Maven Repository: org.springframework.boot » spring-boot

Spring Boot » 1.5.7.RELEASE

Spring Boot makes it easy to create stand-alone, production-grade Spring based Applications that you can 'just run'. It takes an opinionated view of the Spring platform and third-party libraries so you can get started with minimum configuration.

License	Apache 2.0
Categories	Application Servers
Tags	application server spring framework appserver
Organization	Pivotal Software, Inc.
HomePage	http://projects.spring.io/spring-boot/
Date	Sep 12, 2017
Files	pom (9 KB) jar (659 KB) View All
Repositories	Central SciJava Public Softmotions Sonatype Terrestris
Ranking	#137 in MvnRepository (See Top Artifacts) #2 in Application Servers
Used By	4,074 artifacts
Vulnerabilities	Direct vulnerabilities: CVE-2022-27772 CVE-2018-1196 Vulnerabilities from dependencies: CVE-2024-9823 CVE-2024-38820 CVE-2024-38819 CVE-2024-38809 CVE-2024-24549 CVE-2024-22262 CVE-2024-22259 CVE-2024-22243 CVE-2024-21733 CVE-2024-1597 CVE-2023-6378 CVE-2023-5072 CVE-2023-46589 CVE-2023-45648 CVE-2023-44487 CVE-2023-42795 CVE-2023-41080 CVE-2023-36479 CVE-2023-32697 CVE-2023-22102 CVE-2022-46337 CVE-2022-45688 CVE-2022-42252 CVE-2022-42004 CVE-2022-42003 CVE-2022-41854 CVE-2022-41853 CVE-2022-38752 CVE-2022-38751 CVE-2022-38750 CVE-2022-38749 CVE-2022-31197 CVE-2022-25857 CVE-2022-25647 CVE-2022-23221 CVE-2022-22968 CVE-2022-22965 CVE-2022-21724 CVE-2022-21363 CVE-2022-1471 CVE-2022-0839 CVE-2021-45105 CVE-2021-45046 CVE-2021-44832 CVE-2021-44228 CVE-2021-42392 CVE-2021-28169 CVE-2021-25329 CVE-2021-25122 CVE-2021-24122 CVE-2021-20190 CVE-2020-9548 CVE-2020-9547 CVE-2020-9488 CVE-2020-8840 CVE-2020-36518 CVE-2020-36189 CVE-2020-36188 CVE-2020-36187 CVE-2020-36186 CVE-2020-36185 CVE-2020-36184 CVE-2020-36183 CVE-2020-36182 CVE-2020-36181 CVE-2020-36180 CVE-2020-36179 CVE-2020-35728 CVE-2020-35491 CVE-2020-35490 CVE-2020-27216 CVE-2020-25649 CVE-2020-24750 CVE-2020-24616 CVE-2020-1938 CVE-2020-1935 CVE-2020-17521 CVE-2020-15250 CVE-2020-13956 CVE-2020-13692 CVE-2020-10673 CVE-2020-10650 CVE-2019-2692 CVE-2019-20330 CVE-2019-17563 CVE-2019-17531 CVE-2019-17267 CVE-2019-16943 CVE-2019-16942 CVE-2019-16869 CVE-2019-16335 CVE-2019-14892 CVE-2019-14540 CVE-2019-14439 CVE-2019-14379 CVE-2019-12814 CVE-2019-12418 CVE-2019-12384 CVE-2019-12086 CVE-2019-10184 CVE-2019-10072 CVE-2019-0232 CVE-2019-0221 CVE-2019-0199 CVE-2018-8037 CVE-2018-8034 CVE-2018-8014 CVE-2018-7489 CVE-2018-5968 CVE-2018-3258 CVE-2018-19362 CVE-2018-19361 CVE-2018-19360 CVE-2018-15756 CVE-2018-14721 CVE-2018-14720 CVE-2018-14719 CVE-2018-14718 CVE-2018-1336 CVE-2018-1313 CVE-2018-1305 CVE-2018-1304 CVE-2018-1272 CVE-2018-1271 CVE-2018-1257 CVE-2018-12023 CVE-2018-12022 CVE-2018-1199 CVE-2018-11784 CVE-2018-11307 CVE-2018-11040 CVE-2018-11039 CVE-2017-7536 CVE-2017-5929 CVE-2017-5645 CVE-2017-18640 CVE-2017-17485 CVE-2017-15095 CVE-2016-1000027 View 136 more ...

License

Apache 2.0

New Version	3.4.4

Compile Dependencies (45)

Category/License	Group / Artifact	Version	Updates
Logging EPL 1.0LGPL 2.1	ch.qos.logback » logback-classic (optional) 2 vulnerabilities	1.1.11	1.5.18
	com.atomikos » transactions-jms (optional)	3.9.3	6.0.0
	com.atomikos » transactions-jdbc (optional)	3.9.3	6.0.0
Transactions	com.atomikos » transactions-jta (optional)	3.9.3	6.0.0
JSON Lib Apache 2.0	com.fasterxml.jackson.core » jackson-databind (optional) 53 vulnerabilities	2.8.10	2.18.3
JSON Lib Apache 2.0	com.google.code.gson » gson (optional) 1 vulnerability	2.8.1	2.13.0
JSON Lib Apache 2.0	com.googlecode.json-simple » json-simple (optional)	1.1.1	✔
MIT	com.sendgrid » sendgrid-java (optional)	2.2.2	4.10.3
Apache 2.0	io.undertow » undertow-servlet (optional) 1 vulnerability	1.4.20.Final	2.3.18.Final
Message Queue Client EPL 2.0	javax.jms » jms-api (optional)	1.1-rev-1	3.1.0
Java Spec EPL 2.0GPL	javax.servlet » javax.servlet-api (optional)	3.1.0	6.1.0
Testing EPL 2.0	junit » junit (optional) 1 vulnerability	4.12	5.12.2
HTTP Clients Apache 2.0	org.apache.httpcomponents » httpclient (optional) 1 vulnerability	4.5.3	5.4.3
Logging Apache 2.0	org.apache.logging.log4j » log4j-api (optional)	2.7	2.24.3
Logging Apache 2.0	org.apache.logging.log4j » log4j-core (optional) 6 vulnerabilities	2.7	2.24.3
Web Server Apache 2.0	org.apache.tomcat.embed » tomcat-embed-core (optional) 26 vulnerabilities	8.5.20	11.0.6
Apache 2.0	org.apache.tomcat.embed » tomcat-embed-jasper (optional)	8.5.20	11.0.6
Assertion Apache 2.0	org.assertj » assertj-core (optional)	2.6.0	3.27.3
Transactions LGPL 3.0	org.codehaus.btm » btm (optional)	2.1.4	✔
JVM Languages Apache 2.0	org.codehaus.groovy » groovy (optional) 1 vulnerability	2.4.12	4.0.26
XML Processing Apache 2.0	org.codehaus.groovy » groovy-xml (optional)	2.4.12	4.0.26
Apache 2.0EPL 2.0	org.eclipse.jetty » jetty-servlets (optional) 3 vulnerabilities	9.4.6.v20170531	11.0.25
Apache 2.0EPL 2.0	org.eclipse.jetty » jetty-util (optional)	9.4.6.v20170531	12.0.19
Apache 2.0EPL 2.0	org.eclipse.jetty » jetty-webapp (optional) 1 vulnerability	9.4.6.v20170531	12.0.19
Testing BSD 3-clause	org.hamcrest » hamcrest-library (optional)	1.3	3.0
O/R Mapping Apache 2.0	org.hibernate » hibernate-entitymanager (optional)	5.0.12.Final	6.6.13.Final
Validation Apache 2.0	org.hibernate » hibernate-validator (optional) 1 vulnerability	5.3.5.Final	8.0.2.Final
Transactions CC0 1.0Public	org.jboss » jboss-transaction-spi (optional)	7.6.0.Final	8.0.0.Final
Apache 2.0	org.jboss.narayana.jta » jdbc (optional)	5.5.30.Final	7.2.1.Final
Apache 2.0	org.jboss.narayana.jta » jms (optional)	5.5.30.Final	7.2.1.Final
Apache 2.0	org.jboss.narayana.jta » jta (optional)	5.5.30.Final	7.2.1.Final
Apache 2.0	org.jboss.narayana.jts » narayana-jts-integration (optional)	5.5.30.Final	7.2.1.Final
JSON Lib Public	org.json » json (optional) 2 vulnerabilities	20140107	20250107
DB Migration Apache 2.0	org.liquibase » liquibase-core (optional) 1 vulnerability	3.5.3	4.31.1
Apache 2.0	org.neo4j » neo4j-ogm-core (optional)	2.1.5	4.0.17
Logging Bridge MIT	org.slf4j » jul-to-slf4j (optional)	1.7.25	2.0.17
Logging MIT	org.slf4j » slf4j-api (optional)	1.7.25	2.0.17
Core Utils Apache 2.0	org.springframework » spring-core 6 vulnerabilities	4.3.11.RELEASE	6.2.6
Dep Injection Apache 2.0	org.springframework » spring-context 2 vulnerabilities	4.3.11.RELEASE	6.2.6
O/R Mapping Apache 2.0	org.springframework » spring-orm (optional)	4.3.11.RELEASE	6.2.6
Testing Apache 2.0	org.springframework » spring-test (optional)	4.3.11.RELEASE	6.2.6
Web Framework Apache 2.0	org.springframework » spring-web (optional) 6 vulnerabilities	4.3.11.RELEASE	6.2.6
Web Framework Apache 2.0	org.springframework » spring-webmvc (optional) 2 vulnerabilities	4.3.11.RELEASE	6.2.6
Annotation Tool Apache 2.0	org.springframework.boot » spring-boot-configuration-processor (optional)	1.5.7.RELEASE	3.4.4
YAML Apache 2.0	org.yaml » snakeyaml (optional) 8 vulnerabilities	1.17	2.4

Category/License

Group / Artifact

Version

Updates

Logging
EPL 1.0LGPL 2.1

ch.qos.logback » logback-classic (optional) 2 vulnerabilities

1.1.11

1.5.18

com.atomikos » transactions-jms (optional)

3.9.3

6.0.0

com.atomikos » transactions-jdbc (optional)

3.9.3

6.0.0

Transactions

com.atomikos » transactions-jta (optional)

3.9.3

6.0.0

JSON Lib
Apache 2.0

com.fasterxml.jackson.core » jackson-databind (optional) 53 vulnerabilities

2.8.10

2.18.3

JSON Lib
Apache 2.0

com.google.code.gson » gson (optional) 1 vulnerability

2.8.1

2.13.0

JSON Lib
Apache 2.0

com.googlecode.json-simple » json-simple (optional)

1.1.1

✔

MIT

com.sendgrid » sendgrid-java (optional)

2.2.2

4.10.3

Apache 2.0

io.undertow » undertow-servlet (optional) 1 vulnerability

1.4.20.Final

2.3.18.Final

Message Queue Client
EPL 2.0

javax.jms » jms-api (optional)

1.1-rev-1

3.1.0

Java Spec
EPL 2.0GPL

javax.servlet » javax.servlet-api (optional)

3.1.0

6.1.0

Testing
EPL 2.0

junit » junit (optional) 1 vulnerability

4.12

5.12.2

HTTP Clients
Apache 2.0

org.apache.httpcomponents » httpclient (optional) 1 vulnerability

4.5.3

5.4.3

Logging
Apache 2.0

org.apache.logging.log4j » log4j-api (optional)

2.7

2.24.3

Logging
Apache 2.0

org.apache.logging.log4j » log4j-core (optional) 6 vulnerabilities

2.7

2.24.3

Web Server
Apache 2.0

org.apache.tomcat.embed » tomcat-embed-core (optional) 26 vulnerabilities

8.5.20

11.0.6

Apache 2.0

org.apache.tomcat.embed » tomcat-embed-jasper (optional)

8.5.20

11.0.6

Assertion
Apache 2.0

org.assertj » assertj-core (optional)

2.6.0

3.27.3

Transactions
LGPL 3.0

org.codehaus.btm » btm (optional)

2.1.4

✔

JVM Languages
Apache 2.0

org.codehaus.groovy » groovy (optional) 1 vulnerability

2.4.12

4.0.26

XML Processing
Apache 2.0

org.codehaus.groovy » groovy-xml (optional)

2.4.12

4.0.26

Apache 2.0EPL 2.0

org.eclipse.jetty » jetty-servlets (optional) 3 vulnerabilities

9.4.6.v20170531

11.0.25

Apache 2.0EPL 2.0

org.eclipse.jetty » jetty-util (optional)

9.4.6.v20170531

12.0.19

Apache 2.0EPL 2.0

org.eclipse.jetty » jetty-webapp (optional) 1 vulnerability

9.4.6.v20170531

12.0.19

Testing
BSD 3-clause

org.hamcrest » hamcrest-library (optional)

1.3

3.0

O/R Mapping
Apache 2.0

org.hibernate » hibernate-entitymanager (optional)

5.0.12.Final

6.6.13.Final

Validation
Apache 2.0

org.hibernate » hibernate-validator (optional) 1 vulnerability

5.3.5.Final

8.0.2.Final

Transactions
CC0 1.0Public

org.jboss » jboss-transaction-spi (optional)

7.6.0.Final

8.0.0.Final

Apache 2.0

org.jboss.narayana.jta » jdbc (optional)

5.5.30.Final

7.2.1.Final

Apache 2.0

org.jboss.narayana.jta » jms (optional)

5.5.30.Final

7.2.1.Final

Apache 2.0

org.jboss.narayana.jta » jta (optional)

5.5.30.Final

7.2.1.Final

Apache 2.0

org.jboss.narayana.jts » narayana-jts-integration (optional)

5.5.30.Final

7.2.1.Final

JSON Lib
Public

org.json » json (optional) 2 vulnerabilities

20140107

20250107

DB Migration
Apache 2.0

org.liquibase » liquibase-core (optional) 1 vulnerability

3.5.3

4.31.1

Apache 2.0

org.neo4j » neo4j-ogm-core (optional)

2.1.5

4.0.17

Logging Bridge
MIT

org.slf4j » jul-to-slf4j (optional)

1.7.25

2.0.17

Logging
MIT

org.slf4j » slf4j-api (optional)

1.7.25

2.0.17

Core Utils
Apache 2.0

org.springframework » spring-core 6 vulnerabilities

4.3.11.RELEASE

6.2.6

Dep Injection
Apache 2.0

org.springframework » spring-context 2 vulnerabilities

4.3.11.RELEASE

6.2.6

O/R Mapping
Apache 2.0

org.springframework » spring-orm (optional)

4.3.11.RELEASE

6.2.6

Testing
Apache 2.0

org.springframework » spring-test (optional)

4.3.11.RELEASE

6.2.6

Web Framework
Apache 2.0

org.springframework » spring-web (optional) 6 vulnerabilities

4.3.11.RELEASE

6.2.6

Web Framework
Apache 2.0

org.springframework » spring-webmvc (optional) 2 vulnerabilities

4.3.11.RELEASE

6.2.6

Annotation Tool
Apache 2.0

org.springframework.boot » spring-boot-configuration-processor (optional)

1.5.7.RELEASE

3.4.4

YAML
Apache 2.0

org.yaml » snakeyaml (optional) 8 vulnerabilities

1.17

2.4

Test Dependencies (19)

Category/License	Group / Artifact	Version	Updates
Cloud Computing Apache 2.0	com.google.appengine » appengine-api-1.0-sdk	1.9.56	2.0.34
Embedded SQL DB EPL 1.0MPL 2.0	com.h2database » h2 2 vulnerabilities	1.4.196	2.3.232
JDBC Driver MIT	com.microsoft.sqlserver » mssql-jdbc	6.1.0.jre7	12.10.0.jre11
HTTP Clients Apache 2.0	com.squareup.okhttp » okhttp	2.7.5	4.12.0
HTTP Clients Apache 2.0	com.squareup.okhttp3 » okhttp	3.4.1	4.12.0
Network Framework Apache 2.0	io.netty » netty-all 1 vulnerability	4.0.38.Final	4.2.0.Final
JDBC Driver	mysql » mysql-connector-java 4 vulnerabilities	5.1.44	9.2.0
JDBC Driver LGPL	net.sourceforge.jtds » jtds	1.3.1	✔
JDBC Driver Apache 2.0	org.apache.derby » derby 2 vulnerabilities	10.13.1.1	10.17.1.0
HTTP Clients Apache 2.0	org.apache.httpcomponents » httpasyncclient	4.1.3	4.1.5
JDBC Driver BSD 3-clauseLGPL	org.firebirdsql.jdbc » jaybird-jdk18	2.2.13	6.0.1
Embedded SQL DB	org.hsqldb » hsqldb 1 vulnerability	2.3.5	2.7.4
JDBC Driver LGPL 2.1	org.mariadb.jdbc » mariadb-java-client	1.5.9	3.5.3
JDBC Driver BSD 2-clause	org.postgresql » postgresql 4 vulnerabilities	9.4.1212.jre7	42.7.5
Logging Bridge Apache 2.0	org.slf4j » jcl-over-slf4j	1.7.25	2.0.17
Config Apache 2.0	org.springframework » spring-context-support	4.3.11.RELEASE	6.2.6
Apache 2.0	org.springframework.boot » spring-boot-test-support	1.5.7.RELEASE	1.5.8.e1
Redis Client Apache 2.0	org.springframework.data » spring-data-redis	1.8.7.RELEASE	3.4.4
JDBC Driver Apache 2.0	org.xerial » sqlite-jdbc 1 vulnerability	3.15.1	3.49.1.0

Category/License

Group / Artifact

Version

Updates

Cloud Computing
Apache 2.0