Dependency-Check is an open source tool performing a best effort analysis of 3rd party dependencies;
false positives and false negatives may exist in the analysis performed by the tool. Use of the tool and
the reporting provided constitutes acceptance for use in an AS IS condition, and there are NO warranties,
implied or otherwise, with regard to the analysis or its use. Any use of the tool and the reporting provided
is at the user’s risk. In no event shall the copyright holder or OWASP be held liable for any damages whatsoever
arising out of or in connection with the use of this tool, the analysis performed, or the resulting report.
Scan Information (
show all):
- dependency-check version: 12.1.0
- Report Generated On: Sun, 6 Apr 2025 12:18:40 +0200
- Dependencies Scanned: 11 (9 unique)
- Vulnerable Dependencies: 0
- Vulnerabilities Found: 0
- Vulnerabilities Suppressed: 0
- ...
- NVD API Last Checked: 2025-04-06T11:50:29+02
- NVD API Last Modified: 2025-04-06T09:15:14Z
Summary
Display:
Showing Vulnerable Dependencies (click to show all) attoparser-2.0.7.RELEASE.jar
Description:
Powerful, fast and easy to use HTML and XML parser for Java
License:
The Apache Software License, Version 2.0: https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /var/lib/jenkins/.m2/repository/org/attoparser/attoparser/2.0.7.RELEASE/attoparser-2.0.7.RELEASE.jar
MD5: fd09ceba7061e05460e74e0e1e64f233
SHA1: e5d0e988d9124139d645bb5872b24dfa23e283cc
SHA256:75dd1c045492bff8e1963aabb28bfe903c2064e11e27fe2f0f0aff1ad3d84476
Referenced In Project/Scope: ThymeLeafSimple:compile
attoparser-2.0.7.RELEASE.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.thymeleaf/thymeleaf@3.1.2.RELEASE
Evidence
| Type | Source | Name | Value | Confidence |
|---|
| Vendor | file | name | attoparser | High |
| Vendor | jar | package name | attoparser | Highest |
| Vendor | Manifest | automatic-module-name | attoparser | Medium |
| Vendor | Manifest | build-jdk-spec | 1.8 | Low |
| Vendor | Manifest | bundle-docurl | https://www.attoparser.org | Low |
| Vendor | Manifest | bundle-symbolicname | org.attoparser | Medium |
| Vendor | Manifest | implementation-url | https://www.attoparser.org | Low |
| Vendor | Manifest | Implementation-Vendor | The ATTOPARSER team | High |
| Vendor | Manifest | Implementation-Vendor-Id | org.attoparser | Medium |
| Vendor | Manifest | specification-vendor | The ATTOPARSER team | Low |
| Vendor | pom | artifactid | attoparser | Highest |
| Vendor | pom | artifactid | attoparser | Low |
| Vendor | pom | developer email | daniel.fernandez AT 11thlabs DOT org | Low |
| Vendor | pom | developer id | dfernandez | Medium |
| Vendor | pom | developer name | Daniel Fernandez | Medium |
| Vendor | pom | groupid | org.attoparser | Highest |
| Vendor | pom | name | attoparser | High |
| Vendor | pom | organization name | The ATTOPARSER team | High |
| Vendor | pom | organization url | https://www.attoparser.org | Medium |
| Vendor | pom | url | https://www.attoparser.org | Highest |
| Product | file | name | attoparser | High |
| Product | jar | package name | attoparser | Highest |
| Product | Manifest | automatic-module-name | attoparser | Medium |
| Product | Manifest | build-jdk-spec | 1.8 | Low |
| Product | Manifest | bundle-docurl | https://www.attoparser.org | Low |
| Product | Manifest | Bundle-Name | attoparser | Medium |
| Product | Manifest | bundle-symbolicname | org.attoparser | Medium |
| Product | Manifest | Implementation-Title | attoparser | High |
| Product | Manifest | implementation-url | https://www.attoparser.org | Low |
| Product | Manifest | specification-title | attoparser | Medium |
| Product | pom | artifactid | attoparser | Highest |
| Product | pom | developer email | daniel.fernandez AT 11thlabs DOT org | Low |
| Product | pom | developer id | dfernandez | Low |
| Product | pom | developer name | Daniel Fernandez | Low |
| Product | pom | groupid | org.attoparser | Highest |
| Product | pom | name | attoparser | High |
| Product | pom | organization name | The ATTOPARSER team | Low |
| Product | pom | organization url | https://www.attoparser.org | Low |
| Product | pom | url | https://www.attoparser.org | Medium |
| Version | Manifest | Bundle-Version | 2.0.7.RELEASE | High |
| Version | Manifest | Implementation-Version | 2.0.7.RELEASE | High |
| Version | pom | version | 2.0.7.RELEASE | Highest |
javassist-3.29.0-GA.jar
Description:
Javassist (JAVA programming ASSISTant) makes Java bytecode manipulation
simple. It is a class library for editing bytecodes in Java.
License:
MPL 1.1: http://www.mozilla.org/MPL/MPL-1.1.html
LGPL 2.1: http://www.gnu.org/licenses/lgpl-2.1.html
Apache License 2.0: https://www.apache.org/licenses/LICENSE-2.0
File Path: /var/lib/jenkins/.m2/repository/org/javassist/javassist/3.29.0-GA/javassist-3.29.0-GA.jar
MD5: aefc94eda66e54b96825ffc807cfbafd
SHA1: d3959fa7e00bf04dbe519228a23213d2afb625d8
SHA256:62d4065362e8969ce654f2b5541de1efb5b5bca6c146dbd38a595ea4df64cd31
Referenced In Project/Scope: ThymeLeafSimple:compile
javassist-3.29.0-GA.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.thymeleaf/thymeleaf@3.1.2.RELEASE
Evidence
| Type | Source | Name | Value | Confidence |
|---|
| Vendor | file | name | javassist | High |
| Vendor | jar | package name | bytecode | Highest |
| Vendor | jar | package name | javassist | Highest |
| Vendor | Manifest | bundle-symbolicname | javassist | Medium |
| Vendor | Manifest | specification-vendor | Shigeru Chiba, www.javassist.org | Low |
| Vendor | pom | artifactid | javassist | Highest |
| Vendor | pom | artifactid | javassist | Low |
| Vendor | pom | developer email | adinn@redhat.com | Low |
| Vendor | pom | developer email | chiba@javassist.org | Low |
| Vendor | pom | developer email | kabir.khan@jboss.com | Low |
| Vendor | pom | developer email | smarlow@redhat.com | Low |
| Vendor | pom | developer id | adinn | Medium |
| Vendor | pom | developer id | chiba | Medium |
| Vendor | pom | developer id | kabir.khan@jboss.com | Medium |
| Vendor | pom | developer id | scottmarlow | Medium |
| Vendor | pom | developer name | Andrew Dinn | Medium |
| Vendor | pom | developer name | Kabir Khan | Medium |
| Vendor | pom | developer name | Scott Marlow | Medium |
| Vendor | pom | developer name | Shigeru Chiba | Medium |
| Vendor | pom | developer org | JBoss | Medium |
| Vendor | pom | developer org | The Javassist Project | Medium |
| Vendor | pom | developer org URL | http://www.javassist.org/ | Medium |
| Vendor | pom | developer org URL | http://www.jboss.org/ | Medium |
| Vendor | pom | groupid | org.javassist | Highest |
| Vendor | pom | name | Javassist | High |
| Vendor | pom | organization name | Shigeru Chiba, www.javassist.org | High |
| Vendor | pom | url | http://www.javassist.org/ | Highest |
| Product | file | name | javassist | High |
| Product | jar | package name | bytecode | Highest |
| Product | jar | package name | javassist | Highest |
| Product | Manifest | Bundle-Name | Javassist | Medium |
| Product | Manifest | bundle-symbolicname | javassist | Medium |
| Product | Manifest | specification-title | Javassist | Medium |
| Product | pom | artifactid | javassist | Highest |
| Product | pom | developer email | adinn@redhat.com | Low |
| Product | pom | developer email | chiba@javassist.org | Low |
| Product | pom | developer email | kabir.khan@jboss.com | Low |
| Product | pom | developer email | smarlow@redhat.com | Low |
| Product | pom | developer id | adinn | Low |
| Product | pom | developer id | chiba | Low |
| Product | pom | developer id | kabir.khan@jboss.com | Low |
| Product | pom | developer id | scottmarlow | Low |
| Product | pom | developer name | Andrew Dinn | Low |
| Product | pom | developer name | Kabir Khan | Low |
| Product | pom | developer name | Scott Marlow | Low |
| Product | pom | developer name | Shigeru Chiba | Low |
| Product | pom | developer org | JBoss | Low |
| Product | pom | developer org | The Javassist Project | Low |
| Product | pom | developer org URL | http://www.javassist.org/ | Low |
| Product | pom | developer org URL | http://www.jboss.org/ | Low |
| Product | pom | groupid | org.javassist | Highest |
| Product | pom | name | Javassist | High |
| Product | pom | organization name | Shigeru Chiba, www.javassist.org | Low |
| Product | pom | url | http://www.javassist.org/ | Medium |
| Version | Manifest | specification-version | 3.29.0-GA | High |
| Version | pom | version | 3.29.0-GA | Highest |
log4j-core-2.24.3.jar
Description:
A versatile, industrial-grade, and reference implementation of the Log4j API.
It bundles a rich set of components to assist various use cases:
Appenders targeting files, network sockets, databases, SMTP servers;
Layouts that can render CSV, HTML, JSON, Syslog, etc. formatted outputs;
Filters that can be configured using log event rates, regular expressions, scripts, time, etc.
It contains several extension points to introduce custom components, if needed.License:
Apache-2.0: https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /var/lib/jenkins/.m2/repository/org/apache/logging/log4j/log4j-core/2.24.3/log4j-core-2.24.3.jar
MD5: 3f52ab7782fdd1349bd872b5dcf48bed
SHA1: 7f6a261243ca767c7f38fd4b542bcde626c8894e
SHA256:7eb4084596ae25bd3c61698e48e8d0ab65a9260758884ed5cbb9c6e55c44a56a
Referenced In Project/Scope: ThymeLeafSimple:runtime
log4j-core-2.24.3.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.logging.log4j/log4j-slf4j2-impl@2.24.3
Evidence
| Type | Source | Name | Value | Confidence |
|---|
| Vendor | file | name | log4j-core | High |
| Vendor | jar | package name | apache | Highest |
| Vendor | jar | package name | core | Highest |
| Vendor | jar | package name | log4j | Highest |
| Vendor | jar | package name | logging | Highest |
| Vendor | jar | package name | org | Highest |
| Vendor | Manifest | build-jdk-spec | 17 | Low |
| Vendor | Manifest | bundle-activationpolicy | lazy | Low |
| Vendor | Manifest | bundle-symbolicname | org.apache.logging.log4j.core | Medium |
| Vendor | Manifest | Implementation-Vendor | The Apache Software Foundation | High |
| Vendor | Manifest | multi-release | true | Low |
| Vendor | Manifest | provide-capability | osgi.service;objectClass:List="javax.annotation.processing.Processor";effective:=active,osgi.service;objectClass:List="org.apache.logging.log4j.core.util.ContextDataProvider";effective:=active,osgi.service;objectClass:List="org.apache.logging.log4j.message.ThreadDumpMessage$ThreadInfoFactory";effective:=active,osgi.service;objectClass:List="org.apache.logging.log4j.spi.Provider";effective:=active,osgi.serviceloader;osgi.serviceloader="javax.annotation.processing.Processor";register:="org.apache.logging.log4j.core.config.plugins.processor.PluginProcessor",osgi.serviceloader;osgi.serviceloader="org.apache.logging.log4j.core.util.ContextDataProvider";register:="org.apache.logging.log4j.core.impl.ThreadContextDataProvider",osgi.serviceloader;osgi.serviceloader="org.apache.logging.log4j.message.ThreadDumpMessage$ThreadInfoFactory";register:="org.apache.logging.log4j.core.message.ExtendedThreadInfoFactory",osgi.serviceloader;osgi.serviceloader="org.apache.logging.log4j.spi.Provider";register:="org.apache.logging.log4j.core.impl.Log4jProvider" | Low |
| Vendor | Manifest | specification-vendor | The Apache Software Foundation | Low |
| Vendor | pom | artifactid | log4j-core | Highest |
| Vendor | pom | artifactid | log4j-core | Low |
| Vendor | pom | groupid | org.apache.logging.log4j | Highest |
| Vendor | pom | name | Apache Log4j Core | High |
| Vendor | pom | parent-artifactid | log4j | Low |
| Product | file | name | log4j-core | High |
| Product | jar | package name | apache | Highest |
| Product | jar | package name | core | Highest |
| Product | jar | package name | log4j | Highest |
| Product | jar | package name | logging | Highest |
| Product | jar | package name | org | Highest |
| Product | Manifest | build-jdk-spec | 17 | Low |
| Product | Manifest | bundle-activationpolicy | lazy | Low |
| Product | Manifest | Bundle-Name | Apache Log4j Core | Medium |
| Product | Manifest | bundle-symbolicname | org.apache.logging.log4j.core | Medium |
| Product | Manifest | Implementation-Title | Apache Log4j Core | High |
| Product | Manifest | multi-release | true | Low |
| Product | Manifest | provide-capability | osgi.service;objectClass:List="javax.annotation.processing.Processor";effective:=active,osgi.service;objectClass:List="org.apache.logging.log4j.core.util.ContextDataProvider";effective:=active,osgi.service;objectClass:List="org.apache.logging.log4j.message.ThreadDumpMessage$ThreadInfoFactory";effective:=active,osgi.service;objectClass:List="org.apache.logging.log4j.spi.Provider";effective:=active,osgi.serviceloader;osgi.serviceloader="javax.annotation.processing.Processor";register:="org.apache.logging.log4j.core.config.plugins.processor.PluginProcessor",osgi.serviceloader;osgi.serviceloader="org.apache.logging.log4j.core.util.ContextDataProvider";register:="org.apache.logging.log4j.core.impl.ThreadContextDataProvider",osgi.serviceloader;osgi.serviceloader="org.apache.logging.log4j.message.ThreadDumpMessage$ThreadInfoFactory";register:="org.apache.logging.log4j.core.message.ExtendedThreadInfoFactory",osgi.serviceloader;osgi.serviceloader="org.apache.logging.log4j.spi.Provider";register:="org.apache.logging.log4j.core.impl.Log4jProvider" | Low |
| Product | Manifest | specification-title | Apache Log4j Core | Medium |
| Product | pom | artifactid | log4j-core | Highest |
| Product | pom | groupid | org.apache.logging.log4j | Highest |
| Product | pom | name | Apache Log4j Core | High |
| Product | pom | parent-artifactid | log4j | Medium |
| Version | file | version | 2.24.3 | High |
| Version | Manifest | Bundle-Version | 2.24.3 | High |
| Version | Manifest | Implementation-Version | 2.24.3 | High |
| Version | pom | version | 2.24.3 | Highest |
Related Dependencies
- log4j-api-2.24.3.jar
- File Path: /var/lib/jenkins/.m2/repository/org/apache/logging/log4j/log4j-api/2.24.3/log4j-api-2.24.3.jar
- MD5: d89516699543c5c21be87ee1760695f3
- SHA1: b02c125db8b6d295adf72ae6e71af5d83bce2370
- SHA256: 5b4a0a0cd0e751ded431c162442bdbdd53328d1f8bb2bae5fc1bbeee0f66d80f
- pkg:maven/org.apache.logging.log4j/log4j-api@2.24.3
- log4j-slf4j2-impl-2.24.3.jar
- File Path: /var/lib/jenkins/.m2/repository/org/apache/logging/log4j/log4j-slf4j2-impl/2.24.3/log4j-slf4j2-impl-2.24.3.jar
- MD5: 0ec2df0e6ab3e63e2d7b043bd0478c3f
- SHA1: c3bda2dc612bfc780ad06c5acf5e0ffd55b770e5
- SHA256: cdaac22e40ec30c4096e1ebe8c454c8826c0d1c378d7db5d7b3ad166354b0bd3
- pkg:maven/org.apache.logging.log4j/log4j-slf4j2-impl@2.24.3
lombok-1.18.36.jar
Description:
Spice up your java: Automatic Resource Management, automatic generation of getters, setters, equals, hashCode and toString, and more!
License:
The MIT License: https://projectlombok.org/LICENSE
File Path: /var/lib/jenkins/.m2/repository/org/projectlombok/lombok/1.18.36/lombok-1.18.36.jar
MD5: 92c08153ae16c161c8cc2cc8185d2724
SHA1: 5a30490a6e14977d97d9c73c924c1f1b5311ea95
SHA256:73b6b05b6a2d365b700bab08d30f94de9d336490bc0acce5b6181fef48cbf18e
Referenced In Project/Scope: ThymeLeafSimple:provided
lombok-1.18.36.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.flasby/ThymeLeafSimple@1.0-SNAPSHOT
Evidence
| Type | Source | Name | Value | Confidence |
|---|
| Vendor | file | name | lombok | High |
| Vendor | jar | package name | java | Highest |
| Vendor | jar | package name | lombok | Highest |
| Vendor | jar | package name | tostring | Highest |
| Vendor | Manifest | automatic-module-name | lombok | Medium |
| Vendor | Manifest | can-redefine-classes | true | Low |
| Vendor | pom | artifactid | lombok | Highest |
| Vendor | pom | artifactid | lombok | Low |
| Vendor | pom | developer email | reinier@projectlombok.org | Low |
| Vendor | pom | developer email | roel@projectlombok.org | Low |
| Vendor | pom | developer id | rspilker | Medium |
| Vendor | pom | developer id | rzwitserloot | Medium |
| Vendor | pom | developer name | Reinier Zwitserloot | Medium |
| Vendor | pom | developer name | Roel Spilker | Medium |
| Vendor | pom | groupid | org.projectlombok | Highest |
| Vendor | pom | name | Project Lombok | High |
| Vendor | pom | url | https://projectlombok.org | Highest |
| Product | file | name | lombok | High |
| Product | jar | package name | java | Highest |
| Product | jar | package name | lombok | Highest |
| Product | jar | package name | tostring | Highest |
| Product | Manifest | automatic-module-name | lombok | Medium |
| Product | Manifest | can-redefine-classes | true | Low |
| Product | pom | artifactid | lombok | Highest |
| Product | pom | developer email | reinier@projectlombok.org | Low |
| Product | pom | developer email | roel@projectlombok.org | Low |
| Product | pom | developer id | rspilker | Low |
| Product | pom | developer id | rzwitserloot | Low |
| Product | pom | developer name | Reinier Zwitserloot | Low |
| Product | pom | developer name | Roel Spilker | Low |
| Product | pom | groupid | org.projectlombok | Highest |
| Product | pom | name | Project Lombok | High |
| Product | pom | url | https://projectlombok.org | Medium |
| Version | file | version | 1.18.36 | High |
| Version | Manifest | lombok-version | 1.18.36 | Medium |
| Version | pom | version | 1.18.36 | Highest |
lombok-1.18.36.jar: mavenEcjBootstrapAgent.jar
File Path: /var/lib/jenkins/.m2/repository/org/projectlombok/lombok/1.18.36/lombok-1.18.36.jar/lombok/launch/mavenEcjBootstrapAgent.jar
MD5: 27467519bf9615b24cad3b003c4353a9
SHA1: 37d92e0a726a67883ab94bee27c6f292e6318dcd
SHA256:9566d0706d6245cac3cdd9db6d1d81551aa3e727febcf64452c6db9701c40037
Referenced In Project/Scope: ThymeLeafSimple:provided
Evidence
| Type | Source | Name | Value | Confidence |
|---|
| Vendor | file | name | mavenEcjBootstrapAgent | High |
| Vendor | jar | package name | launch | Low |
| Vendor | jar | package name | lombok | Low |
| Vendor | Manifest | can-redefine-classes | true | Low |
| Product | file | name | mavenEcjBootstrapAgent | High |
| Product | jar | package name | launch | Low |
| Product | Manifest | can-redefine-classes | true | Low |
ognl-3.3.4.jar
Description:
OGNL - Object Graph Navigation Library
License:
The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /var/lib/jenkins/.m2/repository/ognl/ognl/3.3.4/ognl-3.3.4.jar
MD5: 1893dad14f3e7ddd95d211e1d3ca1a0f
SHA1: 1904789bdd96f226ad252a02f230be1015f4462b
SHA256:47fdd450407ff09b57df02f466f9b4c7d32818962d65f9d98e445c8b4d047603
Referenced In Project/Scope: ThymeLeafSimple:compile
ognl-3.3.4.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.thymeleaf/thymeleaf@3.1.2.RELEASE
Evidence
| Type | Source | Name | Value | Confidence |
|---|
| Vendor | file | name | ognl | High |
| Vendor | jar | package name | ognl | Highest |
| Vendor | Manifest | automatic-module-name | ognl | Medium |
| Vendor | Manifest | build-jdk-spec | 1.8 | Low |
| Vendor | pom | artifactid | ognl | Highest |
| Vendor | pom | artifactid | ognl | Low |
| Vendor | pom | developer email | lukaszlenart@apache.org | Low |
| Vendor | pom | developer id | lukaszlenart | Medium |
| Vendor | pom | groupid | ognl | Highest |
| Vendor | pom | name | OGNL - Object Graph Navigation Library | High |
| Vendor | pom | organization name | OpenSymphony | High |
| Vendor | pom | organization url | http://www.opensymphony.com | Medium |
| Vendor | pom | url | jkuhnert/ognl/ | Highest |
| Product | file | name | ognl | High |
| Product | jar | package name | ognl | Highest |
| Product | Manifest | automatic-module-name | ognl | Medium |
| Product | Manifest | build-jdk-spec | 1.8 | Low |
| Product | pom | artifactid | ognl | Highest |
| Product | pom | developer email | lukaszlenart@apache.org | Low |
| Product | pom | developer id | lukaszlenart | Low |
| Product | pom | groupid | ognl | Highest |
| Product | pom | name | OGNL - Object Graph Navigation Library | High |
| Product | pom | organization name | OpenSymphony | Low |
| Product | pom | organization url | http://www.opensymphony.com | Low |
| Product | pom | url | jkuhnert/ognl/ | High |
| Version | file | version | 3.3.4 | High |
| Version | pom | version | 3.3.4 | Highest |
slf4j-api-2.0.17.jar
Description:
The slf4j API
License:
https://opensource.org/license/mit
File Path: /var/lib/jenkins/.m2/repository/org/slf4j/slf4j-api/2.0.17/slf4j-api-2.0.17.jar
MD5: b6480d114a23683498ac3f746f959d2f
SHA1: d9e58ac9c7779ba3bf8142aff6c830617a7fe60f
SHA256:7b751d952061954d5abfed7181c1f645d336091b679891591d63329c622eb832
Referenced In Project/Scope: ThymeLeafSimple:compile
slf4j-api-2.0.17.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.thymeleaf/thymeleaf@3.1.2.RELEASE
Evidence
| Type | Source | Name | Value | Confidence |
|---|
| Vendor | file | name | slf4j-api | High |
| Vendor | jar | package name | slf4j | Highest |
| Vendor | Manifest | build-jdk-spec | 21 | Low |
| Vendor | Manifest | bundle-docurl | http://www.slf4j.org | Low |
| Vendor | Manifest | bundle-symbolicname | slf4j.api | Medium |
| Vendor | Manifest | multi-release | true | Low |
| Vendor | pom | artifactid | slf4j-api | Highest |
| Vendor | pom | artifactid | slf4j-api | Low |
| Vendor | pom | groupid | org.slf4j | Highest |
| Vendor | pom | name | SLF4J API Module | High |
| Vendor | pom | parent-artifactid | slf4j-parent | Low |
| Vendor | pom | url | http://www.slf4j.org | Highest |
| Product | file | name | slf4j-api | High |
| Product | jar | package name | slf4j | Highest |
| Product | Manifest | build-jdk-spec | 21 | Low |
| Product | Manifest | bundle-docurl | http://www.slf4j.org | Low |
| Product | Manifest | Bundle-Name | SLF4J API Module | Medium |
| Product | Manifest | bundle-symbolicname | slf4j.api | Medium |
| Product | Manifest | Implementation-Title | slf4j-api | High |
| Product | Manifest | multi-release | true | Low |
| Product | pom | artifactid | slf4j-api | Highest |
| Product | pom | groupid | org.slf4j | Highest |
| Product | pom | name | SLF4J API Module | High |
| Product | pom | parent-artifactid | slf4j-parent | Medium |
| Product | pom | url | http://www.slf4j.org | Medium |
| Version | file | version | 2.0.17 | High |
| Version | Manifest | Bundle-Version | 2.0.17 | High |
| Version | Manifest | Implementation-Version | 2.0.17 | High |
| Version | pom | version | 2.0.17 | Highest |
thymeleaf-3.1.2.RELEASE.jar
File Path: /var/lib/jenkins/.m2/repository/org/thymeleaf/thymeleaf/3.1.2.RELEASE/thymeleaf-3.1.2.RELEASE.jar
MD5: 4a9b2210cb35b43fb0b8499e17b9c880
SHA1: 273997509a4c7aef86cee0521750140c587d9be2
SHA256:2b3a714be2de349ccb60c65603ae5e8bd7060c7a4f8833485707671e9a862a24
Referenced In Project/Scope: ThymeLeafSimple:compile
thymeleaf-3.1.2.RELEASE.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.flasby/ThymeLeafSimple@1.0-SNAPSHOT
Evidence
| Type | Source | Name | Value | Confidence |
|---|
| Vendor | file | name | thymeleaf | High |
| Vendor | jar | package name | thymeleaf | Highest |
| Vendor | Manifest | automatic-module-name | thymeleaf | Medium |
| Vendor | Manifest | build-jdk-spec | 17 | Low |
| Vendor | Manifest | Implementation-Vendor | Thymeleaf | High |
| Vendor | Manifest | specification-vendor | Thymeleaf | Low |
| Vendor | pom | artifactid | thymeleaf | Highest |
| Vendor | pom | artifactid | thymeleaf | Low |
| Vendor | pom | groupid | org.thymeleaf | Highest |
| Vendor | pom | name | thymeleaf | High |
| Vendor | pom | parent-artifactid | thymeleaf-lib | Low |
| Product | file | name | thymeleaf | High |
| Product | jar | package name | thymeleaf | Highest |
| Product | Manifest | automatic-module-name | thymeleaf | Medium |
| Product | Manifest | build-jdk-spec | 17 | Low |
| Product | Manifest | Implementation-Title | thymeleaf | High |
| Product | Manifest | specification-title | thymeleaf | Medium |
| Product | pom | artifactid | thymeleaf | Highest |
| Product | pom | groupid | org.thymeleaf | Highest |
| Product | pom | name | thymeleaf | High |
| Product | pom | parent-artifactid | thymeleaf-lib | Medium |
| Version | Manifest | Implementation-Version | 3.1.2.RELEASE | High |
| Version | pom | version | 3.1.2.RELEASE | Highest |
unbescape-1.1.6.RELEASE.jar
Description:
Advanced yet easy-to-use escape/unescape library for Java
License:
The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /var/lib/jenkins/.m2/repository/org/unbescape/unbescape/1.1.6.RELEASE/unbescape-1.1.6.RELEASE.jar
MD5: d95ed94e1624e307a1958ee105ccbf39
SHA1: 7b90360afb2b860e09e8347112800d12c12b2a13
SHA256:597cf87d5b1a4f385b9d1cec974b7b483abb3ee85fc5b3f8b62af8e4bec95c2c
Referenced In Project/Scope: ThymeLeafSimple:compile
unbescape-1.1.6.RELEASE.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.thymeleaf/thymeleaf@3.1.2.RELEASE
Evidence
| Type | Source | Name | Value | Confidence |
|---|
| Vendor | file | name | unbescape | High |
| Vendor | jar | package name | java | Highest |
| Vendor | jar | package name | unbescape | Highest |
| Vendor | Manifest | automatic-module-name | unbescape | Medium |
| Vendor | Manifest | bundle-docurl | http://www.unbescape.org | Low |
| Vendor | Manifest | bundle-symbolicname | org.unbescape | Medium |
| Vendor | Manifest | implementation-url | http://www.unbescape.org | Low |
| Vendor | Manifest | Implementation-Vendor | The UNBESCAPE team | High |
| Vendor | Manifest | Implementation-Vendor-Id | org.unbescape | Medium |
| Vendor | Manifest | specification-vendor | The UNBESCAPE team | Low |
| Vendor | pom | artifactid | unbescape | Highest |
| Vendor | pom | artifactid | unbescape | Low |
| Vendor | pom | developer email | daniel.fernandez AT 11thlabs DOT org | Low |
| Vendor | pom | developer id | danielfernandez | Medium |
| Vendor | pom | developer name | Daniel Fernandez | Medium |
| Vendor | pom | groupid | org.unbescape | Highest |
| Vendor | pom | name | unbescape | High |
| Vendor | pom | organization name | The UNBESCAPE team | High |
| Vendor | pom | organization url | http://www.unbescape.org | Medium |
| Vendor | pom | url | http://www.unbescape.org | Highest |
| Product | file | name | unbescape | High |
| Product | jar | package name | java | Highest |
| Product | jar | package name | unbescape | Highest |
| Product | Manifest | automatic-module-name | unbescape | Medium |
| Product | Manifest | bundle-docurl | http://www.unbescape.org | Low |
| Product | Manifest | Bundle-Name | unbescape | Medium |
| Product | Manifest | bundle-symbolicname | org.unbescape | Medium |
| Product | Manifest | Implementation-Title | unbescape | High |
| Product | Manifest | implementation-url | http://www.unbescape.org | Low |
| Product | Manifest | specification-title | unbescape | Medium |
| Product | pom | artifactid | unbescape | Highest |
| Product | pom | developer email | daniel.fernandez AT 11thlabs DOT org | Low |
| Product | pom | developer id | danielfernandez | Low |
| Product | pom | developer name | Daniel Fernandez | Low |
| Product | pom | groupid | org.unbescape | Highest |
| Product | pom | name | unbescape | High |
| Product | pom | organization name | The UNBESCAPE team | Low |
| Product | pom | organization url | http://www.unbescape.org | Low |
| Product | pom | url | http://www.unbescape.org | Medium |
| Version | Manifest | Bundle-Version | 1.1.6.RELEASE | High |
| Version | Manifest | Implementation-Version | 1.1.6.RELEASE | High |
| Version | pom | version | 1.1.6.RELEASE | Highest |