Press CTR-C to copy XML [help]


Dependency-Check is an open source tool performing a best effort analysis of 3rd party dependencies; false positives and false negatives may exist in the analysis performed by the tool. Use of the tool and the reporting provided constitutes acceptance for use in an AS IS condition, and there are NO warranties, implied or otherwise, with regard to the analysis or its use. Any use of the tool and the reporting provided is at the user’s risk. In no event shall the copyright holder or OWASP be held liable for any damages whatsoever arising out of or in connection with the use of this tool, the analysis performed, or the resulting report.

How to read the report | Suppressing false positives | Getting Help: github issues

Project: RealLifeDeveloper Build Tools

com.reallifedeveloper:rld-build-tools:3.2.1

Scan Information (show all):

Summary

Summary of Vulnerable Dependencies (click to show all)

Dependency Vulnerability IDs Package Highest Severity CVE Count Confidence Evidence Count
GeographicLib-Java-1.49.jar pkg:maven/net.sf.geographiclib/GeographicLib-Java@1.49   0 32
amqp-client-5.29.0.jar pkg:maven/com.rabbitmq/amqp-client@5.29.0   0 48
antlr4-runtime-4.13.2.jar pkg:maven/org.antlr/antlr4-runtime@4.13.2   0 30
apiguardian-api-1.1.2.jar pkg:maven/org.apiguardian/apiguardian-api@1.1.2   0 40
checker-qual-3.55.1.jar pkg:maven/org.checkerframework/checker-qual@3.55.1   0 44
commons-beanutils-1.11.0.jar cpe:2.3:a:apache:commons_beanutils:1.11.0:*:*:*:*:*:*:* pkg:maven/commons-beanutils/commons-beanutils@1.11.0   0 Highest 170
commons-collections-3.2.2.jar cpe:2.3:a:apache:commons_collections:3.2.2:*:*:*:*:*:*:* pkg:maven/commons-collections/commons-collections@3.2.2   0 Highest 84
commons-collections4-4.5.0.jar cpe:2.3:a:apache:commons_collections:4.5.0:*:*:*:*:*:*:* pkg:maven/org.apache.commons/commons-collections4@4.5.0   0 Highest 113
commons-io-2.21.0.jar cpe:2.3:a:apache:commons_io:2.21.0:*:*:*:*:*:*:* pkg:maven/commons-io/commons-io@2.21.0   0 Highest 127
commons-lang3-3.20.0.jar cpe:2.3:a:apache:commons_lang:3.20.0:*:*:*:*:*:*:* pkg:maven/org.apache.commons/commons-lang3@3.20.0   0 Highest 145
commons-logging-1.3.5.jar pkg:maven/commons-logging/commons-logging@1.3.5   0 129
commons-pool-1.5.4.jar pkg:maven/commons-pool/commons-pool@1.5.4   0 74
commons-text-1.15.0.jar cpe:2.3:a:apache:commons_text:1.15.0:*:*:*:*:*:*:* pkg:maven/org.apache.commons/commons-text@1.15.0   0 Highest 73
dbunit-3.0.0.jar cpe:2.3:a:golden_project:golden:3.0.0:*:*:*:*:*:*:* pkg:maven/org.dbunit/dbunit@3.0.0   0 Low 96
ejml-core-0.41.jar pkg:maven/org.ejml/ejml-core@0.41   0 26
ejml-ddense-0.41.jar pkg:maven/org.ejml/ejml-ddense@0.41   0 28
geolatte-geom-1.10.jar pkg:maven/org.geolatte/geolatte-geom@1.10   0 26
gt-api-34.3.jar cpe:2.3:a:geotools:geotools:34.3:*:*:*:*:*:*:* pkg:maven/org.geotools/gt-api@34.3   0 Highest 40
hibernate-spatial-7.3.0.Final.jar cpe:2.3:a:hibernate:hibernate_orm:7.3.0:*:*:*:*:*:*:* pkg:maven/org.hibernate.orm/hibernate-spatial@7.3.0.Final   0 Highest 45
imagen-core-0.9.1.jar pkg:maven/org.eclipse.imagen/imagen-core@0.9.1   0 19
indriya-2.2.jar pkg:maven/tech.units/indriya@2.2   0 85
iterators-0.9.1.jar pkg:maven/org.eclipse.imagen/iterators@0.9.1   0 21
jackson-core-2.21.2.jar cpe:2.3:a:fasterxml:jackson-core:2.21.2:*:*:*:*:*:*:*
cpe:2.3:a:fasterxml:jackson-modules-java8:2.21.2:*:*:*:*:*:*:* 		pkg:maven/com.fasterxml.jackson.core/jackson-core@2.21.2   0 Highest 47
jakarta.annotation-api-3.0.0.jar cpe:2.3:a:oracle:projects:3.0.0:*:*:*:*:*:*:* pkg:maven/jakarta.annotation/jakarta.annotation-api@3.0.0   0 Low 42
jakarta.inject-api-2.0.1.jar pkg:maven/jakarta.inject/jakarta.inject-api@2.0.1   0 56
jakarta.persistence-api-3.2.0.jar pkg:maven/jakarta.persistence/jakarta.persistence-api@3.2.0   0 40
jboss-logging-3.6.3.Final.jar pkg:maven/org.jboss.logging/jboss-logging@3.6.3.Final   0 41
jgridshift-core-1.3.jar pkg:maven/it.geosolutions.jgridshift/jgridshift-core@1.3   0 19
jspecify-1.0.0.jar pkg:maven/org.jspecify/jspecify@1.0.0   0 32
jsr305-3.0.2.jar pkg:maven/com.google.code.findbugs/jsr305@3.0.2   0 17
jts-core-1.20.0.jar pkg:maven/org.locationtech.jts/jts-core@1.20.0   0 24
junit-jupiter-api-6.0.3.jar pkg:maven/org.junit.jupiter/junit-jupiter-api@6.0.3   0 76
junit-platform-engine-6.0.3.jar cpe:2.3:a:fan_platform_project:fan_platform:6.0.3:*:*:*:*:*:*:* pkg:maven/org.junit.platform/junit-platform-engine@6.0.3   0 Low 76
logback-core-1.5.32.jar cpe:2.3:a:qos:logback:1.5.32:*:*:*:*:*:*:* pkg:maven/ch.qos.logback/logback-core@1.5.32   0 Highest 39
lombok-1.18.44.jar pkg:maven/org.projectlombok/lombok@1.18.44   0 36
lombok-1.18.44.jar: mavenEcjBootstrapAgent.jar   0 7
micrometer-commons-1.16.4.jar pkg:maven/io.micrometer/micrometer-commons@1.16.4   0 65
micrometer-observation-1.16.4.jar pkg:maven/io.micrometer/micrometer-observation@1.16.4   0 65
net.opengis.ows-34.3.jar cpe:2.3:a:geotools:geotools:34.3:*:*:*:*:*:*:* pkg:maven/org.geotools.ogc/net.opengis.ows@34.3   0 Highest 28
netty-codec-protobuf-4.2.10.Final.jar cpe:2.3:a:netty:netty:4.2.10:*:*:*:*:*:*:*
cpe:2.3:a:protobuf:protobuf:4.2.10:*:*:*:*:*:*:* 		pkg:maven/io.netty/netty-codec-protobuf@4.2.10.Final   0 Highest 37
netty-common-4.2.10.Final.jar (shaded: org.jctools:jctools-core:4.0.5) pkg:maven/org.jctools/jctools-core@4.0.5   0 9
netty-transport-4.2.10.Final.jar cpe:2.3:a:netty:netty:4.2.10:*:*:*:*:*:*:* pkg:maven/io.netty/netty-transport@4.2.10.Final   0 Highest 35
opencsv-5.12.0.jar pkg:maven/com.opencsv/opencsv@5.12.0   0 35
opentest4j-1.3.0.jar pkg:maven/org.opentest4j/opentest4j@1.3.0   0 60
org.eclipse.emf.common-2.15.0.jar pkg:maven/org.eclipse.emf/org.eclipse.emf.common@2.15.0
pkg:maven/org.eclipse.emf/org.eclipse.emf.common@2.15.0-SNAPSHOT 		  0 43
org.eclipse.emf.ecore-2.15.0.jar pkg:maven/org.eclipse.emf/org.eclipse.emf.ecore@2.15.0
pkg:maven/org.eclipse.emf/org.eclipse.emf.ecore@2.15.0-SNAPSHOT 		  0 44
org.eclipse.emf.ecore.xmi-2.15.0.jar pkg:maven/org.eclipse.emf/org.eclipse.emf.ecore.xmi@2.15.0
pkg:maven/org.eclipse.emf/org.eclipse.emf.ecore.xmi@2.15.0-SNAPSHOT 		  0 43
org.eclipse.sisu.plexus-0.9.0.M4.jar pkg:maven/org.eclipse.sisu/org.eclipse.sisu.plexus@0.9.0.M4   0 31
org.w3.xlink-34.3.jar cpe:2.3:a:geotools:geotools:34.3:*:*:*:*:*:*:* pkg:maven/org.geotools.ogc/org.w3.xlink@34.3   0 Highest 29
re2j-1.8.jar pkg:maven/com.google.re2j/re2j@1.8   0 28
si-quantity-2.1.jar pkg:maven/si.uom/si-quantity@2.1   0 24
si-units-2.1.jar pkg:maven/si.uom/si-units@2.1   0 33
slf4j-api-2.0.17.jar pkg:maven/org.slf4j/slf4j-api@2.0.17   0 29
snakeyaml-2.2.jar cpe:2.3:a:snakeyaml_project:snakeyaml:2.2:*:*:*:*:*:*:* pkg:maven/org.yaml/snakeyaml@2.2   0 Highest 42
spotbugs-annotations-4.9.8.jar pkg:maven/com.github.spotbugs/spotbugs-annotations@4.9.8   0 53
spring-core-7.0.6.jar cpe:2.3:a:pivotal_software:spring_framework:7.0.6:*:*:*:*:*:*:*
cpe:2.3:a:springsource:spring_framework:7.0.6:*:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_framework:7.0.6:*:*:*:*:*:*:* 		pkg:maven/org.springframework/spring-core@7.0.6 MEDIUM 3 Highest 41
spring-data-commons-4.0.4.jar cpe:2.3:a:pivotal_software:spring_data_commons:4.0.4:*:*:*:*:*:*:* pkg:maven/org.springframework.data/spring-data-commons@4.0.4   0 Highest 32
spring-data-jpa-4.0.4.jar cpe:2.3:a:pivotal_software:spring_data_jpa:4.0.4:*:*:*:*:*:*:* pkg:maven/org.springframework.data/spring-data-jpa@4.0.4   0 Highest 30
systems-common-2.1.jar pkg:maven/systems.uom/systems-common@2.1   0 37
unit-api-2.2.jar pkg:maven/javax.measure/unit-api@2.2   0 109
uom-lib-common-2.2.jar pkg:maven/tech.uom.lib/uom-lib-common@2.2   0 43
utilities-0.9.1.jar pkg:maven/org.eclipse.imagen/utilities@0.9.1   0 24

Dependencies (vulnerable)

GeographicLib-Java-1.49.jar

Description:

    This is a Java implementation of the geodesic algorithms from
    GeographicLib. This is a self-contained library which makes it
    easy to do geodesic computations for an ellipsoid of revolution in
    a Java program. It requires Java version 1.1 or later.

License:

The MIT License(MIT): http://opensource.org/licenses/MIT
File Path: /home/runner/.m2/repository/net/sf/geographiclib/GeographicLib-Java/1.49/GeographicLib-Java-1.49.jar
MD5: 5536ff35e4bb0b3262c6f62f43105ea4
SHA1: 7ff2164e69fa04e1ef2ca5079e1cee298a936ea1
SHA256:78c292f7e6910d51a15fc9088c301fac3b4c0a43ac5ae17499f5763b4dd9aca8
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
GeographicLib-Java-1.49.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.geotools/gt-shapefile@34.3

Identifiers

  • pkg:maven/net.sf.geographiclib/GeographicLib-Java@1.49   (Confidence:High)

amqp-client-5.29.0.jar

Description:

The RabbitMQ Java client library allows Java applications to interface with RabbitMQ.

License:

AL 2.0: https://www.apache.org/licenses/LICENSE-2.0.html
GPL v2: https://www.gnu.org/licenses/gpl-2.0.txt
MPL 2.0: https://www.mozilla.org/en-US/MPL/2.0/
File Path: /home/runner/.m2/repository/com/rabbitmq/amqp-client/5.29.0/amqp-client-5.29.0.jar
MD5: b27127649995158c2872546ec87a257a
SHA1: 2fddf9370f5e56407d38b63d8fb812c0968b9769
SHA256:a0b3892fe56c9fab7fd5a82943003cfe0b1c7c2d5385129f404ae11889c19215
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
amqp-client-5.29.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.reallifedeveloper/rld-build-tools@3.2.1

Identifiers

  • pkg:maven/com.rabbitmq/amqp-client@5.29.0   (Confidence:High)

antlr4-runtime-4.13.2.jar

Description:

The ANTLR 4 Runtime

License:

https://www.antlr.org/license.html
File Path: /home/runner/.m2/repository/org/antlr/antlr4-runtime/4.13.2/antlr4-runtime-4.13.2.jar
MD5: eecf1908f0cfff10f8bb82878b5ca401
SHA1: fc3db6d844df652a3d5db31c87fa12757f13691d
SHA256:dd3e8a13a2d669bf84fb8d834de35ce4875f27157698d206241ec8488aadcaf7
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
antlr4-runtime-4.13.2.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.springframework.data/spring-data-jpa@4.0.4

Identifiers

  • pkg:maven/org.antlr/antlr4-runtime@4.13.2   (Confidence:High)

apiguardian-api-1.1.2.jar

Description:

@API Guardian

License:

The Apache License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/org/apiguardian/apiguardian-api/1.1.2/apiguardian-api-1.1.2.jar
MD5: 8c7de3f82037fa4a2e8be2a2f13092af
SHA1: a231e0d844d2721b0fa1b238006d15c6ded6842a
SHA256:b509448ac506d607319f182537f0b35d71007582ec741832a1f111e5b5b70b38
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
apiguardian-api-1.1.2.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.junit.jupiter/junit-jupiter-api@6.0.3

Identifiers

  • pkg:maven/org.apiguardian/apiguardian-api@1.1.2   (Confidence:High)

checker-qual-3.55.1.jar

Description:

checker-qual contains annotations (type qualifiers) that a programmerwrites to specify Java code for type-checking by the Checker Framework.

License:

The MIT License: https://opensource.org/licenses/MIT
File Path: /home/runner/.m2/repository/org/checkerframework/checker-qual/3.55.1/checker-qual-3.55.1.jar
MD5: 05361199dc29af8334d1405f28b83109
SHA1: 3d40699936a66b2d4c1f759f2f1a0446c8cf64fc
SHA256:857658c8bdcbff794949a8d9922f88d63ee3751c203c7cd7d21ea97f9e745288
Referenced In Project/Scope: RealLifeDeveloper Build Tools:provided
checker-qual-3.55.1.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.reallifedeveloper/rld-build-tools@3.2.1

Identifiers

  • pkg:maven/org.checkerframework/checker-qual@3.55.1   (Confidence:High)

commons-beanutils-1.11.0.jar

Description:

Apache Commons BeanUtils provides an easy-to-use but flexible wrapper around reflection and introspection.

License:

https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/commons-beanutils/commons-beanutils/1.11.0/commons-beanutils-1.11.0.jar
MD5: 32ed51f196dfda19e0dc1ce53eeed29e
SHA1: ac03ea606d13de04c2e4508227680faff151f491
SHA256:9e44ba68ec9a3f21286fa2a8bbb003b735c0f69101bb43144b79f4f8aaa74709
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
commons-beanutils-1.11.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.opencsv/opencsv@5.12.0

Identifiers

commons-collections-3.2.2.jar

Description:

Types that extend and augment the Java Collections Framework.

License:

http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/commons-collections/commons-collections/3.2.2/commons-collections-3.2.2.jar
MD5: f54a8510f834a1a57166970bfc982e94
SHA1: 8ad72fe39fa8c91eaaf12aadb21e0c3661fe26d5
SHA256:eeeae917917144a68a741d4c0dff66aa5c5c5fd85593ff217bced3fc8ca783b8
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
commons-collections-3.2.2.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.opencsv/opencsv@5.12.0

Identifiers

commons-collections4-4.5.0.jar

Description:

The Apache Commons Collections package contains types that extend and augment the Java Collections Framework.

License:

https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/org/apache/commons/commons-collections4/4.5.0/commons-collections4-4.5.0.jar
MD5: d564105594035b363b193d8ce3c18b98
SHA1: e5cf89f0c6e132fc970bd9a465fdcb8dbe94f75a
SHA256:00f93263c267be201b8ae521b44a7137271b16688435340bf629db1bac0a5845
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
commons-collections4-4.5.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.opencsv/opencsv@5.12.0

Identifiers

commons-io-2.21.0.jar

Description:

The Apache Commons IO library contains utility classes, stream implementations, file filters,
file comparators, endian transformation classes, and much more.

License:

https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/commons-io/commons-io/2.21.0/commons-io-2.21.0.jar
MD5: bc7e020873f086ede85f97bd9f013215
SHA1: 52a6f68fe5afe335cde95461dd5c3412f04996f7
SHA256:7d643a2afea8b058b762aa6fb90e5b256f6c729739f8b3784c3370ddc609e88d
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
commons-io-2.21.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.geotools/gt-shapefile@34.3

Identifiers

commons-lang3-3.20.0.jar

Description:

  Apache Commons Lang, a package of Java utility classes for the
  classes that are in java.lang's hierarchy, or are considered to be so
  standard as to justify existence in java.lang.

  The code is tested using the latest revision of the JDK for supported
  LTS releases: 8, 11, 17, 21 and 25 currently.
  See https://github.com/apache/commons-lang/blob/master/.github/workflows/maven.yml
  
  Please ensure your build environment is up-to-date and kindly report any build issues.

License:

https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/org/apache/commons/commons-lang3/3.20.0/commons-lang3-3.20.0.jar
MD5: 4b29562ded527aa074e1d44f8646dac5
SHA1: 65897b3e5731220962e659e001904af3c3cbeba9
SHA256:69e5c9fa35da7a51a5fd2099dfe56a2d8d32cf233e2f6d770e796146440263f4
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
commons-lang3-3.20.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.opencsv/opencsv@5.12.0

Identifiers

commons-logging-1.3.5.jar

Description:

Apache Commons Logging is a thin adapter allowing configurable bridging to other,
    well-known logging systems.

License:

https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/commons-logging/commons-logging/1.3.5/commons-logging-1.3.5.jar
MD5: 9ca067b073153c86c2da350c0f2cdf70
SHA1: a3fcc5d3c29b2b03433aa2d2f2d2c1b1638924a1
SHA256:6d7a744e4027649fbb50895df9497d109f98c766a637062fe8d2eabbb3140ba4
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
commons-logging-1.3.5.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.springframework/spring-context@7.0.6

Identifiers

  • pkg:maven/commons-logging/commons-logging@1.3.5   (Confidence:High)

commons-pool-1.5.4.jar

Description:

Commons Object Pooling Library

License:

http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/commons-pool/commons-pool/1.5.4/commons-pool-1.5.4.jar
MD5: 80e9d1cbd70542f4f293793d109679a9
SHA1: 75b6e20c596ed2945a259cea26d7fadd298398e6
SHA256:22095672ac3ad6503e42ec6d4cbc330cd1318040223f6c5d9605473b6d2aa0fd
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
commons-pool-1.5.4.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.geotools/gt-shapefile@34.3

Identifiers

  • pkg:maven/commons-pool/commons-pool@1.5.4   (Confidence:High)

commons-text-1.15.0.jar

Description:

Apache Commons Text is a set of utility functions and reusable components for processing
    and manipulating text in a Java environment.

License:

https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/org/apache/commons/commons-text/1.15.0/commons-text-1.15.0.jar
MD5: 756b7c5438d89a0c311d811c1a06d19a
SHA1: 9899093aa40f0199d6c39b131b8f087cdb37e399
SHA256:58d2da30f058512a1e7f914e39241deca4dff5c27a085b4ed2faa9e7208067f6
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
commons-text-1.15.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.opencsv/opencsv@5.12.0

Identifiers

dbunit-3.0.0.jar

Description:

    dbUnit is a JUnit extension (also usable from Ant and Maven) targeted for database-driven projects that, among other things, puts your database into a known state between test runs. This is an excellent way to avoid the myriad of problems that can occur when one test case corrupts the database and causes subsequent tests to fail or exacerbate the damage.

License:

GNU Lesser General Public License, Version 2.1: http://www.gnu.org/licenses/old-licenses/lgpl-2.1.txt
File Path: /home/runner/.m2/repository/org/dbunit/dbunit/3.0.0/dbunit-3.0.0.jar
MD5: 3a1386e0082bd660b9eb9930526c6c71
SHA1: a5d192af07b5c6bd97130f690123760485bba126
SHA256:910f6f480a8429e734abba41416897d05c596f10189b93a5cef6c4a2f413f0ef
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
dbunit-3.0.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.reallifedeveloper/rld-build-tools@3.2.1

Identifiers

  • pkg:maven/org.dbunit/dbunit@3.0.0   (Confidence:High)
  • cpe:2.3:a:golden_project:golden:3.0.0:*:*:*:*:*:*:*   (Confidence:Low)   

ejml-core-0.41.jar

Description:

A fast and easy to use dense and sparse matrix linear algebra library written in Java.

License:

The Apache License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/org/ejml/ejml-core/0.41/ejml-core-0.41.jar
MD5: 200146f623a8eb87196bbc35cae6c2b1
SHA1: 92ac2bee332a5697c42e576b94d563ba8c25877c
SHA256:8d36469e8414d79c875defc0af3b980525d384761c9471d15a4f365b936dd1d5
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
ejml-core-0.41.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.geotools/gt-shapefile@34.3

Identifiers

  • pkg:maven/org.ejml/ejml-core@0.41   (Confidence:High)

ejml-ddense-0.41.jar

Description:

A fast and easy to use dense and sparse matrix linear algebra library written in Java.

License:

The Apache License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/org/ejml/ejml-ddense/0.41/ejml-ddense-0.41.jar
MD5: 2128d09683d0ed77429fac23f64e42c7
SHA1: 782c80d4c3c8a3432c4641f24c177f336a360f9c
SHA256:355347e9cac7e96d5d724d331a9b04bb14a8a02e1d111f1ac51c79f25d937123
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
ejml-ddense-0.41.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.geotools/gt-shapefile@34.3

Identifiers

  • pkg:maven/org.ejml/ejml-ddense@0.41   (Confidence:High)

geolatte-geom-1.10.jar

Description:

This geoLatte-geom library offers a geometry model that conforms to the OGC Simple Features for SQL
        specification.

License:

LGPL 3.0: http://www.gnu.org/licenses/lgpl-3.0.txt
File Path: /home/runner/.m2/repository/org/geolatte/geolatte-geom/1.10/geolatte-geom-1.10.jar
MD5: 66759cbf5a708cf62a874e04721fcd4d
SHA1: 9e7a885404d10e712dfff95969f9918c55507a31
SHA256:c5400cc867074fc6b11a5ba4a3312212f6ba206e36e2b0c78c51559ae259ae2b
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
geolatte-geom-1.10.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.hibernate.orm/hibernate-spatial@7.3.0.Final

Identifiers

  • pkg:maven/org.geolatte/geolatte-geom@1.10   (Confidence:High)

gt-api-34.3.jar

Description:

Standard interfaces implemented throughout the library.

License:

Lesser General Public License (LGPL): http://www.gnu.org/copyleft/lesser.txt
File Path: /home/runner/.m2/repository/org/geotools/gt-api/34.3/gt-api-34.3.jar
MD5: e87c86f561ab1f238f8eff6f592a40ea
SHA1: 1a61df279c306e0ae7b706dd1e653a4067f78509
SHA256:7acb5e101104fd4a4544aaf740ff4dfb2297eef1b34081128dbccd5fb6084513
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
gt-api-34.3.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.geotools/gt-shapefile@34.3

Identifiers

hibernate-spatial-7.3.0.Final.jar

Description:

Integrate support for Spatial/GIS data into Hibernate O/RM

License:

Apache License, Version 2.0: https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/org/hibernate/orm/hibernate-spatial/7.3.0.Final/hibernate-spatial-7.3.0.Final.jar
MD5: 1f9d340f895481f5dab346a69d03c90f
SHA1: ef8e443ffbae865fa7450fb0dfb5ce2b048c7dfc
SHA256:4cb98a17e2ac6cf517697f79816fad6be093fb3fdbbd3110588ecebb149b291c
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
hibernate-spatial-7.3.0.Final.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.reallifedeveloper/rld-build-tools@3.2.1

Identifiers

imagen-core-0.9.1.jar

Description:

ImageN core interfaces

File Path: /home/runner/.m2/repository/org/eclipse/imagen/imagen-core/0.9.1/imagen-core-0.9.1.jar
MD5: b1ddd9074bac9df8edec694e48bdda7f
SHA1: 11b91b3bba1b183339084b1dee99b59fcfb8ec8f
SHA256:4f1a8aa346ff2d2460b0372fd47b536a295543aa921e311f4e74bbf2e169ba48
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
imagen-core-0.9.1.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.geotools/gt-shapefile@34.3

Identifiers

  • pkg:maven/org.eclipse.imagen/imagen-core@0.9.1   (Confidence:High)

indriya-2.2.jar

Description:

Unit Standard (JSR 385) Reference Implementation.

License:

BSD 3-Clause: LICENSE
File Path: /home/runner/.m2/repository/tech/units/indriya/2.2/indriya-2.2.jar
MD5: cefa3a26996e4c70071d27a0c36603ea
SHA1: 647a0e06d60346f3f3c48284f66d34b28ff83340
SHA256:5b61eafd63fd235898dea0e5e614e9636c9d7783705a0c9f1794dd07e3a84b35
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
indriya-2.2.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.geotools/gt-shapefile@34.3

Identifiers

  • pkg:maven/tech.units/indriya@2.2   (Confidence:High)

iterators-0.9.1.jar

File Path: /home/runner/.m2/repository/org/eclipse/imagen/iterators/0.9.1/iterators-0.9.1.jar
MD5: 924fc22415f5cc838b9db4a43b94119f
SHA1: f74b1c296b3edbd561c7ac77eebf5ded5b531629
SHA256:ba0a3bf97f28410d33f7991f4327b7447184a10bda7275c85b5146446a9de4d7
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
iterators-0.9.1.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.geotools/gt-shapefile@34.3

Identifiers

  • pkg:maven/org.eclipse.imagen/iterators@0.9.1   (Confidence:High)

jackson-core-2.21.2.jar

Description:

Core Jackson processing abstractions (aka Streaming API), implementation for JSON

License:

The Apache Software License, Version 2.0: https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/com/fasterxml/jackson/core/jackson-core/2.21.2/jackson-core-2.21.2.jar
MD5: b62c1031b5f38fc58158fc0c559980cb
SHA1: 7d11eac823392f28d8ee7bda77eaadfccbab83e5
SHA256:12e8655b100267b44d0f14d01b1f5082a5105e616174dc4307be1a761e92407b
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
jackson-core-2.21.2.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.geotools/gt-shapefile@34.3

Identifiers

  • pkg:maven/com.fasterxml.jackson.core/jackson-core@2.21.2   (Confidence:High)
  • cpe:2.3:a:fasterxml:jackson-core:2.21.2:*:*:*:*:*:*:*   (Confidence:Highest)   
  • cpe:2.3:a:fasterxml:jackson-modules-java8:2.21.2:*:*:*:*:*:*:*   (Confidence:Low)   

jakarta.annotation-api-3.0.0.jar

Description:

Jakarta Annotations API

License:

EPL 2.0: https://www.eclipse.org/legal/epl-2.0
GPL2 w/ CPE: https://www.gnu.org/software/classpath/license.html
File Path: /home/runner/.m2/repository/jakarta/annotation/jakarta.annotation-api/3.0.0/jakarta.annotation-api-3.0.0.jar
MD5: 7faffaab962918da4cf5ddfd76609dd2
SHA1: 54f928fadec906a99d558536756d171917b9d936
SHA256:b01f55552284cfb149411e64eabca75e942d26d2e1786b32914250e4330afaa2
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
jakarta.annotation-api-3.0.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.springframework.data/spring-data-jpa@4.0.4

Identifiers

  • pkg:maven/jakarta.annotation/jakarta.annotation-api@3.0.0   (Confidence:High)
  • cpe:2.3:a:oracle:projects:3.0.0:*:*:*:*:*:*:*   (Confidence:Low)   

jakarta.inject-api-2.0.1.jar

Description:

Jakarta Dependency Injection

License:

The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/jakarta/inject/jakarta.inject-api/2.0.1/jakarta.inject-api-2.0.1.jar
MD5: 72003bf6efcc8455d414bbd7da86c11c
SHA1: 4c28afe1991a941d7702fe1362c365f0a8641d1e
SHA256:f7dc98062fccf14126abb751b64fab12c312566e8cbdc8483598bffcea93af7c
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
jakarta.inject-api-2.0.1.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.hibernate.orm/hibernate-core@7.3.0.Final

Identifiers

  • pkg:maven/jakarta.inject/jakarta.inject-api@2.0.1   (Confidence:High)

jakarta.persistence-api-3.2.0.jar

Description:

Jakarta Persistence 3.2 API jar

License:

Eclipse Public License v. 2.0: http://www.eclipse.org/legal/epl-2.0
Eclipse Distribution License v. 1.0: http://www.eclipse.org/org/documents/edl-v10.php
File Path: /home/runner/.m2/repository/jakarta/persistence/jakarta.persistence-api/3.2.0/jakarta.persistence-api-3.2.0.jar
MD5: 79acec18d202797dcba1fff596a47684
SHA1: bb75a113f3fa191c2c7ee7b206d8e674251b3129
SHA256:be8a26b0e75c84c1b7600f759256fbc68d60333d89ec0ce3f784fc3ffa09aa8c
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
jakarta.persistence-api-3.2.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.reallifedeveloper/rld-build-tools@3.2.1

Identifiers

  • pkg:maven/jakarta.persistence/jakarta.persistence-api@3.2.0   (Confidence:High)

jboss-logging-3.6.3.Final.jar

Description:

The JBoss Logging Framework

License:

Apache License 2.0: https://repository.jboss.org/licenses/apache-2.0.txt
File Path: /home/runner/.m2/repository/org/jboss/logging/jboss-logging/3.6.3.Final/jboss-logging-3.6.3.Final.jar
MD5: b4cf5872f18b3e80e18769d51c7ae9b2
SHA1: 1cc9f976725720bb4a66f80af3e3aa6b9890d969
SHA256:7c12ee575508f81e22b1db9334b969d0ec54ef0fd1dcba24eeab1a44235fc366
Referenced In Project/Scope: RealLifeDeveloper Build Tools:runtime
jboss-logging-3.6.3.Final.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.hibernate.orm/hibernate-spatial@7.3.0.Final

Identifiers

  • pkg:maven/org.jboss.logging/jboss-logging@3.6.3.Final   (Confidence:High)

jgridshift-core-1.3.jar

File Path: /home/runner/.m2/repository/it/geosolutions/jgridshift/jgridshift-core/1.3/jgridshift-core-1.3.jar
MD5: 04a57b57bb0654b3d603eaaa748de563
SHA1: 314702a7b6e634e1c74589983a6762974b9c51c8
SHA256:303eb6a6f6f87369f6b9e3dcacefd6f9b0ad55920cd65a7f162ab9a23401c722
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
jgridshift-core-1.3.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.geotools/gt-shapefile@34.3

Identifiers

  • pkg:maven/it.geosolutions.jgridshift/jgridshift-core@1.3   (Confidence:High)

jspecify-1.0.0.jar

Description:

An artifact of well-named and well-specified annotations to power static analysis checks

License:

The Apache License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/org/jspecify/jspecify/1.0.0/jspecify-1.0.0.jar
MD5: 9133aba420d0ca3b001dbb6ae9992cf6
SHA1: 7425a601c1c7ec76645a78d22b8c6a627edee507
SHA256:1fad6e6be7557781e4d33729d49ae1cdc8fdda6fe477bb0cc68ce351eafdfbab
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
jspecify-1.0.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.junit.jupiter/junit-jupiter-api@6.0.3

Identifiers

  • pkg:maven/org.jspecify/jspecify@1.0.0   (Confidence:High)

jsr305-3.0.2.jar

Description:

JSR305 Annotations for Findbugs

License:

The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/com/google/code/findbugs/jsr305/3.0.2/jsr305-3.0.2.jar
MD5: dd83accb899363c32b07d7a1b2e4ce40
SHA1: 25ea2e8b0c338a877313bd4672d3fe056ea78f0d
SHA256:766ad2a0783f2687962c8ad74ceecc38a28b9f72a2d085ee438b7813e928d0c7
Referenced In Project/Scope: RealLifeDeveloper Build Tools:provided
jsr305-3.0.2.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs-annotations@4.9.8

Identifiers

  • pkg:maven/com.google.code.findbugs/jsr305@3.0.2   (Confidence:High)

jts-core-1.20.0.jar

Description:

The JTS Topology Suite is an API for 2D linear geometry predicates and functions.

License:

https://github.com/locationtech/jts/blob/master/LICENSE_EPLv2.txt, https://github.com/locationtech/jts/blob/master/LICENSE_EDLv1.txt
File Path: /home/runner/.m2/repository/org/locationtech/jts/jts-core/1.20.0/jts-core-1.20.0.jar
MD5: 8de91edea80ac2de00c07226458649fb
SHA1: 25b72c9548a328cb1aea8a6b89d710a31ade5403
SHA256:6a783d8f9dba3d3cf7265435f134402f63c05838aa6cbcc4297ad3a5b2842baf
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
jts-core-1.20.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.hibernate.orm/hibernate-spatial@7.3.0.Final

Identifiers

  • pkg:maven/org.locationtech.jts/jts-core@1.20.0   (Confidence:High)

junit-jupiter-api-6.0.3.jar

Description:

Module "junit-jupiter-api" of JUnit

License:

Eclipse Public License v2.0: https://www.eclipse.org/legal/epl-v20.html
File Path: /home/runner/.m2/repository/org/junit/jupiter/junit-jupiter-api/6.0.3/junit-jupiter-api-6.0.3.jar
MD5: 1026ddf29a2310534f7ab1eb0e7c0e76
SHA1: 2e6cfb62db85350179f0408ed5270f7cdf8cefda
SHA256:d655d7e6f0c7ae07f10a2f3bbaaebb6d30e9b26204a068ad9e9b3950aa28792c
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
junit-jupiter-api-6.0.3.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.reallifedeveloper/rld-build-tools@3.2.1

Identifiers

  • pkg:maven/org.junit.jupiter/junit-jupiter-api@6.0.3   (Confidence:High)

junit-platform-engine-6.0.3.jar

Description:

Module "junit-platform-engine" of JUnit

License:

Eclipse Public License v2.0: https://www.eclipse.org/legal/epl-v20.html
File Path: /home/runner/.m2/repository/org/junit/platform/junit-platform-engine/6.0.3/junit-platform-engine-6.0.3.jar
MD5: ca09bac92bc2e093a81459cf04fb02a7
SHA1: 101305612e7daa4ce978d3ba73fd02dd4a5f22d9
SHA256:491e9e4f745f161b8a8e4186a1a7c6a450ea12c70930c9aedae427215301d947
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
junit-platform-engine-6.0.3.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.junit.jupiter/junit-jupiter-engine@6.0.3

Identifiers

  • pkg:maven/org.junit.platform/junit-platform-engine@6.0.3   (Confidence:High)
  • cpe:2.3:a:fan_platform_project:fan_platform:6.0.3:*:*:*:*:*:*:*   (Confidence:Low)   

logback-core-1.5.32.jar

Description:

logback-core module

License:

https://www.eclipse.org/legal/epl-v20.html, https://www.gnu.org/licenses/old-licenses/lgpl-2.1.html
File Path: /home/runner/.m2/repository/ch/qos/logback/logback-core/1.5.32/logback-core-1.5.32.jar
MD5: 053d4a28d6ba4c9b6247c6fd859ca64f
SHA1: fdfb3ff9a842303d4a95207294a6c6bc64e2605d
SHA256:6a904d5778d0e361a9692f9cbe68b1b0620ae0f3eda2ec2ed09102755bf036c4
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
logback-core-1.5.32.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/ch.qos.logback/logback-classic@1.5.32

Identifiers

lombok-1.18.44.jar

Description:

Spice up your java: Automatic Resource Management, automatic generation of getters, setters, equals, hashCode and toString, and more!

License:

The MIT License: https://projectlombok.org/LICENSE
File Path: /home/runner/.m2/repository/org/projectlombok/lombok/1.18.44/lombok-1.18.44.jar
MD5: 7682dbc64a602a58797a323f006be06f
SHA1: 503fd0b002dbb237fa4656cf4b8021666a8aebac
SHA256:c6e91bfdc358bb1efb25ee185e95aaf9b600043e5f81d03bd76aefc01035bf86
Referenced In Project/Scope: RealLifeDeveloper Build Tools:provided
lombok-1.18.44.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.reallifedeveloper/rld-build-tools@3.2.1

Identifiers

  • pkg:maven/org.projectlombok/lombok@1.18.44   (Confidence:High)

lombok-1.18.44.jar: mavenEcjBootstrapAgent.jar

File Path: /home/runner/.m2/repository/org/projectlombok/lombok/1.18.44/lombok-1.18.44.jar/lombok/launch/mavenEcjBootstrapAgent.jar
MD5: 99d4e19630a2936991d953330fc0b04f
SHA1: 359faffcbd93e4c825e3eee0e88854d900c2dd77
SHA256:b749ed13b7ee30619334206f84ade583df68183afb83374fbff075ee2ebe83e2
Referenced In Project/Scope: RealLifeDeveloper Build Tools:provided

Identifiers

  • None

micrometer-commons-1.16.4.jar

Description:

Module containing common code

License:

The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/io/micrometer/micrometer-commons/1.16.4/micrometer-commons-1.16.4.jar
MD5: afbe1e6f6a034873cf8e9d006d3f0853
SHA1: b6a0e350a714f4cd973d760e68104c9602b4564c
SHA256:d13307840a8078abedc5979168c0be7877d2dba4c7db6c01665be457571213c4
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
micrometer-commons-1.16.4.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.springframework/spring-context@7.0.6

Identifiers

  • pkg:maven/io.micrometer/micrometer-commons@1.16.4   (Confidence:High)

micrometer-observation-1.16.4.jar

Description:

Module containing Observation related code

License:

The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/io/micrometer/micrometer-observation/1.16.4/micrometer-observation-1.16.4.jar
MD5: 21a66d76bd0afd7d3592fa7ca73eddd3
SHA1: 64b57332a68b75ba36d9bf9b4cfd62610d0fb158
SHA256:dd410c6a4225731a3466e56b81ff097d14cd092dbc9b97384fd96feec1cc36af
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
micrometer-observation-1.16.4.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.springframework/spring-context@7.0.6

Identifiers

  • pkg:maven/io.micrometer/micrometer-observation@1.16.4   (Confidence:High)

net.opengis.ows-34.3.jar

Description:

Open Web Services Schema EMF Model

File Path: /home/runner/.m2/repository/org/geotools/ogc/net.opengis.ows/34.3/net.opengis.ows-34.3.jar
MD5: e44dc30f5b7acbec9706296a85f5bc22
SHA1: 042c17cfab47199812c0f13721546c37ec587209
SHA256:625e862459ad12fc39fa76ca615cd6267a8950f42901121dcb586d08e46ba552
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
net.opengis.ows-34.3.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.geotools/gt-shapefile@34.3

Identifiers

netty-codec-protobuf-4.2.10.Final.jar

Description:

Netty is an asynchronous event-driven network application framework for    rapid development of maintainable high performance protocol servers and    clients.

License:

https://www.apache.org/licenses/LICENSE-2.0
File Path: /home/runner/.m2/repository/io/netty/netty-codec-protobuf/4.2.10.Final/netty-codec-protobuf-4.2.10.Final.jar
MD5: feb86d86bd4c8f7e642e4ec69ef03585
SHA1: e7d69687bcf4f812bba119b8b9c3942d9c8c6c7a
SHA256:df6390a29ffde35426fa5ad49cccc491c58e6ca2253e364825a204ed03d0fbfc
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
netty-codec-protobuf-4.2.10.Final.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.rabbitmq/amqp-client@5.29.0

Identifiers

netty-common-4.2.10.Final.jar (shaded: org.jctools:jctools-core:4.0.5)

Description:

Java Concurrency Tools Core Library

License:

Apache License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/io/netty/netty-common/4.2.10.Final/netty-common-4.2.10.Final.jar/META-INF/maven/org.jctools/jctools-core/pom.xml
MD5: 5d5135397b920a7dcbca5c1fb0576cf2
SHA1: eaa05d6ad937464312a2681a3236c0e06602bbb7
SHA256:a69897b8ff0c2198b4b8cd7d4f93fde6d42b8e9dbfc95553585e27587b24e211
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile

Identifiers

  • pkg:maven/org.jctools/jctools-core@4.0.5   (Confidence:High)

netty-transport-4.2.10.Final.jar

Description:

Netty is an asynchronous event-driven network application framework for    rapid development of maintainable high performance protocol servers and    clients.

License:

https://www.apache.org/licenses/LICENSE-2.0
File Path: /home/runner/.m2/repository/io/netty/netty-transport/4.2.10.Final/netty-transport-4.2.10.Final.jar
MD5: 0d16ed7e5266244c2aa8df0d887fd116
SHA1: d9ce85a6b94fe584b0dec4b07230ac455ff975c1
SHA256:aaff8b2958eea0e94d3e5521d795e65ea91faf58fa1152e45584b36348a81abd
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
netty-transport-4.2.10.Final.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.rabbitmq/amqp-client@5.29.0

Identifiers

opencsv-5.12.0.jar

Description:

A simple library for reading and writing CSV in Java

License:

Apache 2: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/com/opencsv/opencsv/5.12.0/opencsv-5.12.0.jar
MD5: c7424a4784e6845911daf7ed7f3a4a23
SHA1: bc55d53c0961f8b191c96276e778a9ec67f7dd58
SHA256:f1c55d80a92c8ecfe3f15fb71785d5b156f3674cb5b9ad55dcfd378ffeed2960
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
opencsv-5.12.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.reallifedeveloper/rld-build-tools@3.2.1

Identifiers

  • pkg:maven/com.opencsv/opencsv@5.12.0   (Confidence:High)

opentest4j-1.3.0.jar

Description:

Open Test Alliance for the JVM

License:

The Apache License, Version 2.0: https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/org/opentest4j/opentest4j/1.3.0/opentest4j-1.3.0.jar
MD5: 03c404f727531f3fd3b4c73997899327
SHA1: 152ea56b3a72f655d4fd677fc0ef2596c3dd5e6e
SHA256:48e2df636cab6563ced64dcdff8abb2355627cb236ef0bf37598682ddf742f1b
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
opentest4j-1.3.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.junit.jupiter/junit-jupiter-api@6.0.3

Identifiers

  • pkg:maven/org.opentest4j/opentest4j@1.3.0   (Confidence:High)

org.eclipse.emf.common-2.15.0.jar

Description:

EMF Common

License:

The Eclipse Public License Version 1.0: http://www.eclipse.org/legal/epl-v10.html
File Path: /home/runner/.m2/repository/org/eclipse/emf/org.eclipse.emf.common/2.15.0/org.eclipse.emf.common-2.15.0.jar
MD5: aa878b3e47b671ebc182108e6b4986c6
SHA1: e0f1608a9855651e899d609b106ae78f903a2f04
SHA256:bdb51f83b2daa51446b4ae5d606464e4b22fb7ef98f0477ac95de72551e2978a
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
org.eclipse.emf.common-2.15.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.geotools/gt-shapefile@34.3

Identifiers

  • pkg:maven/org.eclipse.emf/org.eclipse.emf.common@2.15.0   (Confidence:High)
  • pkg:maven/org.eclipse.emf/org.eclipse.emf.common@2.15.0-SNAPSHOT   (Confidence:High)

org.eclipse.emf.ecore-2.15.0.jar

Description:

EMF Ecore

License:

The Eclipse Public License Version 1.0: http://www.eclipse.org/legal/epl-v10.html
File Path: /home/runner/.m2/repository/org/eclipse/emf/org.eclipse.emf.ecore/2.15.0/org.eclipse.emf.ecore-2.15.0.jar
MD5: 566797e186b122fb2cb64a699b1c2d2b
SHA1: ccfc09c8b6a0d4fadde09216d8a07678d38998de
SHA256:d5e3c25344fe27f14f514f5d6deb6e9cc3f6153fa462361261a8d49a3dfe9bbf
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
org.eclipse.emf.ecore-2.15.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.geotools/gt-shapefile@34.3

Identifiers

  • pkg:maven/org.eclipse.emf/org.eclipse.emf.ecore@2.15.0   (Confidence:High)
  • pkg:maven/org.eclipse.emf/org.eclipse.emf.ecore@2.15.0-SNAPSHOT   (Confidence:High)

org.eclipse.emf.ecore.xmi-2.15.0.jar

Description:

EMF XML/XMI Persistence

License:

The Eclipse Public License Version 1.0: http://www.eclipse.org/legal/epl-v10.html
File Path: /home/runner/.m2/repository/org/eclipse/emf/org.eclipse.emf.ecore.xmi/2.15.0/org.eclipse.emf.ecore.xmi-2.15.0.jar
MD5: 7ac89d5bf958f0a2cfab049690f2e68c
SHA1: 9aa1a584be1df1eb0ef8fae7123784af6e51f47a
SHA256:712ff33fef916d2fa4d838992fccae85c4817a71639a9a5933fc44568ed6dc57
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
org.eclipse.emf.ecore.xmi-2.15.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.geotools/gt-shapefile@34.3

Identifiers

  • pkg:maven/org.eclipse.emf/org.eclipse.emf.ecore.xmi@2.15.0   (Confidence:High)
  • pkg:maven/org.eclipse.emf/org.eclipse.emf.ecore.xmi@2.15.0-SNAPSHOT   (Confidence:High)

org.eclipse.sisu.plexus-0.9.0.M4.jar

Description:

Plexus-JSR330 adapter; adds Plexus support to the Sisu-Inject container

License:

"Eclipse Public License, Version 2.0";link="https://www.eclipse.org/legal/epl-v20.html"
File Path: /home/runner/.m2/repository/org/eclipse/sisu/org.eclipse.sisu.plexus/0.9.0.M4/org.eclipse.sisu.plexus-0.9.0.M4.jar
MD5: 51eea54bbc85323fc68f6a79f9b8f179
SHA1: 478f7935e88cd9da7ef01f509e4853e80ede9034
SHA256:b90579bc652eac7331436e0a25533fce14130b9c6e015f2dd3a3d4bb07e942b7
Referenced In Project/Scope: RealLifeDeveloper Build Tools:provided
org.eclipse.sisu.plexus-0.9.0.M4.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.reallifedeveloper/rld-build-tools@3.2.1

Identifiers

  • pkg:maven/org.eclipse.sisu/org.eclipse.sisu.plexus@0.9.0.M4   (Confidence:High)

org.w3.xlink-34.3.jar

Description:

Xlink Schema EMF Model

File Path: /home/runner/.m2/repository/org/geotools/ogc/org.w3.xlink/34.3/org.w3.xlink-34.3.jar
MD5: 013023901d2c754a4619a8df39985a4b
SHA1: 0695b95c5f91bc368746188a50d977ff4b154bd2
SHA256:6e5fe98edca1ae1e98b77cea3e4d9d7e9a4665573dc62feb5d4d7758d6335218
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
org.w3.xlink-34.3.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.geotools/gt-shapefile@34.3

Identifiers

re2j-1.8.jar

Description:

Linear time regular expressions for Java

License:

Go License: https://golang.org/LICENSE
File Path: /home/runner/.m2/repository/com/google/re2j/re2j/1.8/re2j-1.8.jar
MD5: 4240e655caa938c61ddbec8b92bfb061
SHA1: 12c25e923e9e4fb1575a7640a2698745c6f19a94
SHA256:7b52c72156dd7f98b3237a5b35c1d34fba381b21048c89208913ad80a45dfbd7
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
re2j-1.8.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.geotools/gt-shapefile@34.3

Identifiers

  • pkg:maven/com.google.re2j/re2j@1.8   (Confidence:High)

si-quantity-2.1.jar

Description:

Units of Measurement SI (Système International d'Unités)

License:

https://opensource.org/licenses/BSD-3-Clause
File Path: /home/runner/.m2/repository/si/uom/si-quantity/2.1/si-quantity-2.1.jar
MD5: 79685f60efca0051a6c579e1f1522542
SHA1: 5617d2cf30898ffcc760807009fe947483bd867b
SHA256:2cdcfd3e5395db5576f5efc0f224b5bbd0731f3ec7552afee6ee7b63a4f65820
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
si-quantity-2.1.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.geotools/gt-shapefile@34.3

Identifiers

  • pkg:maven/si.uom/si-quantity@2.1   (Confidence:High)

si-units-2.1.jar

Description:

"Units of Measurement SI (Système International d'Unités)"

License:

"BSD 3-Clause";link="https://opensource.org/licenses/BSD-3-Clause"
File Path: /home/runner/.m2/repository/si/uom/si-units/2.1/si-units-2.1.jar
MD5: 43abf4b896da58d8bca0e87f412a8457
SHA1: 7e812192ff1abbef6c79123249840c42b4e145d4
SHA256:491ed9956ddf4b2e30180b087e1f6fb51debccb6d46785ae0d52026342013c51
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
si-units-2.1.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.geotools/gt-shapefile@34.3

Identifiers

  • pkg:maven/si.uom/si-units@2.1   (Confidence:High)

slf4j-api-2.0.17.jar

Description:

The slf4j API

License:

https://opensource.org/license/mit
File Path: /home/runner/.m2/repository/org/slf4j/slf4j-api/2.0.17/slf4j-api-2.0.17.jar
MD5: b6480d114a23683498ac3f746f959d2f
SHA1: d9e58ac9c7779ba3bf8142aff6c830617a7fe60f
SHA256:7b751d952061954d5abfed7181c1f645d336091b679891591d63329c622eb832
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
slf4j-api-2.0.17.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.reallifedeveloper/rld-build-tools@3.2.1

Identifiers

  • pkg:maven/org.slf4j/slf4j-api@2.0.17   (Confidence:High)

snakeyaml-2.2.jar

Description:

YAML 1.1 parser and emitter for Java

License:

Apache License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/org/yaml/snakeyaml/2.2/snakeyaml-2.2.jar
MD5: d78aacf5f2de5b52f1a327470efd1ad7
SHA1: 3af797a25458550a16bf89acc8e4ab2b7f2bfce0
SHA256:1467931448a0817696ae2805b7b8b20bfb082652bf9c4efaed528930dc49389b
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
snakeyaml-2.2.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.dbunit/dbunit@3.0.0

Identifiers

spotbugs-annotations-4.9.8.jar

Description:

Annotations the SpotBugs tool supports

License:

GNU LESSER GENERAL PUBLIC LICENSE, Version 2.1: https://www.gnu.org/licenses/old-licenses/lgpl-2.1.en.html
File Path: /home/runner/.m2/repository/com/github/spotbugs/spotbugs-annotations/4.9.8/spotbugs-annotations-4.9.8.jar
MD5: d4c2e7bd090be697ad409a4e75684a94
SHA1: ca4a2783a6123e67124fd7feb4caccd2e2ac9a73
SHA256:6f69d6fe9c55a54dcb30e87d8fa2d5f52246af50d7a3445246d9539ef221be1c
Referenced In Project/Scope: RealLifeDeveloper Build Tools:provided
spotbugs-annotations-4.9.8.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.reallifedeveloper/rld-build-tools@3.2.1

Identifiers

  • pkg:maven/com.github.spotbugs/spotbugs-annotations@4.9.8   (Confidence:High)

spring-core-7.0.6.jar

Description:

Spring Core

License:

Apache License, Version 2.0: https://www.apache.org/licenses/LICENSE-2.0
File Path: /home/runner/.m2/repository/org/springframework/spring-core/7.0.6/spring-core-7.0.6.jar
MD5: 1f3d2895637b5748500480f1751d19f2
SHA1: 5e4e7fd5bee4be66a0786abe0c90419a713114b5
SHA256:cfb7a8255748c86c59b73611cca168e7476db38d8621c992cb6f1cc55f357e8e
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
spring-core-7.0.6.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.springframework/spring-context@7.0.6

Identifiers

CVE-2026-22740  

A WebFlux server application that processes multipart requests creates temp files for parts larger than 10 K. Under some circumstances, temp files may remain not deleted after the request is fully processed. This allows an attacker to consume available disk space.

Older, unsupported versions are also affected.
CWE-400 Uncontrolled Resource Consumption

CVSSv3:
  • Base Score: MEDIUM (6.5)
  • Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H/E:2.8/RC:R/MAV:A

References:

Vulnerable Software & Versions: (show all)

CVE-2026-22745  

Spring MVC and WebFlux applications are vulnerable to Denial of Service attacks when resolving static resources.


More precisely, an application can be vulnerable when all the following are true:

  *  the application is using Spring MVC or Spring WebFlux
  *  the application is serving static resources from the file system
  *  the application is running on a Windows platform


When all the conditions above are met, the attacker can send malicious requests that are slow to resolve and that can keep HTTP connections in use. This can cause a Denial of Service on the application.
CWE-400 Uncontrolled Resource Consumption

CVSSv3:
  • Base Score: MEDIUM (5.3)
  • Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:3.9/RC:R/MAV:A

References:

Vulnerable Software & Versions: (show all)

CVE-2026-22741  

Spring MVC and WebFlux applications are vulnerable to cache poisoning when resolving static resources.


More precisely, an application can be vulnerable when all the following are true:

  *  the application is using Spring MVC or Spring WebFlux
  *  the application is configuring the  resource chain support https://docs.spring.io/spring-framework/reference/web/webmvc/mvc-config/static-resources.html#page-title  with caching enabled
  *  the application adds support for encoded resources resolution
  *  the resource cache must be empty when the attacker has access to the application


When all the conditions above are met, the attacker can send malicious requests and poison the resource cache with resources using the wrong encoding. This can cause a denial of service by breaking the front-end application for clients.
CWE-524 Use of Cache Containing Sensitive Information

CVSSv3:
  • Base Score: LOW (3.1)
  • Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:L/E:1.6/RC:R/MAV:A

References:

Vulnerable Software & Versions: (show all)

spring-data-commons-4.0.4.jar

Description:

Core Spring concepts underpinning every Spring Data module.

File Path: /home/runner/.m2/repository/org/springframework/data/spring-data-commons/4.0.4/spring-data-commons-4.0.4.jar
MD5: 565deb16a8c8f4321836bd6919661ab6
SHA1: 7770d18057ad59f7af71584c45583f303d17a6f0
SHA256:ccbc609c1d8ac0faec43e1f2a19608af88e5cab8ebe0522ae7f0d16075182bba
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
spring-data-commons-4.0.4.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.springframework.data/spring-data-jpa@4.0.4

Identifiers

spring-data-jpa-4.0.4.jar

Description:

Spring Data module for JPA repositories.

File Path: /home/runner/.m2/repository/org/springframework/data/spring-data-jpa/4.0.4/spring-data-jpa-4.0.4.jar
MD5: aebe772f4d490a257d918bac544dc1a3
SHA1: 4421c139d505613ee2bb4cee1f8d51c219e36380
SHA256:bbd485c2b8edc67e81dfb8107ba232d8ede900e78b0e98fa1b2367d79c5d3ddf
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
spring-data-jpa-4.0.4.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.reallifedeveloper/rld-build-tools@3.2.1

Identifiers

systems-common-2.1.jar

Description:

Parent POM for Unit Systems

License:

BSD;link=LICENSE
File Path: /home/runner/.m2/repository/systems/uom/systems-common/2.1/systems-common-2.1.jar
MD5: 8c3a56e267bbd26bb947c826e51bee2b
SHA1: a173cc6f1fedc8b32498d6cc9599251baa72de27
SHA256:b3cc1f3e604dcd18d3bba266db5fd01744bbd6b02f147377d4016585ba375cff
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
systems-common-2.1.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.geotools/gt-shapefile@34.3

Identifiers

  • pkg:maven/systems.uom/systems-common@2.1   (Confidence:High)

unit-api-2.2.jar

Description:

Units of Measurement Standard - This JSR specifies Java
        packages for modeling and working with measurement values, quantities
        and their corresponding units.

License:

BSD 3-Clause: LICENSE
File Path: /home/runner/.m2/repository/javax/measure/unit-api/2.2/unit-api-2.2.jar
MD5: 6cbc2bae2cb63cb4f85c5a187ee7dda2
SHA1: 2b624f7334b94a82c74cb954ede9fb1179b8d30c
SHA256:667487e1ee57298cdc767885f00b86c899b2fe7e72dc00b6560a6aa64f2bc9c4
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
unit-api-2.2.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.geotools/gt-shapefile@34.3

Identifiers

  • pkg:maven/javax.measure/unit-api@2.2   (Confidence:High)

uom-lib-common-2.2.jar

Description:

Units Common Library

License:

BSD: LICENSE
File Path: /home/runner/.m2/repository/tech/uom/lib/uom-lib-common/2.2/uom-lib-common-2.2.jar
MD5: eb6a1296ea160f731ac81ab8a2c7fed7
SHA1: 94a52abfdad3935c3769b4caab3ce9d384d8fb4e
SHA256:a01ece1c236b7b15a431b0383bdddf06dc6d7a85290e9a62b63904e1e4e0dc0d
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
uom-lib-common-2.2.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.geotools/gt-shapefile@34.3

Identifiers

  • pkg:maven/tech.uom.lib/uom-lib-common@2.2   (Confidence:High)

utilities-0.9.1.jar

File Path: /home/runner/.m2/repository/org/eclipse/imagen/utilities/0.9.1/utilities-0.9.1.jar
MD5: bfe9aa865760d3886bbceae44cbab15a
SHA1: ecf369ab1d658af967d09b0073a4e02216d00f92
SHA256:29db1c076961bcd67f797d8375b22cdffb8c7bba0e9243639bc33edee50ed4cc
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
utilities-0.9.1.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.geotools/gt-shapefile@34.3

Identifiers

  • pkg:maven/org.eclipse.imagen/utilities@0.9.1   (Confidence:High)


This report contains data retrieved from the National Vulnerability Database.
This report may contain data retrieved from the CISA Known Exploited Vulnerability Catalog.
This report may contain data retrieved from the Github Advisory Database (via NPM Audit API).
This report may contain data retrieved from RetireJS.
This report may contain data retrieved from the Sonatype OSS Index.