Build Tool
Apache 2.0 |  | ant
»
ant |
1.6.5 | 1.10.15 |
AOP
Public |  | aopalliance
»
aopalliance |
1.0 |
✔
|
Bytecode
BSD 3-clause |  | asm
»
asm |
3.1 | 9.7.1 |
Cloud Computing
Apache 2.0 |  | com.amazonaws
»
aws-java-sdk |
1.7.4 | 1.12.782 |
Streaming
Apache 2.0 |  | com.clearspring.analytics
»
stream |
2.7.0 | 2.9.8 |
Application Metrics
Apache 2.0 |  | com.codahale.metrics
»
metrics-core |
3.0.0 | 4.2.30 |
Apache 2.0 | | com.codahale.metrics
»
metrics-graphite |
3.0.0 | 4.2.30 |
Apache 2.0 | | com.codahale.metrics
»
metrics-json |
3.0.0 | 4.2.30 |
Apache 2.0 | | com.codahale.metrics
»
metrics-jvm |
3.0.0 | 4.2.30 |
Serializer
BSD 3-clause |  | com.esotericsoftware.kryo
»
kryo |
2.21 | 5.6.2 |
Logging
BSD 3-clause | | com.esotericsoftware.minlog
»
minlog |
1.2 | 1.3.1 |
Reflection
BSD 3-clause | | com.esotericsoftware.reflectasm
»
reflectasm |
1.07 | 1.11.9 |
Annotation Lib
Apache 2.0 |  | com.fasterxml.jackson.core
»
jackson-annotations |
2.3.0 | 2.18.3 |
JSON Lib
Apache 2.0 | | com.fasterxml.jackson.core
»
jackson-core |
2.3.3 | 2.18.3 |
JSON Lib
Apache 2.0 | | com.fasterxml.jackson.core
»
jackson-databind47 vulnerabilities |
2.3.3 | 2.18.3 |
Annotation Lib
Apache 2.0 | | com.fasterxml.jackson.module
»
jackson-module-jaxb-annotations |
2.3.3 | 2.18.3 |
Defect Detection
Apache 2.0 |  | com.github.stephenc.findbugs
»
findbugs-annotations |
1.3.9-1 |
✔
|
Collections
CC0 1.0Public | | com.github.stephenc.high-scale-lib
»
high-scale-lib |
1.1.1 | 1.1.4 |
Defect Detection
LGPL 2.1 |  | com.google.code.findbugs
»
jsr305 |
1.3.9 | 4.9.3 |
JSON Lib
Apache 2.0 |  | com.google.code.gson
»
gson1 vulnerability |
2.2.2 | 2.12.1 |
Core Utils
Apache 2.0 | | com.google.guava
»
guava3 vulnerabilities |
15.0 | 33.4.5-jre |
Dep Injection
Apache 2.0 | | com.google.inject
»
guice |
3.0 | 7.0.0 |
Apache 2.0 | | com.google.inject.extensions
»
guice-servlet |
3.0 | 7.0.0 |
Serializer
BSD 3-clause | | com.google.protobuf
»
protobuf-java6 vulnerabilities |
2.5.0 | 4.30.1 |
Apache 2.0 |  | com.jamesmurty.utils
»
java-xmlbuilder1 vulnerability |
0.4 | 1.3 |
SSH Lib
BSDISC |  | com.jcraft
»
jsch1 vulnerability |
0.1.42 | 0.2.24 |
Apache 2.0 |  | com.moz.fiji.annotations
»
annotations |
0.1.9 | 0.1.22 |
Apache 2.0 | | com.moz.fiji.checkin
»
fiji-checkin |
0.1.9 | 0.1.21 |
Apache 2.0 | | com.moz.fiji.common
»
fiji-common-flags |
0.1.9 | 0.1.22 |
Apache 2.0 | | com.moz.fiji.commons
»
fiji-commons-java |
0.1.9 | 0.1.22 |
Apache 2.0 | | com.moz.fiji.delegation
»
fiji-delegation |
0.1.9 | 0.1.22 |
Apache 2.0 | | com.moz.fiji.deps
»
jackson | 0.1.9 | 0.1.22 |
Apache 2.0 | | com.moz.fiji.deps
»
spark-core | 0.1.9 | 0.1.1 |
Apache 2.0 | | com.moz.fiji.platforms
»
cdh5.3-platform | 0.1.9 | 0.1.22 |
Apache 2.0 | | com.moz.fiji.schema
»
cdh5-bridge |
0.1.9 | 0.1.22 |
Apache 2.0 | | com.moz.fiji.schema
»
fiji-schema-avro | 0.1.9 | 0.1.22 |
Apache 2.0 | | com.moz.fiji.schema
»
fiji-schema-cassandra |
0.1.9 |
✔
|
Apache 2.0 | | com.moz.fiji.schema
»
fiji-schema |
0.1.9 | 0.1.22 |
Apache 2.0 | | com.moz.fiji.schema
»
schema-platform-api |
0.1.9 | 0.1.22 |
Compression
Apache 2.0 |  | com.ning
»
compress-lzf |
1.0.0 | 1.1.2 |
Apache 2.0BSD 2-clauseCC0 1.0EDL 1.0EPL 2.0GPLMITPublicW3C |  | com.sun.jersey
»
jersey-client |
1.9 | 3.1.10 |
CDDL 1.1GPL 1.1 | | com.sun.jersey
»
jersey-core |
1.9 | 1.19.4 |
JSON Lib
CDDL 1.1GPL 1.1 | | com.sun.jersey
»
jersey-json |
1.9 | 1.19.4 |
Apache 2.0BSDEPL 2.0GPL 2.0 | | com.sun.jersey
»
jersey-server |
1.9 | 3.1.10 |
CDDL 1.1GPL 1.1 | | com.sun.jersey.contribs
»
jersey-guice |
1.9 | 1.19.4 |
XML Processing
EDL 1.0 |  | com.sun.xml.bind
»
jaxb-impl |
2.2.3-1 | 4.0.5 |
Reflection
BSD |  | com.thoughtworks.paranamer
»
paranamer |
2.3 | 2.8.3 |
Serializer
Apache 2.0 |  | com.twitter
»
chill-java |
0.5.0 | 0.10.0 |
Serializer
Apache 2.0 | | com.twitter
»
chill_2.10 |
0.5.0 | 0.10.0 |
Config
Apache 2.0 |  | com.typesafe
»
config |
1.0.2 | 1.4.3 |
Application Metrics
Apache 2.0 |  | com.yammer.metrics
»
metrics-core |
2.2.0 | 3.0.2 |
Reflection
Apache 2.0 |  | commons-beanutils
»
commons-beanutils-core |
1.8.0 | 1.10.1 |
Reflection
Apache 2.0 | | commons-beanutils
»
commons-beanutils1 vulnerability |
1.7.0 | 1.10.1 |
CLI Parser
Apache 2.0 |  | commons-cli
»
commons-cli |
1.2 | 1.9.0 |
Base64
Apache 2.0 | | commons-codec
»
commons-codec |
1.6 | 1.18.0 |
Collections
Apache 2.0 | | commons-collections
»
commons-collections2 vulnerabilities |
3.2.1 | 4.4 |
Config
Apache 2.0 |  | commons-configuration
»
commons-configuration |
1.6 | 2.11.0 |
Apache 2.0 |  | commons-daemon
»
commons-daemon |
1.0.13 | 1.4.1 |
Config
Apache 2.0 | | commons-digester
»
commons-digester |
1.8 | 3.2 |
Expression Lang
Apache 2.0 |  | commons-el
»
commons-el |
1.0 |
✔
|
HTTP Clients
Apache 2.0 |  | commons-httpclient
»
commons-httpclient1 vulnerability |
3.1 | 4.5.14 |
I/O
Apache 2.0 |  | commons-io
»
commons-io2 vulnerabilities |
2.1 | 2.18.0 |
Core Utils
Apache 2.0 |  | commons-lang
»
commons-lang |
2.6 | 3.17.0 |
Logging
Apache 2.0 | | commons-logging
»
commons-logging |
1.1.1 | 1.3.5 |
FTP
Apache 2.0 |  | commons-net
»
commons-net1 vulnerability |
3.1 | 3.11.1 |
Object Pool
Apache 2.0 |  | commons-pool
»
commons-pool |
1.6 | 2.12.1 |
Network Framework
Apache 2.0 |  | io.netty
»
netty10 vulnerabilities |
3.9.0.Final | 4.1.119.Final |
Java Spec
EDL 1.0 |  | javax.activation
»
activation |
1.1 | 2.1.3 |
Dep Injection
Apache 2.0 | | javax.inject
»
javax.inject |
1 | 2.0.1 |
Java Spec
CDDLGPLGPL 2.0 | | javax.servlet
»
jsp-api |
2.0 | 2.2 |
Java Spec
CDDLGPL 2.0 | | javax.servlet
»
servlet-api |
2.5 | 4.0.1 |
Java Spec
CDDLGPL 2.0 | | javax.servlet.jsp
»
jsp-api |
2.1 | 2.3.3 |
XML Processing
EDL 1.0 | | javax.xml.bind
»
jaxb-api |
2.1 | 4.0.2 |
XML Processing
EDL 1.0 | | javax.xml.stream
»
stax-api |
1.0-2 | 4.0.2 |
Console
BSD 3-clause |  | jline
»
jline |
0.9.94 | 3.29.0 |
Date/Time
Apache 2.0 |  | joda-time
»
joda-time |
2.6 | 2.13.1 |
Testing
EPL 2.0 |  | junit
»
junit1 vulnerability |
4.11 | 5.12.1 |
Logging
Apache 2.0 |  | log4j
»
log4j5 vulnerabilities |
1.2.17 | 2.24.3 |
S3 Client
Apache 2.0 |  | net.java.dev.jets3t
»
jets3t |
0.9.0 | 0.9.7 |
Hashing
Apache 2.0 |  | net.jpountz.lz4
»
lz4 |
1.2.0 | 1.8.0 |
Python Integration
BSD |  | net.sf.py4j
»
py4j |
0.8.2.1 | 0.10.9.9 |
Dist Communication
Apache 2.0 |  | org.apache.avro
»
avro-ipc |
1.7.6 | 1.12.0 |
Dist Communication
Apache 2.0 | | org.apache.avro
»
avro-ipc |
1.7.6 | 1.12.0 |
Apache 2.0 | | org.apache.avro
»
avro-mapred |
1.7.6 | 1.12.0 |
Serializer
Apache 2.0 | | org.apache.avro
»
avro2 vulnerabilities |
1.7.6 | 1.12.0 |
Compression
Apache 2.0 |  | org.apache.commons
»
commons-compress5 vulnerabilities |
1.4.1 | 1.27.1 |
Core Utils
Apache 2.0 | | org.apache.commons
»
commons-lang3 |
3.3.2 | 3.17.0 |
Math Lib
Apache 2.0 | | org.apache.commons
»
commons-math3 |
3.1.1 | 4.0-beta1 |
Math Lib
Apache 2.0 | | org.apache.commons
»
commons-math |
2.1 | 3.6.1 |
Apache 2.0 |  | org.apache.curator
»
curator-client |
2.6.0 | 5.8.0 |
Dist Coordination
Apache 2.0 | | org.apache.curator
»
curator-framework |
2.4.1 | 5.8.0 |
Dist Coordination
Apache 2.0 | | org.apache.curator
»
curator-recipes |
2.4.1 | 5.8.0 |
Apache 2.0 |  | org.apache.directory.api
»
api-asn1-api |
1.0.0-M20 | 2.1.7 |
Apache 2.0 | | org.apache.directory.api
»
api-util |
1.0.0-M20 | 2.1.7 |
Apache 2.0 | | org.apache.directory.server
»
apacheds-i18n |
2.0.0-M15 | 2.0.0.AM27 |
Apache 2.0 | | org.apache.directory.server
»
apacheds-kerberos-codec |
2.0.0-M15 | 2.0.0.AM27 |
Annotation Lib
Apache 2.0 |  | org.apache.hadoop
»
hadoop-annotations |
2.5.0-cdh5.3.1 | 3.4.1 |
Auth Lib
Apache 2.0 | | org.apache.hadoop
»
hadoop-auth |
2.5.0-cdh5.3.1 | 3.4.1 |
Apache 2.0 | | org.apache.hadoop
»
hadoop-aws |
2.5.0-cdh5.3.1 | 3.4.1 |
Dist Computing
Apache 2.0 | | org.apache.hadoop
»
hadoop-client3 vulnerabilities |
2.5.0-cdh5.3.1 | 3.4.1 |
Apache 2.0 | | org.apache.hadoop
»
hadoop-common8 vulnerabilities |
2.5.0-cdh5.3.1 | 3.4.1 |
Dist FS
Apache 2.0 | | org.apache.hadoop
»
hadoop-hdfs |
2.5.0-cdh5.3.1 | 3.4.1 |
Apache 2.0 | | org.apache.hadoop
»
hadoop-mapreduce-client-app |
2.5.0-cdh5.3.1 | 3.4.1 |
Apache 2.0 | | org.apache.hadoop
»
hadoop-mapreduce-client-common |
2.5.0-cdh5.3.1 | 3.4.1 |
Apache 2.0 | | org.apache.hadoop
»
hadoop-mapreduce-client-core |
2.5.0-cdh5.3.1 | 3.4.1 |
Apache 2.0 | | org.apache.hadoop
»
hadoop-mapreduce-client-jobclient |
2.5.0-cdh5.3.1 | 3.4.1 |
Apache 2.0 | | org.apache.hadoop
»
hadoop-mapreduce-client-shuffle |
2.5.0-cdh5.3.1 | 3.4.1 |
Cluster Managment
Apache 2.0 | | org.apache.hadoop
»
hadoop-yarn-api |
2.5.0-cdh5.3.1 | 3.4.1 |
Apache 2.0 | | org.apache.hadoop
»
hadoop-yarn-client |
2.5.0-cdh5.3.1 | 3.4.1 |
Cluster Managment
Apache 2.0 | | org.apache.hadoop
»
hadoop-yarn-common |
2.5.0-cdh5.3.1 | 3.4.1 |
Apache 2.0 | | org.apache.hadoop
»
hadoop-yarn-server-common1 vulnerability |
2.5.0-cdh5.3.1 | 3.4.1 |
Apache 2.0 | | org.apache.hadoop
»
hadoop-yarn-server-nodemanager |
2.5.0-cdh5.3.1 | 3.4.1 |
Apache 2.0 | | org.apache.hadoop
»
hadoop-yarn-server-web-proxy |
2.5.0-cdh5.3.1 | 3.4.1 |
HBase Client
Apache 2.0 |  | org.apache.hbase
»
hbase-client |
0.98.6-cdh5.3.1 | 2.6.2 |
Apache 2.0 | | org.apache.hbase
»
hbase-common |
0.98.6-cdh5.3.1 | 2.6.2 |
Apache 2.0 | | org.apache.hbase
»
hbase-hadoop-compat |
0.98.6-cdh5.3.1 | 2.6.2 |
Apache 2.0 | | org.apache.hbase
»
hbase-hadoop2-compat |
0.98.6-cdh5.3.1 | 2.6.2 |
Apache 2.0 | | org.apache.hbase
»
hbase-prefix-tree |
0.98.6-cdh5.3.1 | 1.7.2 |
Apache 2.0 | | org.apache.hbase
»
hbase-protocol |
0.98.6-cdh5.3.1 | 2.6.2 |
Apache 2.0 | | org.apache.hbase
»
hbase-server |
0.98.6-cdh5.3.1 | 2.6.2 |
HTTP Clients
Apache 2.0 |  | org.apache.httpcomponents
»
httpclient3 vulnerabilities |
4.2.3 | 5.4.2 |
HTTP Clients
Apache 2.0 | | org.apache.httpcomponents
»
httpcore |
4.2.2 | 5.3.4 |
Cluster Managment
Apache 2.0 |  | org.apache.mesos
»
mesos5 vulnerabilities |
0.18.1 | 1.11.0 |
Dist Computing
Apache 2.0 |  | org.apache.spark
»
spark-core_2.105 vulnerabilities |
1.2.0-cdh5.3.1 | 3.5.5 |
Apache 2.0 | | org.apache.spark
»
spark-network-common_2.10 |
1.2.0-cdh5.3.1 | 3.5.5 |
Apache 2.0 | | org.apache.spark
»
spark-network-shuffle_2.10 |
1.2.0-cdh5.3.1 | 3.5.5 |
Template Engine
Apache 2.0 |  | org.apache.velocity
»
velocity1 vulnerability |
1.7 | 2.4.1 |
Dist Coordination
Apache 2.0 |  | org.apache.zookeeper
»
zookeeper4 vulnerabilities |
3.4.5-cdh5.3.1 | 3.9.3 |
Dist Tracing
Apache 2.0 |  | org.cloudera.htrace
»
htrace-core |
2.04 | 3.0.4 |
JSON Lib
Apache 2.0 |  | org.codehaus.jackson
»
jackson-core-asl |
1.9.13 | 2.18.3 |
Apache 2.0 | | org.codehaus.jackson
»
jackson-jaxrs |
1.9.13 | 2.18.3 |
JSON Lib
Apache 2.0 | | org.codehaus.jackson
»
jackson-mapper-asl2 vulnerabilities |
1.9.13 | 2.18.3 |
Annotation Lib
Apache 2.0 | | org.codehaus.jackson
»
jackson-xc |
1.9.13 | 2.18.3 |
JSON Lib
Apache 2.0 | | org.codehaus.jettison
»
jettison5 vulnerabilities |
1.1 | 1.5.4 |
EPL 1.0 |  | org.eclipse.jdt
»
core |
3.1.1 | 3.3.0-v_771 |
Apache 2.0EPL 1.0 |  | org.eclipse.jetty
»
jetty-continuation |
8.1.14.v20131031 | 9.4.57.v20241219 |
Apache 2.0EPL 2.0 | | org.eclipse.jetty
»
jetty-http2 vulnerabilities |
8.1.14.v20131031 | 12.0.18 |
I/O
Apache 2.0EPL 2.0 | | org.eclipse.jetty
»
jetty-io |
8.1.14.v20131031 | 12.0.18 |
Apache 2.0EPL 2.0 | | org.eclipse.jetty
»
jetty-jndi |
8.1.14.v20131031 | 12.0.18 |
Apache 2.0EPL 2.0 | | org.eclipse.jetty
»
jetty-plus |
8.1.14.v20131031 | 12.0.18 |
Apache 2.0EPL 2.0 | | org.eclipse.jetty
»
jetty-security |
8.1.14.v20131031 | 12.0.18 |
Web Server
Apache 2.0EPL 2.0 | | org.eclipse.jetty
»
jetty-server11 vulnerabilities |
8.1.14.v20131031 | 12.0.18 |
Apache 2.0EPL 2.0 | | org.eclipse.jetty
»
jetty-servlet |
8.1.14.v20131031 | 12.0.18 |
Apache 2.0EPL 2.0 | | org.eclipse.jetty
»
jetty-util |
8.1.14.v20131031 | 12.0.18 |
Apache 2.0EPL 2.0 | | org.eclipse.jetty
»
jetty-webapp1 vulnerability |
8.1.14.v20131031 | 12.0.18 |
Apache 2.0EPL 2.0 | | org.eclipse.jetty
»
jetty-xml |
8.1.14.v20131031 | 12.0.18 |
Apache 2.0EPL 1.0 | | org.eclipse.jetty.orbit
»
javax.activation |
1.1.0.v201105071233 |
✔
|
Apache 2.0EPL 1.0 | | org.eclipse.jetty.orbit
»
javax.mail.glassfish |
1.4.1.v201005082020 |
✔
|
CDDLGPL 2.0 | | org.eclipse.jetty.orbit
»
javax.servlet |
3.0.0.v201112011016 | 4.0.1 |
Apache 2.0EPL 1.0 | | org.eclipse.jetty.orbit
»
javax.transaction |
1.1.1.v201105210645 |
✔
|
LevelDB
BSD 3-clause |  | org.fusesource.leveldbjni
»
leveldbjni-all |
1.8 |
✔
|
Testing
BSD 3-clause |  | org.hamcrest
»
hamcrest-core |
1.3 | 3.0 |
Template Engine
MPL 2.0 |  | org.jamon
»
jamon-runtime |
2.3.1 | 2.4.1 |
Network Framework
Apache 2.0 |  | org.jboss.netty
»
netty10 vulnerabilities |
3.2.2.Final | 3.10.6.Final |
Apache 2.0 |  | org.json4s
»
json4s-ast_2.10 |
3.2.10 | 4.0.7 |
Apache 2.0 | | org.json4s
»
json4s-core_2.10 |
3.2.10 | 4.0.7 |
JSON Lib
Apache 2.0 | | org.json4s
»
json4s-jackson_2.10 |
3.2.10 | 4.0.7 |
Apache 2.0 |  | org.mortbay.jetty
»
jetty-sslengine |
6.1.26.cloudera.4 | 6.1.26 |
Apache 2.0EPL 2.0 | | org.mortbay.jetty
»
jetty-util |
6.1.26 | 12.0.18 |
Web Server
Apache 2.0EPL 2.0 | | org.mortbay.jetty
»
jetty |
6.1.26 | 12.0.18 |
CDDL 1.0 | | org.mortbay.jetty
»
jsp-2.1 |
6.1.14 |
✔
|
Apache 2.0 | | org.mortbay.jetty
»
jsp-api-2.1 |
6.1.14 |
✔
|
CDDLGPLGPL 2.0 | | org.mortbay.jetty
»
servlet-api-2.5 |
6.1.14 | 2.5 |
CDDLGPLGPL 2.0 | | org.mortbay.jetty
»
servlet-api |
2.5-20081211 | 2.5 |
Reflection
Apache 2.0 |  | org.objenesis
»
objenesis |
1.2 | 3.4 |
Collections
Apache 2.0 |  | org.roaringbitmap
»
RoaringBitmap |
0.4.5 | 1.3.0 |
Scala Compiler
Apache 2.0 |  | org.scala-lang
»
scala-compiler1 vulnerability |
2.10.0 | 3.6.4 |
JVM Languages
Apache 2.0 | | org.scala-lang
»
scala-library |
2.10.4 | 3.6.4 |
Scala Compiler
Apache 2.0 | | org.scala-lang
»
scala-reflect |
2.10.0 | 2.13.16 |
Bytecode
Apache 2.0 | | org.scala-lang
»
scalap |
2.10.0 | 2.13.16 |
Logging Bridge
Apache 2.0 |  | org.slf4j
»
jcl-over-slf4j |
1.7.5 | 2.0.17 |
Logging Bridge
MIT | | org.slf4j
»
jul-to-slf4j |
1.7.5 | 2.0.17 |
Logging
MIT | | org.slf4j
»
slf4j-api |
1.7.5 | 2.0.17 |
Logging Bridge
MIT | | org.slf4j
»
slf4j-log4j12 |
1.7.5 | 2.0.17 |
Apache 2.0 |  | org.sonatype.sisu.inject
»
cglib |
2.2.1-v20090111 | 3.1.1 |
MIT |  | org.spark-project
»
pyrolite |
2.0.1 | 4.4 |
Actor Framework
BUSL 1.1 | | org.spark-project.akka
»
akka-actor_2.10 |
2.2.3-shaded-protobuf | 2.10.2 |
Dist Communication
BUSL 1.1 | | org.spark-project.akka
»
akka-remote_2.10 |
2.2.3-shaded-protobuf | 2.10.2 |
Logging
BUSL 1.1 | | org.spark-project.akka
»
akka-slf4j_2.10 |
2.2.3-shaded-protobuf | 2.10.2 |
BSD | | org.spark-project.protobuf
»
protobuf-java |
2.4.1-shaded | 2.5.0-spark |
Apache 2.0 | | org.spark-project.spark
»
unused |
1.0.0 |
✔
|
Apache |  | org.tachyonproject
»
tachyon-client |
0.5.0 | 0.8.2 |
Dist FS
Apache | | org.tachyonproject
»
tachyon |
0.5.0 | 0.6.4 |
Compression
|  | org.tukaani
»
xz |
1.0 | 1.10 |
Random Num Gen
Apache 2.0 |  | org.uncommons.maths
»
uncommons-maths |
1.2.2a | 1.2.2 |
Compression
Apache 2.0 |  | org.xerial.snappy
»
snappy-java4 vulnerabilities |
1.0.5 | 1.1.10.7 |
XML Processing
CDDL 1.0GPL |  | stax
»
stax-api |
1.0.1 | 1.0-2 |
Apache 2.0 |  | tomcat
»
jasper-compiler |
5.5.23 |
✔
|
Apache 2.0 | | tomcat
»
jasper-runtime |
5.5.23 |
✔
|
BSD |  | xmlenc
»
xmlenc |
0.52 |
✔
|
