Press CTR-C to copy XML [help]


Dependency-Check is an open source tool performing a best effort analysis of 3rd party dependencies; false positives and false negatives may exist in the analysis performed by the tool. Use of the tool and the reporting provided constitutes acceptance for use in an AS IS condition, and there are NO warranties, implied or otherwise, with regard to the analysis or its use. Any use of the tool and the reporting provided is at the user’s risk. In no event shall the copyright holder or OWASP be held liable for any damages whatsoever arising out of or in connection with the use of this tool, the analysis performed, or the resulting report.

How to read the report | Suppressing false positives | Getting Help: github issues

Project: javabean-tester

com.github.hazendaz:javabean-tester:2.11.2

Scan Information (show all):

Summary

Summary of Vulnerable Dependencies (click to show all)

DependencyVulnerability IDsPackageHighest SeverityCVE CountConfidenceEvidence Count
apiguardian-api-1.1.2.jarpkg:maven/org.apiguardian/apiguardian-api@1.1.2 040
byte-buddy-1.18.0.jarpkg:maven/net.bytebuddy/byte-buddy@1.18.0 029
equalsverifier-4.2.2.jarpkg:maven/nl.jqno.equalsverifier/equalsverifier@4.2.2 034
javassist-3.30.2-GA.jarpkg:maven/org.javassist/javassist@3.30.2-GA 059
jspecify-1.0.0.jarpkg:maven/org.jspecify/jspecify@1.0.0 032
junit-jupiter-6.0.1.jarpkg:maven/org.junit.jupiter/junit-jupiter@6.0.1 070
junit-jupiter-api-6.0.1.jarpkg:maven/org.junit.jupiter/junit-jupiter-api@6.0.1 076
junit-jupiter-engine-6.0.1.jarpkg:maven/org.junit.jupiter/junit-jupiter-engine@6.0.1 078
junit-jupiter-params-6.0.1.jarpkg:maven/org.junit.jupiter/junit-jupiter-params@6.0.1 076
junit-platform-engine-6.0.1.jarcpe:2.3:a:fan_platform_project:fan_platform:6.0.1:*:*:*:*:*:*:*pkg:maven/org.junit.platform/junit-platform-engine@6.0.1 0Low76
lombok-1.18.42.jar: mavenEcjBootstrapAgent.jar 07
lombok-1.18.42.jarpkg:maven/org.projectlombok/lombok@1.18.42 036
mockito-core-5.20.0.jarpkg:maven/org.mockito/mockito-core@5.20.0 041
mockito-junit-jupiter-5.20.0.jarpkg:maven/org.mockito/mockito-junit-jupiter@5.20.0 039
objenesis-3.4.jarpkg:maven/org.objenesis/objenesis@3.4 027
opentest4j-1.3.0.jarpkg:maven/org.opentest4j/opentest4j@1.3.0 060
slf4j-api-2.0.17.jarpkg:maven/org.slf4j/slf4j-api@2.0.17 029

Dependencies (vulnerable)

apiguardian-api-1.1.2.jar

Description:

@API Guardian

License:

The Apache License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\org\apiguardian\apiguardian-api\1.1.2\apiguardian-api-1.1.2.jar
MD5: 8c7de3f82037fa4a2e8be2a2f13092af
SHA1: a231e0d844d2721b0fa1b238006d15c6ded6842a
SHA256:b509448ac506d607319f182537f0b35d71007582ec741832a1f111e5b5b70b38
Referenced In Project/Scope: javabean-tester:compile
apiguardian-api-1.1.2.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.junit.jupiter/junit-jupiter@6.0.1

Identifiers

  • pkg:maven/org.apiguardian/apiguardian-api@1.1.2  (Confidence:High)

byte-buddy-1.18.0.jar

Description:

        Byte Buddy is a Java library for creating Java classes at run time.
        This artifact is a build of Byte Buddy with all ASM dependencies repackaged into its own name space.

License:

https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\net\bytebuddy\byte-buddy\1.18.0\byte-buddy-1.18.0.jar
MD5: cd96e835c44ed7c97814af6a3906859b
SHA1: ab6329d0ddab0e95d5680db1ab219523e82d4f19
SHA256:547e00f70151ae01edfaf7f44769b37e819cbcd6e3ac19af11d690b8c1861c8c
Referenced In Project/Scope: javabean-tester:compile
byte-buddy-1.18.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.hazendaz/javabean-tester@2.11.2

Identifiers

  • pkg:maven/net.bytebuddy/byte-buddy@1.18.0  (Confidence:High)

equalsverifier-4.2.2.jar

Description:

EqualsVerifier can be used in JUnit unit tests to verify whether the contract for the equals and hashCode methods is met.

License:

Apache License, Version 2.0: https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\nl\jqno\equalsverifier\equalsverifier\4.2.2\equalsverifier-4.2.2.jar
MD5: 6b68779a5c5fa25e3acfc7c729cf5feb
SHA1: 637a4f9310aed10680a16d4a29e348713d5f6a2e
SHA256:c7db9513b667e0d187489efbf2605b7ba7de358d77c24094b221a36d0e15f1b9
Referenced In Project/Scope: javabean-tester:compile
equalsverifier-4.2.2.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.hazendaz/javabean-tester@2.11.2

Identifiers

  • pkg:maven/nl.jqno.equalsverifier/equalsverifier@4.2.2  (Confidence:High)

javassist-3.30.2-GA.jar

Description:

    Javassist (JAVA programming ASSISTant) makes Java bytecode manipulation
    simple. It is a class library for editing bytecodes in Java.

License:

MPL 1.1: https://www.mozilla.org/en-US/MPL/1.1/
LGPL 2.1: https://www.gnu.org/licenses/lgpl-2.1.html
Apache License 2.0: https://www.apache.org/licenses/LICENSE-2.0
File Path: C:\Users\Jeremy\.m2\repository\org\javassist\javassist\3.30.2-GA\javassist-3.30.2-GA.jar
MD5: f5b827b8ddec0629cc7a6d7dafc45999
SHA1: 284580b5e42dfa1b8267058566435d9e93fae7f7
SHA256:eba37290994b5e4868f3af98ff113f6244a6b099385d9ad46881307d3cb01aaf
Referenced In Project/Scope: javabean-tester:compile
javassist-3.30.2-GA.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.hazendaz/javabean-tester@2.11.2

Identifiers

  • pkg:maven/org.javassist/javassist@3.30.2-GA  (Confidence:High)

jspecify-1.0.0.jar

Description:

An artifact of well-named and well-specified annotations to power static analysis checks

License:

The Apache License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\org\jspecify\jspecify\1.0.0\jspecify-1.0.0.jar
MD5: 9133aba420d0ca3b001dbb6ae9992cf6
SHA1: 7425a601c1c7ec76645a78d22b8c6a627edee507
SHA256:1fad6e6be7557781e4d33729d49ae1cdc8fdda6fe477bb0cc68ce351eafdfbab
Referenced In Project/Scope: javabean-tester:compile
jspecify-1.0.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.junit.jupiter/junit-jupiter@6.0.1

Identifiers

  • pkg:maven/org.jspecify/jspecify@1.0.0  (Confidence:High)

junit-jupiter-6.0.1.jar

Description:

Module "junit-jupiter" of JUnit

License:

Eclipse Public License v2.0: https://www.eclipse.org/legal/epl-v20.html
File Path: C:\Users\Jeremy\.m2\repository\org\junit\jupiter\junit-jupiter\6.0.1\junit-jupiter-6.0.1.jar
MD5: c40efdbf94c01ad379b4dcd37e501dad
SHA1: b4b49470ed173a4b5f437851f6fdf1dc08dde93a
SHA256:bd7af281dfef8dcc1d08a503ce9304597b65e1850a0db82c99ab6d8cb1031b14
Referenced In Project/Scope: javabean-tester:compile
junit-jupiter-6.0.1.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.hazendaz/javabean-tester@2.11.2

Identifiers

  • pkg:maven/org.junit.jupiter/junit-jupiter@6.0.1  (Confidence:High)

junit-jupiter-api-6.0.1.jar

Description:

Module "junit-jupiter-api" of JUnit

License:

Eclipse Public License v2.0: https://www.eclipse.org/legal/epl-v20.html
File Path: C:\Users\Jeremy\.m2\repository\org\junit\jupiter\junit-jupiter-api\6.0.1\junit-jupiter-api-6.0.1.jar
MD5: 13c345298eea2b62b3385271b716e6aa
SHA1: fd95c21739621a27658aada0ac23ff3d354beaa5
SHA256:a3ca8c7e567436093e4a6703d5d4aac02dbea36106ea32fd1367b56de20d4e02
Referenced In Project/Scope: javabean-tester:compile
junit-jupiter-api-6.0.1.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.junit.jupiter/junit-jupiter@6.0.1

Identifiers

  • pkg:maven/org.junit.jupiter/junit-jupiter-api@6.0.1  (Confidence:High)

junit-jupiter-engine-6.0.1.jar

Description:

Module "junit-jupiter-engine" of JUnit

License:

Eclipse Public License v2.0: https://www.eclipse.org/legal/epl-v20.html
File Path: C:\Users\Jeremy\.m2\repository\org\junit\jupiter\junit-jupiter-engine\6.0.1\junit-jupiter-engine-6.0.1.jar
MD5: 527001b6833c8ece15a920d6c88c6c6d
SHA1: 62f4f510ba70f516641b8db28d2a184fd283493b
SHA256:7476a56f4aaab57fc2f459847cd6bfb712b3bd04a9ac0b89ed9573f7adc2c550
Referenced In Project/Scope: javabean-tester:runtime
junit-jupiter-engine-6.0.1.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.junit.jupiter/junit-jupiter@6.0.1

Identifiers

  • pkg:maven/org.junit.jupiter/junit-jupiter-engine@6.0.1  (Confidence:High)

junit-jupiter-params-6.0.1.jar

Description:

Module "junit-jupiter-params" of JUnit

License:

Eclipse Public License v2.0: https://www.eclipse.org/legal/epl-v20.html
File Path: C:\Users\Jeremy\.m2\repository\org\junit\jupiter\junit-jupiter-params\6.0.1\junit-jupiter-params-6.0.1.jar
MD5: a18675e046c6af42b8a3b3a804640304
SHA1: 005c817a9421231ced101d19a699d5c99b992675
SHA256:9566e249b4d4c7d53a6c8908f577885ce2d4c6313c916bdfbf7ffbc526b8a36f
Referenced In Project/Scope: javabean-tester:compile
junit-jupiter-params-6.0.1.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.junit.jupiter/junit-jupiter@6.0.1

Identifiers

  • pkg:maven/org.junit.jupiter/junit-jupiter-params@6.0.1  (Confidence:High)

junit-platform-engine-6.0.1.jar

Description:

Module "junit-platform-engine" of JUnit

License:

Eclipse Public License v2.0: https://www.eclipse.org/legal/epl-v20.html
File Path: C:\Users\Jeremy\.m2\repository\org\junit\platform\junit-platform-engine\6.0.1\junit-platform-engine-6.0.1.jar
MD5: 5b533f60bb8146253e3ee366a9261198
SHA1: 7b5b4c9a2298a7acd80e3267b49fda92e89cba4e
SHA256:f49577073a7ae184c718d9b43ae0d8edcb8abfc5ac738735ee3339d4652e92bf
Referenced In Project/Scope: javabean-tester:runtime
junit-platform-engine-6.0.1.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.junit.jupiter/junit-jupiter@6.0.1

Identifiers

  • pkg:maven/org.junit.platform/junit-platform-engine@6.0.1  (Confidence:High)
  • cpe:2.3:a:fan_platform_project:fan_platform:6.0.1:*:*:*:*:*:*:*  (Confidence:Low)  

lombok-1.18.42.jar: mavenEcjBootstrapAgent.jar

File Path: C:\Users\Jeremy\.m2\repository\org\projectlombok\lombok\1.18.42\lombok-1.18.42.jar\lombok\launch\mavenEcjBootstrapAgent.jar
MD5: 885d5d6be90a5dcd4b82cdf741e3f31a
SHA1: e1f7f1779f40157fd0b984c1bc32a0cb45cae66e
SHA256:74a80a6ee84e5c6fe497dfcc46a46dbe30578525e747eb531e918ee0750c8da9
Referenced In Project/Scope: javabean-tester:provided

Identifiers

  • None

lombok-1.18.42.jar

Description:

Spice up your java: Automatic Resource Management, automatic generation of getters, setters, equals, hashCode and toString, and more!

License:

The MIT License: https://projectlombok.org/LICENSE
File Path: C:\Users\Jeremy\.m2\repository\org\projectlombok\lombok\1.18.42\lombok-1.18.42.jar
MD5: f29149836e0187fb9fd95d82dc718d36
SHA1: 8365263844ebb62398e0dc33057ba10ba472d3b8
SHA256:3488a4e9994c26596baaceebee58cad36a50e3bdaec5be72b5834d3c3b560306
Referenced In Project/Scope: javabean-tester:provided
lombok-1.18.42.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.hazendaz/javabean-tester@2.11.2

Identifiers

  • pkg:maven/org.projectlombok/lombok@1.18.42  (Confidence:High)

mockito-core-5.20.0.jar

Description:

Mockito mock objects library core API and implementation

License:

MIT: https://opensource.org/licenses/MIT
File Path: C:\Users\Jeremy\.m2\repository\org\mockito\mockito-core\5.20.0\mockito-core-5.20.0.jar
MD5: 05f1af408a8a9599b65453c3c3082f6e
SHA1: a32f446f38acf636363c5693db6498047731b9e0
SHA256:d1a96d252128d3a4247cfd8a2e76412efa3cc103977be17933c942117a24f374
Referenced In Project/Scope: javabean-tester:compile
mockito-core-5.20.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.mockito/mockito-junit-jupiter@5.20.0

Identifiers

  • pkg:maven/org.mockito/mockito-core@5.20.0  (Confidence:High)

mockito-junit-jupiter-5.20.0.jar

Description:

Mockito JUnit 5 support

License:

MIT: https://opensource.org/licenses/MIT
File Path: C:\Users\Jeremy\.m2\repository\org\mockito\mockito-junit-jupiter\5.20.0\mockito-junit-jupiter-5.20.0.jar
MD5: 34ac767475d435d77ed12d40847fd4a2
SHA1: 58ed6603af5f8f53886d49be00264a3fdd1278d5
SHA256:fd6c703c2b00b914f3adbc27b18077a708f3d6992f19242c444e737c6cce024e
Referenced In Project/Scope: javabean-tester:compile
mockito-junit-jupiter-5.20.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.hazendaz/javabean-tester@2.11.2

Identifiers

  • pkg:maven/org.mockito/mockito-junit-jupiter@5.20.0  (Confidence:High)

objenesis-3.4.jar

Description:

A library for instantiating Java objects

License:

http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\org\objenesis\objenesis\3.4\objenesis-3.4.jar
MD5: 51242320cb2bb25a3f36e2e21fa87de0
SHA1: 675cbe121a68019235d27f6c34b4f0ac30e07418
SHA256:95488102feaf2e2858adf6b299353677dac6c15294006f8ed1c5556f8e3cd251
Referenced In Project/Scope: javabean-tester:compile
objenesis-3.4.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/nl.jqno.equalsverifier/equalsverifier@4.2.2

Identifiers

  • pkg:maven/org.objenesis/objenesis@3.4  (Confidence:High)

opentest4j-1.3.0.jar

Description:

Open Test Alliance for the JVM

License:

The Apache License, Version 2.0: https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: C:\Users\Jeremy\.m2\repository\org\opentest4j\opentest4j\1.3.0\opentest4j-1.3.0.jar
MD5: 03c404f727531f3fd3b4c73997899327
SHA1: 152ea56b3a72f655d4fd677fc0ef2596c3dd5e6e
SHA256:48e2df636cab6563ced64dcdff8abb2355627cb236ef0bf37598682ddf742f1b
Referenced In Project/Scope: javabean-tester:compile
opentest4j-1.3.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.junit.jupiter/junit-jupiter@6.0.1

Identifiers

  • pkg:maven/org.opentest4j/opentest4j@1.3.0  (Confidence:High)

slf4j-api-2.0.17.jar

Description:

The slf4j API

License:

https://opensource.org/license/mit
File Path: C:\Users\Jeremy\.m2\repository\org\slf4j\slf4j-api\2.0.17\slf4j-api-2.0.17.jar
MD5: b6480d114a23683498ac3f746f959d2f
SHA1: d9e58ac9c7779ba3bf8142aff6c830617a7fe60f
SHA256:7b751d952061954d5abfed7181c1f645d336091b679891591d63329c622eb832
Referenced In Project/Scope: javabean-tester:compile
slf4j-api-2.0.17.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.hazendaz/javabean-tester@2.11.2

Identifiers

  • pkg:maven/org.slf4j/slf4j-api@2.0.17  (Confidence:High)


This report contains data retrieved from the National Vulnerability Database.
This report may contain data retrieved from the CISA Known Exploited Vulnerability Catalog.
This report may contain data retrieved from the Github Advisory Database (via NPM Audit API).
This report may contain data retrieved from RetireJS.
This report may contain data retrieved from the Sonatype OSS Index.