Spring Security is a powerful and highly customizable authentication and access-control framework. It provides protection against attacks like session fixation, clickjacking, cross site request forgery, etc
| License | Apache 2.0 |
|---|---|
| Categories | Security Frameworks |
| Tags | securityspringframework |
| Organization | Pivotal Software, Inc. |
| HomePage | https://spring.io/projects/spring-security |
| Date | Mar 18, 2024 |
| Files | pom (3 KB) jar (497 KB) View All |
| Repositories | CentralAlfresco |
| Ranking | #203 in MvnRepository (See Top Artifacts) #1 in Security Frameworks |
| Used By | 2,704 artifacts |
| Vulnerabilities | Direct vulnerabilities: CVE-2024-38827 Vulnerabilities from dependencies: CVE-2025-22228 CVE-2024-38820 |
Compile Dependencies (7)
| Category/License | Group / Artifact | Version | Updates | |
|---|---|---|---|---|
Apache 2.0 |  | io.micrometer » micrometer-observation | 1.10.13 | 1.14.5 |
| AOP Apache 2.0 |  | org.springframework » spring-aop | 6.0.18 | 6.2.5 |
| Dep Injection Apache 2.0 | | org.springframework » spring-beans | 6.0.18 | 6.2.5 |
| Dep Injection Apache 2.0 | | org.springframework » spring-context1 vulnerability | 6.0.18 | 6.2.5 |
| Core Utils Apache 2.0 | | org.springframework » spring-core | 6.0.18 | 6.2.5 |
| Expression Lang Apache 2.0 | | org.springframework » spring-expression | 6.0.18 | 6.2.5 |
| Encryption Lib Apache 2.0 | | org.springframework.security » spring-security-crypto1 vulnerability | 6.1.8 | 6.4.4 |
Licenses
| License | URL |
|---|---|
| Apache License, Version 2.0 | https://www.apache.org/licenses/LICENSE-2.0 |
Developers
| Name | Dev Id | Roles | Organization | |
|---|---|---|---|---|
| Pivotal | info<at>pivotal.io | Pivotal Software, Inc. |