Dependency-Check is an open source tool performing a best effort analysis of 3rd party dependencies;
false positives and false negatives may exist in the analysis performed by the tool. Use of the tool and
the reporting provided constitutes acceptance for use in an AS IS condition, and there are NO warranties,
implied or otherwise, with regard to the analysis or its use. Any use of the tool and the reporting provided
is at the user’s risk. In no event shall the copyright holder or OWASP be held liable for any damages whatsoever
arising out of or in connection with the use of this tool, the analysis performed, or the resulting report.
Scan Information (
show all ):
dependency-check version : 9.0.9Report Generated On : Thu, 15 Feb 2024 23:32:37 GMTDependencies Scanned : 220 (220 unique)Vulnerable Dependencies : 19 Vulnerabilities Found : 31Vulnerabilities Suppressed : 0 ... NVD API Last Checked : 2024-02-15T23:32:22ZNVD API Last Modified : 2024-02-15T23:15:08ZSummary Display:
Showing Vulnerable Dependencies (click to show all) aether-api-1.0.0.v20140518.jarDescription:
The application programming interface for the repository system.
License:
http://www.eclipse.org/legal/epl-v10.html File Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.eclipse.aether/aether-api/1.0.0.v20140518/be68e917f454dcd841865ad7cf9b7615b26a51f7/aether-api-1.0.0.v20140518.jar
MD5: b05ef5410dad83a4e9ba50e08e0dbbf4
SHA1: be68e917f454dcd841865ad7cf9b7615b26a51f7
SHA256: 84b98521684ab22f9528470fa6d8ab68a230e1b211623c989ba7016c306eb773
Referenced In Projects/Scopes: documentation:javadocClasspath maven-plugin-plugin:compileClasspath maven-plugin-plugin:runtimeClasspath aether-api-1.0.0.v20140518.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/io.freefair.gradle/maven-plugin-plugin@8.6 pkg:maven/org.apache.maven.plugins/maven-plugin-plugin@3.11.0 pkg:maven/org.apache.maven.plugin-tools/maven-plugin-tools-annotations@3.11.0 pkg:maven/org.apache.maven.plugin-tools/maven-plugin-tools-annotations@3.11.0 pkg:maven/org.apache.maven.plugins/maven-plugin-plugin@3.11.0 pkg:maven/org.apache.maven.plugin-tools/maven-plugin-tools-generators@3.11.0 pkg:maven/org.apache.maven.plugin-tools/maven-plugin-tools-generators@3.11.0 Evidence Type Source Name Value Confidence Vendor file name aether-api High Vendor gradle artifactid aether-api Highest Vendor gradle groupid org.eclipse.aether Highest Vendor jar package name aether Highest Vendor jar package name eclipse Highest Vendor jar package name repository Highest Vendor Manifest bundle-docurl http://www.eclipse.org/aether/aether-api/ Low Vendor Manifest bundle-requiredexecutionenvironment J2SE-1.5 Low Vendor Manifest bundle-symbolicname org.eclipse.aether.api Medium Vendor pom artifactid aether-api Low Vendor pom groupid org.eclipse.aether Highest Vendor pom name Aether API High Vendor pom parent-artifactid aether Low Product file name aether-api High Product gradle artifactid aether-api Highest Product jar package name aether Highest Product jar package name eclipse Highest Product jar package name repository Highest Product Manifest bundle-docurl http://www.eclipse.org/aether/aether-api/ Low Product Manifest Bundle-Name Aether API Medium Product Manifest bundle-requiredexecutionenvironment J2SE-1.5 Low Product Manifest bundle-symbolicname org.eclipse.aether.api Medium Product pom artifactid aether-api Highest Product pom groupid org.eclipse.aether Highest Product pom name Aether API High Product pom parent-artifactid aether Medium Version file version 1.0.0.v20140518 High Version gradle version 1.0.0.v20140518 Highest Version Manifest Bundle-Version 1.0.0.v20140518 High Version pom version 1.0.0.v20140518 Highest
aether-impl-1.0.0.v20140518.jarDescription:
An implementation of the repository system.
License:
http://www.eclipse.org/legal/epl-v10.html File Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.eclipse.aether/aether-impl/1.0.0.v20140518/a5ee67be2c99dfb95ad61235d749c92ae09c926e/aether-impl-1.0.0.v20140518.jar
MD5: 819d1c095629b2bd9ed0980395c91b7d
SHA1: a5ee67be2c99dfb95ad61235d749c92ae09c926e
SHA256: 9a9b60e685385225f08e662cb9f60d96610b0987f0f47bbf3f0c92df8a897d00
Referenced In Projects/Scopes: documentation:javadocClasspath maven-plugin-plugin:compileClasspath maven-plugin-plugin:runtimeClasspath aether-impl-1.0.0.v20140518.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/io.freefair.gradle/maven-plugin-plugin@8.6 pkg:maven/org.apache.maven.plugins/maven-plugin-plugin@3.11.0 pkg:maven/org.apache.maven.plugin-tools/maven-plugin-tools-annotations@3.11.0 pkg:maven/org.apache.maven.plugin-tools/maven-plugin-tools-annotations@3.11.0 pkg:maven/org.apache.maven.plugins/maven-plugin-plugin@3.11.0 pkg:maven/org.apache.maven.plugin-tools/maven-plugin-tools-generators@3.11.0 pkg:maven/org.apache.maven.plugin-tools/maven-plugin-tools-generators@3.11.0 Evidence Type Source Name Value Confidence Vendor file name aether-impl High Vendor gradle artifactid aether-impl Highest Vendor gradle groupid org.eclipse.aether Highest Vendor jar package name aether Highest Vendor jar package name eclipse Highest Vendor jar package name impl Highest Vendor Manifest bundle-docurl http://www.eclipse.org/aether/aether-impl/ Low Vendor Manifest bundle-requiredexecutionenvironment J2SE-1.5 Low Vendor Manifest bundle-symbolicname org.eclipse.aether.impl Medium Vendor pom artifactid aether-impl Low Vendor pom groupid org.eclipse.aether Highest Vendor pom name Aether Implementation High Vendor pom parent-artifactid aether Low Product file name aether-impl High Product gradle artifactid aether-impl Highest Product jar package name aether Highest Product jar package name eclipse Highest Product jar package name impl Highest Product Manifest bundle-docurl http://www.eclipse.org/aether/aether-impl/ Low Product Manifest Bundle-Name Aether Implementation Medium Product Manifest bundle-requiredexecutionenvironment J2SE-1.5 Low Product Manifest bundle-symbolicname org.eclipse.aether.impl Medium Product pom artifactid aether-impl Highest Product pom groupid org.eclipse.aether Highest Product pom name Aether Implementation High Product pom parent-artifactid aether Medium Version file version 1.0.0.v20140518 High Version gradle version 1.0.0.v20140518 Highest Version Manifest Bundle-Version 1.0.0.v20140518 High Version pom version 1.0.0.v20140518 Highest
aether-spi-1.0.0.v20140518.jarDescription:
The service provider interface for repository system implementations and repository connectors.
License:
http://www.eclipse.org/legal/epl-v10.html File Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.eclipse.aether/aether-spi/1.0.0.v20140518/985a9a12b904fb3bafd4dc6b49f6a084845703a1/aether-spi-1.0.0.v20140518.jar
MD5: 51c5870c01f48af3231ce6499464827a
SHA1: 985a9a12b904fb3bafd4dc6b49f6a084845703a1
SHA256: a3266d127a4e9f4aa9c4fa0986e31eec784e866f79112e1840d1667e17c10fb2
Referenced In Projects/Scopes: documentation:javadocClasspath maven-plugin-plugin:compileClasspath maven-plugin-plugin:runtimeClasspath aether-spi-1.0.0.v20140518.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/io.freefair.gradle/maven-plugin-plugin@8.6 pkg:maven/org.apache.maven.plugins/maven-plugin-plugin@3.11.0 pkg:maven/org.apache.maven.plugin-tools/maven-plugin-tools-annotations@3.11.0 pkg:maven/org.apache.maven.plugin-tools/maven-plugin-tools-annotations@3.11.0 pkg:maven/org.apache.maven.plugins/maven-plugin-plugin@3.11.0 pkg:maven/org.apache.maven.plugin-tools/maven-plugin-tools-generators@3.11.0 pkg:maven/org.apache.maven.plugin-tools/maven-plugin-tools-generators@3.11.0 Evidence Type Source Name Value Confidence Vendor file name aether-spi High Vendor gradle artifactid aether-spi Highest Vendor gradle groupid org.eclipse.aether Highest Vendor jar package name aether Highest Vendor jar package name eclipse Highest Vendor jar package name spi Highest Vendor Manifest bundle-docurl http://www.eclipse.org/aether/aether-spi/ Low Vendor Manifest bundle-requiredexecutionenvironment J2SE-1.5 Low Vendor Manifest bundle-symbolicname org.eclipse.aether.spi Medium Vendor pom artifactid aether-spi Low Vendor pom groupid org.eclipse.aether Highest Vendor pom name Aether SPI High Vendor pom parent-artifactid aether Low Product file name aether-spi High Product gradle artifactid aether-spi Highest Product jar package name aether Highest Product jar package name eclipse Highest Product jar package name spi Highest Product Manifest bundle-docurl http://www.eclipse.org/aether/aether-spi/ Low Product Manifest Bundle-Name Aether SPI Medium Product Manifest bundle-requiredexecutionenvironment J2SE-1.5 Low Product Manifest bundle-symbolicname org.eclipse.aether.spi Medium Product pom artifactid aether-spi Highest Product pom groupid org.eclipse.aether Highest Product pom name Aether SPI High Product pom parent-artifactid aether Medium Version file version 1.0.0.v20140518 High Version gradle version 1.0.0.v20140518 Highest Version Manifest Bundle-Version 1.0.0.v20140518 High Version pom version 1.0.0.v20140518 Highest
aether-util-1.0.0.v20140518.jarDescription:
A collection of utility classes to ease usage of the repository system.
License:
http://www.eclipse.org/legal/epl-v10.html File Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.eclipse.aether/aether-util/1.0.0.v20140518/7df5ba98ce8b78985d75fdd8c2981fe69234ef85/aether-util-1.0.0.v20140518.jar
MD5: 08495ee7ecf90f0b528e7d65471532af
SHA1: 7df5ba98ce8b78985d75fdd8c2981fe69234ef85
SHA256: aff0951639837c4e3a4699a421fa79f410032f603f5c6a5bba435e98531f3984
Referenced In Projects/Scopes: documentation:javadocClasspath maven-plugin-plugin:compileClasspath maven-plugin-plugin:runtimeClasspath aether-util-1.0.0.v20140518.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/io.freefair.gradle/maven-plugin-plugin@8.6 pkg:maven/org.apache.maven.plugins/maven-plugin-plugin@3.11.0 pkg:maven/org.apache.maven.plugin-tools/maven-plugin-tools-annotations@3.11.0 pkg:maven/org.apache.maven.plugin-tools/maven-plugin-tools-annotations@3.11.0 pkg:maven/org.apache.maven.plugins/maven-plugin-plugin@3.11.0 pkg:maven/org.apache.maven.plugin-tools/maven-plugin-tools-generators@3.11.0 pkg:maven/org.apache.maven.plugin-tools/maven-plugin-tools-generators@3.11.0 Evidence Type Source Name Value Confidence Vendor file name aether-util High Vendor gradle artifactid aether-util Highest Vendor gradle groupid org.eclipse.aether Highest Vendor jar package name aether Highest Vendor jar package name eclipse Highest Vendor jar package name repository Highest Vendor jar package name util Highest Vendor Manifest bundle-docurl http://www.eclipse.org/aether/aether-util/ Low Vendor Manifest bundle-requiredexecutionenvironment J2SE-1.5 Low Vendor Manifest bundle-symbolicname org.eclipse.aether.util Medium Vendor pom artifactid aether-util Low Vendor pom groupid org.eclipse.aether Highest Vendor pom name Aether Utilities High Vendor pom parent-artifactid aether Low Product file name aether-util High Product gradle artifactid aether-util Highest Product jar package name aether Highest Product jar package name eclipse Highest Product jar package name repository Highest Product jar package name util Highest Product Manifest bundle-docurl http://www.eclipse.org/aether/aether-util/ Low Product Manifest Bundle-Name Aether Utilities Medium Product Manifest bundle-requiredexecutionenvironment J2SE-1.5 Low Product Manifest bundle-symbolicname org.eclipse.aether.util Medium Product pom artifactid aether-util Highest Product pom groupid org.eclipse.aether Highest Product pom name Aether Utilities High Product pom parent-artifactid aether Medium Version file version 1.0.0.v20140518 High Version gradle version 1.0.0.v20140518 Highest Version Manifest Bundle-Version 1.0.0.v20140518 High Version pom version 1.0.0.v20140518 Highest
annotations-13.0.jarDescription:
A set of annotations used for code inspection support and code documentation. License:
The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt File Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.jetbrains/annotations/13.0/919f0dfe192fb4e063e7dacadee7f8bb9a2672a9/annotations-13.0.jar
MD5: f4fb462172517b46b6cd90003508515a
SHA1: 919f0dfe192fb4e063e7dacadee7f8bb9a2672a9
SHA256: ace2a10dc8e2d5fd34925ecac03e4988b2c0f851650c94b8cef49ba1bd111478
Referenced In Projects/Scopes: documentation:javadocClasspath mjml-plugin:kotlinCompilerClasspath mjml-plugin:kotlinCompilerPluginClasspathMain quicktype-plugin:kotlinCompilerPluginClasspathMain maven-plugin-plugin:compileClasspath okhttp-plugin:runtimeClasspath quicktype-plugin:kotlinKlibCommonizerClasspath maven-plugin-plugin:runtimeClasspath okhttp-plugin:compileClasspath quicktype-plugin:runtimeClasspath github-plugin:compileClasspath quicktype-plugin:kotlinBuildToolsApiClasspath quicktype-plugin:kotlinCompilerPluginClasspathTest quicktype-plugin:compileClasspath mjml-plugin:kotlinCompilerPluginClasspathTest github-plugin:runtimeClasspath mjml-plugin:kotlinBuildToolsApiClasspath mjml-plugin:embeddedKotlin maven-plugin:compileClasspath mjml-plugin:compileClasspath maven-plugin:runtimeClasspath quicktype-plugin:kotlinCompilerClasspath mjml-plugin:kotlinKlibCommonizerClasspath annotations-13.0.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.jetbrains.kotlin/kotlin-stdlib@1.9.20 pkg:maven/io.freefair.gradle/okhttp-plugin@8.6 pkg:maven/org.jetbrains.kotlin/kotlin-compiler-embeddable@1.9.20 pkg:maven/org.jetbrains.kotlin/kotlin-stdlib@1.9.20 pkg:maven/org.jetbrains.kotlin/kotlin-reflect@1.9.20 pkg:maven/org.jetbrains.kotlin/kotlin-scripting-compiler-embeddable@1.9.20 pkg:maven/io.freefair.gradle/maven-plugin@8.6 pkg:maven/com.squareup.retrofit2/retrofit@2.9.0 pkg:maven/io.freefair.gradle/github-plugin@8.6 pkg:maven/io.freefair.gradle/maven-plugin@8.6 pkg:maven/org.jetbrains.kotlin/kotlin-build-tools-impl@1.9.20 pkg:maven/org.jetbrains.kotlin/kotlin-klib-commonizer-embeddable@1.9.20 pkg:maven/io.freefair.gradle/quicktype-plugin@8.6 pkg:maven/com.squareup.retrofit2/converter-gson@2.9.0 pkg:maven/com.squareup.okhttp3/okhttp-bom@4.12.0 pkg:maven/com.squareup.okhttp3/logging-interceptor@4.12.0 pkg:maven/org.jetbrains.kotlin/kotlin-reflect@1.9.20 pkg:maven/io.freefair.gradle/maven-plugin@8.6 pkg:maven/org.jetbrains.kotlin/kotlin-stdlib@1.9.20 pkg:maven/org.jetbrains.kotlin/kotlin-scripting-compiler-embeddable@1.9.20 pkg:maven/org.jetbrains.kotlin/kotlin-reflect@1.9.20 pkg:maven/com.squareup.retrofit2/retrofit@2.9.0 pkg:maven/io.freefair.gradle/okhttp-plugin@8.6 pkg:maven/io.freefair.gradle/okhttp-plugin@8.6 pkg:maven/io.freefair.gradle/okhttp-plugin@8.6 pkg:maven/io.freefair.gradle/maven-plugin-plugin@8.6 pkg:maven/org.jetbrains.kotlin/kotlin-klib-commonizer-embeddable@1.9.20 pkg:maven/com.squareup.retrofit2/converter-gson@2.9.0 pkg:maven/org.jetbrains.kotlin/kotlin-scripting-compiler-embeddable@1.9.20 pkg:maven/org.jetbrains.kotlin/kotlin-scripting-compiler-embeddable@1.9.20 pkg:maven/com.squareup.okhttp3/okhttp@4.12.0 pkg:maven/com.squareup.okhttp3/logging-interceptor@4.12.0 pkg:maven/org.jetbrains.kotlin/kotlin-compiler-embeddable@1.9.20 pkg:maven/com.squareup.okhttp3/okhttp@4.12.0 pkg:maven/org.jetbrains.kotlin/kotlin-stdlib@1.9.20 pkg:maven/org.jetbrains.kotlin/kotlin-reflect@1.9.20 pkg:maven/io.freefair.gradle/okhttp-plugin@8.6 pkg:maven/com.squareup.okhttp3/okhttp-bom@4.12.0 pkg:maven/org.jetbrains.kotlin/kotlin-build-tools-impl@1.9.20 Evidence Type Source Name Value Confidence Vendor file name annotations High Vendor gradle artifactid annotations Highest Vendor gradle groupid org.jetbrains Highest Vendor jar package name annotations Highest Vendor jar package name annotations Low Vendor jar package name intellij Highest Vendor jar package name intellij Low Vendor jar package name jetbrains Highest Vendor jar package name lang Low Vendor pom artifactid annotations Low Vendor pom developer id JetBrains Medium Vendor pom developer name JetBrains Team Medium Vendor pom developer org JetBrains Medium Vendor pom developer org URL http://www.jetbrains.com Medium Vendor pom groupid org.jetbrains Highest Vendor pom name IntelliJ IDEA Annotations High Vendor pom url http://www.jetbrains.org Highest Product file name annotations High Product gradle artifactid annotations Highest Product jar package name annotations Highest Product jar package name annotations Low Product jar package name intellij Highest Product jar package name jetbrains Highest Product jar package name lang Low Product pom artifactid annotations Highest Product pom developer id JetBrains Low Product pom developer name JetBrains Team Low Product pom developer org JetBrains Low Product pom developer org URL http://www.jetbrains.com Low Product pom groupid org.jetbrains Highest Product pom name IntelliJ IDEA Annotations High Product pom url http://www.jetbrains.org Medium Version file version 13.0 High Version gradle version 13.0 Highest Version pom version 13.0 Highest
aopalliance-1.0.jarFile Path: /home/runner/.gradle/caches/modules-2/files-2.1/aopalliance/aopalliance/1.0/235ba8b489512805ac13a8f9ea77a1ca5ebe3e8/aopalliance-1.0.jarMD5: 04177054e180d09e3998808efa0401c7SHA1: 0235ba8b489512805ac13a8f9ea77a1ca5ebe3e8SHA256: 0addec670fedcd3f113c5c8091d783280d23f75e3acb841b61a9cdb079376a08Referenced In Projects/Scopes:
documentation:javadocClasspath maven-plugin-plugin:compileClasspath maven-plugin-plugin:runtimeClasspath aopalliance-1.0.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/io.freefair.gradle/maven-plugin-plugin@8.6 pkg:maven/org.apache.maven.plugins/maven-plugin-plugin@3.11.0 pkg:maven/org.apache.maven.plugin-tools/maven-plugin-tools-annotations@3.11.0 pkg:maven/org.apache.maven.plugin-tools/maven-plugin-tools-annotations@3.11.0 pkg:maven/org.apache.maven.plugins/maven-plugin-plugin@3.11.0 pkg:maven/org.apache.maven.plugin-tools/maven-plugin-tools-generators@3.11.0 pkg:maven/org.apache.maven.plugin-tools/maven-plugin-tools-generators@3.11.0 Evidence Type Source Name Value Confidence Vendor file name aopalliance High Vendor gradle artifactid aopalliance Highest Vendor gradle groupid aopalliance Highest Vendor jar package name aopalliance Low Vendor jar package name intercept Low Product file name aopalliance High Product gradle artifactid aopalliance Highest Product jar package name intercept Low Version file name aopalliance Medium Version file version 1.0 High Version gradle version 1.0 Highest
apiguardian-api-1.1.2.jarDescription:
@API Guardian File Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.apiguardian/apiguardian-api/1.1.2/a231e0d844d2721b0fa1b238006d15c6ded6842a/apiguardian-api-1.1.2.jarMD5: 8c7de3f82037fa4a2e8be2a2f13092afSHA1: a231e0d844d2721b0fa1b238006d15c6ded6842aSHA256: b509448ac506d607319f182537f0b35d71007582ec741832a1f111e5b5b70b38Referenced In Project/Scope: test-common:compileClasspathapiguardian-api-1.1.2.jar is in the transitive dependency tree of the listed items. Included by:
pkg:maven/org.junit/junit-bom@5.10.2 pkg:maven/org.junit.jupiter/junit-jupiter-api@5.10.2 Evidence Type Source Name Value Confidence Vendor file name apiguardian-api High Vendor gradle artifactid apiguardian-api Highest Vendor gradle groupid org.apiguardian Highest Vendor jar package name api Low Vendor jar package name apiguardian Highest Vendor jar package name apiguardian Low Vendor Manifest build-date 2021-06-27 Low Vendor Manifest build-revision aa952a1b9d5b4e9cc0af853e2c140c2455b397be Low Vendor Manifest build-time 14:53:10.089+0200 Low Vendor Manifest bundle-docurl https://github.com/apiguardian-team/apiguardian Low Vendor Manifest bundle-symbolicname org.apiguardian.api Medium Vendor Manifest Implementation-Vendor apiguardian.org High Vendor Manifest specification-vendor apiguardian.org Low Product file name apiguardian-api High Product gradle artifactid apiguardian-api Highest Product jar package name api Highest Product jar package name api Low Product jar package name apiguardian Highest Product Manifest build-date 2021-06-27 Low Product Manifest build-revision aa952a1b9d5b4e9cc0af853e2c140c2455b397be Low Product Manifest build-time 14:53:10.089+0200 Low Product Manifest bundle-docurl https://github.com/apiguardian-team/apiguardian Low Product Manifest Bundle-Name apiguardian-api Medium Product Manifest bundle-symbolicname org.apiguardian.api Medium Product Manifest Implementation-Title apiguardian-api High Product Manifest specification-title apiguardian-api Medium Version file version 1.1.2 High Version Manifest Implementation-Version 1.1.2 High
asciidoctorj-2.5.7.jarFile Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.asciidoctor/asciidoctorj/2.5.7/8667fe77c2ffb5270a17389e6fe76ea89b1087e4/asciidoctorj-2.5.7.jarMD5: 0bfe80189a03a3f5ebd255c5e021f460SHA1: 8667fe77c2ffb5270a17389e6fe76ea89b1087e4SHA256: 17deb7ab1ea8e62f43e7c85843b252e684e9000ca539fdbc1a903748623496b2Referenced In Projects/Scopes:
documentation:__$$asciidoctorj$$___r documentation:__$$asciidoctorj_asciidoctor$$__r asciidoctorj-2.5.7.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/io.freefair.gradle/documentation@8.6 pkg:maven/io.freefair.gradle/documentation@8.6 Evidence Type Source Name Value Confidence Vendor file name asciidoctorj High Vendor gradle artifactid asciidoctorj Highest Vendor gradle groupid org.asciidoctor Highest Vendor jar package name asciidoctor Highest Vendor jar package name asciidoctor Low Vendor jar package name jruby Low Vendor Manifest build-date 2022-10-21 Low Vendor Manifest bundle-symbolicname org.asciidoctor.asciidoctorj Medium Vendor Manifest Implementation-Vendor asciidoctor.org High Product file name asciidoctorj High Product gradle artifactid asciidoctorj Highest Product jar package name asciidoctor Highest Product jar package name jruby Low Product Manifest build-date 2022-10-21 Low Product Manifest Bundle-Name asciidoctorj Medium Product Manifest bundle-symbolicname org.asciidoctor.asciidoctorj Medium Product Manifest Implementation-Title asciidoctorj High Version file version 2.5.7 High Version Manifest Implementation-Version 2.5.7 High
asciidoctorj-2.5.7.jar: concurrent_ruby.jarFile Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.asciidoctor/asciidoctorj/2.5.7/8667fe77c2ffb5270a17389e6fe76ea89b1087e4/asciidoctorj-2.5.7.jar/gems/concurrent-ruby-1.1.7/lib/concurrent-ruby/concurrent/concurrent_ruby.jarMD5: 92015e73fc2e79f2dfc4994e6865d15bSHA1: f7535d0a5efb585fd5f49c6d18952e191ed6e2c7SHA256: 7c35aee1609b885f760688733eaa5f4d53f2ef68558f7b19edd6a7179b5e381fReferenced In Projects/Scopes:
documentation:__$$asciidoctorj$$___r documentation:__$$asciidoctorj_asciidoctor$$__r Evidence Type Source Name Value Confidence Vendor file name concurrent_ruby High Vendor jar package name concurrent_ruby Low Vendor jar package name ext Low Vendor jar package name jsr166e Low Product file name concurrent_ruby High Product jar package name ext Low Product jar package name jsr166e Low
asciidoctorj-2.5.7.jar: jruby_cache_backend.jarFile Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.asciidoctor/asciidoctorj/2.5.7/8667fe77c2ffb5270a17389e6fe76ea89b1087e4/asciidoctorj-2.5.7.jar/gems/thread_safe-0.3.6-java/lib/thread_safe/jruby_cache_backend.jarMD5: 7f40e133c093c0e7baddce14ea90114bSHA1: 993f3706b397773d989d6a02fa4e91a9ea8b0a24SHA256: fd26af853ae547cdc0ff51d5875fe8cadc61edd23dc207651012217c4ff4257aReferenced In Projects/Scopes:
documentation:__$$asciidoctorj$$___r documentation:__$$asciidoctorj_asciidoctor$$__r Evidence Type Source Name Value Confidence Vendor file name jruby_cache_backend High Vendor jar package name ext Low Vendor jar package name jruby Low Vendor jar package name thread_safe Low Product file name jruby_cache_backend High Product jar package name ext Low Product jar package name jsr166e Low Product jar package name thread_safe Low
asciidoctorj-api-2.5.7.jarFile Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.asciidoctor/asciidoctorj-api/2.5.7/37ea651d5f1ba2ad3d1c09eb2356b17f35c15bb5/asciidoctorj-api-2.5.7.jarMD5: c81feb8db629e8f92f08d3f97f3e3c44SHA1: 37ea651d5f1ba2ad3d1c09eb2356b17f35c15bb5SHA256: 3fe1e4a778bf2ad73c756d4be5f6b983e4002c407e2e29a04fda7f36e6faa5d5Referenced In Projects/Scopes:
documentation:__$$asciidoctorj$$___r documentation:__$$asciidoctorj_asciidoctor$$__r asciidoctorj-api-2.5.7.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.asciidoctor/asciidoctorj@2.5.7 pkg:maven/org.asciidoctor/asciidoctorj@2.5.7 Evidence Type Source Name Value Confidence Vendor file name asciidoctorj-api High Vendor gradle artifactid asciidoctorj-api Highest Vendor gradle groupid org.asciidoctor Highest Vendor jar package name asciidoctor Highest Vendor jar package name asciidoctor Low Vendor Manifest build-date 2022-10-21 Low Vendor Manifest bundle-symbolicname org.asciidoctor.asciidoctorj-api Medium Vendor Manifest Implementation-Vendor asciidoctor.org High Product file name asciidoctorj-api High Product gradle artifactid asciidoctorj-api Highest Product jar package name asciidoctor Highest Product Manifest build-date 2022-10-21 Low Product Manifest Bundle-Name asciidoctorj-api Medium Product Manifest bundle-symbolicname org.asciidoctor.asciidoctorj-api Medium Product Manifest Implementation-Title asciidoctorj-api High Version file version 2.5.7 High Version Manifest Implementation-Version 2.5.7 High
asm-9.6.jarLicense:
BSD-3-Clause;link=https://asm.ow2.io/LICENSE.txt File Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.ow2.asm/asm/9.6/aa205cf0a06dbd8e04ece91c0b37c3f5d567546a/asm-9.6.jar
MD5: 6f8bccf756f170d4185bb24c8c2d2020
SHA1: aa205cf0a06dbd8e04ece91c0b37c3f5d567546a
SHA256: 3c6fac2424db3d4a853b669f4e3d1d9c3c552235e19a319673f887083c2303a1
Referenced In Projects/Scopes: quicktype-plugin:jacocoAnt code-generator-api:jacocoAnt compress-plugin:jacocoAnt documentation:javadocClasspath maven-plugin-plugin:jacocoAnt maven-plugin-plugin:compileClasspath jacoco-plugin:jacocoAnt maven-plugin-plugin:runtimeClasspath mjml-plugin:jacocoAnt plantuml-plugin:jacocoAnt github-plugin:jacocoAnt embedded-sass-plugin:jacocoAnt test-code-generator:jacocoAnt git-plugin:jacocoAnt okhttp-plugin:jacocoAnt aspectj-plugin:jacocoAnt plugin-utils:jacocoAnt maven-plugin:jacocoAnt settings-plugin:jacocoAnt jacoco-plugin:compileClasspath mkdocs-plugin:jacocoAnt lombok-plugin:jacocoAnt test-common:jacocoAnt code-generator-plugin:jacocoAnt asm-9.6.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.jacoco/org.jacoco.ant@0.8.11 pkg:maven/org.jacoco/org.jacoco.ant@0.8.11 pkg:maven/org.jacoco/org.jacoco.ant@0.8.11 pkg:maven/org.jacoco/org.jacoco.ant@0.8.11 pkg:maven/org.jacoco/org.jacoco.ant@0.8.11 pkg:maven/org.apache.maven.plugins/maven-plugin-plugin@3.11.0 pkg:maven/org.apache.maven.plugin-tools/maven-plugin-tools-annotations@3.11.0 pkg:maven/org.jacoco/org.jacoco.ant@0.8.11 pkg:maven/org.jacoco/org.jacoco.ant@0.8.11 pkg:maven/org.jacoco/org.jacoco.ant@0.8.11 pkg:maven/org.jacoco/org.jacoco.ant@0.8.11 pkg:maven/org.jacoco/org.jacoco.ant@0.8.11 pkg:maven/org.jacoco/org.jacoco.ant@0.8.11 pkg:maven/org.jacoco/org.jacoco.ant@0.8.11 pkg:maven/io.freefair.gradle/maven-plugin-plugin@8.6 pkg:maven/org.jacoco/org.jacoco.ant@0.8.11 pkg:maven/org.jacoco/org.jacoco.ant@0.8.11 pkg:maven/org.jacoco/org.jacoco.ant@0.8.11 pkg:maven/org.jacoco/org.jacoco.ant@0.8.11 pkg:maven/org.jacoco/org.jacoco.ant@0.8.11 pkg:maven/org.jacoco/org.jacoco.ant@0.8.11 pkg:maven/org.jacoco/org.jacoco.ant@0.8.11 pkg:maven/org.jacoco/org.jacoco.ant@0.8.11 pkg:maven/org.apache.maven.plugin-tools/maven-plugin-tools-generators@3.11.0 pkg:maven/org.apache.maven.plugin-tools/maven-plugin-tools-generators@3.11.0 pkg:maven/org.jacoco/org.jacoco.ant@0.8.11 pkg:maven/org.apache.maven.plugin-tools/maven-plugin-tools-annotations@3.11.0 pkg:maven/org.jacoco/org.jacoco.ant@0.8.11 pkg:maven/org.apache.maven.plugins/maven-plugin-plugin@3.11.0 Evidence Type Source Name Value Confidence Vendor file name asm High Vendor gradle artifactid asm Highest Vendor gradle groupid org.ow2.asm Highest Vendor jar package name asm Highest Vendor jar package name asm Low Vendor jar package name objectweb Highest Vendor jar package name objectweb Low Vendor Manifest bundle-docurl http://asm.ow2.org Low Vendor Manifest bundle-requiredexecutionenvironment J2SE-1.5 Low Vendor Manifest bundle-symbolicname org.objectweb.asm Medium Product file name asm High Product gradle artifactid asm Highest Product jar package name asm Highest Product jar package name asm Low Product jar package name objectweb Highest Product Manifest bundle-docurl http://asm.ow2.org Low Product Manifest Bundle-Name org.objectweb.asm Medium Product Manifest bundle-requiredexecutionenvironment J2SE-1.5 Low Product Manifest bundle-symbolicname org.objectweb.asm Medium Product Manifest Implementation-Title ASM, a very small and fast Java bytecode manipulation framework High Version file version 9.6 High Version Manifest Implementation-Version 9.6 High
asm-analysis-9.6.jarLicense:
BSD-3-Clause;link=https://asm.ow2.io/LICENSE.txt File Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.ow2.asm/asm-analysis/9.6/9ce6c7b174bd997fc2552dff47964546bd7a5ec3/asm-analysis-9.6.jar
MD5: 31c84ef7cc893fb278952ae2d6a2674f
SHA1: 9ce6c7b174bd997fc2552dff47964546bd7a5ec3
SHA256: d92832d7c37edc07c60e2559ac6118b31d642e337a6671edcb7ba9fae68edbbb
Referenced In Projects/Scopes: documentation:javadocClasspath maven-plugin-plugin:compileClasspath maven-plugin-plugin:runtimeClasspath asm-analysis-9.6.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/io.freefair.gradle/maven-plugin-plugin@8.6 pkg:maven/org.apache.maven.plugins/maven-plugin-plugin@3.11.0 pkg:maven/org.apache.maven.plugin-tools/maven-plugin-tools-annotations@3.11.0 pkg:maven/org.apache.maven.plugin-tools/maven-plugin-tools-annotations@3.11.0 Evidence Type Source Name Value Confidence Vendor file name asm-analysis High Vendor gradle artifactid asm-analysis Highest Vendor gradle groupid org.ow2.asm Highest Vendor jar package name analysis Highest Vendor jar package name asm Highest Vendor jar package name asm Low Vendor jar package name objectweb Highest Vendor jar package name objectweb Low Vendor jar package name tree Highest Vendor jar package name tree Low Vendor Manifest bundle-docurl http://asm.ow2.org Low Vendor Manifest bundle-requiredexecutionenvironment J2SE-1.5 Low Vendor Manifest bundle-symbolicname org.objectweb.asm.tree.analysis Medium Vendor Manifest module-requires org.objectweb.asm;transitive=true,org.objectweb.asm.tree;transitive=true Low Product file name asm-analysis High Product gradle artifactid asm-analysis Highest Product jar package name analysis Highest Product jar package name analysis Low Product jar package name asm Highest Product jar package name asm Low Product jar package name objectweb Highest Product jar package name tree Highest Product jar package name tree Low Product Manifest bundle-docurl http://asm.ow2.org Low Product Manifest Bundle-Name org.objectweb.asm.tree.analysis Medium Product Manifest bundle-requiredexecutionenvironment J2SE-1.5 Low Product Manifest bundle-symbolicname org.objectweb.asm.tree.analysis Medium Product Manifest Implementation-Title Static code analysis API of ASM, a very small and fast Java bytecode manipulation framework High Product Manifest module-requires org.objectweb.asm;transitive=true,org.objectweb.asm.tree;transitive=true Low Version file version 9.6 High Version Manifest Implementation-Version 9.6 High
asm-commons-9.6.jarLicense:
BSD-3-Clause;link=https://asm.ow2.io/LICENSE.txt File Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.ow2.asm/asm-commons/9.6/f1a9e5508eff490744144565c47326c8648be309/asm-commons-9.6.jar
MD5: 9e317c75534bd1da8c00a67c618ab288
SHA1: f1a9e5508eff490744144565c47326c8648be309
SHA256: 7aefd0d5c0901701c69f7513feda765fb6be33af2ce7aa17c5781fc87657c511
Referenced In Projects/Scopes: quicktype-plugin:jacocoAnt code-generator-api:jacocoAnt compress-plugin:jacocoAnt documentation:javadocClasspath maven-plugin-plugin:jacocoAnt maven-plugin-plugin:compileClasspath jacoco-plugin:jacocoAnt maven-plugin-plugin:runtimeClasspath mjml-plugin:jacocoAnt plantuml-plugin:jacocoAnt github-plugin:jacocoAnt embedded-sass-plugin:jacocoAnt test-code-generator:jacocoAnt git-plugin:jacocoAnt okhttp-plugin:jacocoAnt aspectj-plugin:jacocoAnt plugin-utils:jacocoAnt maven-plugin:jacocoAnt settings-plugin:jacocoAnt jacoco-plugin:compileClasspath mkdocs-plugin:jacocoAnt lombok-plugin:jacocoAnt test-common:jacocoAnt code-generator-plugin:jacocoAnt asm-commons-9.6.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.jacoco/org.jacoco.ant@0.8.11 pkg:maven/org.jacoco/org.jacoco.ant@0.8.11 pkg:maven/org.jacoco/org.jacoco.ant@0.8.11 pkg:maven/org.jacoco/org.jacoco.ant@0.8.11 pkg:maven/org.jacoco/org.jacoco.ant@0.8.11 pkg:maven/org.apache.maven.plugins/maven-plugin-plugin@3.11.0 pkg:maven/org.jacoco/org.jacoco.ant@0.8.11 pkg:maven/org.jacoco/org.jacoco.ant@0.8.11 pkg:maven/org.jacoco/org.jacoco.ant@0.8.11 pkg:maven/org.jacoco/org.jacoco.ant@0.8.11 pkg:maven/org.jacoco/org.jacoco.ant@0.8.11 pkg:maven/org.jacoco/org.jacoco.ant@0.8.11 pkg:maven/org.jacoco/org.jacoco.ant@0.8.11 pkg:maven/io.freefair.gradle/maven-plugin-plugin@8.6 pkg:maven/org.jacoco/org.jacoco.ant@0.8.11 pkg:maven/org.jacoco/org.jacoco.ant@0.8.11 pkg:maven/org.jacoco/org.jacoco.ant@0.8.11 pkg:maven/org.jacoco/org.jacoco.ant@0.8.11 pkg:maven/org.jacoco/org.jacoco.ant@0.8.11 pkg:maven/org.jacoco/org.jacoco.ant@0.8.11 pkg:maven/org.jacoco/org.jacoco.ant@0.8.11 pkg:maven/org.jacoco/org.jacoco.ant@0.8.11 pkg:maven/org.apache.maven.plugin-tools/maven-plugin-tools-generators@3.11.0 pkg:maven/org.apache.maven.plugin-tools/maven-plugin-tools-generators@3.11.0 pkg:maven/org.jacoco/org.jacoco.ant@0.8.11 pkg:maven/org.jacoco/org.jacoco.ant@0.8.11 pkg:maven/org.apache.maven.plugins/maven-plugin-plugin@3.11.0 Evidence Type Source Name Value Confidence Vendor file name asm-commons High Vendor gradle artifactid asm-commons Highest Vendor gradle groupid org.ow2.asm Highest Vendor jar package name asm Highest Vendor jar package name asm Low Vendor jar package name commons Highest Vendor jar package name commons Low Vendor jar package name objectweb Highest Vendor jar package name objectweb Low Vendor Manifest bundle-docurl http://asm.ow2.org Low Vendor Manifest bundle-requiredexecutionenvironment J2SE-1.5 Low Vendor Manifest bundle-symbolicname org.objectweb.asm.commons Medium Vendor Manifest module-requires org.objectweb.asm;transitive=true,org.objectweb.asm.tree;transitive=true Low Product file name asm-commons High Product gradle artifactid asm-commons Highest Product jar package name asm Highest Product jar package name asm Low Product jar package name commons Highest Product jar package name commons Low Product jar package name objectweb Highest Product Manifest bundle-docurl http://asm.ow2.org Low Product Manifest Bundle-Name org.objectweb.asm.commons Medium Product Manifest bundle-requiredexecutionenvironment J2SE-1.5 Low Product Manifest bundle-symbolicname org.objectweb.asm.commons Medium Product Manifest Implementation-Title Usefull class adapters based on ASM, a very small and fast Java bytecode manipulation framework High Product Manifest module-requires org.objectweb.asm;transitive=true,org.objectweb.asm.tree;transitive=true Low Version file version 9.6 High Version Manifest Implementation-Version 9.6 High
asm-tree-9.6.jarLicense:
BSD-3-Clause;link=https://asm.ow2.io/LICENSE.txt File Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.ow2.asm/asm-tree/9.6/c0cdda9d211e965d2a4448aa3fd86110f2f8c2de/asm-tree-9.6.jar
MD5: 6062608f1a98afe1e853d01fa1221a9e
SHA1: c0cdda9d211e965d2a4448aa3fd86110f2f8c2de
SHA256: c43ecf17b539c777e15da7b5b86553b377e2d39a683de6285567d5283888e7ef
Referenced In Projects/Scopes: quicktype-plugin:jacocoAnt code-generator-api:jacocoAnt compress-plugin:jacocoAnt documentation:javadocClasspath maven-plugin-plugin:jacocoAnt maven-plugin-plugin:compileClasspath jacoco-plugin:jacocoAnt maven-plugin-plugin:runtimeClasspath mjml-plugin:jacocoAnt plantuml-plugin:jacocoAnt github-plugin:jacocoAnt embedded-sass-plugin:jacocoAnt test-code-generator:jacocoAnt git-plugin:jacocoAnt okhttp-plugin:jacocoAnt aspectj-plugin:jacocoAnt plugin-utils:jacocoAnt maven-plugin:jacocoAnt settings-plugin:jacocoAnt jacoco-plugin:compileClasspath mkdocs-plugin:jacocoAnt lombok-plugin:jacocoAnt test-common:jacocoAnt code-generator-plugin:jacocoAnt asm-tree-9.6.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.jacoco/org.jacoco.ant@0.8.11 pkg:maven/org.jacoco/org.jacoco.ant@0.8.11 pkg:maven/org.jacoco/org.jacoco.ant@0.8.11 pkg:maven/org.jacoco/org.jacoco.ant@0.8.11 pkg:maven/org.jacoco/org.jacoco.ant@0.8.11 pkg:maven/org.apache.maven.plugins/maven-plugin-plugin@3.11.0 pkg:maven/org.apache.maven.plugin-tools/maven-plugin-tools-annotations@3.11.0 pkg:maven/org.jacoco/org.jacoco.ant@0.8.11 pkg:maven/org.jacoco/org.jacoco.ant@0.8.11 pkg:maven/org.jacoco/org.jacoco.ant@0.8.11 pkg:maven/org.jacoco/org.jacoco.ant@0.8.11 pkg:maven/org.jacoco/org.jacoco.ant@0.8.11 pkg:maven/org.jacoco/org.jacoco.ant@0.8.11 pkg:maven/org.jacoco/org.jacoco.ant@0.8.11 pkg:maven/io.freefair.gradle/maven-plugin-plugin@8.6 pkg:maven/org.jacoco/org.jacoco.ant@0.8.11 pkg:maven/org.jacoco/org.jacoco.ant@0.8.11 pkg:maven/org.jacoco/org.jacoco.ant@0.8.11 pkg:maven/org.jacoco/org.jacoco.ant@0.8.11 pkg:maven/org.jacoco/org.jacoco.ant@0.8.11 pkg:maven/org.jacoco/org.jacoco.ant@0.8.11 pkg:maven/org.jacoco/org.jacoco.ant@0.8.11 pkg:maven/org.jacoco/org.jacoco.ant@0.8.11 pkg:maven/org.apache.maven.plugin-tools/maven-plugin-tools-generators@3.11.0 pkg:maven/org.apache.maven.plugin-tools/maven-plugin-tools-generators@3.11.0 pkg:maven/org.jacoco/org.jacoco.ant@0.8.11 pkg:maven/org.apache.maven.plugin-tools/maven-plugin-tools-annotations@3.11.0 pkg:maven/org.jacoco/org.jacoco.ant@0.8.11 pkg:maven/org.apache.maven.plugins/maven-plugin-plugin@3.11.0 Evidence Type Source Name Value Confidence Vendor file name asm-tree High Vendor gradle artifactid asm-tree Highest Vendor gradle groupid org.ow2.asm Highest Vendor jar package name asm Highest Vendor jar package name asm Low Vendor jar package name objectweb Highest Vendor jar package name objectweb Low Vendor jar package name tree Highest Vendor jar package name tree Low Vendor Manifest bundle-docurl http://asm.ow2.org Low Vendor Manifest bundle-requiredexecutionenvironment J2SE-1.5 Low Vendor Manifest bundle-symbolicname org.objectweb.asm.tree Medium Vendor Manifest module-requires org.objectweb.asm;transitive=true Low Product file name asm-tree High Product gradle artifactid asm-tree Highest Product jar package name asm Highest Product jar package name asm Low Product jar package name objectweb Highest Product jar package name tree Highest Product jar package name tree Low Product Manifest bundle-docurl http://asm.ow2.org Low Product Manifest Bundle-Name org.objectweb.asm.tree Medium Product Manifest bundle-requiredexecutionenvironment J2SE-1.5 Low Product Manifest bundle-symbolicname org.objectweb.asm.tree Medium Product Manifest Implementation-Title Tree API of ASM, a very small and fast Java bytecode manipulation framework High Product Manifest module-requires org.objectweb.asm;transitive=true Low Version file version 9.6 High Version Manifest Implementation-Version 9.6 High
asm-util-9.6.jarLicense:
BSD-3-Clause;link=https://asm.ow2.io/LICENSE.txt File Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.ow2.asm/asm-util/9.6/f77caf84eb93786a749b2baa40865b9613e3eaee/asm-util-9.6.jar
MD5: bd3bc1c176a787373e9a031073c9574b
SHA1: f77caf84eb93786a749b2baa40865b9613e3eaee
SHA256: c635a7402f4aa9bf66b2f4230cea62025a0fe1cd63e8729adefc9b1994fac4c3
Referenced In Projects/Scopes: documentation:javadocClasspath maven-plugin-plugin:compileClasspath maven-plugin-plugin:runtimeClasspath asm-util-9.6.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/io.freefair.gradle/maven-plugin-plugin@8.6 pkg:maven/org.apache.maven.plugins/maven-plugin-plugin@3.11.0 pkg:maven/org.apache.maven.plugin-tools/maven-plugin-tools-annotations@3.11.0 pkg:maven/org.apache.maven.plugin-tools/maven-plugin-tools-annotations@3.11.0 Evidence Type Source Name Value Confidence Vendor file name asm-util High Vendor gradle artifactid asm-util Highest Vendor gradle groupid org.ow2.asm Highest Vendor jar package name asm Highest Vendor jar package name asm Low Vendor jar package name objectweb Highest Vendor jar package name objectweb Low Vendor jar package name util Highest Vendor jar package name util Low Vendor Manifest bundle-docurl http://asm.ow2.org Low Vendor Manifest bundle-requiredexecutionenvironment J2SE-1.5 Low Vendor Manifest bundle-symbolicname org.objectweb.asm.util Medium Vendor Manifest module-requires org.objectweb.asm;transitive=true,org.objectweb.asm.tree;transitive=true,org.objectweb.asm.tree.analysis;transitive=true Low Product file name asm-util High Product gradle artifactid asm-util Highest Product jar package name asm Highest Product jar package name asm Low Product jar package name objectweb Highest Product jar package name util Highest Product jar package name util Low Product Manifest bundle-docurl http://asm.ow2.org Low Product Manifest Bundle-Name org.objectweb.asm.util Medium Product Manifest bundle-requiredexecutionenvironment J2SE-1.5 Low Product Manifest bundle-symbolicname org.objectweb.asm.util Medium Product Manifest Implementation-Title Utilities for ASM, a very small and fast Java bytecode manipulation framework High Product Manifest module-requires org.objectweb.asm;transitive=true,org.objectweb.asm.tree;transitive=true,org.objectweb.asm.tree.analysis;transitive=true Low Version file version 9.6 High Version Manifest Implementation-Version 9.6 High
aspectj-plugin-8.6.jarFile Path: /home/runner/work/gradle-plugins/gradle-plugins/aspectj-plugin/build/libs/aspectj-plugin-8.6.jarMD5: 01693372f81fc68b2bc79d36484ce204SHA1: 91ad3f9d9f044d168604d7e20e9ca3856c061999SHA256: a2efd26de65b6e5fec4e17db1d4d971443e9243404ec3cad8e79c5a00985a47cReferenced In Project/Scope: documentation:javadocClasspathaspectj-plugin-8.6.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/io.freefair.gradle/documentation@8.6
Evidence Type Source Name Value Confidence Vendor file name aspectj-plugin High Vendor gradle artifactid aspectj-plugin Highest Vendor gradle groupid io.freefair.gradle Highest Vendor jar package name freefair Low Vendor jar package name gradle Low Vendor jar package name io Low Product file name aspectj-plugin High Product gradle artifactid aspectj-plugin Highest Product jar package name freefair Low Product jar package name gradle Low Product jar package name plugins Low Version file version 8.6 High Version Manifest Implementation-Version 8.6 High
assertj-core-3.25.3.jarDescription:
Rich and fluent assertions for testing in Java License:
Apache License, Version 2.0: https://www.apache.org/licenses/LICENSE-2.0.txt File Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.assertj/assertj-core/3.25.3/792b270e73aa1cfc28fa135be0b95e69ea451432/assertj-core-3.25.3.jar
MD5: 88258246abdcbf7298b7c3401273e15b
SHA1: 792b270e73aa1cfc28fa135be0b95e69ea451432
SHA256: 7fbdffa1996d43cc08e2576e01008b07e57bbad2b4741aa6c3ab73ce8511130e
Referenced In Projects/Scopes: documentation:javadocClasspath test-common:compileClasspath test-common:runtimeClasspath assertj-core-3.25.3.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/io.freefair.gradle/test-common@8.6 pkg:maven/io.freefair.gradle/test-common@8.6 pkg:maven/io.freefair.gradle/test-common@8.6 Evidence Type Source Name Value Confidence Vendor file name assertj-core High Vendor gradle artifactid assertj-core Highest Vendor gradle groupid org.assertj Highest Vendor jar package name assertions Highest Vendor jar package name assertj Highest Vendor jar package name core Highest Vendor Manifest bundle-developers joel-costigliola;email="joel.costigliola at gmail.com";name="Joel Costigliola";roles="Owner,Developer",scordio;name="Stefano Cordio";roles=Developer,PascalSchumacher;name="Pascal Schumacher";roles=Developer,epeee;name="Erhard Pointl";roles=Developer,croesch;name="Christian Rösch";roles=Developer,VanRoy;name="Julien Roy";roles=Developer,regis1512;name="Régis Pouiller";roles=Developer,fbiville;name="Florent Biville";roles=Developer,Patouche;name="Patrick Allain";roles=Developer Low Vendor Manifest bundle-docurl https://assertj.github.io/doc/#assertj-core Low Vendor Manifest bundle-symbolicname assertj-core Medium Vendor Manifest multi-release true Low Vendor pom artifactid assertj-core Low Vendor pom developer email joel.costigliola at gmail.com Low Vendor pom developer id croesch Medium Vendor pom developer id epeee Medium Vendor pom developer id fbiville Medium Vendor pom developer id joel-costigliola Medium Vendor pom developer id PascalSchumacher Medium Vendor pom developer id Patouche Medium Vendor pom developer id regis1512 Medium Vendor pom developer id scordio Medium Vendor pom developer id VanRoy Medium Vendor pom developer name Christian Rösch Medium Vendor pom developer name Erhard Pointl Medium Vendor pom developer name Florent Biville Medium Vendor pom developer name Joel Costigliola Medium Vendor pom developer name Julien Roy Medium Vendor pom developer name Pascal Schumacher Medium Vendor pom developer name Patrick Allain Medium Vendor pom developer name Régis Pouiller Medium Vendor pom developer name Stefano Cordio Medium Vendor pom groupid org.assertj Highest Vendor pom name AssertJ Core High Vendor pom url https://assertj.github.io/doc/#assertj-core Highest Product file name assertj-core High Product gradle artifactid assertj-core Highest Product jar package name assertions Highest Product jar package name assertj Highest Product jar package name core Highest Product Manifest bundle-developers joel-costigliola;email="joel.costigliola at gmail.com";name="Joel Costigliola";roles="Owner,Developer",scordio;name="Stefano Cordio";roles=Developer,PascalSchumacher;name="Pascal Schumacher";roles=Developer,epeee;name="Erhard Pointl";roles=Developer,croesch;name="Christian Rösch";roles=Developer,VanRoy;name="Julien Roy";roles=Developer,regis1512;name="Régis Pouiller";roles=Developer,fbiville;name="Florent Biville";roles=Developer,Patouche;name="Patrick Allain";roles=Developer Low Product Manifest bundle-docurl https://assertj.github.io/doc/#assertj-core Low Product Manifest Bundle-Name AssertJ Core Medium Product Manifest bundle-symbolicname assertj-core Medium Product Manifest multi-release true Low Product pom artifactid assertj-core Highest Product pom developer email joel.costigliola at gmail.com Low Product pom developer id croesch Low Product pom developer id epeee Low Product pom developer id fbiville Low Product pom developer id joel-costigliola Low Product pom developer id PascalSchumacher Low Product pom developer id Patouche Low Product pom developer id regis1512 Low Product pom developer id scordio Low Product pom developer id VanRoy Low Product pom developer name Christian Rösch Low Product pom developer name Erhard Pointl Low Product pom developer name Florent Biville Low Product pom developer name Joel Costigliola Low Product pom developer name Julien Roy Low Product pom developer name Pascal Schumacher Low Product pom developer name Patrick Allain Low Product pom developer name Régis Pouiller Low Product pom developer name Stefano Cordio Low Product pom groupid org.assertj Highest Product pom name AssertJ Core High Product pom url https://assertj.github.io/doc/#assertj-core Medium Version file version 3.25.3 High Version gradle version 3.25.3 Highest Version Manifest Bundle-Version 3.25.3 High Version pom version 3.25.3 Highest
byte-buddy-1.14.11.jarDescription:
Byte Buddy is a Java library for creating Java classes at run time.
This artifact is a build of Byte Buddy with all ASM dependencies repackaged into its own name space.
License:
https://www.apache.org/licenses/LICENSE-2.0.txt File Path: /home/runner/.gradle/caches/modules-2/files-2.1/net.bytebuddy/byte-buddy/1.14.11/725602eb7c8c56b51b9c21f273f9df5c909d9e7d/byte-buddy-1.14.11.jar
MD5: c28e36075a114b176953fc10a5370be7
SHA1: 725602eb7c8c56b51b9c21f273f9df5c909d9e7d
SHA256: 62ae28187ed2b062813da6a9d567bfee733c341582699b62dd980230729a0313
Referenced In Projects/Scopes: documentation:javadocClasspath test-common:compileClasspath test-common:runtimeClasspath byte-buddy-1.14.11.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.assertj/assertj-core@3.25.3 pkg:maven/org.assertj/assertj-core@3.25.3 pkg:maven/io.freefair.gradle/test-common@8.6 Evidence Type Source Name Value Confidence Vendor file name byte-buddy High Vendor gradle artifactid byte-buddy Highest Vendor gradle groupid net.bytebuddy Highest Vendor jar package name asm Highest Vendor jar package name build Highest Vendor jar package name bytebuddy Highest Vendor jar package name net Highest Vendor Manifest build-jdk-spec 1.8 Low Vendor Manifest bundle-symbolicname net.bytebuddy.byte-buddy Medium Vendor Manifest multi-release true Low Vendor pom artifactid byte-buddy Low Vendor pom groupid net.bytebuddy Highest Vendor pom name Byte Buddy (without dependencies) High Vendor pom parent-artifactid byte-buddy-parent Low Product file name byte-buddy High Product gradle artifactid byte-buddy Highest Product jar package name asm Highest Product jar package name build Highest Product jar package name bytebuddy Highest Product jar package name net Highest Product Manifest build-jdk-spec 1.8 Low Product Manifest Bundle-Name Byte Buddy (without dependencies) Medium Product Manifest bundle-symbolicname net.bytebuddy.byte-buddy Medium Product Manifest multi-release true Low Product pom artifactid byte-buddy Highest Product pom groupid net.bytebuddy Highest Product pom name Byte Buddy (without dependencies) High Product pom parent-artifactid byte-buddy-parent Medium Version file version 1.14.11 High Version gradle version 1.14.11 Highest Version Manifest Bundle-Version 1.14.11 High Version pom version 1.14.11 Highest
cdi-api-1.2.jarDescription:
APIs for CDI (Contexts and Dependency Injection for Java EE) License:
Apache License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.html File Path: /home/runner/.gradle/caches/modules-2/files-2.1/javax.enterprise/cdi-api/1.2/53bba91dc3968adf411e076df020cf207283d7dc/cdi-api-1.2.jar
MD5: 2a8c973affa178efb89e6c50f78d79da
SHA1: 53bba91dc3968adf411e076df020cf207283d7dc
SHA256: cc5ce2cbc62fe96bf59af00bba00bde823a1094462b4364747863510b76c0518
Referenced In Projects/Scopes: documentation:javadocClasspath maven-plugin-plugin:compileClasspath maven-plugin-plugin:runtimeClasspath cdi-api-1.2.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/io.freefair.gradle/maven-plugin-plugin@8.6 pkg:maven/org.apache.maven.plugins/maven-plugin-plugin@3.11.0 pkg:maven/org.apache.maven.plugin-tools/maven-plugin-tools-annotations@3.11.0 pkg:maven/org.apache.maven.plugin-tools/maven-plugin-tools-annotations@3.11.0 pkg:maven/org.apache.maven.plugins/maven-plugin-plugin@3.11.0 pkg:maven/org.apache.maven.plugin-tools/maven-plugin-tools-generators@3.11.0 pkg:maven/org.apache.maven.plugin-tools/maven-plugin-tools-generators@3.11.0 Evidence Type Source Name Value Confidence Vendor file name cdi-api High Vendor gradle artifactid cdi-api Highest Vendor gradle groupid javax.enterprise Highest Vendor jar package name enterprise Highest Vendor jar package name javax Highest Vendor Manifest bundle-docurl http://jboss.org Low Vendor Manifest bundle-symbolicname javax.enterprise.cdi-api Medium Vendor Manifest implementation-url http://cdi-spec.org Low Vendor Manifest Implementation-Vendor JBoss by Red Hat, Inc. High Vendor Manifest specification-vendor JBoss by Red Hat, Inc. Low Vendor pom artifactid cdi-api Low Vendor pom developer email asd[at]redhat[dot]com Low Vendor pom developer email jhartinger[at]redhat[dot]com Low Vendor pom developer email mkouba[at]redhat[dot]com Low Vendor pom developer email pmuir[at]redhat[dot]com Low Vendor pom developer email struberg[at]yahoo[dot]de Low Vendor pom developer id asabotdu Medium Vendor pom developer id jhartinger Medium Vendor pom developer id mkouba Medium Vendor pom developer id mstruberg Medium Vendor pom developer id pmuir Medium Vendor pom developer name Antoine Sabot-Durand Medium Vendor pom developer name Jozef Hartinger Medium Vendor pom developer name Mark Struberg Medium Vendor pom developer name Martin Kouba Medium Vendor pom developer name Pete Muir Medium Vendor pom developer org Red Hat Inc. Medium Vendor pom groupid javax.enterprise Highest Vendor pom name CDI APIs High Vendor pom organization name JBoss by Red Hat, Inc. High Vendor pom organization url http://jboss.org Medium Vendor pom parent-artifactid weld-parent Low Vendor pom parent-groupid org.jboss.weld Medium Vendor pom url http://cdi-spec.org Highest Product file name cdi-api High Product gradle artifactid cdi-api Highest Product jar package name enterprise Highest Product jar package name javax Highest Product Manifest bundle-docurl http://jboss.org Low Product Manifest Bundle-Name CDI APIs Medium Product Manifest bundle-symbolicname javax.enterprise.cdi-api Medium Product Manifest Implementation-Title CDI APIs High Product Manifest implementation-url http://cdi-spec.org Low Product Manifest specification-title CDI APIs Medium Product pom artifactid cdi-api Highest Product pom developer email asd[at]redhat[dot]com Low Product pom developer email jhartinger[at]redhat[dot]com Low Product pom developer email mkouba[at]redhat[dot]com Low Product pom developer email pmuir[at]redhat[dot]com Low Product pom developer email struberg[at]yahoo[dot]de Low Product pom developer id asabotdu Low Product pom developer id jhartinger Low Product pom developer id mkouba Low Product pom developer id mstruberg Low Product pom developer id pmuir Low Product pom developer name Antoine Sabot-Durand Low Product pom developer name Jozef Hartinger Low Product pom developer name Mark Struberg Low Product pom developer name Martin Kouba Low Product pom developer name Pete Muir Low Product pom developer org Red Hat Inc. Low Product pom groupid javax.enterprise Highest Product pom name CDI APIs High Product pom organization name JBoss by Red Hat, Inc. Low Product pom organization url http://jboss.org Low Product pom parent-artifactid weld-parent Medium Product pom parent-groupid org.jboss.weld Medium Product pom url http://cdi-spec.org Medium Version file version 1.2 High Version gradle version 1.2 Highest Version pom parent-version 1.2 Low Version pom version 1.2 Highest
classgraph-4.8.149.jarDescription:
The uber-fast, ultra-lightweight classpath and module scanner for JVM languages. License:
The MIT License (MIT): http://opensource.org/licenses/MIT File Path: /home/runner/.gradle/caches/modules-2/files-2.1/io.github.classgraph/classgraph/4.8.149/4bc2f188bc9001473d4a26ac488c2ae1a3e906de/classgraph-4.8.149.jar
MD5: 7fca2eb70908395af9ac43858b428c35
SHA1: 4bc2f188bc9001473d4a26ac488c2ae1a3e906de
SHA256: ece8abfe1277450a8b95e57fc56991dca1fd42ffefdad88f65fe171ac576f604
Referenced In Projects/Scopes: embedded-sass-plugin:runtimeClasspath embedded-sass-plugin:compileClasspath classgraph-4.8.149.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.webjars/webjars-locator-core@0.55 pkg:maven/org.webjars/webjars-locator-core@0.55 Evidence Type Source Name Value Confidence Vendor file name classgraph High Vendor gradle artifactid classgraph Highest Vendor gradle groupid io.github.classgraph Highest Vendor jar package name classgraph Highest Vendor jar package name github Highest Vendor jar package name io Highest Vendor jar package name scanner Highest Vendor Manifest build-jdk-spec 1.8 Low Vendor Manifest bundle-category Utilities Low Vendor Manifest bundle-symbolicname io.github.classgraph.classgraph Medium Vendor Manifest multi-release true Low Vendor pom artifactid classgraph Low Vendor pom developer email luke.hutch@gmail.com Low Vendor pom developer name Luke Hutchison Medium Vendor pom developer org ClassGraph Medium Vendor pom developer org URL https://github.com/classgraph Medium Vendor pom groupid io.github.classgraph Highest Vendor pom name ClassGraph High Vendor pom url classgraph/classgraph Highest Product file name classgraph High Product gradle artifactid classgraph Highest Product jar package name classgraph Highest Product jar package name github Highest Product jar package name io Highest Product jar package name scanner Highest Product Manifest build-jdk-spec 1.8 Low Product Manifest bundle-category Utilities Low Product Manifest Bundle-Name ClassGraph Medium Product Manifest bundle-symbolicname io.github.classgraph.classgraph Medium Product Manifest Implementation-Title ClassGraph High Product Manifest multi-release true Low Product Manifest specification-title ClassGraph Medium Product pom artifactid classgraph Highest Product pom developer email luke.hutch@gmail.com Low Product pom developer name Luke Hutchison Low Product pom developer org ClassGraph Low Product pom developer org URL https://github.com/classgraph Low Product pom groupid io.github.classgraph Highest Product pom name ClassGraph High Product pom url classgraph/classgraph High Version file version 4.8.149 High Version gradle version 4.8.149 Highest Version Manifest Bundle-Version 4.8.149 High Version Manifest Implementation-Version 4.8.149 High Version pom version 4.8.149 Highest
classgraph-4.8.165.jarDescription:
The uber-fast, ultra-lightweight classpath and module scanner for JVM languages. License:
The MIT License (MIT): http://opensource.org/licenses/MIT File Path: /home/runner/.gradle/caches/modules-2/files-2.1/io.github.classgraph/classgraph/4.8.165/d7237a1fc235030b7b548eb3d671f714da01e50b/classgraph-4.8.165.jar
MD5: 184a77ae08192b53063aa42e540d2d4a
SHA1: d7237a1fc235030b7b548eb3d671f714da01e50b
SHA256: 5258d9218fc6413f4d14218a5a6e784528e349f60f48883b77de74bb478ebafd
Referenced In Projects/Scopes: documentation:javadocClasspath code-generator-plugin:compileClasspath code-generator-plugin:runtimeClasspath classgraph-4.8.165.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/io.freefair.gradle/embedded-sass-plugin@8.6 pkg:maven/io.freefair.gradle/code-generator-plugin@8.6 pkg:maven/io.freefair.gradle/code-generator-plugin@8.6 pkg:maven/io.freefair.gradle/code-generator-plugin@8.6 Evidence Type Source Name Value Confidence Vendor file name classgraph High Vendor gradle artifactid classgraph Highest Vendor gradle groupid io.github.classgraph Highest Vendor jar package name classgraph Highest Vendor jar package name github Highest Vendor jar package name io Highest Vendor jar package name scanner Highest Vendor Manifest build-jdk-spec 11 Low Vendor Manifest bundle-category Utilities Low Vendor Manifest bundle-symbolicname io.github.classgraph.classgraph Medium Vendor Manifest multi-release true Low Vendor pom artifactid classgraph Low Vendor pom developer email luke.hutch@gmail.com Low Vendor pom developer name Luke Hutchison Medium Vendor pom developer org ClassGraph Medium Vendor pom developer org URL https://github.com/classgraph Medium Vendor pom groupid io.github.classgraph Highest Vendor pom name ClassGraph High Vendor pom url classgraph/classgraph Highest Product file name classgraph High Product gradle artifactid classgraph Highest Product jar package name classgraph Highest Product jar package name github Highest Product jar package name io Highest Product jar package name scanner Highest Product Manifest build-jdk-spec 11 Low Product Manifest bundle-category Utilities Low Product Manifest Bundle-Name ClassGraph Medium Product Manifest bundle-symbolicname io.github.classgraph.classgraph Medium Product Manifest Implementation-Title ClassGraph High Product Manifest multi-release true Low Product Manifest specification-title ClassGraph Medium Product pom artifactid classgraph Highest Product pom developer email luke.hutch@gmail.com Low Product pom developer name Luke Hutchison Low Product pom developer org ClassGraph Low Product pom developer org URL https://github.com/classgraph Low Product pom groupid io.github.classgraph Highest Product pom name ClassGraph High Product pom url classgraph/classgraph High Version file version 4.8.165 High Version gradle version 4.8.165 Highest Version Manifest Bundle-Version 4.8.165 High Version Manifest Implementation-Version 4.8.165 High Version pom version 4.8.165 Highest
code-generator-api-8.6.jarFile Path: /home/runner/work/gradle-plugins/gradle-plugins/code-generator-api/build/libs/code-generator-api-8.6.jarMD5: a9bf4c79af632dea3fc9278dfb871b71SHA1: 1c60db1b3908910175c3b42fbae68128b0ce2536SHA256: cf0d967dcfdc8d562d9fbead9a875710add68e72e3b6345df2dfecaa1aa48c85Referenced In Projects/Scopes:
documentation:javadocClasspath code-generator-plugin:compileClasspath test-code-generator:compileClasspath test-code-generator:runtimeClasspath code-generator-plugin:runtimeClasspath code-generator-api-8.6.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/io.freefair.gradle/code-generator-plugin@8.6 pkg:maven/io.freefair.gradle/test-code-generator@8.6 pkg:maven/io.freefair.gradle/documentation@8.6 pkg:maven/io.freefair.gradle/test-code-generator@8.6 pkg:maven/io.freefair.gradle/code-generator-plugin@8.6 pkg:maven/io.freefair.gradle/code-generator-plugin@8.6 pkg:maven/io.freefair.gradle/test-code-generator@8.6 Evidence Type Source Name Value Confidence Vendor file name code-generator-api High Vendor gradle artifactid code-generator-api Highest Vendor gradle groupid io.freefair.gradle Highest Vendor jar package name freefair Low Vendor jar package name gradle Low Vendor jar package name io Low Product file name code-generator-api High Product gradle artifactid code-generator-api Highest Product jar package name codegenerator Low Product jar package name freefair Low Product jar package name gradle Low Version file version 8.6 High Version Manifest Implementation-Version 8.6 High
code-generator-plugin-8.6.jarFile Path: /home/runner/work/gradle-plugins/gradle-plugins/code-generator-plugin/build/libs/code-generator-plugin-8.6.jarMD5: 6d991261a47e83acb25e58bcce61bca0SHA1: 87a9d6516a522d5b7c0e2a817787fba511d5551cSHA256: 196ae5a69ed4a43e8d1ae6719dc3e675fde45835802f3aca447e34e01743710aReferenced In Project/Scope: documentation:javadocClasspathcode-generator-plugin-8.6.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/io.freefair.gradle/documentation@8.6
Evidence Type Source Name Value Confidence Vendor file name code-generator-plugin High Vendor gradle artifactid code-generator-plugin Highest Vendor gradle groupid io.freefair.gradle Highest Vendor jar package name freefair Low Vendor jar package name gradle Low Vendor jar package name io Low Product file name code-generator-plugin High Product gradle artifactid code-generator-plugin Highest Product jar package name freefair Low Product jar package name gradle Low Product jar package name plugin Low Version file version 8.6 High Version Manifest Implementation-Version 8.6 High
commons-codec-1.11.jarDescription:
The Apache Commons Codec package contains simple encoder and decoders for
various formats such as Base64 and Hexadecimal. In addition to these
widely used encoders and decoders, the codec package also maintains a
collection of phonetic encoding utilities.
License:
https://www.apache.org/licenses/LICENSE-2.0.txt File Path: /home/runner/.gradle/caches/modules-2/files-2.1/commons-codec/commons-codec/1.11/3acb4705652e16236558f0f4f2192cc33c3bd189/commons-codec-1.11.jar
MD5: 567159b1ae257a43e1391a8f59d24cfe
SHA1: 3acb4705652e16236558f0f4f2192cc33c3bd189
SHA256: e599d5318e97aa48f42136a2927e6dfa4e8881dff0e6c8e3109ddbbff51d7b7d
Referenced In Projects/Scopes: documentation:javadocClasspath maven-plugin-plugin:compileClasspath maven-plugin-plugin:runtimeClasspath commons-codec-1.11.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/io.freefair.gradle/maven-plugin-plugin@8.6 pkg:maven/org.apache.maven.plugins/maven-plugin-plugin@3.11.0 pkg:maven/org.apache.maven.plugin-tools/maven-plugin-tools-annotations@3.11.0 pkg:maven/org.apache.maven.plugin-tools/maven-plugin-tools-annotations@3.11.0 pkg:maven/org.apache.maven.plugins/maven-plugin-plugin@3.11.0 pkg:maven/org.apache.maven.plugin-tools/maven-plugin-tools-generators@3.11.0 pkg:maven/org.apache.maven.plugin-tools/maven-plugin-tools-generators@3.11.0 Evidence Type Source Name Value Confidence Vendor file name commons-codec High Vendor gradle artifactid commons-codec Highest Vendor gradle groupid commons-codec Highest Vendor jar package name apache Highest Vendor jar package name codec Highest Vendor jar package name commons Highest Vendor jar package name encoder Highest Vendor Manifest automatic-module-name org.apache.commons.codec Medium Vendor Manifest bundle-docurl http://commons.apache.org/proper/commons-codec/ Low Vendor Manifest bundle-symbolicname org.apache.commons.codec Medium Vendor Manifest implementation-url http://commons.apache.org/proper/commons-codec/ Low Vendor Manifest Implementation-Vendor The Apache Software Foundation High Vendor Manifest Implementation-Vendor-Id commons-codec Medium Vendor Manifest specification-vendor The Apache Software Foundation Low Vendor pom artifactid commons-codec Low Vendor pom developer email bayard@apache.org Low Vendor pom developer email dgraham@apache.org Low Vendor pom developer email dlr@finemaltcoding.com Low Vendor pom developer email ggregory@apache.org Low Vendor pom developer email jon@collab.net Low Vendor pom developer email julius@apache.org Low Vendor pom developer email rwaldhoff@apache.org Low Vendor pom developer email sanders@totalsync.com Low Vendor pom developer email tn@apache.org Low Vendor pom developer email tobrien@apache.org Low Vendor pom developer id bayard Medium Vendor pom developer id dgraham Medium Vendor pom developer id dlr Medium Vendor pom developer id ggregory Medium Vendor pom developer id jon Medium Vendor pom developer id julius Medium Vendor pom developer id rwaldhoff Medium Vendor pom developer id sanders Medium Vendor pom developer id tn Medium Vendor pom developer id tobrien Medium Vendor pom developer name Daniel Rall Medium Vendor pom developer name David Graham Medium Vendor pom developer name Gary Gregory Medium Vendor pom developer name Henri Yandell Medium Vendor pom developer name Jon S. Stevens Medium Vendor pom developer name Julius Davies Medium Vendor pom developer name Rodney Waldhoff Medium Vendor pom developer name Scott Sanders Medium Vendor pom developer name Thomas Neidhart Medium Vendor pom developer name Tim OBrien Medium Vendor pom developer org URL http://juliusdavies.ca/ Medium Vendor pom groupid commons-codec Highest Vendor pom name Apache Commons Codec High Vendor pom parent-artifactid commons-parent Low Vendor pom parent-groupid org.apache.commons Medium Vendor pom url http://commons.apache.org/proper/commons-codec/ Highest Product file name commons-codec High Product gradle artifactid commons-codec Highest Product jar package name apache Highest Product jar package name codec Highest Product jar package name commons Highest Product jar package name encoder Highest Product Manifest automatic-module-name org.apache.commons.codec Medium Product Manifest bundle-docurl http://commons.apache.org/proper/commons-codec/ Low Product Manifest Bundle-Name Apache Commons Codec Medium Product Manifest bundle-symbolicname org.apache.commons.codec Medium Product Manifest Implementation-Title Apache Commons Codec High Product Manifest implementation-url http://commons.apache.org/proper/commons-codec/ Low Product Manifest specification-title Apache Commons Codec Medium Product pom artifactid commons-codec Highest Product pom developer email bayard@apache.org Low Product pom developer email dgraham@apache.org Low Product pom developer email dlr@finemaltcoding.com Low Product pom developer email ggregory@apache.org Low Product pom developer email jon@collab.net Low Product pom developer email julius@apache.org Low Product pom developer email rwaldhoff@apache.org Low Product pom developer email sanders@totalsync.com Low Product pom developer email tn@apache.org Low Product pom developer email tobrien@apache.org Low Product pom developer id bayard Low Product pom developer id dgraham Low Product pom developer id dlr Low Product pom developer id ggregory Low Product pom developer id jon Low Product pom developer id julius Low Product pom developer id rwaldhoff Low Product pom developer id sanders Low Product pom developer id tn Low Product pom developer id tobrien Low Product pom developer name Daniel Rall Low Product pom developer name David Graham Low Product pom developer name Gary Gregory Low Product pom developer name Henri Yandell Low Product pom developer name Jon S. Stevens Low Product pom developer name Julius Davies Low Product pom developer name Rodney Waldhoff Low Product pom developer name Scott Sanders Low Product pom developer name Thomas Neidhart Low Product pom developer name Tim OBrien Low Product pom developer org URL http://juliusdavies.ca/ Low Product pom groupid commons-codec Highest Product pom name Apache Commons Codec High Product pom parent-artifactid commons-parent Medium Product pom parent-groupid org.apache.commons Medium Product pom url http://commons.apache.org/proper/commons-codec/ Medium Version file version 1.11 High Version gradle version 1.11 Highest Version Manifest Implementation-Version 1.11 High Version pom parent-version 1.11 Low Version pom version 1.11 Highest
commons-collections-3.2.1.jarDescription:
Types that extend and augment the Java Collections Framework. License:
http://www.apache.org/licenses/LICENSE-2.0.txt File Path: /home/runner/.gradle/caches/modules-2/files-2.1/commons-collections/commons-collections/3.2.1/761ea405b9b37ced573d2df0d1e3a4e0f9edc668/commons-collections-3.2.1.jar
MD5: 13bc641afd7fd95e09b260f69c1e4c91
SHA1: 761ea405b9b37ced573d2df0d1e3a4e0f9edc668
SHA256: 87363a4c94eaabeefd8b930cb059f66b64c9f7d632862f23de3012da7660047b
Referenced In Projects/Scopes: documentation:javadocClasspath maven-plugin-plugin:compileClasspath maven-plugin-plugin:runtimeClasspath commons-collections-3.2.1.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/io.freefair.gradle/maven-plugin-plugin@8.6 pkg:maven/org.apache.maven.plugins/maven-plugin-plugin@3.11.0 pkg:maven/org.apache.maven.plugins/maven-plugin-plugin@3.11.0 pkg:maven/org.apache.maven.plugin-tools/maven-plugin-tools-generators@3.11.0 pkg:maven/org.apache.maven.plugin-tools/maven-plugin-tools-generators@3.11.0 Evidence Type Source Name Value Confidence Vendor file name commons-collections High Vendor gradle artifactid commons-collections Highest Vendor gradle groupid commons-collections Highest Vendor jar package name apache Highest Vendor jar package name collections Highest Vendor jar package name commons Highest Vendor Manifest bundle-docurl http://commons.apache.org/collections/ Low Vendor Manifest bundle-symbolicname org.apache.commons.collections Medium Vendor Manifest Implementation-Vendor The Apache Software Foundation High Vendor Manifest Implementation-Vendor-Id org.apache Medium Vendor Manifest specification-vendor The Apache Software Foundation Low Vendor pom artifactid commons-collections Low Vendor pom developer id amamment Medium Vendor pom developer id bayard Medium Vendor pom developer id craigmcc Medium Vendor pom developer id geirm Medium Vendor pom developer id jcarman Medium Vendor pom developer id matth Medium Vendor pom developer id morgand Medium Vendor pom developer id psteitz Medium Vendor pom developer id rdonkin Medium Vendor pom developer id rwaldhoff Medium Vendor pom developer id scolebourne Medium Vendor pom developer name Arun M. Thomas Medium Vendor pom developer name Craig McClanahan Medium Vendor pom developer name Geir Magnusson Medium Vendor pom developer name Henri Yandell Medium Vendor pom developer name James Carman Medium Vendor pom developer name Matthew Hawthorne Medium Vendor pom developer name Morgan Delagrange Medium Vendor pom developer name Phil Steitz Medium Vendor pom developer name Robert Burrell Donkin Medium Vendor pom developer name Rodney Waldhoff Medium Vendor pom developer name Stephen Colebourne Medium Vendor pom groupid commons-collections Highest Vendor pom name Commons Collections High Vendor pom parent-artifactid commons-parent Low Vendor pom parent-groupid org.apache.commons Medium Vendor pom url http://commons.apache.org/collections/ Highest Product file name commons-collections High Product gradle artifactid commons-collections Highest Product jar package name apache Highest Product jar package name collections Highest Product jar package name commons Highest Product Manifest bundle-docurl http://commons.apache.org/collections/ Low Product Manifest Bundle-Name Commons Collections Medium Product Manifest bundle-symbolicname org.apache.commons.collections Medium Product Manifest Implementation-Title Commons Collections High Product Manifest specification-title Commons Collections Medium Product pom artifactid commons-collections Highest Product pom developer id amamment Low Product pom developer id bayard Low Product pom developer id craigmcc Low Product pom developer id geirm Low Product pom developer id jcarman Low Product pom developer id matth Low Product pom developer id morgand Low Product pom developer id psteitz Low Product pom developer id rdonkin Low Product pom developer id rwaldhoff Low Product pom developer id scolebourne Low Product pom developer name Arun M. Thomas Low Product pom developer name Craig McClanahan Low Product pom developer name Geir Magnusson Low Product pom developer name Henri Yandell Low Product pom developer name James Carman Low Product pom developer name Matthew Hawthorne Low Product pom developer name Morgan Delagrange Low Product pom developer name Phil Steitz Low Product pom developer name Robert Burrell Donkin Low Product pom developer name Rodney Waldhoff Low Product pom developer name Stephen Colebourne Low Product pom groupid commons-collections Highest Product pom name Commons Collections High Product pom parent-artifactid commons-parent Medium Product pom parent-groupid org.apache.commons Medium Product pom url http://commons.apache.org/collections/ Medium Version file version 3.2.1 High Version gradle version 3.2.1 Highest Version Manifest Bundle-Version 3.2.1 High Version Manifest Implementation-Version 3.2.1 High Version pom parent-version 3.2.1 Low Version pom version 3.2.1 Highest
CVE-2015-6420 suppress
Serialized-object interfaces in certain Cisco Collaboration and Social Media; Endpoint Clients and Client Software; Network Application, Service, and Acceleration; Network and Content Security Devices; Network Management and Provisioning; Routing and Switching - Enterprise and Service Provider; Unified Computing; Voice and Unified Communications Devices; Video, Streaming, TelePresence, and Transcoding Devices; Wireless; and Cisco Hosted Services products allow remote attackers to execute arbitrary commands via a crafted serialized Java object, related to the Apache Commons Collections (ACC) library. CWE-502 Deserialization of Untrusted Data
CVSSv2:
Base Score: HIGH (7.5) Vector: /AV:N/AC:L/Au:N/C:P/I:P/A:P References:
Vulnerable Software & Versions: (show all )
commons-compress-1.25.0.jarDescription:
Apache Commons Compress defines an API for working with
compression and archive formats. These include: bzip2, gzip, pack200,
LZMA, XZ, Snappy, traditional Unix Compress, DEFLATE, DEFLATE64, LZ4,
Brotli, Zstandard and ar, cpio, jar, tar, zip, dump, 7z, arj.
License:
https://www.apache.org/licenses/LICENSE-2.0.txt File Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.apache.commons/commons-compress/1.25.0/9d35aec423da6c8a7f93d7e9e1c6b1d9fe14bb5e/commons-compress-1.25.0.jar
MD5: 45f94488e95ceeaf2f401c4f5542b35c
SHA1: 9d35aec423da6c8a7f93d7e9e1c6b1d9fe14bb5e
SHA256: d0ec8014ebbb0749f471803122b21796afddf2e98e194e4374622e5fbaf69f49
Referenced In Projects/Scopes: documentation:javadocClasspath compress-plugin:compileClasspath compress-plugin:runtimeClasspath maven-plugin-plugin:compileClasspath maven-plugin-plugin:runtimeClasspath commons-compress-1.25.0.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/io.freefair.gradle/compress-plugin@8.6 pkg:maven/io.freefair.gradle/maven-plugin-plugin@8.6 pkg:maven/org.apache.maven.plugins/maven-plugin-plugin@3.11.0 pkg:maven/org.apache.maven.plugin-tools/maven-plugin-tools-annotations@3.11.0 pkg:maven/org.apache.maven.plugin-tools/maven-plugin-tools-annotations@3.11.0 pkg:maven/io.freefair.gradle/compress-plugin@8.6 pkg:maven/io.freefair.gradle/compress-plugin@8.6 Evidence Type Source Name Value Confidence Vendor file name commons-compress High Vendor gradle artifactid commons-compress Highest Vendor gradle groupid org.apache.commons Highest Vendor jar package name apache Highest Vendor jar package name commons Highest Vendor jar package name compress Highest Vendor Manifest automatic-module-name org.apache.commons.compress Medium Vendor Manifest build-jdk-spec 21 Low Vendor Manifest bundle-docurl https://commons.apache.org/proper/commons-compress/ Low Vendor Manifest bundle-symbolicname org.apache.commons.commons-compress Medium Vendor Manifest extension-name org.apache.commons.compress Medium Vendor Manifest Implementation-Vendor The Apache Software Foundation High Vendor Manifest Implementation-Vendor-Id org.apache Medium Vendor Manifest multi-release true Low Vendor Manifest originally-created-by Apache Maven Bundle Plugin 5.1.9 Low Vendor Manifest specification-vendor The Apache Software Foundation Low Vendor pom artifactid commons-compress Low Vendor pom developer email bodewig at apache.org Low Vendor pom developer email chtompki at apache.org Low Vendor pom developer email damjan at apache.org Low Vendor pom developer email ebourg at apache.org Low Vendor pom developer email ggregory at apache.org Low Vendor pom developer email grobmeier at apache.org Low Vendor pom developer email julius at apache.org Low Vendor pom developer email peterlee at apache.org Low Vendor pom developer email sebb at apache.org Low Vendor pom developer email tcurdt at apache.org Low Vendor pom developer id bodewig Medium Vendor pom developer id chtompki Medium Vendor pom developer id damjan Medium Vendor pom developer id ebourg Medium Vendor pom developer id ggregory Medium Vendor pom developer id grobmeier Medium Vendor pom developer id julius Medium Vendor pom developer id peterlee Medium Vendor pom developer id sebb Medium Vendor pom developer id tcurdt Medium Vendor pom developer name Christian Grobmeier Medium Vendor pom developer name Damjan Jovanovic Medium Vendor pom developer name Emmanuel Bourg Medium Vendor pom developer name Gary Gregory Medium Vendor pom developer name Julius Davies Medium Vendor pom developer name Peter Alfred Lee Medium Vendor pom developer name Rob Tompkins Medium Vendor pom developer name Sebastian Bazley Medium Vendor pom developer name Stefan Bodewig Medium Vendor pom developer name Torsten Curdt Medium Vendor pom developer org The Apache Software Foundation Medium Vendor pom developer org URL https://www.apache.org/ Medium Vendor pom groupid org.apache.commons Highest Vendor pom name Apache Commons Compress High Vendor pom parent-artifactid commons-parent Low Vendor pom url https://commons.apache.org/proper/commons-compress/ Highest Product file name commons-compress High Product gradle artifactid commons-compress Highest Product jar package name 9 Highest Product jar package name apache Highest Product jar package name commons Highest Product jar package name compress Highest Product Manifest automatic-module-name org.apache.commons.compress Medium Product Manifest build-jdk-spec 21 Low Product Manifest bundle-docurl https://commons.apache.org/proper/commons-compress/ Low Product Manifest Bundle-Name Apache Commons Compress Medium Product Manifest bundle-symbolicname org.apache.commons.commons-compress Medium Product Manifest extension-name org.apache.commons.compress Medium Product Manifest Implementation-Title Apache Commons Compress High Product Manifest multi-release true Low Product Manifest originally-created-by Apache Maven Bundle Plugin 5.1.9 Low Product Manifest specification-title Apache Commons Compress Medium Product pom artifactid commons-compress Highest Product pom developer email bodewig at apache.org Low Product pom developer email chtompki at apache.org Low Product pom developer email damjan at apache.org Low Product pom developer email ebourg at apache.org Low Product pom developer email ggregory at apache.org Low Product pom developer email grobmeier at apache.org Low Product pom developer email julius at apache.org Low Product pom developer email peterlee at apache.org Low Product pom developer email sebb at apache.org Low Product pom developer email tcurdt at apache.org Low Product pom developer id bodewig Low Product pom developer id chtompki Low Product pom developer id damjan Low Product pom developer id ebourg Low Product pom developer id ggregory Low Product pom developer id grobmeier Low Product pom developer id julius Low Product pom developer id peterlee Low Product pom developer id sebb Low Product pom developer id tcurdt Low Product pom developer name Christian Grobmeier Low Product pom developer name Damjan Jovanovic Low Product pom developer name Emmanuel Bourg Low Product pom developer name Gary Gregory Low Product pom developer name Julius Davies Low Product pom developer name Peter Alfred Lee Low Product pom developer name Rob Tompkins Low Product pom developer name Sebastian Bazley Low Product pom developer name Stefan Bodewig Low Product pom developer name Torsten Curdt Low Product pom developer org The Apache Software Foundation Low Product pom developer org URL https://www.apache.org/ Low Product pom groupid org.apache.commons Highest Product pom name Apache Commons Compress High Product pom parent-artifactid commons-parent Medium Product pom url https://commons.apache.org/proper/commons-compress/ Medium Version file version 1.25.0 High Version gradle version 1.25.0 Highest Version Manifest Bundle-Version 1.25.0 High Version Manifest Implementation-Version 1.25.0 High Version pom parent-version 1.25.0 Low Version pom version 1.25.0 Highest
commons-io-2.15.1.jarDescription:
The Apache Commons IO library contains utility classes, stream implementations, file filters,
file comparators, endian transformation classes, and much more.
License:
https://www.apache.org/licenses/LICENSE-2.0.txt File Path: /home/runner/.gradle/caches/modules-2/files-2.1/commons-io/commons-io/2.15.1/f11560da189ab563a5c8e351941415430e9304ea/commons-io-2.15.1.jar
MD5: 84351f7991a0e6722f00e96a4ccc376f
SHA1: f11560da189ab563a5c8e351941415430e9304ea
SHA256: a58af12ee1b68cfd2ebb0c27caef164f084381a00ec81a48cc275fd7ea54e154
Referenced In Projects/Scopes: documentation:javadocClasspath maven-plugin-plugin:compileClasspath maven-plugin-plugin:runtimeClasspath commons-io-2.15.1.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/io.freefair.gradle/maven-plugin-plugin@8.6 pkg:maven/org.apache.maven.plugins/maven-plugin-plugin@3.11.0 pkg:maven/org.apache.maven.plugin-tools/maven-plugin-tools-annotations@3.11.0 pkg:maven/org.apache.maven.plugin-tools/maven-plugin-tools-annotations@3.11.0 Evidence Type Source Name Value Confidence Vendor file name commons-io High Vendor gradle artifactid commons-io Highest Vendor gradle groupid commons-io Highest Vendor jar package name apache Highest Vendor jar package name commons Highest Vendor jar package name file Highest Vendor jar package name io Highest Vendor Manifest automatic-module-name org.apache.commons.io Medium Vendor Manifest build-jdk-spec 21 Low Vendor Manifest bundle-docurl https://commons.apache.org/proper/commons-io/ Low Vendor Manifest bundle-symbolicname org.apache.commons.commons-io Medium Vendor Manifest Implementation-Vendor The Apache Software Foundation High Vendor Manifest multi-release true Low Vendor Manifest specification-vendor The Apache Software Foundation Low Vendor pom artifactid commons-io Low Vendor pom developer email bayard@apache.org Low Vendor pom developer email dion@apache.org Low Vendor pom developer email ggregory at apache.org Low Vendor pom developer email jeremias@apache.org Low Vendor pom developer email jochen.wiedmann@gmail.com Low Vendor pom developer email krosenvold@apache.org Low Vendor pom developer email martinc@apache.org Low Vendor pom developer email matth@apache.org Low Vendor pom developer email nicolaken@apache.org Low Vendor pom developer email roxspring@apache.org Low Vendor pom developer email sanders@apache.org Low Vendor pom developer id bayard Medium Vendor pom developer id dion Medium Vendor pom developer id ggregory Medium Vendor pom developer id jeremias Medium Vendor pom developer id jochen Medium Vendor pom developer id jukka Medium Vendor pom developer id krosenvold Medium Vendor pom developer id martinc Medium Vendor pom developer id matth Medium Vendor pom developer id niallp Medium Vendor pom developer id nicolaken Medium Vendor pom developer id roxspring Medium Vendor pom developer id sanders Medium Vendor pom developer id scolebourne Medium Vendor pom developer name dIon Gillard Medium Vendor pom developer name Gary Gregory Medium Vendor pom developer name Henri Yandell Medium Vendor pom developer name Jeremias Maerki Medium Vendor pom developer name Jochen Wiedmann Medium Vendor pom developer name Jukka Zitting Medium Vendor pom developer name Kristian Rosenvold Medium Vendor pom developer name Martin Cooper Medium Vendor pom developer name Matthew Hawthorne Medium Vendor pom developer name Niall Pemberton Medium Vendor pom developer name Nicola Ken Barozzi Medium Vendor pom developer name Rob Oxspring Medium Vendor pom developer name Scott Sanders Medium Vendor pom developer name Stephen Colebourne Medium Vendor pom developer org The Apache Software Foundation Medium Vendor pom developer org URL https://www.apache.org/ Medium Vendor pom groupid commons-io Highest Vendor pom name Apache Commons IO High Vendor pom parent-artifactid commons-parent Low Vendor pom parent-groupid org.apache.commons Medium Vendor pom url https://commons.apache.org/proper/commons-io/ Highest Product file name commons-io High Product gradle artifactid commons-io Highest Product jar package name apache Highest Product jar package name commons Highest Product jar package name file Highest Product jar package name io Highest Product Manifest automatic-module-name org.apache.commons.io Medium Product Manifest build-jdk-spec 21 Low Product Manifest bundle-docurl https://commons.apache.org/proper/commons-io/ Low Product Manifest Bundle-Name Apache Commons IO Medium Product Manifest bundle-symbolicname org.apache.commons.commons-io Medium Product Manifest Implementation-Title Apache Commons IO High Product Manifest multi-release true Low Product Manifest specification-title Apache Commons IO Medium Product pom artifactid commons-io Highest Product pom developer email bayard@apache.org Low Product pom developer email dion@apache.org Low Product pom developer email ggregory at apache.org Low Product pom developer email jeremias@apache.org Low Product pom developer email jochen.wiedmann@gmail.com Low Product pom developer email krosenvold@apache.org Low Product pom developer email martinc@apache.org Low Product pom developer email matth@apache.org Low Product pom developer email nicolaken@apache.org Low Product pom developer email roxspring@apache.org Low Product pom developer email sanders@apache.org Low Product pom developer id bayard Low Product pom developer id dion Low Product pom developer id ggregory Low Product pom developer id jeremias Low Product pom developer id jochen Low Product pom developer id jukka Low Product pom developer id krosenvold Low Product pom developer id martinc Low Product pom developer id matth Low Product pom developer id niallp Low Product pom developer id nicolaken Low Product pom developer id roxspring Low Product pom developer id sanders Low Product pom developer id scolebourne Low Product pom developer name dIon Gillard Low Product pom developer name Gary Gregory Low Product pom developer name Henri Yandell Low Product pom developer name Jeremias Maerki Low Product pom developer name Jochen Wiedmann Low Product pom developer name Jukka Zitting Low Product pom developer name Kristian Rosenvold Low Product pom developer name Martin Cooper Low Product pom developer name Matthew Hawthorne Low Product pom developer name Niall Pemberton Low Product pom developer name Nicola Ken Barozzi Low Product pom developer name Rob Oxspring Low Product pom developer name Scott Sanders Low Product pom developer name Stephen Colebourne Low Product pom developer org The Apache Software Foundation Low Product pom developer org URL https://www.apache.org/ Low Product pom groupid commons-io Highest Product pom name Apache Commons IO High Product pom parent-artifactid commons-parent Medium Product pom parent-groupid org.apache.commons Medium Product pom url https://commons.apache.org/proper/commons-io/ Medium Version file version 2.15.1 High Version gradle version 2.15.1 Highest Version Manifest Bundle-Version 2.15.1 High Version Manifest Implementation-Version 2.15.1 High Version pom parent-version 2.15.1 Low Version pom version 2.15.1 Highest
commons-lang-2.4.jarDescription:
Commons Lang, a package of Java utility classes for the
classes that are in java.lang's hierarchy, or are considered to be so
standard as to justify existence in java.lang.
License:
http://www.apache.org/licenses/LICENSE-2.0.txt File Path: /home/runner/.gradle/caches/modules-2/files-2.1/commons-lang/commons-lang/2.4/16313e02a793435009f1e458fa4af5d879f6fb11/commons-lang-2.4.jar
MD5: 237a8e845441bad2e535c57d985c8204
SHA1: 16313e02a793435009f1e458fa4af5d879f6fb11
SHA256: 2c73b940c91250bc98346926270f13a6a10bb6e29d2c9316a70d134e382c873e
Referenced In Projects/Scopes: documentation:javadocClasspath maven-plugin-plugin:compileClasspath maven-plugin-plugin:runtimeClasspath commons-lang-2.4.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/io.freefair.gradle/maven-plugin-plugin@8.6 pkg:maven/org.apache.maven.plugins/maven-plugin-plugin@3.11.0 pkg:maven/org.apache.maven.plugins/maven-plugin-plugin@3.11.0 pkg:maven/org.apache.maven.plugin-tools/maven-plugin-tools-generators@3.11.0 pkg:maven/org.apache.maven.plugin-tools/maven-plugin-tools-generators@3.11.0 Evidence Type Source Name Value Confidence Vendor file name commons-lang High Vendor gradle artifactid commons-lang Highest Vendor gradle groupid commons-lang Highest Vendor jar package name apache Highest Vendor jar package name commons Highest Vendor jar package name lang Highest Vendor Manifest bundle-docurl http://commons.apache.org/lang/ Low Vendor Manifest bundle-symbolicname org.apache.commons.lang Medium Vendor Manifest Implementation-Vendor The Apache Software Foundation High Vendor Manifest Implementation-Vendor-Id org.apache Medium Vendor Manifest specification-vendor The Apache Software Foundation Low Vendor pom artifactid commons-lang Low Vendor pom developer email bayard@apache.org Low Vendor pom developer email dlr@finemaltcoding.com Low Vendor pom developer email ggregory@seagullsw.com Low Vendor pom developer email jcarman@apache.org Low Vendor pom developer email phil@steitz.com Low Vendor pom developer email rdonkin@apache.org Low Vendor pom developer email scolebourne@joda.org Low Vendor pom developer email stevencaswell@apache.org Low Vendor pom developer id bayard Medium Vendor pom developer id dlr Medium Vendor pom developer id fredrik Medium Vendor pom developer id ggregory Medium Vendor pom developer id jcarman Medium Vendor pom developer id mbenson Medium Vendor pom developer id niallp Medium Vendor pom developer id psteitz Medium Vendor pom developer id rdonkin Medium Vendor pom developer id scaswell Medium Vendor pom developer id scolebourne Medium Vendor pom developer name Daniel Rall Medium Vendor pom developer name Fredrik Westermarck Medium Vendor pom developer name Gary D. Gregory Medium Vendor pom developer name Henri Yandell Medium Vendor pom developer name James Carman Medium Vendor pom developer name Matt Benson Medium Vendor pom developer name Niall Pemberton Medium Vendor pom developer name Phil Steitz Medium Vendor pom developer name Robert Burrell Donkin Medium Vendor pom developer name Stephen Colebourne Medium Vendor pom developer name Steven Caswell Medium Vendor pom developer org Carman Consulting, Inc. Medium Vendor pom developer org CollabNet, Inc. Medium Vendor pom developer org Seagull Software Medium Vendor pom developer org SITA ATS Ltd Medium Vendor pom groupid commons-lang Highest Vendor pom name Commons Lang High Vendor pom parent-artifactid commons-parent Low Vendor pom parent-groupid org.apache.commons Medium Vendor pom url http://commons.apache.org/lang/ Highest Product file name commons-lang High Product gradle artifactid commons-lang Highest Product jar package name apache Highest Product jar package name commons Highest Product jar package name lang Highest Product Manifest bundle-docurl http://commons.apache.org/lang/ Low Product Manifest Bundle-Name Commons Lang Medium Product Manifest bundle-symbolicname org.apache.commons.lang Medium Product Manifest Implementation-Title Commons Lang High Product Manifest specification-title Commons Lang Medium Product pom artifactid commons-lang Highest Product pom developer email bayard@apache.org Low Product pom developer email dlr@finemaltcoding.com Low Product pom developer email ggregory@seagullsw.com Low Product pom developer email jcarman@apache.org Low Product pom developer email phil@steitz.com Low Product pom developer email rdonkin@apache.org Low Product pom developer email scolebourne@joda.org Low Product pom developer email stevencaswell@apache.org Low Product pom developer id bayard Low Product pom developer id dlr Low Product pom developer id fredrik Low Product pom developer id ggregory Low Product pom developer id jcarman Low Product pom developer id mbenson Low Product pom developer id niallp Low Product pom developer id psteitz Low Product pom developer id rdonkin Low Product pom developer id scaswell Low Product pom developer id scolebourne Low Product pom developer name Daniel Rall Low Product pom developer name Fredrik Westermarck Low Product pom developer name Gary D. Gregory Low Product pom developer name Henri Yandell Low Product pom developer name James Carman Low Product pom developer name Matt Benson Low Product pom developer name Niall Pemberton Low Product pom developer name Phil Steitz Low Product pom developer name Robert Burrell Donkin Low Product pom developer name Stephen Colebourne Low Product pom developer name Steven Caswell Low Product pom developer org Carman Consulting, Inc. Low Product pom developer org CollabNet, Inc. Low Product pom developer org Seagull Software Low Product pom developer org SITA ATS Ltd Low Product pom groupid commons-lang Highest Product pom name Commons Lang High Product pom parent-artifactid commons-parent Medium Product pom parent-groupid org.apache.commons Medium Product pom url http://commons.apache.org/lang/ Medium Version file version 2.4 High Version gradle version 2.4 Highest Version Manifest Bundle-Version 2.4 High Version Manifest Implementation-Version 2.4 High Version pom parent-version 2.4 Low Version pom version 2.4 Highest
commons-logging-1.2.jarDescription:
Apache Commons Logging is a thin adapter allowing configurable bridging to other,
well known logging systems. License:
http://www.apache.org/licenses/LICENSE-2.0.txt File Path: /home/runner/.gradle/caches/modules-2/files-2.1/commons-logging/commons-logging/1.2/4bfc12adfe4842bf07b657f0369c4cb522955686/commons-logging-1.2.jar
MD5: 040b4b4d8eac886f6b4a2a3bd2f31b00
SHA1: 4bfc12adfe4842bf07b657f0369c4cb522955686
SHA256: daddea1ea0be0f56978ab3006b8ac92834afeefbd9b7e4e6316fca57df0fa636
Referenced In Projects/Scopes: documentation:javadocClasspath maven-plugin-plugin:compileClasspath maven-plugin-plugin:runtimeClasspath commons-logging-1.2.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/io.freefair.gradle/maven-plugin-plugin@8.6 pkg:maven/org.apache.maven.plugins/maven-plugin-plugin@3.11.0 pkg:maven/org.apache.maven.plugin-tools/maven-plugin-tools-annotations@3.11.0 pkg:maven/org.apache.maven.plugin-tools/maven-plugin-tools-annotations@3.11.0 pkg:maven/org.apache.maven.plugins/maven-plugin-plugin@3.11.0 pkg:maven/org.apache.maven.plugin-tools/maven-plugin-tools-generators@3.11.0 pkg:maven/org.apache.maven.plugin-tools/maven-plugin-tools-generators@3.11.0 Evidence Type Source Name Value Confidence Vendor file name commons-logging High Vendor gradle artifactid commons-logging Highest Vendor gradle groupid commons-logging Highest Vendor jar package name apache Highest Vendor jar package name commons Highest Vendor jar package name logging Highest Vendor Manifest bundle-docurl http://commons.apache.org/proper/commons-logging/ Low Vendor Manifest bundle-symbolicname org.apache.commons.logging Medium Vendor Manifest implementation-build tags/LOGGING_1_2_RC2@r1608092; 2014-07-05 20:11:44+0200 Low Vendor Manifest Implementation-Vendor The Apache Software Foundation High Vendor Manifest Implementation-Vendor-Id org.apache Medium Vendor Manifest specification-vendor The Apache Software Foundation Low Vendor pom artifactid commons-logging Low Vendor pom developer email baliuka@apache.org Low Vendor pom developer email costin@apache.org Low Vendor pom developer email craigmcc@apache.org Low Vendor pom developer email dennisl@apache.org Low Vendor pom developer email donaldp@apache.org Low Vendor pom developer email morgand@apache.org Low Vendor pom developer email rdonkin@apache.org Low Vendor pom developer email rsitze@apache.org Low Vendor pom developer email rwaldhoff@apache.org Low Vendor pom developer email sanders@apache.org Low Vendor pom developer email skitching@apache.org Low Vendor pom developer email tn@apache.org Low Vendor pom developer id baliuka Medium Vendor pom developer id bstansberry Medium Vendor pom developer id costin Medium Vendor pom developer id craigmcc Medium Vendor pom developer id dennisl Medium Vendor pom developer id donaldp Medium Vendor pom developer id morgand Medium Vendor pom developer id rdonkin Medium Vendor pom developer id rsitze Medium Vendor pom developer id rwaldhoff Medium Vendor pom developer id sanders Medium Vendor pom developer id skitching Medium Vendor pom developer id tn Medium Vendor pom developer name Brian Stansberry Medium Vendor pom developer name Costin Manolache Medium Vendor pom developer name Craig McClanahan Medium Vendor pom developer name Dennis Lundberg Medium Vendor pom developer name Juozas Baliuka Medium Vendor pom developer name Morgan Delagrange Medium Vendor pom developer name Peter Donald Medium Vendor pom developer name Richard Sitze Medium Vendor pom developer name Robert Burrell Donkin Medium Vendor pom developer name Rodney Waldhoff Medium Vendor pom developer name Scott Sanders Medium Vendor pom developer name Simon Kitching Medium Vendor pom developer name Thomas Neidhart Medium Vendor pom developer org Apache Medium Vendor pom developer org The Apache Software Foundation Medium Vendor pom groupid commons-logging Highest Vendor pom name Apache Commons Logging High Vendor pom parent-artifactid commons-parent Low Vendor pom parent-groupid org.apache.commons Medium Vendor pom url http://commons.apache.org/proper/commons-logging/ Highest Product file name commons-logging High Product gradle artifactid commons-logging Highest Product jar package name apache Highest Product jar package name commons Highest Product jar package name logging Highest Product Manifest bundle-docurl http://commons.apache.org/proper/commons-logging/ Low Product Manifest Bundle-Name Apache Commons Logging Medium Product Manifest bundle-symbolicname org.apache.commons.logging Medium Product Manifest implementation-build tags/LOGGING_1_2_RC2@r1608092; 2014-07-05 20:11:44+0200 Low Product Manifest Implementation-Title Apache Commons Logging High Product Manifest specification-title Apache Commons Logging Medium Product pom artifactid commons-logging Highest Product pom developer email baliuka@apache.org Low Product pom developer email costin@apache.org Low Product pom developer email craigmcc@apache.org Low Product pom developer email dennisl@apache.org Low Product pom developer email donaldp@apache.org Low Product pom developer email morgand@apache.org Low Product pom developer email rdonkin@apache.org Low Product pom developer email rsitze@apache.org Low Product pom developer email rwaldhoff@apache.org Low Product pom developer email sanders@apache.org Low Product pom developer email skitching@apache.org Low Product pom developer email tn@apache.org Low Product pom developer id baliuka Low Product pom developer id bstansberry Low Product pom developer id costin Low Product pom developer id craigmcc Low Product pom developer id dennisl Low Product pom developer id donaldp Low Product pom developer id morgand Low Product pom developer id rdonkin Low Product pom developer id rsitze Low Product pom developer id rwaldhoff Low Product pom developer id sanders Low Product pom developer id skitching Low Product pom developer id tn Low Product pom developer name Brian Stansberry Low Product pom developer name Costin Manolache Low Product pom developer name Craig McClanahan Low Product pom developer name Dennis Lundberg Low Product pom developer name Juozas Baliuka Low Product pom developer name Morgan Delagrange Low Product pom developer name Peter Donald Low Product pom developer name Richard Sitze Low Product pom developer name Robert Burrell Donkin Low Product pom developer name Rodney Waldhoff Low Product pom developer name Scott Sanders Low Product pom developer name Simon Kitching Low Product pom developer name Thomas Neidhart Low Product pom developer org Apache Low Product pom developer org The Apache Software Foundation Low Product pom groupid commons-logging Highest Product pom name Apache Commons Logging High Product pom parent-artifactid commons-parent Medium Product pom parent-groupid org.apache.commons Medium Product pom url http://commons.apache.org/proper/commons-logging/ Medium Version file version 1.2 High Version gradle version 1.2 Highest Version Manifest Implementation-Version 1.2 High Version pom parent-version 1.2 Low Version pom version 1.2 Highest
compress-plugin-8.6.jarFile Path: /home/runner/work/gradle-plugins/gradle-plugins/compress-plugin/build/libs/compress-plugin-8.6.jarMD5: f81d6acc9ceba419a608f5cb764e8e45SHA1: 5c0c5ff278af97091bf17a353f6a37123c4969b7SHA256: 2874da6e316c225e7c4344d5c133c46054c9e58a29f0693160ffe3fbdf473e2bReferenced In Project/Scope: documentation:javadocClasspathcompress-plugin-8.6.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/io.freefair.gradle/documentation@8.6
Evidence Type Source Name Value Confidence Vendor file name compress-plugin High Vendor gradle artifactid compress-plugin Highest Vendor gradle groupid io.freefair.gradle Highest Vendor jar package name freefair Low Vendor jar package name gradle Low Vendor jar package name io Low Product file name compress-plugin High Product gradle artifactid compress-plugin Highest Product jar package name freefair Low Product jar package name gradle Low Product jar package name plugins Low Version file version 8.6 High Version Manifest Implementation-Version 8.6 High
converter-gson-2.9.0.jarFile Path: /home/runner/.gradle/caches/modules-2/files-2.1/com.squareup.retrofit2/converter-gson/2.9.0/fc93484fc67ab52b1e0ccbdaa3922d8a6678e097/converter-gson-2.9.0.jarMD5: a4d032098e196d2735c1cff92968ab20SHA1: fc93484fc67ab52b1e0ccbdaa3922d8a6678e097SHA256: 32aa206b9a29c9df5eda93a092cfb3b0b9133e232c062baa882f0319f0e79f0eReferenced In Projects/Scopes:
documentation:javadocClasspath github-plugin:compileClasspath github-plugin:runtimeClasspath converter-gson-2.9.0.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/io.freefair.gradle/github-plugin@8.6 pkg:maven/io.freefair.gradle/github-plugin@8.6 pkg:maven/io.freefair.gradle/github-plugin@8.6 Evidence Type Source Name Value Confidence Vendor file name converter-gson High Vendor gradle artifactid converter-gson Highest Vendor gradle groupid com.squareup.retrofit2 Highest Vendor jar package name converter Highest Vendor jar package name converter Low Vendor jar package name gson Highest Vendor jar package name gson Low Vendor jar package name retrofit2 Highest Vendor jar package name retrofit2 Low Vendor Manifest automatic-module-name retrofit2.converter.gson Medium Product file name converter-gson High Product gradle artifactid converter-gson Highest Product jar package name converter Highest Product jar package name converter Low Product jar package name gson Highest Product jar package name gson Low Product jar package name retrofit2 Highest Product Manifest automatic-module-name retrofit2.converter.gson Medium Version file name converter-gson Medium Version file version 2.9.0 High Version gradle version 2.9.0 Highest
dec-0.1.2.jarDescription:
Brotli is a generic-purpose lossless compression algorithm. License:
http://www.opensource.org/licenses/mit-license.php File Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.brotli/dec/0.1.2/c26a897ae0d524809eef1c786cc6183b4ddcc3b/dec-0.1.2.jar
MD5: 4b1cd14cf29733941cc536b27e6aedfa
SHA1: 0c26a897ae0d524809eef1c786cc6183b4ddcc3b
SHA256: 615c0c3efef990d77831104475fba6a1f7971388691d4bad1471ad84101f6d52
Referenced In Projects/Scopes: documentation:javadocClasspath compress-plugin:compileClasspath compress-plugin:runtimeClasspath dec-0.1.2.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/io.freefair.gradle/compress-plugin@8.6 pkg:maven/io.freefair.gradle/compress-plugin@8.6 pkg:maven/io.freefair.gradle/compress-plugin@8.6 Evidence Type Source Name Value Confidence Vendor file name dec High Vendor gradle artifactid dec Highest Vendor gradle groupid org.brotli Highest Vendor jar package name brotli Highest Vendor jar package name dec Highest Vendor Manifest bundle-docurl http://brotli.org/dec Low Vendor Manifest bundle-symbolicname org.brotli.dec Medium Vendor pom artifactid dec Low Vendor pom groupid org.brotli Highest Vendor pom name : High Vendor pom parent-artifactid parent Low Product file name dec High Product gradle artifactid dec Highest Product jar package name brotli Highest Product jar package name dec Highest Product Manifest bundle-docurl http://brotli.org/dec Low Product Manifest Bundle-Name org.brotli:dec Medium Product Manifest bundle-symbolicname org.brotli.dec Medium Product pom artifactid dec Highest Product pom groupid org.brotli Highest Product pom name : High Product pom parent-artifactid parent Medium Version file version 0.1.2 High Version gradle version 0.1.2 Highest Version Manifest Bundle-Version 0.1.2 High Version pom version 0.1.2 Highest
doxia-logging-api-1.11.1.jarDescription:
Doxia Logging API. File Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.apache.maven.doxia/doxia-logging-api/1.11.1/ee28757cce6ee0215bac550dead25074c97c532d/doxia-logging-api-1.11.1.jarMD5: 6452e33a36b87939630e0b18f8ffcff0SHA1: ee28757cce6ee0215bac550dead25074c97c532dSHA256: 243c66f842cd2b3ded7c6d2c36b177a65c3f5d94800cef988ba3e29ec8cf60c9Referenced In Projects/Scopes:
documentation:javadocClasspath maven-plugin-plugin:compileClasspath maven-plugin-plugin:runtimeClasspath doxia-logging-api-1.11.1.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/io.freefair.gradle/maven-plugin-plugin@8.6 pkg:maven/org.apache.maven.plugins/maven-plugin-plugin@3.11.0 pkg:maven/org.apache.maven.plugin-tools/maven-plugin-tools-annotations@3.11.0 pkg:maven/org.apache.maven.plugin-tools/maven-plugin-tools-annotations@3.11.0 pkg:maven/org.apache.maven.plugins/maven-plugin-plugin@3.11.0 pkg:maven/org.apache.maven.plugin-tools/maven-plugin-tools-generators@3.11.0 pkg:maven/org.apache.maven.plugin-tools/maven-plugin-tools-generators@3.11.0 Evidence Type Source Name Value Confidence Vendor file name doxia-logging-api High Vendor gradle artifactid doxia-logging-api Highest Vendor gradle groupid org.apache.maven.doxia Highest Vendor jar package name apache Highest Vendor jar package name doxia Highest Vendor jar package name logging Highest Vendor jar package name maven Highest Vendor Manifest build-jdk-spec 1.8 Low Vendor Manifest Implementation-Vendor The Apache Software Foundation High Vendor Manifest specification-vendor The Apache Software Foundation Low Vendor pom artifactid doxia-logging-api Low Vendor pom groupid org.apache.maven.doxia Highest Vendor pom name Doxia :: Logging API High Vendor pom parent-artifactid doxia Low Product file name doxia-logging-api High Product gradle artifactid doxia-logging-api Highest Product jar package name apache Highest Product jar package name doxia Highest Product jar package name logging Highest Product jar package name maven Highest Product Manifest build-jdk-spec 1.8 Low Product Manifest Implementation-Title Doxia :: Logging API High Product Manifest specification-title Doxia :: Logging API Medium Product pom artifactid doxia-logging-api Highest Product pom groupid org.apache.maven.doxia Highest Product pom name Doxia :: Logging API High Product pom parent-artifactid doxia Medium Version file version 1.11.1 High Version gradle version 1.11.1 Highest Version Manifest Implementation-Version 1.11.1 High Version pom version 1.11.1 Highest
doxia-sink-api-1.11.1.jarDescription:
Doxia Sink API. File Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.apache.maven.doxia/doxia-sink-api/1.11.1/59c2255f58c78fbbcb7e638e82bd2914e78aec8b/doxia-sink-api-1.11.1.jarMD5: b1bd5c9efde9f14969fa881b87fe709bSHA1: 59c2255f58c78fbbcb7e638e82bd2914e78aec8bSHA256: 39ac38bb7d752ea003be17a0065522e4e1b076a4f7e374bea55259f3e133f28fReferenced In Projects/Scopes:
documentation:javadocClasspath maven-plugin-plugin:compileClasspath maven-plugin-plugin:runtimeClasspath doxia-sink-api-1.11.1.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/io.freefair.gradle/maven-plugin-plugin@8.6 pkg:maven/org.apache.maven.plugins/maven-plugin-plugin@3.11.0 pkg:maven/org.apache.maven.plugin-tools/maven-plugin-tools-annotations@3.11.0 pkg:maven/org.apache.maven.plugin-tools/maven-plugin-tools-annotations@3.11.0 pkg:maven/org.apache.maven.plugins/maven-plugin-plugin@3.11.0 pkg:maven/org.apache.maven.plugin-tools/maven-plugin-tools-generators@3.11.0 pkg:maven/org.apache.maven.plugin-tools/maven-plugin-tools-generators@3.11.0 Evidence Type Source Name Value Confidence Vendor file name doxia-sink-api High Vendor gradle artifactid doxia-sink-api Highest Vendor gradle groupid org.apache.maven.doxia Highest Vendor jar package name apache Highest Vendor jar package name doxia Highest Vendor jar package name maven Highest Vendor jar package name sink Highest Vendor Manifest build-jdk-spec 1.8 Low Vendor Manifest Implementation-Vendor The Apache Software Foundation High Vendor Manifest specification-vendor The Apache Software Foundation Low Vendor pom artifactid doxia-sink-api Low Vendor pom groupid org.apache.maven.doxia Highest Vendor pom name Doxia :: Sink API High Vendor pom parent-artifactid doxia Low Product file name doxia-sink-api High Product gradle artifactid doxia-sink-api Highest Product jar package name apache Highest Product jar package name doxia Highest Product jar package name maven Highest Product jar package name sink Highest Product Manifest build-jdk-spec 1.8 Low Product Manifest Implementation-Title Doxia :: Sink API High Product Manifest specification-title Doxia :: Sink API Medium Product pom artifactid doxia-sink-api Highest Product pom groupid org.apache.maven.doxia Highest Product pom name Doxia :: Sink API High Product pom parent-artifactid doxia Medium Version file version 1.11.1 High Version gradle version 1.11.1 Highest Version Manifest Implementation-Version 1.11.1 High Version pom version 1.11.1 Highest
embedded-sass-plugin-8.6.jarFile Path: /home/runner/work/gradle-plugins/gradle-plugins/embedded-sass-plugin/build/libs/embedded-sass-plugin-8.6.jarMD5: a6f4bc0cd4403e8f7e7c46181cb1773bSHA1: 17ff835a52e69cd912f0b8557fbb57243cb7449fSHA256: 144e979b97e775e85d6d2c368b54b35a09cf084b8c16fb168b5f79745f7f569fReferenced In Project/Scope: documentation:javadocClasspathembedded-sass-plugin-8.6.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/io.freefair.gradle/documentation@8.6
Evidence Type Source Name Value Confidence Vendor file name embedded-sass-plugin High Vendor gradle artifactid embedded-sass-plugin Highest Vendor gradle groupid io.freefair.gradle Highest Vendor jar package name freefair Low Vendor jar package name gradle Low Vendor jar package name io Low Product file name embedded-sass-plugin High Product gradle artifactid embedded-sass-plugin Highest Product jar package name freefair Low Product jar package name gradle Low Product jar package name plugins Low Version file version 8.6 High Version Manifest Implementation-Version 8.6 High
git-plugin-8.6.jarFile Path: /home/runner/work/gradle-plugins/gradle-plugins/git-plugin/build/libs/git-plugin-8.6.jarMD5: f934c44268db822330c9515f43c26d4aSHA1: faa5de8a94a1843ad2004d39af7c210e03af559dSHA256: fa95533c3ef502291779d053a6c6953dbe5417e70590de67d055b1b2dc4ae852Referenced In Project/Scope: documentation:javadocClasspathgit-plugin-8.6.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/io.freefair.gradle/documentation@8.6
Evidence Type Source Name Value Confidence Vendor file name git-plugin High Vendor gradle artifactid git-plugin Highest Vendor gradle groupid io.freefair.gradle Highest Vendor jar package name freefair Low Vendor jar package name gradle Low Vendor jar package name io Low Product file name git-plugin High Product gradle artifactid git-plugin Highest Product jar package name freefair Low Product jar package name gradle Low Product jar package name plugins Low Version file version 8.6 High Version Manifest Implementation-Version 8.6 High
github-plugin-8.6.jarFile Path: /home/runner/work/gradle-plugins/gradle-plugins/github-plugin/build/libs/github-plugin-8.6.jarMD5: 381f3f125881ee1d2dbc18754754666dSHA1: b70d8ad6e108505ce38ae746a670b845d0400612SHA256: 2e3ec28fe25ab8a97c2ebbeb85ed682430ee8ab9641cf18287a61dffafe6859aReferenced In Project/Scope: documentation:javadocClasspathgithub-plugin-8.6.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/io.freefair.gradle/documentation@8.6
Evidence Type Source Name Value Confidence Vendor file name github-plugin High Vendor gradle artifactid github-plugin Highest Vendor gradle groupid io.freefair.gradle Highest Vendor jar package name freefair Low Vendor jar package name gradle Low Vendor jar package name io Low Product file name github-plugin High Product gradle artifactid github-plugin Highest Product jar package name freefair Low Product jar package name gradle Low Product jar package name plugins Low Version file version 8.6 High Version Manifest Implementation-Version 8.6 High
gradle-node-plugin-7.0.0.jarFile Path: /home/runner/.gradle/caches/modules-2/files-2.1/com.github.node-gradle/gradle-node-plugin/7.0.0/af9bce20964420e50d46e45fc14103200c651fd9/gradle-node-plugin-7.0.0.jarMD5: b98aef5efa9518376c89bf9d024b78d7SHA1: af9bce20964420e50d46e45fc14103200c651fd9SHA256: 285a384698f1c3a683afd19be12eb63bbb1602ee5b643b88e42ddf67251382b2Referenced In Projects/Scopes:
mjml-plugin:runtimeClasspath mjml-plugin:compileClasspath mjml-plugin:implementationDependenciesMetadata gradle-node-plugin-7.0.0.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/io.freefair.gradle/mjml-plugin@8.6 pkg:maven/io.freefair.gradle/mjml-plugin@8.6 pkg:maven/io.freefair.gradle/mjml-plugin@8.6 Evidence Type Source Name Value Confidence Vendor file name gradle-node-plugin High Vendor gradle artifactid gradle-node-plugin Highest Vendor gradle groupid com.github.node-gradle Highest Vendor jar package name github Low Vendor jar package name gradle Low Vendor jar package name node Low Product file name gradle-node-plugin High Product gradle artifactid gradle-node-plugin Highest Product jar package name gradle Low Product jar package name node Low Version file name gradle-node-plugin Medium Version file version 7.0.0 High Version gradle version 7.0.0 Highest
gradle-node-plugin-7.0.2.jarFile Path: /home/runner/.gradle/caches/modules-2/files-2.1/com.github.node-gradle/gradle-node-plugin/7.0.2/6853f790daea0f2e25e0b1acf8d268a014c814f6/gradle-node-plugin-7.0.2.jarMD5: ff61ad86b0121190004bff23a7ae4fd3SHA1: 6853f790daea0f2e25e0b1acf8d268a014c814f6SHA256: bfd8cb644593e7f6b6b719011fdaca4af0c02485e28176904470f300e48a19e2Referenced In Projects/Scopes:
documentation:javadocClasspath quicktype-plugin:runtimeClasspath quicktype-plugin:compileClasspath quicktype-plugin:implementationDependenciesMetadata gradle-node-plugin-7.0.2.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/io.freefair.gradle/quicktype-plugin@8.6 pkg:maven/io.freefair.gradle/quicktype-plugin@8.6 pkg:maven/io.freefair.gradle/mjml-plugin@8.6 pkg:maven/io.freefair.gradle/quicktype-plugin@8.6 pkg:maven/io.freefair.gradle/quicktype-plugin@8.6 Evidence Type Source Name Value Confidence Vendor file name gradle-node-plugin High Vendor gradle artifactid gradle-node-plugin Highest Vendor gradle groupid com.github.node-gradle Highest Vendor jar package name github Low Vendor jar package name gradle Low Vendor jar package name node Low Product file name gradle-node-plugin High Product gradle artifactid gradle-node-plugin Highest Product jar package name gradle Low Product jar package name node Low Version file name gradle-node-plugin Medium Version file version 7.0.2 High Version gradle version 7.0.2 Highest
gson-2.8.5.jarDescription:
Gson JSON library File Path: /home/runner/.gradle/caches/modules-2/files-2.1/com.google.code.gson/gson/2.8.5/f645ed69d595b24d4cf8b3fbb64cc505bede8829/gson-2.8.5.jarMD5: 089104cb90d8b4e1aa00b1f5faef0742SHA1: f645ed69d595b24d4cf8b3fbb64cc505bede8829SHA256: 233a0149fc365c9f6edbd683cfe266b19bdc773be98eabdaf6b3c924b48e7d81Referenced In Projects/Scopes:
documentation:javadocClasspath github-plugin:compileClasspath github-plugin:runtimeClasspath gson-2.8.5.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/com.squareup.retrofit2/converter-gson@2.9.0 pkg:maven/com.squareup.retrofit2/converter-gson@2.9.0 pkg:maven/io.freefair.gradle/github-plugin@8.6 Evidence Type Source Name Value Confidence Vendor file name gson High Vendor gradle artifactid gson Highest Vendor gradle groupid com.google.code.gson Highest Vendor jar package name google Highest Vendor jar package name gson Highest Vendor Manifest bundle-contactaddress https://github.com/google/gson Low Vendor Manifest bundle-requiredexecutionenvironment J2SE-1.5, JavaSE-1.6, JavaSE-1.7, JavaSE-1.8 Low Vendor Manifest bundle-symbolicname com.google.gson Medium Vendor pom artifactid gson Low Vendor pom groupid com.google.code.gson Highest Vendor pom name Gson High Vendor pom parent-artifactid gson-parent Low Product file name gson High Product gradle artifactid gson Highest Product jar package name google Highest Product jar package name gson Highest Product Manifest bundle-contactaddress https://github.com/google/gson Low Product Manifest Bundle-Name Gson Medium Product Manifest bundle-requiredexecutionenvironment J2SE-1.5, JavaSE-1.6, JavaSE-1.7, JavaSE-1.8 Low Product Manifest bundle-symbolicname com.google.gson Medium Product pom artifactid gson Highest Product pom groupid com.google.code.gson Highest Product pom name Gson High Product pom parent-artifactid gson-parent Medium Version file version 2.8.5 High Version gradle version 2.8.5 Highest Version Manifest Bundle-Version 2.8.5 High Version pom version 2.8.5 Highest
CVE-2022-25647 suppress
The package com.google.code.gson:gson before 2.8.9 are vulnerable to Deserialization of Untrusted Data via the writeReplace() method in internal classes, which may lead to DoS attacks. CWE-502 Deserialization of Untrusted Data
CVSSv2:
Base Score: MEDIUM (5.0) Vector: /AV:N/AC:L/Au:N/C:N/I:N/A:P CVSSv3:
Base Score: HIGH (7.5) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:3.9/RC:R/MAV:A References:
Vulnerable Software & Versions: (show all )
guava-16.0.1.jarDescription:
Guava is a suite of core and expanded libraries that include
utility classes, google's collections, io classes, and much
much more.
Guava has only one code dependency - javax.annotation,
per the JSR-305 spec.
License:
http://www.apache.org/licenses/LICENSE-2.0.txt File Path: /home/runner/.gradle/caches/modules-2/files-2.1/com.google.guava/guava/16.0.1/5fa98cd1a63c99a44dd8d3b77e4762b066a5d0c5/guava-16.0.1.jar
MD5: a68693df58191585d9af914cfbe6067a
SHA1: 5fa98cd1a63c99a44dd8d3b77e4762b066a5d0c5
SHA256: a896857d07845d38c7dc5bbc0457b6d9b0f62ecffda010e5e9ec12d561f676d3
Referenced In Projects/Scopes: documentation:javadocClasspath maven-plugin-plugin:compileClasspath maven-plugin-plugin:runtimeClasspath guava-16.0.1.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/io.freefair.gradle/maven-plugin-plugin@8.6 pkg:maven/org.apache.maven.plugins/maven-plugin-plugin@3.11.0 pkg:maven/org.apache.maven.plugin-tools/maven-plugin-tools-annotations@3.11.0 pkg:maven/org.apache.maven.plugin-tools/maven-plugin-tools-annotations@3.11.0 pkg:maven/org.apache.maven.plugins/maven-plugin-plugin@3.11.0 pkg:maven/org.apache.maven.plugin-tools/maven-plugin-tools-generators@3.11.0 pkg:maven/org.apache.maven.plugin-tools/maven-plugin-tools-generators@3.11.0 Evidence Type Source Name Value Confidence Vendor file name guava High Vendor gradle artifactid guava Highest Vendor gradle groupid com.google.guava Highest Vendor jar package name google Highest Vendor Manifest bundle-symbolicname com.google.guava Medium Vendor pom artifactid guava Low Vendor pom groupid com.google.guava Highest Vendor pom name Guava: Google Core Libraries for Java High Vendor pom parent-artifactid guava-parent Low Product file name guava High Product gradle artifactid guava Highest Product jar package name google Highest Product Manifest Bundle-Name Guava: Google Core Libraries for Java Medium Product Manifest bundle-symbolicname com.google.guava Medium Product pom artifactid guava Highest Product pom groupid com.google.guava Highest Product pom name Guava: Google Core Libraries for Java High Product pom parent-artifactid guava-parent Medium Version file version 16.0.1 High Version gradle version 16.0.1 Highest Version Manifest Bundle-Version 16.0.1 High Version pom version 16.0.1 Highest
CVE-2023-2976 suppress
Use of Java's default temporary directory for file creation in `FileBackedOutputStream` in Google Guava versions 1.0 to 31.1 on Unix systems and Android Ice Cream Sandwich allows other users and apps on the machine with access to the default Java temporary directory to be able to access the files created by the class.
Even though the security vulnerability is fixed in version 32.0.0, we recommend using version 32.0.1 as version 32.0.0 breaks some functionality under Windows.
CWE-552 Files or Directories Accessible to External Parties
CVSSv3:
Base Score: HIGH (7.1) Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N/E:1.8/RC:R/MAV:A References:
Vulnerable Software & Versions:
CVE-2018-10237 suppress
Unbounded memory allocation in Google Guava 11.0 through 24.x before 24.1.1 allows remote attackers to conduct denial of service attacks against servers that depend on this library and deserialize attacker-provided data, because the AtomicDoubleArray class (when serialized with Java serialization) and the CompoundOrdering class (when serialized with GWT serialization) perform eager allocation without appropriate checks on what a client has sent and whether the data size is reasonable. CWE-770 Allocation of Resources Without Limits or Throttling
CVSSv2:
Base Score: MEDIUM (4.3) Vector: /AV:N/AC:M/Au:N/C:N/I:N/A:P CVSSv3:
Base Score: MEDIUM (5.9) Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H/E:2.2/RC:R/MAV:A References:
Vulnerable Software & Versions: (show all )
CVE-2020-8908 suppress
A temp directory creation vulnerability exists in all versions of Guava, allowing an attacker with access to the machine to potentially access data in a temporary directory created by the Guava API com.google.common.io.Files.createTempDir(). By default, on unix-like systems, the created directory is world-readable (readable by an attacker with access to the system). The method in question has been marked @Deprecated in versions 30.0 and later and should not be used. For Android developers, we recommend choosing a temporary directory API provided by Android, such as context.getCacheDir(). For other Java developers, we recommend migrating to the Java 7 API java.nio.file.Files.createTempDirectory() which explicitly configures permissions of 700, or configuring the Java runtime's java.io.tmpdir system property to point to a location whose permissions are appropriately configured.
CWE-378 Creation of Temporary File With Insecure Permissions, CWE-732 Incorrect Permission Assignment for Critical Resource
CVSSv2:
Base Score: LOW (2.1) Vector: /AV:L/AC:L/Au:N/C:P/I:N/A:N CVSSv3:
Base Score: LOW (3.3) Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N/E:1.8/RC:R/MAV:A References:
Vulnerable Software & Versions: (show all )
httpclient-4.5.14.jarDescription:
Apache HttpComponents Client
File Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.apache.httpcomponents/httpclient/4.5.14/1194890e6f56ec29177673f2f12d0b8e627dec98/httpclient-4.5.14.jarMD5: 2cb357c4b763f47e58af6cad47df6ba3SHA1: 1194890e6f56ec29177673f2f12d0b8e627dec98SHA256: c8bc7e1c51a6d4ce72f40d2ebbabf1c4b68bfe76e732104b04381b493478e9d6Referenced In Projects/Scopes:
documentation:javadocClasspath maven-plugin-plugin:compileClasspath maven-plugin-plugin:runtimeClasspath httpclient-4.5.14.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/io.freefair.gradle/maven-plugin-plugin@8.6 pkg:maven/org.apache.maven.plugins/maven-plugin-plugin@3.11.0 pkg:maven/org.apache.maven.plugin-tools/maven-plugin-tools-annotations@3.11.0 pkg:maven/org.apache.maven.plugin-tools/maven-plugin-tools-annotations@3.11.0 pkg:maven/org.apache.maven.plugins/maven-plugin-plugin@3.11.0 pkg:maven/org.apache.maven.plugin-tools/maven-plugin-tools-generators@3.11.0 pkg:maven/org.apache.maven.plugin-tools/maven-plugin-tools-generators@3.11.0 Evidence Type Source Name Value Confidence Vendor file name httpclient High Vendor gradle artifactid httpclient Highest Vendor gradle groupid org.apache.httpcomponents Highest Vendor jar package name apache Highest Vendor jar package name client Highest Vendor jar package name httpclient Highest Vendor Manifest automatic-module-name org.apache.httpcomponents.httpclient Medium Vendor Manifest implementation-url http://hc.apache.org/httpcomponents-client-ga Low Vendor Manifest Implementation-Vendor The Apache Software Foundation High Vendor Manifest Implementation-Vendor-Id org.apache.httpcomponents Medium Vendor Manifest specification-vendor The Apache Software Foundation Low Vendor pom artifactid httpclient Low Vendor pom groupid org.apache.httpcomponents Highest Vendor pom name Apache HttpClient High Vendor pom parent-artifactid httpcomponents-client Low Vendor pom url http://hc.apache.org/httpcomponents-client-ga Highest Product file name httpclient High Product gradle artifactid httpclient Highest Product jar package name apache Highest Product jar package name client Highest Product jar package name http Highest Product jar package name httpclient Highest Product Manifest automatic-module-name org.apache.httpcomponents.httpclient Medium Product Manifest Implementation-Title Apache HttpClient High Product Manifest implementation-url http://hc.apache.org/httpcomponents-client-ga Low Product Manifest specification-title Apache HttpClient Medium Product pom artifactid httpclient Highest Product pom groupid org.apache.httpcomponents Highest Product pom name Apache HttpClient High Product pom parent-artifactid httpcomponents-client Medium Product pom url http://hc.apache.org/httpcomponents-client-ga Medium Version file version 4.5.14 High Version gradle version 4.5.14 Highest Version Manifest Implementation-Version 4.5.14 High Version pom version 4.5.14 Highest
httpcore-4.4.16.jarDescription:
Apache HttpComponents Core (blocking I/O)
File Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.apache.httpcomponents/httpcore/4.4.16/51cf043c87253c9f58b539c9f7e44c8894223850/httpcore-4.4.16.jarMD5: 28d2cd9bf8789fd2ec774fb88436ebd1SHA1: 51cf043c87253c9f58b539c9f7e44c8894223850SHA256: 6c9b3dd142a09dc468e23ad39aad6f75a0f2b85125104469f026e52a474e464fReferenced In Projects/Scopes:
documentation:javadocClasspath maven-plugin-plugin:compileClasspath maven-plugin-plugin:runtimeClasspath httpcore-4.4.16.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/io.freefair.gradle/maven-plugin-plugin@8.6 pkg:maven/org.apache.maven.plugins/maven-plugin-plugin@3.11.0 pkg:maven/org.apache.maven.plugin-tools/maven-plugin-tools-annotations@3.11.0 pkg:maven/org.apache.maven.plugin-tools/maven-plugin-tools-annotations@3.11.0 pkg:maven/org.apache.maven.plugins/maven-plugin-plugin@3.11.0 pkg:maven/org.apache.maven.plugin-tools/maven-plugin-tools-generators@3.11.0 pkg:maven/org.apache.maven.plugin-tools/maven-plugin-tools-generators@3.11.0 Evidence Type Source Name Value Confidence Vendor file name httpcore High Vendor gradle artifactid httpcore Highest Vendor gradle groupid org.apache.httpcomponents Highest Vendor jar package name apache Highest Vendor Manifest automatic-module-name org.apache.httpcomponents.httpcore Medium Vendor Manifest implementation-build ${scmBranch}@r${buildNumber}; 2022-11-26 09:44:32+0000 Low Vendor Manifest implementation-url http://hc.apache.org/httpcomponents-core-ga Low Vendor Manifest Implementation-Vendor The Apache Software Foundation High Vendor Manifest Implementation-Vendor-Id org.apache Medium Vendor Manifest specification-vendor The Apache Software Foundation Low Vendor Manifest url http://hc.apache.org/httpcomponents-core-ga Low Vendor pom artifactid httpcore Low Vendor pom groupid org.apache.httpcomponents Highest Vendor pom name Apache HttpCore High Vendor pom parent-artifactid httpcomponents-core Low Vendor pom url http://hc.apache.org/httpcomponents-core-ga Highest Product file name httpcore High Product gradle artifactid httpcore Highest Product jar package name apache Highest Product jar package name http Highest Product Manifest automatic-module-name org.apache.httpcomponents.httpcore Medium Product Manifest implementation-build ${scmBranch}@r${buildNumber}; 2022-11-26 09:44:32+0000 Low Product Manifest Implementation-Title HttpComponents Apache HttpCore High Product Manifest implementation-url http://hc.apache.org/httpcomponents-core-ga Low Product Manifest specification-title HttpComponents Apache HttpCore Medium Product Manifest url http://hc.apache.org/httpcomponents-core-ga Low Product pom artifactid httpcore Highest Product pom groupid org.apache.httpcomponents Highest Product pom name Apache HttpCore High Product pom parent-artifactid httpcomponents-core Medium Product pom url http://hc.apache.org/httpcomponents-core-ga Medium Version file version 4.4.16 High Version gradle version 4.4.16 Highest Version Manifest Implementation-Version 4.4.16 High Version pom version 4.4.16 Highest
jackson-annotations-2.14.2.jarDescription:
Core annotations used for value types, used by Jackson data binding package.
License:
The Apache Software License, Version 2.0: https://www.apache.org/licenses/LICENSE-2.0.txt File Path: /home/runner/.gradle/caches/modules-2/files-2.1/com.fasterxml.jackson.core/jackson-annotations/2.14.2/a7aae9525864930723e3453ab799521fdfd9d873/jackson-annotations-2.14.2.jar
MD5: 10d19982a8890f6eb37557af2f58e272
SHA1: a7aae9525864930723e3453ab799521fdfd9d873
SHA256: 2c6869d505cf60dc066734b7d50339f975bd3adc635e26a78abb71acb4473c0d
Referenced In Projects/Scopes: mjml-plugin:runtimeClasspath quicktype-plugin:runtimeClasspath jackson-annotations-2.14.2.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/com.github.node-gradle/gradle-node-plugin@7.0.0 pkg:maven/com.github.node-gradle/gradle-node-plugin@7.0.2 Evidence Type Source Name Value Confidence Vendor file name jackson-annotations High Vendor gradle artifactid jackson-annotations Highest Vendor gradle groupid com.fasterxml.jackson.core Highest Vendor jar package name fasterxml Highest Vendor jar package name jackson Highest Vendor Manifest build-jdk-spec 1.8 Low Vendor Manifest bundle-docurl https://github.com/FasterXML/jackson Low Vendor Manifest bundle-symbolicname com.fasterxml.jackson.core.jackson-annotations Medium Vendor Manifest Implementation-Vendor FasterXML High Vendor Manifest Implementation-Vendor-Id com.fasterxml.jackson.core Medium Vendor Manifest specification-vendor FasterXML Low Vendor pom artifactid jackson-annotations Low Vendor pom groupid com.fasterxml.jackson.core Highest Vendor pom name Jackson-annotations High Vendor pom parent-artifactid jackson-parent Low Vendor pom parent-groupid com.fasterxml.jackson Medium Vendor pom url FasterXML/jackson Highest Product file name jackson-annotations High Product gradle artifactid jackson-annotations Highest Product hint analyzer product java8 Highest Product hint analyzer product modules Highest Product jar package name fasterxml Highest Product jar package name jackson Highest Product Manifest build-jdk-spec 1.8 Low Product Manifest bundle-docurl https://github.com/FasterXML/jackson Low Product Manifest Bundle-Name Jackson-annotations Medium Product Manifest bundle-symbolicname com.fasterxml.jackson.core.jackson-annotations Medium Product Manifest Implementation-Title Jackson-annotations High Product Manifest specification-title Jackson-annotations Medium Product pom artifactid jackson-annotations Highest Product pom groupid com.fasterxml.jackson.core Highest Product pom name Jackson-annotations High Product pom parent-artifactid jackson-parent Medium Product pom parent-groupid com.fasterxml.jackson Medium Product pom url FasterXML/jackson High Version file version 2.14.2 High Version gradle version 2.14.2 Highest Version Manifest Bundle-Version 2.14.2 High Version Manifest Implementation-Version 2.14.2 High Version pom parent-version 2.14.2 Low Version pom version 2.14.2 Highest
jackson-annotations-2.15.2.jarDescription:
Core annotations used for value types, used by Jackson data binding package.
License:
The Apache Software License, Version 2.0: https://www.apache.org/licenses/LICENSE-2.0.txt File Path: /home/runner/.gradle/caches/modules-2/files-2.1/com.fasterxml.jackson.core/jackson-annotations/2.15.2/4724a65ac8e8d156a24898d50fd5dbd3642870b8/jackson-annotations-2.15.2.jar
MD5: 71dabcaac955a8bd17b5bba6580aac5b
SHA1: 4724a65ac8e8d156a24898d50fd5dbd3642870b8
SHA256: 04e21f94dcfee4b078fa5a5f53047b785aaba69d19de392f616e7a7fe5d3882f
Referenced In Project/Scope: documentation:javadocClasspath
jackson-annotations-2.15.2.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/io.freefair.gradle/embedded-sass-plugin@8.6 pkg:maven/io.freefair.gradle/quicktype-plugin@8.6 pkg:maven/io.freefair.gradle/mjml-plugin@8.6 Evidence Type Source Name Value Confidence Vendor file name jackson-annotations High Vendor gradle artifactid jackson-annotations Highest Vendor gradle groupid com.fasterxml.jackson.core Highest Vendor jar package name fasterxml Highest Vendor jar package name jackson Highest Vendor Manifest build-jdk-spec 1.8 Low Vendor Manifest bundle-docurl https://github.com/FasterXML/jackson Low Vendor Manifest bundle-symbolicname com.fasterxml.jackson.core.jackson-annotations Medium Vendor Manifest Implementation-Vendor FasterXML High Vendor Manifest Implementation-Vendor-Id com.fasterxml.jackson.core Medium Vendor Manifest specification-vendor FasterXML Low Vendor pom artifactid jackson-annotations Low Vendor pom groupid com.fasterxml.jackson.core Highest Vendor pom name Jackson-annotations High Vendor pom parent-artifactid jackson-parent Low Vendor pom parent-groupid com.fasterxml.jackson Medium Vendor pom url FasterXML/jackson Highest Product file name jackson-annotations High Product gradle artifactid jackson-annotations Highest Product hint analyzer product java8 Highest Product hint analyzer product modules Highest Product jar package name fasterxml Highest Product jar package name jackson Highest Product Manifest build-jdk-spec 1.8 Low Product Manifest bundle-docurl https://github.com/FasterXML/jackson Low Product Manifest Bundle-Name Jackson-annotations Medium Product Manifest bundle-symbolicname com.fasterxml.jackson.core.jackson-annotations Medium Product Manifest Implementation-Title Jackson-annotations High Product Manifest specification-title Jackson-annotations Medium Product pom artifactid jackson-annotations Highest Product pom groupid com.fasterxml.jackson.core Highest Product pom name Jackson-annotations High Product pom parent-artifactid jackson-parent Medium Product pom parent-groupid com.fasterxml.jackson Medium Product pom url FasterXML/jackson High Version file version 2.15.2 High Version gradle version 2.15.2 Highest Version Manifest Bundle-Version 2.15.2 High Version Manifest Implementation-Version 2.15.2 High Version pom parent-version 2.15.2 Low Version pom version 2.15.2 Highest
jackson-core-2.14.2.jarDescription:
Core Jackson processing abstractions (aka Streaming API), implementation for JSON License:
The Apache Software License, Version 2.0: https://www.apache.org/licenses/LICENSE-2.0.txt File Path: /home/runner/.gradle/caches/modules-2/files-2.1/com.fasterxml.jackson.core/jackson-core/2.14.2/f804090e6399ce0cf78242db086017512dd71fcc/jackson-core-2.14.2.jar
MD5: 6ee422ee4c481b2d5aacb2b5e36a7dc0
SHA1: f804090e6399ce0cf78242db086017512dd71fcc
SHA256: b5d37a77c88277b97e3593c8740925216c06df8e4172bbde058528df04ad3e7a
Referenced In Projects/Scopes: mjml-plugin:runtimeClasspath quicktype-plugin:runtimeClasspath jackson-core-2.14.2.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/com.github.node-gradle/gradle-node-plugin@7.0.0 pkg:maven/com.github.node-gradle/gradle-node-plugin@7.0.2 Evidence Type Source Name Value Confidence Vendor file name jackson-core High Vendor gradle artifactid jackson-core Highest Vendor gradle groupid com.fasterxml.jackson.core Highest Vendor jar package name base Highest Vendor jar package name core Highest Vendor jar package name fasterxml Highest Vendor jar package name jackson Highest Vendor jar package name json Highest Vendor Manifest build-jdk-spec 1.8 Low Vendor Manifest bundle-docurl https://github.com/FasterXML/jackson-core Low Vendor Manifest bundle-symbolicname com.fasterxml.jackson.core.jackson-core Medium Vendor Manifest Implementation-Vendor FasterXML High Vendor Manifest Implementation-Vendor-Id com.fasterxml.jackson.core Medium Vendor Manifest multi-release true Low Vendor Manifest specification-vendor FasterXML Low Vendor pom artifactid jackson-core Low Vendor pom groupid com.fasterxml.jackson.core Highest Vendor pom name Jackson-core High Vendor pom parent-artifactid jackson-base Low Vendor pom parent-groupid com.fasterxml.jackson Medium Vendor pom url FasterXML/jackson-core Highest Product file name jackson-core High Product gradle artifactid jackson-core Highest Product hint analyzer product java8 Highest Product hint analyzer product modules Highest Product jar package name base Highest Product jar package name core Highest Product jar package name fasterxml Highest Product jar package name jackson Highest Product jar package name json Highest Product Manifest build-jdk-spec 1.8 Low Product Manifest bundle-docurl https://github.com/FasterXML/jackson-core Low Product Manifest Bundle-Name Jackson-core Medium Product Manifest bundle-symbolicname com.fasterxml.jackson.core.jackson-core Medium Product Manifest Implementation-Title Jackson-core High Product Manifest multi-release true Low Product Manifest specification-title Jackson-core Medium Product pom artifactid jackson-core Highest Product pom groupid com.fasterxml.jackson.core Highest Product pom name Jackson-core High Product pom parent-artifactid jackson-base Medium Product pom parent-groupid com.fasterxml.jackson Medium Product pom url FasterXML/jackson-core High Version file version 2.14.2 High Version gradle version 2.14.2 Highest Version Manifest Bundle-Version 2.14.2 High Version Manifest Implementation-Version 2.14.2 High Version pom version 2.14.2 Highest
jackson-core-2.15.2.jarDescription:
Core Jackson processing abstractions (aka Streaming API), implementation for JSON License:
The Apache Software License, Version 2.0: https://www.apache.org/licenses/LICENSE-2.0.txt File Path: /home/runner/.gradle/caches/modules-2/files-2.1/com.fasterxml.jackson.core/jackson-core/2.15.2/a6fe1836469a69b3ff66037c324d75fc66ef137c/jackson-core-2.15.2.jar
MD5: e51fdee85b48e6637ad9e85ee76b58df
SHA1: a6fe1836469a69b3ff66037c324d75fc66ef137c
SHA256: 303c99e82b1faa91a0bae5d8fbeb56f7e2adf9b526a900dd723bf140d62bd4b4
Referenced In Projects/Scopes: documentation:javadocClasspath embedded-sass-plugin:runtimeClasspath embedded-sass-plugin:compileClasspath jackson-core-2.15.2.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/io.freefair.gradle/embedded-sass-plugin@8.6 pkg:maven/io.freefair.gradle/quicktype-plugin@8.6 pkg:maven/io.freefair.gradle/mjml-plugin@8.6 pkg:maven/org.webjars/webjars-locator-core@0.55 pkg:maven/org.webjars/webjars-locator-core@0.55 Evidence Type Source Name Value Confidence Vendor file name jackson-core High Vendor gradle artifactid jackson-core Highest Vendor gradle groupid com.fasterxml.jackson.core Highest Vendor jar package name base Highest Vendor jar package name com Highest Vendor jar package name core Highest Vendor jar package name fasterxml Highest Vendor jar package name jackson Highest Vendor jar package name json Highest Vendor Manifest build-jdk-spec 1.8 Low Vendor Manifest bundle-docurl https://github.com/FasterXML/jackson-core Low Vendor Manifest bundle-symbolicname com.fasterxml.jackson.core.jackson-core Medium Vendor Manifest Implementation-Vendor FasterXML High Vendor Manifest Implementation-Vendor-Id com.fasterxml.jackson.core Medium Vendor Manifest multi-release true Low Vendor Manifest specification-vendor FasterXML Low Vendor pom artifactid jackson-core Low Vendor pom groupid com.fasterxml.jackson.core Highest Vendor pom name Jackson-core High Vendor pom parent-artifactid jackson-base Low Vendor pom parent-groupid com.fasterxml.jackson Medium Vendor pom url FasterXML/jackson-core Highest Product file name jackson-core High Product gradle artifactid jackson-core Highest Product hint analyzer product java8 Highest Product hint analyzer product modules Highest Product jar package name base Highest Product jar package name com Highest Product jar package name core Highest Product jar package name fasterxml Highest Product jar package name jackson Highest Product jar package name json Highest Product Manifest build-jdk-spec 1.8 Low Product Manifest bundle-docurl https://github.com/FasterXML/jackson-core Low Product Manifest Bundle-Name Jackson-core Medium Product Manifest bundle-symbolicname com.fasterxml.jackson.core.jackson-core Medium Product Manifest Implementation-Title Jackson-core High Product Manifest multi-release true Low Product Manifest specification-title Jackson-core Medium Product pom artifactid jackson-core Highest Product pom groupid com.fasterxml.jackson.core Highest Product pom name Jackson-core High Product pom parent-artifactid jackson-base Medium Product pom parent-groupid com.fasterxml.jackson Medium Product pom url FasterXML/jackson-core High Version file version 2.15.2 High Version gradle version 2.15.2 Highest Version Manifest Bundle-Version 2.15.2 High Version Manifest Implementation-Version 2.15.2 High Version pom version 2.15.2 Highest
jackson-databind-2.14.2.jarDescription:
General data-binding functionality for Jackson: works on core streaming API License:
The Apache Software License, Version 2.0: https://www.apache.org/licenses/LICENSE-2.0.txt File Path: /home/runner/.gradle/caches/modules-2/files-2.1/com.fasterxml.jackson.core/jackson-databind/2.14.2/1e71fddbc80bb86f71a6345ac1e8ab8a00e7134/jackson-databind-2.14.2.jar
MD5: c1b12dd14734cd1986132bf55042dd7e
SHA1: 01e71fddbc80bb86f71a6345ac1e8ab8a00e7134
SHA256: 501d3abce4d18dcc381058ec593c5b94477906bba6efbac14dae40a642f77424
Referenced In Projects/Scopes: mjml-plugin:runtimeClasspath quicktype-plugin:runtimeClasspath jackson-databind-2.14.2.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/com.github.node-gradle/gradle-node-plugin@7.0.0 pkg:maven/com.github.node-gradle/gradle-node-plugin@7.0.2 Evidence Type Source Name Value Confidence Vendor file name jackson-databind High Vendor gradle artifactid jackson-databind Highest Vendor gradle groupid com.fasterxml.jackson.core Highest Vendor jar package name databind Highest Vendor jar package name fasterxml Highest Vendor jar package name jackson Highest Vendor Manifest build-jdk-spec 1.8 Low Vendor Manifest bundle-docurl https://github.com/FasterXML/jackson Low Vendor Manifest bundle-symbolicname com.fasterxml.jackson.core.jackson-databind Medium Vendor Manifest Implementation-Vendor FasterXML High Vendor Manifest Implementation-Vendor-Id com.fasterxml.jackson.core Medium Vendor Manifest multi-release true Low Vendor Manifest specification-vendor FasterXML Low Vendor pom artifactid jackson-databind Low Vendor pom groupid com.fasterxml.jackson.core Highest Vendor pom name jackson-databind High Vendor pom parent-artifactid jackson-base Low Vendor pom parent-groupid com.fasterxml.jackson Medium Vendor pom url FasterXML/jackson Highest Product file name jackson-databind High Product gradle artifactid jackson-databind Highest Product hint analyzer product java8 Highest Product hint analyzer product modules Highest Product jar package name databind Highest Product jar package name fasterxml Highest Product jar package name jackson Highest Product Manifest build-jdk-spec 1.8 Low Product Manifest bundle-docurl https://github.com/FasterXML/jackson Low Product Manifest Bundle-Name jackson-databind Medium Product Manifest bundle-symbolicname com.fasterxml.jackson.core.jackson-databind Medium Product Manifest Implementation-Title jackson-databind High Product Manifest multi-release true Low Product Manifest specification-title jackson-databind Medium Product pom artifactid jackson-databind Highest Product pom groupid com.fasterxml.jackson.core Highest Product pom name jackson-databind High Product pom parent-artifactid jackson-base Medium Product pom parent-groupid com.fasterxml.jackson Medium Product pom url FasterXML/jackson High Version file version 2.14.2 High Version gradle version 2.14.2 Highest Version Manifest Bundle-Version 2.14.2 High Version Manifest Implementation-Version 2.14.2 High Version pom version 2.14.2 Highest
CVE-2023-35116 suppress
jackson-databind through 2.15.2 allows attackers to cause a denial of service or other unspecified impact via a crafted object that uses cyclic dependencies. NOTE: the vendor's perspective is that this is not a valid vulnerability report, because the steps of constructing a cyclic data structure and trying to serialize it cannot be achieved by an external attacker. CWE-770 Allocation of Resources Without Limits or Throttling
CVSSv3:
Base Score: MEDIUM (4.7) Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H/E:1.0/RC:R/MAV:A References:
Vulnerable Software & Versions:
jackson-databind-2.15.2.jarDescription:
General data-binding functionality for Jackson: works on core streaming API License:
The Apache Software License, Version 2.0: https://www.apache.org/licenses/LICENSE-2.0.txt File Path: /home/runner/.gradle/caches/modules-2/files-2.1/com.fasterxml.jackson.core/jackson-databind/2.15.2/9353b021f10c307c00328f52090de2bdb4b6ff9c/jackson-databind-2.15.2.jar
MD5: 20ac0d0526a456274409fa852eb74087
SHA1: 9353b021f10c307c00328f52090de2bdb4b6ff9c
SHA256: 0eb2fdad6e40ab8832a78c9b22f58196dd970594e8d3d5a26ead87847c4f3a96
Referenced In Project/Scope: documentation:javadocClasspath
jackson-databind-2.15.2.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/io.freefair.gradle/embedded-sass-plugin@8.6 pkg:maven/io.freefair.gradle/quicktype-plugin@8.6 pkg:maven/io.freefair.gradle/mjml-plugin@8.6 Evidence Type Source Name Value Confidence Vendor file name jackson-databind High Vendor gradle artifactid jackson-databind Highest Vendor gradle groupid com.fasterxml.jackson.core Highest Vendor jar package name databind Highest Vendor jar package name fasterxml Highest Vendor jar package name jackson Highest Vendor Manifest build-jdk-spec 1.8 Low Vendor Manifest bundle-docurl https://github.com/FasterXML/jackson Low Vendor Manifest bundle-symbolicname com.fasterxml.jackson.core.jackson-databind Medium Vendor Manifest Implementation-Vendor FasterXML High Vendor Manifest Implementation-Vendor-Id com.fasterxml.jackson.core Medium Vendor Manifest multi-release true Low Vendor Manifest specification-vendor FasterXML Low Vendor pom artifactid jackson-databind Low Vendor pom groupid com.fasterxml.jackson.core Highest Vendor pom name jackson-databind High Vendor pom parent-artifactid jackson-base Low Vendor pom parent-groupid com.fasterxml.jackson Medium Vendor pom url FasterXML/jackson Highest Product file name jackson-databind High Product gradle artifactid jackson-databind Highest Product hint analyzer product java8 Highest Product hint analyzer product modules Highest Product jar package name databind Highest Product jar package name fasterxml Highest Product jar package name jackson Highest Product Manifest build-jdk-spec 1.8 Low Product Manifest bundle-docurl https://github.com/FasterXML/jackson Low Product Manifest Bundle-Name jackson-databind Medium Product Manifest bundle-symbolicname com.fasterxml.jackson.core.jackson-databind Medium Product Manifest Implementation-Title jackson-databind High Product Manifest multi-release true Low Product Manifest specification-title jackson-databind Medium Product pom artifactid jackson-databind Highest Product pom groupid com.fasterxml.jackson.core Highest Product pom name jackson-databind High Product pom parent-artifactid jackson-base Medium Product pom parent-groupid com.fasterxml.jackson Medium Product pom url FasterXML/jackson High Version file version 2.15.2 High Version gradle version 2.15.2 Highest Version Manifest Bundle-Version 2.15.2 High Version Manifest Implementation-Version 2.15.2 High Version pom version 2.15.2 Highest
CVE-2023-35116 suppress
jackson-databind through 2.15.2 allows attackers to cause a denial of service or other unspecified impact via a crafted object that uses cyclic dependencies. NOTE: the vendor's perspective is that this is not a valid vulnerability report, because the steps of constructing a cyclic data structure and trying to serialize it cannot be achieved by an external attacker. CWE-770 Allocation of Resources Without Limits or Throttling
CVSSv3:
Base Score: MEDIUM (4.7) Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H/E:1.0/RC:R/MAV:A References:
Vulnerable Software & Versions:
jacoco-plugin-8.6.jarFile Path: /home/runner/work/gradle-plugins/gradle-plugins/jacoco-plugin/build/libs/jacoco-plugin-8.6.jarMD5: 5edcdbfd38bd7acbcb07a1b960d78a49SHA1: d56f2f7b9b301962f2aad296e10f7b4b7094d213SHA256: 2d548ba42d9426a807aa4954dde81e4433bc45408ba605fa2848c54d14665426Referenced In Project/Scope: documentation:javadocClasspathjacoco-plugin-8.6.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/io.freefair.gradle/documentation@8.6
Evidence Type Source Name Value Confidence Vendor file name jacoco-plugin High Vendor gradle artifactid jacoco-plugin Highest Vendor gradle groupid io.freefair.gradle Highest Vendor jar package name freefair Low Vendor jar package name gradle Low Vendor jar package name io Low Product file name jacoco-plugin High Product gradle artifactid jacoco-plugin Highest Product jar package name freefair Low Product jar package name gradle Low Product jar package name plugins Low Version file version 8.6 High Version Manifest Implementation-Version 8.6 High
javapoet-1.13.0.jarDescription:
Use beautiful Java code to generate beautiful Java code. License:
Apache 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt File Path: /home/runner/.gradle/caches/modules-2/files-2.1/com.squareup/javapoet/1.13.0/d6562d385049f35eb50403fa86bb11cce76b866a/javapoet-1.13.0.jar
MD5: 8d9a3cbeaa83e6700478b73c33a1b4fe
SHA1: d6562d385049f35eb50403fa86bb11cce76b866a
SHA256: 4c7517e848a71b36d069d12bb3bf46a70fd4cda3105d822b0ed2e19c00b69291
Referenced In Projects/Scopes: documentation:javadocClasspath test-common:compileClasspath test-common:runtimeClasspath javapoet-1.13.0.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/io.freefair.gradle/test-common@8.6 pkg:maven/io.freefair.gradle/test-common@8.6 pkg:maven/io.freefair.gradle/test-common@8.6 Evidence Type Source Name Value Confidence Vendor file name javapoet High Vendor gradle artifactid javapoet Highest Vendor gradle groupid com.squareup Highest Vendor jar package name javapoet Highest Vendor jar package name squareup Highest Vendor Manifest automatic-module-name com.squareup.javapoet Medium Vendor pom artifactid javapoet Low Vendor pom groupid com.squareup Highest Vendor pom name JavaPoet High Vendor pom organization name Square, Inc. High Vendor pom organization url http://squareup.com Medium Vendor pom url http://github.com/square/javapoet/ Highest Product file name javapoet High Product gradle artifactid javapoet Highest Product jar package name javapoet Highest Product jar package name squareup Highest Product Manifest automatic-module-name com.squareup.javapoet Medium Product pom artifactid javapoet Highest Product pom groupid com.squareup Highest Product pom name JavaPoet High Product pom organization name Square, Inc. Low Product pom organization url http://squareup.com Low Product pom url http://github.com/square/javapoet/ Medium Version file version 1.13.0 High Version gradle version 1.13.0 Highest Version pom version 1.13.0 Highest
javax.annotation-api-1.2.jarDescription:
Common Annotations for the JavaTM Platform API License:
CDDL + GPLv2 with classpath exception: https://glassfish.dev.java.net/nonav/public/CDDL+GPL.html File Path: /home/runner/.gradle/caches/modules-2/files-2.1/javax.annotation/javax.annotation-api/1.2/479c1e06db31c432330183f5cae684163f186146/javax.annotation-api-1.2.jar
MD5: 75fe320d2b3763bd6883ae1ede35e987
SHA1: 479c1e06db31c432330183f5cae684163f186146
SHA256: 5909b396ca3a2be10d0eea32c74ef78d816e1b4ead21de1d78de1f890d033e04
Referenced In Projects/Scopes: documentation:javadocClasspath maven-plugin-plugin:compileClasspath maven-plugin-plugin:runtimeClasspath javax.annotation-api-1.2.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/io.freefair.gradle/maven-plugin-plugin@8.6 pkg:maven/org.apache.maven.plugins/maven-plugin-plugin@3.11.0 pkg:maven/org.apache.maven.plugin-tools/maven-plugin-tools-annotations@3.11.0 pkg:maven/org.apache.maven.plugin-tools/maven-plugin-tools-annotations@3.11.0 pkg:maven/org.apache.maven.plugins/maven-plugin-plugin@3.11.0 pkg:maven/org.apache.maven.plugin-tools/maven-plugin-tools-generators@3.11.0 pkg:maven/org.apache.maven.plugin-tools/maven-plugin-tools-generators@3.11.0 Evidence Type Source Name Value Confidence Vendor file name javax.annotation-api High Vendor gradle artifactid javax.annotation-api Highest Vendor gradle groupid javax.annotation Highest Vendor jar package name annotation Highest Vendor jar package name javax Highest Vendor Manifest bundle-docurl https://glassfish.java.net Low Vendor Manifest bundle-symbolicname javax.annotation-api Medium Vendor Manifest extension-name javax.annotation Medium Vendor Manifest Implementation-Vendor GlassFish Community High Vendor Manifest Implementation-Vendor-Id org.glassfish Medium Vendor Manifest specification-vendor Oracle Corporation Low Vendor pom artifactid javax.annotation-api Low Vendor pom developer id mode Medium Vendor pom developer name Rajiv Mordani Medium Vendor pom developer org Oracle, Inc. Medium Vendor pom groupid javax.annotation Highest Vendor pom name API High Vendor pom organization name GlassFish Community High Vendor pom organization url https://glassfish.java.net Medium Vendor pom parent-artifactid jvnet-parent Low Vendor pom parent-groupid net.java Medium Vendor pom url http://jcp.org/en/jsr/detail?id=250 Highest Product file name javax.annotation-api High Product gradle artifactid javax.annotation-api Highest Product jar package name annotation Highest Product jar package name javax Highest Product Manifest bundle-docurl https://glassfish.java.net Low Product Manifest Bundle-Name javax.annotation API Medium Product Manifest bundle-symbolicname javax.annotation-api Medium Product Manifest extension-name javax.annotation Medium Product pom artifactid javax.annotation-api Highest Product pom developer id mode Low Product pom developer name Rajiv Mordani Low Product pom developer org Oracle, Inc. Low Product pom groupid javax.annotation Highest Product pom name API High Product pom organization name GlassFish Community Low Product pom organization url https://glassfish.java.net Low Product pom parent-artifactid jvnet-parent Medium Product pom parent-groupid net.java Medium Product pom url http://jcp.org/en/jsr/detail?id=250 Medium Version file version 1.2 High Version gradle version 1.2 Highest Version Manifest Bundle-Version 1.2 High Version Manifest Implementation-Version 1.2 High Version pom parent-version 1.2 Low Version pom version 1.2 Highest
javax.inject-1.jarFile Path: /home/runner/.gradle/caches/modules-2/files-2.1/javax.inject/javax.inject/1/6975da39a7040257bd51d21a231b76c915872d38/javax.inject-1.jarMD5: 289075e48b909e9e74e6c915b3631d2eSHA1: 6975da39a7040257bd51d21a231b76c915872d38SHA256: 91c77044a50c481636c32d916fd89c9118a72195390452c81065080f957de7ffReferenced In Projects/Scopes:
documentation:javadocClasspath maven-plugin-plugin:compileClasspath maven-plugin-plugin:runtimeClasspath javax.inject-1.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/io.freefair.gradle/maven-plugin-plugin@8.6 pkg:maven/org.apache.maven.plugins/maven-plugin-plugin@3.11.0 pkg:maven/org.apache.maven.plugin-tools/maven-plugin-tools-annotations@3.11.0 pkg:maven/org.apache.maven.plugin-tools/maven-plugin-tools-annotations@3.11.0 pkg:maven/org.apache.maven.plugins/maven-plugin-plugin@3.11.0 pkg:maven/org.apache.maven.plugin-tools/maven-plugin-tools-generators@3.11.0 pkg:maven/org.apache.maven.plugin-tools/maven-plugin-tools-generators@3.11.0 Evidence Type Source Name Value Confidence Vendor file name javax.inject-1 High Vendor gradle artifactid javax.inject Highest Vendor gradle groupid javax.inject Highest Vendor jar package name inject Low Vendor jar package name javax Low Product file name javax.inject-1 High Product gradle artifactid javax.inject Highest Product jar package name inject Low Version file name javax.inject-1 Medium Version file version 1 Medium Version gradle version 1 Highest
jcommander-1.82.jarFile Path: /home/runner/.gradle/caches/modules-2/files-2.1/com.beust/jcommander/1.82/a7c5fef184d238065de38f81bbc6ee50cca2e21/jcommander-1.82.jarMD5: c350dc0db8aa038e6bbaf0050720d69cSHA1: 0a7c5fef184d238065de38f81bbc6ee50cca2e21SHA256: deeac157c8de6822878d85d0c7bc8467a19cc8484d37788f7804f039dde280b1Referenced In Projects/Scopes:
documentation:__$$asciidoctorj$$___r documentation:__$$asciidoctorj_asciidoctor$$__r jcommander-1.82.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.asciidoctor/asciidoctorj@2.5.7 pkg:maven/org.asciidoctor/asciidoctorj@2.5.7 Evidence Type Source Name Value Confidence Vendor file name jcommander High Vendor gradle artifactid jcommander Highest Vendor gradle groupid com.beust Highest Vendor jar package name beust Low Vendor jar package name jcommander Low Product file name jcommander High Product gradle artifactid jcommander Highest Product jar package name jcommander Low Version file name jcommander Medium Version file version 1.82 High Version gradle version 1.82 Highest
jruby-complete-9.3.8.0.jar (shaded: com.github.jnr:jffi:1.3.9)Description:
Java Foreign Function Interface License:
The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt File Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.jruby/jruby-complete/9.3.8.0/8e11191265ab501930125081d8c21a3f55f1b8cd/jruby-complete-9.3.8.0.jar/META-INF/maven/com.github.jnr/jffi/pom.xml
MD5: 5d1a63e1ca400249e3d30b9358d16d98
SHA1: 174c6ac29abb9e8303247a149453c51414799eec
SHA256: cc4aa6c329a4457a8185dbc4da21f5ec062e2225aec79c20083b20d751127a1c
Referenced In Projects/Scopes: documentation:__$$asciidoctorj$$___r documentation:__$$asciidoctorj_asciidoctor$$__r Evidence Type Source Name Value Confidence Vendor pom artifactid jffi Low Vendor pom developer email wmeissner@gmail.com Low Vendor pom developer id wmeissner Medium Vendor pom developer name Wayne Meissner Medium Vendor pom groupid com.github.jnr Highest Vendor pom name jffi High Vendor pom url http://github.com/jnr/jffi Highest Product pom artifactid jffi Highest Product pom developer email wmeissner@gmail.com Low Product pom developer id wmeissner Low Product pom developer name Wayne Meissner Low Product pom groupid com.github.jnr Highest Product pom name jffi High Product pom url http://github.com/jnr/jffi Medium Version pom version 1.3.9 Highest
jruby-complete-9.3.8.0.jar (shaded: com.github.jnr:jnr-a64asm:1.0.0)Description:
A pure-java A64 assembler License:
The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt File Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.jruby/jruby-complete/9.3.8.0/8e11191265ab501930125081d8c21a3f55f1b8cd/jruby-complete-9.3.8.0.jar/META-INF/maven/com.github.jnr/jnr-a64asm/pom.xml
MD5: 49cf6d2169962d46d987325c15c3ca65
SHA1: 17a5a92b79393a59e19ba38e1bdf8252a660e359
SHA256: 9dd9c299ca3ec9287db2ec26571a5cc611dc21a1a4f5d2ef1255a924face47a8
Referenced In Projects/Scopes: documentation:__$$asciidoctorj$$___r documentation:__$$asciidoctorj_asciidoctor$$__r Evidence Type Source Name Value Confidence Vendor pom artifactid jnr-a64asm Low Vendor pom developer email ossdev@puresoftware.com Low Vendor pom developer id ossdev Medium Vendor pom developer name ossdev Medium Vendor pom groupid com.github.jnr Highest Vendor pom name jnr-a64asm High Product pom artifactid jnr-a64asm Highest Product pom developer email ossdev@puresoftware.com Low Product pom developer id ossdev Low Product pom developer name ossdev Low Product pom groupid com.github.jnr Highest Product pom name jnr-a64asm High Version pom version 1.0.0 Highest
jruby-complete-9.3.8.0.jar (shaded: com.github.jnr:jnr-constants:0.10.3)Description:
A set of platform constants (e.g. errno values) License:
The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt File Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.jruby/jruby-complete/9.3.8.0/8e11191265ab501930125081d8c21a3f55f1b8cd/jruby-complete-9.3.8.0.jar/META-INF/maven/com.github.jnr/jnr-constants/pom.xml
MD5: c95844446f54429b217cf286410bce7d
SHA1: 36dc060b908125fcdc15ba1e4a30d551eb611cd1
SHA256: e6cfebe4ae44de96a1ec8ee3ff3eb1134ed493b0a15b29a8663e39b6fdaba7a2
Referenced In Projects/Scopes: documentation:__$$asciidoctorj$$___r documentation:__$$asciidoctorj_asciidoctor$$__r Evidence Type Source Name Value Confidence Vendor pom artifactid jnr-constants Low Vendor pom developer email headius@headius.com Low Vendor pom developer email wmeissner@gmail.com Low Vendor pom developer id headius Medium Vendor pom developer id wmeissner Medium Vendor pom developer name Charles Oliver Nutter Medium Vendor pom developer name Wayne Meissner Medium Vendor pom groupid com.github.jnr Highest Vendor pom name jnr-constants High Vendor pom url http://github.com/jnr/jnr-constants Highest Product pom artifactid jnr-constants Highest Product pom developer email headius@headius.com Low Product pom developer email wmeissner@gmail.com Low Product pom developer id headius Low Product pom developer id wmeissner Low Product pom developer name Charles Oliver Nutter Low Product pom developer name Wayne Meissner Low Product pom groupid com.github.jnr Highest Product pom name jnr-constants High Product pom url http://github.com/jnr/jnr-constants Medium Version pom version 0.10.3 Highest
jruby-complete-9.3.8.0.jar (shaded: com.github.jnr:jnr-enxio:0.32.13)Description:
Native I/O access for java License:
The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt File Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.jruby/jruby-complete/9.3.8.0/8e11191265ab501930125081d8c21a3f55f1b8cd/jruby-complete-9.3.8.0.jar/META-INF/maven/com.github.jnr/jnr-enxio/pom.xml
MD5: 7d7dd084ca7cc9c9e634408d0f768925
SHA1: dc0486133eafd86b3c665251bedea096146aec69
SHA256: a5caef6df94a2580542dd42c673374d38450d96fbcd8e77c98e6a85f8967fd39
Referenced In Projects/Scopes: documentation:__$$asciidoctorj$$___r documentation:__$$asciidoctorj_asciidoctor$$__r Evidence Type Source Name Value Confidence Vendor pom artifactid jnr-enxio Low Vendor pom developer email wmeissner@gmail.com Low Vendor pom developer id wmeissner Medium Vendor pom developer name Wayne Meissner Medium Vendor pom groupid com.github.jnr Highest Vendor pom name jnr-enxio High Vendor pom url http://github.com/jnr/jnr-enxio Highest Product pom artifactid jnr-enxio Highest Product pom developer email wmeissner@gmail.com Low Product pom developer id wmeissner Low Product pom developer name Wayne Meissner Low Product pom groupid com.github.jnr Highest Product pom name jnr-enxio High Product pom url http://github.com/jnr/jnr-enxio Medium Version pom version 0.32.13 Highest
jruby-complete-9.3.8.0.jar (shaded: com.github.jnr:jnr-ffi:2.2.11)Description:
A library for invoking native functions from java License:
The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt File Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.jruby/jruby-complete/9.3.8.0/8e11191265ab501930125081d8c21a3f55f1b8cd/jruby-complete-9.3.8.0.jar/META-INF/maven/com.github.jnr/jnr-ffi/pom.xml
MD5: 231775a58f949c06373696f2a7ab0ba8
SHA1: 3dac1a9f6214f802a736b7ea0f09473b89ecc11a
SHA256: 8be242591cacccb6cae9da700f4373ddad00760e8da679697a98128bb42a5f7b
Referenced In Projects/Scopes: documentation:__$$asciidoctorj$$___r documentation:__$$asciidoctorj_asciidoctor$$__r Evidence Type Source Name Value Confidence Vendor pom artifactid jnr-ffi Low Vendor pom developer email headius@headius.com Low Vendor pom developer email wmeissner@gmail.com Low Vendor pom developer id headius Medium Vendor pom developer id wmeissner Medium Vendor pom developer name Charles Oliver Nutter Medium Vendor pom developer name Wayne Meissner Medium Vendor pom groupid com.github.jnr Highest Vendor pom name jnr-ffi High Vendor pom url http://github.com/jnr/jnr-ffi Highest Product pom artifactid jnr-ffi Highest Product pom developer email headius@headius.com Low Product pom developer email wmeissner@gmail.com Low Product pom developer id headius Low Product pom developer id wmeissner Low Product pom developer name Charles Oliver Nutter Low Product pom developer name Wayne Meissner Low Product pom groupid com.github.jnr Highest Product pom name jnr-ffi High Product pom url http://github.com/jnr/jnr-ffi Medium Version pom version 2.2.11 Highest
jruby-complete-9.3.8.0.jar (shaded: com.github.jnr:jnr-netdb:1.2.0)Description:
Lookup TCP and UDP services from java License:
The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt File Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.jruby/jruby-complete/9.3.8.0/8e11191265ab501930125081d8c21a3f55f1b8cd/jruby-complete-9.3.8.0.jar/META-INF/maven/com.github.jnr/jnr-netdb/pom.xml
MD5: 5f7adefaf9448cf27718e23106a879f9
SHA1: 3a6045d944a9b4720156cd533ca1cbd1f22bc4b5
SHA256: 44e976a6bf822ff20321b19940387b90a8ade8aaeeacbeecb55171cf2d40f1e7
Referenced In Projects/Scopes: documentation:__$$asciidoctorj$$___r documentation:__$$asciidoctorj_asciidoctor$$__r Evidence Type Source Name Value Confidence Vendor pom artifactid jnr-netdb Low Vendor pom developer email wmeissner@gmail.com Low Vendor pom developer id wmeissner Medium Vendor pom developer name Wayne Meissner Medium Vendor pom groupid com.github.jnr Highest Vendor pom name jnr-netdb High Vendor pom url http://github.com/jnr/jnr-netdb Highest Product pom artifactid jnr-netdb Highest Product pom developer email wmeissner@gmail.com Low Product pom developer id wmeissner Low Product pom developer name Wayne Meissner Low Product pom groupid com.github.jnr Highest Product pom name jnr-netdb High Product pom url http://github.com/jnr/jnr-netdb Medium Version pom version 1.2.0 Highest
jruby-complete-9.3.8.0.jar (shaded: com.github.jnr:jnr-posix:3.1.15)Description:
Common cross-project/cross-platform POSIX APIs
License:
Eclipse Public License - v 2.0: https://www.eclipse.org/legal/epl-2.0/
GNU General Public License Version 2: http://www.gnu.org/copyleft/gpl.html
GNU Lesser General Public License Version 2.1: http://www.gnu.org/licenses/lgpl.html File Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.jruby/jruby-complete/9.3.8.0/8e11191265ab501930125081d8c21a3f55f1b8cd/jruby-complete-9.3.8.0.jar/META-INF/maven/com.github.jnr/jnr-posix/pom.xml
MD5: dc0f4cb313df0bc9556e435f2f6c09c2
SHA1: 0edc3357372e1ebdb86f673ab258ff2a0089b1ab
SHA256: aa3c236e5fbc6ec365e4c811ecea4dbca7591851cec7c7a1df6b324c4eb082a3
Referenced In Projects/Scopes: documentation:__$$asciidoctorj$$___r documentation:__$$asciidoctorj_asciidoctor$$__r Evidence Type Source Name Value Confidence Vendor pom artifactid jnr-posix Low Vendor pom developer email headius@headius.com Low Vendor pom developer email tom.enebo@gmail.com Low Vendor pom developer email wmeissner@gmail.com Low Vendor pom developer id enebo Medium Vendor pom developer id headius Medium Vendor pom developer id wmeissner Medium Vendor pom developer name Charles Oliver Nutter Medium Vendor pom developer name Thomas E Enebo Medium Vendor pom developer name Wayne Meissner Medium Vendor pom groupid com.github.jnr Highest Vendor pom name jnr-posix High Product pom artifactid jnr-posix Highest Product pom developer email headius@headius.com Low Product pom developer email tom.enebo@gmail.com Low Product pom developer email wmeissner@gmail.com Low Product pom developer id enebo Low Product pom developer id headius Low Product pom developer id wmeissner Low Product pom developer name Charles Oliver Nutter Low Product pom developer name Thomas E Enebo Low Product pom developer name Wayne Meissner Low Product pom groupid com.github.jnr Highest Product pom name jnr-posix High Version pom version 3.1.15 Highest
jruby-complete-9.3.8.0.jar (shaded: com.github.jnr:jnr-unixsocket:0.38.17)Description:
UNIX socket channels for java License:
The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt File Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.jruby/jruby-complete/9.3.8.0/8e11191265ab501930125081d8c21a3f55f1b8cd/jruby-complete-9.3.8.0.jar/META-INF/maven/com.github.jnr/jnr-unixsocket/pom.xml
MD5: 1b3d4a4f25bd2a9e2b1a3d70483079b2
SHA1: 45e1898b528db500d5d175a07039b0f45408dfd6
SHA256: de848159e1524644e9f1c574af7f46b751e6e530f35a27eeb4c853e91ea1c2e1
Referenced In Projects/Scopes: documentation:__$$asciidoctorj$$___r documentation:__$$asciidoctorj_asciidoctor$$__r Evidence Type Source Name Value Confidence Vendor pom artifactid jnr-unixsocket Low Vendor pom developer email fritz-github@fritz-elfert.de Low Vendor pom developer email wmeissner@gmail.com Low Vendor pom developer id felfert Medium Vendor pom developer id wmeissner Medium Vendor pom developer name Fritz Elfert Medium Vendor pom developer name Wayne Meissner Medium Vendor pom groupid com.github.jnr Highest Vendor pom name jnr-unixsocket High Vendor pom url http://github.com/jnr/jnr-unixsocket Highest Product pom artifactid jnr-unixsocket Highest Product pom developer email fritz-github@fritz-elfert.de Low Product pom developer email wmeissner@gmail.com Low Product pom developer id felfert Low Product pom developer id wmeissner Low Product pom developer name Fritz Elfert Low Product pom developer name Wayne Meissner Low Product pom groupid com.github.jnr Highest Product pom name jnr-unixsocket High Product pom url http://github.com/jnr/jnr-unixsocket Medium Version pom version 0.38.17 Highest
jruby-complete-9.3.8.0.jar (shaded: com.github.jnr:jnr-x86asm:1.0.2)Description:
A pure-java X86 and X86_64 assembler License:
MIT License: http://www.opensource.org/licenses/mit-license.php File Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.jruby/jruby-complete/9.3.8.0/8e11191265ab501930125081d8c21a3f55f1b8cd/jruby-complete-9.3.8.0.jar/META-INF/maven/com.github.jnr/jnr-x86asm/pom.xml
MD5: cb16b0b890c8b7a726a547ca0b58d00a
SHA1: 91de5c25955d1f321832738dce614b45e9939050
SHA256: ea862ce3bd96ccb8ca36b8e9e7baef2da3fbbfbdc256baeaa8c8a873911074e7
Referenced In Projects/Scopes: documentation:__$$asciidoctorj$$___r documentation:__$$asciidoctorj_asciidoctor$$__r Evidence Type Source Name Value Confidence Vendor pom artifactid jnr-x86asm Low Vendor pom developer email wmeissner@gmail.com Low Vendor pom developer id wmeissner Medium Vendor pom developer name Wayne Meissner Medium Vendor pom groupid com.github.jnr Highest Vendor pom name jnr-x86asm High Vendor pom url http://github.com/jnr/jnr-x86asm Highest Product pom artifactid jnr-x86asm Highest Product pom developer email wmeissner@gmail.com Low Product pom developer id wmeissner Low Product pom developer name Wayne Meissner Low Product pom groupid com.github.jnr Highest Product pom name jnr-x86asm High Product pom url http://github.com/jnr/jnr-x86asm Medium Version pom version 1.0.2 Highest
jruby-complete-9.3.8.0.jar (shaded: com.headius:backport9:1.12)License:
The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt File Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.jruby/jruby-complete/9.3.8.0/8e11191265ab501930125081d8c21a3f55f1b8cd/jruby-complete-9.3.8.0.jar/META-INF/maven/com.headius/backport9/pom.xml
MD5: 1af02442211713e3e00a1b7f8bf7a92e
SHA1: c0b388a50a3030e56089ada5154366529a5da213
SHA256: 861b04ed538064ff8053aa619cdd407a7d290e7623be8d38719fa7633dd96f5a
Referenced In Projects/Scopes: documentation:__$$asciidoctorj$$___r documentation:__$$asciidoctorj_asciidoctor$$__r Evidence Type Source Name Value Confidence Vendor pom artifactid backport9 Low Vendor pom developer email headius@headius.com Low Vendor pom developer id headius Medium Vendor pom developer name Charles Nutter Medium Vendor pom groupid com.headius Highest Product pom artifactid backport9 Highest Product pom developer email headius@headius.com Low Product pom developer id headius Low Product pom developer name Charles Nutter Low Product pom groupid com.headius Highest Version pom version 1.12 Highest
jruby-complete-9.3.8.0.jar (shaded: com.headius:invokebinder:1.12)License:
The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt File Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.jruby/jruby-complete/9.3.8.0/8e11191265ab501930125081d8c21a3f55f1b8cd/jruby-complete-9.3.8.0.jar/META-INF/maven/com.headius/invokebinder/pom.xml
MD5: d1ba5bea2e98d321d3bc7f7bc6c512ff
SHA1: a6c6a3452366292f645d1f80612a984367f5ec13
SHA256: 0fd6ec9c1ab88504895a8a88d4a1a538a04be59bc5a889d610bf4035224653b5
Referenced In Projects/Scopes: documentation:__$$asciidoctorj$$___r documentation:__$$asciidoctorj_asciidoctor$$__r Evidence Type Source Name Value Confidence Vendor pom artifactid invokebinder Low Vendor pom developer email headius@headius.com Low Vendor pom developer id headius Medium Vendor pom developer name Charles Nutter Medium Vendor pom groupid com.headius Highest Vendor pom name invokebinder High Vendor pom url http://maven.apache.org Highest Product pom artifactid invokebinder Highest Product pom developer email headius@headius.com Low Product pom developer id headius Low Product pom developer name Charles Nutter Low Product pom groupid com.headius Highest Product pom name invokebinder High Product pom url http://maven.apache.org Medium Version pom version 1.12 Highest
jruby-complete-9.3.8.0.jar (shaded: com.headius:options:1.6)License:
The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt File Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.jruby/jruby-complete/9.3.8.0/8e11191265ab501930125081d8c21a3f55f1b8cd/jruby-complete-9.3.8.0.jar/META-INF/maven/com.headius/options/pom.xml
MD5: ab8aa85f5cc1c1d0ff704b1dc3837e2a
SHA1: 78e835c2bb1a934075961f2954452a0871b931be
SHA256: b5597f285a7c770acb92cef914788c613c7beaf79eace8a9f56d7f5026a5817e
Referenced In Projects/Scopes: documentation:__$$asciidoctorj$$___r documentation:__$$asciidoctorj_asciidoctor$$__r Evidence Type Source Name Value Confidence Vendor pom artifactid options Low Vendor pom developer email headius@headius.com Low Vendor pom developer id headius Medium Vendor pom developer name Charles Nutter Medium Vendor pom groupid com.headius Highest Vendor pom name options High Vendor pom url headius/options Highest Product pom artifactid options Highest Product pom developer email headius@headius.com Low Product pom developer id headius Low Product pom developer name Charles Nutter Low Product pom groupid com.headius Highest Product pom name options High Product pom url headius/options High Version pom version 1.6 Highest
jruby-complete-9.3.8.0.jar (shaded: com.jcraft:jzlib:1.1.3)Description:
JZlib is a re-implementation of zlib in pure Java License:
BSD: http://www.jcraft.com/jzlib/LICENSE.txt File Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.jruby/jruby-complete/9.3.8.0/8e11191265ab501930125081d8c21a3f55f1b8cd/jruby-complete-9.3.8.0.jar/META-INF/maven/com.jcraft/jzlib/pom.xml
MD5: 856f139610c4e36c1b0bdb5ad007c2a5
SHA1: 6e6789004c70477a6e2ea92c066b757534e63a10
SHA256: edb67251608556ad9584d00e46b5ef38ecf1246d571c0f80f24f50b285a9f682
Referenced In Projects/Scopes: documentation:__$$asciidoctorj$$___r documentation:__$$asciidoctorj_asciidoctor$$__r Evidence Type Source Name Value Confidence Vendor pom artifactid jzlib Low Vendor pom developer email ymnk at jcraft D0t com Low Vendor pom developer id ymnk Medium Vendor pom developer name Atsuhiko Yamanaka Medium Vendor pom developer org JCraft,Inc. Medium Vendor pom developer org URL http://www.jcraft.com/ Medium Vendor pom groupid com.jcraft Highest Vendor pom name JZlib High Vendor pom organization name jcraft High Vendor pom organization url http://www.jcraft.com/ Medium Vendor pom url http://www.jcraft.com/jzlib/ Highest Product pom artifactid jzlib Highest Product pom developer email ymnk at jcraft D0t com Low Product pom developer id ymnk Low Product pom developer name Atsuhiko Yamanaka Low Product pom developer org JCraft,Inc. Low Product pom developer org URL http://www.jcraft.com/ Low Product pom groupid com.jcraft Highest Product pom name JZlib High Product pom organization name jcraft Low Product pom organization url http://www.jcraft.com/ Low Product pom url http://www.jcraft.com/jzlib/ Medium Version pom version 1.1.3 Highest
jruby-complete-9.3.8.0.jar (shaded: joda-time:joda-time:2.10.10)Description:
Date and time library to replace JDK date handling License:
Apache License, Version 2.0: https://www.apache.org/licenses/LICENSE-2.0.txt File Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.jruby/jruby-complete/9.3.8.0/8e11191265ab501930125081d8c21a3f55f1b8cd/jruby-complete-9.3.8.0.jar/META-INF/maven/joda-time/joda-time/pom.xml
MD5: ef13c82390e8506f05364178a3300018
SHA1: d6b3422231b9c976bc409b906f114fa0697b280c
SHA256: 9c62e83b103e38b10351603e246d7e54899d4a8f1d305176f5546dd3f8c55358
Referenced In Projects/Scopes: documentation:__$$asciidoctorj$$___r documentation:__$$asciidoctorj_asciidoctor$$__r Evidence Type Source Name Value Confidence Vendor pom artifactid joda-time Low Vendor pom developer id broneill Medium Vendor pom developer id jodastephen Medium Vendor pom developer name Brian S O'Neill Medium Vendor pom developer name Stephen Colebourne Medium Vendor pom groupid joda-time Highest Vendor pom name Joda-Time High Vendor pom organization name Joda.org High Vendor pom organization url https://www.joda.org Medium Vendor pom url https://www.joda.org/joda-time/ Highest Product pom artifactid joda-time Highest Product pom developer id broneill Low Product pom developer id jodastephen Low Product pom developer name Brian S O'Neill Low Product pom developer name Stephen Colebourne Low Product pom groupid joda-time Highest Product pom name Joda-Time High Product pom organization name Joda.org Low Product pom organization url https://www.joda.org Low Product pom url https://www.joda.org/joda-time/ Medium Version pom version 2.10.10 Highest
jruby-complete-9.3.8.0.jar (shaded: me.qmx.jitescript:jitescript:0.4.1)Description:
Java API for Bytecode License:
The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt File Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.jruby/jruby-complete/9.3.8.0/8e11191265ab501930125081d8c21a3f55f1b8cd/jruby-complete-9.3.8.0.jar/META-INF/maven/me.qmx.jitescript/jitescript/pom.xml
MD5: a8244f2c8843244d8934742315b47154
SHA1: 63a1b1c6c7ac7c29e8d7a065a9c2649058455749
SHA256: 4001176ebaedccf43616c92dad87d0d305b54000cfae4e999675e8acb35735f6
Referenced In Projects/Scopes: documentation:__$$asciidoctorj$$___r documentation:__$$asciidoctorj_asciidoctor$$__r Evidence Type Source Name Value Confidence Vendor pom artifactid jitescript Low Vendor pom developer email qmx@qmx.me Low Vendor pom developer id qmx Medium Vendor pom developer name Douglas Campos Medium Vendor pom groupid me.qmx.jitescript Highest Vendor pom name jitescript High Vendor pom url qmx/jitescript Highest Product pom artifactid jitescript Highest Product pom developer email qmx@qmx.me Low Product pom developer id qmx Low Product pom developer name Douglas Campos Low Product pom groupid me.qmx.jitescript Highest Product pom name jitescript High Product pom url qmx/jitescript High Version pom version 0.4.1 Highest
jruby-complete-9.3.8.0.jar (shaded: org.jruby.jcodings:jcodings:1.0.57)Description:
Byte based encoding support library for java License:
MIT License: http://www.opensource.org/licenses/mit-license.php File Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.jruby/jruby-complete/9.3.8.0/8e11191265ab501930125081d8c21a3f55f1b8cd/jruby-complete-9.3.8.0.jar/META-INF/maven/org.jruby.jcodings/jcodings/pom.xml
MD5: ace4d97fafd4d6410b9ab88a7261e73f
SHA1: d5a1f30683c63fefe6b57f90fd1bdcd8c68bd165
SHA256: 1e34fc29607b56e4b6003598da3a05c4ed8c87a05e0b011ad699137beb833d8f
Referenced In Projects/Scopes: documentation:__$$asciidoctorj$$___r documentation:__$$asciidoctorj_asciidoctor$$__r Evidence Type Source Name Value Confidence Vendor pom artifactid jcodings Low Vendor pom developer email headius@headius.com Low Vendor pom developer email lopx@gazeta.pl Low Vendor pom developer id headius Medium Vendor pom developer id lopex Medium Vendor pom developer name Charles Oliver Nutter Medium Vendor pom developer name Marcin Mielzynski Medium Vendor pom groupid org.jruby.jcodings Highest Vendor pom name JCodings High Product pom artifactid jcodings Highest Product pom developer email headius@headius.com Low Product pom developer email lopx@gazeta.pl Low Product pom developer id headius Low Product pom developer id lopex Low Product pom developer name Charles Oliver Nutter Low Product pom developer name Marcin Mielzynski Low Product pom groupid org.jruby.jcodings Highest Product pom name JCodings High Version pom version 1.0.57 Highest
jruby-complete-9.3.8.0.jar (shaded: org.jruby.joni:joni:2.1.43)Description:
Java port of Oniguruma: http://www.geocities.jp/kosako3/oniguruma
that uses byte arrays directly instead of java Strings and chars
License:
MIT License: http://www.opensource.org/licenses/mit-license.php File Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.jruby/jruby-complete/9.3.8.0/8e11191265ab501930125081d8c21a3f55f1b8cd/jruby-complete-9.3.8.0.jar/META-INF/maven/org.jruby.joni/joni/pom.xml
MD5: 2d05ca83c96cf602c3af73539106d1d3
SHA1: 3883bc9616a31c5936ccb724150ab5a336a4c816
SHA256: bfe531310628079273c7fb2174bc4658540cea56e93d966d060d9833ad9c425a
Referenced In Projects/Scopes: documentation:__$$asciidoctorj$$___r documentation:__$$asciidoctorj_asciidoctor$$__r Evidence Type Source Name Value Confidence Vendor pom artifactid joni Low Vendor pom developer email lopx@gazeta.pl Low Vendor pom developer id lopex Medium Vendor pom developer name Marcin Mielzynski Medium Vendor pom groupid org.jruby.joni Highest Vendor pom name Joni High Product pom artifactid joni Highest Product pom developer email lopx@gazeta.pl Low Product pom developer id lopex Low Product pom developer name Marcin Mielzynski Low Product pom groupid org.jruby.joni Highest Product pom name Joni High Version pom version 2.1.43 Highest
jruby-complete-9.3.8.0.jar (shaded: org.jruby:dirgra:0.3)Description:
Simple Directed Graph License:
EPL: http://www.eclipse.org/legal/epl-v10.html File Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.jruby/jruby-complete/9.3.8.0/8e11191265ab501930125081d8c21a3f55f1b8cd/jruby-complete-9.3.8.0.jar/META-INF/maven/org.jruby/dirgra/pom.xml
MD5: 4d7f76247a22e56064ab9db464794cd4
SHA1: 91c78b3f134c5b1f04d3a6447d246cf0a0d9a8e2
SHA256: d0f49f7eaf14307bc8ce44b14fe999c1330e029043f6e8a125b5a9f7ed1c417a
Referenced In Projects/Scopes: documentation:__$$asciidoctorj$$___r documentation:__$$asciidoctorj_asciidoctor$$__r Evidence Type Source Name Value Confidence Vendor pom artifactid dirgra Low Vendor pom developer email tom.enebo@gmail.com Low Vendor pom developer id enebo Medium Vendor pom developer name Thomas E. Enebo Medium Vendor pom groupid org.jruby Highest Vendor pom name Dirgra High Vendor pom url jruby/dirgra Highest Product pom artifactid dirgra Highest Product pom developer email tom.enebo@gmail.com Low Product pom developer id enebo Low Product pom developer name Thomas E. Enebo Low Product pom groupid org.jruby Highest Product pom name Dirgra High Product pom url jruby/dirgra High Version pom version 0.3 Highest
jruby-complete-9.3.8.0.jar (shaded: org.jruby:jruby-base:9.3.8.0)File Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.jruby/jruby-complete/9.3.8.0/8e11191265ab501930125081d8c21a3f55f1b8cd/jruby-complete-9.3.8.0.jar/META-INF/maven/org.jruby/jruby-base/pom.xmlMD5: 38df003437aebcf620ce9ce72bbce81cSHA1: 30d7a33eee5406164c3ec8089edff0452746da7bSHA256: cd294c6d580215fe80782cd0f36520d77a0ed84a211f47a238085f894af4541fReferenced In Projects/Scopes:
documentation:__$$asciidoctorj$$___r documentation:__$$asciidoctorj_asciidoctor$$__r Evidence Type Source Name Value Confidence Vendor pom artifactid jruby-base Low Vendor pom groupid org.jruby Highest Vendor pom name JRuby Base High Vendor pom parent-artifactid jruby-parent Low Product pom artifactid jruby-base Highest Product pom groupid org.jruby Highest Product pom name JRuby Base High Product pom parent-artifactid jruby-parent Medium Version pom version 9.3.8.0 Highest
jruby-complete-9.3.8.0.jar (shaded: org.jruby:jruby-core:9.3.8.0)File Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.jruby/jruby-complete/9.3.8.0/8e11191265ab501930125081d8c21a3f55f1b8cd/jruby-complete-9.3.8.0.jar/META-INF/maven/org.jruby/jruby-core/pom.xmlMD5: 7105cc82edfb7d6fd77f4c1a8b6d7f1aSHA1: 1b17b9b7e8eb6c5351136c2c80e041be80bf3a5eSHA256: 9aff65fffb6c5db14304e523e8a7de80e38ebac12cb5711c0bdfa5a18cd050b3Referenced In Projects/Scopes:
documentation:__$$asciidoctorj$$___r documentation:__$$asciidoctorj_asciidoctor$$__r Evidence Type Source Name Value Confidence Vendor pom artifactid jruby-core Low Vendor pom groupid org.jruby Highest Vendor pom name JRuby Core High Vendor pom parent-artifactid jruby-parent Low Product pom artifactid jruby-core Highest Product pom groupid org.jruby Highest Product pom name JRuby Core High Product pom parent-artifactid jruby-parent Medium Version pom version 9.3.8.0 Highest
jruby-complete-9.3.8.0.jar (shaded: org.jruby:jruby-stdlib:9.3.8.0)File Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.jruby/jruby-complete/9.3.8.0/8e11191265ab501930125081d8c21a3f55f1b8cd/jruby-complete-9.3.8.0.jar/META-INF/maven/org.jruby/jruby-stdlib/pom.xmlMD5: 5b3dd30283430bc13c278cb8043ec30aSHA1: c6d66034002c3e5a2e53f9d7bd9374faf1eba9eeSHA256: 82298921e4b5bddc6bdfaa9bfe1f475edc59dadd64b3498fdc9607831a22ae1bReferenced In Projects/Scopes:
documentation:__$$asciidoctorj$$___r documentation:__$$asciidoctorj_asciidoctor$$__r Evidence Type Source Name Value Confidence Vendor pom artifactid jruby-stdlib Low Vendor pom groupid org.jruby Highest Vendor pom name JRuby Lib Setup High Vendor pom parent-artifactid jruby-parent Low Product pom artifactid jruby-stdlib Highest Product pom groupid org.jruby Highest Product pom name JRuby Lib Setup High Product pom parent-artifactid jruby-parent Medium Version pom version 9.3.8.0 Highest
jruby-complete-9.3.8.0.jarDescription:
JRuby 9.3.8.0 OSGi bundle License:
http://www.gnu.org/licenses/gpl-2.0-standalone.html, http://www.gnu.org/licenses/lgpl-2.1-standalone.html, http://www.eclipse.org/legal/epl-v20.html File Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.jruby/jruby-complete/9.3.8.0/8e11191265ab501930125081d8c21a3f55f1b8cd/jruby-complete-9.3.8.0.jar
MD5: 2d5ad438a1fefda48f8ab797454f43fd
SHA1: 8e11191265ab501930125081d8c21a3f55f1b8cd
SHA256: b574542f75c71d543ae057a707ca9840e778d62ab6da610e94cd7bbfa5eef5d5
Referenced In Projects/Scopes: documentation:__$$asciidoctorj$$___r documentation:__$$asciidoctorj_asciidoctor$$__r jruby-complete-9.3.8.0.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.asciidoctor/asciidoctorj@2.5.7 pkg:maven/org.asciidoctor/asciidoctorj@2.5.7 pkg:maven/io.freefair.gradle/documentation@8.6 pkg:maven/io.freefair.gradle/documentation@8.6 Evidence Type Source Name Value Confidence Vendor file name jruby-complete High Vendor gradle artifactid jruby-complete Highest Vendor gradle groupid org.jruby Highest Vendor jar package name jruby Highest Vendor jar package name org Highest Vendor Manifest automatic-module-name org.jruby.complete Medium Vendor Manifest bundle-docurl https://www.jruby.org Low Vendor Manifest bundle-symbolicname org.jruby.jruby Medium Vendor Manifest embed-transitive true Low Vendor pom artifactid jruby-complete Low Vendor pom groupid org.jruby Highest Vendor pom name JRuby Complete High Vendor pom parent-artifactid jruby-artifacts Low Product file name jruby-complete High Product gradle artifactid jruby-complete Highest Product jar package name jruby Highest Product jar package name org Highest Product jar package name osgi Highest Product Manifest automatic-module-name org.jruby.complete Medium Product Manifest bundle-docurl https://www.jruby.org Low Product Manifest Bundle-Name JRuby 9.3.8.0 Medium Product Manifest bundle-symbolicname org.jruby.jruby Medium Product Manifest embed-transitive true Low Product pom artifactid jruby-complete Highest Product pom groupid org.jruby Highest Product pom name JRuby Complete High Product pom parent-artifactid jruby-artifacts Medium Version file version 9.3.8.0 High Version gradle version 9.3.8.0 Highest Version Manifest Bundle-Version 9.3.8.0 High Version pom version 9.3.8.0 Highest
jruby-complete-9.3.8.0.jar: bcpkix-jdk15on-1.68.jarFile Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.jruby/jruby-complete/9.3.8.0/8e11191265ab501930125081d8c21a3f55f1b8cd/jruby-complete-9.3.8.0.jar/META-INF/jruby.home/lib/ruby/stdlib/org/bouncycastle/bcpkix-jdk15on/1.68/bcpkix-jdk15on-1.68.jarMD5: 37e058210e056a04d4521d8185fb0051SHA1: 81da950604ff0b2652348cbd2b48fde46ced9867SHA256: fb8d0f8f673ad6e16c604732093d7aa31b26ff4e0bd9cae1d7f99984c06b8a0fReferenced In Projects/Scopes:
documentation:__$$asciidoctorj$$___r documentation:__$$asciidoctorj_asciidoctor$$__r Evidence Type Source Name Value Confidence Vendor file name bcpkix-jdk15on High Vendor jar package name bouncycastle Highest Vendor jar package name bouncycastle Low Vendor jar package name pkix Highest Vendor Manifest application-library-allowable-codebase * Low Vendor Manifest application-name Bouncy Castle PKIX API Medium Vendor Manifest automatic-module-name org.bouncycastle.pkix Medium Vendor Manifest bundle-requiredexecutionenvironment J2SE-1.5 Low Vendor Manifest bundle-symbolicname bcpkix Medium Vendor Manifest caller-allowable-codebase * Low Vendor Manifest codebase * Low Vendor Manifest extension-name org.bouncycastle.bcpkix Medium Vendor Manifest Implementation-Vendor BouncyCastle.org High Vendor Manifest Implementation-Vendor-Id org.bouncycastle Medium Vendor Manifest multi-release true Low Vendor Manifest originally-created-by 25.275-b01 (Private Build) Low Vendor Manifest permissions all-permissions Low Vendor Manifest specification-vendor BouncyCastle.org Low Vendor Manifest trusted-library true Low Product file name bcpkix-jdk15on High Product jar package name bouncycastle Highest Product jar package name pkix Highest Product Manifest application-library-allowable-codebase * Low Product Manifest application-name Bouncy Castle PKIX API Medium Product Manifest automatic-module-name org.bouncycastle.pkix Medium Product Manifest Bundle-Name bcpkix Medium Product Manifest bundle-requiredexecutionenvironment J2SE-1.5 Low Product Manifest bundle-symbolicname bcpkix Medium Product Manifest caller-allowable-codebase * Low Product Manifest codebase * Low Product Manifest extension-name org.bouncycastle.bcpkix Medium Product Manifest multi-release true Low Product Manifest originally-created-by 25.275-b01 (Private Build) Low Product Manifest permissions all-permissions Low Product Manifest trusted-library true Low Version file name bcpkix-jdk15on Medium Version file version 1.68 High Version Manifest Bundle-Version 1.68 High Version Manifest Implementation-Version 1.68.00.0 High
jruby-complete-9.3.8.0.jar: bcprov-jdk15on-1.68.jarFile Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.jruby/jruby-complete/9.3.8.0/8e11191265ab501930125081d8c21a3f55f1b8cd/jruby-complete-9.3.8.0.jar/META-INF/jruby.home/lib/ruby/stdlib/org/bouncycastle/bcprov-jdk15on/1.68/bcprov-jdk15on-1.68.jarMD5: f34043ac8be2793843364b4406a15543SHA1: 46a080368d38b428d237a59458f9bc915222894dSHA256: f732a46c8de7e2232f2007c682a21d1f4cc8a8a0149b6b7bd6aa1afdc65a0f8dReferenced In Projects/Scopes:
documentation:__$$asciidoctorj$$___r documentation:__$$asciidoctorj_asciidoctor$$__r Evidence Type Source Name Value Confidence Vendor file name bcprov-jdk15on High Vendor jar package name bouncycastle Highest Vendor jar package name bouncycastle Low Vendor jar package name org Highest Vendor jar package name provider Highest Vendor Manifest application-library-allowable-codebase * Low Vendor Manifest application-name Bouncy Castle Provider Medium Vendor Manifest automatic-module-name org.bouncycastle.provider Medium Vendor Manifest bundle-requiredexecutionenvironment J2SE-1.5 Low Vendor Manifest bundle-symbolicname bcprov Medium Vendor Manifest caller-allowable-codebase * Low Vendor Manifest codebase * Low Vendor Manifest extension-name org.bouncycastle.bcprovider Medium Vendor Manifest Implementation-Vendor BouncyCastle.org High Vendor Manifest Implementation-Vendor-Id org.bouncycastle Medium Vendor Manifest multi-release true Low Vendor Manifest originally-created-by 25.275-b01 (Private Build) Low Vendor Manifest permissions all-permissions Low Vendor Manifest specification-vendor BouncyCastle.org Low Vendor Manifest trusted-library true Low Product file name bcprov-jdk15on High Product hint analyzer product legion-of-the-bouncy-castle-java-crytography-api High Product hint analyzer product the_bouncy_castle_crypto_package_for_java High Product jar package name bouncycastle Highest Product jar package name org Highest Product jar package name provider Highest Product Manifest application-library-allowable-codebase * Low Product Manifest application-name Bouncy Castle Provider Medium Product Manifest automatic-module-name org.bouncycastle.provider Medium Product Manifest Bundle-Name bcprov Medium Product Manifest bundle-requiredexecutionenvironment J2SE-1.5 Low Product Manifest bundle-symbolicname bcprov Medium Product Manifest caller-allowable-codebase * Low Product Manifest codebase * Low Product Manifest extension-name org.bouncycastle.bcprovider Medium Product Manifest multi-release true Low Product Manifest originally-created-by 25.275-b01 (Private Build) Low Product Manifest permissions all-permissions Low Product Manifest trusted-library true Low Version file version 1.68 High Version Manifest Implementation-Version 1.68.0 High
CVE-2023-33202 suppress
Bouncy Castle for Java before 1.73 contains a potential Denial of Service (DoS) issue within the Bouncy Castle org.bouncycastle.openssl.PEMParser class. This class parses OpenSSL PEM encoded streams containing X.509 certificates, PKCS8 encoded keys, and PKCS7 objects. Parsing a file that has crafted ASN.1 data through the PEMParser causes an OutOfMemoryError, which can enable a denial of service attack. (For users of the FIPS Java API: BC-FJA 1.0.2.3 and earlier are affected; BC-FJA 1.0.2.4 is fixed.) CWE-400 Uncontrolled Resource Consumption
CVSSv3:
Base Score: MEDIUM (5.5) Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H/E:1.8/RC:R/MAV:A References:
Vulnerable Software & Versions:
jruby-complete-9.3.8.0.jar: bctls-jdk15on-1.68.jarFile Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.jruby/jruby-complete/9.3.8.0/8e11191265ab501930125081d8c21a3f55f1b8cd/jruby-complete-9.3.8.0.jar/META-INF/jruby.home/lib/ruby/stdlib/org/bouncycastle/bctls-jdk15on/1.68/bctls-jdk15on-1.68.jarMD5: 31459bc4acb8b285deffd1f163751046SHA1: 5046fe5893b16dd7e72a34d04d25c83968ddeff3SHA256: 9d862b35f241debf89211d92fb5ba5a0b0ac1ddb2c9ae214b84d80bc285bab25Referenced In Projects/Scopes:
documentation:__$$asciidoctorj$$___r documentation:__$$asciidoctorj_asciidoctor$$__r Evidence Type Source Name Value Confidence Vendor file name bctls-jdk15on High Vendor jar package name bouncycastle Highest Vendor jar package name bouncycastle Low Vendor jar package name org Highest Vendor jar package name provider Highest Vendor jar package name tls Highest Vendor Manifest application-library-allowable-codebase * Low Vendor Manifest application-name Bouncy Castle TLS API and Provider Medium Vendor Manifest automatic-module-name org.bouncycastle.tls Medium Vendor Manifest bundle-requiredexecutionenvironment J2SE-1.5 Low Vendor Manifest bundle-symbolicname bctls Medium Vendor Manifest caller-allowable-codebase * Low Vendor Manifest codebase * Low Vendor Manifest extension-name org.bouncycastle.bctls Medium Vendor Manifest Implementation-Vendor BouncyCastle.org High Vendor Manifest Implementation-Vendor-Id org.bouncycastle Medium Vendor Manifest multi-release true Low Vendor Manifest originally-created-by 25.275-b01 (Private Build) Low Vendor Manifest permissions all-permissions Low Vendor Manifest specification-vendor BouncyCastle.org Low Vendor Manifest trusted-library true Low Product file name bctls-jdk15on High Product jar package name bouncycastle Highest Product jar package name org Highest Product jar package name provider Highest Product jar package name tls Highest Product Manifest application-library-allowable-codebase * Low Product Manifest application-name Bouncy Castle TLS API and Provider Medium Product Manifest automatic-module-name org.bouncycastle.tls Medium Product Manifest Bundle-Name bctls Medium Product Manifest bundle-requiredexecutionenvironment J2SE-1.5 Low Product Manifest bundle-symbolicname bctls Medium Product Manifest caller-allowable-codebase * Low Product Manifest codebase * Low Product Manifest extension-name org.bouncycastle.bctls Medium Product Manifest multi-release true Low Product Manifest originally-created-by 25.275-b01 (Private Build) Low Product Manifest permissions all-permissions Low Product Manifest trusted-library true Low Version file name bctls-jdk15on Medium Version file version 1.68 High Version Manifest Bundle-Version 1.68 High Version Manifest Implementation-Version 1.68.00.0 High
jruby-complete-9.3.8.0.jar: cparse-jruby.jarFile Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.jruby/jruby-complete/9.3.8.0/8e11191265ab501930125081d8c21a3f55f1b8cd/jruby-complete-9.3.8.0.jar/META-INF/jruby.home/lib/ruby/stdlib/racc/cparse-jruby.jarMD5: d44fe1421fbbcebaa9f922dc8f9ee90eSHA1: dde4adfef288358dafebc1857a4dbef5b41c20d1SHA256: 52a75469ecab7e6a4a6f79e5419c4e8d881d42f830b0d287091ef1c498123c34Referenced In Projects/Scopes:
documentation:__$$asciidoctorj$$___r documentation:__$$asciidoctorj_asciidoctor$$__r Evidence Type Source Name Value Confidence Vendor file name cparse-jruby High Vendor jar package name headius Low Vendor jar package name racc Low Product file name cparse-jruby High Product jar package name racc Low
jruby-complete-9.3.8.0.jar: darkfish.jsFile Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.jruby/jruby-complete/9.3.8.0/8e11191265ab501930125081d8c21a3f55f1b8cd/jruby-complete-9.3.8.0.jar/META-INF/jruby.home/lib/ruby/stdlib/rdoc/generator/template/darkfish/js/darkfish.jsMD5: 14a006c8a8c126d3a032db6a6778a2d6SHA1: 5de3c13a83ac02d213bacc7c5642673b7692f1c9SHA256: 00cb86c2c4b1d8d18f1971ca0b2cd7eb5ecad12a68db6c78d575e053a853ce39Referenced In Projects/Scopes:
documentation:__$$asciidoctorj$$___r documentation:__$$asciidoctorj_asciidoctor$$__r Evidence Type Source Name Value Confidence
jruby-complete-9.3.8.0.jar: generator.jarFile Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.jruby/jruby-complete/9.3.8.0/8e11191265ab501930125081d8c21a3f55f1b8cd/jruby-complete-9.3.8.0.jar/META-INF/jruby.home/lib/ruby/stdlib/json/ext/generator.jarMD5: 6db38de099e2ce60c777cb168de21e0dSHA1: 76ea0e00c7db180f3f2432fb0120bcea19ff2dc8SHA256: f6d4a830771618e697220f5707eabe831e25d46aff8da9e7cc5b60ef744714a3Referenced In Projects/Scopes:
documentation:__$$asciidoctorj$$___r documentation:__$$asciidoctorj_asciidoctor$$__r Evidence Type Source Name Value Confidence Vendor file name generator High Vendor jar package name ext Low Vendor jar package name json Low Product file name generator High Product jar package name ext Low
jruby-complete-9.3.8.0.jar: jline-2.14.6.jarLicense:
The BSD License: http://www.opensource.org/licenses/bsd-license.php File Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.jruby/jruby-complete/9.3.8.0/8e11191265ab501930125081d8c21a3f55f1b8cd/jruby-complete-9.3.8.0.jar/META-INF/jruby.home/lib/ruby/stdlib/jline/jline/2.14.6/jline-2.14.6.jar
MD5: 480423551649bc6980b43f09e4717272
SHA1: c3aeac59c022bdc497c8c48ed86fa50450e4896a
SHA256: 97d1acaac82409be42e622d7a54d3ae9d08517e8aefdea3d2ba9791150c2f02d
Referenced In Projects/Scopes: documentation:__$$asciidoctorj$$___r documentation:__$$asciidoctorj_asciidoctor$$__r Evidence Type Source Name Value Confidence Vendor file name jline High Vendor jar package name jline Highest Vendor Manifest bundle-symbolicname jline Medium Vendor pom artifactid jline Low Vendor pom developer email gnodet@gmail.com Low Vendor pom developer email jason@planet57.com Low Vendor pom developer email mprudhom@gmail.com Low Vendor pom developer id gnodet Medium Vendor pom developer id jdillon Medium Vendor pom developer id mprudhom Medium Vendor pom developer name Guillaume Nodet Medium Vendor pom developer name Jason Dillon Medium Vendor pom developer name Marc Prud'hommeaux Medium Vendor pom groupid jline Highest Vendor pom name JLine High Product file name jline High Product jar package name jline Highest Product Manifest Bundle-Name JLine Medium Product Manifest bundle-symbolicname jline Medium Product pom artifactid jline Highest Product pom developer email gnodet@gmail.com Low Product pom developer email jason@planet57.com Low Product pom developer email mprudhom@gmail.com Low Product pom developer id gnodet Low Product pom developer id jdillon Low Product pom developer id mprudhom Low Product pom developer name Guillaume Nodet Low Product pom developer name Jason Dillon Low Product pom developer name Marc Prud'hommeaux Low Product pom groupid jline Highest Product pom name JLine High Version file version 2.14.6 High Version Manifest Bundle-Version 2.14.6 High Version pom version 2.14.6 Highest
jruby-complete-9.3.8.0.jar: jopenssl.jar (shaded: rubygems:jruby-openssl:0.13.0)Description:
JRuby-OpenSSL is an add-on gem for JRuby that emulates the Ruby OpenSSL native library. License:
EPL-1.0: http://opensource.org/licenses/EPL-1.0
GPL-2.0: http://opensource.org/licenses/GPL-2.0
LGPL-2.1: http://opensource.org/licenses/LGPL-2.1 File Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.jruby/jruby-complete/9.3.8.0/8e11191265ab501930125081d8c21a3f55f1b8cd/jruby-complete-9.3.8.0.jar/META-INF/jruby.home/lib/ruby/stdlib/jopenssl.jar/META-INF/maven/rubygems/jruby-openssl/pom.xml
MD5: 7d01b449528196196f27f061da72a97d
SHA1: e27fc66c82ed5b144afc548817047a577bb1383d
SHA256: eaa82ac5816e9e562bd3d3b8f00b19db4ca10201faf9bc5f72b3fac9c02c839e
Referenced In Projects/Scopes: documentation:__$$asciidoctorj$$___r documentation:__$$asciidoctorj_asciidoctor$$__r Evidence Type Source Name Value Confidence Vendor pom artifactid jruby-openssl Low Vendor pom developer email self+jruby-openssl@kares.org Low Vendor pom developer name JRuby contributors Medium Vendor pom developer name Karol Bucek Medium Vendor pom developer name Ola Bini Medium Vendor pom groupid rubygems Highest Vendor pom name JRuby OpenSSL High Vendor pom url jruby/jruby-openssl Highest Product pom artifactid jruby-openssl Highest Product pom developer email self+jruby-openssl@kares.org Low Product pom developer name JRuby contributors Low Product pom developer name Karol Bucek Low Product pom developer name Ola Bini Low Product pom groupid rubygems Highest Product pom name JRuby OpenSSL High Product pom url jruby/jruby-openssl High Version pom version 0.13.0 Highest
jruby-complete-9.3.8.0.jar: jopenssl.jarFile Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.jruby/jruby-complete/9.3.8.0/8e11191265ab501930125081d8c21a3f55f1b8cd/jruby-complete-9.3.8.0.jar/META-INF/jruby.home/lib/ruby/stdlib/jopenssl.jarMD5: 8b010aa9489d4acc20f11fe933ef17cdSHA1: 602fff52a522aee546c55174e4ca560c93dc0425SHA256: 76f6d5357e0ebb2c8dff1d259d09763d47d4931e0132821469d08a98a95ff0f5Referenced In Projects/Scopes:
documentation:__$$asciidoctorj$$___r documentation:__$$asciidoctorj_asciidoctor$$__r Evidence Type Source Name Value Confidence Vendor file name jopenssl High Vendor jar package name ext Low Vendor jar package name jruby Low Vendor jar package name openssl Low Product file name jopenssl High Product jar package name ext Low Product jar package name openssl Low
jruby-complete-9.3.8.0.jar: navigation.jsFile Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.jruby/jruby-complete/9.3.8.0/8e11191265ab501930125081d8c21a3f55f1b8cd/jruby-complete-9.3.8.0.jar/META-INF/jruby.home/lib/ruby/stdlib/rdoc/generator/template/json_index/js/navigation.jsMD5: 0f2526548577d42eed5939333c321065SHA1: a99b9374c2e37d315a6279b9238615252becac49SHA256: 757a5fb0031eb9bc47912ec87bcf16ce5ae855bb072bdb318437ffd806d7ee56Referenced In Projects/Scopes:
documentation:__$$asciidoctorj$$___r documentation:__$$asciidoctorj_asciidoctor$$__r Evidence Type Source Name Value Confidence
jruby-complete-9.3.8.0.jar: parser.jarFile Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.jruby/jruby-complete/9.3.8.0/8e11191265ab501930125081d8c21a3f55f1b8cd/jruby-complete-9.3.8.0.jar/META-INF/jruby.home/lib/ruby/stdlib/json/ext/parser.jarMD5: 83373299e1f1bdcb6b4808cfb81a6506SHA1: 5499bb123ddf779ce9627a7b99d2d1e0b9eb63ccSHA256: c2018bf2eb02def0ba64b784d05ec5019db9f7ebfdcd01f9e36efb6b745318c4Referenced In Projects/Scopes:
documentation:__$$asciidoctorj$$___r documentation:__$$asciidoctorj_asciidoctor$$__r Evidence Type Source Name Value Confidence Vendor file name parser High Vendor jar package name ext Low Vendor jar package name json Low Product file name parser High Product jar package name ext Low
jruby-complete-9.3.8.0.jar: psych.jarFile Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.jruby/jruby-complete/9.3.8.0/8e11191265ab501930125081d8c21a3f55f1b8cd/jruby-complete-9.3.8.0.jar/META-INF/jruby.home/lib/ruby/stdlib/psych.jarMD5: 30566c4d2a723788b9368cc0b6759147SHA1: 51c6c3b4a4dbca8fb1c184f3691c26d222829854SHA256: 8938f788b10374cef7ca1968f6523b1eedb679da944c871987067dca6051d7c0Referenced In Projects/Scopes:
documentation:__$$asciidoctorj$$___r documentation:__$$asciidoctorj_asciidoctor$$__r Evidence Type Source Name Value Confidence Vendor file name psych High Vendor jar package name ext Low Vendor jar package name jruby Low Vendor jar package name psych Low Product file name psych High Product jar package name ext Low Product jar package name psych Low
jruby-complete-9.3.8.0.jar: readline.jar (shaded: rubygems:jruby-readline:1.3.7)Description:
readline extension for JRuby License:
EPL-1.0: http://opensource.org/licenses/EPL-1.0
GPL-2.0: http://opensource.org/licenses/GPL-2.0
LGPL-2.1: http://opensource.org/licenses/LGPL-2.1 File Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.jruby/jruby-complete/9.3.8.0/8e11191265ab501930125081d8c21a3f55f1b8cd/jruby-complete-9.3.8.0.jar/META-INF/jruby.home/lib/ruby/stdlib/readline.jar/META-INF/maven/rubygems/jruby-readline/pom.xml
MD5: f675c86ab93d2adadaab3e9ec7445fe6
SHA1: 3cb722b663bcb103aafaed0789d9491684d21eb6
SHA256: b931e0b3f3ff77ee17bb63301f5caabd262e046db28f190c434f565249383408
Referenced In Projects/Scopes: documentation:__$$asciidoctorj$$___r documentation:__$$asciidoctorj_asciidoctor$$__r Evidence Type Source Name Value Confidence Vendor pom artifactid jruby-readline Low Vendor pom developer email dev@jruby.org Low Vendor pom developer name JRuby contributors Medium Vendor pom groupid rubygems Highest Vendor pom name JRuby Readline High Vendor pom url jruby/jruby Highest Product pom artifactid jruby-readline Highest Product pom developer email dev@jruby.org Low Product pom developer name JRuby contributors Low Product pom groupid rubygems Highest Product pom name JRuby Readline High Product pom url jruby/jruby High Version pom version 1.3.7 Highest
jruby-complete-9.3.8.0.jar: readline.jarFile Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.jruby/jruby-complete/9.3.8.0/8e11191265ab501930125081d8c21a3f55f1b8cd/jruby-complete-9.3.8.0.jar/META-INF/jruby.home/lib/ruby/stdlib/readline.jarMD5: ee095d6e2062601784e821c0761b7a8dSHA1: f94495275a3d40af13986495b60d7a2029d8eba5SHA256: 25f6e191a7cddf15c926d9c5fb598237517b201d041f35f5cd01ae446b17d9d4Referenced In Projects/Scopes:
documentation:__$$asciidoctorj$$___r documentation:__$$asciidoctorj_asciidoctor$$__r Evidence Type Source Name Value Confidence Vendor file name readline High Vendor jar package name demo Low Vendor jar package name jruby Low Vendor jar package name readline Low Product file name readline High Product jar package name demo Low Product jar package name readline Low
jruby-complete-9.3.8.0.jar: search.jsFile Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.jruby/jruby-complete/9.3.8.0/8e11191265ab501930125081d8c21a3f55f1b8cd/jruby-complete-9.3.8.0.jar/META-INF/jruby.home/lib/ruby/stdlib/rdoc/generator/template/darkfish/js/search.jsMD5: 84b747a9f491cfb6740ab520d0c0602cSHA1: 7227a18b55ac08a0f8cc03ea8ac063f6dba1a1e5SHA256: 972b0c1524a5789afa094459c524b4a7333b58536c9b2db6280468621a2c5439Referenced In Projects/Scopes:
documentation:__$$asciidoctorj$$___r documentation:__$$asciidoctorj_asciidoctor$$__r Evidence Type Source Name Value Confidence
jruby-complete-9.3.8.0.jar: searcher.jsFile Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.jruby/jruby-complete/9.3.8.0/8e11191265ab501930125081d8c21a3f55f1b8cd/jruby-complete-9.3.8.0.jar/META-INF/jruby.home/lib/ruby/stdlib/rdoc/generator/template/json_index/js/searcher.jsMD5: e6753e62548eadebce36524f6178fd0bSHA1: ff8ca51fd50d759d6ad7b78a171c8646968f7520SHA256: e1b5467dd44b05a13e7b798a9c149954e9861089575dcaf8b302489c44bc359aReferenced In Projects/Scopes:
documentation:__$$asciidoctorj$$___r documentation:__$$asciidoctorj_asciidoctor$$__r Evidence Type Source Name Value Confidence
jruby-complete-9.3.8.0.jar: snakeyaml-1.31.jarDescription:
YAML 1.1 parser and emitter for Java License:
Apache License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt File Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.jruby/jruby-complete/9.3.8.0/8e11191265ab501930125081d8c21a3f55f1b8cd/jruby-complete-9.3.8.0.jar/META-INF/jruby.home/lib/ruby/stdlib/org/yaml/snakeyaml/1.31/snakeyaml-1.31.jar
MD5: b5db04d0705604e0fadcd5f66ad65d60
SHA1: cf26b7b05fef01e7bec00cb88ab4feeeba743e12
SHA256: 64ff54977e93243b5431b9335bb6a90c05ec7c9f189298a36575c58de72e1c07
Referenced In Projects/Scopes: documentation:__$$asciidoctorj$$___r documentation:__$$asciidoctorj_asciidoctor$$__r Evidence Type Source Name Value Confidence Vendor file name snakeyaml High Vendor jar package name emitter Highest Vendor jar package name parser Highest Vendor jar package name snakeyaml Highest Vendor jar package name yaml Highest Vendor Manifest automatic-module-name org.yaml.snakeyaml Medium Vendor Manifest bundle-symbolicname org.yaml.snakeyaml Medium Vendor pom artifactid snakeyaml Low Vendor pom developer email alexander.maslov@gmail.com Low Vendor pom developer email public.somov@gmail.com Low Vendor pom developer id asomov Medium Vendor pom developer id maslovalex Medium Vendor pom developer name Alexander Maslov Medium Vendor pom developer name Andrey Somov Medium Vendor pom groupid org.yaml Highest Vendor pom name SnakeYAML High Vendor pom url https://bitbucket.org/snakeyaml/snakeyaml Highest Product file name snakeyaml High Product jar package name emitter Highest Product jar package name parser Highest Product jar package name snakeyaml Highest Product jar package name yaml Highest Product Manifest automatic-module-name org.yaml.snakeyaml Medium Product Manifest Bundle-Name SnakeYAML Medium Product Manifest bundle-symbolicname org.yaml.snakeyaml Medium Product pom artifactid snakeyaml Highest Product pom developer email alexander.maslov@gmail.com Low Product pom developer email public.somov@gmail.com Low Product pom developer id asomov Low Product pom developer id maslovalex Low Product pom developer name Alexander Maslov Low Product pom developer name Andrey Somov Low Product pom groupid org.yaml Highest Product pom name SnakeYAML High Product pom url https://bitbucket.org/snakeyaml/snakeyaml Medium Version file version 1.31 High Version pom version 1.31 Highest
CVE-2022-1471 suppress
SnakeYaml's Constructor() class does not restrict types which can be instantiated during deserialization.��Deserializing yaml content provided by an attacker can lead to remote code execution. We recommend using SnakeYaml's SafeConsturctor when parsing untrusted content to restrict deserialization. We recommend upgrading to version 2.0 and beyond.
CWE-502 Deserialization of Untrusted Data, CWE-20 Improper Input Validation
CVSSv3:
Base Score: CRITICAL (9.8) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:3.9/RC:R/MAV:A References:
Vulnerable Software & Versions:
CVE-2022-38751 (OSSINDEX) suppress
Using snakeYAML to parse untrusted YAML files may be vulnerable to Denial of Service attacks (DOS). If the parser is running on user supplied input, an attacker may supply content that causes the parser to crash by stackoverflow. CWE-787 Out-of-bounds Write
CVSSv3:
Base Score: MEDIUM (6.5) Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H References:
Vulnerable Software & Versions (OSSINDEX):
cpe:2.3:a:org.yaml:snakeyaml:1.31:*:*:*:*:*:*:* CVE-2022-38752 suppress
Using snakeYAML to parse untrusted YAML files may be vulnerable to Denial of Service attacks (DOS). If the parser is running on user supplied input, an attacker may supply content that causes the parser to crash by stack-overflow. CWE-787 Out-of-bounds Write, CWE-121 Stack-based Buffer Overflow
CVSSv3:
Base Score: MEDIUM (6.5) Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H/E:2.8/RC:R/MAV:A References:
Vulnerable Software & Versions:
CVE-2022-41854 suppress
Those using Snakeyaml to parse untrusted YAML files may be vulnerable to Denial of Service attacks (DOS). If the parser is running on user supplied input, an attacker may supply content that causes the parser to crash by stack overflow. This effect may support a denial of service attack. CWE-787 Out-of-bounds Write, CWE-121 Stack-based Buffer Overflow
CVSSv3:
Base Score: MEDIUM (6.5) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H/E:2.8/RC:R/MAV:A References:
Vulnerable Software & Versions:
jsoup-1.17.2.jarDescription:
jsoup is a Java library that simplifies working with real-world HTML and XML. It offers an easy-to-use API for URL fetching, data parsing, extraction, and manipulation using DOM API methods, CSS, and xpath selectors. jsoup implements the WHATWG HTML5 specification, and parses HTML to the same DOM as modern browsers. License:
The MIT License: https://jsoup.org/license File Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.jsoup/jsoup/1.17.2/1e75b08d7019546a954f1e359477f916f537a34d/jsoup-1.17.2.jar
MD5: d9dd58c3f8a09f45e57d85e78993be6e
SHA1: 1e75b08d7019546a954f1e359477f916f537a34d
SHA256: f60b33b38e9d7ac93eaaa68a6c70f706bb99036494b2e2add2bfee11d09ac6f5
Referenced In Projects/Scopes: documentation:javadocClasspath maven-plugin-plugin:compileClasspath maven-plugin-plugin:runtimeClasspath jsoup-1.17.2.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/io.freefair.gradle/maven-plugin-plugin@8.6 pkg:maven/org.apache.maven.plugins/maven-plugin-plugin@3.11.0 pkg:maven/org.apache.maven.plugin-tools/maven-plugin-tools-annotations@3.11.0 pkg:maven/org.apache.maven.plugin-tools/maven-plugin-tools-annotations@3.11.0 pkg:maven/org.apache.maven.plugins/maven-plugin-plugin@3.11.0 pkg:maven/org.apache.maven.plugin-tools/maven-plugin-tools-generators@3.11.0 pkg:maven/org.apache.maven.plugin-tools/maven-plugin-tools-generators@3.11.0 Evidence Type Source Name Value Confidence Vendor file name jsoup High Vendor gradle artifactid jsoup Highest Vendor gradle groupid org.jsoup Highest Vendor jar package name jsoup Highest Vendor jar package name org Highest Vendor jar package name parser Highest Vendor Manifest build-jdk-spec 17 Low Vendor Manifest bundle-docurl https://jsoup.org/ Low Vendor Manifest bundle-symbolicname org.jsoup Medium Vendor Manifest Implementation-Vendor Jonathan Hedley High Vendor Manifest multi-release true Low Vendor Manifest originally-created-by Apache Maven Bundle Plugin 5.1.9 Low Vendor pom artifactid jsoup Low Vendor pom developer email jonathan@hedley.net Low Vendor pom developer id jhy Medium Vendor pom developer name Jonathan Hedley Medium Vendor pom groupid org.jsoup Highest Vendor pom name jsoup Java HTML Parser High Vendor pom organization name Jonathan Hedley High Vendor pom organization url https://jhy.io/ Medium Vendor pom url https://jsoup.org/ Highest Product file name jsoup High Product gradle artifactid jsoup Highest Product jar package name 9 Highest Product jar package name jsoup Highest Product jar package name org Highest Product jar package name parser Highest Product Manifest build-jdk-spec 17 Low Product Manifest bundle-docurl https://jsoup.org/ Low Product Manifest Bundle-Name jsoup Java HTML Parser Medium Product Manifest bundle-symbolicname org.jsoup Medium Product Manifest Implementation-Title jsoup Java HTML Parser High Product Manifest multi-release true Low Product Manifest originally-created-by Apache Maven Bundle Plugin 5.1.9 Low Product pom artifactid jsoup Highest Product pom developer email jonathan@hedley.net Low Product pom developer id jhy Low Product pom developer name Jonathan Hedley Low Product pom groupid org.jsoup Highest Product pom name jsoup Java HTML Parser High Product pom organization name Jonathan Hedley Low Product pom organization url https://jhy.io/ Low Product pom url https://jsoup.org/ Medium Version file version 1.17.2 High Version gradle version 1.17.2 Highest Version Manifest Bundle-Version 1.17.2 High Version Manifest Implementation-Version 1.17.2 High Version pom version 1.17.2 Highest
jtidy-r938.jarDescription:
JTidy is a Java port of HTML Tidy, a HTML syntax checker and pretty printer. Like its non-Java cousin, JTidy can be
used as a tool for cleaning up malformed and faulty HTML. In addition, JTidy provides a DOM interface to the
document that is being processed, which effectively makes you able to use JTidy as a DOM parser for real-world HTML.
License:
Java HTML Tidy License: http://jtidy.svn.sourceforge.net/viewvc/jtidy/trunk/jtidy/LICENSE.txt?revision=95 File Path: /home/runner/.gradle/caches/modules-2/files-2.1/net.sf.jtidy/jtidy/r938/ab08d87a225a715a69107732b67f21e1da930349/jtidy-r938.jar
MD5: 6a9121561b8f98c0a8fb9b6e57f50e6b
SHA1: ab08d87a225a715a69107732b67f21e1da930349
SHA256: 6fc03e51e73fa884f06e7eae0761e045e56fdeb4e146a4d952e3023cc9e3fb43
Referenced In Projects/Scopes: documentation:javadocClasspath maven-plugin-plugin:compileClasspath maven-plugin-plugin:runtimeClasspath jtidy-r938.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/io.freefair.gradle/maven-plugin-plugin@8.6 pkg:maven/org.apache.maven.plugins/maven-plugin-plugin@3.11.0 pkg:maven/org.apache.maven.plugins/maven-plugin-plugin@3.11.0 pkg:maven/org.apache.maven.plugin-tools/maven-plugin-tools-generators@3.11.0 pkg:maven/org.apache.maven.plugin-tools/maven-plugin-tools-generators@3.11.0 Evidence Type Source Name Value Confidence Vendor file name jtidy-r938 High Vendor gradle artifactid jtidy Highest Vendor gradle groupid net.sf.jtidy Highest Vendor jar package name parser Highest Vendor jar package name tidy Low Vendor jar package name w3c Low Vendor pom artifactid jtidy Low Vendor pom developer email atripp AT users.sourceforge.net Low Vendor pom developer email fgiust AT users.sourceforge.net Low Vendor pom developer email garypeskin AT users.sourceforge.net Low Vendor pom developer email lempinen AT users.sourceforge.net Low Vendor pom developer email russgold AT users.sourceforge.net Low Vendor pom developer id atripp Medium Vendor pom developer id fgiust Medium Vendor pom developer id garypeskin Medium Vendor pom developer id lempinen Medium Vendor pom developer id russgold Medium Vendor pom developer name Andy Tripp Medium Vendor pom developer name Fabrizio Giustina Medium Vendor pom developer name Gary L Peskin Medium Vendor pom developer name Russell Gold Medium Vendor pom developer name Sami Lempinen Medium Vendor pom developer org Sourceforge Medium Vendor pom groupid net.sf.jtidy Highest Vendor pom name JTidy High Vendor pom organization name sourceforge High Vendor pom organization url http://sourceforge.net Medium Vendor pom url http://jtidy.sourceforge.net Highest Product file name jtidy-r938 High Product gradle artifactid jtidy Highest Product jar package name parser Highest Product jar package name tidy Low Product pom artifactid jtidy Highest Product pom developer email atripp AT users.sourceforge.net Low Product pom developer email fgiust AT users.sourceforge.net Low Product pom developer email garypeskin AT users.sourceforge.net Low Product pom developer email lempinen AT users.sourceforge.net Low Product pom developer email russgold AT users.sourceforge.net Low Product pom developer id atripp Low Product pom developer id fgiust Low Product pom developer id garypeskin Low Product pom developer id lempinen Low Product pom developer id russgold Low Product pom developer name Andy Tripp Low Product pom developer name Fabrizio Giustina Low Product pom developer name Gary L Peskin Low Product pom developer name Russell Gold Low Product pom developer name Sami Lempinen Low Product pom developer org Sourceforge Low Product pom groupid net.sf.jtidy Highest Product pom name JTidy High Product pom organization name sourceforge Low Product pom organization url http://sourceforge.net Low Product pom url http://jtidy.sourceforge.net Medium Version gradle version r938 Highest Version pom version r938 Highest
CVE-2023-34623 suppress
An issue was discovered jtidy thru r938 allows attackers to cause a denial of service or other unspecified impacts via crafted object that uses cyclic dependencies. CWE-787 Out-of-bounds Write
CVSSv3:
Base Score: HIGH (7.5) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:3.9/RC:R/MAV:A References:
Vulnerable Software & Versions:
junit-jupiter-api-5.10.2.jarFile Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.junit.jupiter/junit-jupiter-api/5.10.2/fb55d6e2bce173f35fd28422e7975539621055ef/junit-jupiter-api-5.10.2.jarMD5: 6e691e23a36de8cbda5cbcc9f31461e3SHA1: fb55d6e2bce173f35fd28422e7975539621055efSHA256: afff77c186cd317275803872fa5133aa801fd6ac40bd91c78a6cf8009b4b17ccReferenced In Projects/Scopes:
documentation:javadocClasspath test-common:compileClasspath test-common:runtimeClasspath junit-jupiter-api-5.10.2.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/io.freefair.gradle/test-common@8.6 pkg:maven/org.junit/junit-bom@5.10.2 pkg:maven/org.junit.jupiter/junit-jupiter-api@5.10.2 pkg:maven/io.freefair.gradle/test-common@8.6 pkg:maven/org.junit.jupiter/junit-jupiter-api@5.10.2 pkg:maven/org.junit/junit-bom@5.10.2 pkg:maven/io.freefair.gradle/test-common@8.6 Evidence Type Source Name Value Confidence Vendor file name junit-jupiter-api High Vendor gradle artifactid junit-jupiter-api Highest Vendor gradle groupid org.junit.jupiter Highest Vendor jar package name api Highest Vendor jar package name api Low Vendor jar package name junit Highest Vendor jar package name junit Low Vendor jar package name jupiter Highest Vendor jar package name jupiter Low Vendor Manifest build-date 2024-02-04 Low Vendor Manifest build-revision 4c0dddad1b96d4a20e92a2cd583954643ac56ac0 Low Vendor Manifest build-time 09:34:27.111+0100 Low Vendor Manifest bundle-symbolicname junit-jupiter-api Medium Vendor Manifest Implementation-Vendor junit.org High Vendor Manifest specification-vendor junit.org Low Product file name junit-jupiter-api High Product gradle artifactid junit-jupiter-api Highest Product jar package name api Highest Product jar package name api Low Product jar package name junit Highest Product jar package name jupiter Highest Product jar package name jupiter Low Product Manifest build-date 2024-02-04 Low Product Manifest build-revision 4c0dddad1b96d4a20e92a2cd583954643ac56ac0 Low Product Manifest build-time 09:34:27.111+0100 Low Product Manifest Bundle-Name JUnit Jupiter API Medium Product Manifest bundle-symbolicname junit-jupiter-api Medium Product Manifest Implementation-Title junit-jupiter-api High Product Manifest specification-title junit-jupiter-api Medium Version file version 5.10.2 High Version Manifest Implementation-Version 5.10.2 High
junit-platform-commons-1.10.2.jarFile Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.junit.platform/junit-platform-commons/1.10.2/3197154a1f0c88da46c47a9ca27611ac7ec5d797/junit-platform-commons-1.10.2.jarMD5: ae199049daca42c359e64974009025c5SHA1: 3197154a1f0c88da46c47a9ca27611ac7ec5d797SHA256: b56a5ec000a479df4973b18bba24c98fe0db8faa14c8907d3ef451d8c71fd8aeReferenced In Projects/Scopes:
documentation:javadocClasspath test-common:compileClasspath test-common:runtimeClasspath junit-platform-commons-1.10.2.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.junit/junit-bom@5.10.2 pkg:maven/org.junit.jupiter/junit-jupiter-api@5.10.2 pkg:maven/org.junit.jupiter/junit-jupiter-api@5.10.2 pkg:maven/org.junit/junit-bom@5.10.2 pkg:maven/io.freefair.gradle/test-common@8.6 Evidence Type Source Name Value Confidence Vendor file name junit-platform-commons High Vendor gradle artifactid junit-platform-commons Highest Vendor gradle groupid org.junit.platform Highest Vendor jar package name commons Highest Vendor jar package name commons Low Vendor jar package name junit Highest Vendor jar package name junit Low Vendor jar package name org Highest Vendor jar package name platform Highest Vendor jar package name platform Low Vendor Manifest build-date 2024-02-04 Low Vendor Manifest build-revision 4c0dddad1b96d4a20e92a2cd583954643ac56ac0 Low Vendor Manifest build-time 09:34:27.111+0100 Low Vendor Manifest bundle-symbolicname junit-platform-commons Medium Vendor Manifest Implementation-Vendor junit.org High Vendor Manifest multi-release true Low Vendor Manifest specification-vendor junit.org Low Product file name junit-platform-commons High Product gradle artifactid junit-platform-commons Highest Product jar package name commons Highest Product jar package name commons Low Product jar package name junit Highest Product jar package name platform Highest Product jar package name platform Low Product jar package name util Low Product Manifest build-date 2024-02-04 Low Product Manifest build-revision 4c0dddad1b96d4a20e92a2cd583954643ac56ac0 Low Product Manifest build-time 09:34:27.111+0100 Low Product Manifest Bundle-Name JUnit Platform Commons Medium Product Manifest bundle-symbolicname junit-platform-commons Medium Product Manifest Implementation-Title junit-platform-commons High Product Manifest multi-release true Low Product Manifest specification-title junit-platform-commons Medium Version file version 1.10.2 High Version Manifest Implementation-Version 1.10.2 High
kotlin-android-extensions-1.9.20.jarFile Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.jetbrains.kotlin/kotlin-android-extensions/1.9.20/dc8cc72af5e78fc56701ba850d8ca6091e2c3c5e/kotlin-android-extensions-1.9.20.jarMD5: 000fbea57a8803335b79ab608c9f8764SHA1: dc8cc72af5e78fc56701ba850d8ca6091e2c3c5eSHA256: b771239469f0af07e180f746cfde6a7956c2b6261e1ae20e5b1d620a0dd29bffReferenced In Projects/Scopes:
documentation:javadocClasspath quicktype-plugin:runtimeClasspath kotlin-android-extensions-1.9.20.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/io.freefair.gradle/quicktype-plugin@8.6 pkg:maven/io.freefair.gradle/aspectj-plugin@8.6 pkg:maven/org.jetbrains.kotlin/kotlin-gradle-plugin@1.9.20 Evidence Type Source Name Value Confidence Vendor file name kotlin-android-extensions High Vendor gradle artifactid kotlin-android-extensions Highest Vendor gradle groupid org.jetbrains.kotlin Highest Vendor jar package name android Low Vendor jar package name jetbrains Highest Vendor jar package name jetbrains Low Vendor jar package name kotlin Low Vendor Manifest Implementation-Vendor JetBrains High Product file name kotlin-android-extensions High Product gradle artifactid kotlin-android-extensions Highest Product jar package name android Highest Product jar package name android Low Product jar package name extensions Highest Product jar package name kotlin Highest Product jar package name kotlin Low Product jar package name synthetic Low Product Manifest Implementation-Title kotlin-android-extensions High Version file name kotlin-android-extensions Medium Version file version 1.9.20 High Version gradle version 1.9.20 Highest Version Manifest Implementation-Version 1.9.255-SNAPSHOT High
kotlin-assignment-compiler-plugin-embeddable-1.9.20.jarFile Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.jetbrains.kotlin/kotlin-assignment-compiler-plugin-embeddable/1.9.20/53843a4dd44f0748c8cb02e0355c6a58e454d3f0/kotlin-assignment-compiler-plugin-embeddable-1.9.20.jarMD5: f84ffd21284bbabdee60dc05cc8a31d1SHA1: 53843a4dd44f0748c8cb02e0355c6a58e454d3f0SHA256: c621b857f5fe131219d8576e191d06f2db7a6df80fa149d046c32eba26906addReferenced In Projects/Scopes:
mjml-plugin:kotlinCompilerPluginClasspathMain mjml-plugin:kotlinCompilerPluginClasspathTest kotlin-assignment-compiler-plugin-embeddable-1.9.20.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/io.freefair.gradle/mjml-plugin@8.6 pkg:maven/io.freefair.gradle/mjml-plugin@8.6 Evidence Type Source Name Value Confidence Vendor file name kotlin-assignment-compiler-plugin-embeddable High Vendor gradle artifactid kotlin-assignment-compiler-plugin-embeddable Highest Vendor gradle groupid org.jetbrains.kotlin Highest Vendor jar package name assignment Low Vendor jar package name jetbrains Highest Vendor jar package name jetbrains Low Vendor jar package name kotlin Low Vendor Manifest Implementation-Vendor JetBrains High Product file name kotlin-assignment-compiler-plugin-embeddable High Product gradle artifactid kotlin-assignment-compiler-plugin-embeddable Highest Product jar package name assignment Highest Product jar package name assignment Low Product jar package name kotlin Highest Product jar package name kotlin Low Product jar package name plugin Highest Product jar package name plugin Low Product Manifest Implementation-Title kotlin-assignment-compiler-plugin.embeddable High Version file name kotlin-assignment-compiler-plugin-embeddable Medium Version file version 1.9.20 High Version gradle version 1.9.20 Highest Version Manifest Implementation-Version 1.9.255-SNAPSHOT High
kotlin-build-common-1.9.20.jarFile Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.jetbrains.kotlin/kotlin-build-common/1.9.20/2b6924142255752cbd52bbd28da7588137897fa1/kotlin-build-common-1.9.20.jarMD5: e275ef9d49e72fc34a51b376f77de5fbSHA1: 2b6924142255752cbd52bbd28da7588137897fa1SHA256: 17319416d0fa12cd77a9f365f8b8cb9c616953883368a5c7f529cf082da9e98dReferenced In Projects/Scopes:
quicktype-plugin:kotlinBuildToolsApiClasspath mjml-plugin:kotlinBuildToolsApiClasspath kotlin-build-common-1.9.20.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.jetbrains.kotlin/kotlin-build-tools-impl@1.9.20 pkg:maven/org.jetbrains.kotlin/kotlin-build-tools-impl@1.9.20 Evidence Type Source Name Value Confidence Vendor file name kotlin-build-common High Vendor gradle artifactid kotlin-build-common Highest Vendor gradle groupid org.jetbrains.kotlin Highest Vendor jar package name incremental Low Vendor jar package name jetbrains Highest Vendor jar package name jetbrains Low Vendor jar package name kotlin Low Vendor Manifest Implementation-Vendor JetBrains High Product file name kotlin-build-common High Product gradle artifactid kotlin-build-common Highest Product jar package name build Highest Product jar package name incremental Low Product jar package name kotlin Highest Product jar package name kotlin Low Product Manifest Implementation-Title kotlin-build-common High Version file name kotlin-build-common Medium Version file version 1.9.20 High Version gradle version 1.9.20 Highest Version Manifest Implementation-Version 1.9.255-SNAPSHOT High
kotlin-build-tools-api-1.9.20.jarFile Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.jetbrains.kotlin/kotlin-build-tools-api/1.9.20/7d93e9729dada991126a4699484f275d6bdc2bb6/kotlin-build-tools-api-1.9.20.jarMD5: d198342d234320740d50caa6b650df0cSHA1: 7d93e9729dada991126a4699484f275d6bdc2bb6SHA256: c722948c568352cdc19dc8a8b245d14aae507d4dcffde6a7b26c535c472c1b17Referenced In Projects/Scopes:
documentation:javadocClasspath quicktype-plugin:runtimeClasspath quicktype-plugin:kotlinBuildToolsApiClasspath mjml-plugin:kotlinBuildToolsApiClasspath kotlin-build-tools-api-1.9.20.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/io.freefair.gradle/quicktype-plugin@8.6 pkg:maven/io.freefair.gradle/aspectj-plugin@8.6 pkg:maven/org.jetbrains.kotlin/kotlin-build-tools-impl@1.9.20 pkg:maven/org.jetbrains.kotlin/kotlin-gradle-plugin@1.9.20 pkg:maven/org.jetbrains.kotlin/kotlin-build-tools-impl@1.9.20 Evidence Type Source Name Value Confidence Vendor file name kotlin-build-tools-api High Vendor gradle artifactid kotlin-build-tools-api Highest Vendor gradle groupid org.jetbrains.kotlin Highest Vendor jar package name buildtools Low Vendor jar package name jetbrains Highest Vendor jar package name jetbrains Low Vendor jar package name kotlin Low Vendor Manifest Implementation-Vendor JetBrains High Product file name kotlin-build-tools-api High Product gradle artifactid kotlin-build-tools-api Highest Product jar package name api Highest Product jar package name api Low Product jar package name buildtools Low Product jar package name kotlin Highest Product jar package name kotlin Low Product Manifest Implementation-Title kotlin-build-tools-api High Version file name kotlin-build-tools-api Medium Version file version 1.9.20 High Version gradle version 1.9.20 Highest Version Manifest Implementation-Version 1.9.255-SNAPSHOT High
kotlin-build-tools-impl-1.9.20.jarFile Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.jetbrains.kotlin/kotlin-build-tools-impl/1.9.20/b7ea524d377a4f81973d52083fe257c14293dc9/kotlin-build-tools-impl-1.9.20.jarMD5: a6f2282c211d133a4c602b28c30a83efSHA1: 0b7ea524d377a4f81973d52083fe257c14293dc9SHA256: b7377a08d67dcddcbe4f7930d8cb0f7d0055789fbb30efdbe97008405d1f026dReferenced In Projects/Scopes:
quicktype-plugin:kotlinBuildToolsApiClasspath mjml-plugin:kotlinBuildToolsApiClasspath kotlin-build-tools-impl-1.9.20.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/io.freefair.gradle/quicktype-plugin@8.6 pkg:maven/io.freefair.gradle/mjml-plugin@8.6 Evidence Type Source Name Value Confidence Vendor file name kotlin-build-tools-impl High Vendor gradle artifactid kotlin-build-tools-impl Highest Vendor gradle groupid org.jetbrains.kotlin Highest Vendor jar package name buildtools Low Vendor jar package name jetbrains Highest Vendor jar package name jetbrains Low Vendor jar package name kotlin Low Vendor Manifest Implementation-Vendor JetBrains High Product file name kotlin-build-tools-impl High Product gradle artifactid kotlin-build-tools-impl Highest Product jar package name buildtools Low Product jar package name internal Low Product jar package name kotlin Highest Product jar package name kotlin Low Product Manifest Implementation-Title kotlin-build-tools-impl High Version file name kotlin-build-tools-impl Medium Version file version 1.9.20 High Version gradle version 1.9.20 Highest Version Manifest Implementation-Version 1.9.255-SNAPSHOT High
kotlin-compiler-embeddable-1.9.20.jarFile Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.jetbrains.kotlin/kotlin-compiler-embeddable/1.9.20/b44d2f7d8c1c67c0ed66d40e57e52623ca753db7/kotlin-compiler-embeddable-1.9.20.jarMD5: 788dce78ad5a3c096ccbb957fd3364eaSHA1: b44d2f7d8c1c67c0ed66d40e57e52623ca753db7SHA256: a25024fe5da8440de01af045c4fcb954a22f078738ec02616085f0cfc57b2702Referenced In Projects/Scopes:
documentation:javadocClasspath quicktype-plugin:runtimeClasspath mjml-plugin:kotlinCompilerClasspath quicktype-plugin:kotlinBuildToolsApiClasspath mjml-plugin:kotlinBuildToolsApiClasspath quicktype-plugin:kotlinKlibCommonizerClasspath quicktype-plugin:kotlinCompilerClasspath mjml-plugin:kotlinKlibCommonizerClasspath kotlin-compiler-embeddable-1.9.20.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/io.freefair.gradle/quicktype-plugin@8.6 pkg:maven/io.freefair.gradle/quicktype-plugin@8.6 pkg:maven/io.freefair.gradle/mjml-plugin@8.6 pkg:maven/org.jetbrains.kotlin/kotlin-klib-commonizer-embeddable@1.9.20 pkg:maven/io.freefair.gradle/aspectj-plugin@8.6 pkg:maven/org.jetbrains.kotlin/kotlin-build-tools-impl@1.9.20 pkg:maven/org.jetbrains.kotlin/kotlin-gradle-plugin@1.9.20 pkg:maven/org.jetbrains.kotlin/kotlin-klib-commonizer-embeddable@1.9.20 pkg:maven/org.jetbrains.kotlin/kotlin-build-tools-impl@1.9.20 Evidence Type Source Name Value Confidence Vendor file name kotlin-compiler-embeddable High Vendor gradle artifactid kotlin-compiler-embeddable Highest Vendor gradle groupid org.jetbrains.kotlin Highest Vendor jar package name jetbrains Highest Vendor jar package name jetbrains Low Vendor jar package name kotlin Low Vendor Manifest Implementation-Vendor JetBrains High Product file name kotlin-compiler-embeddable High Product gradle artifactid kotlin-compiler-embeddable Highest Product jar package name compiler Highest Product jar package name kotlin Highest Product jar package name kotlin Low Product Manifest Implementation-Title kotlin-compiler-embeddable High Version file name kotlin-compiler-embeddable Medium Version file version 1.9.20 High Version gradle version 1.9.20 Highest Version Manifest Implementation-Version 1.9.255-SNAPSHOT High
kotlin-compiler-runner-1.9.20.jarFile Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.jetbrains.kotlin/kotlin-compiler-runner/1.9.20/1bceefc81bd554fac50828e4f442ff9243cacf33/kotlin-compiler-runner-1.9.20.jarMD5: c82ae3a34c76a7e5097402604671a725SHA1: 1bceefc81bd554fac50828e4f442ff9243cacf33SHA256: 49769c046f8d392654a4ab52af795455bd41e88d8392aeab9028f0edd5e8d50bReferenced In Projects/Scopes:
documentation:javadocClasspath quicktype-plugin:runtimeClasspath quicktype-plugin:kotlinBuildToolsApiClasspath mjml-plugin:kotlinBuildToolsApiClasspath kotlin-compiler-runner-1.9.20.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/io.freefair.gradle/quicktype-plugin@8.6 pkg:maven/io.freefair.gradle/aspectj-plugin@8.6 pkg:maven/org.jetbrains.kotlin/kotlin-build-tools-impl@1.9.20 pkg:maven/org.jetbrains.kotlin/kotlin-gradle-plugin@1.9.20 pkg:maven/org.jetbrains.kotlin/kotlin-build-tools-impl@1.9.20 Evidence Type Source Name Value Confidence Vendor file name kotlin-compiler-runner High Vendor gradle artifactid kotlin-compiler-runner Highest Vendor gradle groupid org.jetbrains.kotlin Highest Vendor jar package name compilerrunner Low Vendor jar package name jetbrains Highest Vendor jar package name jetbrains Low Vendor jar package name kotlin Low Vendor Manifest Implementation-Vendor JetBrains High Product file name kotlin-compiler-runner High Product gradle artifactid kotlin-compiler-runner Highest Product jar package name compilerrunner Low Product jar package name kotlin Highest Product jar package name kotlin Low Product Manifest Implementation-Title kotlin-compiler-runner High Version file name kotlin-compiler-runner Medium Version file version 1.9.20 High Version gradle version 1.9.20 Highest Version Manifest Implementation-Version 1.9.255-SNAPSHOT High
kotlin-daemon-client-1.9.20.jarFile Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.jetbrains.kotlin/kotlin-daemon-client/1.9.20/29f5166f4fa1e17b6cbd3af1d7e1fcaa359d9f88/kotlin-daemon-client-1.9.20.jarMD5: 4f46aeada4e73361b4bb2be71784b434SHA1: 29f5166f4fa1e17b6cbd3af1d7e1fcaa359d9f88SHA256: 582230cbcfd65d36b94bc9d127f90024b8cf17dfa4a67ef6a929f14c6c27661cReferenced In Projects/Scopes:
documentation:javadocClasspath quicktype-plugin:runtimeClasspath quicktype-plugin:kotlinBuildToolsApiClasspath mjml-plugin:kotlinBuildToolsApiClasspath kotlin-daemon-client-1.9.20.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/io.freefair.gradle/quicktype-plugin@8.6 pkg:maven/io.freefair.gradle/aspectj-plugin@8.6 pkg:maven/org.jetbrains.kotlin/kotlin-build-tools-impl@1.9.20 pkg:maven/org.jetbrains.kotlin/kotlin-gradle-plugin@1.9.20 pkg:maven/org.jetbrains.kotlin/kotlin-build-tools-impl@1.9.20 Evidence Type Source Name Value Confidence Vendor file name kotlin-daemon-client High Vendor gradle artifactid kotlin-daemon-client Highest Vendor gradle groupid org.jetbrains.kotlin Highest Vendor jar package name daemon Low Vendor jar package name jetbrains Highest Vendor jar package name jetbrains Low Vendor jar package name kotlin Low Vendor Manifest Implementation-Vendor JetBrains High Product file name kotlin-daemon-client High Product gradle artifactid kotlin-daemon-client Highest Product jar package name client Highest Product jar package name daemon Highest Product jar package name daemon Low Product jar package name kotlin Highest Product jar package name kotlin Low Product Manifest Implementation-Title kotlin-daemon-client High Version file name kotlin-daemon-client Medium Version file version 1.9.20 High Version gradle version 1.9.20 Highest Version Manifest Implementation-Version 1.9.255-SNAPSHOT High
kotlin-daemon-embeddable-1.9.20.jarFile Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.jetbrains.kotlin/kotlin-daemon-embeddable/1.9.20/a2a6b491bc53049e2f1af33245481db49034ba52/kotlin-daemon-embeddable-1.9.20.jarMD5: 5c1d5ace55a2f200c383d0d5c195ca0fSHA1: a2a6b491bc53049e2f1af33245481db49034ba52SHA256: a939cb5d6ee2a758c9285bd9f3286824beabe12d9a4b5f49f784d0bca329dea5Referenced In Projects/Scopes:
documentation:javadocClasspath quicktype-plugin:runtimeClasspath mjml-plugin:kotlinCompilerClasspath quicktype-plugin:kotlinBuildToolsApiClasspath mjml-plugin:kotlinBuildToolsApiClasspath quicktype-plugin:kotlinKlibCommonizerClasspath quicktype-plugin:kotlinCompilerClasspath mjml-plugin:kotlinKlibCommonizerClasspath kotlin-daemon-embeddable-1.9.20.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/io.freefair.gradle/quicktype-plugin@8.6 pkg:maven/org.jetbrains.kotlin/kotlin-compiler-embeddable@1.9.20 pkg:maven/org.jetbrains.kotlin/kotlin-compiler-embeddable@1.9.20 pkg:maven/org.jetbrains.kotlin/kotlin-klib-commonizer-embeddable@1.9.20 pkg:maven/io.freefair.gradle/aspectj-plugin@8.6 pkg:maven/org.jetbrains.kotlin/kotlin-build-tools-impl@1.9.20 pkg:maven/org.jetbrains.kotlin/kotlin-gradle-plugin@1.9.20 pkg:maven/org.jetbrains.kotlin/kotlin-klib-commonizer-embeddable@1.9.20 pkg:maven/org.jetbrains.kotlin/kotlin-build-tools-impl@1.9.20 Evidence Type Source Name Value Confidence Vendor file name kotlin-daemon-embeddable High Vendor gradle artifactid kotlin-daemon-embeddable Highest Vendor gradle groupid org.jetbrains.kotlin Highest Vendor jar package name daemon Low Vendor jar package name jetbrains Highest Vendor jar package name jetbrains Low Vendor jar package name kotlin Low Vendor Manifest Implementation-Vendor JetBrains High Product file name kotlin-daemon-embeddable High Product gradle artifactid kotlin-daemon-embeddable Highest Product jar package name common Low Product jar package name daemon Highest Product jar package name daemon Low Product jar package name kotlin Highest Product jar package name kotlin Low Product Manifest Implementation-Title kotlin-daemon-embeddable High Version file name kotlin-daemon-embeddable Medium Version file version 1.9.20 High Version gradle version 1.9.20 Highest Version Manifest Implementation-Version 1.9.255-SNAPSHOT High
kotlin-gradle-plugin-1.9.20-gradle81.jar (shaded: com.github.gundy:semver4j:0.16.4)Description:
Java implementation of a node-style SemVer expression parser/evaluator License:
MIT License: http://www.opensource.org/licenses/mit-license.php File Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.jetbrains.kotlin/kotlin-gradle-plugin/1.9.20/d67c5ea81ba3098bf02a3feff06c378740af2bc3/kotlin-gradle-plugin-1.9.20-gradle81.jar/META-INF/maven/com.github.gundy/semver4j/pom.xml
MD5: b2f793eaa1115b41eaa8bb63080406f8
SHA1: ca8df209029884f283afdcd7b104fb88576a18b1
SHA256: 32001db2443b339dd21f5b79ff29d1ade722d1ba080c214bde819f0f72d1604d
Referenced In Projects/Scopes: documentation:javadocClasspath quicktype-plugin:runtimeClasspath quicktype-plugin:compileClasspath quicktype-plugin:implementationDependenciesMetadata Evidence Type Source Name Value Confidence Vendor pom artifactid semver4j Low Vendor pom developer email gundy@acm.org Low Vendor pom developer id gundy Medium Vendor pom developer name David Gundersen Medium Vendor pom groupid com.github.gundy Highest Vendor pom name SemVer4J High Vendor pom url http://github.com/gundy/semver4j Highest Product pom artifactid semver4j Highest Product pom developer email gundy@acm.org Low Product pom developer id gundy Low Product pom developer name David Gundersen Low Product pom groupid com.github.gundy Highest Product pom name SemVer4J High Product pom url http://github.com/gundy/semver4j Medium Version pom version 0.16.4 Highest
kotlin-gradle-plugin-1.9.20-gradle81.jar (shaded: com.google.code.gson:gson:2.8.9)License:
Apache-2.0: https://www.apache.org/licenses/LICENSE-2.0.txt File Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.jetbrains.kotlin/kotlin-gradle-plugin/1.9.20/d67c5ea81ba3098bf02a3feff06c378740af2bc3/kotlin-gradle-plugin-1.9.20-gradle81.jar/META-INF/maven/com.google.code.gson/gson/pom.xml
MD5: 6cddce19473acd4bb9cfe35fad04f802
SHA1: e40b03e4cc2b52efb19af75c07596e9d15a52d82
SHA256: afded6e6a690fbf3ad4ae65ada397f0a90a5f630b303d1b741b9c97926fdd4de
Referenced In Projects/Scopes: documentation:javadocClasspath quicktype-plugin:runtimeClasspath quicktype-plugin:compileClasspath quicktype-plugin:implementationDependenciesMetadata Evidence Type Source Name Value Confidence Vendor pom artifactid gson Low Vendor pom groupid com.google.code.gson Highest Vendor pom name Gson High Vendor pom parent-artifactid gson-parent Low Product pom artifactid gson Highest Product pom groupid com.google.code.gson Highest Product pom name Gson High Product pom parent-artifactid gson-parent Medium Version pom version 2.8.9 Highest
kotlin-gradle-plugin-1.9.20-gradle81.jar (shaded: com.google.guava:guava:29.0-jre)Description:
Guava is a suite of core and expanded libraries that include
utility classes, google's collections, io classes, and much
much more.
File Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.jetbrains.kotlin/kotlin-gradle-plugin/1.9.20/d67c5ea81ba3098bf02a3feff06c378740af2bc3/kotlin-gradle-plugin-1.9.20-gradle81.jar/META-INF/maven/com.google.guava/guava/pom.xmlMD5: d1ed8d2bec41bdbdee173c0545b0a238SHA1: e40cdee0d70244df1e963daac53a16241aea4585SHA256: 9027e934098903d287f1ba61c8b65f01d1d1e1da7a6fbcc04bf3de0544014426Referenced In Projects/Scopes:
documentation:javadocClasspath quicktype-plugin:runtimeClasspath quicktype-plugin:compileClasspath quicktype-plugin:implementationDependenciesMetadata Evidence Type Source Name Value Confidence Vendor pom artifactid guava Low Vendor pom groupid com.google.guava Highest Vendor pom name Guava: Google Core Libraries for Java High Vendor pom parent-artifactid guava-parent Low Product pom artifactid guava Highest Product pom groupid com.google.guava Highest Product pom name Guava: Google Core Libraries for Java High Product pom parent-artifactid guava-parent Medium Version pom version 29.0-jre Highest
CVE-2023-2976 suppress
Use of Java's default temporary directory for file creation in `FileBackedOutputStream` in Google Guava versions 1.0 to 31.1 on Unix systems and Android Ice Cream Sandwich allows other users and apps on the machine with access to the default Java temporary directory to be able to access the files created by the class.
Even though the security vulnerability is fixed in version 32.0.0, we recommend using version 32.0.1 as version 32.0.0 breaks some functionality under Windows.
CWE-552 Files or Directories Accessible to External Parties
CVSSv3:
Base Score: HIGH (7.1) Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N/E:1.8/RC:R/MAV:A References:
Vulnerable Software & Versions:
CVE-2020-8908 suppress
A temp directory creation vulnerability exists in all versions of Guava, allowing an attacker with access to the machine to potentially access data in a temporary directory created by the Guava API com.google.common.io.Files.createTempDir(). By default, on unix-like systems, the created directory is world-readable (readable by an attacker with access to the system). The method in question has been marked @Deprecated in versions 30.0 and later and should not be used. For Android developers, we recommend choosing a temporary directory API provided by Android, such as context.getCacheDir(). For other Java developers, we recommend migrating to the Java 7 API java.nio.file.Files.createTempDirectory() which explicitly configures permissions of 700, or configuring the Java runtime's java.io.tmpdir system property to point to a location whose permissions are appropriately configured.
CWE-378 Creation of Temporary File With Insecure Permissions, CWE-732 Incorrect Permission Assignment for Critical Resource
CVSSv2:
Base Score: LOW (2.1) Vector: /AV:L/AC:L/Au:N/C:P/I:N/A:N CVSSv3:
Base Score: LOW (3.3) Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N/E:1.8/RC:R/MAV:A References:
Vulnerable Software & Versions: (show all )
kotlin-gradle-plugin-1.9.20-gradle81.jar (shaded: org.antlr:antlr4-runtime:4.5.2-1)Description:
The ANTLR 4 Runtime File Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.jetbrains.kotlin/kotlin-gradle-plugin/1.9.20/d67c5ea81ba3098bf02a3feff06c378740af2bc3/kotlin-gradle-plugin-1.9.20-gradle81.jar/META-INF/maven/org.antlr/antlr4-runtime/pom.xmlMD5: be6f8b9c66278c52274a8e6ba6fe351aSHA1: 6c4013c6b772dd3e8cc00837ccf5edd7619e8d21SHA256: 93bac9b6bc714d559904ed43242782a8cbe543cebf0104bb3ecc1786a9cb661eReferenced In Projects/Scopes:
documentation:javadocClasspath quicktype-plugin:runtimeClasspath quicktype-plugin:compileClasspath quicktype-plugin:implementationDependenciesMetadata Evidence Type Source Name Value Confidence Vendor pom artifactid antlr4-runtime Low Vendor pom groupid org.antlr Highest Vendor pom name ANTLR 4 Runtime High Vendor pom parent-artifactid antlr4-master Low Product pom artifactid antlr4-runtime Highest Product pom groupid org.antlr Highest Product pom name ANTLR 4 Runtime High Product pom parent-artifactid antlr4-master Medium Version pom version 4.5.2-1 Highest
kotlin-gradle-plugin-1.9.20-gradle81.jarFile Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.jetbrains.kotlin/kotlin-gradle-plugin/1.9.20/d67c5ea81ba3098bf02a3feff06c378740af2bc3/kotlin-gradle-plugin-1.9.20-gradle81.jarMD5: 00bf90a3d29bc247d87dc273c357bad7SHA1: d67c5ea81ba3098bf02a3feff06c378740af2bc3SHA256: 04910fca652f8dbe804a49c8e72971bf641d03cd8b45a065ba4ce10c6584eaacReferenced In Projects/Scopes:
documentation:javadocClasspath quicktype-plugin:runtimeClasspath quicktype-plugin:compileClasspath quicktype-plugin:implementationDependenciesMetadata kotlin-gradle-plugin-1.9.20-gradle81.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/io.freefair.gradle/quicktype-plugin@8.6 pkg:maven/io.freefair.gradle/quicktype-plugin@8.6 pkg:maven/io.freefair.gradle/quicktype-plugin@8.6 pkg:maven/org.jetbrains.kotlin/kotlin-gradle-plugin@1.9.20 pkg:maven/io.freefair.gradle/quicktype-plugin@8.6 pkg:maven/org.jetbrains.kotlin/kotlin-gradle-plugin@1.9.20 pkg:maven/io.freefair.gradle/aspectj-plugin@8.6 pkg:maven/org.jetbrains.kotlin/kotlin-gradle-plugin@1.9.20 Evidence Type Source Name Value Confidence Vendor file name kotlin-gradle-plugin High Vendor gradle artifactid kotlin-gradle-plugin Highest Vendor gradle groupid org.jetbrains.kotlin Highest Vendor jar package name gradle Low Vendor jar package name jetbrains Highest Vendor jar package name jetbrains Low Vendor jar package name kotlin Low Vendor Manifest Implementation-Vendor JetBrains High Product file name kotlin-gradle-plugin High Product gradle artifactid kotlin-gradle-plugin Highest Product jar package name gradle Highest Product jar package name gradle Low Product jar package name kotlin Highest Product jar package name kotlin Low Product jar package name plugin Highest Product Manifest Implementation-Title kotlin-gradle-plugin High Version file name kotlin-gradle-plugin Medium Version file version 1.9.20 High Version gradle version 1.9.20 Highest Version Manifest Implementation-Version 1.9.255-SNAPSHOT High
kotlin-gradle-plugin-annotations-1.9.20.jarFile Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.jetbrains.kotlin/kotlin-gradle-plugin-annotations/1.9.20/f108d325d3118738cd0c263b390ac5d96426764c/kotlin-gradle-plugin-annotations-1.9.20.jarMD5: 8df23e9c24f69a213ae6988bbc998f99SHA1: f108d325d3118738cd0c263b390ac5d96426764cSHA256: 2a5c3622e2468584d1ab7dab3acd8ffb60403b637dd0603af675e26d3a054329Referenced In Projects/Scopes:
documentation:javadocClasspath quicktype-plugin:runtimeClasspath aspectj-plugin:compileClasspath aspectj-plugin:runtimeClasspath quicktype-plugin:compileClasspath quicktype-plugin:implementationDependenciesMetadata kotlin-gradle-plugin-annotations-1.9.20.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/io.freefair.gradle/quicktype-plugin@8.6 pkg:maven/org.jetbrains.kotlin/kotlin-gradle-plugin-api@1.9.20 pkg:maven/org.jetbrains.kotlin/kotlin-gradle-plugin-api@1.9.20 pkg:maven/org.jetbrains.kotlin/kotlin-gradle-plugin@1.9.20 pkg:maven/org.jetbrains.kotlin/kotlin-gradle-plugin@1.9.20 pkg:maven/io.freefair.gradle/aspectj-plugin@8.6 pkg:maven/org.jetbrains.kotlin/kotlin-gradle-plugin@1.9.20 Evidence Type Source Name Value Confidence Vendor file name kotlin-gradle-plugin-annotations High Vendor gradle artifactid kotlin-gradle-plugin-annotations Highest Vendor gradle groupid org.jetbrains.kotlin Highest Vendor jar package name gradle Low Vendor jar package name jetbrains Highest Vendor jar package name jetbrains Low Vendor jar package name kotlin Low Vendor Manifest Implementation-Vendor JetBrains High Product file name kotlin-gradle-plugin-annotations High Product gradle artifactid kotlin-gradle-plugin-annotations Highest Product jar package name gradle Highest Product jar package name gradle Low Product jar package name kotlin Highest Product jar package name kotlin Low Product Manifest Implementation-Title kotlin-gradle-plugin-annotations High Version file name kotlin-gradle-plugin-annotations Medium Version file version 1.9.20 High Version gradle version 1.9.20 Highest Version Manifest Implementation-Version 1.9.255-SNAPSHOT High
kotlin-gradle-plugin-api-1.9.20.jarFile Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.jetbrains.kotlin/kotlin-gradle-plugin-api/1.9.20/f277b92784489a1d60142cb05537609d4fdd5c91/kotlin-gradle-plugin-api-1.9.20.jarMD5: 20cf0cdcdfe5f14b3794c2c2f8c66dd6SHA1: f277b92784489a1d60142cb05537609d4fdd5c91SHA256: 287c26765f8692e5eb5505854126819cfbb0c7d5d49bbe5f45771427ea19913dReferenced In Projects/Scopes:
documentation:javadocClasspath quicktype-plugin:runtimeClasspath aspectj-plugin:compileClasspath aspectj-plugin:runtimeClasspath quicktype-plugin:compileClasspath quicktype-plugin:implementationDependenciesMetadata kotlin-gradle-plugin-api-1.9.20.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/io.freefair.gradle/quicktype-plugin@8.6 pkg:maven/org.jetbrains.kotlin/kotlin-gradle-plugin-api@1.9.20 pkg:maven/io.freefair.gradle/aspectj-plugin@8.6 pkg:maven/org.jetbrains.kotlin/kotlin-gradle-plugin-api@1.9.20 pkg:maven/org.jetbrains.kotlin/kotlin-gradle-plugin@1.9.20 pkg:maven/io.freefair.gradle/aspectj-plugin@8.6 pkg:maven/org.jetbrains.kotlin/kotlin-gradle-plugin@1.9.20 pkg:maven/io.freefair.gradle/aspectj-plugin@8.6 pkg:maven/org.jetbrains.kotlin/kotlin-gradle-plugin@1.9.20 Evidence Type Source Name Value Confidence Vendor file name kotlin-gradle-plugin-api High Vendor gradle artifactid kotlin-gradle-plugin-api Highest Vendor gradle groupid org.jetbrains.kotlin Highest Vendor jar package name gradle Low Vendor jar package name jetbrains Highest Vendor jar package name jetbrains Low Vendor jar package name kotlin Low Vendor Manifest Implementation-Vendor JetBrains High Product file name kotlin-gradle-plugin-api High Product gradle artifactid kotlin-gradle-plugin-api Highest Product jar package name gradle Highest Product jar package name gradle Low Product jar package name kotlin Highest Product jar package name kotlin Low Product jar package name plugin Highest Product jar package name plugin Low Product Manifest Implementation-Title kotlin-gradle-plugin-api High Version file name kotlin-gradle-plugin-api Medium Version file version 1.9.20 High Version gradle version 1.9.20 Highest Version Manifest Implementation-Version 1.9.255-SNAPSHOT High
kotlin-gradle-plugin-idea-1.9.20.jarFile Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.jetbrains.kotlin/kotlin-gradle-plugin-idea/1.9.20/83cf5d4acdbf6c1e7b32ca96cb79b96e4cce032e/kotlin-gradle-plugin-idea-1.9.20.jarMD5: 0f4a854fd2e9fd9640341914e20a4f72SHA1: 83cf5d4acdbf6c1e7b32ca96cb79b96e4cce032eSHA256: 8d1af87632d95148f122a9fa0ae2903c19ee6fab7d01e017f76e0d2c9a022c20Referenced In Projects/Scopes:
documentation:javadocClasspath quicktype-plugin:runtimeClasspath kotlin-gradle-plugin-idea-1.9.20.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/io.freefair.gradle/quicktype-plugin@8.6 pkg:maven/io.freefair.gradle/aspectj-plugin@8.6 pkg:maven/org.jetbrains.kotlin/kotlin-gradle-plugin@1.9.20 Evidence Type Source Name Value Confidence Vendor file name kotlin-gradle-plugin-idea High Vendor gradle artifactid kotlin-gradle-plugin-idea Highest Vendor gradle groupid org.jetbrains.kotlin Highest Vendor jar package name gradle Low Vendor jar package name jetbrains Low Vendor jar package name kotlin Low Product file name kotlin-gradle-plugin-idea High Product gradle artifactid kotlin-gradle-plugin-idea Highest Product jar package name gradle Low Product jar package name idea Low Product jar package name kotlin Low Version file name kotlin-gradle-plugin-idea Medium Version file version 1.9.20 High Version gradle version 1.9.20 Highest
kotlin-gradle-plugin-idea-proto-1.9.20.jar (shaded: com.google.protobuf:protobuf-java:3.21.9)Description:
Core Protocol Buffers library. Protocol Buffers are a way of encoding structured data in an
efficient yet extensible format.
File Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.jetbrains.kotlin/kotlin-gradle-plugin-idea-proto/1.9.20/c35d575cec4f2e5759fd63df8a3207653bae9ade/kotlin-gradle-plugin-idea-proto-1.9.20.jar/META-INF/maven/com.google.protobuf/protobuf-java/pom.xmlMD5: a2dfabfa0f929c53986cf63a10619aaeSHA1: bd038b83cdb28c8102b00f2163f908e23bc3eb61SHA256: 66b34002eee26fd0e3d9387ef7d8e70021cf049ad93b083eb8f7143bbd176d29Referenced In Projects/Scopes:
documentation:javadocClasspath quicktype-plugin:runtimeClasspath Evidence Type Source Name Value Confidence Vendor pom artifactid protobuf-java Low Vendor pom groupid com.google.protobuf Highest Vendor pom name Protocol Buffers [Core] High Vendor pom parent-artifactid protobuf-parent Low Product pom artifactid protobuf-java Highest Product pom groupid com.google.protobuf Highest Product pom name Protocol Buffers [Core] High Product pom parent-artifactid protobuf-parent Medium Version pom version 3.21.9 Highest
kotlin-gradle-plugin-idea-proto-1.9.20.jar (shaded: com.google.protobuf:protobuf-kotlin:3.21.9)Description:
Kotlin core Protocol Buffers library. Protocol Buffers are a way of encoding structured data in an
efficient yet extensible format.
File Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.jetbrains.kotlin/kotlin-gradle-plugin-idea-proto/1.9.20/c35d575cec4f2e5759fd63df8a3207653bae9ade/kotlin-gradle-plugin-idea-proto-1.9.20.jar/META-INF/maven/com.google.protobuf/protobuf-kotlin/pom.xmlMD5: af12eecad210f41ac71b549f62e38a7bSHA1: 222361a7e9f4f7bb1291ea81e57c615a3d6082bdSHA256: 74408f909e1d9c3969055c431ac013485f5aa75c71214e9a933ee58f98853123Referenced In Projects/Scopes:
documentation:javadocClasspath quicktype-plugin:runtimeClasspath Evidence Type Source Name Value Confidence Vendor pom artifactid protobuf-kotlin Low Vendor pom groupid com.google.protobuf Highest Vendor pom name Protocol Buffers [Kotlin-Core] High Vendor pom parent-artifactid protobuf-parent Low Product pom artifactid protobuf-kotlin Highest Product pom groupid com.google.protobuf Highest Product pom name Protocol Buffers [Kotlin-Core] High Product pom parent-artifactid protobuf-parent Medium Version pom version 3.21.9 Highest
kotlin-gradle-plugin-idea-proto-1.9.20.jarFile Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.jetbrains.kotlin/kotlin-gradle-plugin-idea-proto/1.9.20/c35d575cec4f2e5759fd63df8a3207653bae9ade/kotlin-gradle-plugin-idea-proto-1.9.20.jarMD5: 62884551a057296fc85a82a1e9637ac6SHA1: c35d575cec4f2e5759fd63df8a3207653bae9adeSHA256: c67b0d8849febdd9a964eda0bd167c167c4d056ca8dd389241d92e1d763c9490Referenced In Projects/Scopes:
documentation:javadocClasspath quicktype-plugin:runtimeClasspath kotlin-gradle-plugin-idea-proto-1.9.20.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/io.freefair.gradle/quicktype-plugin@8.6 pkg:maven/io.freefair.gradle/aspectj-plugin@8.6 pkg:maven/org.jetbrains.kotlin/kotlin-gradle-plugin@1.9.20 Evidence Type Source Name Value Confidence Vendor file name kotlin-gradle-plugin-idea-proto High Vendor gradle artifactid kotlin-gradle-plugin-idea-proto Highest Vendor gradle groupid org.jetbrains.kotlin Highest Vendor jar package name gradle Low Vendor jar package name jetbrains Highest Vendor jar package name jetbrains Low Vendor jar package name kotlin Low Vendor Manifest Implementation-Vendor JetBrains High Product file name kotlin-gradle-plugin-idea-proto High Product gradle artifactid kotlin-gradle-plugin-idea-proto Highest Product jar package name gradle Highest Product jar package name gradle Low Product jar package name idea Highest Product jar package name idea Low Product jar package name kotlin Highest Product jar package name kotlin Low Product Manifest Implementation-Title kotlin-gradle-plugin-idea-proto High Version file name kotlin-gradle-plugin-idea-proto Medium Version file version 1.9.20 High Version gradle version 1.9.20 Highest Version Manifest Implementation-Version 1.9.255-SNAPSHOT High
kotlin-gradle-plugin-model-1.9.20.jarFile Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.jetbrains.kotlin/kotlin-gradle-plugin-model/1.9.20/2091f519531ac87226a6a13a7bc8cd77e50a880e/kotlin-gradle-plugin-model-1.9.20.jarMD5: 9989dd31a772b2d3d0c6745ea1fbd3daSHA1: 2091f519531ac87226a6a13a7bc8cd77e50a880eSHA256: 7f930f0e454b75818f5f8976ba515f3aec887671a5fe85380ac97f05da9986a7Referenced In Projects/Scopes:
documentation:javadocClasspath quicktype-plugin:runtimeClasspath quicktype-plugin:compileClasspath quicktype-plugin:implementationDependenciesMetadata kotlin-gradle-plugin-model-1.9.20.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/io.freefair.gradle/quicktype-plugin@8.6 pkg:maven/org.jetbrains.kotlin/kotlin-gradle-plugin@1.9.20 pkg:maven/org.jetbrains.kotlin/kotlin-gradle-plugin@1.9.20 pkg:maven/io.freefair.gradle/aspectj-plugin@8.6 pkg:maven/org.jetbrains.kotlin/kotlin-gradle-plugin@1.9.20 Evidence Type Source Name Value Confidence Vendor file name kotlin-gradle-plugin-model High Vendor gradle artifactid kotlin-gradle-plugin-model Highest Vendor gradle groupid org.jetbrains.kotlin Highest Vendor jar package name gradle Low Vendor jar package name jetbrains Highest Vendor jar package name jetbrains Low Vendor jar package name kotlin Low Vendor Manifest Implementation-Vendor JetBrains High Product file name kotlin-gradle-plugin-model High Product gradle artifactid kotlin-gradle-plugin-model Highest Product jar package name gradle Highest Product jar package name gradle Low Product jar package name kotlin Highest Product jar package name kotlin Low Product jar package name model Highest Product jar package name model Low Product Manifest Implementation-Title kotlin-gradle-plugin-model High Version file name kotlin-gradle-plugin-model Medium Version file version 1.9.20 High Version gradle version 1.9.20 Highest Version Manifest Implementation-Version 1.9.255-SNAPSHOT High
kotlin-klib-commonizer-api-1.9.20.jarFile Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.jetbrains.kotlin/kotlin-klib-commonizer-api/1.9.20/7d7c93b8d08058de2d02e604938c3c08117b580c/kotlin-klib-commonizer-api-1.9.20.jarMD5: 876a56731ad2d4c3fbc36177cccbc716SHA1: 7d7c93b8d08058de2d02e604938c3c08117b580cSHA256: 89b6260828953042e310a52592aa5b595f5f89b641cc6a3d3a8155ef92d88ffeReferenced In Projects/Scopes:
documentation:javadocClasspath quicktype-plugin:runtimeClasspath kotlin-klib-commonizer-api-1.9.20.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/io.freefair.gradle/quicktype-plugin@8.6 pkg:maven/io.freefair.gradle/aspectj-plugin@8.6 pkg:maven/org.jetbrains.kotlin/kotlin-gradle-plugin@1.9.20 Evidence Type Source Name Value Confidence Vendor file name kotlin-klib-commonizer-api High Vendor gradle artifactid kotlin-klib-commonizer-api Highest Vendor gradle groupid org.jetbrains.kotlin Highest Vendor jar package name commonizer Low Vendor jar package name jetbrains Highest Vendor jar package name jetbrains Low Vendor jar package name kotlin Low Vendor Manifest Implementation-Vendor JetBrains High Product file name kotlin-klib-commonizer-api High Product gradle artifactid kotlin-klib-commonizer-api Highest Product jar package name commonizer Highest Product jar package name commonizer Low Product jar package name kotlin Highest Product jar package name kotlin Low Product Manifest Implementation-Title kotlin-klib-commonizer-api High Version file name kotlin-klib-commonizer-api Medium Version file version 1.9.20 High Version gradle version 1.9.20 Highest Version Manifest Implementation-Version 1.9.255-SNAPSHOT High
kotlin-klib-commonizer-embeddable-1.9.20.jarFile Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.jetbrains.kotlin/kotlin-klib-commonizer-embeddable/1.9.20/5d5a5034f42b602f259454f0833537245691ea17/kotlin-klib-commonizer-embeddable-1.9.20.jarMD5: 50af1c6b80f52508994dd626e6ae4dfdSHA1: 5d5a5034f42b602f259454f0833537245691ea17SHA256: 8b36530fb4b68198c7733adbe3749d481af2bd9c0b03e89d88bfe93e12fda0f9Referenced In Projects/Scopes:
quicktype-plugin:kotlinKlibCommonizerClasspath mjml-plugin:kotlinKlibCommonizerClasspath kotlin-klib-commonizer-embeddable-1.9.20.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/io.freefair.gradle/quicktype-plugin@8.6 pkg:maven/io.freefair.gradle/mjml-plugin@8.6 Evidence Type Source Name Value Confidence Vendor file name kotlin-klib-commonizer-embeddable High Vendor gradle artifactid kotlin-klib-commonizer-embeddable Highest Vendor gradle groupid org.jetbrains.kotlin Highest Vendor jar package name internal Low Vendor jar package name jetbrains Highest Vendor jar package name kotlinx Low Vendor jar package name metadata Low Vendor Manifest Implementation-Vendor JetBrains High Product file name kotlin-klib-commonizer-embeddable High Product gradle artifactid kotlin-klib-commonizer-embeddable Highest Product jar package name commonizer Highest Product jar package name internal Low Product jar package name klib Highest Product jar package name kotlin Highest Product jar package name metadata Low Product Manifest Implementation-Title kotlin-klib-commonizer-embeddable High Version file name kotlin-klib-commonizer-embeddable Medium Version file version 1.9.20 High Version gradle version 1.9.20 Highest Version Manifest Implementation-Version 1.9.255-SNAPSHOT High
kotlin-native-utils-1.9.20.jarFile Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.jetbrains.kotlin/kotlin-native-utils/1.9.20/6362ed0e22ed64a738215490c1835d5a6264a5ac/kotlin-native-utils-1.9.20.jarMD5: a14ffa6a624525b57e8f6339acf55749SHA1: 6362ed0e22ed64a738215490c1835d5a6264a5acSHA256: b0f92bc9253a907f0ce285328643fe8a36c27ed494b5c5919ee09c2926d8e8d2Referenced In Projects/Scopes:
documentation:javadocClasspath quicktype-plugin:runtimeClasspath aspectj-plugin:compileClasspath aspectj-plugin:runtimeClasspath quicktype-plugin:compileClasspath quicktype-plugin:implementationDependenciesMetadata kotlin-native-utils-1.9.20.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/io.freefair.gradle/quicktype-plugin@8.6 pkg:maven/org.jetbrains.kotlin/kotlin-gradle-plugin-api@1.9.20 pkg:maven/org.jetbrains.kotlin/kotlin-gradle-plugin-api@1.9.20 pkg:maven/org.jetbrains.kotlin/kotlin-gradle-plugin@1.9.20 pkg:maven/org.jetbrains.kotlin/kotlin-gradle-plugin@1.9.20 pkg:maven/io.freefair.gradle/aspectj-plugin@8.6 pkg:maven/org.jetbrains.kotlin/kotlin-gradle-plugin@1.9.20 Evidence Type Source Name Value Confidence Vendor file name kotlin-native-utils High Vendor gradle artifactid kotlin-native-utils Highest Vendor gradle groupid org.jetbrains.kotlin Highest Vendor jar package name jetbrains Highest Vendor jar package name jetbrains Low Vendor jar package name konan Low Vendor jar package name kotlin Low Vendor Manifest Implementation-Vendor JetBrains High Product file name kotlin-native-utils High Product gradle artifactid kotlin-native-utils Highest Product jar package name konan Low Product jar package name kotlin Highest Product jar package name kotlin Low Product jar package name target Low Product Manifest Implementation-Title kotlin-native-utils High Version file name kotlin-native-utils Medium Version file version 1.9.20 High Version gradle version 1.9.20 Highest Version Manifest Implementation-Version 1.9.255-SNAPSHOT High
kotlin-project-model-1.9.20.jarFile Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.jetbrains.kotlin/kotlin-project-model/1.9.20/11532396237b2ead81b82227b81ace798eeb46ba/kotlin-project-model-1.9.20.jarMD5: 6357ac930952328fad7613751e81f2b9SHA1: 11532396237b2ead81b82227b81ace798eeb46baSHA256: 261a9b40e240e259ac359c16938002ecc6c08434a5c6e5e5bffee242a3c50218Referenced In Projects/Scopes:
documentation:javadocClasspath quicktype-plugin:runtimeClasspath aspectj-plugin:compileClasspath aspectj-plugin:runtimeClasspath quicktype-plugin:compileClasspath quicktype-plugin:implementationDependenciesMetadata kotlin-project-model-1.9.20.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/io.freefair.gradle/quicktype-plugin@8.6 pkg:maven/org.jetbrains.kotlin/kotlin-gradle-plugin-api@1.9.20 pkg:maven/org.jetbrains.kotlin/kotlin-gradle-plugin-api@1.9.20 pkg:maven/org.jetbrains.kotlin/kotlin-gradle-plugin@1.9.20 pkg:maven/org.jetbrains.kotlin/kotlin-gradle-plugin@1.9.20 pkg:maven/io.freefair.gradle/aspectj-plugin@8.6 pkg:maven/org.jetbrains.kotlin/kotlin-gradle-plugin@1.9.20 Evidence Type Source Name Value Confidence Vendor file name kotlin-project-model High Vendor gradle artifactid kotlin-project-model Highest Vendor gradle groupid org.jetbrains.kotlin Highest Vendor jar package name jetbrains Highest Vendor jar package name jetbrains Low Vendor jar package name kotlin Low Vendor jar package name project Low Vendor Manifest Implementation-Vendor JetBrains High Product file name kotlin-project-model High Product gradle artifactid kotlin-project-model Highest Product jar package name kotlin Highest Product jar package name kotlin Low Product jar package name model Highest Product jar package name model Low Product jar package name project Highest Product jar package name project Low Product Manifest Implementation-Title kotlin-project-model High Version file name kotlin-project-model Medium Version file version 1.9.20 High Version gradle version 1.9.20 Highest Version Manifest Implementation-Version 1.9.255-SNAPSHOT High
kotlin-reflect-1.6.10.jarFile Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.jetbrains.kotlin/kotlin-reflect/1.6.10/1cbe9c92c12a94eea200d23c2bbaedaf3daf5132/kotlin-reflect-1.6.10.jarMD5: a22187e3070e39a1cdb6a53970fa714dSHA1: 1cbe9c92c12a94eea200d23c2bbaedaf3daf5132SHA256: 3277ac102ae17aad10a55abec75ff5696c8d109790396434b496e75087854203Referenced In Projects/Scopes:
mjml-plugin:kotlinCompilerClasspath quicktype-plugin:kotlinBuildToolsApiClasspath mjml-plugin:kotlinBuildToolsApiClasspath quicktype-plugin:kotlinKlibCommonizerClasspath quicktype-plugin:kotlinCompilerClasspath mjml-plugin:kotlinKlibCommonizerClasspath kotlin-reflect-1.6.10.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.jetbrains.kotlin/kotlin-compiler-embeddable@1.9.20 pkg:maven/org.jetbrains.kotlin/kotlin-compiler-embeddable@1.9.20 pkg:maven/org.jetbrains.kotlin/kotlin-klib-commonizer-embeddable@1.9.20 pkg:maven/org.jetbrains.kotlin/kotlin-build-tools-impl@1.9.20 pkg:maven/org.jetbrains.kotlin/kotlin-klib-commonizer-embeddable@1.9.20 pkg:maven/org.jetbrains.kotlin/kotlin-build-tools-impl@1.9.20 Evidence Type Source Name Value Confidence Vendor file name kotlin-reflect High Vendor gradle artifactid kotlin-reflect Highest Vendor gradle groupid org.jetbrains.kotlin Highest Vendor jar package name jvm Low Vendor jar package name kotlin Low Vendor jar package name reflect Low Vendor Manifest Implementation-Vendor JetBrains High Vendor Manifest kotlin-runtime-component Main Low Vendor Manifest multi-release true Low Product file name kotlin-reflect High Product gradle artifactid kotlin-reflect Highest Product jar package name internal Low Product jar package name jvm Low Product jar package name kotlin Highest Product jar package name reflect Highest Product jar package name reflect Low Product Manifest Implementation-Title kotlin-reflect High Product Manifest kotlin-runtime-component Main Low Product Manifest multi-release true Low Version file name kotlin-reflect Medium Version file version 1.6.10 High Version gradle version 1.6.10 Highest Version Manifest Implementation-Version 1.6.10-release-923(1.6.10) High
kotlin-reflect-1.9.20.jarFile Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.jetbrains.kotlin/kotlin-reflect/1.9.20/34eeb4eed5f493cdbb760ef50a5653ec414006bf/kotlin-reflect-1.9.20.jarMD5: 603c079e252d2a37693511cd8d4f04aeSHA1: 34eeb4eed5f493cdbb760ef50a5653ec414006bfSHA256: 49b66f9a89d50fd2954c2e8aeac80e4f488b0a09322a25efad6261576713dc0fReferenced In Projects/Scopes:
documentation:javadocClasspath quicktype-plugin:runtimeClasspath quicktype-plugin:compileClasspath mjml-plugin:embeddedKotlin mjml-plugin:compileClasspath mjml-plugin:compileOnlyDependenciesMetadata quicktype-plugin:implementationDependenciesMetadata kotlin-reflect-1.9.20.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/io.freefair.gradle/quicktype-plugin@8.6 pkg:maven/io.freefair.gradle/quicktype-plugin@8.6 pkg:maven/io.freefair.gradle/quicktype-plugin@8.6 pkg:maven/io.freefair.gradle/mjml-plugin@8.6 pkg:maven/io.freefair.gradle/mjml-plugin@8.6 pkg:maven/io.freefair.gradle/mjml-plugin@8.6 pkg:maven/io.freefair.gradle/quicktype-plugin@8.6 Evidence Type Source Name Value Confidence Vendor file name kotlin-reflect High Vendor gradle artifactid kotlin-reflect Highest Vendor gradle groupid org.jetbrains.kotlin Highest Vendor jar package name jvm Low Vendor jar package name kotlin Low Vendor jar package name reflect Low Vendor Manifest Implementation-Vendor JetBrains High Vendor Manifest kotlin-runtime-component Main Low Vendor Manifest multi-release true Low Product file name kotlin-reflect High Product gradle artifactid kotlin-reflect Highest Product jar package name internal Low Product jar package name jvm Low Product jar package name kotlin Highest Product jar package name reflect Highest Product jar package name reflect Low Product Manifest Implementation-Title kotlin-reflect High Product Manifest kotlin-runtime-component Main Low Product Manifest multi-release true Low Version file name kotlin-reflect Medium Version file version 1.9.20 High Version gradle version 1.9.20 Highest Version Manifest Implementation-Version 1.9.255-SNAPSHOT High
kotlin-sam-with-receiver-compiler-plugin-embeddable-1.9.20.jarFile Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.jetbrains.kotlin/kotlin-sam-with-receiver-compiler-plugin-embeddable/1.9.20/5b04c29930350a551045a62fdbde3d84ebdeaf65/kotlin-sam-with-receiver-compiler-plugin-embeddable-1.9.20.jarMD5: 2793280ac740e1c3bdc5090f668a7541SHA1: 5b04c29930350a551045a62fdbde3d84ebdeaf65SHA256: d362170a1cc153160f0cb2038c84411034b56c055a9b316f32c0b7b7168ca0f2Referenced In Projects/Scopes:
mjml-plugin:kotlinCompilerPluginClasspathMain mjml-plugin:kotlinCompilerPluginClasspathTest kotlin-sam-with-receiver-compiler-plugin-embeddable-1.9.20.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/io.freefair.gradle/mjml-plugin@8.6 pkg:maven/io.freefair.gradle/mjml-plugin@8.6 Evidence Type Source Name Value Confidence Vendor file name kotlin-sam-with-receiver-compiler-plugin-embeddable High Vendor gradle artifactid kotlin-sam-with-receiver-compiler-plugin-embeddable Highest Vendor gradle groupid org.jetbrains.kotlin Highest Vendor jar package name jetbrains Highest Vendor jar package name jetbrains Low Vendor jar package name kotlin Low Vendor jar package name samwithreceiver Low Vendor Manifest Implementation-Vendor JetBrains High Product file name kotlin-sam-with-receiver-compiler-plugin-embeddable High Product gradle artifactid kotlin-sam-with-receiver-compiler-plugin-embeddable Highest Product jar package name kotlin Highest Product jar package name kotlin Low Product jar package name samwithreceiver Low Product Manifest Implementation-Title kotlin-sam-with-receiver-compiler-plugin.embeddable High Version file name kotlin-sam-with-receiver-compiler-plugin-embeddable Medium Version file version 1.9.20 High Version gradle version 1.9.20 Highest Version Manifest Implementation-Version 1.9.255-SNAPSHOT High
kotlin-script-runtime-1.9.20.jarFile Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.jetbrains.kotlin/kotlin-script-runtime/1.9.20/6fdfef711b8e07f1a4d0979a60acd7bc8a800777/kotlin-script-runtime-1.9.20.jarMD5: 448f3cef7b52d1552ad3c3d61b08ce04SHA1: 6fdfef711b8e07f1a4d0979a60acd7bc8a800777SHA256: a26a6256a76f766ab8bacdb409b3f8c940d999712a8e88864252b678d66bab9eReferenced In Projects/Scopes:
mjml-plugin:kotlinCompilerClasspath mjml-plugin:kotlinCompilerPluginClasspathMain quicktype-plugin:kotlinBuildToolsApiClasspath quicktype-plugin:kotlinCompilerPluginClasspathTest quicktype-plugin:kotlinCompilerPluginClasspathMain mjml-plugin:kotlinCompilerPluginClasspathTest mjml-plugin:kotlinBuildToolsApiClasspath quicktype-plugin:kotlinKlibCommonizerClasspath quicktype-plugin:kotlinCompilerClasspath mjml-plugin:kotlinKlibCommonizerClasspath kotlin-script-runtime-1.9.20.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.jetbrains.kotlin/kotlin-compiler-embeddable@1.9.20 pkg:maven/org.jetbrains.kotlin/kotlin-compiler-embeddable@1.9.20 pkg:maven/org.jetbrains.kotlin/kotlin-scripting-compiler-embeddable@1.9.20 pkg:maven/org.jetbrains.kotlin/kotlin-scripting-compiler-embeddable@1.9.20 pkg:maven/org.jetbrains.kotlin/kotlin-klib-commonizer-embeddable@1.9.20 pkg:maven/org.jetbrains.kotlin/kotlin-scripting-compiler-embeddable@1.9.20 pkg:maven/org.jetbrains.kotlin/kotlin-scripting-compiler-embeddable@1.9.20 pkg:maven/org.jetbrains.kotlin/kotlin-build-tools-impl@1.9.20 pkg:maven/org.jetbrains.kotlin/kotlin-klib-commonizer-embeddable@1.9.20 pkg:maven/org.jetbrains.kotlin/kotlin-build-tools-impl@1.9.20 Evidence Type Source Name Value Confidence Vendor file name kotlin-script-runtime High Vendor gradle artifactid kotlin-script-runtime Highest Vendor gradle groupid org.jetbrains.kotlin Highest Vendor jar package name kotlin Low Vendor jar package name script Low Vendor Manifest Implementation-Vendor JetBrains High Vendor Manifest kotlin-runtime-component Main Low Product file name kotlin-script-runtime High Product gradle artifactid kotlin-script-runtime Highest Product jar package name dependencies Low Product jar package name kotlin Highest Product jar package name script Highest Product jar package name script Low Product Manifest Implementation-Title kotlin-script-runtime High Product Manifest kotlin-runtime-component Main Low Version file name kotlin-script-runtime Medium Version file version 1.9.20 High Version gradle version 1.9.20 Highest Version Manifest Implementation-Version 1.9.255-SNAPSHOT High
kotlin-scripting-common-1.9.20.jarFile Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.jetbrains.kotlin/kotlin-scripting-common/1.9.20/d2abd0f9c63e61fa54bd43f29458c2606b02abdc/kotlin-scripting-common-1.9.20.jarMD5: 8193e0ddf5ce7011d52f39df787eaea0SHA1: d2abd0f9c63e61fa54bd43f29458c2606b02abdcSHA256: 5aa08477cb73f7927413aec683a4aa3b3f99e87be0630255ce697452a1a42d65Referenced In Projects/Scopes:
documentation:javadocClasspath quicktype-plugin:runtimeClasspath mjml-plugin:kotlinCompilerPluginClasspathMain quicktype-plugin:kotlinCompilerPluginClasspathTest quicktype-plugin:kotlinCompilerPluginClasspathMain mjml-plugin:kotlinCompilerPluginClasspathTest kotlin-scripting-common-1.9.20.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/io.freefair.gradle/quicktype-plugin@8.6 pkg:maven/org.jetbrains.kotlin/kotlin-scripting-compiler-embeddable@1.9.20 pkg:maven/org.jetbrains.kotlin/kotlin-scripting-compiler-embeddable@1.9.20 pkg:maven/org.jetbrains.kotlin/kotlin-scripting-compiler-embeddable@1.9.20 pkg:maven/org.jetbrains.kotlin/kotlin-scripting-compiler-embeddable@1.9.20 pkg:maven/io.freefair.gradle/aspectj-plugin@8.6 pkg:maven/org.jetbrains.kotlin/kotlin-gradle-plugin@1.9.20 Evidence Type Source Name Value Confidence Vendor file name kotlin-scripting-common High Vendor gradle artifactid kotlin-scripting-common Highest Vendor gradle groupid org.jetbrains.kotlin Highest Vendor jar package name experimental Low Vendor jar package name kotlin Low Vendor jar package name script Low Vendor Manifest Implementation-Vendor JetBrains High Product file name kotlin-scripting-common High Product gradle artifactid kotlin-scripting-common Highest Product jar package name api Low Product jar package name experimental Low Product jar package name kotlin Highest Product jar package name script Low Product Manifest Implementation-Title kotlin-scripting-common High Version file name kotlin-scripting-common Medium Version file version 1.9.20 High Version gradle version 1.9.20 Highest Version Manifest Implementation-Version 1.9.255-SNAPSHOT High
kotlin-scripting-compiler-embeddable-1.9.20.jarFile Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.jetbrains.kotlin/kotlin-scripting-compiler-embeddable/1.9.20/c2c32f862094042ee6c84e21df4669b41191af88/kotlin-scripting-compiler-embeddable-1.9.20.jarMD5: 51dc793e60da12fb07ff0789c77bccabSHA1: c2c32f862094042ee6c84e21df4669b41191af88SHA256: 2181dd0c4d52c6f696ad9f17934233790f4d68234b1418d6376fda7e5c374c4eReferenced In Projects/Scopes:
documentation:javadocClasspath quicktype-plugin:runtimeClasspath mjml-plugin:kotlinCompilerPluginClasspathMain quicktype-plugin:kotlinCompilerPluginClasspathTest quicktype-plugin:kotlinCompilerPluginClasspathMain mjml-plugin:kotlinCompilerPluginClasspathTest kotlin-scripting-compiler-embeddable-1.9.20.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/io.freefair.gradle/quicktype-plugin@8.6 pkg:maven/io.freefair.gradle/quicktype-plugin@8.6 pkg:maven/io.freefair.gradle/mjml-plugin@8.6 pkg:maven/io.freefair.gradle/quicktype-plugin@8.6 pkg:maven/io.freefair.gradle/mjml-plugin@8.6 pkg:maven/io.freefair.gradle/aspectj-plugin@8.6 pkg:maven/org.jetbrains.kotlin/kotlin-gradle-plugin@1.9.20 Evidence Type Source Name Value Confidence Vendor file name kotlin-scripting-compiler-embeddable High Vendor gradle artifactid kotlin-scripting-compiler-embeddable Highest Vendor gradle groupid org.jetbrains.kotlin Highest Vendor jar package name jetbrains Highest Vendor jar package name jetbrains Low Vendor jar package name kotlin Low Vendor jar package name scripting Low Vendor Manifest Implementation-Vendor JetBrains High Product file name kotlin-scripting-compiler-embeddable High Product gradle artifactid kotlin-scripting-compiler-embeddable Highest Product jar package name compiler Highest Product jar package name compiler Low Product jar package name kotlin Highest Product jar package name kotlin Low Product jar package name scripting Highest Product jar package name scripting Low Product Manifest Implementation-Title kotlin-scripting-compiler-embeddable High Version file name kotlin-scripting-compiler-embeddable Medium Version file version 1.9.20 High Version gradle version 1.9.20 Highest Version Manifest Implementation-Version 1.9.255-SNAPSHOT High
kotlin-scripting-compiler-impl-embeddable-1.9.20.jarFile Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.jetbrains.kotlin/kotlin-scripting-compiler-impl-embeddable/1.9.20/ed985bbca9227a8cf97d5b2f81d371f1d7efee61/kotlin-scripting-compiler-impl-embeddable-1.9.20.jarMD5: 249e8a01e03dba8578b0306dcdee4389SHA1: ed985bbca9227a8cf97d5b2f81d371f1d7efee61SHA256: dc9ab6f69c592ad1f1d2e2b994b97509d0ee09480bea6bc771eeeef3071eb817Referenced In Projects/Scopes:
documentation:javadocClasspath quicktype-plugin:runtimeClasspath mjml-plugin:kotlinCompilerPluginClasspathMain quicktype-plugin:kotlinCompilerPluginClasspathTest quicktype-plugin:kotlinCompilerPluginClasspathMain mjml-plugin:kotlinCompilerPluginClasspathTest kotlin-scripting-compiler-impl-embeddable-1.9.20.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/io.freefair.gradle/quicktype-plugin@8.6 pkg:maven/org.jetbrains.kotlin/kotlin-scripting-compiler-embeddable@1.9.20 pkg:maven/org.jetbrains.kotlin/kotlin-scripting-compiler-embeddable@1.9.20 pkg:maven/org.jetbrains.kotlin/kotlin-scripting-compiler-embeddable@1.9.20 pkg:maven/org.jetbrains.kotlin/kotlin-scripting-compiler-embeddable@1.9.20 pkg:maven/io.freefair.gradle/aspectj-plugin@8.6 pkg:maven/org.jetbrains.kotlin/kotlin-gradle-plugin@1.9.20 Evidence Type Source Name Value Confidence Vendor file name kotlin-scripting-compiler-impl-embeddable High Vendor gradle artifactid kotlin-scripting-compiler-impl-embeddable Highest Vendor gradle groupid org.jetbrains.kotlin Highest Vendor jar package name jetbrains Highest Vendor jar package name jetbrains Low Vendor jar package name kotlin Low Vendor jar package name scripting Low Vendor Manifest Implementation-Vendor JetBrains High Product file name kotlin-scripting-compiler-impl-embeddable High Product gradle artifactid kotlin-scripting-compiler-impl-embeddable Highest Product jar package name definitions Low Product jar package name kotlin Highest Product jar package name kotlin Low Product jar package name scripting Highest Product jar package name scripting Low Product Manifest Implementation-Title kotlin-scripting-compiler-impl-embeddable High Version file name kotlin-scripting-compiler-impl-embeddable Medium Version file version 1.9.20 High Version gradle version 1.9.20 Highest Version Manifest Implementation-Version 1.9.255-SNAPSHOT High
kotlin-scripting-jvm-1.9.20.jarFile Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.jetbrains.kotlin/kotlin-scripting-jvm/1.9.20/5277cafe6949e047a271433202f32e8377b00ebb/kotlin-scripting-jvm-1.9.20.jarMD5: 8a0b55521109a64ff37f1a19d5d32812SHA1: 5277cafe6949e047a271433202f32e8377b00ebbSHA256: 809f73bdd4dd7766ae1ef2ced968896ce9c03d6a5fe6de6f6799778851f75bd3Referenced In Projects/Scopes:
documentation:javadocClasspath quicktype-plugin:runtimeClasspath mjml-plugin:kotlinCompilerPluginClasspathMain quicktype-plugin:kotlinCompilerPluginClasspathTest quicktype-plugin:kotlinCompilerPluginClasspathMain mjml-plugin:kotlinCompilerPluginClasspathTest kotlin-scripting-jvm-1.9.20.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/io.freefair.gradle/quicktype-plugin@8.6 pkg:maven/org.jetbrains.kotlin/kotlin-scripting-compiler-embeddable@1.9.20 pkg:maven/org.jetbrains.kotlin/kotlin-scripting-compiler-embeddable@1.9.20 pkg:maven/org.jetbrains.kotlin/kotlin-scripting-compiler-embeddable@1.9.20 pkg:maven/org.jetbrains.kotlin/kotlin-scripting-compiler-embeddable@1.9.20 pkg:maven/io.freefair.gradle/aspectj-plugin@8.6 pkg:maven/org.jetbrains.kotlin/kotlin-gradle-plugin@1.9.20 Evidence Type Source Name Value Confidence Vendor file name kotlin-scripting-jvm High Vendor gradle artifactid kotlin-scripting-jvm Highest Vendor gradle groupid org.jetbrains.kotlin Highest Vendor jar package name experimental Low Vendor jar package name kotlin Low Vendor jar package name script Low Vendor Manifest Implementation-Vendor JetBrains High Product file name kotlin-scripting-jvm High Product gradle artifactid kotlin-scripting-jvm Highest Product jar package name experimental Low Product jar package name jvm Highest Product jar package name jvm Low Product jar package name kotlin Highest Product jar package name script Low Product Manifest Implementation-Title kotlin-scripting-jvm High Version file name kotlin-scripting-jvm Medium Version file version 1.9.20 High Version gradle version 1.9.20 Highest Version Manifest Implementation-Version 1.9.255-SNAPSHOT High
kotlin-stdlib-1.9.10.jarFile Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.jetbrains.kotlin/kotlin-stdlib/1.9.10/72812e8a368917ab5c0a5081b56915ffdfec93b7/kotlin-stdlib-1.9.10.jarMD5: da8348128b101f854fafa9a31e3806bdSHA1: 72812e8a368917ab5c0a5081b56915ffdfec93b7SHA256: 55e989c512b80907799f854309f3bc7782c5b3d13932442d0379d5c472711504Referenced In Projects/Scopes:
github-plugin:compileClasspath github-plugin:runtimeClasspath maven-plugin-plugin:compileClasspath okhttp-plugin:runtimeClasspath maven-plugin-plugin:runtimeClasspath maven-plugin:compileClasspath okhttp-plugin:compileClasspath maven-plugin:runtimeClasspath kotlin-stdlib-1.9.10.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/io.freefair.gradle/okhttp-plugin@8.6 pkg:maven/com.squareup.retrofit2/converter-gson@2.9.0 pkg:maven/com.squareup.retrofit2/retrofit@2.9.0 pkg:maven/com.squareup.okhttp3/okhttp@4.12.0 pkg:maven/io.freefair.gradle/maven-plugin@8.6 pkg:maven/com.squareup.retrofit2/converter-gson@2.9.0 pkg:maven/com.squareup.okhttp3/okhttp-bom@4.12.0 pkg:maven/com.squareup.okhttp3/logging-interceptor@4.12.0 pkg:maven/com.squareup.okhttp3/logging-interceptor@4.12.0 pkg:maven/io.freefair.gradle/maven-plugin@8.6 pkg:maven/com.squareup.okhttp3/okhttp@4.12.0 pkg:maven/io.freefair.gradle/okhttp-plugin@8.6 pkg:maven/com.squareup.retrofit2/retrofit@2.9.0 pkg:maven/io.freefair.gradle/okhttp-plugin@8.6 pkg:maven/com.squareup.okhttp3/okhttp-bom@4.12.0 pkg:maven/io.freefair.gradle/okhttp-plugin@8.6 Evidence Type Source Name Value Confidence Vendor file name kotlin-stdlib High Vendor gradle artifactid kotlin-stdlib Highest Vendor gradle groupid org.jetbrains.kotlin Highest Vendor jar package name kotlin Low Vendor Manifest Implementation-Vendor JetBrains High Vendor Manifest kotlin-runtime-component Main Low Vendor Manifest multi-release true Low Product file name kotlin-stdlib High Product gradle artifactid kotlin-stdlib Highest Product jar package name kotlin Highest Product Manifest Implementation-Title kotlin-stdlib High Product Manifest kotlin-runtime-component Main Low Product Manifest multi-release true Low Version file name kotlin-stdlib Medium Version file version 1.9.10 High Version gradle version 1.9.10 Highest Version Manifest Implementation-Version 1.9.10-release-459 High
kotlin-stdlib-1.9.20-all.jarFile Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.jetbrains.kotlin/kotlin-stdlib/1.9.20/6c69e7b26179394dafd3c90e630ef763b8c1a267/kotlin-stdlib-1.9.20-all.jarMD5: 4468f2ad5cecac0c0c2639699aafcfc1SHA1: 6c69e7b26179394dafd3c90e630ef763b8c1a267SHA256: cec38bc3302e72a8aaf9cde436b5a9071ee0331e2ad05e84d8bb897334d7e9d4Referenced In Projects/Scopes:
quicktype-plugin:apiDependenciesMetadata mjml-plugin:compileOnlyDependenciesMetadata quicktype-plugin:implementationDependenciesMetadata kotlin-stdlib-1.9.20-all.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.jetbrains.kotlin/kotlin-reflect@1.9.20 pkg:maven/io.freefair.gradle/quicktype-plugin@8.6 pkg:maven/io.freefair.gradle/mjml-plugin@8.6 pkg:maven/org.jetbrains.kotlin/kotlin-reflect@1.9.20 pkg:maven/io.freefair.gradle/quicktype-plugin@8.6 Evidence Type Source Name Value Confidence Vendor file name kotlin-stdlib High Vendor gradle artifactid kotlin-stdlib Highest Vendor gradle groupid org.jetbrains.kotlin Highest Product file name kotlin-stdlib High Product gradle artifactid kotlin-stdlib Highest Version file name kotlin-stdlib Medium Version file version 1.9.20 High Version gradle version 1.9.20 Highest
kotlin-stdlib-1.9.20.jarFile Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.jetbrains.kotlin/kotlin-stdlib/1.9.20/e58b4816ac517e9cc5df1db051120c63d4cde669/kotlin-stdlib-1.9.20.jarMD5: 405681a02b165f82fc680133482b210cSHA1: e58b4816ac517e9cc5df1db051120c63d4cde669SHA256: 28a35bcdff46d864f80f346a617e486284b208d17378c41900dfb1de95a90e6cReferenced In Projects/Scopes:
documentation:javadocClasspath mjml-plugin:kotlinCompilerClasspath mjml-plugin:kotlinCompilerPluginClasspathMain quicktype-plugin:kotlinCompilerPluginClasspathMain quicktype-plugin:kotlinKlibCommonizerClasspath quicktype-plugin:runtimeClasspath quicktype-plugin:kotlinBuildToolsApiClasspath quicktype-plugin:kotlinCompilerPluginClasspathTest quicktype-plugin:compileClasspath mjml-plugin:kotlinCompilerPluginClasspathTest mjml-plugin:kotlinBuildToolsApiClasspath mjml-plugin:embeddedKotlin mjml-plugin:compileClasspath quicktype-plugin:kotlinCompilerClasspath mjml-plugin:kotlinKlibCommonizerClasspath kotlin-stdlib-1.9.20.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/io.freefair.gradle/maven-plugin-plugin@8.6 pkg:maven/org.jetbrains.kotlin/kotlin-compiler-embeddable@1.9.20 pkg:maven/org.jetbrains.kotlin/kotlin-reflect@1.9.20 pkg:maven/org.jetbrains.kotlin/kotlin-scripting-compiler-embeddable@1.9.20 pkg:maven/io.freefair.gradle/maven-plugin@8.6 pkg:maven/org.jetbrains.kotlin/kotlin-klib-commonizer-embeddable@1.9.20 pkg:maven/io.freefair.gradle/mjml-plugin@8.6 pkg:maven/org.jetbrains.kotlin/kotlin-scripting-compiler-embeddable@1.9.20 pkg:maven/org.jetbrains.kotlin/kotlin-scripting-compiler-embeddable@1.9.20 pkg:maven/io.freefair.gradle/github-plugin@8.6 pkg:maven/org.jetbrains.kotlin/kotlin-build-tools-impl@1.9.20 pkg:maven/org.jetbrains.kotlin/kotlin-klib-commonizer-embeddable@1.9.20 pkg:maven/io.freefair.gradle/quicktype-plugin@8.6 pkg:maven/org.jetbrains.kotlin/kotlin-reflect@1.9.20 pkg:maven/io.freefair.gradle/quicktype-plugin@8.6 pkg:maven/org.jetbrains.kotlin/kotlin-compiler-embeddable@1.9.20 pkg:maven/org.jetbrains.kotlin/kotlin-scripting-compiler-embeddable@1.9.20 pkg:maven/io.freefair.gradle/mjml-plugin@8.6 pkg:maven/org.jetbrains.kotlin/kotlin-reflect@1.9.20 pkg:maven/org.jetbrains.kotlin/kotlin-reflect@1.9.20 pkg:maven/io.freefair.gradle/quicktype-plugin@8.6 pkg:maven/io.freefair.gradle/okhttp-plugin@8.6 pkg:maven/org.jetbrains.kotlin/kotlin-build-tools-impl@1.9.20 Evidence Type Source Name Value Confidence Vendor file name kotlin-stdlib High Vendor gradle artifactid kotlin-stdlib Highest Vendor gradle groupid org.jetbrains.kotlin Highest Vendor jar package name kotlin Low Vendor Manifest Implementation-Vendor JetBrains High Vendor Manifest kotlin-runtime-component Main Low Vendor Manifest multi-release true Low Product file name kotlin-stdlib High Product gradle artifactid kotlin-stdlib Highest Product jar package name kotlin Highest Product Manifest Implementation-Title kotlin-stdlib High Product Manifest kotlin-runtime-component Main Low Product Manifest multi-release true Low Version file name kotlin-stdlib Medium Version file version 1.9.20 High Version gradle version 1.9.20 Highest Version Manifest Implementation-Version 1.9.255-SNAPSHOT High
kotlin-stdlib-common-1.9.10.jarFile Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.jetbrains.kotlin/kotlin-stdlib-common/1.9.10/dafaf2c27f27c09220cee312df10917d9a5d97ce/kotlin-stdlib-common-1.9.10.jarMD5: de4024a53c843e959f2d50ecd1f0e951SHA1: dafaf2c27f27c09220cee312df10917d9a5d97ceSHA256: cde3341ba18a2ba262b0b7cf6c55b20c90e8d434e42c9a13e6a3f770db965a88Referenced In Projects/Scopes:
github-plugin:compileClasspath github-plugin:runtimeClasspath maven-plugin-plugin:compileClasspath okhttp-plugin:runtimeClasspath maven-plugin-plugin:runtimeClasspath maven-plugin:compileClasspath okhttp-plugin:compileClasspath maven-plugin:runtimeClasspath kotlin-stdlib-common-1.9.10.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/io.freefair.gradle/okhttp-plugin@8.6 pkg:maven/com.squareup.retrofit2/converter-gson@2.9.0 pkg:maven/com.squareup.retrofit2/retrofit@2.9.0 pkg:maven/com.squareup.okhttp3/okhttp@4.12.0 pkg:maven/io.freefair.gradle/maven-plugin@8.6 pkg:maven/com.squareup.retrofit2/converter-gson@2.9.0 pkg:maven/com.squareup.okhttp3/okhttp-bom@4.12.0 pkg:maven/com.squareup.okhttp3/logging-interceptor@4.12.0 pkg:maven/com.squareup.okhttp3/logging-interceptor@4.12.0 pkg:maven/io.freefair.gradle/maven-plugin@8.6 pkg:maven/com.squareup.okhttp3/okhttp@4.12.0 pkg:maven/io.freefair.gradle/okhttp-plugin@8.6 pkg:maven/com.squareup.retrofit2/retrofit@2.9.0 pkg:maven/io.freefair.gradle/okhttp-plugin@8.6 pkg:maven/com.squareup.okhttp3/okhttp-bom@4.12.0 pkg:maven/io.freefair.gradle/okhttp-plugin@8.6 Evidence Type Source Name Value Confidence Vendor file name kotlin-stdlib-common High Vendor gradle artifactid kotlin-stdlib-common Highest Vendor gradle groupid org.jetbrains.kotlin Highest Vendor Manifest Implementation-Vendor JetBrains High Vendor Manifest kotlin-runtime-component Main Low Product file name kotlin-stdlib-common High Product gradle artifactid kotlin-stdlib-common Highest Product Manifest Implementation-Title kotlin-stdlib-common High Product Manifest kotlin-runtime-component Main Low Version file name kotlin-stdlib-common Medium Version file version 1.9.10 High Version gradle version 1.9.10 Highest Version Manifest Implementation-Version 1.9.10-release-459 High
kotlin-stdlib-jdk7-1.9.10.jarFile Path: /home/runner/.gradle/caches/modules-2/files-2.1/org.jetbrains.kotlin/kotlin-stdlib-jdk7/1.9.10/bc5bfc2690338defd5195b05c57562f2194eeb10/kotlin-stdlib-jdk7-1.9.10.jarMD5: 14f35bcc452b095f3034a1471960ccccSHA1: bc5bfc2690338defd5195b05c57562f2194eeb10SHA256: ac6361bf9ad1ed382c2103d9712c47cdec166232b4903ed596e8876b0681c9b7Referenced In Projects/Scopes:
documentation:javadocClasspath github-plugin:compileClasspath github-plugin:runtimeClasspath maven-plugin-plugin:compileClasspath okhttp-plugin:runtimeClasspath maven-plugin-plugin:runtimeClasspath maven-plugin:compileClasspath okhttp-plugin:compileClasspath maven-plugin:runtimeClasspath kotlin-stdlib-jdk7-1.9.10.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/io.freefair.gradle/maven-plugin-plugin@8.6 pkg:maven/io.freefair.gradle/okhttp-plugin@8.6 pkg:maven/io.freefair.gradle/maven-plugin@8.6 pkg:maven/com.squareup.retrofit2/converter-gson@2.9.0 pkg:maven/com.squareup.retrofit2/retrofit@2.9.0 pkg:maven/io.freefair.gradle/github-plugin@8.6 pkg:maven/com.squareup.okhttp3/okhttp@4.12.0 pkg:maven/io.freefair.gradle/maven-plugin@8.6 pkg:maven/io.freefair.gradle/quicktype-plugin@8.6 pkg:maven/com.squareup.retrofit2/converter-gson@2.9.0 pkg:maven/com.squareup.okhttp3/okhttp-bom@4.12.0 pkg:maven/com.squareup.okhttp3/logging-interceptor@4.12.0 pkg:maven/com.squareup.okhttp3/logging-interceptor@4.12.0 pkg:maven/io.freefair.gradle/maven-plugin@8.6 pkg:maven/com.squareup.okhttp3/okhttp@4.12.0 pkg:maven/io.freefair.gradle/okhttp-plugin@8.6 pkg:maven/com.squareup.retrofit2/retrofit@2.9.0 pkg:maven/io.freefair.gradle/okhttp-plugin@8.6 pkg:maven/com.squareup.okhttp3/okhttp-bom@4.12.0 pkg:maven/io.freefair.gradle/okhttp-plugin@8.6 pkg:maven/io.freefair.gradle/okhttp-plugin@8.6 Evidence Type Source Name Value Confidence Vendor file name kotlin-stdlib-jdk7 High Vendor gradle artifactid kotlin-stdlib-jdk7 Highest Vendor gradle groupid org.jetbrains.kotlin Highest Vendor jar package name meta-inf Low Vendor jar package name versions Low Vendor Manifest Implementation-Vendor JetBrains High Vendor Manifest kotlin-runtime-component Main Low Vendor Manifest multi-release true Low Product file name kotlin-stdlib-jdk7 High Product gradle artifactid kotlin-stdlib-jdk7 Highest Product jar package name module-info Low Product jar package name versions Low Product Manifest Implementation-Title kotlin-stdlib-jdk7 High Product Manifest kotlin-runtime-component Main Low Product Manifest multi-release true Low Version file name kotlin-stdlib-jdk7 Medium Version file version 1.9.10 High Version gradle version 1.9.10 Highest Version Manifest Implementation-Version 1.9.10-release-459 High