Dependency-Check is an open source tool performing a best effort analysis of 3rd party dependencies;
false positives and false negatives may exist in the analysis performed by the tool. Use of the tool and
the reporting provided constitutes acceptance for use in an AS IS condition, and there are NO warranties,
implied or otherwise, with regard to the analysis or its use. Any use of the tool and the reporting provided
is at the user’s risk. In no event shall the copyright holder or OWASP be held liable for any damages whatsoever
arising out of or in connection with the use of this tool, the analysis performed, or the resulting report.
Scan Information (
show all):
- dependency-check version: 5.2.2
- Report Generated On: Mon, 21 Oct 2019 05:51:01 GMT
- Dependencies Scanned: 8 (8 unique)
- Vulnerable Dependencies: 0
- Vulnerabilities Found: 0
- Vulnerabilities Suppressed: 0
- ...
- NVD CVE Checked: 2019-10-21T05:50:23
- NVD CVE Modified: 2019-10-21T05:01:18
- VersionCheckOn: 2019-10-19T14:26:35
Summary
Display:
Showing Vulnerable Dependencies (click to show all)Dependencies
commons-cli-1.4.jar
Description:
Apache Commons CLI provides a simple API for presenting, processing and validating a command line interface.
License:
https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /builds/sw4j-org/p12breaker/.m2/repository/commons-cli/commons-cli/1.4/commons-cli-1.4.jar
MD5: c966d7e03507c834d5b09b848560174e
SHA1: c51c00206bb913cd8612b24abd9fa98ae89719b1
SHA256:fd3c7c9545a9cdb2051d1f9155c4f76b1e4ac5a57304404a6eedb578ffba7328
Referenced In Project/Scope:p12breaker:compile
Evidence
| Type | Source | Name | Value | Confidence |
|---|
| Vendor | Manifest | Implementation-Vendor-Id | org.apache | Medium |
| Vendor | pom | parent-artifactid | commons-parent | Low |
| Vendor | pom | url | http://commons.apache.org/proper/commons-cli/ | Highest |
| Vendor | file | name | commons-cli | High |
| Vendor | jar | package name | commons | Highest |
| Vendor | Manifest | require-capability | osgi.ee;filter:="(&(osgi.ee=JavaSE)(version=1.5))" | Low |
| Vendor | Manifest | implementation-url | http://commons.apache.org/proper/commons-cli/ | Low |
| Vendor | pom | name | Apache Commons CLI | High |
| Vendor | pom | parent-groupid | org.apache.commons | Medium |
| Vendor | Manifest | specification-vendor | The Apache Software Foundation | Low |
| Vendor | pom | artifactid | commons-cli | Low |
| Vendor | pom | groupid | commons-cli | Highest |
| Vendor | Manifest | implementation-build | tags/cli-1.4-RC1@r1786159; 2017-03-09 13:01:35+0000 | Low |
| Vendor | Manifest | bundle-docurl | http://commons.apache.org/proper/commons-cli/ | Low |
| Vendor | Manifest | bundle-symbolicname | org.apache.commons.cli | Medium |
| Vendor | jar | package name | apache | Highest |
| Vendor | jar | package name | cli | Highest |
| Vendor | Manifest | Implementation-Vendor | The Apache Software Foundation | High |
| Product | file | name | commons-cli | High |
| Product | jar | package name | commons | Highest |
| Product | Manifest | require-capability | osgi.ee;filter:="(&(osgi.ee=JavaSE)(version=1.5))" | Low |
| Product | Manifest | implementation-url | http://commons.apache.org/proper/commons-cli/ | Low |
| Product | pom | name | Apache Commons CLI | High |
| Product | pom | parent-groupid | org.apache.commons | Low |
| Product | pom | url | http://commons.apache.org/proper/commons-cli/ | Medium |
| Product | Manifest | Bundle-Name | Apache Commons CLI | Medium |
| Product | pom | parent-artifactid | commons-parent | Medium |
| Product | Manifest | Implementation-Title | Apache Commons CLI | High |
| Product | Manifest | implementation-build | tags/cli-1.4-RC1@r1786159; 2017-03-09 13:01:35+0000 | Low |
| Product | pom | artifactid | commons-cli | Highest |
| Product | Manifest | specification-title | Apache Commons CLI | Medium |
| Product | pom | groupid | commons-cli | Low |
| Product | Manifest | bundle-docurl | http://commons.apache.org/proper/commons-cli/ | Low |
| Product | Manifest | bundle-symbolicname | org.apache.commons.cli | Medium |
| Product | jar | package name | apache | Highest |
| Product | jar | package name | cli | Highest |
| Version | Manifest | Implementation-Version | 1.4 | High |
| Version | pom | parent-version | 1.4 | Low |
| Version | pom | version | 1.4 | Highest |
| Version | file | version | 1.4 | Highest |
appassembler-booter-2.0.0.jar
File Path: /builds/sw4j-org/p12breaker/.m2/repository/org/codehaus/mojo/appassembler/appassembler-booter/2.0.0/appassembler-booter-2.0.0.jar
MD5: 6de26993f186943fe4f1ff906ee7a045
SHA1: e1afe54b255313ba632ceb5764087f381f2683be
SHA256:059a0e132a5641c98c2ba5d76561aabda97b70dfe8e69b0ddd7b5f757254fbbc
Referenced In Project/Scope:p12breaker:compile
Evidence
| Type | Source | Name | Value | Confidence |
|---|
| Vendor | pom | parent-groupid | org.codehaus.mojo.appassembler | Medium |
| Vendor | jar | package name | mojo | Highest |
| Vendor | jar | package name | booter | Highest |
| Vendor | jar | package name | mojo | Low |
| Vendor | file | name | appassembler-booter | High |
| Vendor | pom | groupid | org.codehaus.mojo.appassembler | Highest |
| Vendor | jar | package name | codehaus | Highest |
| Vendor | pom | groupid | codehaus.mojo.appassembler | Highest |
| Vendor | pom | name | Appassembler :: Generic Bootstrapper | High |
| Vendor | jar | package name | codehaus | Low |
| Vendor | jar | package name | appassembler | Highest |
| Vendor | jar | package name | appassembler | Low |
| Vendor | pom | artifactid | appassembler-booter | Low |
| Vendor | pom | parent-artifactid | appassembler | Low |
| Product | pom | artifactid | appassembler-booter | Highest |
| Product | jar | package name | mojo | Highest |
| Product | jar | package name | booter | Highest |
| Product | jar | package name | mojo | Low |
| Product | pom | parent-artifactid | appassembler | Medium |
| Product | jar | package name | booter | Low |
| Product | file | name | appassembler-booter | High |
| Product | jar | package name | codehaus | Highest |
| Product | pom | parent-groupid | org.codehaus.mojo.appassembler | Low |
| Product | pom | name | Appassembler :: Generic Bootstrapper | High |
| Product | pom | groupid | codehaus.mojo.appassembler | Low |
| Product | jar | package name | appassembler | Highest |
| Product | jar | package name | appassembler | Low |
| Version | pom | version | 2.0.0 | Highest |
| Version | file | version | 2.0.0 | Highest |
appassembler-model-2.0.0.jar
File Path: /builds/sw4j-org/p12breaker/.m2/repository/org/codehaus/mojo/appassembler/appassembler-model/2.0.0/appassembler-model-2.0.0.jar
MD5: 9d45b0e52168f4d3aeb92fb89eb8ca36
SHA1: 85a968c31c7404a0ea8bff050826edd8ba5f5147
SHA256:b4ff6b9acf13fc88990efd656aca2e61da1e6d00baaf270aa6dc842c913ed244
Referenced In Project/Scope:p12breaker:compile
Evidence
| Type | Source | Name | Value | Confidence |
|---|
| Vendor | pom | parent-groupid | org.codehaus.mojo.appassembler | Medium |
| Vendor | jar | package name | mojo | Highest |
| Vendor | jar | package name | mojo | Low |
| Vendor | pom | groupid | org.codehaus.mojo.appassembler | Highest |
| Vendor | file | name | appassembler-model | High |
| Vendor | jar | package name | codehaus | Highest |
| Vendor | pom | groupid | codehaus.mojo.appassembler | Highest |
| Vendor | jar | package name | codehaus | Low |
| Vendor | jar | package name | appassembler | Highest |
| Vendor | jar | package name | model | Highest |
| Vendor | jar | package name | appassembler | Low |
| Vendor | pom | artifactid | appassembler-model | Low |
| Vendor | pom | name | Appassembler :: Model | High |
| Vendor | pom | parent-artifactid | appassembler | Low |
| Product | pom | artifactid | appassembler-model | Highest |
| Product | jar | package name | mojo | Highest |
| Product | jar | package name | mojo | Low |
| Product | pom | parent-artifactid | appassembler | Medium |
| Product | jar | package name | model | Low |
| Product | file | name | appassembler-model | High |
| Product | jar | package name | codehaus | Highest |
| Product | pom | parent-groupid | org.codehaus.mojo.appassembler | Low |
| Product | pom | groupid | codehaus.mojo.appassembler | Low |
| Product | jar | package name | appassembler | Highest |
| Product | jar | package name | model | Highest |
| Product | jar | package name | appassembler | Low |
| Product | pom | name | Appassembler :: Model | High |
| Version | pom | version | 2.0.0 | Highest |
| Version | file | version | 2.0.0 | Highest |
plexus-utils-3.0.24.jar
Description:
A collection of various utility classes to ease working with strings, files, command lines, XML and
more.
File Path: /builds/sw4j-org/p12breaker/.m2/repository/org/codehaus/plexus/plexus-utils/3.0.24/plexus-utils-3.0.24.jar
MD5: fbefd8983c6bb4928c27c680463ff355
SHA1: b4ac9780b37cb1b736eae9fbcef27609b7c911ef
SHA256:83ee748b12d06afb0ad4050a591132b3e8025fbb1990f1ed002e8b73293e69b4
Referenced In Project/Scope:p12breaker:compile
Evidence
| Type | Source | Name | Value | Confidence |
|---|
| Vendor | jar | package name | util | Low |
| Vendor | pom | parent-groupid | org.codehaus.plexus | Medium |
| Vendor | pom | groupid | codehaus.plexus | Highest |
| Vendor | jar | package name | xml | Highest |
| Vendor | pom | groupid | org.codehaus.plexus | Highest |
| Vendor | jar | package name | plexus | Highest |
| Vendor | jar | package name | codehaus | Highest |
| Vendor | file | name | plexus-utils | High |
| Vendor | jar | package name | codehaus | Low |
| Vendor | pom | artifactid | plexus-utils | Low |
| Vendor | jar | package name | plexus | Low |
| Vendor | pom | parent-artifactid | plexus | Low |
| Vendor | pom | name | Plexus Common Utilities | High |
| Product | jar | package name | plexus | Highest |
| Product | jar | package name | codehaus | Highest |
| Product | pom | artifactid | plexus-utils | Highest |
| Product | jar | package name | util | Low |
| Product | file | name | plexus-utils | High |
| Product | pom | groupid | codehaus.plexus | Low |
| Product | jar | package name | plexus | Low |
| Product | pom | parent-groupid | org.codehaus.plexus | Low |
| Product | pom | parent-artifactid | plexus | Medium |
| Product | jar | package name | xml | Highest |
| Product | pom | name | Plexus Common Utilities | High |
| Version | pom | version | 3.0.24 | Highest |
| Version | file | version | 3.0.24 | Highest |
| Version | pom | parent-version | 3.0.24 | Low |
stax-utils-20060502.jar
License:
BSD: https://stax-utils.dev.java.net/source/browse/*checkout*/stax-utils/LICENSE
File Path: /builds/sw4j-org/p12breaker/.m2/repository/net/java/dev/stax-utils/stax-utils/20060502/stax-utils-20060502.jar
MD5: 6af71b7f47537a53c5adf70423a8fbfc
SHA1: 66fad5029732305ab7863c140eafd9de4972dd34
SHA256:ecafb82b24e0960a2ca360a91101c49d59ecd6b597a05e6150e0d2697b3547af
Referenced In Project/Scope:p12breaker:compile
Evidence
| Type | Source | Name | Value | Confidence |
|---|
| Vendor | pom | groupid | net.java.dev.stax-utils | Highest |
| Vendor | jar | package name | javanet | Low |
| Vendor | pom | url | http://stax-utils.dev.java.net/ | Highest |
| Vendor | file | name | stax-utils-20060502 | High |
| Vendor | pom | artifactid | stax-utils | Low |
| Vendor | jar | package name | staxutils | Low |
| Product | pom | groupid | net.java.dev.stax-utils | Low |
| Product | pom | url | http://stax-utils.dev.java.net/ | Medium |
| Product | file | name | stax-utils-20060502 | High |
| Product | pom | artifactid | stax-utils | Highest |
| Product | jar | package name | staxutils | Low |
| Version | file | version | 20060502 | Medium |
| Version | pom | version | 20060502 | Highest |
stax-1.1.1-dev.jar
Description:
StAX is the reference implementation of the StAX API
File Path: /builds/sw4j-org/p12breaker/.m2/repository/stax/stax/1.1.1-dev/stax-1.1.1-dev.jar
MD5: 587a06aa4afd368cc6e692d388e933ca
SHA1: 56a9316906196fa8a35d81b2afcbe0fe072aeb23
SHA256:3b01f2d35ab7eecb4442bae69fb09879ecee1ba44d1e925c8f77557c622f50d0
Referenced In Project/Scope:p12breaker:runtime
Evidence
| Type | Source | Name | Value | Confidence |
|---|
| Vendor | file | name | stax | High |
| Vendor | pom | groupid | stax | Highest |
| Vendor | pom | url | http://stax.codehaus.org/ | Highest |
| Vendor | Manifest | Implementation-Vendor | BEA | High |
| Vendor | pom | artifactid | stax | Low |
| Vendor | Manifest | specification-vendor | JCP-173 | Low |
| Vendor | jar | package name | bea | Highest |
| Vendor | pom | name | StAX | High |
| Product | file | name | stax | High |
| Product | Manifest | specification-title | StAX | Medium |
| Product | pom | url | http://stax.codehaus.org/ | Medium |
| Product | pom | artifactid | stax | Highest |
| Product | Manifest | Implementation-Title | StAX reference implementation | High |
| Product | pom | groupid | stax | Low |
| Product | pom | name | StAX | High |
| Version | pom | version | 1.1.1-dev | Highest |
junit-3.8.1.jar
Description:
JUnit is a regression testing framework written by Erich Gamma and Kent Beck. It is used by the developer who implements unit tests in Java.
License:
Common Public License Version 1.0: http://www.opensource.org/licenses/cpl1.0.txt
File Path: /builds/sw4j-org/p12breaker/.m2/repository/junit/junit/3.8.1/junit-3.8.1.jar
MD5: 1f40fb782a4f2cf78f161d32670f7a3a
SHA1: 99129f16442844f6a4a11ae22fbbee40b14d774f
SHA256:b58e459509e190bed737f3592bc1950485322846cf10e78ded1d065153012d70
Referenced In Project/Scope:p12breaker:runtime
Evidence
| Type | Source | Name | Value | Confidence |
|---|
| Vendor | pom | url | http://junit.org | Highest |
| Vendor | pom | groupid | junit | Highest |
| Vendor | jar | package name | junit | Highest |
| Vendor | jar | package name | framework | Highest |
| Vendor | jar | package name | junit | Low |
| Vendor | pom | organization url | http://www.junit.org | Medium |
| Vendor | file | name | junit | High |
| Vendor | pom | artifactid | junit | Low |
| Vendor | pom | organization name | JUnit | High |
| Vendor | pom | name | JUnit | High |
| Product | pom | artifactid | junit | Highest |
| Product | jar | package name | junit | Highest |
| Product | pom | url | http://junit.org | Medium |
| Product | jar | package name | framework | Highest |
| Product | pom | organization url | http://www.junit.org | Low |
| Product | pom | organization name | JUnit | Low |
| Product | file | name | junit | High |
| Product | pom | groupid | junit | Low |
| Product | pom | name | JUnit | High |
| Version | pom | version | 3.8.1 | Highest |
| Version | file | version | 3.8.1 | Highest |
stax-api-1.0.1.jar
Description:
StAX API is the standard java XML processing API defined by JSR-173
License:
The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /builds/sw4j-org/p12breaker/.m2/repository/stax/stax-api/1.0.1/stax-api-1.0.1.jar
MD5: 7d436a53c64490bee564c576babb36b4
SHA1: 49c100caf72d658aca8e58bd74a4ba90fa2b0d70
SHA256:d1968436fc216c901fb9b82c7e878b50fd1d30091676da95b2edd3a9c0ccf92e
Referenced In Project/Scope:p12breaker:compile
Evidence
| Type | Source | Name | Value | Confidence |
|---|
| Vendor | pom | artifactid | stax-api | Low |
| Vendor | pom | groupid | stax | Highest |
| Vendor | pom | url | http://stax.codehaus.org/ | Highest |
| Vendor | file | name | stax-api | High |
| Vendor | pom | name | StAX API | High |
| Vendor | jar | package name | xml | Highest |
| Vendor | Manifest | specification-vendor | JCP-173 | Low |
| Vendor | Manifest | Implementation-Vendor | JCP | High |
| Product | Manifest | specification-title | StAX | Medium |
| Product | pom | artifactid | stax-api | Highest |
| Product | file | name | stax-api | High |
| Product | pom | url | http://stax.codehaus.org/ | Medium |
| Product | Manifest | Implementation-Title | StAX 1.0 API | High |
| Product | pom | name | StAX API | High |
| Product | jar | package name | xml | Highest |
| Product | pom | groupid | stax | Low |
| Version | pom | version | 1.0.1 | Highest |
| Version | Manifest | Implementation-Version | 1.0.1 | High |
| Version | file | version | 1.0.1 | Highest |