Dependency-Check is an open source tool performing a best effort analysis of 3rd party dependencies; false positives and false negatives may exist in the analysis performed by the tool. Use of the tool and the reporting provided constitutes acceptance for use in an AS IS condition, and there are NO warranties, implied or otherwise, with regard to the analysis or its use. Any use of the tool and the reporting provided is at the user’s risk. In no event shall the copyright holder or OWASP be held liable for any damages whatsoever arising out of or in connection with the use of this tool, the analysis performed, or the resulting report.

How to read the report | Suppressing false positives | Getting Help: github issues

 Sponsor

Project: Zonky Maven Plugin

de.funfried.maven.plugins:zonky-maven-plugin:0.7-SNAPSHOT

Scan Information (show all):

Summary

Display: Showing Vulnerable Dependencies (click to show all)

DependencyVulnerability IDsPackageHighest SeverityCVE CountConfidenceEvidence Count
aopalliance-1.0.jarpkg:maven/aopalliance/aopalliance@1.0 020
checker-qual-3.42.0.jarpkg:maven/org.checkerframework/checker-qual@3.42.0 046
commons-codec-1.17.1.jarpkg:maven/commons-codec/commons-codec@1.17.1 0121
commons-compress-1.27.1.jarcpe:2.3:a:apache:commons_compress:1.27.1:*:*:*:*:*:*:*pkg:maven/org.apache.commons/commons-compress@1.27.1 0Highest109
commons-io-2.17.0.jarcpe:2.3:a:apache:commons_io:2.17.0:*:*:*:*:*:*:*pkg:maven/commons-io/commons-io@2.17.0 0Highest125
commons-lang3-3.17.0.jarpkg:maven/org.apache.commons/commons-lang3@3.17.0 0145
embedded-postgres-2.0.7.jarpkg:maven/io.zonky.test/embedded-postgres@2.0.7 033
embedded-postgres-binaries-darwin-amd64-14.10.1.jarcpe:2.3:a:darwin:darwin:14.10.1:*:*:*:*:*:*:*pkg:maven/io.zonky.test.postgres/embedded-postgres-binaries-darwin-amd64@14.10.1 0Highest21
embedded-postgres-binaries-linux-amd64-14.10.1.jarpkg:maven/io.zonky.test.postgres/embedded-postgres-binaries-linux-amd64@14.10.1 021
embedded-postgres-binaries-linux-amd64-alpine-14.10.1.jarcpe:2.3:a:alpine_project:alpine:14.10.1:*:*:*:*:*:*:*pkg:maven/io.zonky.test.postgres/embedded-postgres-binaries-linux-amd64-alpine@14.10.1 0Highest21
embedded-postgres-binaries-windows-amd64-14.10.1.jarpkg:maven/io.zonky.test.postgres/embedded-postgres-binaries-windows-amd64@14.10.1 021
failureaccess-1.0.1.jarpkg:maven/com.google.guava/failureaccess@1.0.1 028
guava-32.0.1-jre.jarcpe:2.3:a:google:guava:32.0.1:*:*:*:*:*:*:*pkg:maven/com.google.guava/guava@32.0.1-jre 0Highest27
guice-5.1.0.jarpkg:maven/com.google.inject/guice@5.1.0 034
javax.annotation-api-1.2.jarpkg:maven/javax.annotation/javax.annotation-api@1.2 046
javax.inject-1.jarpkg:maven/javax.inject/javax.inject@1 020
maven-artifact-3.9.5.jarpkg:maven/org.apache.maven/maven-artifact@3.9.5 026
maven-builder-support-3.9.5.jarpkg:maven/org.apache.maven/maven-builder-support@3.9.5 024
maven-core-3.9.5.jarcpe:2.3:a:apache:maven:3.9.5:*:*:*:*:*:*:*pkg:maven/org.apache.maven/maven-core@3.9.5 0Highest24
maven-model-3.9.5.jarpkg:maven/org.apache.maven/maven-model@3.9.5 026
maven-model-builder-3.9.5.jarpkg:maven/org.apache.maven/maven-model-builder@3.9.5 032
maven-plugin-annotations-3.15.0.jarpkg:maven/org.apache.maven.plugin-tools/maven-plugin-annotations@3.15.0 026
maven-plugin-api-3.9.5.jarpkg:maven/org.apache.maven/maven-plugin-api@3.9.5 026
maven-repository-metadata-3.9.5.jarpkg:maven/org.apache.maven/maven-repository-metadata@3.9.5 026
maven-resolver-api-1.9.16.jarpkg:maven/org.apache.maven.resolver/maven-resolver-api@1.9.16 034
maven-resolver-impl-1.9.16.jarpkg:maven/org.apache.maven.resolver/maven-resolver-impl@1.9.16 032
maven-resolver-named-locks-1.9.16.jarpkg:maven/org.apache.maven.resolver/maven-resolver-named-locks@1.9.16 033
maven-resolver-provider-3.9.5.jarpkg:maven/org.apache.maven/maven-resolver-provider@3.9.5 026
maven-resolver-spi-1.9.16.jarpkg:maven/org.apache.maven.resolver/maven-resolver-spi@1.9.16 032
maven-resolver-util-1.9.16.jarpkg:maven/org.apache.maven.resolver/maven-resolver-util@1.9.16 036
maven-settings-3.9.5.jarpkg:maven/org.apache.maven/maven-settings@3.9.5 026
maven-settings-builder-3.9.5.jarpkg:maven/org.apache.maven/maven-settings-builder@3.9.5 026
maven-shared-utils-3.3.4.jarcpe:2.3:a:apache:maven_shared_utils:3.3.4:*:*:*:*:*:*:*
cpe:2.3:a:utils_project:utils:3.3.4:*:*:*:*:*:*:*
pkg:maven/org.apache.maven.shared/maven-shared-utils@3.3.4 0Highest29
org.eclipse.sisu.inject-0.3.5.jarpkg:maven/org.eclipse.sisu/org.eclipse.sisu.inject@0.3.5 029
org.eclipse.sisu.plexus-0.3.5.jarpkg:maven/org.eclipse.sisu/org.eclipse.sisu.plexus@0.3.5 028
plexus-cipher-2.0.jarcpe:2.3:a:codehaus-plexus_project:codehaus-plexus:2.0:*:*:*:*:*:*:*pkg:maven/org.codehaus.plexus/plexus-cipher@2.0HIGH2Highest20
plexus-classworlds-2.7.0.jarcpe:2.3:a:codehaus-plexus_project:codehaus-plexus:2.7.0:*:*:*:*:*:*:*pkg:maven/org.codehaus.plexus/plexus-classworlds@2.7.0HIGH2Highest28
plexus-component-annotations-2.1.0.jarcpe:2.3:a:codehaus-plexus_project:codehaus-plexus:2.1.0:*:*:*:*:*:*:*pkg:maven/org.codehaus.plexus/plexus-component-annotations@2.1.0HIGH2Highest27
plexus-interpolation-1.26.jarcpe:2.3:a:codehaus-plexus_project:codehaus-plexus:1.26:*:*:*:*:*:*:*pkg:maven/org.codehaus.plexus/plexus-interpolation@1.26HIGH2Highest25
plexus-sec-dispatcher-2.0.jarcpe:2.3:a:codehaus-plexus_project:codehaus-plexus:2.0:*:*:*:*:*:*:*
cpe:2.3:a:sec_project:sec:2.0:*:*:*:*:*:*:*
pkg:maven/org.codehaus.plexus/plexus-sec-dispatcher@2.0HIGH2Highest20
plexus-utils-3.5.1.jarcpe:2.3:a:codehaus-plexus_project:codehaus-plexus:3.5.1:*:*:*:*:*:*:*
cpe:2.3:a:plexus-utils_project:plexus-utils:3.5.1:*:*:*:*:*:*:*
cpe:2.3:a:utils_project:utils:3.5.1:*:*:*:*:*:*:*
pkg:maven/org.codehaus.plexus/plexus-utils@3.5.1 0Highest27
postgresql-42.7.4.jarcpe:2.3:a:postgresql:postgresql_jdbc_driver:42.7.4:*:*:*:*:*:*:*pkg:maven/org.postgresql/postgresql@42.7.4 0Low68
slf4j-api-1.7.36.jarpkg:maven/org.slf4j/slf4j-api@1.7.36 029
xz-1.9.jarpkg:maven/org.tukaani/xz@1.9 033

Dependencies (vulnerable)

aopalliance-1.0.jar

Description:

AOP Alliance

License:

Public Domain
File Path: /home/runner/.m2/repository/aopalliance/aopalliance/1.0/aopalliance-1.0.jar
MD5: 04177054e180d09e3998808efa0401c7
SHA1: 0235ba8b489512805ac13a8f9ea77a1ca5ebe3e8
SHA256:0addec670fedcd3f113c5c8091d783280d23f75e3acb841b61a9cdb079376a08
Referenced In Project/Scope: Zonky Maven Plugin:provided
aopalliance-1.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven/maven-core@3.9.5

Identifiers

checker-qual-3.42.0.jar

Description:

checker-qual contains annotations (type qualifiers) that a programmer
writes to specify Java code for type-checking by the Checker Framework.

License:

The MIT License: http://opensource.org/licenses/MIT
File Path: /home/runner/.m2/repository/org/checkerframework/checker-qual/3.42.0/checker-qual-3.42.0.jar
MD5: 4c55448dcbfe9c3702f7758fc8fe0086
SHA1: 638ec33f363a94d41a4f03c3e7d3dcfba64e402d
SHA256:ccaedd33af0b7894d9f2f3b644f4d19e43928e32902e61ac4d10777830f5aac7
Referenced In Project/Scope: Zonky Maven Plugin:runtime
checker-qual-3.42.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.postgresql/postgresql@42.7.4

Identifiers

commons-codec-1.17.1.jar

Description:

     The Apache Commons Codec component contains encoders and decoders for
     various formats such as Base16, Base32, Base64, digest, and Hexadecimal. In addition to these
     widely used encoders and decoders, the codec package also maintains a
     collection of phonetic encoding utilities.
  

License:

https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/commons-codec/commons-codec/1.17.1/commons-codec-1.17.1.jar
MD5: 7b3438ab4c6d91e0066d410947e43f3e
SHA1: 973638b7149d333563584137ebf13a691bb60579
SHA256:f9f6cb103f2ddc3c99a9d80ada2ae7bf0685111fd6bffccb72033d1da4e6ff23
Referenced In Project/Scope: Zonky Maven Plugin:compile
commons-codec-1.17.1.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.commons/commons-compress@1.27.1

Identifiers

commons-compress-1.27.1.jar

Description:

Apache Commons Compress defines an API for working with
compression and archive formats. These include bzip2, gzip, pack200,
LZMA, XZ, Snappy, traditional Unix Compress, DEFLATE, DEFLATE64, LZ4,
Brotli, Zstandard and ar, cpio, jar, tar, zip, dump, 7z, arj.
  

License:

https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/org/apache/commons/commons-compress/1.27.1/commons-compress-1.27.1.jar
MD5: 1db4bd87b0082044c6e7a6af0b977a3e
SHA1: a19151084758e2fbb6b41eddaa88e7b8ff4e6599
SHA256:293d80f54b536b74095dcd7ea3cf0a29bbfc3402519281332495f4420d370d16
Referenced In Project/Scope: Zonky Maven Plugin:compile
commons-compress-1.27.1.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/de.funfried.maven.plugins/zonky-maven-plugin@0.7-SNAPSHOT

Identifiers

commons-io-2.17.0.jar

Description:

The Apache Commons IO library contains utility classes, stream implementations, file filters,
file comparators, endian transformation classes, and much more.
  

License:

https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/commons-io/commons-io/2.17.0/commons-io-2.17.0.jar
MD5: f6232d0e290d58bb93f74f67165bf91f
SHA1: ddcc8433eb019fb48fe25207c0278143f3e1d7e2
SHA256:4aa4ca48f3dfd30b78220b7881d8cb93eac4093ec94361b6befa9487998a550b
Referenced In Project/Scope: Zonky Maven Plugin:compile
commons-io-2.17.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/de.funfried.maven.plugins/zonky-maven-plugin@0.7-SNAPSHOT

Identifiers

commons-lang3-3.17.0.jar

Description:

  Apache Commons Lang, a package of Java utility classes for the
  classes that are in java.lang's hierarchy, or are considered to be so
  standard as to justify existence in java.lang.

  The code is tested using the latest revision of the JDK for supported
  LTS releases: 8, 11, 17 and 21 currently.
  See https://github.com/apache/commons-lang/blob/master/.github/workflows/maven.yml
  
  Please ensure your build environment is up-to-date and kindly report any build issues.
  

License:

https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/org/apache/commons/commons-lang3/3.17.0/commons-lang3-3.17.0.jar
MD5: 7730df72b7fdff4a3a32d89a314f826a
SHA1: b17d2136f0460dcc0d2016ceefca8723bdf4ee70
SHA256:6ee731df5c8e5a2976a1ca023b6bb320ea8d3539fbe64c8a1d5cb765127c33b4
Referenced In Project/Scope: Zonky Maven Plugin:compile
commons-lang3-3.17.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/de.funfried.maven.plugins/zonky-maven-plugin@0.7-SNAPSHOT

Identifiers

embedded-postgres-2.0.7.jar

Description:

Embedded PostgreSQL Server

License:

The Apache License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/io/zonky/test/embedded-postgres/2.0.7/embedded-postgres-2.0.7.jar
MD5: 065691b33e6e8acc1e4e3253fc6906cf
SHA1: 9923096f413bd2a4ca99c059e0b15c76ee0b1342
SHA256:e71260b8101305945312392fab4ae36a2a6d09db45a1c473a575365a1fec6712
Referenced In Project/Scope: Zonky Maven Plugin:compile
embedded-postgres-2.0.7.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/de.funfried.maven.plugins/zonky-maven-plugin@0.7-SNAPSHOT

Identifiers

embedded-postgres-binaries-darwin-amd64-14.10.1.jar

Description:

A lightweight bundle of PostgreSQL database with reduced size

License:

The Apache License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/io/zonky/test/postgres/embedded-postgres-binaries-darwin-amd64/14.10.1/embedded-postgres-binaries-darwin-amd64-14.10.1.jar
MD5: 29b0b45782a94923d148e4c68eaadfff
SHA1: 25b17397af277a041f0d19f132c6c180a7e4de7e
SHA256:50254407c8762c15f9023bd4d269a0c8abe8a3b6fcad28f64aea8d854c9f547d
Referenced In Project/Scope: Zonky Maven Plugin:runtime
embedded-postgres-binaries-darwin-amd64-14.10.1.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/io.zonky.test/embedded-postgres@2.0.7

Identifiers

embedded-postgres-binaries-linux-amd64-14.10.1.jar

Description:

A lightweight bundle of PostgreSQL database with reduced size

License:

The Apache License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/io/zonky/test/postgres/embedded-postgres-binaries-linux-amd64/14.10.1/embedded-postgres-binaries-linux-amd64-14.10.1.jar
MD5: 5ba86edf166a7d4883d3c2f74d788a8a
SHA1: 6834ee45439f234581885cd6f21a6afbee8cb230
SHA256:3a5ee39517fa8a32f89d49cc63717348587e9bc226c4bf9a75cf1ec7f65c9401
Referenced In Project/Scope: Zonky Maven Plugin:runtime
embedded-postgres-binaries-linux-amd64-14.10.1.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/io.zonky.test/embedded-postgres@2.0.7

Identifiers

embedded-postgres-binaries-linux-amd64-alpine-14.10.1.jar

Description:

A lightweight bundle of PostgreSQL database with reduced size

License:

The Apache License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/io/zonky/test/postgres/embedded-postgres-binaries-linux-amd64-alpine/14.10.1/embedded-postgres-binaries-linux-amd64-alpine-14.10.1.jar
MD5: 5dfb73c7a14947f9b3e04b0853e96b9d
SHA1: 81255981152e393aeb46483b68156038293b0104
SHA256:b2a7e6a16a2b238bb0f9d1b5f61103513b1da80ac4d854d57d48b93071636524
Referenced In Project/Scope: Zonky Maven Plugin:runtime
embedded-postgres-binaries-linux-amd64-alpine-14.10.1.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/io.zonky.test/embedded-postgres@2.0.7

Identifiers

embedded-postgres-binaries-windows-amd64-14.10.1.jar

Description:

A lightweight bundle of PostgreSQL database with reduced size

License:

The Apache License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/io/zonky/test/postgres/embedded-postgres-binaries-windows-amd64/14.10.1/embedded-postgres-binaries-windows-amd64-14.10.1.jar
MD5: 40b1a4ecc4ae688019626d09eb02b0ee
SHA1: 6906120e629f6fbb92b961e1558b6f4a4c9011b8
SHA256:c645ce9a9ae2b25a3095078e45321667c16dd04435f9d7d4af42cf8d5c34e626
Referenced In Project/Scope: Zonky Maven Plugin:runtime
embedded-postgres-binaries-windows-amd64-14.10.1.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/io.zonky.test/embedded-postgres@2.0.7

Identifiers

failureaccess-1.0.1.jar

Description:

    Contains
    com.google.common.util.concurrent.internal.InternalFutureFailureAccess and
    InternalFutures. Most users will never need to use this artifact. Its
    classes is conceptually a part of Guava, but they're in this separate
    artifact so that Android libraries can use them without pulling in all of
    Guava (just as they can use ListenableFuture by depending on the
    listenablefuture artifact).
  

License:

http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/com/google/guava/failureaccess/1.0.1/failureaccess-1.0.1.jar
MD5: 091883993ef5bfa91da01dcc8fc52236
SHA1: 1dcf1de382a0bf95a3d8b0849546c88bac1292c9
SHA256:a171ee4c734dd2da837e4b16be9df4661afab72a41adaf31eb84dfdaf936ca26
Referenced In Project/Scope: Zonky Maven Plugin:provided
failureaccess-1.0.1.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven/maven-core@3.9.5

Identifiers

guava-32.0.1-jre.jar

Description:

    Guava is a suite of core and expanded libraries that include
    utility classes, Google's collections, I/O classes, and
    much more.
  

License:

http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/com/google/guava/guava/32.0.1-jre/guava-32.0.1-jre.jar
MD5: 6951895e804b36322214c95917e598d4
SHA1: 6e5d51a72d142f2d40a57dfb897188b36a95b489
SHA256:bd7fa227591fb8509677d0d1122cf95158f3b8a9f45653f58281d879f6dc48c5
Referenced In Project/Scope: Zonky Maven Plugin:provided
guava-32.0.1-jre.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven/maven-core@3.9.5

Identifiers

guice-5.1.0.jar

Description:

Guice is a lightweight dependency injection framework for Java 6 and above

License:

http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/com/google/inject/guice/5.1.0/guice-5.1.0.jar
MD5: 2560169296aa94492af34af2115e9511
SHA1: da25056c694c54ba16e78e4fc35f17fc60f0d1b4
SHA256:4130e50bfac48099c860f0d903b91860c81a249c90f38245f8fed58fc817bc26
Referenced In Project/Scope: Zonky Maven Plugin:provided
guice-5.1.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven/maven-core@3.9.5

Identifiers

javax.annotation-api-1.2.jar

Description:

Common Annotations for the JavaTM Platform API

License:

CDDL + GPLv2 with classpath exception: https://glassfish.dev.java.net/nonav/public/CDDL+GPL.html
File Path: /home/runner/.m2/repository/javax/annotation/javax.annotation-api/1.2/javax.annotation-api-1.2.jar
MD5: 75fe320d2b3763bd6883ae1ede35e987
SHA1: 479c1e06db31c432330183f5cae684163f186146
SHA256:5909b396ca3a2be10d0eea32c74ef78d816e1b4ead21de1d78de1f890d033e04
Referenced In Project/Scope: Zonky Maven Plugin:provided
javax.annotation-api-1.2.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven/maven-plugin-api@3.9.5

Identifiers

javax.inject-1.jar

Description:

The javax.inject API

License:

The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/javax/inject/javax.inject/1/javax.inject-1.jar
MD5: 289075e48b909e9e74e6c915b3631d2e
SHA1: 6975da39a7040257bd51d21a231b76c915872d38
SHA256:91c77044a50c481636c32d916fd89c9118a72195390452c81065080f957de7ff
Referenced In Project/Scope: Zonky Maven Plugin:provided
javax.inject-1.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven/maven-core@3.9.5

Identifiers

maven-artifact-3.9.5.jar

File Path: /home/runner/.m2/repository/org/apache/maven/maven-artifact/3.9.5/maven-artifact-3.9.5.jar
MD5: 80fe9e0c1cadd00449cb1460f7d5b781
SHA1: b956b64636f8d6ed082c7722c611231323beef2d
SHA256:8cad6be0edafa2ddf4c630f81c424ec533e5b4263562ed0ea235501d6053ce9e
Referenced In Project/Scope: Zonky Maven Plugin:provided
maven-artifact-3.9.5.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven/maven-plugin-api@3.9.5

Identifiers

maven-builder-support-3.9.5.jar

Description:

Support for descriptor builders (model, setting, toolchains)

File Path: /home/runner/.m2/repository/org/apache/maven/maven-builder-support/3.9.5/maven-builder-support-3.9.5.jar
MD5: e8307103c603d14b150c720af4ecbec3
SHA1: 69d4343af7c187465adab8232e1dec2350ca3e58
SHA256:88abb6ca39b12caefadcf0ce9f3f9bc8516cfe01fa46039228e1047ccfd018a9
Referenced In Project/Scope: Zonky Maven Plugin:provided
maven-builder-support-3.9.5.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven/maven-core@3.9.5

Identifiers

maven-core-3.9.5.jar

Description:

Maven Core classes.

File Path: /home/runner/.m2/repository/org/apache/maven/maven-core/3.9.5/maven-core-3.9.5.jar
MD5: 5d7e22441d4f88ad1631a3e0b0dee5c3
SHA1: 1add056215dd886528bee60204fe1d41f10568b0
SHA256:5be8f0f34458a9392040c4da6de8f1419b3480cd70c553238de4ad3052be1df0
Referenced In Project/Scope: Zonky Maven Plugin:provided
maven-core-3.9.5.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/de.funfried.maven.plugins/zonky-maven-plugin@0.7-SNAPSHOT

Identifiers

maven-model-3.9.5.jar

Description:

Model for Maven POM (Project Object Model)

File Path: /home/runner/.m2/repository/org/apache/maven/maven-model/3.9.5/maven-model-3.9.5.jar
MD5: 5e63b98a8a323ba66ab20f60f8732c7e
SHA1: b7be7e049231443f6a15fd16f335ba0953b328f3
SHA256:27a79004cae6d0f894489a8e48559c76ed197cf543ce07b24f25d26f4b8bf2fb
Referenced In Project/Scope: Zonky Maven Plugin:provided
maven-model-3.9.5.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven/maven-plugin-api@3.9.5

Identifiers

maven-model-builder-3.9.5.jar

Description:

The effective model builder, with inheritance, profile activation, interpolation, ...

File Path: /home/runner/.m2/repository/org/apache/maven/maven-model-builder/3.9.5/maven-model-builder-3.9.5.jar
MD5: 590cece2bf915076348852423e8847f2
SHA1: 7017216902225fc9e1a7eb5e06d337ac5af952cf
SHA256:6b2a46d34c4fbe831978dd58f5e73a7181370f364bfe00dfa399729b78d371fc
Referenced In Project/Scope: Zonky Maven Plugin:provided
maven-model-builder-3.9.5.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven/maven-core@3.9.5

Identifiers

maven-plugin-annotations-3.15.0.jar

Description:

Java annotations to use in Mojos

File Path: /home/runner/.m2/repository/org/apache/maven/plugin-tools/maven-plugin-annotations/3.15.0/maven-plugin-annotations-3.15.0.jar
MD5: 1f9ec4ed57ee3fd27f3d83b16c496079
SHA1: 979c83420a249a3504fbbba54ef68ff1e8a0049c
SHA256:8aa6b0054bf9240fb89d5def9353b5e274eacf0151fd8d2571b9e803f401660a
Referenced In Project/Scope: Zonky Maven Plugin:provided
maven-plugin-annotations-3.15.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/de.funfried.maven.plugins/zonky-maven-plugin@0.7-SNAPSHOT

Identifiers

maven-plugin-api-3.9.5.jar

Description:

The API for plugins - Mojos - development.

File Path: /home/runner/.m2/repository/org/apache/maven/maven-plugin-api/3.9.5/maven-plugin-api-3.9.5.jar
MD5: 8423e0ee713bbe21dd2e3b3cb07f20c4
SHA1: a778605a92802105e160358a94d508d3c0152a5a
SHA256:839d501ec058126f91d413db74ded086f2cb3b06abb9e5b2ac6beead33fe8a8e
Referenced In Project/Scope: Zonky Maven Plugin:provided
maven-plugin-api-3.9.5.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/de.funfried.maven.plugins/zonky-maven-plugin@0.7-SNAPSHOT

Identifiers

maven-repository-metadata-3.9.5.jar

Description:

Per-directory local and remote repository metadata.

File Path: /home/runner/.m2/repository/org/apache/maven/maven-repository-metadata/3.9.5/maven-repository-metadata-3.9.5.jar
MD5: f179949eb52e5665586dd6175d4bebf0
SHA1: 9d5d85e892bb14e81a66426ac97955ad32191fe7
SHA256:bbddcd62140628a967f0cf795ff8516b430867c0e82bc789912c14166295707a
Referenced In Project/Scope: Zonky Maven Plugin:provided
maven-repository-metadata-3.9.5.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven/maven-core@3.9.5

Identifiers

maven-resolver-api-1.9.16.jar

Description:

The application programming interface for the repository system.

License:

"Apache-2.0";link="https://www.apache.org/licenses/LICENSE-2.0.txt"
File Path: /home/runner/.m2/repository/org/apache/maven/resolver/maven-resolver-api/1.9.16/maven-resolver-api-1.9.16.jar
MD5: a952331b15f1556d10b126de67561e17
SHA1: a3a0bc37ba32ded01484b7dc20aea36fc3ff3a77
SHA256:695bb724f719ef57b51e9117f8ad86e1d52ffd5df03b0913b68f6019ac137c8d
Referenced In Project/Scope: Zonky Maven Plugin:provided
maven-resolver-api-1.9.16.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven/maven-core@3.9.5

Identifiers

maven-resolver-impl-1.9.16.jar

Description:

An implementation of the repository system.

License:

"Apache-2.0";link="https://www.apache.org/licenses/LICENSE-2.0.txt"
File Path: /home/runner/.m2/repository/org/apache/maven/resolver/maven-resolver-impl/1.9.16/maven-resolver-impl-1.9.16.jar
MD5: ee54763224c91e620bba251687612b58
SHA1: c17df48c1f27a529067c7b11d575dcdd538d479a
SHA256:8d2ab2437697b13742bda0f65061d27a817cbf987b49d4fb088a47e9a73c2b50
Referenced In Project/Scope: Zonky Maven Plugin:provided
maven-resolver-impl-1.9.16.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven/maven-core@3.9.5

Identifiers

maven-resolver-named-locks-1.9.16.jar

Description:

A synchronization utility implementation using Named locks.

License:

"Apache-2.0";link="https://www.apache.org/licenses/LICENSE-2.0.txt"
File Path: /home/runner/.m2/repository/org/apache/maven/resolver/maven-resolver-named-locks/1.9.16/maven-resolver-named-locks-1.9.16.jar
MD5: 857999b6ca23d3937c9134f66e15fa38
SHA1: 87b0e0176a169a6b2fafd11ccbb7b59fb769b57c
SHA256:2a2f6ca4c84c4349d99479b9f8b9115a97d3602999c0b64fe830f5b7a420cbd6
Referenced In Project/Scope: Zonky Maven Plugin:provided
maven-resolver-named-locks-1.9.16.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven/maven-core@3.9.5

Identifiers

maven-resolver-provider-3.9.5.jar

Description:

Extensions to Maven Resolver for utilizing Maven POM and repository metadata.

File Path: /home/runner/.m2/repository/org/apache/maven/maven-resolver-provider/3.9.5/maven-resolver-provider-3.9.5.jar
MD5: 4f80ad00166081600f158af2c6bd6bdb
SHA1: 8589d768ccd5f6ed6d818f38efc301f3fadcde53
SHA256:fe5e0f580ade00a5f669e26d5e7c734a7f45e0a5a0bc0129302b2a98182ea9ac
Referenced In Project/Scope: Zonky Maven Plugin:provided
maven-resolver-provider-3.9.5.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven/maven-core@3.9.5

Identifiers

maven-resolver-spi-1.9.16.jar

Description:

The service provider interface for repository system implementations and repository connectors.

License:

"Apache-2.0";link="https://www.apache.org/licenses/LICENSE-2.0.txt"
File Path: /home/runner/.m2/repository/org/apache/maven/resolver/maven-resolver-spi/1.9.16/maven-resolver-spi-1.9.16.jar
MD5: c5854763fbe3d490bcf3663dd5218c14
SHA1: 12222dca88a4812560ae2fa59e8bd47871ff096a
SHA256:c5eca35fc249853ea87e57bc1a8ed5dad4d9b0ccc1d9be3e3ffdfcc879be5d9a
Referenced In Project/Scope: Zonky Maven Plugin:provided
maven-resolver-spi-1.9.16.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven/maven-core@3.9.5

Identifiers

maven-resolver-util-1.9.16.jar

Description:

A collection of utility classes to ease usage of the repository system.

License:

"Apache-2.0";link="https://www.apache.org/licenses/LICENSE-2.0.txt"
File Path: /home/runner/.m2/repository/org/apache/maven/resolver/maven-resolver-util/1.9.16/maven-resolver-util-1.9.16.jar
MD5: 1ffde183e8f2e0f8f8c5a4c3cc590c7c
SHA1: fb6cb68c4593de6af6f96fa4f5dba3e6d30b8ec3
SHA256:fcae1a94bd11c5ee21e5678fbc7687164ec385cdd4b63679099be3a8a805e172
Referenced In Project/Scope: Zonky Maven Plugin:provided
maven-resolver-util-1.9.16.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven/maven-core@3.9.5

Identifiers

maven-settings-3.9.5.jar

Description:

Maven Settings model.

File Path: /home/runner/.m2/repository/org/apache/maven/maven-settings/3.9.5/maven-settings-3.9.5.jar
MD5: 9d51136b8760278002b975a747189e2d
SHA1: 36c414d6cfc4f0140e6261b71c4d3141ef6a155c
SHA256:cdf3d94994a5c0f4f7adccabdc4bc47aebdc1e705d42279d60ddaec367d43528
Referenced In Project/Scope: Zonky Maven Plugin:provided
maven-settings-3.9.5.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven/maven-core@3.9.5

Identifiers

maven-settings-builder-3.9.5.jar

Description:

The effective settings builder, with inheritance and password decryption.

File Path: /home/runner/.m2/repository/org/apache/maven/maven-settings-builder/3.9.5/maven-settings-builder-3.9.5.jar
MD5: 54db9f3b18d757046d359129263346e7
SHA1: 3adbf920f32ca7fc8760e13791271ee2a712bd98
SHA256:cb19f199d7f629b6c265b726221b7a5a47297d1bf47f5455870b46352d07dda3
Referenced In Project/Scope: Zonky Maven Plugin:provided
maven-settings-builder-3.9.5.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven/maven-core@3.9.5

Identifiers

maven-shared-utils-3.3.4.jar

Description:

Shared utilities for use by Maven core and plugins

File Path: /home/runner/.m2/repository/org/apache/maven/shared/maven-shared-utils/3.3.4/maven-shared-utils-3.3.4.jar
MD5: 908f2a0107ff330ac9b856356a0acaef
SHA1: f87a61adb1e12a00dcc6cc6005a51e693aa7c4ac
SHA256:7925d9c5a0e2040d24b8fae3f612eb399cbffe5838b33ba368777dc7bddf6dda
Referenced In Project/Scope: Zonky Maven Plugin:provided
maven-shared-utils-3.3.4.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven/maven-core@3.9.5

Identifiers

org.eclipse.sisu.inject-0.3.5.jar

License:

http://www.eclipse.org/legal/epl-v10.html
File Path: /home/runner/.m2/repository/org/eclipse/sisu/org.eclipse.sisu.inject/0.3.5/org.eclipse.sisu.inject-0.3.5.jar
MD5: 1b296b0ddd911ed3750b3df93b395cd5
SHA1: d4265dd4f0f1d7a06d80df5a5f475d5ff9c17140
SHA256:c5994010bcdce1d2bd603a4d50c47191ddbd7875d1157b23aaa26d33c82fda13
Referenced In Project/Scope: Zonky Maven Plugin:provided
org.eclipse.sisu.inject-0.3.5.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven/maven-core@3.9.5

Identifiers

org.eclipse.sisu.plexus-0.3.5.jar

License:

http://www.eclipse.org/legal/epl-v10.html
File Path: /home/runner/.m2/repository/org/eclipse/sisu/org.eclipse.sisu.plexus/0.3.5/org.eclipse.sisu.plexus-0.3.5.jar
MD5: 30c4a9fa2137698ed66c8542f1be196a
SHA1: d71996bb2e536f966b3b70e647067fff3b73d32f
SHA256:7e4c61096d70826f20f7a7d55c59a5528e7aa5ad247ee2dfe544e4dd25f6a784
Referenced In Project/Scope: Zonky Maven Plugin:provided
org.eclipse.sisu.plexus-0.3.5.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven/maven-plugin-api@3.9.5

Identifiers

plexus-cipher-2.0.jar

File Path: /home/runner/.m2/repository/org/codehaus/plexus/plexus-cipher/2.0/plexus-cipher-2.0.jar
MD5: 55d612839faf248cbe3e273969c002c2
SHA1: 425ea8e534716b4bff1ea90f39bd76be951d651b
SHA256:9a7f1b5c5a9effd61eadfd8731452a2f76a8e79111fac391ef75ea801bea203a
Referenced In Project/Scope: Zonky Maven Plugin:provided
plexus-cipher-2.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven/maven-core@3.9.5

Identifiers

CVE-2022-4244  

A flaw was found in codeplex-codehaus. A directory traversal attack (also known as path traversal) aims to access files and directories stored outside the intended folder. By manipulating files with "dot-dot-slash (../)" sequences and their variations or by using absolute file paths, it may be possible to access arbitrary files and directories stored on the file system, including application source code, configuration, and other critical system files.
CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

CVSSv3:
  • Base Score: HIGH (7.5)
  • Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:3.9/RC:R/MAV:A

References:

Vulnerable Software & Versions: (show all)

CVE-2022-4245  

A flaw was found in codehaus-plexus. The org.codehaus.plexus.util.xml.XmlWriterUtil#writeComment fails to sanitize comments for a --> sequence. This issue means that text contained in the command string could be interpreted as XML and allow for XML injection.
CWE-611 Improper Restriction of XML External Entity Reference, CWE-91 XML Injection (aka Blind XPath Injection)

CVSSv3:
  • Base Score: MEDIUM (4.3)
  • Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N/E:2.8/RC:R/MAV:A

References:

Vulnerable Software & Versions: (show all)

plexus-classworlds-2.7.0.jar

Description:

A class loader framework

License:

http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/org/codehaus/plexus/plexus-classworlds/2.7.0/plexus-classworlds-2.7.0.jar
MD5: 6ed852b1a004288c44438381e6aaee1e
SHA1: fe6f1acefd1a302dd4bc6d9d7f15358828d2a44d
SHA256:c60ae538ba66adbc06aae205fbe2306211d3d213ab6df3239ec03cdde2458ad6
Referenced In Project/Scope: Zonky Maven Plugin:provided
plexus-classworlds-2.7.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven/maven-plugin-api@3.9.5

Identifiers

CVE-2022-4244  

A flaw was found in codeplex-codehaus. A directory traversal attack (also known as path traversal) aims to access files and directories stored outside the intended folder. By manipulating files with "dot-dot-slash (../)" sequences and their variations or by using absolute file paths, it may be possible to access arbitrary files and directories stored on the file system, including application source code, configuration, and other critical system files.
CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

CVSSv3:
  • Base Score: HIGH (7.5)
  • Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:3.9/RC:R/MAV:A

References:

Vulnerable Software & Versions: (show all)

CVE-2022-4245  

A flaw was found in codehaus-plexus. The org.codehaus.plexus.util.xml.XmlWriterUtil#writeComment fails to sanitize comments for a --> sequence. This issue means that text contained in the command string could be interpreted as XML and allow for XML injection.
CWE-611 Improper Restriction of XML External Entity Reference, CWE-91 XML Injection (aka Blind XPath Injection)

CVSSv3:
  • Base Score: MEDIUM (4.3)
  • Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N/E:2.8/RC:R/MAV:A

References:

Vulnerable Software & Versions: (show all)

plexus-component-annotations-2.1.0.jar

Description:

    Plexus Component "Java 5" Annotations, to describe plexus components properties in java sources with
    standard annotations instead of javadoc annotations.
  

File Path: /home/runner/.m2/repository/org/codehaus/plexus/plexus-component-annotations/2.1.0/plexus-component-annotations-2.1.0.jar
MD5: 141fd7a2ae613cb17d25ecd54b43eb3f
SHA1: 2f2147a6cc6a119a1b51a96f31d45c557f6244b9
SHA256:bde3617ce9b5bcf9584126046080043af6a4b3baea40a3b153f02e7bbc32acac
Referenced In Project/Scope: Zonky Maven Plugin:provided
plexus-component-annotations-2.1.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven/maven-core@3.9.5

Identifiers

CVE-2022-4244  

A flaw was found in codeplex-codehaus. A directory traversal attack (also known as path traversal) aims to access files and directories stored outside the intended folder. By manipulating files with "dot-dot-slash (../)" sequences and their variations or by using absolute file paths, it may be possible to access arbitrary files and directories stored on the file system, including application source code, configuration, and other critical system files.
CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

CVSSv3:
  • Base Score: HIGH (7.5)
  • Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:3.9/RC:R/MAV:A

References:

Vulnerable Software & Versions: (show all)

CVE-2022-4245  

A flaw was found in codehaus-plexus. The org.codehaus.plexus.util.xml.XmlWriterUtil#writeComment fails to sanitize comments for a --> sequence. This issue means that text contained in the command string could be interpreted as XML and allow for XML injection.
CWE-611 Improper Restriction of XML External Entity Reference, CWE-91 XML Injection (aka Blind XPath Injection)

CVSSv3:
  • Base Score: MEDIUM (4.3)
  • Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N/E:2.8/RC:R/MAV:A

References:

Vulnerable Software & Versions: (show all)

plexus-interpolation-1.26.jar

Description:

The Plexus project provides a full software stack for creating and executing software projects.

License:

http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/org/codehaus/plexus/plexus-interpolation/1.26/plexus-interpolation-1.26.jar
MD5: 1049ae9f5cd8cf618abf5bc5805e6b94
SHA1: 25b919c664b79795ccde0ede5cee0fd68b544197
SHA256:b3b5412ce17889103ea564bcdfcf9fb3dfa540344ffeac6b538a73c9d7182662
Referenced In Project/Scope: Zonky Maven Plugin:provided
plexus-interpolation-1.26.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven/maven-core@3.9.5

Identifiers

CVE-2022-4244  

A flaw was found in codeplex-codehaus. A directory traversal attack (also known as path traversal) aims to access files and directories stored outside the intended folder. By manipulating files with "dot-dot-slash (../)" sequences and their variations or by using absolute file paths, it may be possible to access arbitrary files and directories stored on the file system, including application source code, configuration, and other critical system files.
CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

CVSSv3:
  • Base Score: HIGH (7.5)
  • Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:3.9/RC:R/MAV:A

References:

Vulnerable Software & Versions: (show all)

CVE-2022-4245  

A flaw was found in codehaus-plexus. The org.codehaus.plexus.util.xml.XmlWriterUtil#writeComment fails to sanitize comments for a --> sequence. This issue means that text contained in the command string could be interpreted as XML and allow for XML injection.
CWE-611 Improper Restriction of XML External Entity Reference, CWE-91 XML Injection (aka Blind XPath Injection)

CVSSv3:
  • Base Score: MEDIUM (4.3)
  • Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N/E:2.8/RC:R/MAV:A

References:

Vulnerable Software & Versions: (show all)

plexus-sec-dispatcher-2.0.jar

File Path: /home/runner/.m2/repository/org/codehaus/plexus/plexus-sec-dispatcher/2.0/plexus-sec-dispatcher-2.0.jar
MD5: e68635a721630177ac70173e441336b6
SHA1: f89c5080614ffd0764e49861895dbedde1b47237
SHA256:873139960c4c780176dda580b003a2c4bf82188bdce5bb99234e224ef7acfceb
Referenced In Project/Scope: Zonky Maven Plugin:provided
plexus-sec-dispatcher-2.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven/maven-core@3.9.5

Identifiers

CVE-2022-4244  

A flaw was found in codeplex-codehaus. A directory traversal attack (also known as path traversal) aims to access files and directories stored outside the intended folder. By manipulating files with "dot-dot-slash (../)" sequences and their variations or by using absolute file paths, it may be possible to access arbitrary files and directories stored on the file system, including application source code, configuration, and other critical system files.
CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

CVSSv3:
  • Base Score: HIGH (7.5)
  • Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:3.9/RC:R/MAV:A

References:

Vulnerable Software & Versions: (show all)

CVE-2022-4245  

A flaw was found in codehaus-plexus. The org.codehaus.plexus.util.xml.XmlWriterUtil#writeComment fails to sanitize comments for a --> sequence. This issue means that text contained in the command string could be interpreted as XML and allow for XML injection.
CWE-611 Improper Restriction of XML External Entity Reference, CWE-91 XML Injection (aka Blind XPath Injection)

CVSSv3:
  • Base Score: MEDIUM (4.3)
  • Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N/E:2.8/RC:R/MAV:A

References:

Vulnerable Software & Versions: (show all)

plexus-utils-3.5.1.jar

Description:

A collection of various utility classes to ease working with strings, files, command lines, XML and
    more.
  

File Path: /home/runner/.m2/repository/org/codehaus/plexus/plexus-utils/3.5.1/plexus-utils-3.5.1.jar
MD5: cdec471a77f52e687d0df4c43f392a71
SHA1: c6bfb17c97ecc8863e88778ea301be742c62b06d
SHA256:86e0255d4c879c61b4833ed7f13124e8bb679df47debb127326e7db7dd49a07b
Referenced In Project/Scope: Zonky Maven Plugin:provided
plexus-utils-3.5.1.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.maven/maven-plugin-api@3.9.5

Identifiers

postgresql-42.7.4.jar

Description:

PostgreSQL JDBC Driver Postgresql

License:

BSD-2-Clause: https://jdbc.postgresql.org/about/license.html
File Path: /home/runner/.m2/repository/org/postgresql/postgresql/42.7.4/postgresql-42.7.4.jar
MD5: ef7e9be503b5c6243697d628fb196cad
SHA1: 264310fd7b2cd76738787dc0b9f7ea2e3b11adc1
SHA256:188976721ead8e8627eb6d8389d500dccc0c9bebd885268a3047180274a6031e
Referenced In Project/Scope: Zonky Maven Plugin:compile
postgresql-42.7.4.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/de.funfried.maven.plugins/zonky-maven-plugin@0.7-SNAPSHOT

Identifiers

slf4j-api-1.7.36.jar

Description:

The slf4j API

File Path: /home/runner/.m2/repository/org/slf4j/slf4j-api/1.7.36/slf4j-api-1.7.36.jar
MD5: 872da51f5de7f3923da4de871d57fd85
SHA1: 6c62681a2f655b49963a5983b8b0950a6120ae14
SHA256:d3ef575e3e4979678dc01bf1dcce51021493b4d11fb7f1be8ad982877c16a1c0
Referenced In Project/Scope: Zonky Maven Plugin:compile
slf4j-api-1.7.36.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/io.zonky.test/embedded-postgres@2.0.7

Identifiers

xz-1.9.jar

Description:

XZ data compression

License:

Public Domain
File Path: /home/runner/.m2/repository/org/tukaani/xz/1.9/xz-1.9.jar
MD5: 57c2fbfeb55e307ccae52e5322082e02
SHA1: 1ea4bec1a921180164852c65006d928617bd2caf
SHA256:211b306cfc44f8f96df3a0a3ddaf75ba8c5289eed77d60d72f889bb855f535e5
Referenced In Project/Scope: Zonky Maven Plugin:compile
xz-1.9.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/io.zonky.test/embedded-postgres@2.0.7

Identifiers



This report contains data retrieved from the National Vulnerability Database.
This report may contain data retrieved from the CISA Known Exploited Vulnerability Catalog.
This report may contain data retrieved from the Github Advisory Database (via NPM Audit API).
This report may contain data retrieved from RetireJS.
This report may contain data retrieved from the Sonatype OSS Index.