Indexed Artifacts (23.7M)

Popular Categories

dependency-check-core is the engine and reporting tool used to identify and report if there are any known, publicly disclosed vulnerabilities in the scanned project's dependencies. The engine extracts meta-data from the dependencies and uses this to do fuzzy key-word matching against the Common Platfrom Enumeration (CPE), if any CPE identifiers are found the associated Common Vulnerability and Exposure (CVE) entries are added to the generated report.

LicenseApache 2.0
Date(May 28, 2018)
Filesjar (624 KB)  View All
RepositoriesCentralSpring Plugins
Used By18 artifacts

Note: There is a new version for this artifact

New Version6.3.1

Runtime Dependencies (1)

Category/License Group / ArtifactVersionUpdates
Embedded SQL DB
EPL 1.0MPL 2.0
com.h2database » h2 1.4.1961.4.200

Test Dependencies (21)

Category/License Group / ArtifactVersionUpdates
EPL 1.0LGPL 2.1
ch.qos.logback » logback-classic
Dep Injection
Apache 2.0 » guice (optional)

Apache 2.0
com.hazelcast » hazelcast (optional) 2.55.0
XML Processing
BSD 3-clause
com.thoughtworks.xstream » xstream (optional)
Cache Impl
Apache 2.0
net.sf.ehcache » ehcache-core (optional)

Apache 2.0
org.apache.axis2 » axis2-spring (optional)

Apache 2.0
org.apache.axis2 » axis2-adb (optional)

Apache 2.0
org.apache.geronimo.daytrader » daytrader-ear (optional) 2.1.7

Apache 2.0
org.apache.lucene » lucene-test-framework

Apache 2.0
org.apache.maven.scm » maven-scm-provider-cvsexe (optional)
Apache 2.0
org.apache.openjpa » openjpa (optional)
Web Framework
Apache 2.0
org.apache.struts » struts2-core (optional)
Web App
org.dojotoolkit » dojo-war (optional)
Web App
EPL 2.0
org.glassfish.main.admingui » war (optional)
org.jmockit » jmockit 1.391.49
Web Server
Apache 2.0EPL 2.0
org.mortbay.jetty » jetty (optional)
Web Framework
Apache 2.0
org.springframework » spring-webmvc (optional)
Exception Handling
Apache 2.0
org.springframework.retry » spring-retry (optional) 1.1.0.RELEASE1.3.1

Apache 2.0 » spring-security-web (optional) 3.0.0.RELEASE5.5.2

Apache 2.0 » dwr (optional)

Apache 2.0
xalan » xalan (optional)


The Apache Software License, Version 2.0


NameEmailDev IdRolesOrganization
Jeremy Longjeremy.long<at>owasp.orgarchitect, developerOWASP
Steve SpringettSteve.Springett<at>owasp.orgdeveloperOWASP
Will StranathanWill.Stranathan<at>owasp.orgdeveloperOWASP
Dale Visserdvisser<at>ida.orgdeveloperInstitute for Defense Analyses