Press CTR-C to copy XML [help]


Dependency-Check is an open source tool performing a best effort analysis of 3rd party dependencies; false positives and false negatives may exist in the analysis performed by the tool. Use of the tool and the reporting provided constitutes acceptance for use in an AS IS condition, and there are NO warranties, implied or otherwise, with regard to the analysis or its use. Any use of the tool and the reporting provided is at the user’s risk. In no event shall the copyright holder or OWASP be held liable for any damages whatsoever arising out of or in connection with the use of this tool, the analysis performed, or the resulting report.

How to read the report | Suppressing false positives | Getting Help: github issues

Project: javabean-tester

com.github.hazendaz:javabean-tester:2.12.0

Scan Information (show all):

Summary

Summary of Vulnerable Dependencies (click to show all)

Dependency Vulnerability IDs Package Highest Severity CVE Count Confidence Evidence Count
apiguardian-api-1.1.2.jar pkg:maven/org.apiguardian/apiguardian-api@1.1.2   0 40
byte-buddy-1.18.5.jar pkg:maven/net.bytebuddy/byte-buddy@1.18.5   0 29
equalsverifier-4.3.1.jar pkg:maven/nl.jqno.equalsverifier/equalsverifier@4.3.1   0 34
javassist-3.30.2-GA.jar pkg:maven/org.javassist/javassist@3.30.2-GA   0 59
jspecify-1.0.0.jar pkg:maven/org.jspecify/jspecify@1.0.0   0 32
junit-jupiter-6.0.3.jar pkg:maven/org.junit.jupiter/junit-jupiter@6.0.3   0 70
junit-jupiter-api-6.0.3.jar pkg:maven/org.junit.jupiter/junit-jupiter-api@6.0.3   0 76
junit-jupiter-engine-6.0.3.jar pkg:maven/org.junit.jupiter/junit-jupiter-engine@6.0.3   0 78
junit-jupiter-params-6.0.3.jar pkg:maven/org.junit.jupiter/junit-jupiter-params@6.0.3   0 76
junit-platform-engine-6.0.3.jar cpe:2.3:a:fan_platform_project:fan_platform:6.0.3:*:*:*:*:*:*:* pkg:maven/org.junit.platform/junit-platform-engine@6.0.3   0 Low 76
lombok-1.18.42.jar: mavenEcjBootstrapAgent.jar   0 7
lombok-1.18.42.jar pkg:maven/org.projectlombok/lombok@1.18.42   0 36
mockito-core-5.21.0.jar pkg:maven/org.mockito/mockito-core@5.21.0   0 41
mockito-junit-jupiter-5.21.0.jar pkg:maven/org.mockito/mockito-junit-jupiter@5.21.0   0 39
objenesis-3.4.jar pkg:maven/org.objenesis/objenesis@3.4   0 27
opentest4j-1.3.0.jar pkg:maven/org.opentest4j/opentest4j@1.3.0   0 60
slf4j-api-2.0.17.jar pkg:maven/org.slf4j/slf4j-api@2.0.17   0 29

Dependencies (vulnerable)

apiguardian-api-1.1.2.jar

Description:

@API Guardian

License:

The Apache License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\org\apiguardian\apiguardian-api\1.1.2\apiguardian-api-1.1.2.jar
MD5: 8c7de3f82037fa4a2e8be2a2f13092af
SHA1: a231e0d844d2721b0fa1b238006d15c6ded6842a
SHA256:b509448ac506d607319f182537f0b35d71007582ec741832a1f111e5b5b70b38
Referenced In Project/Scope: javabean-tester:compile
apiguardian-api-1.1.2.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.junit.jupiter/junit-jupiter@6.0.3

Identifiers

  • pkg:maven/org.apiguardian/apiguardian-api@1.1.2   (Confidence:High)

byte-buddy-1.18.5.jar

Description:

        Byte Buddy is a Java library for creating Java classes at run time.
        This artifact is a build of Byte Buddy with all ASM dependencies repackaged into its own name space.

License:

https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\net\bytebuddy\byte-buddy\1.18.5\byte-buddy-1.18.5.jar
MD5: 461a2f79b03fbbb6ba8876da901f1801
SHA1: 1b6780c10176ed29430ae6b92b81bc166ac92490
SHA256:e50ba78d8fd22e832c7a87bfa84cbdf93476ff4901b6e985ff66ebbde83f7f8a
Referenced In Project/Scope: javabean-tester:compile
byte-buddy-1.18.5.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.hazendaz/javabean-tester@2.12.0

Identifiers

  • pkg:maven/net.bytebuddy/byte-buddy@1.18.5   (Confidence:High)

equalsverifier-4.3.1.jar

Description:

EqualsVerifier can be used in JUnit unit tests to verify whether the contract for the equals and hashCode methods is met.

License:

Apache License, Version 2.0: https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\nl\jqno\equalsverifier\equalsverifier\4.3.1\equalsverifier-4.3.1.jar
MD5: c37a3cfe0053311246631f2b180576af
SHA1: 319493f3eb682c14b9dab71bbbe0df6d06e0a5a7
SHA256:5aebfc79cde5c92d37367017450b1dd2a4ddf72a4d9025e63cdec4e34b65c913
Referenced In Project/Scope: javabean-tester:compile
equalsverifier-4.3.1.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.hazendaz/javabean-tester@2.12.0

Identifiers

  • pkg:maven/nl.jqno.equalsverifier/equalsverifier@4.3.1   (Confidence:High)

javassist-3.30.2-GA.jar

Description:

    Javassist (JAVA programming ASSISTant) makes Java bytecode manipulation
    simple. It is a class library for editing bytecodes in Java.

License:

MPL 1.1: https://www.mozilla.org/en-US/MPL/1.1/
LGPL 2.1: https://www.gnu.org/licenses/lgpl-2.1.html
Apache License 2.0: https://www.apache.org/licenses/LICENSE-2.0
File Path: C:\Users\Jeremy\.m2\repository\org\javassist\javassist\3.30.2-GA\javassist-3.30.2-GA.jar
MD5: f5b827b8ddec0629cc7a6d7dafc45999
SHA1: 284580b5e42dfa1b8267058566435d9e93fae7f7
SHA256:eba37290994b5e4868f3af98ff113f6244a6b099385d9ad46881307d3cb01aaf
Referenced In Project/Scope: javabean-tester:compile
javassist-3.30.2-GA.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.hazendaz/javabean-tester@2.12.0

Identifiers

  • pkg:maven/org.javassist/javassist@3.30.2-GA   (Confidence:High)

jspecify-1.0.0.jar

Description:

An artifact of well-named and well-specified annotations to power static analysis checks

License:

The Apache License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\org\jspecify\jspecify\1.0.0\jspecify-1.0.0.jar
MD5: 9133aba420d0ca3b001dbb6ae9992cf6
SHA1: 7425a601c1c7ec76645a78d22b8c6a627edee507
SHA256:1fad6e6be7557781e4d33729d49ae1cdc8fdda6fe477bb0cc68ce351eafdfbab
Referenced In Project/Scope: javabean-tester:compile
jspecify-1.0.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.junit.jupiter/junit-jupiter@6.0.3

Identifiers

  • pkg:maven/org.jspecify/jspecify@1.0.0   (Confidence:High)

junit-jupiter-6.0.3.jar

Description:

Module "junit-jupiter" of JUnit

License:

Eclipse Public License v2.0: https://www.eclipse.org/legal/epl-v20.html
File Path: C:\Users\Jeremy\.m2\repository\org\junit\jupiter\junit-jupiter\6.0.3\junit-jupiter-6.0.3.jar
MD5: c95d1aec5ec4ab54475342bc672a462c
SHA1: da72f4bc0feccbca639b901ace26e3a62512ebec
SHA256:784b65815f479a0c99a9d3a573b142e2a525efb6025d97f751b19e72f90aeda3
Referenced In Project/Scope: javabean-tester:compile
junit-jupiter-6.0.3.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.hazendaz/javabean-tester@2.12.0

Identifiers

  • pkg:maven/org.junit.jupiter/junit-jupiter@6.0.3   (Confidence:High)

junit-jupiter-api-6.0.3.jar

Description:

Module "junit-jupiter-api" of JUnit

License:

Eclipse Public License v2.0: https://www.eclipse.org/legal/epl-v20.html
File Path: C:\Users\Jeremy\.m2\repository\org\junit\jupiter\junit-jupiter-api\6.0.3\junit-jupiter-api-6.0.3.jar
MD5: 1026ddf29a2310534f7ab1eb0e7c0e76
SHA1: 2e6cfb62db85350179f0408ed5270f7cdf8cefda
SHA256:d655d7e6f0c7ae07f10a2f3bbaaebb6d30e9b26204a068ad9e9b3950aa28792c
Referenced In Project/Scope: javabean-tester:compile
junit-jupiter-api-6.0.3.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.junit.jupiter/junit-jupiter@6.0.3

Identifiers

  • pkg:maven/org.junit.jupiter/junit-jupiter-api@6.0.3   (Confidence:High)

junit-jupiter-engine-6.0.3.jar

Description:

Module "junit-jupiter-engine" of JUnit

License:

Eclipse Public License v2.0: https://www.eclipse.org/legal/epl-v20.html
File Path: C:\Users\Jeremy\.m2\repository\org\junit\jupiter\junit-jupiter-engine\6.0.3\junit-jupiter-engine-6.0.3.jar
MD5: 08198e8d7f391e7b1be61f7db37a254b
SHA1: e26f7e17d06cfc85ba7643b5ad00c87d5f2084dd
SHA256:1e2fab61ad27ea08fc7c70dd9677cf8c6d1ae5434d42dcfdd633b12c7e7c04d0
Referenced In Project/Scope: javabean-tester:runtime
junit-jupiter-engine-6.0.3.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.junit.jupiter/junit-jupiter@6.0.3

Identifiers

  • pkg:maven/org.junit.jupiter/junit-jupiter-engine@6.0.3   (Confidence:High)

junit-jupiter-params-6.0.3.jar

Description:

Module "junit-jupiter-params" of JUnit

License:

Eclipse Public License v2.0: https://www.eclipse.org/legal/epl-v20.html
File Path: C:\Users\Jeremy\.m2\repository\org\junit\jupiter\junit-jupiter-params\6.0.3\junit-jupiter-params-6.0.3.jar
MD5: ffe52888339f44dae798eee1970c0d0d
SHA1: 6cd3efadd171a3ddd70413868a9c3af988a45907
SHA256:cf2947e2302b9f8c8a059259a277881c1cadae8fbc2514c16a925cfeb7beb2e5
Referenced In Project/Scope: javabean-tester:compile
junit-jupiter-params-6.0.3.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.junit.jupiter/junit-jupiter@6.0.3

Identifiers

  • pkg:maven/org.junit.jupiter/junit-jupiter-params@6.0.3   (Confidence:High)

junit-platform-engine-6.0.3.jar

Description:

Module "junit-platform-engine" of JUnit

License:

Eclipse Public License v2.0: https://www.eclipse.org/legal/epl-v20.html
File Path: C:\Users\Jeremy\.m2\repository\org\junit\platform\junit-platform-engine\6.0.3\junit-platform-engine-6.0.3.jar
MD5: ca09bac92bc2e093a81459cf04fb02a7
SHA1: 101305612e7daa4ce978d3ba73fd02dd4a5f22d9
SHA256:491e9e4f745f161b8a8e4186a1a7c6a450ea12c70930c9aedae427215301d947
Referenced In Project/Scope: javabean-tester:runtime
junit-platform-engine-6.0.3.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.junit.jupiter/junit-jupiter@6.0.3

Identifiers

  • pkg:maven/org.junit.platform/junit-platform-engine@6.0.3   (Confidence:High)
  • cpe:2.3:a:fan_platform_project:fan_platform:6.0.3:*:*:*:*:*:*:*   (Confidence:Low)   

lombok-1.18.42.jar: mavenEcjBootstrapAgent.jar

File Path: C:\Users\Jeremy\.m2\repository\org\projectlombok\lombok\1.18.42\lombok-1.18.42.jar\lombok\launch\mavenEcjBootstrapAgent.jar
MD5: 885d5d6be90a5dcd4b82cdf741e3f31a
SHA1: e1f7f1779f40157fd0b984c1bc32a0cb45cae66e
SHA256:74a80a6ee84e5c6fe497dfcc46a46dbe30578525e747eb531e918ee0750c8da9
Referenced In Project/Scope: javabean-tester:provided

Identifiers

  • None

lombok-1.18.42.jar

Description:

Spice up your java: Automatic Resource Management, automatic generation of getters, setters, equals, hashCode and toString, and more!

License:

The MIT License: https://projectlombok.org/LICENSE
File Path: C:\Users\Jeremy\.m2\repository\org\projectlombok\lombok\1.18.42\lombok-1.18.42.jar
MD5: f29149836e0187fb9fd95d82dc718d36
SHA1: 8365263844ebb62398e0dc33057ba10ba472d3b8
SHA256:3488a4e9994c26596baaceebee58cad36a50e3bdaec5be72b5834d3c3b560306
Referenced In Project/Scope: javabean-tester:provided
lombok-1.18.42.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.hazendaz/javabean-tester@2.12.0

Identifiers

  • pkg:maven/org.projectlombok/lombok@1.18.42   (Confidence:High)

mockito-core-5.21.0.jar

Description:

Mockito mock objects library core API and implementation

License:

MIT: https://opensource.org/licenses/MIT
File Path: C:\Users\Jeremy\.m2\repository\org\mockito\mockito-core\5.21.0\mockito-core-5.21.0.jar
MD5: eaa03e4fb5717c19f2eb649d2a96f0cf
SHA1: 121287b8287464a5a7af2e47d5dbc49ca38a892f
SHA256:03db23de742cbca42aa3d6127fdace560fac37b036d931870801f84c288bd286
Referenced In Project/Scope: javabean-tester:compile
mockito-core-5.21.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.mockito/mockito-junit-jupiter@5.21.0

Identifiers

  • pkg:maven/org.mockito/mockito-core@5.21.0   (Confidence:High)

mockito-junit-jupiter-5.21.0.jar

Description:

Mockito JUnit 5 support

License:

MIT: https://opensource.org/licenses/MIT
File Path: C:\Users\Jeremy\.m2\repository\org\mockito\mockito-junit-jupiter\5.21.0\mockito-junit-jupiter-5.21.0.jar
MD5: d931fbf48dec4c30765293f2defdb58e
SHA1: a50fabee944b1e49804255743045851ed4b354c6
SHA256:107148b99e8cd0170302babc1f260123c405190ce83a0d2666b618be488c9b17
Referenced In Project/Scope: javabean-tester:compile
mockito-junit-jupiter-5.21.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.hazendaz/javabean-tester@2.12.0

Identifiers

  • pkg:maven/org.mockito/mockito-junit-jupiter@5.21.0   (Confidence:High)

objenesis-3.4.jar

Description:

A library for instantiating Java objects

License:

http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\org\objenesis\objenesis\3.4\objenesis-3.4.jar
MD5: 51242320cb2bb25a3f36e2e21fa87de0
SHA1: 675cbe121a68019235d27f6c34b4f0ac30e07418
SHA256:95488102feaf2e2858adf6b299353677dac6c15294006f8ed1c5556f8e3cd251
Referenced In Project/Scope: javabean-tester:compile
objenesis-3.4.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/nl.jqno.equalsverifier/equalsverifier@4.3.1

Identifiers

  • pkg:maven/org.objenesis/objenesis@3.4   (Confidence:High)

opentest4j-1.3.0.jar

Description:

Open Test Alliance for the JVM

License:

The Apache License, Version 2.0: https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\org\opentest4j\opentest4j\1.3.0\opentest4j-1.3.0.jar
MD5: 03c404f727531f3fd3b4c73997899327
SHA1: 152ea56b3a72f655d4fd677fc0ef2596c3dd5e6e
SHA256:48e2df636cab6563ced64dcdff8abb2355627cb236ef0bf37598682ddf742f1b
Referenced In Project/Scope: javabean-tester:compile
opentest4j-1.3.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.junit.jupiter/junit-jupiter@6.0.3

Identifiers

  • pkg:maven/org.opentest4j/opentest4j@1.3.0   (Confidence:High)

slf4j-api-2.0.17.jar

Description:

The slf4j API

License:

https://opensource.org/license/mit
File Path: C:\Users\Jeremy\.m2\repository\org\slf4j\slf4j-api\2.0.17\slf4j-api-2.0.17.jar
MD5: b6480d114a23683498ac3f746f959d2f
SHA1: d9e58ac9c7779ba3bf8142aff6c830617a7fe60f
SHA256:7b751d952061954d5abfed7181c1f645d336091b679891591d63329c622eb832
Referenced In Project/Scope: javabean-tester:compile
slf4j-api-2.0.17.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.hazendaz/javabean-tester@2.12.0

Identifiers

  • pkg:maven/org.slf4j/slf4j-api@2.0.17   (Confidence:High)


This report contains data retrieved from the National Vulnerability Database.
This report may contain data retrieved from the CISA Known Exploited Vulnerability Catalog.
This report may contain data retrieved from the Github Advisory Database (via NPM Audit API).
This report may contain data retrieved from RetireJS.
This report may contain data retrieved from the Sonatype OSS Index.