Indexed Artifacts (23.7M)

Popular Categories

dependency-check-core is the engine and reporting tool used to identify and report if there are any known, publicly disclosed vulnerabilities in the scanned project's dependencies. The engine extracts meta-data from the dependencies and uses this to do fuzzy key-word matching against the Common Platfrom Enumeration (CPE), if any CPE identifiers are found the associated Common Vulnerability and Exposure (CVE) entries are added to the generated report.

LicenseApache 2.0
Date(Jun 10, 2021)
Filesjar (948 KB)  View All
RepositoriesCentral
Used By18 artifacts

Note: There is a new version for this artifact

New Version6.3.1


Compile Dependencies (31)

Category/License Group / ArtifactVersionUpdates
JSON Lib
Apache 2.0
com.fasterxml.jackson.core » jackson-databind 2.12.32.12.5

Apache 2.0
com.fasterxml.jackson.module » jackson-module-afterburner 2.12.32.12.5

MIT
com.github.package-url » packageurl-java 1.3.01.4.0
Core Utils
Apache 2.0
com.google.guava » guava 30.1.1-jre
Embedded SQL DB
EPL 1.0MPL 2.0
com.h2database » h2 1.4.1991.4.200

LGPL
com.h3xstream.retirejs » retirejs-core 3.0.23.0.3

Apache 2.0
com.hankcs » aho-corasick-double-array-trie 1.2.21.2.3

MIT
com.moandjiezana.toml » toml4j 0.7.2

MIT
com.vdurmont » semver4j 3.1.0
Reflection
Apache 2.0
commons-beanutils » commons-beanutils 1.9.4
Collections
Apache 2.0
commons-collections » commons-collections 3.2.24.4
I/O
Apache 2.0
commons-io » commons-io 2.9.02.11.0
Validation
Apache 2.0
commons-validator » commons-validator 1.7

Apache 2.0
org.anarres.jdiagnostics » jdiagnostics 1.0.61.0.7

Apache 2.0
org.apache.commons » commons-jcs-core 2.2.1
Compression
Apache 2.0
org.apache.commons » commons-compress 1.201.21
Core Utils
Apache 2.0
org.apache.commons » commons-lang3 3.12.0
String Utils
Apache 2.0
org.apache.commons » commons-text 1.9
JDBC Pool
Apache 2.0
org.apache.commons » commons-dbcp2 2.8.02.9.0
Full-Text Indexing
Apache 2.0
org.apache.lucene » lucene-core 8.8.28.9.0

Apache 2.0
org.apache.lucene » lucene-analyzers-common 8.8.28.9.0

Apache 2.0
org.apache.lucene » lucene-queryparser 8.8.28.9.0

Apache 2.0
org.apache.velocity » velocity-engine-core 2.3

EPL 2.0
org.eclipse.packager » packager-rpm 0.17.0

CDDL 1.1GPL 2.0
org.glassfish » javax.json 1.1.4
HTML Parser
MIT
org.jsoup » jsoup 1.13.11.14.2

Apache 2.0
org.owasp » dependency-check-utils 6.2.26.3.1
Logging
MIT
org.slf4j » slf4j-api 1.7.301.7.32

Apache 2.0
org.sonatype.ossindex » ossindex-service-client 1.7.01.8.0

CPAL 1.0
org.whitesource » pecoff4j 0.0.2.1

Apache 2.0
us.springett » cpe-parser 2.0.2

Test Dependencies (24)

Category/License Group / ArtifactVersionUpdates
Logging
EPL 1.0LGPL 2.1
ch.qos.logback » logback-classic 1.2.31.2.6
Dep Injection
Apache 2.0
com.google.inject » guice (optional) 3.05.0.1

Apache 2.0
com.hazelcast » hazelcast (optional) 2.55.0
XML Processing
BSD 3-clause
com.thoughtworks.xstream » xstream (optional) 1.4.81.4.18
Upload Manager
Apache 2.0
commons-fileupload » commons-fileupload (optional) 1.2.11.4
Android Package
MIT
io.github.faob-dev » aar (optional) 1.0.0
Cache Impl
Apache 2.0
net.sf.ehcache » ehcache-core (optional) 2.2.02.10.9.2

Apache 2.0
org.apache.axis2 » axis2-spring (optional) 1.4.11.8.0

Apache 2.0
org.apache.axis2 » axis2-adb (optional) 1.4.11.8.0

Apache 2.0
org.apache.geronimo.daytrader » daytrader-ear (optional) 2.1.7

Apache 2.0
org.apache.lucene » lucene-test-framework 8.8.28.9.0

Apache 2.0
org.apache.maven.scm » maven-scm-provider-cvsexe (optional) 1.8.11.12.0
JPA
Apache 2.0
org.apache.openjpa » openjpa (optional) 2.0.13.2.0
Web Framework
Apache 2.0
org.apache.struts » struts2-core (optional) 2.1.22.5.26
Web App
AFL 2.1BSD
org.dojotoolkit » dojo-war (optional) 1.3.01.16.4
Web App
EPL 2.0
org.glassfish.main.admingui » war (optional) 4.06.2.1

MIT
org.jslipc » jslipc (optional) 0.2.00.2.3
Mocking
MIT
org.mockito » mockito-core 3.11.03.12.4
Web Server
Apache 2.0EPL 2.0
org.mortbay.jetty » jetty (optional) 6.1.011.0.6
Web Framework
Apache 2.0
org.springframework » spring-webmvc (optional) 2.5.55.3.10
Exception Handling
Apache 2.0
org.springframework.retry » spring-retry (optional) 1.1.0.RELEASE1.3.1

Apache 2.0
org.springframework.security » spring-security-web (optional) 3.0.0.RELEASE5.5.2

Apache 2.0
uk.ltd.getahead » dwr (optional) 1.1.13.0.2-RELEASE

Apache 2.0
xalan » xalan (optional) 2.7.02.7.2

Licenses

LicenseURL
The Apache Software License, Version 2.0 http://www.apache.org/licenses/LICENSE-2.0.txt

Developers

NameEmailDev IdRolesOrganization
Jeremy Longjeremy.long<at>owasp.orgarchitect, developerOWASP
Steve SpringettSteve.Springett<at>owasp.orgdeveloperOWASP
Will StranathanWill.Stranathan<at>owasp.orgdeveloperOWASP
Dale Visserdvisser<at>ida.orgdeveloperInstitute for Defense Analyses