Maven lelet: org.owasp / dependency-check-core / 3.2.1

Megjegyzés: Van egy új változat ezt az ereklyét: 10.0.1

Dependency-Check Core

dependency-check-core is the engine and reporting tool used to identify and report if there are any known, publicly disclosed vulnerabilities in the scanned project's dependencies. The engine extracts meta-data from the dependencies and uses this to do fuzzy key-word matching against the Common Platfrom Enumeration (CPE), if any CPE identifiers are found the associated Common Vulnerability and Exposure (CVE) entries are added to the generated report.

<dependency>
    <groupId>org.owasp</groupId>
    <artifactId>dependency-check-core</artifactId>
    <version>3.2.1</version>
</dependency>

compile group: 'org.owasp', name: 'dependency-check-core', version: '3.2.1'

compile 'org.owasp:dependency-check-core:3.2.1'

libraryDependencies += "org.owasp" % "dependency-check-core" % "3.2.1"

<dependency org="org.owasp" name="dependency-check-core" rev="3.2.1"/>

@Grapes(
            @Grab(group='org.owasp', module='dependency-check-core', version='3.2.1')
        )

[org.owasp/dependency-check-core "3.2.1"]

'org.owasp:dependency-check-core:jar:3.2.1'

Compile függőségek (17)

Csoport / Műtárgy	Változat	Újabb Verzió
com.vdurmont » semver4j	2.2.0	3.1.0
org.apache.commons » commons-compress	1.16.1	1.21
commons-io » commons-io	2.6	2.11.0
joda-time » joda-time	1.6	2.12.7
org.apache.lucene » lucene-queryparser	5.5.5	9.9.1
org.apache.lucene » lucene-core	5.5.5	9.9.1
org.owasp » dependency-check-utils	3.2.1	10.0.1
org.apache.commons » commons-lang3	3.7	3.12.0
org.apache.lucene » lucene-analyzers-common	5.5.5	8.10.1
com.google.code.gson » gson	2.8.5	2.10.1
org.apache.commons » commons-text	1.3	1.9
org.apache.velocity » velocity	1.7	NA
com.google.code.findbugs » annotations	3.0.1u2	NA
org.slf4j » slf4j-api	1.7.25	2.0.12
com.sun.mail » mailapi	1.6.1	1.6.7
org.glassfish » javax.json	1.0.4	RELEASE
org.jsoup » jsoup	1.11.3	1.17.1

Runtime függőségek (1)

Csoport / Műtárgy	Változat	Újabb Verzió
com.h2database » h2	1.4.196	2.1.210

Test függőségek (23)

Csoport / Műtárgy	Változat	Újabb Verzió
org.apache.geronimo.daytrader » daytrader-ear	2.1.7	NA
junit » junit	4.12	4.13.2
org.dojotoolkit » dojo-war	1.3.0	1.17.3
com.thoughtworks.xstream » xstream	1.4.8	1.4.18
org.springframework » spring-webmvc	2.5.5	6.0.22
org.mortbay.jetty » jetty	6.1.0	6.1.26
org.springframework.security » spring-security-web	3.0.0.RELEASE	6.2.4
com.google.inject » guice	3.0	7.0.0
org.springframework.retry » spring-retry	1.1.0.RELEASE	2.0.5
xalan » xalan	2.7.0	2.7.2
org.apache.lucene » lucene-test-framework	5.5.5	9.9.1
org.apache.struts » struts2-core	2.1.2	2.5.26
org.apache.maven.scm » maven-scm-provider-cvsexe	1.8.1	1.11.2
ch.qos.logback » logback-classic	1.2.3	1.5.5
org.apache.axis2 » axis2-spring	1.4.1	1.7.8
org.apache.openjpa » openjpa	2.0.1	3.2.0
com.hazelcast » hazelcast	2.5	5.3.5
uk.ltd.getahead » dwr	1.1.1	NA
org.apache.axis2 » axis2-adb	1.4.1	1.7.8
org.glassfish.main.admingui » war	4.0	6.2.2
org.jmockit » jmockit	1.39	1.49
net.sf.ehcache » ehcache-core	2.2.0	RELEASE
org.hamcrest » hamcrest-core	1.3	2.2