Press CTR-C to copy XML [help]


Dependency-Check is an open source tool performing a best effort analysis of 3rd party dependencies; false positives and false negatives may exist in the analysis performed by the tool. Use of the tool and the reporting provided constitutes acceptance for use in an AS IS condition, and there are NO warranties, implied or otherwise, with regard to the analysis or its use. Any use of the tool and the reporting provided is at the user’s risk. In no event shall the copyright holder or OWASP be held liable for any damages whatsoever arising out of or in connection with the use of this tool, the analysis performed, or the resulting report.

How to read the report | Suppressing false positives | Getting Help: github issues

 Sponsor

Project: RealLifeDeveloper Build Tools

com.reallifedeveloper:rld-build-tools:2.1.0

Scan Information (show all):

Summary

Summary of Vulnerable Dependencies (click to show all)

DependencyVulnerability IDsPackageHighest SeverityCVE CountConfidenceEvidence Count
GeographicLib-Java-1.49.jarpkg:maven/net.sf.geographiclib/GeographicLib-Java@1.49 032
amqp-client-5.26.0.jarpkg:maven/com.rabbitmq/amqp-client@5.26.0 048
antlr4-runtime-4.13.2.jarpkg:maven/org.antlr/antlr4-runtime@4.13.2 030
apiguardian-api-1.1.2.jarpkg:maven/org.apiguardian/apiguardian-api@1.1.2 040
checker-qual-3.50.0.jarpkg:maven/org.checkerframework/checker-qual@3.50.0 044
commons-io-2.19.0.jarcpe:2.3:a:apache:commons_io:2.19.0:*:*:*:*:*:*:*pkg:maven/commons-io/commons-io@2.19.0 0Highest125
commons-lang3-3.18.0.jarcpe:2.3:a:apache:commons_lang:3.18.0:*:*:*:*:*:*:*pkg:maven/org.apache.commons/commons-lang3@3.18.0 0Highest145
commons-pool-1.5.4.jarpkg:maven/commons-pool/commons-pool@1.5.4 074
commons-text-1.13.0.jarcpe:2.3:a:apache:commons_text:1.13.0:*:*:*:*:*:*:*pkg:maven/org.apache.commons/commons-text@1.13.0 0Highest73
dbunit-3.0.0.jarcpe:2.3:a:golden_project:golden:3.0.0:*:*:*:*:*:*:*pkg:maven/org.dbunit/dbunit@3.0.0 0Low96
ejml-core-0.41.jarpkg:maven/org.ejml/ejml-core@0.41 026
ejml-ddense-0.41.jarpkg:maven/org.ejml/ejml-ddense@0.41 028
geolatte-geom-1.10.jarpkg:maven/org.geolatte/geolatte-geom@1.10 026
gt-api-33.2.jarcpe:2.3:a:geotools:geotools:33.2:*:*:*:*:*:*:*pkg:maven/org.geotools/gt-api@33.2 0Highest40
hibernate-spatial-7.1.0.Final.jarcpe:2.3:a:hibernate:hibernate_orm:7.1.0:*:*:*:*:*:*:*pkg:maven/org.hibernate.orm/hibernate-spatial@7.1.0.Final 0Highest45
indriya-2.2.jarpkg:maven/tech.units/indriya@2.2 085
jackson-core-2.20.0.jarcpe:2.3:a:fasterxml:jackson-modules-java8:2.20.0:*:*:*:*:*:*:*pkg:maven/com.fasterxml.jackson.core/jackson-core@2.20.0 0Low47
jai_core-1.1.3.jarpkg:maven/javax.media/jai_core@1.1.3 024
jakarta.annotation-api-3.0.0.jarcpe:2.3:a:oracle:projects:3.0.0:*:*:*:*:*:*:*pkg:maven/jakarta.annotation/jakarta.annotation-api@3.0.0 0Low42
jakarta.inject-api-2.0.1.jarpkg:maven/jakarta.inject/jakarta.inject-api@2.0.1 056
jakarta.persistence-api-3.2.0.jarpkg:maven/jakarta.persistence/jakarta.persistence-api@3.2.0 040
jboss-logging-3.6.1.Final.jarpkg:maven/org.jboss.logging/jboss-logging@3.6.1.Final 043
jgridshift-core-1.3.jarpkg:maven/it.geosolutions.jgridshift/jgridshift-core@1.3 019
jsr305-3.0.2.jarpkg:maven/com.google.code.findbugs/jsr305@3.0.2 017
jts-core-1.20.0.jarpkg:maven/org.locationtech.jts/jts-core@1.20.0 024
junit-jupiter-api-5.13.4.jarpkg:maven/org.junit.jupiter/junit-jupiter-api@5.13.4 076
junit-platform-engine-1.13.4.jarcpe:2.3:a:fan_platform_project:fan_platform:1.13.4:*:*:*:*:*:*:*pkg:maven/org.junit.platform/junit-platform-engine@1.13.4 0Low76
logback-core-1.5.18.jarcpe:2.3:a:qos:logback:1.5.18:*:*:*:*:*:*:*pkg:maven/ch.qos.logback/logback-core@1.5.18 0Highest39
lombok-1.18.38.jarpkg:maven/org.projectlombok/lombok@1.18.38 036
lombok-1.18.38.jar: mavenEcjBootstrapAgent.jar 07
micrometer-commons-1.14.10.jarpkg:maven/io.micrometer/micrometer-commons@1.14.10 065
micrometer-observation-1.14.10.jarpkg:maven/io.micrometer/micrometer-observation@1.14.10 065
net.opengis.ows-33.2.jarcpe:2.3:a:geotools:geotools:33.2:*:*:*:*:*:*:*pkg:maven/org.geotools.ogc/net.opengis.ows@33.2 0Highest28
opentest4j-1.3.0.jarpkg:maven/org.opentest4j/opentest4j@1.3.0 060
org.eclipse.emf.common-2.15.0.jarpkg:maven/org.eclipse.emf/org.eclipse.emf.common@2.15.0
pkg:maven/org.eclipse.emf/org.eclipse.emf.common@2.15.0-SNAPSHOT		 043
org.eclipse.emf.ecore-2.15.0.jarpkg:maven/org.eclipse.emf/org.eclipse.emf.ecore@2.15.0
pkg:maven/org.eclipse.emf/org.eclipse.emf.ecore@2.15.0-SNAPSHOT		 044
org.eclipse.emf.ecore.xmi-2.15.0.jarpkg:maven/org.eclipse.emf/org.eclipse.emf.ecore.xmi@2.15.0
pkg:maven/org.eclipse.emf/org.eclipse.emf.ecore.xmi@2.15.0-SNAPSHOT		MEDIUM143
org.w3.xlink-33.2.jarcpe:2.3:a:geotools:geotools:33.2:*:*:*:*:*:*:*pkg:maven/org.geotools.ogc/org.w3.xlink@33.2 0Highest29
re2j-1.8.jarpkg:maven/com.google.re2j/re2j@1.8 028
si-quantity-2.1.jarpkg:maven/si.uom/si-quantity@2.1 024
si-units-2.1.jarpkg:maven/si.uom/si-units@2.1 033
slf4j-api-2.0.17.jarpkg:maven/org.slf4j/slf4j-api@2.0.17 029
snakeyaml-2.2.jarcpe:2.3:a:snakeyaml_project:snakeyaml:2.2:*:*:*:*:*:*:*pkg:maven/org.yaml/snakeyaml@2.2 0Highest42
spotbugs-annotations-4.9.4.jarpkg:maven/com.github.spotbugs/spotbugs-annotations@4.9.4 053
spring-core-6.2.10.jarcpe:2.3:a:pivotal_software:spring_framework:6.2.10:*:*:*:*:*:*:*
cpe:2.3:a:springsource:spring_framework:6.2.10:*:*:*:*:*:*:*
cpe:2.3:a:vmware:spring_framework:6.2.10:*:*:*:*:*:*:*		pkg:maven/org.springframework/spring-core@6.2.10 0Highest41
spring-data-commons-3.5.3.jarcpe:2.3:a:pivotal_software:spring_data_commons:3.5.3:*:*:*:*:*:*:*pkg:maven/org.springframework.data/spring-data-commons@3.5.3 0Highest32
spring-data-jpa-3.5.3.jarcpe:2.3:a:pivotal_software:spring_data_jpa:3.5.3:*:*:*:*:*:*:*pkg:maven/org.springframework.data/spring-data-jpa@3.5.3 0Highest30
systems-common-2.1.jarpkg:maven/systems.uom/systems-common@2.1 037
unit-api-2.2.jarpkg:maven/javax.measure/unit-api@2.2 0109
uom-lib-common-2.2.jarpkg:maven/tech.uom.lib/uom-lib-common@2.2 043

Dependencies (vulnerable)

GeographicLib-Java-1.49.jar

Description:

    This is a Java implementation of the geodesic algorithms from
    GeographicLib. This is a self-contained library which makes it
    easy to do geodesic computations for an ellipsoid of revolution in
    a Java program. It requires Java version 1.1 or later.

License:

The MIT License(MIT): http://opensource.org/licenses/MIT
File Path: /home/runner/.m2/repository/net/sf/geographiclib/GeographicLib-Java/1.49/GeographicLib-Java-1.49.jar
MD5: 5536ff35e4bb0b3262c6f62f43105ea4
SHA1: 7ff2164e69fa04e1ef2ca5079e1cee298a936ea1
SHA256:78c292f7e6910d51a15fc9088c301fac3b4c0a43ac5ae17499f5763b4dd9aca8
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
GeographicLib-Java-1.49.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.geotools/gt-shapefile@33.2

Identifiers

amqp-client-5.26.0.jar

Description:

The RabbitMQ Java client library allows Java applications to interface with RabbitMQ.

License:

AL 2.0: https://www.apache.org/licenses/LICENSE-2.0.html
GPL v2: https://www.gnu.org/licenses/gpl-2.0.txt
MPL 2.0: https://www.mozilla.org/en-US/MPL/2.0/
File Path: /home/runner/.m2/repository/com/rabbitmq/amqp-client/5.26.0/amqp-client-5.26.0.jar
MD5: dc4cfb959236b1b23226d381a6040d36
SHA1: e2bb667eb2878704f1bd82d069f38530727e45a2
SHA256:2e201b3f7fd26883c2845278aba1ecaaaf97be15d23d4cabf8e7e0b9a611b62e
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
amqp-client-5.26.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.reallifedeveloper/rld-build-tools@2.1.0

Identifiers

antlr4-runtime-4.13.2.jar

Description:

The ANTLR 4 Runtime

License:

https://www.antlr.org/license.html
File Path: /home/runner/.m2/repository/org/antlr/antlr4-runtime/4.13.2/antlr4-runtime-4.13.2.jar
MD5: eecf1908f0cfff10f8bb82878b5ca401
SHA1: fc3db6d844df652a3d5db31c87fa12757f13691d
SHA256:dd3e8a13a2d669bf84fb8d834de35ce4875f27157698d206241ec8488aadcaf7
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
antlr4-runtime-4.13.2.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.springframework.data/spring-data-jpa@3.5.3

Identifiers

apiguardian-api-1.1.2.jar

Description:

@API Guardian

License:

The Apache License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/org/apiguardian/apiguardian-api/1.1.2/apiguardian-api-1.1.2.jar
MD5: 8c7de3f82037fa4a2e8be2a2f13092af
SHA1: a231e0d844d2721b0fa1b238006d15c6ded6842a
SHA256:b509448ac506d607319f182537f0b35d71007582ec741832a1f111e5b5b70b38
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
apiguardian-api-1.1.2.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.junit.jupiter/junit-jupiter-api@5.13.4

Identifiers

checker-qual-3.50.0.jar

Description:

checker-qual contains annotations (type qualifiers) that a programmerwrites to specify Java code for type-checking by the Checker Framework.

License:

The MIT License: http://opensource.org/licenses/MIT
File Path: /home/runner/.m2/repository/org/checkerframework/checker-qual/3.50.0/checker-qual-3.50.0.jar
MD5: 9ba0141d2867c83e957c7813b5c76241
SHA1: a403b605cdffc4ce06e70406b1426a41b0904266
SHA256:e268d1d5cb6029f06cfdff8fb638383ff22556039da25386a00c287da6a52dbe
Referenced In Project/Scope: RealLifeDeveloper Build Tools:provided
checker-qual-3.50.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.reallifedeveloper/rld-build-tools@2.1.0

Identifiers

commons-io-2.19.0.jar

Description:

The Apache Commons IO library contains utility classes, stream implementations, file filters,
file comparators, endian transformation classes, and much more.

License:

https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/commons-io/commons-io/2.19.0/commons-io-2.19.0.jar
MD5: 3d1fd45f9d2a247c1d05ab1e98c07160
SHA1: 1f8d4a99ba72b77aa69101175efc79b0c7dcdd7e
SHA256:824268919b4b62f9f40f08c54381de5993b078f58667e332d17348ae019d72b9
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
commons-io-2.19.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.geotools/gt-shapefile@33.2

Identifiers

commons-lang3-3.18.0.jar

Description:

  Apache Commons Lang, a package of Java utility classes for the
  classes that are in java.lang's hierarchy, or are considered to be so
  standard as to justify existence in java.lang.

  The code is tested using the latest revision of the JDK for supported
  LTS releases: 8, 11, 17 and 21 currently.
  See https://github.com/apache/commons-lang/blob/master/.github/workflows/maven.yml
  
  Please ensure your build environment is up-to-date and kindly report any build issues.

License:

https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/org/apache/commons/commons-lang3/3.18.0/commons-lang3-3.18.0.jar
MD5: 48b9886957920a4cdb602780ca345087
SHA1: fb14946f0e39748a6571de0635acbe44e7885491
SHA256:4eeeae8d20c078abb64b015ec158add383ac581571cddc45c68f0c9ae0230720
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
commons-lang3-3.18.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.geotools/gt-shapefile@33.2

Identifiers

commons-pool-1.5.4.jar

Description:

Commons Object Pooling Library

License:

http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/commons-pool/commons-pool/1.5.4/commons-pool-1.5.4.jar
MD5: 80e9d1cbd70542f4f293793d109679a9
SHA1: 75b6e20c596ed2945a259cea26d7fadd298398e6
SHA256:22095672ac3ad6503e42ec6d4cbc330cd1318040223f6c5d9605473b6d2aa0fd
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
commons-pool-1.5.4.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.geotools/gt-shapefile@33.2

Identifiers

commons-text-1.13.0.jar

Description:

Apache Commons Text is a set of utility functions and reusable components for the purpose of processing
    and manipulating text that should be of use in a Java environment.

License:

https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/org/apache/commons/commons-text/1.13.0/commons-text-1.13.0.jar
MD5: 4b4766452c04316e3ef6ffe3490d6b10
SHA1: ba2ed5521c491cabf7ecdb57f77922561c2e8958
SHA256:1e323a501127df78ed0987f345d69d65d0ea7fa3d4fb5b3f84aaeba3a8b20f38
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
commons-text-1.13.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.geotools/gt-shapefile@33.2

Identifiers

dbunit-3.0.0.jar

Description:

    dbUnit is a JUnit extension (also usable from Ant and Maven) targeted for database-driven projects that, among other things, puts your database into a known state between test runs. This is an excellent way to avoid the myriad of problems that can occur when one test case corrupts the database and causes subsequent tests to fail or exacerbate the damage.

License:

GNU Lesser General Public License, Version 2.1: http://www.gnu.org/licenses/old-licenses/lgpl-2.1.txt
File Path: /home/runner/.m2/repository/org/dbunit/dbunit/3.0.0/dbunit-3.0.0.jar
MD5: 3a1386e0082bd660b9eb9930526c6c71
SHA1: a5d192af07b5c6bd97130f690123760485bba126
SHA256:910f6f480a8429e734abba41416897d05c596f10189b93a5cef6c4a2f413f0ef
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
dbunit-3.0.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.reallifedeveloper/rld-build-tools@2.1.0

Identifiers

ejml-core-0.41.jar

Description:

A fast and easy to use dense and sparse matrix linear algebra library written in Java.

License:

The Apache License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/org/ejml/ejml-core/0.41/ejml-core-0.41.jar
MD5: 200146f623a8eb87196bbc35cae6c2b1
SHA1: 92ac2bee332a5697c42e576b94d563ba8c25877c
SHA256:8d36469e8414d79c875defc0af3b980525d384761c9471d15a4f365b936dd1d5
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
ejml-core-0.41.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.geotools/gt-shapefile@33.2

Identifiers

ejml-ddense-0.41.jar

Description:

A fast and easy to use dense and sparse matrix linear algebra library written in Java.

License:

The Apache License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/org/ejml/ejml-ddense/0.41/ejml-ddense-0.41.jar
MD5: 2128d09683d0ed77429fac23f64e42c7
SHA1: 782c80d4c3c8a3432c4641f24c177f336a360f9c
SHA256:355347e9cac7e96d5d724d331a9b04bb14a8a02e1d111f1ac51c79f25d937123
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
ejml-ddense-0.41.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.geotools/gt-shapefile@33.2

Identifiers

geolatte-geom-1.10.jar

Description:

This geoLatte-geom library offers a geometry model that conforms to the OGC Simple Features for SQL
        specification.

License:

LGPL 3.0: http://www.gnu.org/licenses/lgpl-3.0.txt
File Path: /home/runner/.m2/repository/org/geolatte/geolatte-geom/1.10/geolatte-geom-1.10.jar
MD5: 66759cbf5a708cf62a874e04721fcd4d
SHA1: 9e7a885404d10e712dfff95969f9918c55507a31
SHA256:c5400cc867074fc6b11a5ba4a3312212f6ba206e36e2b0c78c51559ae259ae2b
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
geolatte-geom-1.10.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.hibernate.orm/hibernate-spatial@7.1.0.Final

Identifiers

gt-api-33.2.jar

Description:

Standard interfaces implemented throughout the library.

License:

Lesser General Public License (LGPL): http://www.gnu.org/copyleft/lesser.txt
File Path: /home/runner/.m2/repository/org/geotools/gt-api/33.2/gt-api-33.2.jar
MD5: e6cdfb8a437e320e3c04aa47997b7001
SHA1: 5977c602cd4b0df8aa1e9bbd573a1b4de4898aad
SHA256:379e389a2565def1d9182885f753272c912d8b4fa760d999f116ec7eff4e8b41
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
gt-api-33.2.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.geotools/gt-shapefile@33.2

Identifiers

hibernate-spatial-7.1.0.Final.jar

Description:

Integrate support for Spatial/GIS data into Hibernate O/RM

License:

Apache License, Version 2.0: https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/org/hibernate/orm/hibernate-spatial/7.1.0.Final/hibernate-spatial-7.1.0.Final.jar
MD5: 59601e9b1b5b700199c3fe4b37b30ae4
SHA1: 9d439fdb745cb565714cea40a195c4204a07d47c
SHA256:a0f930847cbce57c1d8bb43315afe0425c47522f5ad3f7ab12b9add48df181cc
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
hibernate-spatial-7.1.0.Final.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.reallifedeveloper/rld-build-tools@2.1.0

Identifiers

indriya-2.2.jar

Description:

Unit Standard (JSR 385) Reference Implementation.

License:

BSD 3-Clause: LICENSE
File Path: /home/runner/.m2/repository/tech/units/indriya/2.2/indriya-2.2.jar
MD5: cefa3a26996e4c70071d27a0c36603ea
SHA1: 647a0e06d60346f3f3c48284f66d34b28ff83340
SHA256:5b61eafd63fd235898dea0e5e614e9636c9d7783705a0c9f1794dd07e3a84b35
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
indriya-2.2.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.geotools/gt-shapefile@33.2

Identifiers

jackson-core-2.20.0.jar

Description:

Core Jackson processing abstractions (aka Streaming API), implementation for JSON

License:

The Apache Software License, Version 2.0: https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/com/fasterxml/jackson/core/jackson-core/2.20.0/jackson-core-2.20.0.jar
MD5: 3536b524a7106dae1b4feb71e6f5ff74
SHA1: 3c97f7fad069f7cfae639d790bd93d6a0b2dff31
SHA256:bc0cf46075877201f8406ee7de2741ae7df6c066f5f0457bd80632a718c06e72
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
jackson-core-2.20.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.geotools/gt-shapefile@33.2

Identifiers

jai_core-1.1.3.jar

File Path: /home/runner/.m2/repository/javax/media/jai_core/1.1.3/jai_core-1.1.3.jar
MD5: f398bc038307ee434bac1b93ba3ab02d
SHA1: b179d2efb1174658483e8b41bf4ac9d2eb5de438
SHA256:8b696cf067533545f44c2f68339e24ab1a2669153ed2081aa5be8749f4d592bf
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
jai_core-1.1.3.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.geotools/gt-shapefile@33.2

Identifiers

jakarta.annotation-api-3.0.0.jar

Description:

Jakarta Annotations API

License:

EPL 2.0: https://www.eclipse.org/legal/epl-2.0
GPL2 w/ CPE: https://www.gnu.org/software/classpath/license.html
File Path: /home/runner/.m2/repository/jakarta/annotation/jakarta.annotation-api/3.0.0/jakarta.annotation-api-3.0.0.jar
MD5: 7faffaab962918da4cf5ddfd76609dd2
SHA1: 54f928fadec906a99d558536756d171917b9d936
SHA256:b01f55552284cfb149411e64eabca75e942d26d2e1786b32914250e4330afaa2
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
jakarta.annotation-api-3.0.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.springframework.data/spring-data-jpa@3.5.3

Identifiers

jakarta.inject-api-2.0.1.jar

Description:

Jakarta Dependency Injection

License:

The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/jakarta/inject/jakarta.inject-api/2.0.1/jakarta.inject-api-2.0.1.jar
MD5: 72003bf6efcc8455d414bbd7da86c11c
SHA1: 4c28afe1991a941d7702fe1362c365f0a8641d1e
SHA256:f7dc98062fccf14126abb751b64fab12c312566e8cbdc8483598bffcea93af7c
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
jakarta.inject-api-2.0.1.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.hibernate.orm/hibernate-core@7.1.0.Final

Identifiers

jakarta.persistence-api-3.2.0.jar

Description:

Jakarta Persistence 3.2 API jar

License:

Eclipse Public License v. 2.0: http://www.eclipse.org/legal/epl-2.0
Eclipse Distribution License v. 1.0: http://www.eclipse.org/org/documents/edl-v10.php
File Path: /home/runner/.m2/repository/jakarta/persistence/jakarta.persistence-api/3.2.0/jakarta.persistence-api-3.2.0.jar
MD5: 79acec18d202797dcba1fff596a47684
SHA1: bb75a113f3fa191c2c7ee7b206d8e674251b3129
SHA256:be8a26b0e75c84c1b7600f759256fbc68d60333d89ec0ce3f784fc3ffa09aa8c
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
jakarta.persistence-api-3.2.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.reallifedeveloper/rld-build-tools@2.1.0

Identifiers

jboss-logging-3.6.1.Final.jar

Description:

The JBoss Logging Framework

License:

Apache License 2.0: https://repository.jboss.org/licenses/apache-2.0.txt
File Path: /home/runner/.m2/repository/org/jboss/logging/jboss-logging/3.6.1.Final/jboss-logging-3.6.1.Final.jar
MD5: acab989faf62db02c092448e95614fab
SHA1: 886afbb445b4016a37c8960a7aef6ebd769ce7e5
SHA256:5e08a4b092dc85b337f0910a740571d8720cfa565fabd880a8caf94a657ca416
Referenced In Project/Scope: RealLifeDeveloper Build Tools:runtime
jboss-logging-3.6.1.Final.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.hibernate.orm/hibernate-spatial@7.1.0.Final

Identifiers

jgridshift-core-1.3.jar

File Path: /home/runner/.m2/repository/it/geosolutions/jgridshift/jgridshift-core/1.3/jgridshift-core-1.3.jar
MD5: 04a57b57bb0654b3d603eaaa748de563
SHA1: 314702a7b6e634e1c74589983a6762974b9c51c8
SHA256:303eb6a6f6f87369f6b9e3dcacefd6f9b0ad55920cd65a7f162ab9a23401c722
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
jgridshift-core-1.3.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.geotools/gt-shapefile@33.2

Identifiers

jsr305-3.0.2.jar

Description:

JSR305 Annotations for Findbugs

License:

The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/com/google/code/findbugs/jsr305/3.0.2/jsr305-3.0.2.jar
MD5: dd83accb899363c32b07d7a1b2e4ce40
SHA1: 25ea2e8b0c338a877313bd4672d3fe056ea78f0d
SHA256:766ad2a0783f2687962c8ad74ceecc38a28b9f72a2d085ee438b7813e928d0c7
Referenced In Project/Scope: RealLifeDeveloper Build Tools:provided
jsr305-3.0.2.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.spotbugs/spotbugs-annotations@4.9.4

Identifiers

jts-core-1.20.0.jar

Description:

The JTS Topology Suite is an API for 2D linear geometry predicates and functions.

License:

https://github.com/locationtech/jts/blob/master/LICENSE_EPLv2.txt, https://github.com/locationtech/jts/blob/master/LICENSE_EDLv1.txt
File Path: /home/runner/.m2/repository/org/locationtech/jts/jts-core/1.20.0/jts-core-1.20.0.jar
MD5: 8de91edea80ac2de00c07226458649fb
SHA1: 25b72c9548a328cb1aea8a6b89d710a31ade5403
SHA256:6a783d8f9dba3d3cf7265435f134402f63c05838aa6cbcc4297ad3a5b2842baf
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
jts-core-1.20.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.hibernate.orm/hibernate-spatial@7.1.0.Final

Identifiers

junit-jupiter-api-5.13.4.jar

Description:

Module "junit-jupiter-api" of JUnit 5.

License:

Eclipse Public License v2.0: https://www.eclipse.org/legal/epl-v20.html
File Path: /home/runner/.m2/repository/org/junit/jupiter/junit-jupiter-api/5.13.4/junit-jupiter-api-5.13.4.jar
MD5: d9981621212d598a4ba380342094c92f
SHA1: 2817f736551fe4949b79924715ef6f594ee072f4
SHA256:d1bb81abfd9e03418306b4e6a3390c8db52c58372e749c2980ac29f0c08278f1
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
junit-jupiter-api-5.13.4.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.reallifedeveloper/rld-build-tools@2.1.0

Identifiers

junit-platform-engine-1.13.4.jar

Description:

Module "junit-platform-engine" of JUnit 5.

License:

Eclipse Public License v2.0: https://www.eclipse.org/legal/epl-v20.html
File Path: /home/runner/.m2/repository/org/junit/platform/junit-platform-engine/1.13.4/junit-platform-engine-1.13.4.jar
MD5: 736aa9e83f7ba2b54adb5f86821fd4dd
SHA1: cdd49063ae6e25494d1a9a08f4a9ab5de2b73bcb
SHA256:390c5f77b84283a64b644f88251b397e0b0debb80bdcc50f899881aecff43a5a
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
junit-platform-engine-1.13.4.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.junit.jupiter/junit-jupiter-engine@5.13.4

Identifiers

logback-core-1.5.18.jar

Description:

logback-core module

License:

http://www.eclipse.org/legal/epl-v10.html, http://www.gnu.org/licenses/old-licenses/lgpl-2.1.html
File Path: /home/runner/.m2/repository/ch/qos/logback/logback-core/1.5.18/logback-core-1.5.18.jar
MD5: 10bcea83842beead15f072799b9c923d
SHA1: 6c0375624f6f36b4e089e2488ba21334a11ef13f
SHA256:85139e7b57b464f8e5e36326dd81317648bed199ccc4f98cd42585f8d7571027
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
logback-core-1.5.18.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/ch.qos.logback/logback-classic@1.5.18

Identifiers

lombok-1.18.38.jar

Description:

Spice up your java: Automatic Resource Management, automatic generation of getters, setters, equals, hashCode and toString, and more!

License:

The MIT License: https://projectlombok.org/LICENSE
File Path: /home/runner/.m2/repository/org/projectlombok/lombok/1.18.38/lombok-1.18.38.jar
MD5: 789cacd8d3969e9d23e6e6baec747f70
SHA1: 57f8f5e02e92a30fd21b80cbd426a4172b5f8e29
SHA256:1e1e427c36ff63c44fd30ef292d9e773ea3154460ab6265d3fed7e6f5bc50fb9
Referenced In Project/Scope: RealLifeDeveloper Build Tools:provided
lombok-1.18.38.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.reallifedeveloper/rld-build-tools@2.1.0

Identifiers

lombok-1.18.38.jar: mavenEcjBootstrapAgent.jar

File Path: /home/runner/.m2/repository/org/projectlombok/lombok/1.18.38/lombok-1.18.38.jar/lombok/launch/mavenEcjBootstrapAgent.jar
MD5: 885d5d6be90a5dcd4b82cdf741e3f31a
SHA1: e1f7f1779f40157fd0b984c1bc32a0cb45cae66e
SHA256:74a80a6ee84e5c6fe497dfcc46a46dbe30578525e747eb531e918ee0750c8da9
Referenced In Project/Scope: RealLifeDeveloper Build Tools:provided

Identifiers

  • None

micrometer-commons-1.14.10.jar

Description:

Module containing common code

License:

The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/io/micrometer/micrometer-commons/1.14.10/micrometer-commons-1.14.10.jar
MD5: 598fb54c55de8c881b490d3541eb2a86
SHA1: 374fbde4a5b2f8a6ffff837d528b4f32bf447eec
SHA256:1fe0d9b1caf0caf142a6dd5d0f81a4014b4934a038c8837f089731cc6d3cafbb
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
micrometer-commons-1.14.10.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.springframework/spring-context@6.2.10

Identifiers

micrometer-observation-1.14.10.jar

Description:

Module containing Observation related code

License:

The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/io/micrometer/micrometer-observation/1.14.10/micrometer-observation-1.14.10.jar
MD5: 586cb3f3e7089fff044e2c7066036b3c
SHA1: 0cb3436ec1aa0f0f428cd668c7481131b425e4a4
SHA256:b37d0247bce7aa00d5bab543c385a3ca392a1a988fec0a66e040666212e3bd6e
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
micrometer-observation-1.14.10.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.springframework/spring-context@6.2.10

Identifiers

net.opengis.ows-33.2.jar

Description:

Open Web Services Schema EMF Model

File Path: /home/runner/.m2/repository/org/geotools/ogc/net.opengis.ows/33.2/net.opengis.ows-33.2.jar
MD5: f1a6c505bd0bdb40c7e86f1b66ae486c
SHA1: be03adc22af9f94ad7c238483585d2a093a3a25d
SHA256:20e3074d43c2a436efa2c816cf8e3c25ea01bb0f24e0f5012a4f97abc5cf7de3
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
net.opengis.ows-33.2.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.geotools/gt-shapefile@33.2

Identifiers

opentest4j-1.3.0.jar

Description:

Open Test Alliance for the JVM

License:

The Apache License, Version 2.0: https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/org/opentest4j/opentest4j/1.3.0/opentest4j-1.3.0.jar
MD5: 03c404f727531f3fd3b4c73997899327
SHA1: 152ea56b3a72f655d4fd677fc0ef2596c3dd5e6e
SHA256:48e2df636cab6563ced64dcdff8abb2355627cb236ef0bf37598682ddf742f1b
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
opentest4j-1.3.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.junit.jupiter/junit-jupiter-api@5.13.4

Identifiers

org.eclipse.emf.common-2.15.0.jar

Description:

EMF Common

License:

The Eclipse Public License Version 1.0: http://www.eclipse.org/legal/epl-v10.html
File Path: /home/runner/.m2/repository/org/eclipse/emf/org.eclipse.emf.common/2.15.0/org.eclipse.emf.common-2.15.0.jar
MD5: aa878b3e47b671ebc182108e6b4986c6
SHA1: e0f1608a9855651e899d609b106ae78f903a2f04
SHA256:bdb51f83b2daa51446b4ae5d606464e4b22fb7ef98f0477ac95de72551e2978a
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
org.eclipse.emf.common-2.15.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.geotools/gt-shapefile@33.2

Identifiers

org.eclipse.emf.ecore-2.15.0.jar

Description:

EMF Ecore

License:

The Eclipse Public License Version 1.0: http://www.eclipse.org/legal/epl-v10.html
File Path: /home/runner/.m2/repository/org/eclipse/emf/org.eclipse.emf.ecore/2.15.0/org.eclipse.emf.ecore-2.15.0.jar
MD5: 566797e186b122fb2cb64a699b1c2d2b
SHA1: ccfc09c8b6a0d4fadde09216d8a07678d38998de
SHA256:d5e3c25344fe27f14f514f5d6deb6e9cc3f6153fa462361261a8d49a3dfe9bbf
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
org.eclipse.emf.ecore-2.15.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.geotools/gt-shapefile@33.2

Identifiers

org.eclipse.emf.ecore.xmi-2.15.0.jar

Description:

EMF XML/XMI Persistence

License:

The Eclipse Public License Version 1.0: http://www.eclipse.org/legal/epl-v10.html
File Path: /home/runner/.m2/repository/org/eclipse/emf/org.eclipse.emf.ecore.xmi/2.15.0/org.eclipse.emf.ecore.xmi-2.15.0.jar
MD5: 7ac89d5bf958f0a2cfab049690f2e68c
SHA1: 9aa1a584be1df1eb0ef8fae7123784af6e51f47a
SHA256:712ff33fef916d2fa4d838992fccae85c4817a71639a9a5933fc44568ed6dc57
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
org.eclipse.emf.ecore.xmi-2.15.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.geotools/gt-shapefile@33.2

Identifiers

CVE-2023-4218 (OSSINDEX)  

In Eclipse IDE versions < 2023-09 (4.29) some files with xml content are parsed vulnerable against all sorts of XXE attacks. The user just needs to open any evil project or update an open project with a vulnerable file (for example for review a foreign repository or patch).


Sonatype's research suggests that this CVE's details differ from those defined at NVD. See https://ossindex.sonatype.org/vulnerability/CVE-2023-4218 for details
CWE-611 Improper Restriction of XML External Entity Reference

CVSSv3:
  • Base Score: MEDIUM (5.0)
  • Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N

References:

Vulnerable Software & Versions (OSSINDEX):

  • cpe:2.3:a:org.eclipse.emf:org.eclipse.emf.ecore.xmi:2.15.0:*:*:*:*:*:*:*

org.w3.xlink-33.2.jar

Description:

Xlink Schema EMF Model

File Path: /home/runner/.m2/repository/org/geotools/ogc/org.w3.xlink/33.2/org.w3.xlink-33.2.jar
MD5: d1969b97833cb45e2537a352015b6c4f
SHA1: f58cdd49d4e4544abcf37c68afbfa7d22a5e04ee
SHA256:cfa71fa32fcf3487ba0d1888c90d57a45574b7062a26a54f3fd1e5ccff8fa780
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
org.w3.xlink-33.2.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.geotools/gt-shapefile@33.2

Identifiers

re2j-1.8.jar

Description:

Linear time regular expressions for Java

License:

Go License: https://golang.org/LICENSE
File Path: /home/runner/.m2/repository/com/google/re2j/re2j/1.8/re2j-1.8.jar
MD5: 4240e655caa938c61ddbec8b92bfb061
SHA1: 12c25e923e9e4fb1575a7640a2698745c6f19a94
SHA256:7b52c72156dd7f98b3237a5b35c1d34fba381b21048c89208913ad80a45dfbd7
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
re2j-1.8.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.geotools/gt-shapefile@33.2

Identifiers

si-quantity-2.1.jar

Description:

Units of Measurement SI (Système International d'Unités)

License:

https://opensource.org/licenses/BSD-3-Clause
File Path: /home/runner/.m2/repository/si/uom/si-quantity/2.1/si-quantity-2.1.jar
MD5: 79685f60efca0051a6c579e1f1522542
SHA1: 5617d2cf30898ffcc760807009fe947483bd867b
SHA256:2cdcfd3e5395db5576f5efc0f224b5bbd0731f3ec7552afee6ee7b63a4f65820
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
si-quantity-2.1.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.geotools/gt-shapefile@33.2

Identifiers

si-units-2.1.jar

Description:

"Units of Measurement SI (Système International d'Unités)"

License:

"BSD 3-Clause";link="https://opensource.org/licenses/BSD-3-Clause"
File Path: /home/runner/.m2/repository/si/uom/si-units/2.1/si-units-2.1.jar
MD5: 43abf4b896da58d8bca0e87f412a8457
SHA1: 7e812192ff1abbef6c79123249840c42b4e145d4
SHA256:491ed9956ddf4b2e30180b087e1f6fb51debccb6d46785ae0d52026342013c51
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
si-units-2.1.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.geotools/gt-shapefile@33.2

Identifiers

slf4j-api-2.0.17.jar

Description:

The slf4j API

License:

https://opensource.org/license/mit
File Path: /home/runner/.m2/repository/org/slf4j/slf4j-api/2.0.17/slf4j-api-2.0.17.jar
MD5: b6480d114a23683498ac3f746f959d2f
SHA1: d9e58ac9c7779ba3bf8142aff6c830617a7fe60f
SHA256:7b751d952061954d5abfed7181c1f645d336091b679891591d63329c622eb832
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
slf4j-api-2.0.17.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.reallifedeveloper/rld-build-tools@2.1.0

Identifiers

snakeyaml-2.2.jar

Description:

YAML 1.1 parser and emitter for Java

License:

Apache License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/org/yaml/snakeyaml/2.2/snakeyaml-2.2.jar
MD5: d78aacf5f2de5b52f1a327470efd1ad7
SHA1: 3af797a25458550a16bf89acc8e4ab2b7f2bfce0
SHA256:1467931448a0817696ae2805b7b8b20bfb082652bf9c4efaed528930dc49389b
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
snakeyaml-2.2.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.dbunit/dbunit@3.0.0

Identifiers

spotbugs-annotations-4.9.4.jar

Description:

Annotations the SpotBugs tool supports

License:

GNU LESSER GENERAL PUBLIC LICENSE, Version 2.1: https://www.gnu.org/licenses/old-licenses/lgpl-2.1.en.html
File Path: /home/runner/.m2/repository/com/github/spotbugs/spotbugs-annotations/4.9.4/spotbugs-annotations-4.9.4.jar
MD5: e0a648c2d3d3acdff414402175407a94
SHA1: 071d1be50e7c79317f2cb599b1da571dc5fcd8bf
SHA256:85973144dd267fbeb15721cf99febb75c662c18e01b1a794cd6b4860a810f90b
Referenced In Project/Scope: RealLifeDeveloper Build Tools:provided
spotbugs-annotations-4.9.4.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.reallifedeveloper/rld-build-tools@2.1.0

Identifiers

spring-core-6.2.10.jar

Description:

Spring Core

License:

Apache License, Version 2.0: https://www.apache.org/licenses/LICENSE-2.0
File Path: /home/runner/.m2/repository/org/springframework/spring-core/6.2.10/spring-core-6.2.10.jar
MD5: af0d1af4c30e8d1bf34ee8a4df9427fe
SHA1: 82d9c797f9147b643ac0aab8a1a40e96f8d8a737
SHA256:28122d6e4a48eb8b6a0e4e087a55e96e46fb4d5e7d5d2c74dc8051401d8101da
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
spring-core-6.2.10.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.springframework/spring-context@6.2.10

Identifiers

spring-data-commons-3.5.3.jar

Description:

Core Spring concepts underpinning every Spring Data module.

File Path: /home/runner/.m2/repository/org/springframework/data/spring-data-commons/3.5.3/spring-data-commons-3.5.3.jar
MD5: 6d8d9ef0ce1a8678623ac7d0434738bc
SHA1: 886e56cfc383f757f057901dc7c448d8dcc73fed
SHA256:edcf97455ec396f527aa507043279eb8f85bf76d20c211458e8fbb7c514ca9a0
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
spring-data-commons-3.5.3.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.springframework.data/spring-data-jpa@3.5.3

Identifiers

spring-data-jpa-3.5.3.jar

Description:

Spring Data module for JPA repositories.

File Path: /home/runner/.m2/repository/org/springframework/data/spring-data-jpa/3.5.3/spring-data-jpa-3.5.3.jar
MD5: a5af3625c78d030f97826ccfcb600dfb
SHA1: ed2764475a3c53fec8d1b844f9700ce6427b29dc
SHA256:51c6787d6967510914ed5e73565ccd6c4bec83b4e718e2e69e86a795b28ded3d
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
spring-data-jpa-3.5.3.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.reallifedeveloper/rld-build-tools@2.1.0

Identifiers

systems-common-2.1.jar

Description:

Parent POM for Unit Systems

License:

BSD;link=LICENSE
File Path: /home/runner/.m2/repository/systems/uom/systems-common/2.1/systems-common-2.1.jar
MD5: 8c3a56e267bbd26bb947c826e51bee2b
SHA1: a173cc6f1fedc8b32498d6cc9599251baa72de27
SHA256:b3cc1f3e604dcd18d3bba266db5fd01744bbd6b02f147377d4016585ba375cff
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
systems-common-2.1.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.geotools/gt-shapefile@33.2

Identifiers

unit-api-2.2.jar

Description:

Units of Measurement Standard - This JSR specifies Java
        packages for modeling and working with measurement values, quantities
        and their corresponding units.

License:

BSD 3-Clause: LICENSE
File Path: /home/runner/.m2/repository/javax/measure/unit-api/2.2/unit-api-2.2.jar
MD5: 6cbc2bae2cb63cb4f85c5a187ee7dda2
SHA1: 2b624f7334b94a82c74cb954ede9fb1179b8d30c
SHA256:667487e1ee57298cdc767885f00b86c899b2fe7e72dc00b6560a6aa64f2bc9c4
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
unit-api-2.2.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.geotools/gt-shapefile@33.2

Identifiers

uom-lib-common-2.2.jar

Description:

Units Common Library

License:

BSD: LICENSE
File Path: /home/runner/.m2/repository/tech/uom/lib/uom-lib-common/2.2/uom-lib-common-2.2.jar
MD5: eb6a1296ea160f731ac81ab8a2c7fed7
SHA1: 94a52abfdad3935c3769b4caab3ce9d384d8fb4e
SHA256:a01ece1c236b7b15a431b0383bdddf06dc6d7a85290e9a62b63904e1e4e0dc0d
Referenced In Project/Scope: RealLifeDeveloper Build Tools:compile
uom-lib-common-2.2.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.geotools/gt-shapefile@33.2

Identifiers



This report contains data retrieved from the National Vulnerability Database.
This report may contain data retrieved from the CISA Known Exploited Vulnerability Catalog.
This report may contain data retrieved from the Github Advisory Database (via NPM Audit API).
This report may contain data retrieved from RetireJS.
This report may contain data retrieved from the Sonatype OSS Index.