Press CTR-C to copy XML [help]


Dependency-Check is an open source tool performing a best effort analysis of 3rd party dependencies; false positives and false negatives may exist in the analysis performed by the tool. Use of the tool and the reporting provided constitutes acceptance for use in an AS IS condition, and there are NO warranties, implied or otherwise, with regard to the analysis or its use. Any use of the tool and the reporting provided is at the user’s risk. In no event shall the copyright holder or OWASP be held liable for any damages whatsoever arising out of or in connection with the use of this tool, the analysis performed, or the resulting report.

How to read the report | Suppressing false positives | Getting Help: github issues

 Sponsor

Project: spotbugs-maven-plugin

com.github.spotbugs:spotbugs-maven-plugin:4.8.6.6

Scan Information (show all):

Summary

Display: Showing Vulnerable Dependencies (click to show all)

DependencyVulnerability IDsPackageHighest SeverityCVE CountConfidenceEvidence Count
Saxon-HE-12.4.jarcpe:2.3:a:kay_framework_project:kay_framework:12.4:*:*:*:*:*:*:*pkg:maven/net.sf.saxon/Saxon-HE@12.4 0Low55
ant-1.10.15.jarcpe:2.3:a:apache:ant:1.10.15:*:*:*:*:*:*:*pkg:maven/org.apache.ant/ant@1.10.15 0Highest24
aopalliance-1.0.jarpkg:maven/aopalliance/aopalliance@1.0 020
asm-9.7.1.jarpkg:maven/org.ow2.asm/asm@9.7.1 054
asm-analysis-9.7.1.jarpkg:maven/org.ow2.asm/asm-analysis@9.7.1 060
asm-commons-9.7.1.jarpkg:maven/org.ow2.asm/asm-commons@9.7.1 058
asm-tree-9.7.1.jarpkg:maven/org.ow2.asm/asm-tree@9.7.1 058
asm-util-9.7.1.jarpkg:maven/org.ow2.asm/asm-util@9.7.1 058
bcel-6.10.0.jarcpe:2.3:a:apache:commons_bcel:6.10.0:*:*:*:*:*:*:*pkg:maven/org.apache.bcel/bcel@6.10.0 0Low77
checker-qual-3.46.0.jarpkg:maven/org.checkerframework/checker-qual@3.46.0 044
commons-beanutils-1.9.4.jarcpe:2.3:a:apache:commons_beanutils:1.9.4:*:*:*:*:*:*:*pkg:maven/commons-beanutils/commons-beanutils@1.9.4 0Highest168
commons-chain-1.2.jarpkg:maven/commons-chain/commons-chain@1.2 078
commons-codec-1.17.1.jarpkg:maven/commons-codec/commons-codec@1.17.1 0121
commons-collections-3.2.2.jarcpe:2.3:a:apache:commons_collections:3.2.2:*:*:*:*:*:*:*pkg:maven/commons-collections/commons-collections@3.2.2 0Highest84
commons-digester-2.1.jarpkg:maven/commons-digester/commons-digester@2.1 098
commons-io-2.17.0.jarcpe:2.3:a:apache:commons_io:2.17.0:*:*:*:*:*:*:*pkg:maven/commons-io/commons-io@2.17.0 0Highest125
commons-lang-2.6.jarpkg:maven/commons-lang/commons-lang@2.6 0122
commons-lang3-3.17.0.jarpkg:maven/org.apache.commons/commons-lang3@3.17.0 0145
commons-text-1.10.0.jarcpe:2.3:a:apache:commons_text:1.10.0:*:*:*:*:*:*:*pkg:maven/org.apache.commons/commons-text@1.10.0 0Highest71
dom4j-2.1.4.jarcpe:2.3:a:dom4j_project:dom4j:2.1.4:*:*:*:*:*:*:*pkg:maven/org.dom4j/dom4j@2.1.4 0Highest21
doxia-core-1.12.0.jarpkg:maven/org.apache.maven.doxia/doxia-core@1.12.0 026
doxia-decoration-model-1.11.1.jarpkg:maven/org.apache.maven.doxia/doxia-decoration-model@1.11.1 026
doxia-integration-tools-1.11.1.jarpkg:maven/org.apache.maven.doxia/doxia-integration-tools@1.11.1 028
doxia-logging-api-1.12.0.jarpkg:maven/org.apache.maven.doxia/doxia-logging-api@1.12.0 028
doxia-module-xhtml-1.11.1.jarpkg:maven/org.apache.maven.doxia/doxia-module-xhtml@1.11.1 028
doxia-module-xhtml5-1.11.1.jarpkg:maven/org.apache.maven.doxia/doxia-module-xhtml5@1.11.1 028
doxia-sink-api-1.12.0.jarpkg:maven/org.apache.maven.doxia/doxia-sink-api@1.12.0 028
doxia-site-renderer-1.11.1.jarpkg:maven/org.apache.maven.doxia/doxia-site-renderer@1.11.1 026
doxia-skin-model-1.11.1.jarpkg:maven/org.apache.maven.doxia/doxia-skin-model@1.11.1 026
error_prone_annotations-2.31.0.jarpkg:maven/com.google.errorprone/error_prone_annotations@2.31.0 029
failureaccess-1.0.2.jarpkg:maven/com.google.guava/failureaccess@1.0.2 032
groovy-4.0.24.jarcpe:2.3:a:apache:groovy:4.0.24:*:*:*:*:*:*:*pkg:maven/org.apache.groovy/groovy@4.0.24 0Highest289
groovy-ant-4.0.24.jarcpe:2.3:a:apache:ant:4.0.24:*:*:*:*:*:*:*
cpe:2.3:a:apache:groovy:4.0.24:*:*:*:*:*:*:*		pkg:maven/org.apache.groovy/groovy-ant@4.0.24 0Highest286
gson-2.11.0.jarcpe:2.3:a:google:gson:2.11.0:*:*:*:*:*:*:*pkg:maven/com.google.code.gson/gson@2.11.0 0Highest33
guava-33.3.1-jre.jarcpe:2.3:a:google:guava:33.3.1:*:*:*:*:*:*:*pkg:maven/com.google.guava/guava@33.3.1-jre 0Highest27
guice-5.1.0.jarpkg:maven/com.google.inject/guice@5.1.0 034
httpclient-4.5.13.jarcpe:2.3:a:apache:httpclient:4.5.13:*:*:*:*:*:*:*pkg:maven/org.apache.httpcomponents/httpclient@4.5.13 0Highest32
httpclient5-5.1.3.jarcpe:2.3:a:apache:httpclient:5.1.3:*:*:*:*:*:*:*pkg:maven/org.apache.httpcomponents.client5/httpclient5@5.1.3 0Highest30
httpcore-4.4.14.jarpkg:maven/org.apache.httpcomponents/httpcore@4.4.14 032
httpcore5-5.1.3.jarpkg:maven/org.apache.httpcomponents.core5/httpcore5@5.1.3 030
httpcore5-h2-5.1.3.jarpkg:maven/org.apache.httpcomponents.core5/httpcore5-h2@5.1.3 030
j2objc-annotations-3.0.0.jarpkg:maven/com.google.j2objc/j2objc-annotations@3.0.0 033
javaparser-core-3.26.2.jarpkg:maven/com.github.javaparser/javaparser-core@3.26.2 027
javax.inject-1.jarpkg:maven/javax.inject/javax.inject@1 020
jaxen-2.0.0.jarpkg:maven/jaxen/jaxen@2.0.0 025
jcip-annotations-1.0-1.jarpkg:maven/com.github.stephenc.jcip/jcip-annotations@1.0-1 025
jcl-over-slf4j-2.0.16.jarpkg:maven/org.slf4j/jcl-over-slf4j@2.0.16 031
jsr305-3.0.2.jarpkg:maven/com.google.code.findbugs/jsr305@3.0.2 017
listenablefuture-9999.0-empty-to-avoid-conflict-with-guava.jarpkg:maven/com.google.guava/listenablefuture@9999.0-empty-to-avoid-conflict-with-guava 013
log4j-api-2.24.1.jarcpe:2.3:a:apache:log4j:2.24.1:*:*:*:*:*:*:*pkg:maven/org.apache.logging.log4j/log4j-api@2.24.1 0Highest41
log4j-to-slf4j-2.24.1.jarpkg:maven/org.apache.logging.log4j/log4j-to-slf4j@2.24.1 037
lombok-1.18.34.jar: mavenEcjBootstrapAgent.jar 07
lombok-1.18.34.jarpkg:maven/org.projectlombok/lombok@1.18.34 036
maven-artifact-3.9.9.jarpkg:maven/org.apache.maven/maven-artifact@3.9.9 026
maven-artifact-transfer-0.13.1.jarpkg:maven/org.apache.maven.shared/maven-artifact-transfer@0.13.1 033
maven-builder-support-3.9.9.jarpkg:maven/org.apache.maven/maven-builder-support@3.9.9 024
maven-common-artifact-filters-3.4.0.jarpkg:maven/org.apache.maven.shared/maven-common-artifact-filters@3.4.0 029
maven-core-3.9.9.jarcpe:2.3:a:apache:maven:3.9.9:*:*:*:*:*:*:*pkg:maven/org.apache.maven/maven-core@3.9.9 0Highest24
maven-model-3.9.9.jarpkg:maven/org.apache.maven/maven-model@3.9.9 026
maven-model-builder-3.9.9.jarpkg:maven/org.apache.maven/maven-model-builder@3.9.9 032
maven-plugin-annotations-3.15.1.jarpkg:maven/org.apache.maven.plugin-tools/maven-plugin-annotations@3.15.1 026
maven-plugin-api-3.9.9.jarpkg:maven/org.apache.maven/maven-plugin-api@3.9.9 026
maven-reporting-api-3.1.1.jarpkg:maven/org.apache.maven.reporting/maven-reporting-api@3.1.1 035
maven-reporting-impl-3.2.0.jarpkg:maven/org.apache.maven.reporting/maven-reporting-impl@3.2.0 035
maven-repository-metadata-3.9.9.jarpkg:maven/org.apache.maven/maven-repository-metadata@3.9.9 026
maven-resolver-api-1.9.22.jarpkg:maven/org.apache.maven.resolver/maven-resolver-api@1.9.22 034
maven-resolver-impl-1.9.22.jarpkg:maven/org.apache.maven.resolver/maven-resolver-impl@1.9.22 032
maven-resolver-named-locks-1.9.22.jarpkg:maven/org.apache.maven.resolver/maven-resolver-named-locks@1.9.22 033
maven-resolver-provider-3.9.9.jarpkg:maven/org.apache.maven/maven-resolver-provider@3.9.9 026
maven-resolver-spi-1.9.22.jarpkg:maven/org.apache.maven.resolver/maven-resolver-spi@1.9.22 032
maven-resolver-util-1.4.1.jarpkg:maven/org.apache.maven.resolver/maven-resolver-util@1.4.1 035
maven-settings-3.9.9.jarpkg:maven/org.apache.maven/maven-settings@3.9.9 026
maven-settings-builder-3.9.9.jarpkg:maven/org.apache.maven/maven-settings-builder@3.9.9 026
maven-shared-utils-3.4.2.jarcpe:2.3:a:apache:maven_shared_utils:3.4.2:*:*:*:*:*:*:*
cpe:2.3:a:utils_project:utils:3.4.2:*:*:*:*:*:*:*		pkg:maven/org.apache.maven.shared/maven-shared-utils@3.4.2 0Highest29
modernizer-maven-annotations-2.9.0.jarpkg:maven/org.gaul/modernizer-maven-annotations@2.9.0 019
org.eclipse.sisu.inject-0.9.0.M3.jarpkg:maven/org.eclipse.sisu/org.eclipse.sisu.inject@0.9.0.M3 034
org.eclipse.sisu.plexus-0.9.0.M3.jarpkg:maven/org.eclipse.sisu/org.eclipse.sisu.plexus@0.9.0.M3 029
oro-2.0.8.jarpkg:maven/oro/oro@2.0.8 016
plexus-cipher-2.0.jarcpe:2.3:a:codehaus-plexus_project:codehaus-plexus:2.0:*:*:*:*:*:*:*pkg:maven/org.codehaus.plexus/plexus-cipher@2.0 0Highest20
plexus-classworlds-2.8.0.jarcpe:2.3:a:codehaus-plexus_project:codehaus-plexus:2.8.0:*:*:*:*:*:*:*pkg:maven/org.codehaus.plexus/plexus-classworlds@2.8.0 0Highest30
plexus-component-annotations-2.0.0.jarcpe:2.3:a:codehaus-plexus_project:codehaus-plexus:2.0.0:*:*:*:*:*:*:*pkg:maven/org.codehaus.plexus/plexus-component-annotations@2.0.0 0Highest27
plexus-i18n-1.0-beta-10.jarcpe:2.3:a:codehaus-plexus_project:codehaus-plexus:1.0.eta-10:*:*:*:*:*:*:*pkg:maven/org.codehaus.plexus/plexus-i18n@1.0-beta-10 0Highest24
plexus-interpolation-1.27.jarcpe:2.3:a:codehaus-plexus_project:codehaus-plexus:1.27:*:*:*:*:*:*:*pkg:maven/org.codehaus.plexus/plexus-interpolation@1.27 0Highest27
plexus-resources-1.3.0.jarcpe:2.3:a:codehaus-plexus_project:codehaus-plexus:1.3.0:*:*:*:*:*:*:*pkg:maven/org.codehaus.plexus/plexus-resources@1.3.0 0Highest22
plexus-sec-dispatcher-2.0.jarcpe:2.3:a:codehaus-plexus_project:codehaus-plexus:2.0:*:*:*:*:*:*:*
cpe:2.3:a:sec_project:sec:2.0:*:*:*:*:*:*:*		pkg:maven/org.codehaus.plexus/plexus-sec-dispatcher@2.0 0Highest20
plexus-utils-4.0.2.jarcpe:2.3:a:codehaus-plexus:plexus-utils:4.0.2:*:*:*:*:*:*:*
cpe:2.3:a:codehaus-plexus_project:codehaus-plexus:4.0.2:*:*:*:*:*:*:*
cpe:2.3:a:plexus-utils_project:plexus-utils:4.0.2:*:*:*:*:*:*:*
cpe:2.3:a:utils_project:utils:4.0.2:*:*:*:*:*:*:*		pkg:maven/org.codehaus.plexus/plexus-utils@4.0.2 0Highest219
plexus-velocity-1.2.jarcpe:2.3:a:codehaus-plexus_project:codehaus-plexus:1.2:*:*:*:*:*:*:*pkg:maven/org.codehaus.plexus/plexus-velocity@1.2 0Highest25
plexus-xml-3.0.1.jarcpe:2.3:a:codehaus-plexus_project:codehaus-plexus:3.0.1:*:*:*:*:*:*:*pkg:maven/org.codehaus.plexus/plexus-xml@3.0.1 0Highest29
qdox-1.12.1.jarpkg:maven/com.thoughtworks.qdox/qdox@1.12.1 055
slf4j-api-2.0.16.jarpkg:maven/org.slf4j/slf4j-api@2.0.16 029
slf4j-simple-2.0.16.jarpkg:maven/org.slf4j/slf4j-simple@2.0.16 037
spotbugs-4.8.6.jarpkg:maven/com.github.spotbugs/spotbugs@4.8.6 048
spotbugs-annotations-4.8.6.jarpkg:maven/com.github.spotbugs/spotbugs-annotations@4.8.6 053
velocity-1.7.jarcpe:2.3:a:apache:velocity_engine:1.7:*:*:*:*:*:*:*pkg:maven/org.apache.velocity/velocity@1.7HIGH1Low76
velocity-tools-2.0.jarcpe:2.3:a:apache:velocity_tools:2.0:*:*:*:*:*:*:*pkg:maven/org.apache.velocity/velocity-tools@2.0MEDIUM1Highest76
xmlresolver-5.2.2-data.jarpkg:maven/org.xmlresolver/xmlresolver@5.2.2 012
xmlresolver-5.2.2.jarpkg:maven/org.xmlresolver/xmlresolver@5.2.2 026

Dependencies (vulnerable)

Saxon-HE-12.4.jar

Description:

The XSLT and XQuery Processor

License:

Mozilla Public License Version 2.0: http://www.mozilla.org/MPL/2.0/
File Path: C:\Users\Jeremy\.m2\repository\net\sf\saxon\Saxon-HE\12.4\Saxon-HE-12.4.jar
MD5: b6319126413fa812ab937cdfac1e162c
SHA1: b532e44a8bf4007bbce69467801778a955599c52
SHA256:575f8b696e3b6f9aa7a3bf01611b8bf1b84576b55ce29bc16656a53a147ef441
Referenced In Project/Scope: spotbugs-maven-plugin:runtime
Saxon-HE-12.4.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs@4.8.6

Identifiers

ant-1.10.15.jar

File Path: C:\Users\Jeremy\.m2\repository\org\apache\ant\ant\1.10.15\ant-1.10.15.jar
MD5: 688b6e5ca5900863c26af4fe4ee7e924
SHA1: da854f5503ee061a5a3b2cfcbe98ee27aa4a5ef9
SHA256:763acda4a69588c9ea8817a952851ff0c2fc4bffa1d081c2565dc407f29d5794
Referenced In Project/Scope: spotbugs-maven-plugin:compile
ant-1.10.15.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs-maven-plugin@4.8.6.6

Identifiers

aopalliance-1.0.jar

Description:

AOP Alliance

License:

Public Domain
File Path: C:\Users\Jeremy\.m2\repository\aopalliance\aopalliance\1.0\aopalliance-1.0.jar
MD5: 04177054e180d09e3998808efa0401c7
SHA1: 0235ba8b489512805ac13a8f9ea77a1ca5ebe3e8
SHA256:0addec670fedcd3f113c5c8091d783280d23f75e3acb841b61a9cdb079376a08
Referenced In Project/Scope: spotbugs-maven-plugin:provided
aopalliance-1.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven/maven-core@3.9.9

Identifiers

asm-9.7.1.jar

Description:

ASM, a very small and fast Java bytecode manipulation framework

License:

BSD-3-Clause: https://asm.ow2.io/license.html
File Path: C:\Users\Jeremy\.m2\repository\org\ow2\asm\asm\9.7.1\asm-9.7.1.jar
MD5: e2cdd32d198ad31427d298eee9d39d8d
SHA1: f0ed132a49244b042cd0e15702ab9f2ce3cc8436
SHA256:8cadd43ac5eb6d09de05faecca38b917a040bb9139c7edeb4cc81c740b713281
Referenced In Project/Scope: spotbugs-maven-plugin:compile
asm-9.7.1.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs-maven-plugin@4.8.6.6

Identifiers

asm-analysis-9.7.1.jar

Description:

Static code analysis API of ASM, a very small and fast Java bytecode manipulation framework

License:

BSD-3-Clause: https://asm.ow2.io/license.html
File Path: C:\Users\Jeremy\.m2\repository\org\ow2\asm\asm-analysis\9.7.1\asm-analysis-9.7.1.jar
MD5: 4cd9e7178dfb85371bba3077e40cd514
SHA1: f97a3b319f0ed6a8cd944dc79060d3912a28985f
SHA256:85b29371884ba31bb76edf22323c2c24e172c3267a67152eba3d1ccc2e041ef2
Referenced In Project/Scope: spotbugs-maven-plugin:compile
asm-analysis-9.7.1.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs-maven-plugin@4.8.6.6

Identifiers

asm-commons-9.7.1.jar

Description:

Usefull class adapters based on ASM, a very small and fast Java bytecode manipulation framework

License:

BSD-3-Clause: https://asm.ow2.io/license.html
File Path: C:\Users\Jeremy\.m2\repository\org\ow2\asm\asm-commons\9.7.1\asm-commons-9.7.1.jar
MD5: 8344aea3c8b7d707e9d35a62710e77c9
SHA1: 406c6a2225cfe1819f102a161e54cc16a5c24f75
SHA256:9a579b54d292ad9be171d4313fd4739c635592c2b5ac3a459bbd1049cddec6a0
Referenced In Project/Scope: spotbugs-maven-plugin:compile
asm-commons-9.7.1.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs-maven-plugin@4.8.6.6

Identifiers

asm-tree-9.7.1.jar

Description:

Tree API of ASM, a very small and fast Java bytecode manipulation framework

License:

BSD-3-Clause: https://asm.ow2.io/license.html
File Path: C:\Users\Jeremy\.m2\repository\org\ow2\asm\asm-tree\9.7.1\asm-tree-9.7.1.jar
MD5: e85029f613b6469989cc7cf53fe06b74
SHA1: 3a53139787663b139de76b627fca0084ab60d32c
SHA256:9929881f59eb6b840e86d54570c77b59ce721d104e6dfd7a40978991c2d3b41f
Referenced In Project/Scope: spotbugs-maven-plugin:compile
asm-tree-9.7.1.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs-maven-plugin@4.8.6.6

Identifiers

asm-util-9.7.1.jar

Description:

Utilities for ASM, a very small and fast Java bytecode manipulation framework

License:

BSD-3-Clause: https://asm.ow2.io/license.html
File Path: C:\Users\Jeremy\.m2\repository\org\ow2\asm\asm-util\9.7.1\asm-util-9.7.1.jar
MD5: 36d373a9cd6cad9b35db9f984c6b4bbb
SHA1: 9e23359b598ec6b74b23e53110dd5c577adf2243
SHA256:f885be71b5c90556f5f1ad1c4f9276b29b96057c497d46666fe4ddbec3cb43c6
Referenced In Project/Scope: spotbugs-maven-plugin:compile
asm-util-9.7.1.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs-maven-plugin@4.8.6.6

Identifiers

bcel-6.10.0.jar

Description:

Apache Commons Bytecode Engineering Library

License:

https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\org\apache\bcel\bcel\6.10.0\bcel-6.10.0.jar
MD5: f942224903d1f1d1a2658c36bbec7901
SHA1: 34f0f3f24d2cd6627e304cbdd5ce2b9ca0671e4c
SHA256:afd26d78e921d5f843f5745c44a6edede5b1f607179d8ac76797a57bcbd430e2
Referenced In Project/Scope: spotbugs-maven-plugin:compile
bcel-6.10.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs-maven-plugin@4.8.6.6

Identifiers

checker-qual-3.46.0.jar

Description:

checker-qual contains annotations (type qualifiers) that a programmerwrites to specify Java code for type-checking by the Checker Framework.

License:

The MIT License: http://opensource.org/licenses/MIT
File Path: C:\Users\Jeremy\.m2\repository\org\checkerframework\checker-qual\3.46.0\checker-qual-3.46.0.jar
MD5: 5436ae3f8b4e1dfece73580a232ba98d
SHA1: 829954afc56f1737a1df3ab5aa889de574b97cc4
SHA256:4bc77a172279304c3f35045d6b9c8492780f047e5ad9919d77431caf29e44401
Referenced In Project/Scope: spotbugs-maven-plugin:compile
checker-qual-3.46.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs-maven-plugin@4.8.6.6

Identifiers

commons-beanutils-1.9.4.jar

Description:

Apache Commons BeanUtils provides an easy-to-use but flexible wrapper around reflection and introspection.

License:

https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\commons-beanutils\commons-beanutils\1.9.4\commons-beanutils-1.9.4.jar
MD5: 07dc532ee316fe1f2f0323e9bd2f8df4
SHA1: d52b9abcd97f38c81342bb7e7ae1eee9b73cba51
SHA256:7d938c81789028045c08c065e94be75fc280527620d5bd62b519d5838532368a
Referenced In Project/Scope: spotbugs-maven-plugin:compile
commons-beanutils-1.9.4.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs-maven-plugin@4.8.6.6

Identifiers

commons-chain-1.2.jar

Description:

        An implementation of the GoF Chain of Responsibility pattern

License:

http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\commons-chain\commons-chain\1.2\commons-chain-1.2.jar
MD5: e18e2c87826644e4c8c08635572c154f
SHA1: 744a13e8766e338bd347b6fbc28c6db12979d0c6
SHA256:d5489b5f6b54b74665ad76ad3ffb3ad904830fe4863392784f311897ffcbfca8
Referenced In Project/Scope: spotbugs-maven-plugin:compile
commons-chain-1.2.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs-maven-plugin@4.8.6.6

Identifiers

commons-codec-1.17.1.jar

Description:

     The Apache Commons Codec component contains encoders and decoders for
     various formats such as Base16, Base32, Base64, digest, and Hexadecimal. In addition to these
     widely used encoders and decoders, the codec package also maintains a
     collection of phonetic encoding utilities.

License:

https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\commons-codec\commons-codec\1.17.1\commons-codec-1.17.1.jar
MD5: 7b3438ab4c6d91e0066d410947e43f3e
SHA1: 973638b7149d333563584137ebf13a691bb60579
SHA256:f9f6cb103f2ddc3c99a9d80ada2ae7bf0685111fd6bffccb72033d1da4e6ff23
Referenced In Project/Scope: spotbugs-maven-plugin:compile
commons-codec-1.17.1.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs-maven-plugin@4.8.6.6

Identifiers

commons-collections-3.2.2.jar

Description:

Types that extend and augment the Java Collections Framework.

License:

http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\commons-collections\commons-collections\3.2.2\commons-collections-3.2.2.jar
MD5: f54a8510f834a1a57166970bfc982e94
SHA1: 8ad72fe39fa8c91eaaf12aadb21e0c3661fe26d5
SHA256:eeeae917917144a68a741d4c0dff66aa5c5c5fd85593ff217bced3fc8ca783b8
Referenced In Project/Scope: spotbugs-maven-plugin:compile
commons-collections-3.2.2.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs-maven-plugin@4.8.6.6

Identifiers

commons-digester-2.1.jar

Description:

    The Digester package lets you configure an XML to Java object mapping module
    which triggers certain actions called rules whenever a particular 
    pattern of nested XML elements is recognized.

License:

http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\commons-digester\commons-digester\2.1\commons-digester-2.1.jar
MD5: 528445033f22da28f5047b6abcd1c7c9
SHA1: 73a8001e7a54a255eef0f03521ec1805dc738ca0
SHA256:e0b2b980a84fc6533c5ce291f1917b32c507f62bcad64198fff44368c2196a3d
Referenced In Project/Scope: spotbugs-maven-plugin:compile
commons-digester-2.1.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs-maven-plugin@4.8.6.6

Identifiers

commons-io-2.17.0.jar

Description:

The Apache Commons IO library contains utility classes, stream implementations, file filters,
file comparators, endian transformation classes, and much more.

License:

https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\commons-io\commons-io\2.17.0\commons-io-2.17.0.jar
MD5: f6232d0e290d58bb93f74f67165bf91f
SHA1: ddcc8433eb019fb48fe25207c0278143f3e1d7e2
SHA256:4aa4ca48f3dfd30b78220b7881d8cb93eac4093ec94361b6befa9487998a550b
Referenced In Project/Scope: spotbugs-maven-plugin:compile
commons-io-2.17.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs-maven-plugin@4.8.6.6

Identifiers

commons-lang-2.6.jar

Description:

        Commons Lang, a package of Java utility classes for the
        classes that are in java.lang's hierarchy, or are considered to be so
        standard as to justify existence in java.lang.

License:

http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\commons-lang\commons-lang\2.6\commons-lang-2.6.jar
MD5: 4d5c1693079575b362edf41500630bbd
SHA1: 0ce1edb914c94ebc388f086c6827e8bdeec71ac2
SHA256:50f11b09f877c294d56f24463f47d28f929cf5044f648661c0f0cfbae9a2f49c
Referenced In Project/Scope: spotbugs-maven-plugin:compile
commons-lang-2.6.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs-maven-plugin@4.8.6.6

Identifiers

commons-lang3-3.17.0.jar

Description:

  Apache Commons Lang, a package of Java utility classes for the
  classes that are in java.lang's hierarchy, or are considered to be so
  standard as to justify existence in java.lang.

  The code is tested using the latest revision of the JDK for supported
  LTS releases: 8, 11, 17 and 21 currently.
  See https://github.com/apache/commons-lang/blob/master/.github/workflows/maven.yml
  
  Please ensure your build environment is up-to-date and kindly report any build issues.

License:

https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\org\apache\commons\commons-lang3\3.17.0\commons-lang3-3.17.0.jar
MD5: 7730df72b7fdff4a3a32d89a314f826a
SHA1: b17d2136f0460dcc0d2016ceefca8723bdf4ee70
SHA256:6ee731df5c8e5a2976a1ca023b6bb320ea8d3539fbe64c8a1d5cb765127c33b4
Referenced In Project/Scope: spotbugs-maven-plugin:compile
commons-lang3-3.17.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs-maven-plugin@4.8.6.6

Identifiers

commons-text-1.10.0.jar

Description:

Apache Commons Text is a library focused on algorithms working on strings.

License:

https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\org\apache\commons\commons-text\1.10.0\commons-text-1.10.0.jar
MD5: 4afc9bfa2d31dbf7330c98fcc954b892
SHA1: 3363381aef8cef2dbc1023b3e3a9433b08b64e01
SHA256:770cd903fa7b604d1f7ef7ba17f84108667294b2b478be8ed1af3bffb4ae0018
Referenced In Project/Scope: spotbugs-maven-plugin:compile
commons-text-1.10.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs@4.8.6

Identifiers

dom4j-2.1.4.jar

Description:

flexible XML framework for Java

License:

Plexus: https://github.com/dom4j/dom4j/blob/master/LICENSE
File Path: C:\Users\Jeremy\.m2\repository\org\dom4j\dom4j\2.1.4\dom4j-2.1.4.jar
MD5: 8246840e53db2781ca941e4d3f9ad715
SHA1: 35c16721b88cf17b8279fcb134c0abb161cc0e9b
SHA256:235a9167a8a199be04b5326d92927ca0adeb90d11f69fe2e821b34ce8433b591
Referenced In Project/Scope: spotbugs-maven-plugin:compile
dom4j-2.1.4.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs@4.8.6

Identifiers

doxia-core-1.12.0.jar

Description:

Doxia core classes and interfaces.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\doxia\doxia-core\1.12.0\doxia-core-1.12.0.jar
MD5: 6fb71383ea91e6101a75f25b922ce2ad
SHA1: 41cdaff3ce98e66714bfca677babaa3746faa2b9
SHA256:5e49cd827bebbcea5829d3b3883d17ad1ce15ebd6394aeb50ad50d7dfd939fcd
Referenced In Project/Scope: spotbugs-maven-plugin:compile
doxia-core-1.12.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs-maven-plugin@4.8.6.6

Identifiers

doxia-decoration-model-1.11.1.jar

Description:

The Decoration Model handles the decoration descriptor for sites, also known as site.xml.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\doxia\doxia-decoration-model\1.11.1\doxia-decoration-model-1.11.1.jar
MD5: 927ed3e7c39b6fed77875ed385b63447
SHA1: 1e10f4e9268b49edf40bca721eef07271bc91de5
SHA256:411fc167774f2e3573f280c57a278fbe7bae677ee596a8ad24bd6c6bb2c5bbce
Referenced In Project/Scope: spotbugs-maven-plugin:compile
doxia-decoration-model-1.11.1.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs-maven-plugin@4.8.6.6

Identifiers

doxia-integration-tools-1.11.1.jar

Description:

A collection of tools to help the integration of Doxia Sitetools in Maven plugins.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\doxia\doxia-integration-tools\1.11.1\doxia-integration-tools-1.11.1.jar
MD5: 1f3abb6a2c7c65b6f68f3ad45a76b3f5
SHA1: fdc4c4f29d10b0e2b5b9d7f9eea16812d496e478
SHA256:eee789dcb86f37f290c6c22198ea56bf529edf21590294e549a77a490ed21dbe
Referenced In Project/Scope: spotbugs-maven-plugin:compile
doxia-integration-tools-1.11.1.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs-maven-plugin@4.8.6.6

Identifiers

doxia-logging-api-1.12.0.jar

Description:

Doxia Logging API.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\doxia\doxia-logging-api\1.12.0\doxia-logging-api-1.12.0.jar
MD5: 7f3c898809424e826aeab3368c66acd7
SHA1: a31fac8c598c0090ccd2c53b4df7d49f81fb9dba
SHA256:985306162c0a9f4c309d46109447f30f02bf6fc9bc16a3e039d59e1dabd0192f
Referenced In Project/Scope: spotbugs-maven-plugin:compile
doxia-logging-api-1.12.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven.doxia/doxia-core@1.12.0

Identifiers

doxia-module-xhtml-1.11.1.jar

Description:

    A Doxia module for Xhtml source documents.
    Xhtml format is supported both as source and target formats.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\doxia\doxia-module-xhtml\1.11.1\doxia-module-xhtml-1.11.1.jar
MD5: 82c4cfb79b666b922e1a8cf7b919df22
SHA1: f1b755a09934cd9c51d87b606c8e8ddf07719ebf
SHA256:3d298e2da1e11dba952cf4e5d750fafc41713470767b57c4f6969123c0892a23
Referenced In Project/Scope: spotbugs-maven-plugin:compile
doxia-module-xhtml-1.11.1.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven.doxia/doxia-site-renderer@1.11.1

Identifiers

doxia-module-xhtml5-1.11.1.jar

Description:

    A Doxia module for Xhtml5 source documents.
    Xhtml5 format is supported both as source and target formats.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\doxia\doxia-module-xhtml5\1.11.1\doxia-module-xhtml5-1.11.1.jar
MD5: 37208526e7ed1051bc8c7f8dc076e5c9
SHA1: e4ee721555ff063d7ef9042d6b9237386c6b33e0
SHA256:3583ae17f9ae97db41da038dc67552a386e7a9f850f45fa6fdb0d2b9ef36a31c
Referenced In Project/Scope: spotbugs-maven-plugin:compile
doxia-module-xhtml5-1.11.1.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven.doxia/doxia-site-renderer@1.11.1

Identifiers

doxia-sink-api-1.12.0.jar

Description:

Doxia Sink API.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\doxia\doxia-sink-api\1.12.0\doxia-sink-api-1.12.0.jar
MD5: 965677b99fde26ed0b5556dbab622075
SHA1: 92a2fdeaeb59e921fff9c5ca9a2ea6118a494760
SHA256:5dca6aaaa9e70d8a0766e143ddcf9db09de5fde0fbcc78cb635d74e764dfcca5
Referenced In Project/Scope: spotbugs-maven-plugin:compile
doxia-sink-api-1.12.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs-maven-plugin@4.8.6.6

Identifiers

doxia-site-renderer-1.11.1.jar

Description:

The Site Renderer handles the rendering of sites, merging site decoration with document content.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\doxia\doxia-site-renderer\1.11.1\doxia-site-renderer-1.11.1.jar
MD5: 871abead02f713fb9c02d5ba36f65bf7
SHA1: 414e3b2049aa6f6710ecca4fa905d9d2ce318773
SHA256:f279a087910d3e0728daad9114da8f3211cfb49b5e8457d05ee9ee5f04284527
Referenced In Project/Scope: spotbugs-maven-plugin:compile
doxia-site-renderer-1.11.1.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs-maven-plugin@4.8.6.6

Identifiers

doxia-skin-model-1.11.1.jar

Description:

The Skin Model defines metadata for Doxia Sitetools skins.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\doxia\doxia-skin-model\1.11.1\doxia-skin-model-1.11.1.jar
MD5: 6fa7b3005dad9f4b285a889b3b68d8aa
SHA1: b6994a60da09eb429c01362e9a6a510e0f83d24e
SHA256:5337efbe45413d24b71422d145062f84bde96271dab9f3a5caa3fab461974bf4
Referenced In Project/Scope: spotbugs-maven-plugin:compile
doxia-skin-model-1.11.1.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven.doxia/doxia-site-renderer@1.11.1

Identifiers

error_prone_annotations-2.31.0.jar

Description:

Error Prone is a static analysis tool for Java that catches common programming mistakes at compile-time.

License:

Apache 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\com\google\errorprone\error_prone_annotations\2.31.0\error_prone_annotations-2.31.0.jar
MD5: 04641d87b6fd51090da62cfca6be83f4
SHA1: c3ba307b915d6d506e98ffbb49e6d2d12edad65b
SHA256:ba8d20fb1fc181672552b323f3c7549b30be1d57c49dd5835e2729e7647d9cfa
Referenced In Project/Scope: spotbugs-maven-plugin:provided
error_prone_annotations-2.31.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs-maven-plugin@4.8.6.6

Identifiers

failureaccess-1.0.2.jar

Description:

    Contains
    com.google.common.util.concurrent.internal.InternalFutureFailureAccess and
    InternalFutures. Most users will never need to use this artifact. Its
    classes are conceptually a part of Guava, but they're in this separate
    artifact so that Android libraries can use them without pulling in all of
    Guava (just as they can use ListenableFuture by depending on the
    listenablefuture artifact).

License:

http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\com\google\guava\failureaccess\1.0.2\failureaccess-1.0.2.jar
MD5: 3f75955b49b6758fd6d1e1bd9bf777b3
SHA1: c4a06a64e650562f30b7bf9aaec1bfed43aca12b
SHA256:8a8f81cf9b359e3f6dfa691a1e776985c061ef2f223c9b2c80753e1b458e8064
Referenced In Project/Scope: spotbugs-maven-plugin:compile
failureaccess-1.0.2.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.google.guava/guava@33.3.1-jre

Identifiers

groovy-4.0.24.jar

Description:

Groovy: A powerful multi-faceted language for the JVM

License:

The Apache Software License, Version 2.0: https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\org\apache\groovy\groovy\4.0.24\groovy-4.0.24.jar
MD5: e49ff7043f21bbd46592eccfdd2afc7f
SHA1: 1ebfbe13ba203625f53bab37a895954b2c160508
SHA256:38db8aa6f48b96aa11dd75745b96ab2991ddc9a09f5f3840fae704b84a588867
Referenced In Project/Scope: spotbugs-maven-plugin:compile
groovy-4.0.24.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs-maven-plugin@4.8.6.6

Identifiers

groovy-ant-4.0.24.jar

Description:

Groovy: A powerful multi-faceted language for the JVM

License:

The Apache Software License, Version 2.0: https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\org\apache\groovy\groovy-ant\4.0.24\groovy-ant-4.0.24.jar
MD5: dd8d67379b0c06e5d6e7c235df9761bc
SHA1: ac473f79b41433824ab910eba9c39645cade20fd
SHA256:c2c1cffa463e396fa7c928cd115fc0cf602bf7f10d322d7fbbeb193759967e72
Referenced In Project/Scope: spotbugs-maven-plugin:compile
groovy-ant-4.0.24.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs-maven-plugin@4.8.6.6

Identifiers

gson-2.11.0.jar

Description:

Gson JSON library

License:

Apache-2.0: https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\com\google\code\gson\gson\2.11.0\gson-2.11.0.jar
MD5: 0c69b9199d3a4e6c34dc03619ff7feee
SHA1: 527175ca6d81050b53bdd4c457a6d6e017626b0e
SHA256:57928d6e5a6edeb2abd3770a8f95ba44dce45f3b23b7a9dc2b309c581552a78b
Referenced In Project/Scope: spotbugs-maven-plugin:compile
gson-2.11.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs-maven-plugin@4.8.6.6

Identifiers

guava-33.3.1-jre.jar

Description:

    Guava is a suite of core and expanded libraries that include
    utility classes, Google's collections, I/O classes, and
    much more.

License:

http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\com\google\guava\guava\33.3.1-jre\guava-33.3.1-jre.jar
MD5: 7b7d80d99af4181db55b00dad50a91bb
SHA1: 852f8b363da0111e819460021ca693cacca3e8db
SHA256:4bf0e2c5af8e4525c96e8fde17a4f7307f97f8478f11c4c8e35a0e3298ae4e90
Referenced In Project/Scope: spotbugs-maven-plugin:compile
guava-33.3.1-jre.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs-maven-plugin@4.8.6.6

Identifiers

guice-5.1.0.jar

Description:

Guice is a lightweight dependency injection framework for Java 6 and above

License:

http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\com\google\inject\guice\5.1.0\guice-5.1.0.jar
MD5: 2560169296aa94492af34af2115e9511
SHA1: da25056c694c54ba16e78e4fc35f17fc60f0d1b4
SHA256:4130e50bfac48099c860f0d903b91860c81a249c90f38245f8fed58fc817bc26
Referenced In Project/Scope: spotbugs-maven-plugin:provided
guice-5.1.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven/maven-core@3.9.9

Identifiers

httpclient-4.5.13.jar

Description:

   Apache HttpComponents Client

File Path: C:\Users\Jeremy\.m2\repository\org\apache\httpcomponents\httpclient\4.5.13\httpclient-4.5.13.jar
MD5: 40d6b9075fbd28fa10292a45a0db9457
SHA1: e5f6cae5ca7ecaac1ec2827a9e2d65ae2869cada
SHA256:6fe9026a566c6a5001608cf3fc32196641f6c1e5e1986d1037ccdbd5f31ef743
Referenced In Project/Scope: spotbugs-maven-plugin:compile
httpclient-4.5.13.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven.doxia/doxia-core@1.12.0

Identifiers

httpclient5-5.1.3.jar

Description:

Apache HttpComponents Client

File Path: C:\Users\Jeremy\.m2\repository\org\apache\httpcomponents\client5\httpclient5\5.1.3\httpclient5-5.1.3.jar
MD5: 757bfb86277b9b11798db8fdb351bf74
SHA1: 13c984b7b881afcff3a7f0bb95878724a48a4b66
SHA256:28c759254f4e35319e078bb6ffea75676608dc12cb243b24fb3c8732522977fe
Referenced In Project/Scope: spotbugs-maven-plugin:runtime
httpclient5-5.1.3.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs@4.8.6

Identifiers

httpcore-4.4.14.jar

Description:

   Apache HttpComponents Core (blocking I/O)

File Path: C:\Users\Jeremy\.m2\repository\org\apache\httpcomponents\httpcore\4.4.14\httpcore-4.4.14.jar
MD5: 2b3991eda121042765a5ee299556c200
SHA1: 9dd1a631c082d92ecd4bd8fd4cf55026c720a8c1
SHA256:f956209e450cb1d0c51776dfbd23e53e9dd8db9a1298ed62b70bf0944ba63b28
Referenced In Project/Scope: spotbugs-maven-plugin:compile
httpcore-4.4.14.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven.doxia/doxia-core@1.12.0

Identifiers

httpcore5-5.1.3.jar

Description:

Apache HttpComponents HTTP/1.1 core components

File Path: C:\Users\Jeremy\.m2\repository\org\apache\httpcomponents\core5\httpcore5\5.1.3\httpcore5-5.1.3.jar
MD5: e3311847fc70a84038fb2c079dd08c4a
SHA1: d1638d1e5f2793f187d4144c702a93524ba6fd3b
SHA256:f2bf2f2c7772169c9e30699719667ad30f9b46c4e9d7841907deb2d12d9923fe
Referenced In Project/Scope: spotbugs-maven-plugin:runtime
httpcore5-5.1.3.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs@4.8.6

Identifiers

httpcore5-h2-5.1.3.jar

Description:

Apache HttpComponents HTTP/2 Core Components

File Path: C:\Users\Jeremy\.m2\repository\org\apache\httpcomponents\core5\httpcore5-h2\5.1.3\httpcore5-h2-5.1.3.jar
MD5: e12cc9746f6635675a408e641c95b177
SHA1: 4664b59b09f5ee008e37a963bbb92f4068e91696
SHA256:d0e78ba15aa8ebe77982b660ac4b09a95d6e035dbdbea762577dc1c8e2935807
Referenced In Project/Scope: spotbugs-maven-plugin:runtime
httpcore5-h2-5.1.3.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs@4.8.6

Identifiers

j2objc-annotations-3.0.0.jar

Description:

    A set of annotations that provide additional information to the J2ObjC
    translator to modify the result of translation.

License:

Apache License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\com\google\j2objc\j2objc-annotations\3.0.0\j2objc-annotations-3.0.0.jar
MD5: f59529b29202a5baf37f491ea5ec8627
SHA1: 7399e65dd7e9ff3404f4535b2f017093bdb134c7
SHA256:88241573467ddca44ffd4d74aa04c2bbfd11bf7c17e0c342c94c9de7a70a7c64
Referenced In Project/Scope: spotbugs-maven-plugin:provided
j2objc-annotations-3.0.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs-maven-plugin@4.8.6.6

Identifiers

javaparser-core-3.26.2.jar

Description:

The core parser functionality. This may be all you need.

License:

GNU Lesser General Public License: http://www.gnu.org/licenses/lgpl-3.0.html
Apache License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\com\github\javaparser\javaparser-core\3.26.2\javaparser-core-3.26.2.jar
MD5: d7bb7e28a5ffc3509aba59c5396757b3
SHA1: 795eca30f20fdc110d1a02a1f0e7ad207e17e7c1
SHA256:3e3e0c65d57d12797dbead3df1ebb28e7583737d0cd1f2a898dba6febd50ab88
Referenced In Project/Scope: spotbugs-maven-plugin:compile
javaparser-core-3.26.2.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs-maven-plugin@4.8.6.6

Identifiers

javax.inject-1.jar

Description:

The javax.inject API

License:

The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\javax\inject\javax.inject\1\javax.inject-1.jar
MD5: 289075e48b909e9e74e6c915b3631d2e
SHA1: 6975da39a7040257bd51d21a231b76c915872d38
SHA256:91c77044a50c481636c32d916fd89c9118a72195390452c81065080f957de7ff
Referenced In Project/Scope: spotbugs-maven-plugin:compile
javax.inject-1.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven/maven-core@3.9.9

Identifiers

jaxen-2.0.0.jar

Description:

Jaxen is a universal XPath engine for Java.

License:

https://raw.githubusercontent.com/jaxen-xpath/jaxen/master/LICENSE.txt
File Path: C:\Users\Jeremy\.m2\repository\jaxen\jaxen\2.0.0\jaxen-2.0.0.jar
MD5: 674d5bd86b7838fe431b0277856e97ae
SHA1: bd6a33b0fda054a5678010df843cc999f288dc6c
SHA256:9499e487a66268f47b8307d130cd1e13a58392105e98a51f6a525db79c615cc5
Referenced In Project/Scope: spotbugs-maven-plugin:compile
jaxen-2.0.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs-maven-plugin@4.8.6.6

Identifiers

jcip-annotations-1.0-1.jar

Description:

    A clean room implementation of the JCIP Annotations based entirely on the specification provided by the javadocs.

License:

Apache License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\com\github\stephenc\jcip\jcip-annotations\1.0-1\jcip-annotations-1.0-1.jar
MD5: d62dbfa8789378457ada685e2f614846
SHA1: ef31541dd28ae2cefdd17c7ebf352d93e9058c63
SHA256:4fccff8382aafc589962c4edb262f6aa595e34f1e11e61057d1c6a96e8fc7323
Referenced In Project/Scope: spotbugs-maven-plugin:compile
jcip-annotations-1.0-1.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs@4.8.6

Identifiers

jcl-over-slf4j-2.0.16.jar

Description:

JCL 1.2 implemented over SLF4J

License:

Apache License, Version 2.0: https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\org\slf4j\jcl-over-slf4j\2.0.16\jcl-over-slf4j-2.0.16.jar
MD5: c077b88c43f9d63f64f9880fdb457efb
SHA1: 9d08badad22f1ac07deac9188ade596472a2bfd9
SHA256:5744d62c5af556e839ab922c9fa3f737f0a5971e478ba68b2eb5256b2842ec78
Referenced In Project/Scope: spotbugs-maven-plugin:compile
jcl-over-slf4j-2.0.16.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs-maven-plugin@4.8.6.6

Identifiers

jsr305-3.0.2.jar

Description:

JSR305 Annotations for Findbugs

License:

The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\com\google\code\findbugs\jsr305\3.0.2\jsr305-3.0.2.jar
MD5: dd83accb899363c32b07d7a1b2e4ce40
SHA1: 25ea2e8b0c338a877313bd4672d3fe056ea78f0d
SHA256:766ad2a0783f2687962c8ad74ceecc38a28b9f72a2d085ee438b7813e928d0c7
Referenced In Project/Scope: spotbugs-maven-plugin:compile
jsr305-3.0.2.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.google.guava/guava@33.3.1-jre

Identifiers

listenablefuture-9999.0-empty-to-avoid-conflict-with-guava.jar

Description:

    An empty artifact that Guava depends on to signal that it is providing
    ListenableFuture -- but is also available in a second "version" that
    contains com.google.common.util.concurrent.ListenableFuture class, without
    any other Guava classes. The idea is:

    - If users want only ListenableFuture, they depend on listenablefuture-1.0.

    - If users want all of Guava, they depend on guava, which, as of Guava
    27.0, depends on
    listenablefuture-9999.0-empty-to-avoid-conflict-with-guava. The 9999.0-...
    version number is enough for some build systems (notably, Gradle) to select
    that empty artifact over the "real" listenablefuture-1.0 -- avoiding a
    conflict with the copy of ListenableFuture in guava itself. If users are
    using an older version of Guava or a build system other than Gradle, they
    may see class conflicts. If so, they can solve them by manually excluding
    the listenablefuture artifact or manually forcing their build systems to
    use 9999.0-....

File Path: C:\Users\Jeremy\.m2\repository\com\google\guava\listenablefuture\9999.0-empty-to-avoid-conflict-with-guava\listenablefuture-9999.0-empty-to-avoid-conflict-with-guava.jar
MD5: d094c22570d65e132c19cea5d352e381
SHA1: b421526c5f297295adef1c886e5246c39d4ac629
SHA256:b372a037d4230aa57fbeffdef30fd6123f9c0c2db85d0aced00c91b974f33f99
Referenced In Project/Scope: spotbugs-maven-plugin:compile
listenablefuture-9999.0-empty-to-avoid-conflict-with-guava.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.google.guava/guava@33.3.1-jre

Identifiers

log4j-api-2.24.1.jar

Description:

The logging API of the Log4j project.
    Library and application code can log through this API.
    It contains a simple built-in implementation (`SimpleLogger`) for trivial use cases.
    Production applications are recommended to use Log4j API in combination with a fully-fledged implementation, such as Log4j Core.

License:

Apache-2.0: https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\org\apache\logging\log4j\log4j-api\2.24.1\log4j-api-2.24.1.jar
MD5: 4dac8bc9a21f3503cd1a856503b6fea0
SHA1: 7ebeb12c20606373005af4232cd0ecca72613dda
SHA256:6e77bb229fc8dcaf09038beeb5e9030b22e9e01b51b458b0183ce669ebcc92ef
Referenced In Project/Scope: spotbugs-maven-plugin:compile
log4j-api-2.24.1.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.logging.log4j/log4j-to-slf4j@2.24.1

Identifiers

log4j-to-slf4j-2.24.1.jar

Description:

Forwards the Log4j API calls to SLF4J.
    (Refer to the `log4j-slf4j[2]-impl` artifacts for forwarding SLF4J to the Log4j API.)

License:

Apache-2.0: https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\org\apache\logging\log4j\log4j-to-slf4j\2.24.1\log4j-to-slf4j-2.24.1.jar
MD5: b72fbcf7b1e73617ebe80516de81ec4d
SHA1: fc8228007ccbf3bcdd9c6045de2c20bd03dbcf6e
SHA256:243044889b1383e350a9ec2137096859a2738e5ce558d1a4a31874cba448c06e
Referenced In Project/Scope: spotbugs-maven-plugin:compile
log4j-to-slf4j-2.24.1.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs-maven-plugin@4.8.6.6

Identifiers

lombok-1.18.34.jar: mavenEcjBootstrapAgent.jar

File Path: C:\Users\Jeremy\.m2\repository\org\projectlombok\lombok\1.18.34\lombok-1.18.34.jar\lombok\launch\mavenEcjBootstrapAgent.jar
MD5: e5552f93605e20eb4039662ee38ee41a
SHA1: 257946794d3fbaff9023c991de99d6b7a7be8c8d
SHA256:7f93cde1d476e8d84f51213c52d70eb596fcde669fbd30fbd5a6745346fdde9d
Referenced In Project/Scope: spotbugs-maven-plugin:provided

Identifiers

  • None

lombok-1.18.34.jar

Description:

Spice up your java: Automatic Resource Management, automatic generation of getters, setters, equals, hashCode and toString, and more!

License:

The MIT License: https://projectlombok.org/LICENSE
File Path: C:\Users\Jeremy\.m2\repository\org\projectlombok\lombok\1.18.34\lombok-1.18.34.jar
MD5: 91ce91dbfa7694bff4ddc1e51643f8b2
SHA1: ec547ef414ab1d2c040118fb9c1c265ada63af14
SHA256:c27d6b2aff56241d1b07fcbcc6b183709e6b432c80f7374eeb1d823e86d4b81a
Referenced In Project/Scope: spotbugs-maven-plugin:provided
lombok-1.18.34.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs-maven-plugin@4.8.6.6

Identifiers

maven-artifact-3.9.9.jar

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\maven-artifact\3.9.9\maven-artifact-3.9.9.jar
MD5: fcb27c2b8225edec3f2356973fa39e98
SHA1: a130ec431ef32e12a4424f9b074735bb58e15d2d
SHA256:30f015d1c1a393e19c18cd4f43532089c36d4ca328608ce3dda78b74d3d31515
Referenced In Project/Scope: spotbugs-maven-plugin:provided
maven-artifact-3.9.9.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs-maven-plugin@4.8.6.6

Identifiers

maven-artifact-transfer-0.13.1.jar

Description:

An API to install, deploy and resolving artifacts with Maven 3

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\shared\maven-artifact-transfer\0.13.1\maven-artifact-transfer-0.13.1.jar
MD5: 5a73136d65cfc2dd8af0fd365dbda4fb
SHA1: 9f6d2088ae64dd926b8ec445afdb7e148eb08060
SHA256:1ac88accde99ed71e65253bd130868c0e654f940f01ade073b895eb2f817cf06
Referenced In Project/Scope: spotbugs-maven-plugin:compile
maven-artifact-transfer-0.13.1.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs-maven-plugin@4.8.6.6

Identifiers

maven-builder-support-3.9.9.jar

Description:

Support for descriptor builders (model, setting, toolchains)

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\maven-builder-support\3.9.9\maven-builder-support-3.9.9.jar
MD5: 0266bb9314b63d9fde8aff0d190f48d6
SHA1: 812c13c808e42c54d3f4abdaab603e5262bf8ab8
SHA256:2ca4a967bdd12a9e85d40e012374f86e63d4a1030c199da4832e3d0a1c6770d8
Referenced In Project/Scope: spotbugs-maven-plugin:provided
maven-builder-support-3.9.9.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven/maven-core@3.9.9

Identifiers

maven-common-artifact-filters-3.4.0.jar

Description:

A collection of ready-made filters to control inclusion/exclusion of artifacts during dependency resolution.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\shared\maven-common-artifact-filters\3.4.0\maven-common-artifact-filters-3.4.0.jar
MD5: 48f960129682d6ca5a10d23970a637c0
SHA1: 25855b1fa26fa5a1b387375de4b14ac39df23981
SHA256:931a77aa9dad6c91f10fcfafa70adc7608c004576b4924c74ecbffb27568a880
Referenced In Project/Scope: spotbugs-maven-plugin:compile
maven-common-artifact-filters-3.4.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs-maven-plugin@4.8.6.6

Identifiers

maven-core-3.9.9.jar

Description:

Maven Core classes.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\maven-core\3.9.9\maven-core-3.9.9.jar
MD5: eed2eb37f03ccdea7ef9dab069c0b5d8
SHA1: b58645e3f14348024b05735c171425e19d30c02e
SHA256:7fab37fc6044f20ae004376ab8414373636cf51e26ad0b1efa6b3f1cd2bec503
Referenced In Project/Scope: spotbugs-maven-plugin:provided
maven-core-3.9.9.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs-maven-plugin@4.8.6.6

Identifiers

maven-model-3.9.9.jar

Description:

Model for Maven POM (Project Object Model)

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\maven-model\3.9.9\maven-model-3.9.9.jar
MD5: 813d4aceaaa8e16f8a83c95a96afa22c
SHA1: 585bff8f220ddc1c08c5263b7dee26c49fc7df94
SHA256:8f59b0a16fe9c933be749a60ae0705a0cb337bb5abaf38801b40b740ff775727
Referenced In Project/Scope: spotbugs-maven-plugin:provided
maven-model-3.9.9.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs-maven-plugin@4.8.6.6

Identifiers

maven-model-builder-3.9.9.jar

Description:

The effective model builder, with inheritance, profile activation, interpolation, ...

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\maven-model-builder\3.9.9\maven-model-builder-3.9.9.jar
MD5: a48ea3e9ceec85a9bff88e88048148d9
SHA1: 6dcd87768eb615301aef0c2221dd168a2d36bc7b
SHA256:a4377182ac2e5adfe16be3b3c81981a5ecddab014184de72ae1e522f04a77602
Referenced In Project/Scope: spotbugs-maven-plugin:provided
maven-model-builder-3.9.9.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven/maven-core@3.9.9

Identifiers

maven-plugin-annotations-3.15.1.jar

Description:

Java annotations to use in Mojos

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\plugin-tools\maven-plugin-annotations\3.15.1\maven-plugin-annotations-3.15.1.jar
MD5: 0723da1364961f527fbfce10c8b9c7dd
SHA1: ca287d08819d5d87f3a06b8f065a79eb33c3ecc3
SHA256:b58bcb3a1f362f6e1efa2772064026bb3d4ad92e6f43a1812d8d2886489912f5
Referenced In Project/Scope: spotbugs-maven-plugin:provided
maven-plugin-annotations-3.15.1.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs-maven-plugin@4.8.6.6

Identifiers

maven-plugin-api-3.9.9.jar

Description:

The API for plugins - Mojos - development.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\maven-plugin-api\3.9.9\maven-plugin-api-3.9.9.jar
MD5: 0bf1ae393ffac0c034ce8f3a4b7fc406
SHA1: 7e06aef37b14f8452928e5efaa88bcf2ee8aed02
SHA256:2b491d38db45b0e8eef522e8f7889a3366e546e58b376b07fcb56e34c424e932
Referenced In Project/Scope: spotbugs-maven-plugin:provided
maven-plugin-api-3.9.9.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs-maven-plugin@4.8.6.6

Identifiers

maven-reporting-api-3.1.1.jar

Description:

API to manage report generation.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\reporting\maven-reporting-api\3.1.1\maven-reporting-api-3.1.1.jar
MD5: 1e1e0b2f189c861995e33a2a746501bb
SHA1: 74ca00a13e46d065071cdf6376d7d231e0208916
SHA256:25be6603c97d28fa3dcd122073054271c8fcaf667d220dce7a26a61a6f3cffd1
Referenced In Project/Scope: spotbugs-maven-plugin:compile
maven-reporting-api-3.1.1.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs-maven-plugin@4.8.6.6

Identifiers

maven-reporting-impl-3.2.0.jar

Description:

Abstract classes to manage report generation.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\reporting\maven-reporting-impl\3.2.0\maven-reporting-impl-3.2.0.jar
MD5: 468bb08c4330fd7647405b33edf769be
SHA1: 97ffee6a6c3f81e341f42f641651a37f077759c6
SHA256:28f42c2f49f11dcba6d14ab3e365375442a9ed78ca2ec588e3e1f43455a4a14d
Referenced In Project/Scope: spotbugs-maven-plugin:compile
maven-reporting-impl-3.2.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs-maven-plugin@4.8.6.6

Identifiers

maven-repository-metadata-3.9.9.jar

Description:

Per-directory local and remote repository metadata.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\maven-repository-metadata\3.9.9\maven-repository-metadata-3.9.9.jar
MD5: d341cdcc9abac2d01546301a305f12b3
SHA1: 33a43f0af3371225d1dcaaa20a824df59c692172
SHA256:137c297e6a52d489b76663c82324d54e40f5d498a8fc015c0203fd91df8623b0
Referenced In Project/Scope: spotbugs-maven-plugin:provided
maven-repository-metadata-3.9.9.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven/maven-core@3.9.9

Identifiers

maven-resolver-api-1.9.22.jar

Description:

The application programming interface for the repository system.

License:

"Apache-2.0";link="https://www.apache.org/licenses/LICENSE-2.0.txt"
File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\resolver\maven-resolver-api\1.9.22\maven-resolver-api-1.9.22.jar
MD5: c59d27b3750461be99f8d38e1f503f56
SHA1: 756660687ea077b85be02b019d593ef2758e7db6
SHA256:63f5f665e44a09ef55463b3b91fda0b78ff07dd24b1060d56e79c10b6e32cbfb
Referenced In Project/Scope: spotbugs-maven-plugin:compile
maven-resolver-api-1.9.22.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven/maven-core@3.9.9

Identifiers

maven-resolver-impl-1.9.22.jar

Description:

An implementation of the repository system.

License:

"Apache-2.0";link="https://www.apache.org/licenses/LICENSE-2.0.txt"
File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\resolver\maven-resolver-impl\1.9.22\maven-resolver-impl-1.9.22.jar
MD5: 965f1348220f046c6cbde059c971685d
SHA1: 19b7a728c9000f8db615f64552d95fe74b413617
SHA256:e4dafb8acc13d736377c02d2170d869438dd74b98b860745909d238726babcbb
Referenced In Project/Scope: spotbugs-maven-plugin:provided
maven-resolver-impl-1.9.22.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven/maven-core@3.9.9

Identifiers

maven-resolver-named-locks-1.9.22.jar

Description:

A synchronization utility implementation using Named locks.

License:

"Apache-2.0";link="https://www.apache.org/licenses/LICENSE-2.0.txt"
File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\resolver\maven-resolver-named-locks\1.9.22\maven-resolver-named-locks-1.9.22.jar
MD5: 3d3855f4775bc27f9962f999ea88919b
SHA1: 121433b079aad9be7ed266b19f2122eeb0e2d111
SHA256:0685f29ec3b548d9b6917c527f13c667685a3394b955aaa5b25d0559818b7fc5
Referenced In Project/Scope: spotbugs-maven-plugin:provided
maven-resolver-named-locks-1.9.22.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven/maven-core@3.9.9

Identifiers

maven-resolver-provider-3.9.9.jar

Description:

Extensions to Maven Resolver for utilizing Maven POM and repository metadata.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\maven-resolver-provider\3.9.9\maven-resolver-provider-3.9.9.jar
MD5: ea2fccfc4c499dbaa570a26da14050d9
SHA1: ea361822cd25ae6c9153c594aef805e853031224
SHA256:5dea05049c94f952f48ce2bfe0111afdf986acc591fcc11d23fe3b8dcb70291e
Referenced In Project/Scope: spotbugs-maven-plugin:provided
maven-resolver-provider-3.9.9.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven/maven-core@3.9.9

Identifiers

maven-resolver-spi-1.9.22.jar

Description:

The service provider interface for repository system implementations and repository connectors.

License:

"Apache-2.0";link="https://www.apache.org/licenses/LICENSE-2.0.txt"
File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\resolver\maven-resolver-spi\1.9.22\maven-resolver-spi-1.9.22.jar
MD5: 7ae784f1d4088fff396386ed6966cafc
SHA1: c3101acaa4ec053557028cf1917f1d22112b100d
SHA256:99ad721e4631d9bd0c4f9e29c869672577c66f2a674a5723ce38eff13c75cbfd
Referenced In Project/Scope: spotbugs-maven-plugin:provided
maven-resolver-spi-1.9.22.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven/maven-core@3.9.9

Identifiers

maven-resolver-util-1.4.1.jar

Description:

    A collection of utility classes to ease usage of the repository system.

License:

https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\resolver\maven-resolver-util\1.4.1\maven-resolver-util-1.4.1.jar
MD5: 96e142730857ccda441a5b9baefeed73
SHA1: 3f6d4f4bc3e24b46a776b47ccfeaed9d2ed01549
SHA256:6b2184872fa7cc2ef5a90481b56af9711c15b371e69ab52f0f31bf24e910dd82
Referenced In Project/Scope: spotbugs-maven-plugin:compile
maven-resolver-util-1.4.1.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven.shared/maven-common-artifact-filters@3.4.0

Identifiers

maven-settings-3.9.9.jar

Description:

Maven Settings model.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\maven-settings\3.9.9\maven-settings-3.9.9.jar
MD5: a5eede8fe9b01b7bb3c6dad06a738365
SHA1: a82024d87a107965ae274d944c844c9186ff410d
SHA256:68edf1b510e0d759ec501271a5d05e3a6e425462fbb84126c16e8a6f89abdada
Referenced In Project/Scope: spotbugs-maven-plugin:provided
maven-settings-3.9.9.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven/maven-core@3.9.9

Identifiers

maven-settings-builder-3.9.9.jar

Description:

The effective settings builder, with inheritance and password decryption.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\maven-settings-builder\3.9.9\maven-settings-builder-3.9.9.jar
MD5: 4fb4ae61642d42cba66821d8698a670a
SHA1: 71a9bee9618839ffaf7c0de3b53ac1c408b57ae0
SHA256:094640f3fdce47250cb06968a143f40c4e2f1c22be979c73caac2f49f3c38373
Referenced In Project/Scope: spotbugs-maven-plugin:provided
maven-settings-builder-3.9.9.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven/maven-core@3.9.9

Identifiers

maven-shared-utils-3.4.2.jar

Description:

Shared utilities for use by Maven core and plugins

File Path: C:\Users\Jeremy\.m2\repository\org\apache\maven\shared\maven-shared-utils\3.4.2\maven-shared-utils-3.4.2.jar
MD5: 53a038f77a81cb5816ad2b1c7daa8711
SHA1: bfa28296272a5915b08de9f11f34a94b0a818fd0
SHA256:b613357e1bad4dfc1dead801691c9460f9585fe7c6b466bc25186212d7d18487
Referenced In Project/Scope: spotbugs-maven-plugin:compile
maven-shared-utils-3.4.2.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs-maven-plugin@4.8.6.6

Identifiers

modernizer-maven-annotations-2.9.0.jar

File Path: C:\Users\Jeremy\.m2\repository\org\gaul\modernizer-maven-annotations\2.9.0\modernizer-maven-annotations-2.9.0.jar
MD5: 638a555dc0ff4c996e8a920215fc8ea4
SHA1: 4de00c50ce237cf7a721ffe907e11f0688538b04
SHA256:baeca9a46aae8dbe8075058726389112382bc60be811e70886fbaba57c68502f
Referenced In Project/Scope: spotbugs-maven-plugin:provided
modernizer-maven-annotations-2.9.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs-maven-plugin@4.8.6.6

Identifiers

org.eclipse.sisu.inject-0.9.0.M3.jar

Description:

JSR330-based container; supports classpath scanning, auto-binding, and dynamic auto-wiring

License:

"Eclipse Public License, Version 2.0";link="https://www.eclipse.org/legal/epl-v20.html"
File Path: C:\Users\Jeremy\.m2\repository\org\eclipse\sisu\org.eclipse.sisu.inject\0.9.0.M3\org.eclipse.sisu.inject-0.9.0.M3.jar
MD5: 643a13084e0ac59cdda06319e1b348ea
SHA1: 3665002ba4d16dfa779ef658a63d0608c4bd898b
SHA256:15335c4dcf082f599fb8eddcfb58d6a7e9a9c97de2883c257089a479b9b24522
Referenced In Project/Scope: spotbugs-maven-plugin:provided
org.eclipse.sisu.inject-0.9.0.M3.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven/maven-core@3.9.9

Identifiers

org.eclipse.sisu.plexus-0.9.0.M3.jar

Description:

Plexus-JSR330 adapter; adds Plexus support to the Sisu-Inject container

License:

"Eclipse Public License, Version 2.0";link="https://www.eclipse.org/legal/epl-v20.html"
File Path: C:\Users\Jeremy\.m2\repository\org\eclipse\sisu\org.eclipse.sisu.plexus\0.9.0.M3\org.eclipse.sisu.plexus-0.9.0.M3.jar
MD5: 964e7bc9837b270566f18b87af65f5d7
SHA1: b493c7abcc6e04fa0a6a20d489a3db0395c76f70
SHA256:c99674d3773e26154885661711f0b6d63aa5008f5cc99227a236756d4ad9de5e
Referenced In Project/Scope: spotbugs-maven-plugin:provided
org.eclipse.sisu.plexus-0.9.0.M3.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven/maven-plugin-api@3.9.9

Identifiers

oro-2.0.8.jar

File Path: C:\Users\Jeremy\.m2\repository\oro\oro\2.0.8\oro-2.0.8.jar
MD5: 42e940d5d2d822f4dc04c65053e630ab
SHA1: 5592374f834645c4ae250f4c9fbb314c9369d698
SHA256:e00ccdad5df7eb43fdee44232ef64602bf63807c2d133a7be83ba09fd49af26e
Referenced In Project/Scope: spotbugs-maven-plugin:compile
oro-2.0.8.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven.doxia/doxia-site-renderer@1.11.1

Identifiers

plexus-cipher-2.0.jar

File Path: C:\Users\Jeremy\.m2\repository\org\codehaus\plexus\plexus-cipher\2.0\plexus-cipher-2.0.jar
MD5: 55d612839faf248cbe3e273969c002c2
SHA1: 425ea8e534716b4bff1ea90f39bd76be951d651b
SHA256:9a7f1b5c5a9effd61eadfd8731452a2f76a8e79111fac391ef75ea801bea203a
Referenced In Project/Scope: spotbugs-maven-plugin:provided
plexus-cipher-2.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven/maven-core@3.9.9

Identifiers

plexus-classworlds-2.8.0.jar

Description:

A class loader framework

License:

https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\org\codehaus\plexus\plexus-classworlds\2.8.0\plexus-classworlds-2.8.0.jar
MD5: 92089dee35db6423c2128559238430cb
SHA1: 5d0d8c71b61b38ce127a46702a453f9aa09a4ee2
SHA256:081b40e0eab033cd5ac72d2501bfff4f5fd2a3eef827051111730ea152681c72
Referenced In Project/Scope: spotbugs-maven-plugin:provided
plexus-classworlds-2.8.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven/maven-plugin-api@3.9.9

Identifiers

plexus-component-annotations-2.0.0.jar

Description:

    Plexus Component "Java 5" Annotations, to describe plexus components properties in java sources with
    standard annotations instead of javadoc annotations.

File Path: C:\Users\Jeremy\.m2\repository\org\codehaus\plexus\plexus-component-annotations\2.0.0\plexus-component-annotations-2.0.0.jar
MD5: be18d50372002ba958de0ae4850b18a7
SHA1: 6897b9fa8b67c900b52996f845e2d179eea13441
SHA256:405eef6fc9188241ec88579c3e473f5c8997455c69bcd62e142492aca15106bc
Referenced In Project/Scope: spotbugs-maven-plugin:compile
plexus-component-annotations-2.0.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven.shared/maven-artifact-transfer@0.13.1

Identifiers

plexus-i18n-1.0-beta-10.jar

File Path: C:\Users\Jeremy\.m2\repository\org\codehaus\plexus\plexus-i18n\1.0-beta-10\plexus-i18n-1.0-beta-10.jar
MD5: 7f36c0459c853750c627f682ec7bcf52
SHA1: 27506f59e54cc80b8c28b977c2bcd0478094e0cc
SHA256:b87f25b512ffafcafbf4a05ab943812e9c6915291370c6b46016eb3836886c41
Referenced In Project/Scope: spotbugs-maven-plugin:compile
plexus-i18n-1.0-beta-10.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven.doxia/doxia-site-renderer@1.11.1

Identifiers

plexus-interpolation-1.27.jar

Description:

The Plexus project provides a full software stack for creating and executing software projects.

License:

https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\org\codehaus\plexus\plexus-interpolation\1.27\plexus-interpolation-1.27.jar
MD5: c2edbe0dbc934692794aaeac6006055a
SHA1: 8dc73f4ff5eafcbb7ec035ba54736e828b272533
SHA256:3fb4fb6143fdf964024c3cb738551524b9ea84e5c211cd660c559ad0703e5230
Referenced In Project/Scope: spotbugs-maven-plugin:compile
plexus-interpolation-1.27.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven/maven-core@3.9.9

Identifiers

plexus-resources-1.3.0.jar

Description:

A component to transparently retrieve resources from the filesystem, classpath or internet.

File Path: C:\Users\Jeremy\.m2\repository\org\codehaus\plexus\plexus-resources\1.3.0\plexus-resources-1.3.0.jar
MD5: fcc594fc0965b615ec74294fc30e00dd
SHA1: 0f082cbb44a0fb317e405ed6bfbd1ca983f38e14
SHA256:827baaa0215caedcdca59d091f04480566f7a43996183b9f9871fecff7abebea
Referenced In Project/Scope: spotbugs-maven-plugin:compile
plexus-resources-1.3.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs-maven-plugin@4.8.6.6

Identifiers

plexus-sec-dispatcher-2.0.jar

File Path: C:\Users\Jeremy\.m2\repository\org\codehaus\plexus\plexus-sec-dispatcher\2.0\plexus-sec-dispatcher-2.0.jar
MD5: e68635a721630177ac70173e441336b6
SHA1: f89c5080614ffd0764e49861895dbedde1b47237
SHA256:873139960c4c780176dda580b003a2c4bf82188bdce5bb99234e224ef7acfceb
Referenced In Project/Scope: spotbugs-maven-plugin:provided
plexus-sec-dispatcher-2.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven/maven-core@3.9.9

Identifiers

plexus-utils-4.0.2.jar

Description:

A collection of various utility classes to ease working with strings, files, command lines and
    more.

License:

Apache License, Version 2.0: https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\org\codehaus\plexus\plexus-utils\4.0.2\plexus-utils-4.0.2.jar
MD5: 4cfdd73e436702d319d551a44fcea500
SHA1: 9526a9548b302572f23337fcc217fb4cc713b9c3
SHA256:8957274e75fe2c278b1428dd16a0daeee1dd38152cb6eff816177ac28fccb697
Referenced In Project/Scope: spotbugs-maven-plugin:compile
plexus-utils-4.0.2.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs-maven-plugin@4.8.6.6

Identifiers

plexus-velocity-1.2.jar

File Path: C:\Users\Jeremy\.m2\repository\org\codehaus\plexus\plexus-velocity\1.2\plexus-velocity-1.2.jar
MD5: 7d7805136e8165f53c944612a809f1a6
SHA1: 1331b9d6bbf99ead362c68c2f318ebe5fedda598
SHA256:b4c4a0dbeacad54306a1ae230eff5ab45d58e3ab88c86ab7245d3a0772be57ab
Referenced In Project/Scope: spotbugs-maven-plugin:compile
plexus-velocity-1.2.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven.doxia/doxia-site-renderer@1.11.1

Identifiers

plexus-xml-3.0.1.jar

Description:

A collection of various utility classes to ease working with XML in Maven 3.

File Path: C:\Users\Jeremy\.m2\repository\org\codehaus\plexus\plexus-xml\3.0.1\plexus-xml-3.0.1.jar
MD5: cd868918ebc742350840124ea4422ab0
SHA1: b0e73c21402f03c2765674b8dede21673b3288cf
SHA256:c1a510a87a62bd2d74ac1472dd31c3f9e9b0b8b8568f37d77c0f135415bebd05
Referenced In Project/Scope: spotbugs-maven-plugin:compile
plexus-xml-3.0.1.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs-maven-plugin@4.8.6.6

Identifiers

qdox-1.12.1.jar

Description:

    QDox is a high speed, small footprint parser for extracting class/interface/method definitions from source files
    complete with JavaDoc @tags. It is designed to be used by active code generators or documentation tools.

License:

The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\com\thoughtworks\qdox\qdox\1.12.1\qdox-1.12.1.jar
MD5: 9fb6970f934f8d836ae8e6d133316ab4
SHA1: f7122f6ab1f64bdf9f5970b0e89bfb355e036897
SHA256:21fba22f830e9268f07cf4ab2d99e8181abbdcb0cb91ee0228eb3cb918dcdd1d
Referenced In Project/Scope: spotbugs-maven-plugin:compile
qdox-1.12.1.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.groovy/groovy-docgenerator@4.0.24

Identifiers

slf4j-api-2.0.16.jar

Description:

The slf4j API

License:

http://www.opensource.org/licenses/mit-license.php
File Path: C:\Users\Jeremy\.m2\repository\org\slf4j\slf4j-api\2.0.16\slf4j-api-2.0.16.jar
MD5: c8de8f5d740584cb24b5652cfba8b3c4
SHA1: 0172931663a09a1fa515567af5fbef00897d3c04
SHA256:a12578dde1ba00bd9b816d388a0b879928d00bab3c83c240f7013bf4196c579a
Referenced In Project/Scope: spotbugs-maven-plugin:compile
slf4j-api-2.0.16.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs-maven-plugin@4.8.6.6

Identifiers

slf4j-simple-2.0.16.jar

Description:

SLF4J Simple Provider

License:

http://www.opensource.org/licenses/mit-license.php
File Path: C:\Users\Jeremy\.m2\repository\org\slf4j\slf4j-simple\2.0.16\slf4j-simple-2.0.16.jar
MD5: 58c531dfe60020700c53c45fdf6234bf
SHA1: 56d3d8e59293543780ad35af4ee4a5d9c111a588
SHA256:effc32018658bea09d1e08c7d1060ccad46c086960f583d07dd7ffe9c1172a47
Referenced In Project/Scope: spotbugs-maven-plugin:compile
slf4j-simple-2.0.16.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs-maven-plugin@4.8.6.6

Identifiers

spotbugs-4.8.6.jar

Description:

SpotBugs: Because it's easy!

License:

GNU LESSER GENERAL PUBLIC LICENSE, Version 2.1: https://www.gnu.org/licenses/old-licenses/lgpl-2.1.en.html
File Path: C:\Users\Jeremy\.m2\repository\com\github\spotbugs\spotbugs\4.8.6\spotbugs-4.8.6.jar
MD5: 092b9ff7af7247137292c1b25423f6c4
SHA1: b1687c67916620e1aa732ced1c1262552278412c
SHA256:69fde8787971a26b2372d416015d806bf7df4f847f7121bd5eeef239324cf180
Referenced In Project/Scope: spotbugs-maven-plugin:compile
spotbugs-4.8.6.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs-maven-plugin@4.8.6.6

Identifiers

spotbugs-annotations-4.8.6.jar

Description:

Annotations the SpotBugs tool supports

License:

GNU LESSER GENERAL PUBLIC LICENSE, Version 2.1: https://www.gnu.org/licenses/old-licenses/lgpl-2.1.en.html
File Path: C:\Users\Jeremy\.m2\repository\com\github\spotbugs\spotbugs-annotations\4.8.6\spotbugs-annotations-4.8.6.jar
MD5: 0806b237c67c69869506ce3ced9a722f
SHA1: 1dcffed3e561ed32134a0dff4717f19bc2fdf4d8
SHA256:4548b74a815ed44f5480ca4f06204a8b00809dc7e5f6a825a9edf18f40377b65
Referenced In Project/Scope: spotbugs-maven-plugin:provided
spotbugs-annotations-4.8.6.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs-maven-plugin@4.8.6.6

Identifiers

velocity-1.7.jar

Description:

Apache Velocity is a general purpose template engine.

File Path: C:\Users\Jeremy\.m2\repository\org\apache\velocity\velocity\1.7\velocity-1.7.jar
MD5: 3692dd72f8367cb35fb6280dc2916725
SHA1: 2ceb567b8f3f21118ecdec129fe1271dbc09aa7a
SHA256:ec92dae810034f4b46dbb16ef4364a4013b0efb24a8c5dd67435cae46a290d8e
Referenced In Project/Scope: spotbugs-maven-plugin:compile
velocity-1.7.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven.doxia/doxia-site-renderer@1.11.1

Identifiers

CVE-2020-13936  

An attacker that is able to modify Velocity templates may execute arbitrary Java code or run arbitrary system commands with the same privileges as the account running the Servlet container. This applies to applications that allow untrusted users to upload/modify velocity templates running Apache Velocity Engine versions up to 2.2.
NVD-CWE-noinfo

CVSSv2:
  • Base Score: HIGH (9.0)
  • Vector: /AV:N/AC:L/Au:S/C:C/I:C/A:C
CVSSv3:
  • Base Score: HIGH (8.8)
  • Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:2.8/RC:R/MAV:A

References:

Vulnerable Software & Versions: (show all)

velocity-tools-2.0.jar

Description:

        VelocityTools is an integrated collection of Velocity subprojects
        with the common goal of creating tools and infrastructure to speed and ease
        development of both web and non-web applications using the Velocity template
        engine.

License:

The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\org\apache\velocity\velocity-tools\2.0\velocity-tools-2.0.jar
MD5: 51ed2c6c0103cf3fdbeb9aa5170f5288
SHA1: 69936384de86857018b023a8c56ae0635c56b6a0
SHA256:b174eb36bc48c25dce10571c7d3d5dca4e4c1b3e2e31a92b9ed68fe9dea688d9
Referenced In Project/Scope: spotbugs-maven-plugin:compile
velocity-tools-2.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven.doxia/doxia-site-renderer@1.11.1

Identifiers

CVE-2020-13959  

The default error page for VelocityView in Apache Velocity Tools prior to 3.1 reflects back the vm file that was entered as part of the URL. An attacker can set an XSS payload file as this vm file in the URL which results in this payload being executed. XSS vulnerabilities allow attackers to execute arbitrary JavaScript in the context of the attacked website and the attacked user. This can be abused to steal session cookies, perform requests in the name of the victim or for phishing attacks.
CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

CVSSv2:
  • Base Score: MEDIUM (4.3)
  • Vector: /AV:N/AC:M/Au:N/C:N/I:P/A:N
CVSSv3:
  • Base Score: MEDIUM (6.1)
  • Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N/E:2.8/RC:R/MAV:A

References:

Vulnerable Software & Versions:

xmlresolver-5.2.2-data.jar

File Path: C:\Users\Jeremy\.m2\repository\org\xmlresolver\xmlresolver\5.2.2\xmlresolver-5.2.2-data.jar
MD5: 0e77f628aa613bbe3145c6a24f8973f3
SHA1: 5624ede8b8e374979194acaae9f34cff23b62b3e
SHA256:173904bdbd783ba0fac92c5bcc05da5d09f0ce7eed24346666ea0a239461f9b4
Referenced In Project/Scope: spotbugs-maven-plugin:runtime
xmlresolver-5.2.2-data.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs@4.8.6

Identifiers

xmlresolver-5.2.2.jar

Description:

An XML entity/uri resolver

License:

Apache License version 2.0: https://www.apache.org/licenses/LICENSE-2.0
File Path: C:\Users\Jeremy\.m2\repository\org\xmlresolver\xmlresolver\5.2.2\xmlresolver-5.2.2.jar
MD5: 0de20e8f7acfa5942d78c239d3034deb
SHA1: 152378e04ba01898847bf38fad5023c7d52f0c9d
SHA256:efc92bd7ed32b3e57095e0b3e872051ccfbbdcc980831ef33e89e38161a85222
Referenced In Project/Scope: spotbugs-maven-plugin:runtime
xmlresolver-5.2.2.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs@4.8.6

Identifiers



This report contains data retrieved from the National Vulnerability Database.
This report may contain data retrieved from the CISA Known Exploited Vulnerability Catalog.
This report may contain data retrieved from the Github Advisory Database (via NPM Audit API).
This report may contain data retrieved from RetireJS.
This report may contain data retrieved from the Sonatype OSS Index.