annotations that provide additional information to the J2ObjC
    translator to modify the result of translation.

License:

Apache License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\com\google\j2objc\j2objc-annotations\3.0.0\j2objc-annotations-3.0.0.jar
MD5: f59529b29202a5baf37f491ea5ec8627
SHA1: 7399e65dd7e9ff3404f4535b2f017093bdb134c7
SHA256:88241573467ddca44ffd4d74aa04c2bbfd11bf7c17e0c342c94c9de7a70a7c64
Referenced In Project/Scope: spotbugs-maven-plugin:provided
j2objc-annotations-3.0.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs-maven-plugin@4.9.3.0

Identifiers

javaparser-core-3.26.3.jar

Description:

The core parser functionality. This may be all you need.

License:

GNU Lesser General Public License: http://www.gnu.org/licenses/lgpl-3.0.html
Apache License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\com\github\javaparser\javaparser-core\3.26.3\javaparser-core-3.26.3.jar
MD5: 9d25d17c290b1c075d72256df05fa764
SHA1: aa91fa91359b1db13695f9c908a2795766ebc9a9
SHA256:a24c4fa7799ffe0c7a9af11d4eecd757098ed4498f86067bf28b46b2bfea1833
Referenced In Project/Scope: spotbugs-maven-plugin:compile
javaparser-core-3.26.3.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs-maven-plugin@4.9.3.0

Identifiers

javax.inject-1.jar

Description:

The javax.inject API

License:

The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\javax\inject\javax.inject\1\javax.inject-1.jar
MD5: 289075e48b909e9e74e6c915b3631d2e
SHA1: 6975da39a7040257bd51d21a231b76c915872d38
SHA256:91c77044a50c481636c32d916fd89c9118a72195390452c81065080f957de7ff
Referenced In Project/Scope: spotbugs-maven-plugin:compile
javax.inject-1.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs-maven-plugin@4.9.3.0

Identifiers

jaxen-2.0.0.jar

Description:

Jaxen is a universal XPath engine for Java.

License:

https://raw.githubusercontent.com/jaxen-xpath/jaxen/master/LICENSE.txt
File Path: C:\Users\Jeremy\.m2\repository\jaxen\jaxen\2.0.0\jaxen-2.0.0.jar
MD5: 674d5bd86b7838fe431b0277856e97ae
SHA1: bd6a33b0fda054a5678010df843cc999f288dc6c
SHA256:9499e487a66268f47b8307d130cd1e13a58392105e98a51f6a525db79c615cc5
Referenced In Project/Scope: spotbugs-maven-plugin:runtime
jaxen-2.0.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs@4.9.3

Identifiers

jcip-annotations-1.0-1.jar

Description:

    A clean room implementation of the JCIP Annotations based entirely on the specification provided by the javadocs.

License:

Apache License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\com\github\stephenc\jcip\jcip-annotations\1.0-1\jcip-annotations-1.0-1.jar
MD5: d62dbfa8789378457ada685e2f614846
SHA1: ef31541dd28ae2cefdd17c7ebf352d93e9058c63
SHA256:4fccff8382aafc589962c4edb262f6aa595e34f1e11e61057d1c6a96e8fc7323
Referenced In Project/Scope: spotbugs-maven-plugin:compile
jcip-annotations-1.0-1.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs@4.9.3

Identifiers

json-simple-3.0.2.jar

Description:

Java 7+ toolkit to quickly develop RFC 4627 JSON compatible applications.

License:

The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\com\github\cliftonlabs\json-simple\3.0.2\json-simple-3.0.2.jar
MD5: 148c0d1bdc1bcb24394627d6930ee9ad
SHA1: 2337afdb06134a12fc0239299c3ceb2e9c209516
SHA256:fda65a9ad0e1ac0c88987106e89aa4d8b2a2495e7e042371efa83813f65b7295
Referenced In Project/Scope: spotbugs-maven-plugin:compile
json-simple-3.0.2.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven.doxia/doxia-site-renderer@2.0.0

Identifiers

jsr305-3.0.2.jar

Description:

JSR305 Annotations for Findbugs

License:

The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\com\google\code\findbugs\jsr305\3.0.2\jsr305-3.0.2.jar
MD5: dd83accb899363c32b07d7a1b2e4ce40
SHA1: 25ea2e8b0c338a877313bd4672d3fe056ea78f0d
SHA256:766ad2a0783f2687962c8ad74ceecc38a28b9f72a2d085ee438b7813e928d0c7
Referenced In Project/Scope: spotbugs-maven-plugin:compile
jsr305-3.0.2.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs-annotations@4.9.3

Identifiers

log4j-api-2.24.3.jar

Description:

The logging API of the Log4j project.
    Library and application code can log through this API.
    It contains a simple built-in implementation (`SimpleLogger`) for trivial use cases.
    Production applications are recommended to use Log4j API in combination with a fully-fledged implementation, such as Log4j Core.

License:

Apache-2.0: https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\org\apache\logging\log4j\log4j-api\2.24.3\log4j-api-2.24.3.jar
MD5: d89516699543c5c21be87ee1760695f3
SHA1: b02c125db8b6d295adf72ae6e71af5d83bce2370
SHA256:5b4a0a0cd0e751ded431c162442bdbdd53328d1f8bb2bae5fc1bbeee0f66d80f
Referenced In Project/Scope: spotbugs-maven-plugin:compile
log4j-api-2.24.3.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.logging.log4j/log4j-to-slf4j@2.24.3

Identifiers

log4j-to-slf4j-2.24.3.jar

Description:

Forwards the Log4j API calls to SLF4J.
    (Refer to the `log4j-slf4j[2]-impl` artifacts for forwarding SLF4J to the Log4j API.)

License:

Apache-2.0: https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\org\apache\logging\log4j\log4j-to-slf4j\2.24.3\log4j-to-slf4j-2.24.3.jar
MD5: 1f4b63f9c41f2f5179aa10b35d76e805
SHA1: da1143e2a2531ee1c2d90baa98eb50a28a39d5a7
SHA256:c7f2b0c612a4eb05b1587d1c880eb4cf5f4f53850676a8ede8da2b8fabb4f73f
Referenced In Project/Scope: spotbugs-maven-plugin:compile
log4j-to-slf4j-2.24.3.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs-maven-plugin@4.9.3.0

Identifiers

lombok-1.18.36.jar: mavenEcjBootstrapAgent.jar

File Path: C:\Users\Jeremy\.m2\repository\org\projectlombok\lombok\1.18.36\lombok-1.18.36.jar\lombok\launch\mavenEcjBootstrapAgent.jar
MD5: 27467519bf9615b24cad3b003c4353a9
SHA1: 37d92e0a726a67883ab94bee27c6f292e6318dcd
SHA256:9566d0706d6245cac3cdd9db6d1d81551aa3e727febcf64452c6db9701c40037
Referenced In Project/Scope: spotbugs-maven-plugin:provided

Identifiers

  • None

lombok-1.18.36.jar

Description:

Spice up your java: Automatic Resource Management, automatic generation of getters, setters, equals, hashCode and toString, and more!

License:

The MIT License: https://projectlombok.org/LICENSE
File Path: C:\Users\Jeremy\.m2\repository\org\projectlombok\lombok\1.18.36\lombok-1.18.36.jar
MD5: 92c08153ae16c161c8cc2cc8185d2724
SHA1: 5a30490a6e14977d97d9c73c924c1f1b5311ea95
SHA256:73b6b05b6a2d365b700bab08d30f94de9d336490bc0acce5b6181fef48cbf18e
Referenced In Project/Scope: spotbugs-maven-plugin:provided
lombok-1.18.36.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs-maven-plugin@4.9.3.0

Identifiers

maven-archiver-3.6.2.jar

Description:

Provides utility methods for creating JARs and other archive files from a Maven project.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\maven-archiver\3.6.2\maven-archiver-3.6.2.jar
MD5: 742b3136d8ff1fcb66f5fd7f3c267c8d
SHA1: a2d949d87fed6db197cc3cceec93012dd2317ca0
SHA256:1f895a587df4844d9b7565e8e9a6352afe1d55532458a0dbeb746bc1d02e9216
Referenced In Project/Scope: spotbugs-maven-plugin:compile
maven-archiver-3.6.2.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven.reporting/maven-reporting-impl@4.0.0

Identifiers

maven-artifact-3.9.9.jar

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\maven-artifact\3.9.9\maven-artifact-3.9.9.jar
MD5: fcb27c2b8225edec3f2356973fa39e98
SHA1: a130ec431ef32e12a4424f9b074735bb58e15d2d
SHA256:30f015d1c1a393e19c18cd4f43532089c36d4ca328608ce3dda78b74d3d31515
Referenced In Project/Scope: spotbugs-maven-plugin:provided
maven-artifact-3.9.9.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs-maven-plugin@4.9.3.0

Identifiers

maven-builder-support-3.9.9.jar

Description:

Support for descriptor builders (model, setting, toolchains)

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\maven-builder-support\3.9.9\maven-builder-support-3.9.9.jar
MD5: 0266bb9314b63d9fde8aff0d190f48d6
SHA1: 812c13c808e42c54d3f4abdaab603e5262bf8ab8
SHA256:2ca4a967bdd12a9e85d40e012374f86e63d4a1030c199da4832e3d0a1c6770d8
Referenced In Project/Scope: spotbugs-maven-plugin:provided
maven-builder-support-3.9.9.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven/maven-core@3.9.9

Identifiers

maven-core-3.9.9.jar

Description:

Maven Core classes.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\maven-core\3.9.9\maven-core-3.9.9.jar
MD5: eed2eb37f03ccdea7ef9dab069c0b5d8
SHA1: b58645e3f14348024b05735c171425e19d30c02e
SHA256:7fab37fc6044f20ae004376ab8414373636cf51e26ad0b1efa6b3f1cd2bec503
Referenced In Project/Scope: spotbugs-maven-plugin:provided
maven-core-3.9.9.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs-maven-plugin@4.9.3.0

Identifiers

maven-model-3.9.9.jar

Description:

Model for Maven POM (Project Object Model)

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\maven-model\3.9.9\maven-model-3.9.9.jar
MD5: 813d4aceaaa8e16f8a83c95a96afa22c
SHA1: 585bff8f220ddc1c08c5263b7dee26c49fc7df94
SHA256:8f59b0a16fe9c933be749a60ae0705a0cb337bb5abaf38801b40b740ff775727
Referenced In Project/Scope: spotbugs-maven-plugin:provided
maven-model-3.9.9.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs-maven-plugin@4.9.3.0

Identifiers

maven-model-builder-3.9.9.jar

Description:

The effective model builder, with inheritance, profile activation, interpolation, ...

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\maven-model-builder\3.9.9\maven-model-builder-3.9.9.jar
MD5: a48ea3e9ceec85a9bff88e88048148d9
SHA1: 6dcd87768eb615301aef0c2221dd168a2d36bc7b
SHA256:a4377182ac2e5adfe16be3b3c81981a5ecddab014184de72ae1e522f04a77602
Referenced In Project/Scope: spotbugs-maven-plugin:provided
maven-model-builder-3.9.9.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven/maven-core@3.9.9

Identifiers

maven-plugin-annotations-3.15.1.jar

Description:

Java annotations to use in Mojos

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\plugin-tools\maven-plugin-annotations\3.15.1\maven-plugin-annotations-3.15.1.jar
MD5: 0723da1364961f527fbfce10c8b9c7dd
SHA1: ca287d08819d5d87f3a06b8f065a79eb33c3ecc3
SHA256:b58bcb3a1f362f6e1efa2772064026bb3d4ad92e6f43a1812d8d2886489912f5
Referenced In Project/Scope: spotbugs-maven-plugin:provided
maven-plugin-annotations-3.15.1.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs-maven-plugin@4.9.3.0

Identifiers

maven-plugin-api-3.9.9.jar

Description:

The API for plugins - Mojos - development.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\maven-plugin-api\3.9.9\maven-plugin-api-3.9.9.jar
MD5: 0bf1ae393ffac0c034ce8f3a4b7fc406
SHA1: 7e06aef37b14f8452928e5efaa88bcf2ee8aed02
SHA256:2b491d38db45b0e8eef522e8f7889a3366e546e58b376b07fcb56e34c424e932
Referenced In Project/Scope: spotbugs-maven-plugin:provided
maven-plugin-api-3.9.9.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs-maven-plugin@4.9.3.0

Identifiers

maven-reporting-api-4.0.0.jar

Description:

API to manage report generation.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\reporting\maven-reporting-api\4.0.0\maven-reporting-api-4.0.0.jar
MD5: 9c49fcb81d69bb5ec513d624c181fc05
SHA1: d3ad7e3d03463b5bd77e7d3ce94539cc723c8dfb
SHA256:cb2cbde3c9c7288f7398a250dcf3c90cf92714cff301f22b298e1091b5def33c
Referenced In Project/Scope: spotbugs-maven-plugin:compile
maven-reporting-api-4.0.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven.reporting/maven-reporting-impl@4.0.0

Identifiers

maven-reporting-impl-4.0.0.jar

Description:

Abstract classes to manage report generation.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\reporting\maven-reporting-impl\4.0.0\maven-reporting-impl-4.0.0.jar
MD5: 302ed7d914dc813380d361d1acb83c2f
SHA1: d3753b5c13a873a5ddb71f404c6fe1179a4688c2
SHA256:e9e70fdb26ff8b1f15435e3a68866a25c85b1694007e0fbdfe84e48e946fe463
Referenced In Project/Scope: spotbugs-maven-plugin:compile
maven-reporting-impl-4.0.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs-maven-plugin@4.9.3.0

Identifiers

maven-repository-metadata-3.9.9.jar

Description:

Per-directory local and remote repository metadata.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\maven-repository-metadata\3.9.9\maven-repository-metadata-3.9.9.jar
MD5: d341cdcc9abac2d01546301a305f12b3
SHA1: 33a43f0af3371225d1dcaaa20a824df59c692172
SHA256:137c297e6a52d489b76663c82324d54e40f5d498a8fc015c0203fd91df8623b0
Referenced In Project/Scope: spotbugs-maven-plugin:provided
maven-repository-metadata-3.9.9.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven/maven-core@3.9.9

Identifiers

maven-resolver-api-1.9.22.jar

Description:

The application programming interface for the repository system.

License:

"Apache-2.0";link="https://www.apache.org/licenses/LICENSE-2.0.txt"
File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\resolver\maven-resolver-api\1.9.22\maven-resolver-api-1.9.22.jar
MD5: c59d27b3750461be99f8d38e1f503f56
SHA1: 756660687ea077b85be02b019d593ef2758e7db6
SHA256:63f5f665e44a09ef55463b3b91fda0b78ff07dd24b1060d56e79c10b6e32cbfb
Referenced In Project/Scope: spotbugs-maven-plugin:provided
maven-resolver-api-1.9.22.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs-maven-plugin@4.9.3.0

Identifiers

maven-resolver-impl-1.9.22.jar

Description:

An implementation of the repository system.

License:

"Apache-2.0";link="https://www.apache.org/licenses/LICENSE-2.0.txt"
File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\resolver\maven-resolver-impl\1.9.22\maven-resolver-impl-1.9.22.jar
MD5: 965f1348220f046c6cbde059c971685d
SHA1: 19b7a728c9000f8db615f64552d95fe74b413617
SHA256:e4dafb8acc13d736377c02d2170d869438dd74b98b860745909d238726babcbb
Referenced In Project/Scope: spotbugs-maven-plugin:provided
maven-resolver-impl-1.9.22.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven/maven-core@3.9.9

Identifiers

maven-resolver-named-locks-1.9.22.jar

Description:

A synchronization utility implementation using Named locks.

License:

"Apache-2.0";link="https://www.apache.org/licenses/LICENSE-2.0.txt"
File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\resolver\maven-resolver-named-locks\1.9.22\maven-resolver-named-locks-1.9.22.jar
MD5: 3d3855f4775bc27f9962f999ea88919b
SHA1: 121433b079aad9be7ed266b19f2122eeb0e2d111
SHA256:0685f29ec3b548d9b6917c527f13c667685a3394b955aaa5b25d0559818b7fc5
Referenced In Project/Scope: spotbugs-maven-plugin:provided
maven-resolver-named-locks-1.9.22.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven/maven-core@3.9.9

Identifiers

maven-resolver-provider-3.9.9.jar

Description:

Extensions to Maven Resolver for utilizing Maven POM and repository metadata.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\maven-resolver-provider\3.9.9\maven-resolver-provider-3.9.9.jar
MD5: ea2fccfc4c499dbaa570a26da14050d9
SHA1: ea361822cd25ae6c9153c594aef805e853031224
SHA256:5dea05049c94f952f48ce2bfe0111afdf986acc591fcc11d23fe3b8dcb70291e
Referenced In Project/Scope: spotbugs-maven-plugin:provided
maven-resolver-provider-3.9.9.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven/maven-core@3.9.9

Identifiers

maven-resolver-spi-1.9.22.jar

Description:

The service provider interface for repository system implementations and repository connectors.

License:

"Apache-2.0";link="https://www.apache.org/licenses/LICENSE-2.0.txt"
File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\resolver\maven-resolver-spi\1.9.22\maven-resolver-spi-1.9.22.jar
MD5: 7ae784f1d4088fff396386ed6966cafc
SHA1: c3101acaa4ec053557028cf1917f1d22112b100d
SHA256:99ad721e4631d9bd0c4f9e29c869672577c66f2a674a5723ce38eff13c75cbfd
Referenced In Project/Scope: spotbugs-maven-plugin:provided
maven-resolver-spi-1.9.22.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven/maven-core@3.9.9

Identifiers

maven-resolver-util-1.9.22.jar

Description:

A collection of utility classes to ease usage of the repository system.

License:

"Apache-2.0";link="https://www.apache.org/licenses/LICENSE-2.0.txt"
File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\resolver\maven-resolver-util\1.9.22\maven-resolver-util-1.9.22.jar
MD5: 4e84c0379667d2436a99fced60a74b5d
SHA1: d5febed69ca2fe0dacffec95b6cb0760b0270fd1
SHA256:4aaea1584c39294ca926fc474723d9684473609ef4490c4eb169d6ea7daca6b5
Referenced In Project/Scope: spotbugs-maven-plugin:provided
maven-resolver-util-1.9.22.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven/maven-core@3.9.9

Identifiers

maven-settings-3.9.9.jar

Description:

Maven Settings model.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\maven-settings\3.9.9\maven-settings-3.9.9.jar
MD5: a5eede8fe9b01b7bb3c6dad06a738365
SHA1: a82024d87a107965ae274d944c844c9186ff410d
SHA256:68edf1b510e0d759ec501271a5d05e3a6e425462fbb84126c16e8a6f89abdada
Referenced In Project/Scope: spotbugs-maven-plugin:provided
maven-settings-3.9.9.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven/maven-core@3.9.9

Identifiers

maven-settings-builder-3.9.9.jar

Description:

The effective settings builder, with inheritance and password decryption.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\maven-settings-builder\3.9.9\maven-settings-builder-3.9.9.jar
MD5: 4fb4ae61642d42cba66821d8698a670a
SHA1: 71a9bee9618839ffaf7c0de3b53ac1c408b57ae0
SHA256:094640f3fdce47250cb06968a143f40c4e2f1c22be979c73caac2f49f3c38373
Referenced In Project/Scope: spotbugs-maven-plugin:provided
maven-settings-builder-3.9.9.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven/maven-core@3.9.9

Identifiers

maven-shared-utils-3.4.2.jar

Description:

Shared utilities for use by Maven core and plugins

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\shared\maven-shared-utils\3.4.2\maven-shared-utils-3.4.2.jar
MD5: 53a038f77a81cb5816ad2b1c7daa8711
SHA1: bfa28296272a5915b08de9f11f34a94b0a818fd0
SHA256:b613357e1bad4dfc1dead801691c9460f9585fe7c6b466bc25186212d7d18487
Referenced In Project/Scope: spotbugs-maven-plugin:compile
maven-shared-utils-3.4.2.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven.reporting/maven-reporting-impl@4.0.0

Identifiers

modernizer-maven-annotations-3.1.0.jar

File Path: C:\Users\Jeremy\.m2\repository\org\gaul\modernizer-maven-annotations\3.1.0\modernizer-maven-annotations-3.1.0.jar
MD5: b188aef3e94d39c7e7a8ebb6b740559f
SHA1: 06eeda8c72054cfccf610ae772f606dbd13acf32
SHA256:1b4e8adc970715721846afeb632edd1c9dc9c07dc052b691c0c8d899c9b9f017
Referenced In Project/Scope: spotbugs-maven-plugin:provided
modernizer-maven-annotations-3.1.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs-maven-plugin@4.9.3.0

Identifiers

org.eclipse.sisu.inject-0.9.0.M3.jar

Description:

JSR330-based container; supports classpath scanning, auto-binding, and dynamic auto-wiring

License:

"Eclipse Public License, Version 2.0";link="https://www.eclipse.org/legal/epl-v20.html"
File Path: C:\Users\Jeremy\.m2\repository\org\eclipse\sisu\org.eclipse.sisu.inject\0.9.0.M3\org.eclipse.sisu.inject-0.9.0.M3.jar
MD5: 643a13084e0ac59cdda06319e1b348ea
SHA1: 3665002ba4d16dfa779ef658a63d0608c4bd898b
SHA256:15335c4dcf082f599fb8eddcfb58d6a7e9a9c97de2883c257089a479b9b24522
Referenced In Project/Scope: spotbugs-maven-plugin:compile
org.eclipse.sisu.inject-0.9.0.M3.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven/maven-core@3.9.9

Identifiers

org.eclipse.sisu.plexus-0.9.0.M3.jar

Description:

Plexus-JSR330 adapter; adds Plexus support to the Sisu-Inject container

License:

"Eclipse Public License, Version 2.0";link="https://www.eclipse.org/legal/epl-v20.html"
File Path: C:\Users\Jeremy\.m2\repository\org\eclipse\sisu\org.eclipse.sisu.plexus\0.9.0.M3\org.eclipse.sisu.plexus-0.9.0.M3.jar
MD5: 964e7bc9837b270566f18b87af65f5d7
SHA1: b493c7abcc6e04fa0a6a20d489a3db0395c76f70
SHA256:c99674d3773e26154885661711f0b6d63aa5008f5cc99227a236756d4ad9de5e
Referenced In Project/Scope: spotbugs-maven-plugin:compile
org.eclipse.sisu.plexus-0.9.0.M3.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven.reporting/maven-reporting-impl@4.0.0

Identifiers

plexus-archiver-4.9.2.jar

File Path: C:\Users\Jeremy\.m2\repository\org\codehaus\plexus\plexus-archiver\4.9.2\plexus-archiver-4.9.2.jar
MD5: 408c466d4a20a02f4a2428a4f003ca13
SHA1: a03ed402ef8468c1d1bda368d7213cad67f16a71
SHA256:a837bd7d73291564dc8e8c826de0fede75896527a35bdcddb77b0545ee656a4c
Referenced In Project/Scope: spotbugs-maven-plugin:compile
plexus-archiver-4.9.2.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven.reporting/maven-reporting-impl@4.0.0

Identifiers

plexus-cipher-2.0.jar

File Path: C:\Users\Jeremy\.m2\repository\org\codehaus\plexus\plexus-cipher\2.0\plexus-cipher-2.0.jar
MD5: 55d612839faf248cbe3e273969c002c2
SHA1: 425ea8e534716b4bff1ea90f39bd76be951d651b
SHA256:9a7f1b5c5a9effd61eadfd8731452a2f76a8e79111fac391ef75ea801bea203a
Referenced In Project/Scope: spotbugs-maven-plugin:provided
plexus-cipher-2.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven/maven-core@3.9.9

Identifiers

plexus-classworlds-2.8.0.jar

Description:

A class loader framework

License:

https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\org\codehaus\plexus\plexus-classworlds\2.8.0\plexus-classworlds-2.8.0.jar
MD5: 92089dee35db6423c2128559238430cb
SHA1: 5d0d8c71b61b38ce127a46702a453f9aa09a4ee2
SHA256:081b40e0eab033cd5ac72d2501bfff4f5fd2a3eef827051111730ea152681c72
Referenced In Project/Scope: spotbugs-maven-plugin:compile
plexus-classworlds-2.8.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven/maven-plugin-api@3.9.9

Identifiers

plexus-component-annotations-2.2.0.jar

Description:

Plexus Component Java Annotations, to describe plexus components properties in java sources with
    standard annotations instead of javadoc annotations.

File Path: C:\Users\Jeremy\.m2\repository\org\codehaus\plexus\plexus-component-annotations\2.2.0\plexus-component-annotations-2.2.0.jar
MD5: a2397189a5ce25e7d2d44effa9f5176c
SHA1: a506f84636ea7ae370d04167dd155c103e616f68
SHA256:50edb93c73786e62822b4fe1336e22880fdf147191373cf5c911370e16748fcf
Referenced In Project/Scope: spotbugs-maven-plugin:compile
plexus-component-annotations-2.2.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven/maven-core@3.9.9

Identifiers

plexus-i18n-1.0-beta-10.jar

File Path: C:\Users\Jeremy\.m2\repository\org\codehaus\plexus\plexus-i18n\1.0-beta-10\plexus-i18n-1.0-beta-10.jar
MD5: 7f36c0459c853750c627f682ec7bcf52
SHA1: 27506f59e54cc80b8c28b977c2bcd0478094e0cc
SHA256:b87f25b512ffafcafbf4a05ab943812e9c6915291370c6b46016eb3836886c41
Referenced In Project/Scope: spotbugs-maven-plugin:compile
plexus-i18n-1.0-beta-10.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven.doxia/doxia-integration-tools@2.0.0

Identifiers

plexus-interpolation-1.27.jar

Description:

The Plexus project provides a full software stack for creating and executing software projects.

License:

https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\org\codehaus\plexus\plexus-interpolation\1.27\plexus-interpolation-1.27.jar
MD5: c2edbe0dbc934692794aaeac6006055a
SHA1: 8dc73f4ff5eafcbb7ec035ba54736e828b272533
SHA256:3fb4fb6143fdf964024c3cb738551524b9ea84e5c211cd660c559ad0703e5230
Referenced In Project/Scope: spotbugs-maven-plugin:compile
plexus-interpolation-1.27.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven/maven-core@3.9.9

Identifiers

plexus-io-3.4.2.jar

File Path: C:\Users\Jeremy\.m2\repository\org\codehaus\plexus\plexus-io\3.4.2\plexus-io-3.4.2.jar
MD5: 77515ce571e8169c13220c506ad177a4
SHA1: 40deb3076e4597f1ef973dc794f3a510fa3a942d
SHA256:6ba7fb0db6bfa348c248df3f983ae31318e9c14f35a86a932af5ffd7450aa62a
Referenced In Project/Scope: spotbugs-maven-plugin:compile
plexus-io-3.4.2.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven.reporting/maven-reporting-impl@4.0.0

Identifiers

plexus-resources-1.3.0.jar

Description:

A component to transparently retrieve resources from the filesystem, classpath or internet.

File Path: C:\Users\Jeremy\.m2\repository\org\codehaus\plexus\plexus-resources\1.3.0\plexus-resources-1.3.0.jar
MD5: fcc594fc0965b615ec74294fc30e00dd
SHA1: 0f082cbb44a0fb317e405ed6bfbd1ca983f38e14
SHA256:827baaa0215caedcdca59d091f04480566f7a43996183b9f9871fecff7abebea
Referenced In Project/Scope: spotbugs-maven-plugin:compile
plexus-resources-1.3.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs-maven-plugin@4.9.3.0

Identifiers

plexus-sec-dispatcher-2.0.jar

File Path: C:\Users\Jeremy\.m2\repository\org\codehaus\plexus\plexus-sec-dispatcher\2.0\plexus-sec-dispatcher-2.0.jar
MD5: e68635a721630177ac70173e441336b6
SHA1: f89c5080614ffd0764e49861895dbedde1b47237
SHA256:873139960c4c780176dda580b003a2c4bf82188bdce5bb99234e224ef7acfceb
Referenced In Project/Scope: spotbugs-maven-plugin:provided
plexus-sec-dispatcher-2.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven/maven-core@3.9.9

Identifiers

plexus-utils-4.0.2.jar

Description:

A collection of various utility classes to ease working with strings, files, command lines and
    more.

License:

Apache License, Version 2.0: https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\org\codehaus\plexus\plexus-utils\4.0.2\plexus-utils-4.0.2.jar
MD5: 4cfdd73e436702d319d551a44fcea500
SHA1: 9526a9548b302572f23337fcc217fb4cc713b9c3
SHA256:8957274e75fe2c278b1428dd16a0daeee1dd38152cb6eff816177ac28fccb697
Referenced In Project/Scope: spotbugs-maven-plugin:compile
plexus-utils-4.0.2.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs-maven-plugin@4.9.3.0

Identifiers

plexus-velocity-2.2.0.jar

File Path: C:\Users\Jeremy\.m2\repository\org\codehaus\plexus\plexus-velocity\2.2.0\plexus-velocity-2.2.0.jar
MD5: fd4bb44db19036ab360720360f09dccc
SHA1: 75a983b74a4c0adcd0751528ff397ae308ef6d0c
SHA256:3e7e902f492c973cf210ddb8267843a3b65e83f5067467e2f4d9af0051f6b8b9
Referenced In Project/Scope: spotbugs-maven-plugin:compile
plexus-velocity-2.2.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven.doxia/doxia-site-renderer@2.0.0

Identifiers

plexus-xml-3.0.1.jar

Description:

A collection of various utility classes to ease working with XML in Maven 3.

File Path: C:\Users\Jeremy\.m2\repository\org\codehaus\plexus\plexus-xml\3.0.1\plexus-xml-3.0.1.jar
MD5: cd868918ebc742350840124ea4422ab0
SHA1: b0e73c21402f03c2765674b8dede21673b3288cf
SHA256:c1a510a87a62bd2d74ac1472dd31c3f9e9b0b8b8568f37d77c0f135415bebd05
Referenced In Project/Scope: spotbugs-maven-plugin:compile
plexus-xml-3.0.1.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven.doxia/doxia-core@2.0.0

Identifiers

qdox-1.12.1.jar

Description:

    QDox is a high speed, small footprint parser for extracting class/interface/method definitions from source files
    complete with JavaDoc @tags. It is designed to be used by active code generators or documentation tools.

License:

The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\com\thoughtworks\qdox\qdox\1.12.1\qdox-1.12.1.jar
MD5: 9fb6970f934f8d836ae8e6d133316ab4
SHA1: f7122f6ab1f64bdf9f5970b0e89bfb355e036897
SHA256:21fba22f830e9268f07cf4ab2d99e8181abbdcb0cb91ee0228eb3cb918dcdd1d
Referenced In Project/Scope: spotbugs-maven-plugin:compile
qdox-1.12.1.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.groovy/groovy-docgenerator@4.0.26

Identifiers

slf4j-api-2.0.17.jar

Description:

The slf4j API

License:

https://opensource.org/license/mit
File Path: C:\Users\Jeremy\.m2\repository\org\slf4j\slf4j-api\2.0.17\slf4j-api-2.0.17.jar
MD5: b6480d114a23683498ac3f746f959d2f
SHA1: d9e58ac9c7779ba3bf8142aff6c830617a7fe60f
SHA256:7b751d952061954d5abfed7181c1f645d336091b679891591d63329c622eb832
Referenced In Project/Scope: spotbugs-maven-plugin:compile
slf4j-api-2.0.17.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs@4.9.3

Identifiers

slf4j-simple-2.0.17.jar

Description:

SLF4J Simple Provider

License:

https://opensource.org/license/mit
File Path: C:\Users\Jeremy\.m2\repository\org\slf4j\slf4j-simple\2.0.17\slf4j-simple-2.0.17.jar
MD5: 47a7060262b6800b3e0e41db00909b81
SHA1: 9872a3fd794ffe7b18d17747926a64d61526ca96
SHA256:ddfea59ac074c6d3e24ac2c38622d2d963895e17f70b38ed4bdae4d780be6964
Referenced In Project/Scope: spotbugs-maven-plugin:compile
slf4j-simple-2.0.17.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs-maven-plugin@4.9.3.0

Identifiers

snappy-0.4.jar

Description:

Port of Snappy to Java

License:

Apache License 2.0: http://www.apache.org/licenses/LICENSE-2.0.html
File Path: C:\Users\Jeremy\.m2\repository\org\iq80\snappy\snappy\0.4\snappy-0.4.jar
MD5: f0792d1dbe7f90d8b34c7c19961e0073
SHA1: a42b2d92a89efd35bb14738000dabcac6bd07a8d
SHA256:46a0c87d504ce9d6063e1ff6e4d20738feb49d8abf85b5071a7d18df4f11bac9
Referenced In Project/Scope: spotbugs-maven-plugin:compile
snappy-0.4.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven.reporting/maven-reporting-impl@4.0.0

Identifiers

CVE-2024-36124  

iq80 Snappy is a compression/decompression library. When uncompressing certain data, Snappy tries to read outside the bounds of the given byte arrays. Because Snappy uses the JDK class `sun.misc.Unsafe` to speed up memory access, no additional bounds checks are performed and this has similar security consequences as out-of-bounds access in C or C++, namely it can lead to non-deterministic behavior or crash the JVM. iq80 Snappy is not actively maintained anymore. As quick fix users can upgrade to version 0.5.
CWE-125 Out-of-bounds Read

CVSSv3:
  • Base Score: MEDIUM (5.3)
  • Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:3.9/RC:R/MAV:A

References:

Vulnerable Software & Versions:

spotbugs-4.9.3.jar

Description:

SpotBugs: Because it's easy!

License:

GNU LESSER GENERAL PUBLIC LICENSE, Version 2.1: https://www.gnu.org/licenses/old-licenses/lgpl-2.1.en.html
File Path: C:\Users\Jeremy\.m2\repository\com\github\spotbugs\spotbugs\4.9.3\spotbugs-4.9.3.jar
MD5: a12f969566c12e997566acde6bebbacb
SHA1: 434f6edde492790577983ad9fa018cc40c1bacaa
SHA256:710e8b98f1ae23cdb71aaaf07e8d71fb63b44f2bbbaa1df3c3ba0de62aba6ec9
Referenced In Project/Scope: spotbugs-maven-plugin:compile
spotbugs-4.9.3.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs-maven-plugin@4.9.3.0

Identifiers

spotbugs-annotations-4.9.3.jar

Description:

Annotations the SpotBugs tool supports

License:

GNU LESSER GENERAL PUBLIC LICENSE, Version 2.1: https://www.gnu.org/licenses/old-licenses/lgpl-2.1.en.html
File Path: C:\Users\Jeremy\.m2\repository\com\github\spotbugs\spotbugs-annotations\4.9.3\spotbugs-annotations-4.9.3.jar
MD5: 6149845e438bd5a34ebaf81f8bc9e243
SHA1: 4d362bffcfdfd734999e94d7d98fde678aae71cf
SHA256:13532bfe2f45fcd491432221df72d9cd0efb8f987c9245e12befa192c8925ce3
Referenced In Project/Scope: spotbugs-maven-plugin:compile
spotbugs-annotations-4.9.3.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs-maven-plugin@4.9.3.0

Identifiers

velocity-engine-core-2.4.jar

Description:

Apache Velocity is a general purpose template engine.

License:

https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\org\apache\velocity\velocity-engine-core\2.4\velocity-engine-core-2.4.jar
MD5: 8dc3c7a26823ee88253f7aa9250c094e
SHA1: 55dfc20bbc4968cf70c5ae5165b5b0324e0067d9
SHA256:1bf78c2ade46f209bf93ebe72ed2af5b989ca7a1de0a015fc1b92a62f56b6549
Referenced In Project/Scope: spotbugs-maven-plugin:compile
velocity-engine-core-2.4.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven.doxia/doxia-site-renderer@2.0.0

Identifiers

velocity-tools-generic-3.1.jar

Description:

Generic tools that can be used in any context.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\velocity\tools\velocity-tools-generic\3.1\velocity-tools-generic-3.1.jar
MD5: 76f13879ead8693fd4d5751a8a236089
SHA1: 07aaa49086a64cd9dab967a8437cc03abbfad655
SHA256:8258cfdcaa16127f35ffe610a3fa4f76b7ebe51b88922c73c4ee39ce8f378ce5
Referenced In Project/Scope: spotbugs-maven-plugin:compile
velocity-tools-generic-3.1.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven.doxia/doxia-site-renderer@2.0.0

Identifiers

xmlresolver-5.2.2-data.jar

File Path: C:\Users\Jeremy\.m2\repository\org\xmlresolver\xmlresolver\5.2.2\xmlresolver-5.2.2-data.jar
MD5: 0e77f628aa613bbe3145c6a24f8973f3
SHA1: 5624ede8b8e374979194acaae9f34cff23b62b3e
SHA256:173904bdbd783ba0fac92c5bcc05da5d09f0ce7eed24346666ea0a239461f9b4
Referenced In Project/Scope: spotbugs-maven-plugin:runtime
xmlresolver-5.2.2-data.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs@4.9.3

Identifiers

xmlresolver-5.2.2.jar

Description:

An XML entity/uri resolver

License:

Apache License version 2.0: https://www.apache.org/licenses/LICENSE-2.0
File Path: C:\Users\Jeremy\.m2\repository\org\xmlresolver\xmlresolver\5.2.2\xmlresolver-5.2.2.jar
MD5: 0de20e8f7acfa5942d78c239d3034deb
SHA1: 152378e04ba01898847bf38fad5023c7d52f0c9d
SHA256:efc92bd7ed32b3e57095e0b3e872051ccfbbdcc980831ef33e89e38161a85222
Referenced In Project/Scope: spotbugs-maven-plugin:runtime
xmlresolver-5.2.2.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs@4.9.3

Identifiers

xz-1.9.jar

Description:

XZ data compression

License:

Public Domain
File Path: C:\Users\Jeremy\.m2\repository\org\tukaani\xz\1.9\xz-1.9.jar
MD5: 57c2fbfeb55e307ccae52e5322082e02
SHA1: 1ea4bec1a921180164852c65006d928617bd2caf
SHA256:211b306cfc44f8f96df3a0a3ddaf75ba8c5289eed77d60d72f889bb855f535e5
Referenced In Project/Scope: spotbugs-maven-plugin:runtime
xz-1.9.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven.reporting/maven-reporting-impl@4.0.0

Identifiers

zstd-jni-1.5.5-11.jar: libzstd-jni-1.5.5-11.dll

File Path: C:\Users\Jeremy\.m2\repository\com\github\luben\zstd-jni\1.5.5-11\zstd-jni-1.5.5-11.jar\win\aarch64\libzstd-jni-1.5.5-11.dll
MD5: 3c42e914725869f2ad90eb3ddb418524
SHA1: fdd7d968eb3a348f6bf562b298b3a165e0e73e4e
SHA256:c368030edfc9f9caf92b89b832e65c84d29757a35df4641decd907e4f0229a59
Referenced In Project/Scope: spotbugs-maven-plugin:runtime

Identifiers

  • None

zstd-jni-1.5.5-11.jar: libzstd-jni-1.5.5-11.dll

File Path: C:\Users\Jeremy\.m2\repository\com\github\luben\zstd-jni\1.5.5-11\zstd-jni-1.5.5-11.jar\win\amd64\libzstd-jni-1.5.5-11.dll
MD5: 1521a503cd2ed6d7547e6c7e6abb229c
SHA1: 9330785beba7881cc72c7f68cc87537a9a11cfc9
SHA256:8f753fa694b1c60651e79cedd916268e6c4034e921a61633a8f2ad934817edd2
Referenced In Project/Scope: spotbugs-maven-plugin:runtime

Identifiers

  • None

zstd-jni-1.5.5-11.jar: libzstd-jni-1.5.5-11.dll

File Path: C:\Users\Jeremy\.m2\repository\com\github\luben\zstd-jni\1.5.5-11\zstd-jni-1.5.5-11.jar\win\x86\libzstd-jni-1.5.5-11.dll
MD5: f73208a58a031c84e5dee99a15f865ff
SHA1: 8e91341f71ee4a73e1c94b80ae1c846a663e0d61
SHA256:8173736b15a732f2be19137fe0ff2336d416c8c60b914e9600f3a5012584f9d1
Referenced In Project/Scope: spotbugs-maven-plugin:runtime

Identifiers

  • None

zstd-jni-1.5.5-11.jar

Description:

JNI bindings for Zstd native library that provides fast and high compression lossless algorithm for Java and all JVM languages.

License:

BSD 2-Clause License: https://opensource.org/licenses/BSD-2-Clause
File Path: C:\Users\Jeremy\.m2\repository\com\github\luben\zstd-jni\1.5.5-11\zstd-jni-1.5.5-11.jar
MD5: 00977099d76d2c01a7b19263375ee42e
SHA1: ca6ab366315e179dd80645aad4a60bab959c6523
SHA256:d75b2ced6059f81ad23e021c554259b906b6c4f2991cb772409827569ead4c1a
Referenced In Project/Scope: spotbugs-maven-plugin:runtime
zstd-jni-1.5.5-11.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven.reporting/maven-reporting-impl@4.0.0

Identifiers



This report contains data retrieved from the National Vulnerability Database.
This report may contain data retrieved from the CISA Known Exploited Vulnerability Catalog.
This report may contain data retrieved from the Github Advisory Database (via NPM Audit API).
This report may contain data retrieved from RetireJS.
This report may contain data retrieved from the Sonatype OSS Index.