Dependency-Check is an open source tool performing a best effort analysis of 3rd party dependencies;
false positives and false negatives may exist in the analysis performed by the tool. Use of the tool and
the reporting provided constitutes acceptance for use in an AS IS condition, and there are NO warranties,
implied or otherwise, with regard to the analysis or its use. Any use of the tool and the reporting provided
is at the user’s risk. In no event shall the copyright holder or OWASP be held liable for any damages whatsoever
arising out of or in connection with the use of this tool, the analysis performed, or the resulting report.
Scan Information (
show all ):
dependency-check version : 12.1.8Report Generated On : Thu, 30 Oct 2025 12:20:45 GMTDependencies Scanned : 22 (22 unique)Vulnerable Dependencies : 1 Vulnerabilities Found : 1Vulnerabilities Suppressed : 0 ... NVD API Last Checked : 2025-10-30T05:36:27ZNVD API Last Modified : 2025-10-30T05:15:39ZSummary Summary of Vulnerable Dependencies (click to show all)
Description:
Implementation License:
http://www.eclipse.org/org/documents/edl-v10.php File Path: /root/.gradle/caches/modules-2/files-2.1/org.eclipse.angus/angus-activation/2.0.3/7f80607ea5014fef0b1779e6c33d63a88a45a563/angus-activation-2.0.3.jar
MD5: ad20392145690b36b4f950fe31a31a2a
SHA1: 7f80607ea5014fef0b1779e6c33d63a88a45a563
SHA256: a6bd35c538cf90fff941ad6258c40c08fca0b5c9c3f536c657114f27ce0527a7
Referenced In Project/Scope: BMUPruefBibliothek:runtimeClasspath
angus-activation-2.0.3.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.glassfish.jaxb/jaxb-runtime@4.0.6
Evidence Type Source Name Value Confidence Vendor file name angus-activation High Vendor gradle artifactid angus-activation Highest Vendor gradle groupid org.eclipse.angus Highest Vendor jar package name activation Highest Vendor jar package name angus Highest Vendor jar package name eclipse Highest Vendor Manifest bundle-docurl https://www.eclipse.org Low Vendor Manifest bundle-symbolicname angus-activation Medium Vendor Manifest extension-name org.eclipse.angus Medium Vendor Manifest implementation-build-id 2.0.3-RELEASE-6eff4c5 Low Vendor Manifest Implementation-Vendor Eclipse Foundation High Vendor Manifest provide-capability osgi.serviceloader;osgi.serviceloader="jakarta.activation.spi.MailcapRegistryProvider",osgi.serviceloader;osgi.serviceloader="jakarta.activation.spi.MimeTypeRegistryProvider" Low Vendor Manifest specification-vendor Eclipse Foundation Low Vendor pom artifactid angus-activation Low Vendor pom groupid org.eclipse.angus Highest Vendor pom name Angus Activation Registries High Vendor pom parent-artifactid angus-activation-project Low Product file name angus-activation High Product gradle artifactid angus-activation Highest Product jar package name activation Highest Product jar package name angus Highest Product jar package name eclipse Highest Product Manifest bundle-docurl https://www.eclipse.org Low Product Manifest Bundle-Name Angus Activation Registries Medium Product Manifest bundle-symbolicname angus-activation Medium Product Manifest extension-name org.eclipse.angus Medium Product Manifest implementation-build-id 2.0.3-RELEASE-6eff4c5 Low Product Manifest Implementation-Title Angus Activation Registries High Product Manifest provide-capability osgi.serviceloader;osgi.serviceloader="jakarta.activation.spi.MailcapRegistryProvider",osgi.serviceloader;osgi.serviceloader="jakarta.activation.spi.MimeTypeRegistryProvider" Low Product Manifest specification-title Jakarta Activation Specification Medium Product pom artifactid angus-activation Highest Product pom groupid org.eclipse.angus Highest Product pom name Angus Activation Registries High Product pom parent-artifactid angus-activation-project Medium Version file version 2.0.3 High Version gradle version 2.0.3 Highest Version Manifest Bundle-Version 2.0.3 High Version pom version 2.0.3 Highest
Description:
The Bouncy Castle Java APIs for CMS, PKCS, EAC, TSP, CMP, CRMF, OCSP, and certificate generation. This jar contains APIs for Java 1.8 and later. The APIs are designed primarily to be used in conjunction with the BC Java provider but may also be used with other providers providing cryptographic services. License:
Bouncy Castle Licence: https://www.bouncycastle.org/licence.html File Path: /root/.gradle/caches/modules-2/files-2.1/org.bouncycastle/bcpkix-jdk18on/1.82/ad7b7155abac3e4e4f73579d5176c11f7659c560/bcpkix-jdk18on-1.82.jar
MD5: 9958d2f8aa097a31806756542e461079
SHA1: ad7b7155abac3e4e4f73579d5176c11f7659c560
SHA256: bdc723e20834832ac6af136cb5b5ff05e43b71d4fa151cc6510d9212ee086e63
Referenced In Project/Scope: BMUPruefBibliothek:runtimeClasspath
bcpkix-jdk18on-1.82.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/de.consist.bmu.rule/BMUPruefBibliothek@3.0.5
Evidence Type Source Name Value Confidence Vendor file name bcpkix-jdk18on High Vendor gradle artifactid bcpkix-jdk18on Highest Vendor gradle groupid org.bouncycastle Highest Vendor jar package name bouncycastle Low Vendor Manifest application-library-allowable-codebase * Low Vendor Manifest bundle-requiredexecutionenvironment JavaSE-1.8 Low Vendor Manifest bundle-symbolicname bcpkix Medium Vendor Manifest caller-allowable-codebase * Low Vendor Manifest codebase * Low Vendor Manifest multi-release true Low Vendor Manifest permissions all-permissions Low Vendor Manifest trusted-library true Low Vendor pom artifactid bcpkix-jdk18on Low Vendor pom developer email feedback-crypto@bouncycastle.org Low Vendor pom developer id feedback-crypto Medium Vendor pom developer name The Legion of the Bouncy Castle Inc. Medium Vendor pom groupid org.bouncycastle Highest Vendor pom name Bouncy Castle PKIX, CMS, EAC, TSP, PKCS, OCSP, CMP, and CRMF APIs High Vendor pom url https://www.bouncycastle.org/download/bouncy-castle-java/ Highest Product file name bcpkix-jdk18on High Product gradle artifactid bcpkix-jdk18on Highest Product Manifest application-library-allowable-codebase * Low Product Manifest Bundle-Name bcpkix Medium Product Manifest bundle-requiredexecutionenvironment JavaSE-1.8 Low Product Manifest bundle-symbolicname bcpkix Medium Product Manifest caller-allowable-codebase * Low Product Manifest codebase * Low Product Manifest multi-release true Low Product Manifest permissions all-permissions Low Product Manifest trusted-library true Low Product pom artifactid bcpkix-jdk18on Highest Product pom developer email feedback-crypto@bouncycastle.org Low Product pom developer id feedback-crypto Low Product pom developer name The Legion of the Bouncy Castle Inc. Low Product pom groupid org.bouncycastle Highest Product pom name Bouncy Castle PKIX, CMS, EAC, TSP, PKCS, OCSP, CMP, and CRMF APIs High Product pom url https://www.bouncycastle.org/download/bouncy-castle-java/ Medium Version file version 1.82 High Version gradle version 1.82 Highest Version Manifest Bundle-Version 1.82 High Version pom version 1.82 Highest
Description:
The Bouncy Castle Crypto package is a Java implementation of cryptographic algorithms. This jar contains the JCA/JCE provider and low-level API for the BC Java version 1.82 for Java 1.8 and later. License:
Bouncy Castle Licence: https://www.bouncycastle.org/licence.html File Path: /root/.gradle/caches/modules-2/files-2.1/org.bouncycastle/bcprov-jdk18on/1.82/e1118397395d21909a1b7b15120d0c2a68d7fd0c/bcprov-jdk18on-1.82.jar
MD5: 73520ba13118979db17136db32a8c401
SHA1: e1118397395d21909a1b7b15120d0c2a68d7fd0c
SHA256: 14cde2fdfaa8890480a8e5b67aceef0c90f96682c1e23c133bafdc9e0b3255ce
Referenced In Project/Scope: BMUPruefBibliothek:runtimeClasspath
bcprov-jdk18on-1.82.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.bouncycastle/bcpkix-jdk18on@1.82 pkg:maven/org.bouncycastle/bcutil-jdk18on@1.82 pkg:maven/de.consist.bmu.rule/BMUPruefBibliothek@3.0.5 Evidence Type Source Name Value Confidence Vendor file name bcprov-jdk18on High Vendor gradle artifactid bcprov-jdk18on Highest Vendor gradle groupid org.bouncycastle Highest Vendor jar package name bouncycastle Low Vendor Manifest application-library-allowable-codebase * Low Vendor Manifest bundle-requiredexecutionenvironment JavaSE-1.8 Low Vendor Manifest bundle-symbolicname bcprov Medium Vendor Manifest caller-allowable-codebase * Low Vendor Manifest codebase * Low Vendor Manifest multi-release true Low Vendor Manifest permissions all-permissions Low Vendor Manifest trusted-library true Low Vendor pom artifactid bcprov-jdk18on Low Vendor pom developer email feedback-crypto@bouncycastle.org Low Vendor pom developer id feedback-crypto Medium Vendor pom developer name The Legion of the Bouncy Castle Inc. Medium Vendor pom groupid org.bouncycastle Highest Vendor pom name Bouncy Castle Provider High Vendor pom url https://www.bouncycastle.org/download/bouncy-castle-java/ Highest Product file name bcprov-jdk18on High Product gradle artifactid bcprov-jdk18on Highest Product Manifest application-library-allowable-codebase * Low Product Manifest Bundle-Name bcprov Medium Product Manifest bundle-requiredexecutionenvironment JavaSE-1.8 Low Product Manifest bundle-symbolicname bcprov Medium Product Manifest caller-allowable-codebase * Low Product Manifest codebase * Low Product Manifest multi-release true Low Product Manifest permissions all-permissions Low Product Manifest trusted-library true Low Product pom artifactid bcprov-jdk18on Highest Product pom developer email feedback-crypto@bouncycastle.org Low Product pom developer id feedback-crypto Low Product pom developer name The Legion of the Bouncy Castle Inc. Low Product pom groupid org.bouncycastle Highest Product pom name Bouncy Castle Provider High Product pom url https://www.bouncycastle.org/download/bouncy-castle-java/ Medium Version file version 1.82 High Version gradle version 1.82 Highest Version Manifest Bundle-Version 1.82 High Version pom version 1.82 Highest
Description:
The Bouncy Castle Java APIs for ASN.1 extension and utility APIs used to support bcpkix and bctls. This jar contains APIs for Java 1.8 and later. License:
Bouncy Castle Licence: https://www.bouncycastle.org/licence.html File Path: /root/.gradle/caches/modules-2/files-2.1/org.bouncycastle/bcutil-jdk18on/1.82/1850911d674c91ce6444783ff10478e2c6e9bbf9/bcutil-jdk18on-1.82.jar
MD5: ca33a7c1e7e60f68333e127c75f5ab45
SHA1: 1850911d674c91ce6444783ff10478e2c6e9bbf9
SHA256: 4420691958ad1c0ba275a6d6d8a6317adbdbdc9277055b6a72aa89c88cda8c7d
Referenced In Project/Scope: BMUPruefBibliothek:runtimeClasspath
bcutil-jdk18on-1.82.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.bouncycastle/bcpkix-jdk18on@1.82 pkg:maven/de.consist.bmu.rule/BMUPruefBibliothek@3.0.5 Evidence Type Source Name Value Confidence Vendor file name bcutil-jdk18on High Vendor gradle artifactid bcutil-jdk18on Highest Vendor gradle groupid org.bouncycastle Highest Vendor jar package name bouncycastle Low Vendor jar package name oer Low Vendor Manifest application-library-allowable-codebase * Low Vendor Manifest bundle-requiredexecutionenvironment JavaSE-1.8 Low Vendor Manifest bundle-symbolicname bcutil Medium Vendor Manifest caller-allowable-codebase * Low Vendor Manifest codebase * Low Vendor Manifest multi-release true Low Vendor Manifest permissions all-permissions Low Vendor Manifest trusted-library true Low Vendor pom artifactid bcutil-jdk18on Low Vendor pom developer email feedback-crypto@bouncycastle.org Low Vendor pom developer id feedback-crypto Medium Vendor pom developer name The Legion of the Bouncy Castle Inc. Medium Vendor pom groupid org.bouncycastle Highest Vendor pom name Bouncy Castle ASN.1 Extension and Utility APIs High Vendor pom url https://www.bouncycastle.org/download/bouncy-castle-java/ Highest Product file name bcutil-jdk18on High Product gradle artifactid bcutil-jdk18on Highest Product jar package name oer Low Product Manifest application-library-allowable-codebase * Low Product Manifest Bundle-Name bcutil Medium Product Manifest bundle-requiredexecutionenvironment JavaSE-1.8 Low Product Manifest bundle-symbolicname bcutil Medium Product Manifest caller-allowable-codebase * Low Product Manifest codebase * Low Product Manifest multi-release true Low Product Manifest permissions all-permissions Low Product Manifest trusted-library true Low Product pom artifactid bcutil-jdk18on Highest Product pom developer email feedback-crypto@bouncycastle.org Low Product pom developer id feedback-crypto Low Product pom developer name The Legion of the Bouncy Castle Inc. Low Product pom groupid org.bouncycastle Highest Product pom name Bouncy Castle ASN.1 Extension and Utility APIs High Product pom url https://www.bouncycastle.org/download/bouncy-castle-java/ Medium Version file version 1.82 High Version gradle version 1.82 Highest Version Manifest Bundle-Version 1.82 High Version pom version 1.82 Highest
Description:
The Apache Commons Codec component contains encoders and decoders for
formats such as Base16, Base32, Base64, digest, and Hexadecimal. In addition to these
widely used encoders and decoders, the codec package also maintains a
collection of phonetic encoding utilities.
License:
https://www.apache.org/licenses/LICENSE-2.0.txt File Path: /root/.gradle/caches/modules-2/files-2.1/commons-codec/commons-codec/1.19.0/8c0dbe3ae883fceda9b50a6c76e745e548073388/commons-codec-1.19.0.jar
MD5: e46fa78c69544eb6239c4e8447e72544
SHA1: 8c0dbe3ae883fceda9b50a6c76e745e548073388
SHA256: 5c3881e4f556855e9c532927ee0c9dfde94cc66760d5805c031a59887070af5f
Referenced In Project/Scope: BMUPruefBibliothek:runtimeClasspath
commons-codec-1.19.0.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.apache.santuario/xmlsec@4.0.4 pkg:maven/de.consist.bmu.rule/BMUPruefBibliothek@3.0.5 Evidence Type Source Name Value Confidence Vendor file name commons-codec High Vendor gradle artifactid commons-codec Highest Vendor gradle groupid commons-codec Highest Vendor jar package name apache Highest Vendor jar package name codec Highest Vendor jar package name commons Highest Vendor jar package name digest Highest Vendor Manifest automatic-module-name org.apache.commons.codec Medium Vendor Manifest build-jdk-spec 21 Low Vendor Manifest bundle-docurl https://commons.apache.org/proper/commons-codec/ Low Vendor Manifest bundle-symbolicname org.apache.commons.commons-codec Medium Vendor Manifest Implementation-Vendor The Apache Software Foundation High Vendor Manifest multi-release true Low Vendor Manifest specification-vendor The Apache Software Foundation Low Vendor pom artifactid commons-codec Low Vendor pom developer email bayard@apache.org Low Vendor pom developer email chtompki@apache.org Low Vendor pom developer email dgraham@apache.org Low Vendor pom developer email dlr@finemaltcoding.com Low Vendor pom developer email ggregory at apache.org Low Vendor pom developer email jon@collab.net Low Vendor pom developer email julius@apache.org Low Vendor pom developer email mattsicker@apache.org Low Vendor pom developer email rwaldhoff@apache.org Low Vendor pom developer email sanders@totalsync.com Low Vendor pom developer email tn@apache.org Low Vendor pom developer email tobrien@apache.org Low Vendor pom developer id bayard Medium Vendor pom developer id chtompki Medium Vendor pom developer id dgraham Medium Vendor pom developer id dlr Medium Vendor pom developer id ggregory Medium Vendor pom developer id jon Medium Vendor pom developer id julius Medium Vendor pom developer id mattsicker Medium Vendor pom developer id rwaldhoff Medium Vendor pom developer id sanders Medium Vendor pom developer id tn Medium Vendor pom developer id tobrien Medium Vendor pom developer name Daniel Rall Medium Vendor pom developer name David Graham Medium Vendor pom developer name Gary Gregory Medium Vendor pom developer name Henri Yandell Medium Vendor pom developer name Jon S. Stevens Medium Vendor pom developer name Julius Davies Medium Vendor pom developer name Matt Sicker Medium Vendor pom developer name Rob Tompkins Medium Vendor pom developer name Rodney Waldhoff Medium Vendor pom developer name Scott Sanders Medium Vendor pom developer name Thomas Neidhart Medium Vendor pom developer name Tim OBrien Medium Vendor pom developer org The Apache Software Foundation Medium Vendor pom developer org URL http://juliusdavies.ca/ Medium Vendor pom developer org URL https://www.apache.org/ Medium Vendor pom groupid commons-codec Highest Vendor pom name Apache Commons Codec High Vendor pom parent-artifactid commons-parent Low Vendor pom parent-groupid org.apache.commons Medium Vendor pom url https://commons.apache.org/proper/commons-codec/ Highest Product file name commons-codec High Product gradle artifactid commons-codec Highest Product jar package name apache Highest Product jar package name codec Highest Product jar package name commons Highest Product jar package name digest Highest Product Manifest automatic-module-name org.apache.commons.codec Medium Product Manifest build-jdk-spec 21 Low Product Manifest bundle-docurl https://commons.apache.org/proper/commons-codec/ Low Product Manifest Bundle-Name Apache Commons Codec Medium Product Manifest bundle-symbolicname org.apache.commons.commons-codec Medium Product Manifest Implementation-Title Apache Commons Codec High Product Manifest multi-release true Low Product Manifest specification-title Apache Commons Codec Medium Product pom artifactid commons-codec Highest Product pom developer email bayard@apache.org Low Product pom developer email chtompki@apache.org Low Product pom developer email dgraham@apache.org Low Product pom developer email dlr@finemaltcoding.com Low Product pom developer email ggregory at apache.org Low Product pom developer email jon@collab.net Low Product pom developer email julius@apache.org Low Product pom developer email mattsicker@apache.org Low Product pom developer email rwaldhoff@apache.org Low Product pom developer email sanders@totalsync.com Low Product pom developer email tn@apache.org Low Product pom developer email tobrien@apache.org Low Product pom developer id bayard Low Product pom developer id chtompki Low Product pom developer id dgraham Low Product pom developer id dlr Low Product pom developer id ggregory Low Product pom developer id jon Low Product pom developer id julius Low Product pom developer id mattsicker Low Product pom developer id rwaldhoff Low Product pom developer id sanders Low Product pom developer id tn Low Product pom developer id tobrien Low Product pom developer name Daniel Rall Low Product pom developer name David Graham Low Product pom developer name Gary Gregory Low Product pom developer name Henri Yandell Low Product pom developer name Jon S. Stevens Low Product pom developer name Julius Davies Low Product pom developer name Matt Sicker Low Product pom developer name Rob Tompkins Low Product pom developer name Rodney Waldhoff Low Product pom developer name Scott Sanders Low Product pom developer name Thomas Neidhart Low Product pom developer name Tim OBrien Low Product pom developer org The Apache Software Foundation Low Product pom developer org URL http://juliusdavies.ca/ Low Product pom developer org URL https://www.apache.org/ Low Product pom groupid commons-codec Highest Product pom name Apache Commons Codec High Product pom parent-artifactid commons-parent Medium Product pom parent-groupid org.apache.commons Medium Product pom url https://commons.apache.org/proper/commons-codec/ Medium Version file version 1.19.0 High Version gradle version 1.19.0 Highest Version Manifest Bundle-Version 1.19.0 High Version Manifest Implementation-Version 1.19.0 High Version pom parent-version 1.19.0 Low Version pom version 1.19.0 Highest
Description:
Apache Commons Logging is a thin adapter allowing configurable bridging to other,
well-known logging systems. License:
https://www.apache.org/licenses/LICENSE-2.0.txt File Path: /root/.gradle/caches/modules-2/files-2.1/commons-logging/commons-logging/1.3.5/a3fcc5d3c29b2b03433aa2d2f2d2c1b1638924a1/commons-logging-1.3.5.jar
MD5: 9ca067b073153c86c2da350c0f2cdf70
SHA1: a3fcc5d3c29b2b03433aa2d2f2d2c1b1638924a1
SHA256: 6d7a744e4027649fbb50895df9497d109f98c766a637062fe8d2eabbb3140ba4
Referenced In Project/Scope: BMUPruefBibliothek:runtimeClasspath
commons-logging-1.3.5.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/de.consist.bmu.rule/BMUPruefBibliothek@3.0.5
Evidence Type Source Name Value Confidence Vendor file name commons-logging High Vendor gradle artifactid commons-logging Highest Vendor gradle groupid commons-logging Highest Vendor jar package name apache Highest Vendor jar package name commons Highest Vendor jar package name logging Highest Vendor Manifest automatic-module-name org.apache.commons.logging Medium Vendor Manifest build-jdk-spec 21 Low Vendor Manifest bundle-docurl https://commons.apache.org/proper/commons-logging/ Low Vendor Manifest bundle-symbolicname org.apache.commons.commons-logging Medium Vendor Manifest Implementation-Vendor The Apache Software Foundation High Vendor Manifest multi-release true Low Vendor Manifest specification-vendor The Apache Software Foundation Low Vendor pom artifactid commons-logging Low Vendor pom developer email baliuka@apache.org Low Vendor pom developer email costin@apache.org Low Vendor pom developer email craigmcc@apache.org Low Vendor pom developer email dennisl@apache.org Low Vendor pom developer email donaldp@apache.org Low Vendor pom developer email ggregory at apache.org Low Vendor pom developer email morgand@apache.org Low Vendor pom developer email rdonkin@apache.org Low Vendor pom developer email rsitze@apache.org Low Vendor pom developer email rwaldhoff@apache.org Low Vendor pom developer email sanders@apache.org Low Vendor pom developer email skitching@apache.org Low Vendor pom developer email tn@apache.org Low Vendor pom developer id baliuka Medium Vendor pom developer id bstansberry Medium Vendor pom developer id costin Medium Vendor pom developer id craigmcc Medium Vendor pom developer id dennisl Medium Vendor pom developer id donaldp Medium Vendor pom developer id ggregory Medium Vendor pom developer id morgand Medium Vendor pom developer id rdonkin Medium Vendor pom developer id rsitze Medium Vendor pom developer id rwaldhoff Medium Vendor pom developer id sanders Medium Vendor pom developer id skitching Medium Vendor pom developer id tn Medium Vendor pom developer name Brian Stansberry Medium Vendor pom developer name Costin Manolache Medium Vendor pom developer name Craig McClanahan Medium Vendor pom developer name Dennis Lundberg Medium Vendor pom developer name Gary Gregory Medium Vendor pom developer name Juozas Baliuka Medium Vendor pom developer name Morgan Delagrange Medium Vendor pom developer name Peter Donald Medium Vendor pom developer name Richard Sitze Medium Vendor pom developer name Robert Burrell Donkin Medium Vendor pom developer name Rodney Waldhoff Medium Vendor pom developer name Scott Sanders Medium Vendor pom developer name Simon Kitching Medium Vendor pom developer name Thomas Neidhart Medium Vendor pom developer org Apache Medium Vendor pom developer org The Apache Software Foundation Medium Vendor pom developer org URL https://www.apache.org/ Medium Vendor pom groupid commons-logging Highest Vendor pom name Apache Commons Logging High Vendor pom parent-artifactid commons-parent Low Vendor pom parent-groupid org.apache.commons Medium Vendor pom url https://commons.apache.org/proper/commons-logging/ Highest Product file name commons-logging High Product gradle artifactid commons-logging Highest Product jar package name apache Highest Product jar package name commons Highest Product jar package name logging Highest Product Manifest automatic-module-name org.apache.commons.logging Medium Product Manifest build-jdk-spec 21 Low Product Manifest bundle-docurl https://commons.apache.org/proper/commons-logging/ Low Product Manifest Bundle-Name Apache Commons Logging Medium Product Manifest bundle-symbolicname org.apache.commons.commons-logging Medium Product Manifest Implementation-Title Apache Commons Logging High Product Manifest multi-release true Low Product Manifest specification-title Apache Commons Logging Medium Product pom artifactid commons-logging Highest Product pom developer email baliuka@apache.org Low Product pom developer email costin@apache.org Low Product pom developer email craigmcc@apache.org Low Product pom developer email dennisl@apache.org Low Product pom developer email donaldp@apache.org Low Product pom developer email ggregory at apache.org Low Product pom developer email morgand@apache.org Low Product pom developer email rdonkin@apache.org Low Product pom developer email rsitze@apache.org Low Product pom developer email rwaldhoff@apache.org Low Product pom developer email sanders@apache.org Low Product pom developer email skitching@apache.org Low Product pom developer email tn@apache.org Low Product pom developer id baliuka Low Product pom developer id bstansberry Low Product pom developer id costin Low Product pom developer id craigmcc Low Product pom developer id dennisl Low Product pom developer id donaldp Low Product pom developer id ggregory Low Product pom developer id morgand Low Product pom developer id rdonkin Low Product pom developer id rsitze Low Product pom developer id rwaldhoff Low Product pom developer id sanders Low Product pom developer id skitching Low Product pom developer id tn Low Product pom developer name Brian Stansberry Low Product pom developer name Costin Manolache Low Product pom developer name Craig McClanahan Low Product pom developer name Dennis Lundberg Low Product pom developer name Gary Gregory Low Product pom developer name Juozas Baliuka Low Product pom developer name Morgan Delagrange Low Product pom developer name Peter Donald Low Product pom developer name Richard Sitze Low Product pom developer name Robert Burrell Donkin Low Product pom developer name Rodney Waldhoff Low Product pom developer name Scott Sanders Low Product pom developer name Simon Kitching Low Product pom developer name Thomas Neidhart Low Product pom developer org Apache Low Product pom developer org The Apache Software Foundation Low Product pom developer org URL https://www.apache.org/ Low Product pom groupid commons-logging Highest Product pom name Apache Commons Logging High Product pom parent-artifactid commons-parent Medium Product pom parent-groupid org.apache.commons Medium Product pom url https://commons.apache.org/proper/commons-logging/ Medium Version file version 1.3.5 High Version gradle version 1.3.5 Highest Version Manifest Bundle-Version 1.3.5 High Version Manifest Implementation-Version 1.3.5 High Version pom parent-version 1.3.5 Low Version pom version 1.3.5 Highest
Description:
istack common utility code License:
http://www.eclipse.org/org/documents/edl-v10.php File Path: /root/.gradle/caches/modules-2/files-2.1/com.sun.istack/istack-commons-runtime/4.1.2/18ec117c85f3ba0ac65409136afa8e42bc74e739/istack-commons-runtime-4.1.2.jar
MD5: 535154ef647af2a52478c4debec93659
SHA1: 18ec117c85f3ba0ac65409136afa8e42bc74e739
SHA256: 7fd6792361f4dd00f8c56af4a20cecc0066deea4a8f3dec38348af23fc2296ee
Referenced In Project/Scope: BMUPruefBibliothek:runtimeClasspath
istack-commons-runtime-4.1.2.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.glassfish.jaxb/jaxb-runtime@4.0.6
Evidence Type Source Name Value Confidence Vendor file name istack-commons-runtime High Vendor gradle artifactid istack-commons-runtime Highest Vendor gradle groupid com.sun.istack Highest Vendor jar package name istack Highest Vendor jar package name sun Highest Vendor jar (hint) package name oracle Highest Vendor Manifest bundle-docurl https://www.eclipse.org Low Vendor Manifest bundle-symbolicname com.sun.istack.commons-runtime Medium Vendor Manifest implementation-build-id 4.1.2 - 343a28e Low Vendor Manifest Implementation-Vendor Eclipse Foundation High Vendor Manifest Implementation-Vendor-Id com.sun.istack Medium Vendor pom artifactid istack-commons-runtime Low Vendor pom groupid com.sun.istack Highest Vendor pom name istack common utility code runtime High Vendor pom parent-artifactid istack-commons Low Product file name istack-commons-runtime High Product gradle artifactid istack-commons-runtime Highest Product jar package name istack Highest Product jar package name sun Highest Product Manifest bundle-docurl https://www.eclipse.org Low Product Manifest Bundle-Name istack common utility code runtime Medium Product Manifest bundle-symbolicname com.sun.istack.commons-runtime Medium Product Manifest implementation-build-id 4.1.2 - 343a28e Low Product pom artifactid istack-commons-runtime Highest Product pom groupid com.sun.istack Highest Product pom name istack common utility code runtime High Product pom parent-artifactid istack-commons Medium Version file version 4.1.2 High Version gradle version 4.1.2 Highest Version Manifest Bundle-Version 4.1.2 High Version Manifest implementation-build-id 4.1.2 Low Version pom version 4.1.2 Highest
Description:
Specification License:
EDL 1.0: http://www.eclipse.org/org/documents/edl-v10.php File Path: /root/.gradle/caches/modules-2/files-2.1/jakarta.activation/jakarta.activation-api/2.1.4/9e5c2a0d75dde71a0bedc4dbdbe47b78a5dc50f8/jakarta.activation-api-2.1.4.jar
MD5: bc1602eee7bc61a0b86f14bbbb0cc794
SHA1: 9e5c2a0d75dde71a0bedc4dbdbe47b78a5dc50f8
SHA256: c9db52100ce6c8aac95cc39075f95720d2e561b11f8051b81c121ad4effd7004
Referenced In Project/Scope: BMUPruefBibliothek:runtimeClasspath
jakarta.activation-api-2.1.4.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/jakarta.xml.bind/jakarta.xml.bind-api@4.0.4 pkg:maven/org.glassfish.jaxb/jaxb-runtime@4.0.6 Evidence Type Source Name Value Confidence Vendor file name jakarta.activation-api High Vendor gradle artifactid jakarta.activation-api Highest Vendor gradle groupid jakarta.activation Highest Vendor jar package name activation Highest Vendor jar package name jakarta Highest Vendor Manifest bundle-docurl https://www.eclipse.org Low Vendor Manifest bundle-symbolicname jakarta.activation-api Medium Vendor Manifest extension-name jakarta.activation Medium Vendor Manifest implementation-build-id 3dad341 Low Vendor Manifest Implementation-Vendor Eclipse Foundation High Vendor Manifest specification-vendor Eclipse Foundation Low Vendor pom artifactid jakarta.activation-api Low Vendor pom developer email bill.shannon@oracle.com Low Vendor pom developer id shannon Medium Vendor pom developer name Bill Shannon Medium Vendor pom developer org Oracle Medium Vendor pom groupid jakarta.activation Highest Vendor pom name Jakarta Activation API High Vendor pom parent-artifactid project Low Vendor pom parent-groupid org.eclipse.ee4j Medium Vendor pom url jakartaee/jaf-api Highest Vendor pom (hint) developer org sun Medium Product file name jakarta.activation-api High Product gradle artifactid jakarta.activation-api Highest Product jar package name activation Highest Product jar package name jakarta Highest Product Manifest bundle-docurl https://www.eclipse.org Low Product Manifest Bundle-Name Jakarta Activation API Medium Product Manifest bundle-symbolicname jakarta.activation-api Medium Product Manifest extension-name jakarta.activation Medium Product Manifest implementation-build-id 3dad341 Low Product Manifest Implementation-Title Jakarta Activation API High Product Manifest specification-title Jakarta Activation Specification Medium Product pom artifactid jakarta.activation-api Highest Product pom developer email bill.shannon@oracle.com Low Product pom developer id shannon Low Product pom developer name Bill Shannon Low Product pom developer org Oracle Low Product pom groupid jakarta.activation Highest Product pom name Jakarta Activation API High Product pom parent-artifactid project Medium Product pom parent-groupid org.eclipse.ee4j Medium Product pom url jakartaee/jaf-api High Version file version 2.1.4 High Version gradle version 2.1.4 Highest Version Manifest Bundle-Version 2.1.4 High Version pom parent-version 2.1.4 Low Version pom version 2.1.4 Highest
Description:
Jakarta XML Binding API 4.0 Design Specification License:
http://www.eclipse.org/org/documents/edl-v10.php File Path: /root/.gradle/caches/modules-2/files-2.1/jakarta.xml.bind/jakarta.xml.bind-api/4.0.4/d6d2327f3817d9a33a3b6b8f2e15a96bc2e7afdc/jakarta.xml.bind-api-4.0.4.jar
MD5: 6dd465a232e545193ab8ab77cc4fbdb9
SHA1: d6d2327f3817d9a33a3b6b8f2e15a96bc2e7afdc
SHA256: c507ca69a8c6dd11bf4afeec9e0d412c4fa3933fffb0a84680ea5727e8472124
Referenced In Project/Scope: BMUPruefBibliothek:runtimeClasspath
jakarta.xml.bind-api-4.0.4.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.glassfish.jaxb/jaxb-runtime@4.0.6 pkg:maven/de.consist.bmu.rule/BMUPruefBibliothek@3.0.5 Evidence Type Source Name Value Confidence Vendor file name jakarta.xml.bind-api High Vendor gradle artifactid jakarta.xml.bind-api Highest Vendor gradle groupid jakarta.xml.bind Highest Vendor jar package name bind Highest Vendor jar package name jakarta Highest Vendor jar package name xml Highest Vendor Manifest bundle-docurl https://www.eclipse.org Low Vendor Manifest bundle-symbolicname jakarta.xml.bind-api Medium Vendor Manifest extension-name jakarta.xml.bind Medium Vendor Manifest implementation-build-id 1df980a Low Vendor Manifest specification-vendor Eclipse Foundation Low Vendor pom artifactid jakarta.xml.bind-api Low Vendor pom groupid jakarta.xml.bind Highest Vendor pom name Jakarta XML Binding API High Vendor pom parent-artifactid jakarta.xml.bind-api-parent Low Product file name jakarta.xml.bind-api High Product gradle artifactid jakarta.xml.bind-api Highest Product jar package name bind Highest Product jar package name jakarta Highest Product jar package name xml Highest Product Manifest bundle-docurl https://www.eclipse.org Low Product Manifest Bundle-Name Jakarta XML Binding API Medium Product Manifest bundle-symbolicname jakarta.xml.bind-api Medium Product Manifest extension-name jakarta.xml.bind Medium Product Manifest implementation-build-id 1df980a Low Product pom artifactid jakarta.xml.bind-api Highest Product pom groupid jakarta.xml.bind Highest Product pom name Jakarta XML Binding API High Product pom parent-artifactid jakarta.xml.bind-api-parent Medium Version file version 4.0.4 High Version gradle version 4.0.4 Highest Version Manifest Bundle-Version 4.0.4 High Version Manifest Implementation-Version 4.0.4 High Version pom version 4.0.4 Highest
File Path: /root/.gradle/caches/modules-2/files-2.1/com.jamonapi/jamon/3.0.1/bfbeeab2688d67e4eda0f3d0cb26d50330058662/jamon-3.0.1.jarMD5: 582e2b65a294b47bc6fc6d1d7d919a2fSHA1: bfbeeab2688d67e4eda0f3d0cb26d50330058662SHA256: b4adac507f526cfeb6e94fbe0008f72059bd77ed9efc33143564b2b3de5dad6aReferenced In Project/Scope: BMUPruefBibliothek:runtimeClasspathjamon-3.0.1.jar is in the transitive dependency tree of the listed items. Included by:
Evidence Type Source Name Value Confidence Vendor file name jamon High Vendor gradle artifactid jamon Highest Vendor gradle groupid com.jamonapi Highest Vendor jar package name jamonapi Highest Vendor Manifest build-jdk-spec 11 Low Vendor pom artifactid jamon Low Vendor pom groupid com.jamonapi Highest Vendor pom name JAMon Core High Vendor pom parent-artifactid jamon-parent Low Product file name jamon High Product gradle artifactid jamon Highest Product jar package name jamonapi Highest Product Manifest build-jdk-spec 11 Low Product pom artifactid jamon Highest Product pom groupid com.jamonapi Highest Product pom name JAMon Core High Product pom parent-artifactid jamon-parent Medium Version file version 3.0.1 High Version gradle version 3.0.1 Highest Version pom version 3.0.1 Highest
Description:
JAXB Core module. Contains sources required by XJC, JXC and Runtime modules. License:
http://www.eclipse.org/org/documents/edl-v10.php File Path: /root/.gradle/caches/modules-2/files-2.1/org.glassfish.jaxb/jaxb-core/4.0.6/8e61282303777fc98a00cc3affd0560d68748a75/jaxb-core-4.0.6.jar
MD5: e36c915cf47342b4fe31ffba3407b928
SHA1: 8e61282303777fc98a00cc3affd0560d68748a75
SHA256: ebbd274207b4860d0dc6e2d44d6dbdb5945cede01222d2e50661d45f5d46c0f7
Referenced In Project/Scope: BMUPruefBibliothek:runtimeClasspath
jaxb-core-4.0.6.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.glassfish.jaxb/jaxb-runtime@4.0.6
Evidence Type Source Name Value Confidence Vendor file name jaxb-core High Vendor gradle artifactid jaxb-core Highest Vendor gradle groupid org.glassfish.jaxb Highest Vendor jar package name core Highest Vendor jar package name glassfish Highest Vendor jar package name jaxb Highest Vendor Manifest bundle-docurl https://www.eclipse.org Low Vendor Manifest bundle-symbolicname org.glassfish.jaxb.core Medium Vendor Manifest git-revision 0dcfdf5 Low Vendor Manifest implementation-build-id 4.0.6 - 0dcfdf5 Low Vendor Manifest Implementation-Vendor Eclipse Foundation High Vendor Manifest Implementation-Vendor-Id org.glassfish.jaxb Medium Vendor Manifest specification-vendor Eclipse Foundation Low Vendor pom artifactid jaxb-core Low Vendor pom groupid org.glassfish.jaxb Highest Vendor pom name JAXB Core High Vendor pom parent-artifactid jaxb-parent Low Vendor pom parent-groupid com.sun.xml.bind.mvn Medium Vendor pom url https://eclipse-ee4j.github.io/jaxb-ri/ Highest Product file name jaxb-core High Product gradle artifactid jaxb-core Highest Product jar package name core Highest Product jar package name glassfish Highest Product jar package name jaxb Highest Product Manifest bundle-docurl https://www.eclipse.org Low Product Manifest Bundle-Name JAXB Core Medium Product Manifest bundle-symbolicname org.glassfish.jaxb.core Medium Product Manifest git-revision 0dcfdf5 Low Product Manifest implementation-build-id 4.0.6 - 0dcfdf5 Low Product Manifest Implementation-Title Eclipse Implementation of JAXB High Product Manifest specification-title Jakarta XML Binding Medium Product pom artifactid jaxb-core Highest Product pom groupid org.glassfish.jaxb Highest Product pom name JAXB Core High Product pom parent-artifactid jaxb-parent Medium Product pom parent-groupid com.sun.xml.bind.mvn Medium Product pom url https://eclipse-ee4j.github.io/jaxb-ri/ Medium Version file version 4.0.6 High Version gradle version 4.0.6 Highest Version Manifest build-version 4.0.6 Medium Version Manifest Bundle-Version 4.0.6 High Version Manifest implementation-build-id 4.0.6 Low Version pom version 4.0.6 Highest
Description:
JAXB (JSR 222) Reference Implementation License:
http://www.eclipse.org/org/documents/edl-v10.php File Path: /root/.gradle/caches/modules-2/files-2.1/org.glassfish.jaxb/jaxb-runtime/4.0.6/fb95ebb62564657b2fedfe165b859789ef3a8711/jaxb-runtime-4.0.6.jar
MD5: 0e600d639f3a09ddd6fa91623a12b634
SHA1: fb95ebb62564657b2fedfe165b859789ef3a8711
SHA256: 1c0d57f8c25f9605d5a2f7ad0a87581893776ac85b00b101b2651258edaa9118
Referenced In Project/Scope: BMUPruefBibliothek:runtimeClasspath
jaxb-runtime-4.0.6.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/de.consist.bmu.rule/BMUPruefBibliothek@3.0.5
Evidence Type Source Name Value Confidence Vendor file name jaxb-runtime High Vendor gradle artifactid jaxb-runtime Highest Vendor gradle groupid org.glassfish.jaxb Highest Vendor jar package name glassfish Highest Vendor jar package name jaxb Highest Vendor jar package name runtime Highest Vendor Manifest bundle-docurl https://www.eclipse.org Low Vendor Manifest bundle-symbolicname org.glassfish.jaxb.runtime Medium Vendor Manifest git-revision 0dcfdf5 Low Vendor Manifest implementation-build-id 4.0.6 - 0dcfdf5 Low Vendor Manifest Implementation-Vendor Eclipse Foundation High Vendor Manifest Implementation-Vendor-Id org.glassfish.jaxb Medium Vendor Manifest provide-capability osgi.serviceloader;osgi.serviceloader="jakarta.xml.bind.JAXBContextFactory" Low Vendor Manifest specification-vendor Eclipse Foundation Low Vendor pom artifactid jaxb-runtime Low Vendor pom groupid org.glassfish.jaxb Highest Vendor pom name JAXB Runtime High Vendor pom parent-artifactid jaxb-runtime-parent Low Vendor pom parent-groupid com.sun.xml.bind.mvn Medium Vendor pom url https://eclipse-ee4j.github.io/jaxb-ri/ Highest Product file name jaxb-runtime High Product gradle artifactid jaxb-runtime Highest Product jar package name glassfish Highest Product jar package name jaxb Highest Product jar package name runtime Highest Product Manifest bundle-docurl https://www.eclipse.org Low Product Manifest Bundle-Name JAXB Runtime Medium Product Manifest bundle-symbolicname org.glassfish.jaxb.runtime Medium Product Manifest git-revision 0dcfdf5 Low Product Manifest implementation-build-id 4.0.6 - 0dcfdf5 Low Product Manifest Implementation-Title Eclipse Implementation of JAXB High Product Manifest provide-capability osgi.serviceloader;osgi.serviceloader="jakarta.xml.bind.JAXBContextFactory" Low Product Manifest specification-title Jakarta XML Binding Medium Product pom artifactid jaxb-runtime Highest Product pom groupid org.glassfish.jaxb Highest Product pom name JAXB Runtime High Product pom parent-artifactid jaxb-runtime-parent Medium Product pom parent-groupid com.sun.xml.bind.mvn Medium Product pom url https://eclipse-ee4j.github.io/jaxb-ri/ Medium Version file version 4.0.6 High Version gradle version 4.0.6 Highest Version Manifest build-version 4.0.6 Medium Version Manifest Bundle-Version 4.0.6 High Version Manifest implementation-build-id 4.0.6 Low Version pom version 4.0.6 Highest
Description:
Generated by Gradle 7.2 File Path: /root/.gradle/caches/modules-2/files-2.1/xalan/serializer/2.7.3/1aa6259987888f49fdbebb1aa1a88e0f54a44f6f/serializer-2.7.3.jarMD5: 21697a2d50f03bfd93ccf7636f8118d3SHA1: 1aa6259987888f49fdbebb1aa1a88e0f54a44f6fSHA256: 5f6804bacdfdb3ccc52d2538536fab8986696d61559b081054a420c653806667Referenced In Project/Scope: BMUPruefBibliothek:runtimeClasspathserializer-2.7.3.jar is in the transitive dependency tree of the listed items. Included by:
pkg:maven/xalan/xalan@2.7.3 pkg:maven/de.consist.bmu.rule/BMUPruefBibliothek@3.0.5 Evidence Type Source Name Value Confidence Vendor file name serializer High Vendor gradle artifactid serializer Highest Vendor gradle groupid xalan Highest Vendor jar package name apache Highest Vendor jar package name apache Low Vendor jar package name serializer Low Vendor jar package name xml Low Vendor manifest: org/apache/xml/serializer/ Implementation-Vendor Apache Software Foundation Medium Vendor manifest: org/apache/xml/serializer/utils/ Implementation-Vendor Apache Software Foundation Medium Vendor pom artifactid serializer Low Vendor pom groupid xalan Highest Product file name serializer High Product gradle artifactid serializer Highest Product jar package name apache Highest Product jar package name serializer Highest Product jar package name serializer Low Product jar package name utils Highest Product jar package name xml Highest Product jar package name xml Low Product manifest: org/apache/xml/serializer/ Implementation-Title org.apache.xml.serializer Medium Product manifest: org/apache/xml/serializer/ Specification-Title XSL Transformations (XSLT), at http://www.w3.org/TR/xslt Medium Product manifest: org/apache/xml/serializer/utils/ Implementation-Title org.apache.xml.serializer.utils Medium Product pom artifactid serializer Highest Product pom groupid xalan Highest Version file version 2.7.3 High Version gradle version 2.7.3 Highest Version manifest: org/apache/xml/serializer/ Implementation-Version 2.7.3 Medium Version manifest: org/apache/xml/serializer/utils/ Implementation-Version 2.7.3 Medium Version pom version 2.7.3 Highest
Description:
Stax2 API is an extension to basic Stax 1.0 API that adds significant new functionality, such as full-featured bi-direction validation interface and high-performance Typed Access API.
License:
The BSD 2-Clause License: http://www.opensource.org/licenses/bsd-license.php File Path: /root/.gradle/caches/modules-2/files-2.1/org.codehaus.woodstox/stax2-api/4.2.2/b0d746cadea928e5264f2ea294ea9a1bf815bbde/stax2-api-4.2.2.jar
MD5: 6949cace015c0f408f0b846e3735d301
SHA1: b0d746cadea928e5264f2ea294ea9a1bf815bbde
SHA256: a61c48d553efad78bc01fffc4ac528bebbae64cbaec170b2a5e39cf61eb51abe
Referenced In Project/Scope: BMUPruefBibliothek:runtimeClasspath
stax2-api-4.2.2.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.apache.santuario/xmlsec@4.0.4
Evidence Type Source Name Value Confidence Vendor file name stax2-api High Vendor gradle artifactid stax2-api Highest Vendor gradle groupid org.codehaus.woodstox Highest Vendor jar package name codehaus Highest Vendor jar package name stax2 Highest Vendor jar package name typed Highest Vendor jar package name validation Highest Vendor Manifest automatic-module-name org.codehaus.stax2 Medium Vendor Manifest build-jdk-spec 1.8 Low Vendor Manifest bundle-docurl http://github.com/FasterXML/stax2-api Low Vendor Manifest bundle-symbolicname stax2-api Medium Vendor Manifest Implementation-Vendor fasterxml.com High Vendor Manifest Implementation-Vendor-Id org.codehaus.woodstox Medium Vendor Manifest specification-vendor fasterxml.com Low Vendor pom artifactid stax2-api Low Vendor pom developer email tatu@fasterxml.com Low Vendor pom developer id tatu Medium Vendor pom developer name Tatu Saloranta Medium Vendor pom groupid org.codehaus.woodstox Highest Vendor pom name Stax2 API High Vendor pom organization name fasterxml.com High Vendor pom organization url http://fasterxml.com Medium Vendor pom parent-artifactid oss-parent Low Vendor pom parent-groupid com.fasterxml Medium Vendor pom url http://github.com/FasterXML/stax2-api Highest Product file name stax2-api High Product gradle artifactid stax2-api Highest Product jar package name codehaus Highest Product jar package name stax2 Highest Product jar package name typed Highest Product jar package name validation Highest Product Manifest automatic-module-name org.codehaus.stax2 Medium Product Manifest build-jdk-spec 1.8 Low Product Manifest bundle-docurl http://github.com/FasterXML/stax2-api Low Product Manifest Bundle-Name Stax2 API Medium Product Manifest bundle-symbolicname stax2-api Medium Product Manifest Implementation-Title Stax2 API High Product Manifest specification-title Stax2 API Medium Product pom artifactid stax2-api Highest Product pom developer email tatu@fasterxml.com Low Product pom developer id tatu Low Product pom developer name Tatu Saloranta Low Product pom groupid org.codehaus.woodstox Highest Product pom name Stax2 API High Product pom organization name fasterxml.com Low Product pom organization url http://fasterxml.com Low Product pom parent-artifactid oss-parent Medium Product pom parent-groupid com.fasterxml Medium Product pom url http://github.com/FasterXML/stax2-api Medium Version file version 4.2.2 High Version gradle version 4.2.2 Highest Version Manifest Bundle-Version 4.2.2 High Version Manifest Implementation-Version 4.2.2 High Version pom parent-version 4.2.2 Low Version pom version 4.2.2 Highest
Description:
TXW is a library that allows you to write XML documents.
File Path: /root/.gradle/caches/modules-2/files-2.1/org.glassfish.jaxb/txw2/4.0.6/4f4cd53b5ff9a2c5aa1211f15ed2569c57dfb044/txw2-4.0.6.jarMD5: 0bf7070aee3bb53640d2ea6441e059fbSHA1: 4f4cd53b5ff9a2c5aa1211f15ed2569c57dfb044SHA256: fcc749785412ef3806fde1ce70f93ef5a0065dcc47fe449bc871db0795cb11afReferenced In Project/Scope: BMUPruefBibliothek:runtimeClasspathtxw2-4.0.6.jar is in the transitive dependency tree of the listed items. Included by:
Evidence Type Source Name Value Confidence Vendor file name txw2 High Vendor gradle artifactid txw2 Highest Vendor gradle groupid org.glassfish.jaxb Highest Vendor jar package name sun Highest Vendor jar package name txw Highest Vendor jar package name txw2 Highest Vendor jar package name xml Highest Vendor jar (hint) package name oracle Highest Vendor Manifest git-revision 0dcfdf5 Low Vendor Manifest Implementation-Vendor Eclipse Foundation High Vendor Manifest Implementation-Vendor-Id org.eclipse Medium Vendor Manifest specification-vendor Eclipse Foundation Low Vendor pom artifactid txw2 Low Vendor pom groupid org.glassfish.jaxb Highest Vendor pom name TXW2 Runtime High Vendor pom parent-artifactid jaxb-txw-parent Low Vendor pom parent-groupid com.sun.xml.bind.mvn Medium Vendor pom url https://eclipse-ee4j.github.io/jaxb-ri/ Highest Product file name txw2 High Product gradle artifactid txw2 Highest Product jar package name sun Highest Product jar package name txw Highest Product jar package name txw2 Highest Product jar package name xml Highest Product Manifest git-revision 0dcfdf5 Low Product Manifest Implementation-Title Eclipse Implementation of JAXB High Product Manifest specification-title Jakarta XML Binding Medium Product pom artifactid txw2 Highest Product pom groupid org.glassfish.jaxb Highest Product pom name TXW2 Runtime High Product pom parent-artifactid jaxb-txw-parent Medium Product pom parent-groupid com.sun.xml.bind.mvn Medium Product pom url https://eclipse-ee4j.github.io/jaxb-ri/ Medium Version file version 4.0.6 High Version gradle version 4.0.6 Highest Version Manifest build-version 4.0.6 Medium Version pom version 4.0.6 Highest
Description:
Unknown version of isorelax library used in JAXB project File Path: /root/.gradle/caches/modules-2/files-2.1/com.fasterxml.woodstox/woodstox-core/7.1.0/95341048cfb852aa05037e6cc83069b8664728c5/woodstox-core-7.1.0.jar/META-INF/maven/com.sun.xml.bind.jaxb/isorelax/pom.xmlMD5: 6fbb4bc95fbf2072bc6e3b790553fe81SHA1: 314ec72948d5c1fc71d553cbbd7a130caa6f9f13SHA256: cda6451d0231a973352b592ff950e39224ba6ba1a2f35eeab66511b5c225dff1Referenced In Project/Scope: BMUPruefBibliothek:runtimeClasspath
Evidence Type Source Name Value Confidence Vendor pom artifactid isorelax Low Vendor pom groupid com.sun.xml.bind.jaxb Highest Vendor pom name JAXB isorelax library High Vendor pom parent-artifactid jvnet-parent Low Vendor pom parent-groupid net.java Medium Product pom artifactid isorelax Highest Product pom groupid com.sun.xml.bind.jaxb Highest Product pom name JAXB isorelax library High Product pom parent-artifactid jvnet-parent Medium Product pom parent-groupid net.java Medium Version pom parent-version 20090621 Low Version pom version 20090621 Highest
Description:
XML Schema datatypes library License:
BSD File Path: /root/.gradle/caches/modules-2/files-2.1/com.fasterxml.woodstox/woodstox-core/7.1.0/95341048cfb852aa05037e6cc83069b8664728c5/woodstox-core-7.1.0.jar/META-INF/maven/net.java.dev.msv/xsdlib/pom.xml
MD5: f82c4c4c46c8a27ee68f031373064bf9
SHA1: 1b9b8fe3901f3556ed99a477af66f0f645c16cf0
SHA256: 8649b880ac5dbb3549022c40eff4053930ea209c4aaf998925fb3d6dd75fb6c3
Referenced In Project/Scope: BMUPruefBibliothek:runtimeClasspath
Evidence Type Source Name Value Confidence Vendor pom artifactid xsdlib Low Vendor pom groupid net.java.dev.msv Highest Vendor pom name MSV XML Schema Datatype Library High Vendor pom parent-artifactid msv Low Product pom artifactid xsdlib Highest Product pom groupid net.java.dev.msv Highest Product pom name MSV XML Schema Datatype Library High Product pom parent-artifactid msv Medium Version pom version 2022.7 Highest
Description:
Woodstox is a high-performance XML processor that implements Stax (JSR-173),
SAX2 and Stax2 APIs
License:
The Apache License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt File Path: /root/.gradle/caches/modules-2/files-2.1/com.fasterxml.woodstox/woodstox-core/7.1.0/95341048cfb852aa05037e6cc83069b8664728c5/woodstox-core-7.1.0.jar
MD5: f8b70141712cd2ac67800ba036f0aa13
SHA1: 95341048cfb852aa05037e6cc83069b8664728c5
SHA256: 81266920a1cdc47306a8a2b4726c99ec89b3fbf31c2470e4f5e477d9d857ca9f
Referenced In Project/Scope: BMUPruefBibliothek:runtimeClasspath
woodstox-core-7.1.0.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.apache.santuario/xmlsec@4.0.4
Evidence Type Source Name Value Confidence Vendor file name woodstox-core High Vendor gradle artifactid woodstox-core Highest Vendor gradle groupid com.fasterxml.woodstox Highest Vendor jar package name stax Highest Vendor Manifest build-jdk-spec 1.8 Low Vendor Manifest bundle-docurl https://github.com/FasterXML/woodstox Low Vendor Manifest bundle-symbolicname com.fasterxml.woodstox.woodstox-core Medium Vendor Manifest Implementation-Vendor FasterXML High Vendor Manifest Implementation-Vendor-Id com.fasterxml.woodstox Medium Vendor Manifest provide-capability osgi.service;objectClass:List="javax.xml.stream.XMLEventFactory";effective:=active,osgi.service;objectClass:List="javax.xml.stream.XMLInputFactory";effective:=active,osgi.service;objectClass:List="javax.xml.stream.XMLOutputFactory";effective:=active,osgi.service;objectClass:List="org.codehaus.stax2.validation.XMLValidationSchemaFactory";effective:=active,osgi.serviceloader;osgi.serviceloader="javax.xml.stream.XMLEventFactory";register:="com.ctc.wstx.stax.WstxEventFactory",osgi.serviceloader;osgi.serviceloader="javax.xml.stream.XMLInputFactory";register:="com.ctc.wstx.stax.WstxInputFactory",osgi.serviceloader;osgi.serviceloader="javax.xml.stream.XMLOutputFactory";register:="com.ctc.wstx.stax.WstxOutputFactory",osgi.serviceloader;osgi.serviceloader="org.codehaus.stax2.validation.XMLValidationSchemaFactory";register:="com.ctc.wstx.dtd.DTDSchemaFactory",osgi.serviceloader;osgi.serviceloader="org.codehaus.stax2.validation.XMLValidationSchemaFactory";register:="com.ctc.wstx.msv.RelaxNGSchemaFactory",osgi.serviceloader;osgi.serviceloader="org.codehaus.stax2.validation.XMLValidationSchemaFactory";register:="com.ctc.wstx.msv.W3CSchemaFactory" Low Vendor Manifest specification-vendor FasterXML Low Vendor pom artifactid woodstox-core Low Vendor pom developer email tatu@fasterxml.com Low Vendor pom developer id cowtowncoder Medium Vendor pom developer name Tatu Saloranta Medium Vendor pom groupid com.fasterxml.woodstox Highest Vendor pom name Woodstox High Vendor pom organization name FasterXML High Vendor pom organization url http://fasterxml.com Medium Vendor pom parent-artifactid oss-parent Low Vendor pom parent-groupid com.fasterxml Medium Vendor pom url FasterXML/woodstox Highest Product file name woodstox-core High Product gradle artifactid woodstox-core Highest Product jar package name dtd Highest Product jar package name dtdschemafactory Highest Product jar package name msv Highest Product jar package name osgi Highest Product jar package name relaxngschemafactory Highest Product jar package name stax Highest Product jar package name w3cschemafactory Highest Product jar package name wstx Highest Product jar package name wstxeventfactory Highest Product jar package name wstxinputfactory Highest Product jar package name wstxoutputfactory Highest Product Manifest build-jdk-spec 1.8 Low Product Manifest bundle-docurl https://github.com/FasterXML/woodstox Low Product Manifest Bundle-Name Woodstox Medium Product Manifest bundle-symbolicname com.fasterxml.woodstox.woodstox-core Medium Product Manifest Implementation-Title Woodstox High Product Manifest provide-capability osgi.service;objectClass:List="javax.xml.stream.XMLEventFactory";effective:=active,osgi.service;objectClass:List="javax.xml.stream.XMLInputFactory";effective:=active,osgi.service;objectClass:List="javax.xml.stream.XMLOutputFactory";effective:=active,osgi.service;objectClass:List="org.codehaus.stax2.validation.XMLValidationSchemaFactory";effective:=active,osgi.serviceloader;osgi.serviceloader="javax.xml.stream.XMLEventFactory";register:="com.ctc.wstx.stax.WstxEventFactory",osgi.serviceloader;osgi.serviceloader="javax.xml.stream.XMLInputFactory";register:="com.ctc.wstx.stax.WstxInputFactory",osgi.serviceloader;osgi.serviceloader="javax.xml.stream.XMLOutputFactory";register:="com.ctc.wstx.stax.WstxOutputFactory",osgi.serviceloader;osgi.serviceloader="org.codehaus.stax2.validation.XMLValidationSchemaFactory";register:="com.ctc.wstx.dtd.DTDSchemaFactory",osgi.serviceloader;osgi.serviceloader="org.codehaus.stax2.validation.XMLValidationSchemaFactory";register:="com.ctc.wstx.msv.RelaxNGSchemaFactory",osgi.serviceloader;osgi.serviceloader="org.codehaus.stax2.validation.XMLValidationSchemaFactory";register:="com.ctc.wstx.msv.W3CSchemaFactory" Low Product Manifest specification-title Woodstox Medium Product pom artifactid woodstox-core Highest Product pom developer email tatu@fasterxml.com Low Product pom developer id cowtowncoder Low Product pom developer name Tatu Saloranta Low Product pom groupid com.fasterxml.woodstox Highest Product pom name Woodstox High Product pom organization name FasterXML Low Product pom organization url http://fasterxml.com Low Product pom parent-artifactid oss-parent Medium Product pom parent-groupid com.fasterxml Medium Product pom url FasterXML/woodstox High Version file version 7.1.0 High Version gradle version 7.1.0 Highest Version Manifest Bundle-Version 7.1.0 High Version Manifest Implementation-Version 7.1.0 High Version pom parent-version 7.1.0 Low Version pom version 7.1.0 Highest
Description:
Apache Commons Bytecode Engineering Library File Path: /root/.gradle/caches/modules-2/files-2.1/xalan/xalan/2.7.3/5095bedf29e73756fb5729f2241fd5ffa33d87e0/xalan-2.7.3.jar/META-INF/maven/org.apache.bcel/bcel/pom.xmlMD5: d295c30370ff8cf96227ecff62fcb78dSHA1: 38983d16d320ff710f8898e2dd342299d76939a7SHA256: b0a59c14c26bdb4c7a5a2b13b8dcbd9acebf55e67fe91497140d8894de2fdeaeReferenced In Project/Scope: BMUPruefBibliothek:runtimeClasspath
Evidence Type Source Name Value Confidence Vendor pom artifactid bcel Low Vendor pom developer email dbrosius at mebigfatguy.com Low Vendor pom developer email ggregory at apache.org Low Vendor pom developer email jason at zenplex.com Low Vendor pom developer email m.dahm at gmx.de Low Vendor pom developer email tcurdt at apache.org Low Vendor pom developer id dbrosius Medium Vendor pom developer id ggregory Medium Vendor pom developer id mdahm Medium Vendor pom developer id tcurdt Medium Vendor pom developer name Dave Brosius Medium Vendor pom developer name Gary Gregory Medium Vendor pom developer name Jason van Zyl Medium Vendor pom developer name Markus Dahm Medium Vendor pom developer name Torsten Curdt Medium Vendor pom developer org ASF Medium Vendor pom developer org it-frameworksolutions Medium Vendor pom developer org The Apache Software Foundation Medium Vendor pom developer org URL http://www.apache.org/ Medium Vendor pom developer org URL https://www.apache.org/ Medium Vendor pom groupid org.apache.bcel Highest Vendor pom name Apache Commons BCEL High Vendor pom parent-artifactid commons-parent Low Vendor pom parent-groupid org.apache.commons Medium Vendor pom url https://commons.apache.org/proper/commons-bcel Highest Product pom artifactid bcel Highest Product pom developer email dbrosius at mebigfatguy.com Low Product pom developer email ggregory at apache.org Low Product pom developer email jason at zenplex.com Low Product pom developer email m.dahm at gmx.de Low Product pom developer email tcurdt at apache.org Low Product pom developer id dbrosius Low Product pom developer id ggregory Low Product pom developer id mdahm Low Product pom developer id tcurdt Low Product pom developer name Dave Brosius Low Product pom developer name Gary Gregory Low Product pom developer name Jason van Zyl Low Product pom developer name Markus Dahm Low Product pom developer name Torsten Curdt Low Product pom developer org ASF Low Product pom developer org it-frameworksolutions Low Product pom developer org The Apache Software Foundation Low Product pom developer org URL http://www.apache.org/ Low Product pom developer org URL https://www.apache.org/ Low Product pom groupid org.apache.bcel Highest Product pom name Apache Commons BCEL High Product pom parent-artifactid commons-parent Medium Product pom parent-groupid org.apache.commons Medium Product pom url https://commons.apache.org/proper/commons-bcel Medium Version pom parent-version 6.7.0 Low Version pom version 6.7.0 Highest
Description:
Generated by Gradle 7.2 File Path: /root/.gradle/caches/modules-2/files-2.1/xalan/xalan/2.7.3/5095bedf29e73756fb5729f2241fd5ffa33d87e0/xalan-2.7.3.jarMD5: e384223db0825925765f2bf66839d26dSHA1: 5095bedf29e73756fb5729f2241fd5ffa33d87e0SHA256: febd48bb133a96c447282213951a6b74ea7fb45c0d896121296c014316bda6b0Referenced In Project/Scope: BMUPruefBibliothek:runtimeClasspathxalan-2.7.3.jar is in the transitive dependency tree of the listed items. Included by:
Evidence Type Source Name Value Confidence Vendor file name xalan High Vendor gradle artifactid xalan Highest Vendor gradle groupid xalan Highest Vendor jar package name apache Highest Vendor jar package name apache Low Vendor manifest: java_cup/runtime/ Implementation-Vendor Princeton University Medium Vendor manifest: org/apache/bcel/ Implementation-Vendor Apache Software Foundation Medium Vendor manifest: org/apache/regexp/ Implementation-Vendor Apache Software Foundation Medium Vendor manifest: org/apache/xalan/ Implementation-Vendor Apache Software Foundation Medium Vendor manifest: org/apache/xalan/xsltc/ Implementation-Vendor Apache Software Foundation Medium Vendor manifest: org/apache/xml/ Implementation-Vendor Apache Software Foundation Medium Vendor manifest: org/apache/xpath/ Implementation-Vendor Apache Software Foundation Medium Vendor pom artifactid xalan Low Vendor pom groupid xalan Highest Product file name xalan High Product gradle artifactid xalan Highest Product jar package name apache Highest Product jar package name bcel Highest Product jar package name expression Highest Product jar package name regexp Highest Product jar package name runtime Highest Product jar package name xalan Highest Product jar package name xml Highest Product jar package name xpath Highest Product jar package name xsltc Highest Product manifest: java_cup/runtime/ Implementation-Title runtime Medium Product manifest: java_cup/runtime/ Specification-Title Runtime component of JCup Medium Product manifest: org/apache/bcel/ Implementation-Title org.apache.bcel Medium Product manifest: org/apache/bcel/ Specification-Title Apache Commons BCEL Medium Product manifest: org/apache/regexp/ Implementation-Title org.apache.regexp Medium Product manifest: org/apache/regexp/ Specification-Title Java Regular Expression package Medium Product manifest: org/apache/xalan/ Implementation-Title org.apache.xalan Medium Product manifest: org/apache/xalan/ Specification-Title Java API for XML Processing Medium Product manifest: org/apache/xalan/xsltc/ Implementation-Title org.apache.xalan.xsltc Medium Product manifest: org/apache/xalan/xsltc/ Specification-Title Java API for XML Processing Medium Product manifest: org/apache/xml/ Implementation-Title org.apache.xml Medium Product manifest: org/apache/xpath/ Implementation-Title org.apache.xpath Medium Product pom artifactid xalan Highest Product pom groupid xalan Highest Version file version 2.7.3 High Version gradle version 2.7.3 Highest Version manifest: java_cup/runtime/ Implementation-Version 2.7.3 Medium Version manifest: org/apache/bcel/ Implementation-Version 2.7.3 Medium Version manifest: org/apache/regexp/ Implementation-Version 2.7.3 Medium Version manifest: org/apache/xalan/ Implementation-Version 2.7.3 Medium Version manifest: org/apache/xalan/xsltc/ Implementation-Version 2.7.3 Medium Version manifest: org/apache/xml/ Implementation-Version 2.7.3 Medium Version manifest: org/apache/xpath/ Implementation-Version 2.7.3 Medium Version pom version 2.7.3 Highest
Description:
Xerces2 provides high performance, fully compliant XML parsers in the Apache Xerces family. This new version of Xerces continues to build upon the Xerces Native Interface (XNI), a complete framework for building parser components and configurations that is extremely modular and easy to program.
The Apache Xerces2 parser is the reference implementation of XNI but other parser components, configurations, and parsers can be written using the Xerces Native Interface. For complete design and implementation documents, refer to the XNI Manual.
Xerces2 provides fully conforming XML Schema 1.0 and 1.1 processors. An experimental implementation of the "XML Schema Definition Language (XSD): Component Designators (SCD) Candidate Recommendation (January 2010)" is also provided for evaluation. For more information, refer to the XML Schema page.
Xerces2 also provides a complete implementation of the Document Object Model Level 3 Core and Load/Save W3C Recommendations and provides a complete implementation of the XML Inclusions (XInclude) W3C Recommendation. It also provides support for OASIS XML Catalogs v1.1.
Xerces2 is able to parse documents written according to the XML 1.1 Recommendation, except that it does not yet provide an option to enable normalization checking as described in section 2.13 of this specification. It also handles namespaces according to the XML Namespaces 1.1 Recommendation, and will correctly serialize XML 1.1 documents if the DOM level 3 load/save APIs are in use.
License:
The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt File Path: /root/.gradle/caches/modules-2/files-2.1/xerces/xercesImpl/2.12.2/f051f988aa2c9b4d25d05f95742ab0cc3ed789e2/xercesImpl-2.12.2.jar
MD5: 40e4f2d5aacfbf51a9a1572d77a0e5e9
SHA1: f051f988aa2c9b4d25d05f95742ab0cc3ed789e2
SHA256: 6fc991829af1708d15aea50c66f0beadcd2cfeb6968e0b2f55c1b0909883fe16
Referenced In Project/Scope: BMUPruefBibliothek:runtimeClasspath
xercesImpl-2.12.2.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/xalan/serializer@2.7.3 pkg:maven/xalan/xalan@2.7.3 pkg:maven/de.consist.bmu.rule/BMUPruefBibliothek@3.0.5 Evidence Type Source Name Value Confidence Vendor file name xercesImpl High Vendor gradle artifactid xercesImpl Highest Vendor gradle groupid xerces Highest Vendor jar package name apache Highest Vendor jar package name apache Low Vendor jar package name xerces Low Vendor manifest: javax/xml/datatype/ Implementation-Vendor Apache Software Foundation Medium Vendor manifest: javax/xml/namespace/ Implementation-Vendor Apache Software Foundation Medium Vendor manifest: javax/xml/parsers/ Implementation-Vendor Apache Software Foundation Medium Vendor manifest: javax/xml/stream/ Implementation-Vendor Apache Software Foundation Medium Vendor manifest: javax/xml/transform/ Implementation-Vendor Apache Software Foundation Medium Vendor manifest: javax/xml/validation/ Implementation-Vendor Apache Software Foundation Medium Vendor manifest: javax/xml/xpath/ Implementation-Vendor Apache Software Foundation Medium Vendor manifest: org/apache/xerces/impl/ Implementation-Vendor Apache Software Foundation Medium Vendor manifest: org/apache/xerces/xni/ Implementation-Vendor Apache Software Foundation Medium Vendor manifest: org/w3c/dom/ Implementation-Vendor World Wide Web Consortium Medium Vendor manifest: org/w3c/dom/ls/ Implementation-Vendor World Wide Web Consortium Medium Vendor manifest: org/xml/sax/ Implementation-Vendor David Megginson Medium Vendor pom artifactid xercesImpl Low Vendor pom developer email j-dev@xerces.apache.org Low Vendor pom developer id xerces Medium Vendor pom developer name Apache Software Foundation Medium Vendor pom developer org Apache Software Foundation Medium Vendor pom developer org URL http://www.apache.org Medium Vendor pom groupid xerces Highest Vendor pom name Xerces2-j High Vendor pom url https://xerces.apache.org/xerces2-j/ Highest Product file name xercesImpl High Product gradle artifactid xercesImpl Highest Product hint analyzer product xerces-j Highest Product jar package name apache Highest Product jar package name datatype Highest Product jar package name dom Highest Product jar package name impl Highest Product jar package name parsers Highest Product jar package name validation Highest Product jar package name version Highest Product jar package name w3c Highest Product jar package name xerces Highest Product jar package name xerces Low Product jar package name xml Highest Product jar package name xni Highest Product jar package name xpath Highest Product manifest: javax/xml/datatype/ Implementation-Title javax.xml.datatype Medium Product manifest: javax/xml/datatype/ Specification-Title Java API for XML Processing Medium Product manifest: javax/xml/namespace/ Implementation-Title javax.xml.namespace Medium Product manifest: javax/xml/namespace/ Specification-Title Java API for XML Processing Medium Product manifest: javax/xml/parsers/ Implementation-Title javax.xml.parsers Medium Product manifest: javax/xml/parsers/ Specification-Title Java API for XML Processing Medium Product manifest: javax/xml/stream/ Implementation-Title javax.xml.stream Medium Product manifest: javax/xml/stream/ Specification-Title Streaming API for XML Medium Product manifest: javax/xml/transform/ Implementation-Title javax.xml.transform Medium Product manifest: javax/xml/transform/ Specification-Title Java API for XML Processing Medium Product manifest: javax/xml/validation/ Implementation-Title javax.xml.validation Medium Product manifest: javax/xml/validation/ Specification-Title Java API for XML Processing Medium Product manifest: javax/xml/xpath/ Implementation-Title javax.xml.xpath Medium Product manifest: javax/xml/xpath/ Specification-Title Java API for XML Processing Medium Product manifest: org/apache/xerces/impl/ Implementation-Title org.apache.xerces.impl.Version Medium Product manifest: org/apache/xerces/xni/ Implementation-Title org.apache.xerces.xni Medium Product manifest: org/apache/xerces/xni/ Specification-Title Xerces Native Interface Medium Product manifest: org/w3c/dom/ Implementation-Title org.w3c.dom Medium Product manifest: org/w3c/dom/ Specification-Title Document Object Model, Level 3 Core Medium Product manifest: org/w3c/dom/ls/ Implementation-Title org.w3c.dom.ls Medium Product manifest: org/w3c/dom/ls/ Specification-Title Document Object Model, Level 3 Load and Save Medium Product manifest: org/xml/sax/ Implementation-Title org.xml.sax Medium Product manifest: org/xml/sax/ Specification-Title Simple API for XML Medium Product pom artifactid xercesImpl Highest Product pom developer email j-dev@xerces.apache.org Low Product pom developer id xerces Low Product pom developer name Apache Software Foundation Low Product pom developer org Apache Software Foundation Low Product pom developer org URL http://www.apache.org Low Product pom groupid xerces Highest Product pom name Xerces2-j High Product pom url https://xerces.apache.org/xerces2-j/ Medium Version file version 2.12.2 High Version gradle version 2.12.2 Highest Version manifest: org/apache/xerces/impl/ Implementation-Version 2.12.2 Medium Version pom version 2.12.2 Highest
pkg:maven/xerces/xercesImpl@2.12.2 (Confidence :High)cpe:2.3:a:apache:xerces-j:2.12.2:*:*:*:*:*:*:* (Confidence :Low) suppress cpe:2.3:a:apache:xerces2_java:2.12.2:*:*:*:*:*:*:* (Confidence :Low) suppress CVE-2017-10355 (OSSINDEX)suppress
sonatype-2017-0348 - xerces:xercesImpl - Denial of Service (DoS)
The software contains multiple threads or executable segments that are waiting for each other to release a necessary lock, resulting in deadlock. CWE-833 Deadlock
CVSSv3:
Base Score: MEDIUM (5.900000095367432) Vector: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H References:
Vulnerable Software & Versions (OSSINDEX):
cpe:2.3:a:xerces:xercesImpl:2.12.2:*:*:*:*:*:*:* Description:
Apache XML Security for Java supports XML-Signature Syntax and Processing,
W3C Recommendation 12 February 2002, and XML Encryption Syntax and
Processing, W3C Recommendation 10 December 2002. Since version 1.4,
the library supports the standard Java API JSR-105: XML Digital Signature APIs.
License:
Apache-2.0: https://www.apache.org/licenses/LICENSE-2.0.txt File Path: /root/.gradle/caches/modules-2/files-2.1/org.apache.santuario/xmlsec/4.0.4/b07e7b1a2fa3cb828b0d0112d3ea37829373bce3/xmlsec-4.0.4.jar
MD5: 7344e57494b9fff766012489fa1bda07
SHA1: b07e7b1a2fa3cb828b0d0112d3ea37829373bce3
SHA256: 8b2f8483b662ba5462126074dadf4d4f33966d8e8244889c6a81d53789da5402
Referenced In Project/Scope: BMUPruefBibliothek:runtimeClasspath
xmlsec-4.0.4.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/de.consist.bmu.rule/BMUPruefBibliothek@3.0.5
Evidence Type Source Name Value Confidence Vendor file name xmlsec High Vendor gradle artifactid xmlsec Highest Vendor gradle groupid org.apache.santuario Highest Vendor jar package name apache Highest Vendor jar package name encryption Highest Vendor jar package name security Highest Vendor jar package name signature Highest Vendor jar package name xml Highest Vendor Manifest build-jdk-spec 11 Low Vendor Manifest bundle-docurl https://www.apache.org/ Low Vendor Manifest bundle-symbolicname org.apache.santuario.xmlsec Medium Vendor Manifest Implementation-Vendor The Apache Software Foundation High Vendor Manifest Implementation-Vendor-Id org.apache Medium Vendor Manifest specification-vendor The Apache Software Foundation Low Vendor pom artifactid xmlsec Low Vendor pom groupid org.apache.santuario Highest Vendor pom name Apache XML Security for Java High Vendor pom organization name The Apache Software Foundation High Vendor pom organization url https://www.apache.org/ Medium Vendor pom parent-artifactid apache Low Vendor pom parent-groupid org.apache Medium Vendor pom url https://santuario.apache.org/ Highest Product file name xmlsec High Product gradle artifactid xmlsec Highest Product jar package name apache Highest Product jar package name encryption Highest Product jar package name security Highest Product jar package name signature Highest Product jar package name xml Highest Product Manifest build-jdk-spec 11 Low Product Manifest bundle-docurl https://www.apache.org/ Low Product Manifest Bundle-Name Apache XML Security for Java Medium Product Manifest bundle-symbolicname org.apache.santuario.xmlsec Medium Product Manifest Implementation-Title Apache XML Security High Product Manifest specification-title Apache XML Security Medium Product pom artifactid xmlsec Highest Product pom groupid org.apache.santuario Highest Product pom name Apache XML Security for Java High Product pom organization name The Apache Software Foundation Low Product pom organization url https://www.apache.org/ Low Product pom parent-artifactid apache Medium Product pom parent-groupid org.apache Medium Product pom url https://santuario.apache.org/ Medium Version file version 4.0.4 High Version gradle version 4.0.4 Highest Version Manifest Bundle-Version 4.0.4 High Version Manifest Implementation-Version 4.0.4 High Version pom parent-version 4.0.4 Low Version pom version 4.0.4 Highest
pkg:maven/org.apache.santuario/xmlsec@4.0.4 (Confidence :High)cpe:2.3:a:apache:santuario_xml_security_for_java:4.0.4:*:*:*:*:*:*:* (Confidence :Low) suppress cpe:2.3:a:apache:xml_security_for_java:4.0.4:*:*:*:*:*:*:* (Confidence :Low) suppress