EPL 1.0LGPL 2.1 |  | ch.qos.logback
»
logback-access |
1.2.3 | 1.4.14 |
Logging
EPL 1.0LGPL 2.1 | | ch.qos.logback
»
logback-classic1 vulnerability |
1.2.3 | 1.5.6 |
Logging
EPL 1.0LGPL 2.1 | | ch.qos.logback
»
logback-core2 vulnerabilities |
1.2.3 | 1.5.6 |
Apache 2.0 |  | com.addthis.metrics
»
reporter-config-base |
3.0.0 | 3.2.2 |
Apache 2.0 | | com.addthis.metrics
»
reporter-config3 |
3.0.0 | 3.2.2 |
Collections
MIT |  | com.boundary
»
high-scale-lib |
1.0.6 |
✔
|
Collections
Apache 2.0 |  | com.carrotsearch
»
hppc |
0.5.4 | 0.9.1 |
Streaming
Apache 2.0 |  | com.clearspring.analytics
»
stream |
2.5.2 | 2.9.8 |
Cassandra Client
Apache 2.0 |  | com.datastax.cassandra
»
cassandra-driver-core |
3.8.0 | 4.17.0 |
Reflection
Apache 2.0 |  | com.fasterxml
»
classmate |
1.3.4 | 1.7.0 |
Bill of materials
Apache 2.0 | | com.fasterxml.jackson
»
jackson-bom |
2.12.1 | 2.17.1 |
Annotation Lib
Apache 2.0 | | com.fasterxml.jackson.core
»
jackson-annotations |
2.12.1 | 2.17.1 |
JSON Lib
Apache 2.0 | | com.fasterxml.jackson.core
»
jackson-core |
2.12.1 | 2.17.1 |
JSON Lib
Apache 2.0 | | com.fasterxml.jackson.core
»
jackson-databind4 vulnerabilities |
2.12.1 | 2.17.1 |
Serializer
Apache 2.0 | | com.fasterxml.jackson.dataformat
»
jackson-dataformat-cbor |
2.12.1 | 2.17.1 |
Serializer
Apache 2.0 | | com.fasterxml.jackson.dataformat
»
jackson-dataformat-smile |
2.12.1 | 2.17.1 |
YAML
Apache 2.0 | | com.fasterxml.jackson.dataformat
»
jackson-dataformat-yaml |
2.12.1 | 2.17.1 |
Apache 2.0 | | com.fasterxml.jackson.datatype
»
jackson-datatype-guava |
2.12.1 | 2.17.1 |
Apache 2.0 | | com.fasterxml.jackson.datatype
»
jackson-datatype-jdk8 |
2.12.1 | 2.17.1 |
Apache 2.0 | | com.fasterxml.jackson.datatype
»
jackson-datatype-joda |
2.12.1 | 2.17.1 |
Date/Time
Apache 2.0 | | com.fasterxml.jackson.datatype
»
jackson-datatype-jsr310 |
2.12.1 | 2.17.1 |
Apache 2.0 | | com.fasterxml.jackson.jaxrs
»
jackson-jaxrs-base |
2.12.1 | 2.17.1 |
Apache 2.0 | | com.fasterxml.jackson.jaxrs
»
jackson-jaxrs-cbor-provider |
2.12.1 | 2.17.1 |
Apache 2.0 | | com.fasterxml.jackson.jaxrs
»
jackson-jaxrs-json-provider |
2.12.1 | 2.17.1 |
Apache 2.0 | | com.fasterxml.jackson.module
»
jackson-module-afterburner |
2.12.1 | 2.17.1 |
Annotation Lib
Apache 2.0 | | com.fasterxml.jackson.module
»
jackson-module-jaxb-annotations |
2.12.1 | 2.17.1 |
Apache 2.0 | | com.fasterxml.jackson.module
»
jackson-module-parameter-names |
2.12.1 | 2.17.1 |
Cache Impl
Apache 2.0 |  | com.github.ben-manes.caffeine
»
caffeine |
2.9.0 | 3.1.8 |
Object Size
Apache 2.0 | | com.github.jbellis
»
jamm |
0.3.0 | 0.4.0 |
Apache 2.0LGPL 3.0 | | com.github.jnr
»
jffi |
1.2.16 | 1.3.13 |
Apache 2.0 | | com.github.jnr
»
jnr-constants |
0.9.9 | 0.10.4 |
Native Access
Apache 2.0 | | com.github.jnr
»
jnr-ffi |
2.1.7 | 2.2.16 |
Native Access
EPL 2.0GPL 2.0LGPL 2.1 | | com.github.jnr
»
jnr-posix |
3.0.44 | 3.1.19 |
MIT | | com.github.jnr
»
jnr-x86asm |
1.0.2 |
✔
|
Apache 2.0 | | com.github.rholder
»
guava-retrying |
2.0.0 |
✔
|
BSD | | com.github.rholder
»
snowball-stemmer |
1.3.0.581.1 |
✔
|
Apache 2.0 | | com.github.tjake
»
crc32ex |
0.1.1 | 0.1.2 |
Semantic Versioning
MIT | | com.github.zafarkhaja
»
java-semver |
0.9.0 | 0.10.2 |
Annotation Tool
Apache 2.0 |  | com.google.auto
»
auto-common |
0.11 | 1.2.2 |
Config
Apache 2.0 | | com.google.auto.service
»
auto-service |
1.0-rc6 | 1.1.1 |
Annotation Lib
Apache 2.0 | | com.google.auto.service
»
auto-service-annotations |
1.0-rc6 | 1.1.1 |
Defect Detection
LGPL 2.1 |  | com.google.code.findbugs
»
annotations |
3.0.1 | 4.8.5 |
Annotation Lib
LGPL 2.1 | | com.google.code.findbugs
»
findbugs-annotations |
3.0.1 | 4.8.5 |
Defect Detection
Apache 2.0 | | com.google.code.findbugs
»
jsr305 |
3.0.2 |
✔
|
Dep Injection
Apache 2.0 | | com.google.dagger
»
dagger |
2.33 | 2.51.1 |
Apache 2.0 | | com.google.dagger
»
dagger-compiler |
2.29.1 | 2.51.1 |
Apache 2.0 | | com.google.dagger
»
dagger-producers |
2.29.1 | 2.51.1 |
Apache 2.0 | | com.google.dagger
»
dagger-spi |
2.29.1 | 2.51.1 |
Defect Detection
Apache 2.0 | | com.google.errorprone
»
error_prone_annotations |
2.6.0 | 2.27.1 |
GPL 2.0 | | com.google.errorprone
»
javac-shaded |
9-dev-r4023-3 | 9+181-r4173-1 |
Apache 2.0 | | com.google.googlejavaformat
»
google-java-format |
1.5 | 1.22.0 |
Apache 2.0 | | com.google.guava
»
failureaccess |
1.0.1 | 1.0.2 |
Core Utils
Apache 2.0 | | com.google.guava
»
guava2 vulnerabilities |
30.1.1-jre | 33.2.0-jre |
Apache 2.0 | | com.google.guava
»
listenablefuture |
9999.0-empty-to-avoid-con... |
✔
|
Annotation Lib
Apache 2.0 | | com.google.j2objc
»
j2objc-annotations |
1.3 | 3.0.0 |
Data Format
BSD 3-clause | | com.google.protobuf
»
protobuf-java4 vulnerabilities |
3.15.7 | 4.26.1 |
Collections
Apache 2.0 | | com.googlecode.concurrentlinkedhashmap
»
concurrentlinkedhashmap-lru |
1.4 | 1.4.2 |
JSON Lib
Apache 2.0 | | com.googlecode.json-simple
»
json-simple |
1.1 | 1.1.1 |
BSD | | com.googlecode.protobuf-java-format
»
protobuf-java-format |
1.2 | 1.4 |
Compression
BSD |  | com.jcraft
»
jzlib |
1.1.3 |
✔
|
Concurrency
Apache 2.0 |  | com.lmax
»
disruptor |
3.4.2 | 4.0.0 |
Apache 2.0 |  | com.netflix.concurrency-limits
»
concurrency-limits-core |
0.2.2 | 0.5.0 |
Apache 2.0 |  | com.netflix.feign
»
feign-core |
8.18.0 | 13.2.1 |
Apache 2.0 | | com.netflix.feign
»
feign-jackson |
8.18.0 | 13.2.1 |
Apache 2.0 | | com.netflix.feign
»
feign-jaxrs |
8.18.0 |
✔
|
Apache 2.0 | | com.netflix.feign
»
feign-okhttp |
8.18.0 |
✔
|
Apache 2.0 | | com.netflix.feign
»
feign-slf4j |
8.18.0 |
✔
|
Compression
Apache 2.0 |  | com.ning
»
compress-lzf |
0.8.4 | 1.1.2 |
JDBC Driver
|  | com.oracle.database.jdbc
»
ojdbc8 |
21.1.0.0 | 19.23.0.0 |
Apache 2.0 |  | com.palantir.cassandra
»
cassandra-all |
2.2.13-1.6.0 | 2.2.18-2.2.18-1.111.0 |
Apache 2.0 | | com.palantir.cassandra
»
cassandra-thrift |
2.2.13-1.6.0 | 2.2.18-2.2.18-1.111.0 |
Apache 2.0 | | com.palantir.common
»
streams |
1.9.1 | 2.3.0 |
Apache 2.0 | | com.palantir.config.crypto
»
encrypted-config-value |
2.1.0 | 6.0.0 |
Apache 2.0 | | com.palantir.config.crypto
»
encrypted-config-value-module |
2.1.0 | 6.0.0 |
Apache 2.0 | | com.palantir.conjure.java
»
conjure-lib |
5.51.0 | 8.21.0 |
Apache 2.0 | | com.palantir.conjure.java
»
conjure-undertow-lib |
5.51.0 | 8.21.0 |
Apache 2.0 | | com.palantir.conjure.java.api
»
errors |
2.16.2 | 2.52.0 |
Apache 2.0 | | com.palantir.conjure.java.api
»
service-config |
2.16.2 | 2.52.0 |
Apache 2.0 | | com.palantir.conjure.java.api
»
ssl-config |
2.16.2 | 2.52.0 |
Apache 2.0 | | com.palantir.conjure.java.runtime
»
client-config |
6.15.0 | 8.8.0 |
Apache 2.0 | | com.palantir.conjure.java.runtime
»
conjure-java-jackson-serialization |
6.15.0 | 8.8.0 |
Apache 2.0 | | com.palantir.conjure.java.runtime
»
conjure-java-jaxrs-client |
6.15.0 | 8.8.0 |
Apache 2.0 | | com.palantir.conjure.java.runtime
»
conjure-java-jersey-server |
6.15.0 | 8.8.0 |
Apache 2.0 | | com.palantir.conjure.java.runtime
»
keystores |
6.15.0 | 8.8.0 |
Apache 2.0 | | com.palantir.conjure.java.runtime
»
okhttp-clients |
6.15.0 | 8.8.0 |
Apache 2.0 | | com.palantir.conjure.java.runtime
»
refresh-utils |
6.15.0 | 8.8.0 |
Apache 2.0 | | com.palantir.dialogue
»
dialogue-apache-hc5-client |
1.109.0 | 3.133.0 |
Apache 2.0 | | com.palantir.dialogue
»
dialogue-blocking-channels |
1.109.0 | 3.133.0 |
Apache 2.0 | | com.palantir.dialogue
»
dialogue-clients |
1.109.0 | 3.133.0 |
Apache 2.0 | | com.palantir.dialogue
»
dialogue-core |
1.109.0 | 3.133.0 |
Apache 2.0 | | com.palantir.dialogue
»
dialogue-futures |
1.109.0 | 3.133.0 |
Apache 2.0 | | com.palantir.dialogue
»
dialogue-serde |
1.109.0 | 3.133.0 |
Apache 2.0 | | com.palantir.dialogue
»
dialogue-target |
1.109.0 | 3.133.0 |
Apache 2.0 | | com.palantir.docker.compose
»
docker-compose-rule-core |
1.5.0 | 2.3.0 |
Apache 2.0 | | com.palantir.docker.compose
»
docker-compose-rule-events-api-objects |
1.5.0 | 2.3.0 |
Apache 2.0 | | com.palantir.docker.compose
»
docker-compose-rule-junit4 |
1.5.0 | 2.3.0 |
Apache 2.0 | | com.palantir.docker.proxy
»
docker-proxy-rule-core |
1.1.1 | 1.11.0 |
Apache 2.0 | | com.palantir.docker.proxy
»
docker-proxy-rule-junit4 |
1.1.1 | 1.11.0 |
Apache 2.0 | | com.palantir.patches.sourceforge
»
trove3 |
3.0.3-p5 | 3.0.3-p9 |
Apache 2.0 | | com.palantir.refreshable
»
refreshable |
1.2.0 | 2.5.0 |
| | com.palantir.remoting2
»
error-handling |
2.6.3 | 3.46.0 |
| | com.palantir.remoting2
»
jackson-support |
2.6.3 | 3.46.0 |
Apache 2.0 | | com.palantir.ri
»
resource-identifier |
1.1.0 | 2.7.0 |
Apache 2.0 | | com.palantir.safe-logging
»
preconditions |
1.14.0 | 3.7.0 |
Apache 2.0 | | com.palantir.safe-logging
»
safe-logging |
1.14.0 | 3.7.0 |
Apache 2.0 | | com.palantir.safethreadlocalrandom
»
safe-thread-local-random |
0.1.0 | 0.3.0 |
Apache 2.0 | | com.palantir.sls.versions
»
sls-versions |
0.14.0 | 1.5.0 |
Apache 2.0 | | com.palantir.tokens
»
auth-tokens |
3.8.1 | 3.18.0 |
Apache 2.0 | | com.palantir.tracing
»
tracing |
4.13.0 | 6.18.0 |
Apache 2.0 | | com.palantir.tracing
»
tracing-api |
4.13.0 | 6.18.0 |
Apache 2.0 | | com.palantir.tracing
»
tracing-jersey |
4.13.0 | 6.18.0 |
Apache 2.0 | | com.palantir.tracing
»
tracing-okhttp3 |
4.13.0 | 6.18.0 |
Apache 2.0 | | com.palantir.tritium
»
tritium-api |
0.18.8 | 0.88.0 |
Apache 2.0 | | com.palantir.tritium
»
tritium-caffeine |
0.18.8 | 0.88.0 |
Apache 2.0 | | com.palantir.tritium
»
tritium-core |
0.18.8 | 0.88.0 |
Apache 2.0 | | com.palantir.tritium
»
tritium-lib |
0.18.8 | 0.88.0 |
Apache 2.0 | | com.palantir.tritium
»
tritium-metrics |
0.18.8 | 0.88.0 |
Apache 2.0 | | com.palantir.tritium
»
tritium-proxy |
0.18.8 | 0.88.0 |
Apache 2.0 | | com.palantir.tritium
»
tritium-registry |
0.18.8 | 0.88.0 |
Apache 2.0 | | com.palantir.tritium
»
tritium-slf4j |
0.18.8 | 0.88.0 |
Apache 2.0 | | com.palantir.tritium
»
tritium-tracing |
0.18.8 | 0.88.0 |
Profilers
Apache 2.0 |  | com.papertrail
»
profiler |
1.0.2 |
✔
|
CodeGen
Apache 2.0 |  | com.squareup
»
javapoet |
1.13.0 |
✔
|
Apache 2.0 | | com.squareup.okhttp3
»
logging-interceptor |
3.13.1 | 4.12.0 |
HTTP Clients
Apache 2.0 | | com.squareup.okhttp3
»
okhttp |
3.13.1 | 4.12.0 |
I/O
Apache 2.0 | | com.squareup.okio
»
okio1 vulnerability |
1.17.2 | 3.9.0 |
Apache 2.0 |  | com.thinkaurelius.thrift
»
thrift-server |
0.3.7 | 0.3.9 |
JDBC Pool
Apache 2.0 |  | com.zaxxer
»
HikariCP |
4.0.3 | 5.1.0 |
CLI Parser
Apache 2.0 |  | commons-cli
»
commons-cli |
1.4 | 1.7.0 |
Base64
Apache 2.0 |  | commons-codec
»
commons-codec |
1.13 | 1.17.0 |
Apache 2.0 |  | commons-dbutils
»
commons-dbutils |
1.3 | 1.8.1 |
I/O
Apache 2.0 |  | commons-io
»
commons-io |
2.8.0 | 2.16.1 |
Parser Generator
BSD 3-clause |  | de.jflex
»
jflex |
1.6.0 | 1.9.1 |
CLI Parser
Apache 2.0 |  | info.picocli
»
picocli |
4.3.2 | 4.7.6 |
CLI Parser
Apache 2.0 |  | io.airlift
»
airline |
0.9 |
✔
|
Config
Apache 2.0 |  | io.dropwizard
»
dropwizard-configuration |
2.0.2 | 4.0.7 |
Apache 2.0 | | io.dropwizard
»
dropwizard-core |
2.0.2 | 4.0.7 |
Apache 2.0 | | io.dropwizard
»
dropwizard-http2 |
2.0.2 | 4.0.7 |
Apache 2.0 | | io.dropwizard
»
dropwizard-jackson |
2.0.2 | 4.0.7 |
Apache 2.0 | | io.dropwizard
»
dropwizard-jersey |
2.0.2 | 4.0.7 |
Apache 2.0 | | io.dropwizard
»
dropwizard-jetty |
2.0.2 | 4.0.7 |
Apache 2.0 | | io.dropwizard
»
dropwizard-lifecycle |
2.0.2 | 4.0.7 |
Apache 2.0 | | io.dropwizard
»
dropwizard-logging |
2.0.2 | 4.0.7 |
Apache 2.0 | | io.dropwizard
»
dropwizard-metrics |
2.0.2 | 4.0.7 |
Apache 2.0 | | io.dropwizard
»
dropwizard-request-logging |
2.0.2 | 4.0.7 |
Apache 2.0 | | io.dropwizard
»
dropwizard-servlets |
2.0.2 | 4.0.7 |
Apache 2.0 | | io.dropwizard
»
dropwizard-util |
2.0.2 | 4.0.7 |
Validation
Apache 2.0 | | io.dropwizard
»
dropwizard-validation1 vulnerability |
2.0.2 | 4.0.7 |
Apache 2.0 | | io.dropwizard.logback
»
logback-throttling-appender |
1.1.0 | 1.5.0 |
Apache 2.0 | | io.dropwizard.metrics
»
metrics-annotation |
3.2.6 | 4.2.25 |
Application Metrics
Apache 2.0 | | io.dropwizard.metrics
»
metrics-core |
3.2.6 | 4.2.25 |
Apache 2.0 | | io.dropwizard.metrics
»
metrics-healthchecks |
3.2.6 | 4.2.25 |
Apache 2.0 | | io.dropwizard.metrics
»
metrics-jersey2 |
3.2.6 | 4.2.25 |
Apache 2.0 | | io.dropwizard.metrics
»
metrics-jetty9 |
3.2.6 | 4.2.25 |
Apache 2.0 | | io.dropwizard.metrics
»
metrics-jmx |
4.1.2 | 4.2.25 |
Apache 2.0 | | io.dropwizard.metrics
»
metrics-json |
3.2.6 | 4.2.25 |
Apache 2.0 | | io.dropwizard.metrics
»
metrics-jvm |
3.2.6 | 4.2.25 |
Apache 2.0 | | io.dropwizard.metrics
»
metrics-logback |
3.2.6 | 4.2.25 |
Apache 2.0 | | io.dropwizard.metrics
»
metrics-servlets |
3.2.6 | 4.2.25 |
Reflection
Apache 2.0 |  | io.leangen.geantyref
»
geantyref |
1.3.7 | 1.3.15 |
Network Framework
Apache 2.0 |  | io.netty
»
netty-all |
4.1.49.Final | 4.1.109.Final |
Apache 2.0 | | io.netty
»
netty-buffer |
4.1.49.Final | 4.1.109.Final |
Netty Codec
Apache 2.0 | | io.netty
»
netty-codec2 vulnerabilities |
4.1.49.Final | 4.1.109.Final |
Netty Codec
Apache 2.0 | | io.netty
»
netty-codec-http4 vulnerabilities |
4.1.49.Final | 4.1.109.Final |
Netty Codec
Apache 2.0 | | io.netty
»
netty-codec-socks |
4.1.49.Final | 4.1.109.Final |
Apache 2.0 | | io.netty
»
netty-common |
4.1.49.Final | 4.1.109.Final |
Apache 2.0 | | io.netty
»
netty-handler2 vulnerabilities |
4.1.49.Final | 4.1.109.Final |
Apache 2.0 | | io.netty
»
netty-handler-proxy |
4.1.49.Final | 4.1.109.Final |
Apache 2.0 | | io.netty
»
netty-resolver |
4.1.49.Final | 4.1.109.Final |
Apache 2.0 | | io.netty
»
netty-transport |
4.1.49.Final | 4.1.109.Final |
Web Server
Apache 2.0 |  | io.undertow
»
undertow-core8 vulnerabilities |
2.2.7.Final | 2.3.13.Final |
Collections
Apache 2.0 |  | it.unimi.dsi
»
fastutil |
6.5.7 | 8.5.13 |
Java Spec
EDL 1.0 |  | jakarta.activation
»
jakarta.activation-api |
1.2.1 | 2.1.3 |
Annotation Lib
EPL 2.0GPL | | jakarta.annotation
»
jakarta.annotation-api |
1.3.5 | 3.0.0 |
Dep Injection
Apache 2.0 | | jakarta.inject
»
jakarta.inject-api |
1.0 | 2.0.1 |
Java Spec
EPL 2.0GPL | | jakarta.servlet
»
jakarta.servlet-api |
4.0.3 | 6.0.0 |
Validation
Apache 2.0 | | jakarta.validation
»
jakarta.validation-api |
2.0.2 | 3.0.2 |
Java Spec
EPL 2.0GPL 2.0 | | jakarta.ws.rs
»
jakarta.ws.rs-api |
2.1.6 | 4.0.0 |
XML Processing
EDL 1.0 | | jakarta.xml.bind
»
jakarta.xml.bind-api |
2.3.2 | 4.0.2 |
Java Spec
CDDLGPL 2.0 |  | javax.annotation
»
jsr250-api |
1.0 | 1.3.2 |
Console
BSD 3-clause |  | jline
»
jline |
2.14.6 | 3.26.1 |
Date/Time
Apache 2.0 |  | joda-time
»
joda-time |
2.10.10 | 2.12.7 |
Testing
EPL 2.0 |  | junit
»
junit |
4.13.2 | 5.10.2 |
Bytecode
Apache 2.0 |  | net.bytebuddy
»
byte-buddy |
1.10.22 | 1.14.15 |
Bytecode
Apache 2.0 | | net.bytebuddy
»
byte-buddy-agent |
1.10.20 | 1.14.15 |
Native Access
Apache 2.0LGPL 2.1 |  | net.java.dev.jna
»
jna |
4.1.0 | 5.14.0 |
Annotation Lib
Public |  | net.jcip
»
jcip-annotations |
1.0 |
✔
|
Hashing
Apache 2.0 |  | net.jpountz.lz4
»
lz4 |
1.3.0 | 1.8.0 |
Apache 2.0 |  | net.ltgt.gradle.incap
»
incap |
0.2 | 1.0.0 |
CLI Parser
MIT |  | net.sf.jopt-simple
»
jopt-simple |
4.6 | 5.0.4 |
CSV
Apache 2.0 | | net.sf.supercsv
»
super-csv |
2.1.0 | 2.4.0 |
CLI Parser
MIT |  | net.sourceforge.argparse4j
»
argparse4j |
0.8.1 | 0.9.0 |
Apache 2.0 |  | one.util
»
streamex |
0.7.3 | 0.8.2 |
BSD |  | org.antlr
»
ST4 |
4.0.8 | 4.3.4 |
Parser Generator
BSD 3-clause | | org.antlr
»
antlr |
3.5.2 | 4.13.1 |
BSD 3-clause | | org.antlr
»
antlr-runtime |
3.5.2 | 4.13.1 |
Parser Generator
BSD 3-clause | | org.antlr
»
antlr4-runtime |
4.7.2 | 4.13.1 |
Build Tool
Apache 2.0 |  | org.apache.ant
»
ant3 vulnerabilities |
1.9.15 | 1.10.14 |
Apache 2.0 | | org.apache.ant
»
ant-launcher |
1.9.15 | 1.10.14 |
Core Utils
Apache 2.0 |  | org.apache.commons
»
commons-lang3 |
3.9 | 3.14.0 |
Math Lib
Apache 2.0 | | org.apache.commons
»
commons-math3 |
3.2 | 3.6.1 |
Object Pool
Apache 2.0 | | org.apache.commons
»
commons-pool2 |
2.9.0 | 2.12.0 |
String Utils
Apache 2.0 | | org.apache.commons
»
commons-text1 vulnerability |
1.8 | 1.12.0 |
HTTP Clients
Apache 2.0 |  | org.apache.httpcomponents.client5
»
httpclient5 |
5.0.3 | 5.3.1 |
Apache 2.0 | | org.apache.httpcomponents.core5
»
httpcore5 |
5.1 | 5.2.4 |
Apache 2.0 | | org.apache.httpcomponents.core5
»
httpcore5-h2 |
5.0.2 | 5.2.4 |
Serializer
Apache 2.0 |  | org.apache.thrift
»
libthrift3 vulnerabilities |
0.9.2 | 0.20.0 |
Assertion
Apache 2.0 |  | org.assertj
»
assertj-core |
3.19.0 | 3.25.3 |
Concurrency
Apache 2.0 |  | org.awaitility
»
awaitility |
4.0.3 | 4.2.1 |
Off-Heap Lib
Apache 2.0 |  | org.caffinitas.ohc
»
ohc-core |
0.3.4 | 0.7.4 |
MIT |  | org.checkerframework
»
checker-compat-qual |
2.5.3 | 3.43.0 |
Defect Detection
MIT | | org.checkerframework
»
checker-qual |
3.10.0 | 3.43.0 |
JVM Languages
EPL 1.0 |  | org.clojure
»
clojure2 vulnerabilities |
1.8.0 | 1.11.3 |
JVM Languages
Apache 2.0 |  | org.codehaus.groovy
»
groovy |
2.5.14 | 4.0.21 |
Apache 2.0 | | org.codehaus.groovy
»
groovy-cli-picocli |
2.5.14 | 4.0.21 |
Apache 2.0 | | org.codehaus.groovy
»
groovy-console |
2.5.14 | 4.0.21 |
Apache 2.0 | | org.codehaus.groovy
»
groovy-groovysh |
2.5.14 | 4.0.21 |
JSON Lib
Apache 2.0 | | org.codehaus.groovy
»
groovy-json |
2.5.14 | 4.0.21 |
Apache 2.0 | | org.codehaus.groovy
»
groovy-swing |
2.5.14 | 4.0.21 |
Apache 2.0 | | org.codehaus.groovy
»
groovy-templates |
2.5.14 | 4.0.21 |
XML Processing
Apache 2.0 | | org.codehaus.groovy
»
groovy-xml |
2.5.14 | 4.0.21 |
JSON Lib
Apache 2.0 |  | org.codehaus.jackson
»
jackson-core-asl |
1.9.2 | 2.17.1 |
JSON Lib
Apache 2.0 | | org.codehaus.jackson
»
jackson-mapper-asl2 vulnerabilities |
1.9.2 | 2.17.1 |
LGPL |  | org.derive4j
»
derive4j-annotation |
1.1.1 |
✔
|
Java Compiler/Parser
EPL 2.0 |  | org.eclipse.jdt.core.compiler
»
ecj |
4.4.2 | 3.37.0 |
Apache 2.0EPL 1.0 |  | org.eclipse.jetty
»
jetty-alpn-openjdk8-server |
9.4.26.v20200117 | 9.4.54.v20240208 |
Apache 2.0EPL 2.0 | | org.eclipse.jetty
»
jetty-alpn-server |
9.4.26.v20200117 | 12.0.9 |
Apache 2.0EPL 1.0 | | org.eclipse.jetty
»
jetty-continuation |
9.4.26.v20200117 | 9.4.54.v20240208 |
Apache 2.0EPL 2.0 | | org.eclipse.jetty
»
jetty-http3 vulnerabilities |
9.4.26.v20200117 | 12.0.9 |
I/O
Apache 2.0EPL 2.0 | | org.eclipse.jetty
»
jetty-io1 vulnerability |
9.4.26.v20200117 | 12.0.9 |
Apache 2.0EPL 2.0 | | org.eclipse.jetty
»
jetty-security |
9.4.26.v20200117 | 12.0.9 |
Web Server
Apache 2.0EPL 2.0 | | org.eclipse.jetty
»
jetty-server6 vulnerabilities |
9.4.26.v20200117 | 12.0.9 |
Apache 2.0EPL 2.0 | | org.eclipse.jetty
»
jetty-servlet |
9.4.26.v20200117 | 11.0.20 |
Apache 2.0EPL 2.0 | | org.eclipse.jetty
»
jetty-servlets2 vulnerabilities |
9.4.26.v20200117 | 11.0.20 |
Apache 2.0EPL 2.0 | | org.eclipse.jetty
»
jetty-util |
9.4.26.v20200117 | 12.0.9 |
Apache 2.0EPL 2.0 | | org.eclipse.jetty
»
jetty-webapp1 vulnerability |
9.4.26.v20200117 | 11.0.20 |
Apache 2.0EPL 2.0 | | org.eclipse.jetty
»
jetty-xml |
9.4.26.v20200117 | 12.0.9 |
Apache 2.0EPL 2.0 | | org.eclipse.jetty.http2
»
http2-common2 vulnerabilities |
9.4.26.v20200117 | 11.0.20 |
Apache 2.0EPL 2.0 | | org.eclipse.jetty.http2
»
http2-hpack1 vulnerability |
9.4.26.v20200117 | 11.0.20 |
Apache 2.0EPL 2.0 | | org.eclipse.jetty.http2
»
http2-server2 vulnerabilities |
9.4.26.v20200117 | 11.0.20 |
Apache 2.0EPL 1.0 | | org.eclipse.jetty.toolchain.setuid
»
jetty-setuid-java |
1.0.3 | 1.0.4 |
Application Metrics
Apache 2.0 |  | org.fusesource
»
sigar |
1.6.4 |
✔
|
EPL 2.0GPL |  | org.glassfish
»
jakarta.el |
3.0.3 | 6.0.0 |
EPL 2.0GPL | | org.glassfish.hk2
»
hk2-api |
2.6.1 | 3.1.0 |
EPL 2.0GPL | | org.glassfish.hk2
»
hk2-locator |
2.6.1 | 3.1.0 |
EPL 2.0GPL | | org.glassfish.hk2
»
hk2-utils |
2.6.1 | 3.1.0 |
CDDLGPL 1.1GPL 2.0 | | org.glassfish.hk2
»
osgi-resource-locator |
1.0.3 | 2.4.0 |
AOP
EPL 2.0GPL | | org.glassfish.hk2.external
»
aopalliance-repackaged |
2.6.1 | 3.1.0 |
Apache 2.0BSD 2-clauseCC0 1.0EDL 1.0EPL 2.0GPLMITPublicW3C | | org.glassfish.jersey.containers
»
jersey-container-servlet |
2.30 | 3.1.6 |
Apache 2.0BSD 2-clauseCC0 1.0EDL 1.0EPL 2.0GPLMITPublicW3C | | org.glassfish.jersey.containers
»
jersey-container-servlet-core |
2.30 | 3.1.6 |
Apache 2.0BSD 2-clauseCC0 1.0EDL 1.0EPL 2.0GPLMITPublicW3C | | org.glassfish.jersey.core
»
jersey-client |
2.31 | 3.1.6 |
Apache 2.0CC0 1.0EPL 2.0GPL 2.0Public | | org.glassfish.jersey.core
»
jersey-common1 vulnerability |
2.31 | 3.1.6 |
Apache 2.0BSDEPL 2.0GPL 2.0 | | org.glassfish.jersey.core
»
jersey-server |
2.31 | 3.1.6 |
Validation
Apache 2.0BSD 2-clauseCC0 1.0EDL 1.0EPL 2.0GPLMITPublicW3C | | org.glassfish.jersey.ext
»
jersey-bean-validation |
2.31 | 3.1.6 |
Apache 2.0BSD 2-clauseCC0 1.0EDL 1.0EPL 2.0GPLMITPublicW3C | | org.glassfish.jersey.ext
»
jersey-metainf-services |
2.30 | 3.1.6 |
Apache 2.0BSD 2-clauseCC0 1.0EDL 1.0EPL 2.0GPLMITPublicW3C | | org.glassfish.jersey.inject
»
jersey-hk2 |
2.31 | 3.1.6 |
Apache 2.0BSD 2-clauseCC0 1.0EDL 1.0EPL 2.0GPLMITPublicW3C | | org.glassfish.jersey.media
»
jersey-media-jaxb |
2.31 | 3.1.6 |
Testing
BSD 3-clause |  | org.hamcrest
»
hamcrest |
2.1 | 2.2 |
Testing
BSD 3-clause | | org.hamcrest
»
hamcrest-core |
2.1 | 2.2 |
Application Metrics
BSD 2-clauseCC0 1.0 |  | org.hdrhistogram
»
HdrHistogram |
2.1.12 | 2.2.1 |
Validation
Apache 2.0 |  | org.hibernate
»
hibernate-validator1 vulnerability |
4.3.0.Final | 8.0.1.Final |
Validation
Apache 2.0 | | org.hibernate.validator
»
hibernate-validator1 vulnerability |
6.1.2.Final | 8.0.1.Final |
Annotation Tool
Apache 2.0 |  | org.immutables
»
value |
2.8.8 | 2.10.1 |
Bytecode
Apache 2.0LGPL 2.1MPL 1.1 |  | org.javassist
»
javassist |
3.26.0-GA | 3.30.2-GA |
Logging
Apache 2.0 |  | org.jboss.logging
»
jboss-logging |
3.4.1.Final | 3.6.0.Final |
Apache 2.0 | | org.jboss.marshalling
»
jboss-marshalling |
1.4.11.Final | 2.1.4.SP1 |
Apache 2.0 | | org.jboss.threads
»
jboss-threads |
3.2.0.Final | 3.6.1.Final |
Apache 2.0 |  | org.jboss.xnio
»
xnio-api1 vulnerability |
3.8.0.Final | 3.8.14.Final |
Apache 2.0 | | org.jboss.xnio
»
xnio-nio1 vulnerability |
3.8.0.Final | 3.8.14.Final |
Apache 2.0 |  | org.jdbi
»
jdbi3-core |
3.13.0 | 3.45.1 |
Apache 2.0 | | org.jdbi
»
jdbi3-sqlobject |
3.13.0 | 3.45.1 |
Defect Detection
Apache 2.0 |  | org.jetbrains
»
annotations |
13.0 | 24.1.0 |
JVM Languages
Apache 2.0 |  | org.jetbrains.kotlin
»
kotlin-stdlib2 vulnerabilities |
1.3.72 | 1.9.24 |
Lang Runtime
Apache 2.0 | | org.jetbrains.kotlin
»
kotlin-stdlib-common |
1.3.72 | 1.9.24 |
Apache 2.0 | | org.jetbrains.kotlinx
»
kotlinx-metadata-jvm |
0.1.0 | 0.9.0 |
O/R Mapping
Apache 2.0 |  | org.jooq
»
jooq |
3.6.4 | 3.19.8 |
CDDL 1.0 |  | org.jvnet
»
animal-sniffer-annotation |
1.0 |
✔
|
Hashing
ISC |  | org.mindrot
»
jbcrypt1 vulnerability |
0.3m | 0.4 |
Mocking
MIT |  | org.mockito
»
mockito-core |
3.8.0 | 5.12.0 |
Apache 2.0 |  | org.mortbay.jetty.alpn
»
jetty-alpn-agent |
2.0.10 |
✔
|
|  | org.mpierce.metrics.reservoir
»
hdrhistogram-metrics-reservoir |
1.1.2 | 1.1.3 |
Reflection
Apache 2.0 |  | org.objenesis
»
objenesis |
3.1 | 3.4 |
Microbenchmarks
GPL 2.0 |  | org.openjdk.jmh
»
jmh-core |
1.13 | 1.37 |
Annotation Tool
GPL 2.0 | | org.openjdk.jmh
»
jmh-generator-annprocess |
1.13 | 1.37 |
Bytecode
BSD 3-clause |  | org.ow2.asm
»
asm |
7.1 | 9.7 |
BSD 3-clause | | org.ow2.asm
»
asm-analysis |
5.0.3 | 9.7 |
Bytecode
BSD 3-clause | | org.ow2.asm
»
asm-commons |
5.0.3 | 9.7 |
BSD 3-clause | | org.ow2.asm
»
asm-tree |
5.0.3 | 9.7 |
BSD 3-clause | | org.ow2.asm
»
asm-util |
5.0.3 | 9.7 |
JDBC Driver
BSD 2-clause |  | org.postgresql
»
postgresql6 vulnerabilities |
42.2.1 | 42.7.3 |
Reflection
Apache 2.0 |  | org.reflections
»
reflections |
0.9.10 | 0.10.2 |
Apache 2.0GPL 2.0 |  | org.rocksdb
»
rocksdbjni |
6.16.4 | 9.1.1 |
Logging Bridge
Apache 2.0 |  | org.slf4j
»
jcl-over-slf4j |
1.7.30 | 2.0.13 |
Logging Bridge
MIT | | org.slf4j
»
jul-to-slf4j |
1.7.30 | 2.0.13 |
Logging Bridge
Apache 2.0 | | org.slf4j
»
log4j-over-slf4j |
1.7.30 | 2.0.13 |
Logging
MIT | | org.slf4j
»
slf4j-api |
1.7.30 | 2.0.13 |
Apache 2.0 |  | org.wildfly.client
»
wildfly-client-config |
1.0.1.Final |
✔
|
Apache 2.0 | | org.wildfly.common
»
wildfly-common |
1.5.4.Final | 2.0.0 |
JDBC Driver
Apache 2.0 |  | org.xerial
»
sqlite-jdbc1 vulnerability |
3.30.1 | 3.45.3.0 |
Compression
Apache 2.0 | | org.xerial.snappy
»
snappy-java4 vulnerabilities |
1.1.1.7 | 1.1.10.5 |
YAML
Apache 2.0 |  | org.yaml
»
snakeyaml7 vulnerabilities |
1.28 | 2.2 |
