Spring Security is a powerful and highly customizable authentication and access-control framework.
It provides protection against attacks like session fixation, clickjacking, cross site request forgery, etc
License | Apache 2.0 |
---|---|
Categories | Security Frameworks |
Tags | securityspringframework |
Organization | spring.io |
HomePage | http://spring.io/spring-security |
Date | Oct 30, 2015 |
Files | pom (8 KB) jar (362 KB) View All |
Repositories | CentralImageJ PublicMulesoftSonatypeSpring Releases |
Ranking | #206 in MvnRepository (See Top Artifacts) #1 in Security Frameworks |
Used By | 2,640 artifacts |
Vulnerabilities | Direct vulnerabilities: CVE-2024-22257 CVE-2022-22978 CVE-2020-5408 View 3 more ... Vulnerabilities from dependencies: CVE-2024-38820 CVE-2024-38808 CVE-2023-6378 View 18 more ... |
Compile Dependencies (12)
Category/License | Group / Artifact | Version | Updates | |
---|---|---|---|---|
AOP Public | aopalliance » aopalliance | 1.0 | ✔ | |
Logging Apache 2.0 | commons-logging » commons-logging (optional) | 1.1.1 | 1.3.4 | |
Annotation Lib CDDLGPL 2.0 | javax.annotation » jsr250-api (optional) | 1.0 | 1.3.2 | |
Cache Impl Apache 2.0 | net.sf.ehcache » ehcache-core (optional) | 1.7.2 | 2.10.9.2 | |
AOP EPL 2.0 | org.aspectj » aspectjrt (optional) | 1.6.10 | 1.9.22.1 | |
AOP Apache 2.0 | org.springframework » spring-aop | 3.2.13.RELEASE | 6.2.0 | |
Dep Injection Apache 2.0 | org.springframework » spring-beans2 vulnerabilities | 3.2.13.RELEASE | 6.2.0 | |
Dep Injection Apache 2.0 | org.springframework » spring-context2 vulnerabilities | 3.2.13.RELEASE | 6.2.0 | |
Core Utils Apache 2.0 | org.springframework » spring-core7 vulnerabilities | 3.2.13.RELEASE | 6.2.0 | |
Expression Lang Apache 2.0 | org.springframework » spring-expression4 vulnerabilities | 3.2.13.RELEASE | 6.2.0 | |
JDBC Extension Apache 2.0 | org.springframework » spring-jdbc (optional) | 3.2.13.RELEASE | 6.2.0 | |
Transactions Apache 2.0 | org.springframework » spring-tx (optional) | 3.2.13.RELEASE | 6.2.0 |
Test Dependencies (14)
Category/License | Group / Artifact | Version | Updates | |
---|---|---|---|---|
Logging EPL 1.0LGPL 2.1 | ch.qos.logback » logback-classic2 vulnerabilities | 0.9.29 | 1.5.12 | |
Collections Apache 2.0 | commons-collections » commons-collections2 vulnerabilities | 3.2 | 4.4 | |
Testing EPL 2.0 | junit » junit1 vulnerability | 4.11 | 5.11.3 | |
Assertion Apache 2.0 | org.easytesting » fest-assert | 1.4 | 2.0M10 | |
Embedded SQL DB | org.hsqldb » hsqldb1 vulnerability | 2.3.1 | 2.7.4 | |
Mocking MIT | org.mockito » mockito-core | 1.10.19 | 5.14.2 | |
Mocking Apache 2.0 | org.powermock » powermock-api-mockito | 1.6.2 | 2.0.9 | |
Apache 2.0 | org.powermock » powermock-api-support | 1.6.2 | 2.0.9 | |
Mocking Apache 2.0 | org.powermock » powermock-core | 1.6.2 | 2.0.9 | |
Mocking Apache 2.0 | org.powermock » powermock-module-junit4 | 1.6.2 | 2.0.9 | |
Apache 2.0 | org.powermock » powermock-module-junit4-common | 1.6.2 | 2.0.9 | |
Apache 2.0 | org.powermock » powermock-reflect | 1.6.2 | 2.0.9 | |
Logging Bridge Apache 2.0 | org.slf4j » jcl-over-slf4j | 1.7.5 | 2.0.16 | |
Testing Apache 2.0 | org.springframework » spring-test | 3.2.13.RELEASE | 6.2.0 |
Licenses
License | URL |
---|---|
The Apache Software License, Version 2.0 | http://www.apache.org/licenses/LICENSE-2.0.txt |
Developers
Name | Dev Id | Roles | Organization | |
---|---|---|---|---|
Rob Winch | rwinch<at>gopivotal.com | rwinch |