Dependency-Check Report

Dependency-Check is an open source tool performing a best effort analysis of 3rd party dependencies; false positives and false negatives may exist in the analysis performed by the tool. Use of the tool and the reporting provided constitutes acceptance for use in an AS IS condition, and there are NO warranties, implied or otherwise, with regard to the analysis or its use. Any use of the tool and the reporting provided is at the user’s risk. In no event shall the copyright holder or OWASP be held liable for any damages whatsoever arising out of or in connection with the use of this tool, the analysis performed, or the resulting report.

Scan Information (show all):

dependency-check version: 12.2.0
Report Generated On: Sun, 25 Jan 2026 14:42:52 -0500
Dependencies Scanned: 16 (15 unique)
Vulnerable Dependencies: 0
Vulnerabilities Found: 0
Vulnerabilities Suppressed: 0
...
NVD API Last Checked: 2026-01-25T14:14:58-05
NVD API Last Modified: 2026-01-25T15:15:56Z

Summary

Summary of Vulnerable Dependencies (click to show all)

Dependency	Vulnerability IDs	Package	Confidence	Evidence Count
checker-qual-3.53.0.jar		pkg:maven/org.checkerframework/checker-qual@3.53.0		44
deltaspike-core-api-2.0.1.jar	cpe:2.3:a:apache:deltaspike:2.0.1:::::::*	pkg:maven/org.apache.deltaspike.core/deltaspike-core-api@2.0.1	Highest	28
error_prone_annotations-2.46.0.jar		pkg:maven/com.google.errorprone/error_prone_annotations@2.46.0		29
j2objc-annotations-3.1.jar		pkg:maven/com.google.j2objc/j2objc-annotations@3.1		33
jakarta.annotation-api-2.1.0.jar	cpe:2.3:a:oracle:projects:2.1.0:::::::*	pkg:maven/jakarta.annotation/jakarta.annotation-api@2.1.0	Low	42
jakarta.el-api-5.0.0.jar	cpe:2.3:a:eclipse:jakarta_expression_language:5.0.0:::::::*	pkg:maven/jakarta.el/jakarta.el-api@5.0.0	Low	45
jakarta.enterprise.cdi-api-4.0.0.jar	cpe:2.3:a:redhat:enterprise_ipa:4.0.0:::::::*	pkg:maven/jakarta.enterprise/jakarta.enterprise.cdi-api@4.0.0	Low	79
jakarta.enterprise.lang-model-4.0.0.jar		pkg:maven/jakarta.enterprise/jakarta.enterprise.lang-model@4.0.0		29
jakarta.inject-api-2.0.1.jar		pkg:maven/jakarta.inject/jakarta.inject-api@2.0.1		56
jakarta.interceptor-api-2.1.0.jar		pkg:maven/jakarta.interceptor/jakarta.interceptor-api@2.1.0		46
jsr305-3.0.2.jar		pkg:maven/com.google.code.findbugs/jsr305@3.0.2		17
lombok-1.18.42.jar: mavenEcjBootstrapAgent.jar				7
lombok-1.18.42.jar		pkg:maven/org.projectlombok/lombok@1.18.42		36
modernizer-maven-annotations-3.2.0.jar		pkg:maven/org.gaul/modernizer-maven-annotations@3.2.0		19
spotbugs-annotations-4.9.8.jar		pkg:maven/com.github.spotbugs/spotbugs-annotations@4.9.8		53

Dependencies (vulnerable)

checker-qual-3.53.0.jar

Description:

checker-qual contains annotations (type qualifiers) that a programmerwrites to specify Java code for type-checking by the Checker Framework.

License:

The MIT License: http://opensource.org/licenses/MIT

File Path: C:\Users\Jeremy\.m2\repository\org\checkerframework\checker-qual\3.53.0\checker-qual-3.53.0.jar
MD5: d1ee2a3366a19a8fff01208da2adb48e
SHA1: af1105964a03d7ed8aaf8ea2cb6ec0da7ec6c7a6
SHA256:7ca002815d92fad79e966b375c2ee7b2b4bf953024bc9a5d5e0c59df13ff5af8
Referenced In Project/Scope: beanprovider:compile
pkg:maven/com.github.hazendaz.cdi/beanprovider@1.0.0

Evidence

Type	Source	Name	Value	Confidence
Vendor	file	name	checker-qual	High
Vendor	jar	package name	checker	Highest
Vendor	jar	package name	checkerframework	Highest
Vendor	jar	package name	framework	Highest
Vendor	jar	package name	qual	Highest
Vendor	Manifest	bundle-symbolicname	checker-qual	Medium
Vendor	Manifest	implementation-url	https://checkerframework.org	Low
Vendor	pom	artifactid	checker-qual	Highest
Vendor	pom	artifactid	checker-qual	Low
Vendor	pom	developer email	mernst@cs.washington.edu	Low
Vendor	pom	developer email	smillst@cs.washington.edu	Low
Vendor	pom	developer id	mernst	Medium
Vendor	pom	developer id	smillst	Medium
Vendor	pom	developer name	Michael Ernst	Medium
Vendor	pom	developer name	Suzanne Millstein	Medium
Vendor	pom	developer org	University of Washington	Medium
Vendor	pom	developer org URL	https://www.cs.washington.edu/	Medium
Vendor	pom	groupid	org.checkerframework	Highest
Vendor	pom	name	Checker Qual	High
Vendor	pom	url	https://checkerframework.org/	Highest
Product	file	name	checker-qual	High
Product	jar	package name	checker	Highest
Product	jar	package name	checkerframework	Highest
Product	jar	package name	framework	Highest
Product	jar	package name	qual	Highest
Product	Manifest	Bundle-Name	checker-qual	Medium
Product	Manifest	bundle-symbolicname	checker-qual	Medium
Product	Manifest	implementation-url	https://checkerframework.org	Low
Product	pom	artifactid	checker-qual	Highest
Product	pom	developer email	mernst@cs.washington.edu	Low
Product	pom	developer email	smillst@cs.washington.edu	Low
Product	pom	developer id	mernst	Low
Product	pom	developer id	smillst	Low
Product	pom	developer name	Michael Ernst	Low
Product	pom	developer name	Suzanne Millstein	Low
Product	pom	developer org	University of Washington	Low
Product	pom	developer org URL	https://www.cs.washington.edu/	Low
Product	pom	groupid	org.checkerframework	Highest
Product	pom	name	Checker Qual	High
Product	pom	url	https://checkerframework.org/	Medium
Version	file	version	3.53.0	High
Version	Manifest	Bundle-Version	3.53.0	High
Version	Manifest	Implementation-Version	3.53.0	High
Version	pom	version	3.53.0	Highest

Identifiers

pkg:maven/org.checkerframework/checker-qual@3.53.0 (Confidence:High)

deltaspike-core-api-2.0.1.jar

File Path: C:\Users\Jeremy\.m2\repository\org\apache\deltaspike\core\deltaspike-core-api\2.0.1\deltaspike-core-api-2.0.1.jar
MD5: 9e6fc7e63440a18217cd719cec71f8e0
SHA1: c81ca221f7d45f2ebcb9c0266f2af89e97a28635
SHA256:73036ee95f0902e151d20b3366f4d1b4b62b658af0b56aad5571c428aefe3678
Referenced In Project/Scope: beanprovider:compile
deltaspike-core-api-2.0.1.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.apache.deltaspike.core/deltaspike-core-impl@2.0.1

Evidence

Type	Source	Name	Value	Confidence
Vendor	file	name	deltaspike-core-api	High
Vendor	jar	package name	apache	Highest
Vendor	jar	package name	api	Highest
Vendor	jar	package name	core	Highest
Vendor	jar	package name	deltaspike	Highest
Vendor	Manifest	build-jdk-spec	17	Low
Vendor	Manifest	Implementation-Vendor	The Apache Software Foundation	High
Vendor	Manifest	specification-vendor	The Apache Software Foundation	Low
Vendor	pom	artifactid	deltaspike-core-api	Highest
Vendor	pom	artifactid	deltaspike-core-api	Low
Vendor	pom	groupid	org.apache.deltaspike.core	Highest
Vendor	pom	name	Apache DeltaSpike Core-API	High
Vendor	pom	parent-artifactid	core-project	Low
Product	file	name	deltaspike-core-api	High
Product	jar	package name	apache	Highest
Product	jar	package name	api	Highest
Product	jar	package name	core	Highest
Product	jar	package name	deltaspike	Highest
Product	Manifest	build-jdk-spec	17	Low
Product	Manifest	Implementation-Title	Apache DeltaSpike Core-API	High
Product	Manifest	specification-title	Apache DeltaSpike Core-API	Medium
Product	pom	artifactid	deltaspike-core-api	Highest
Product	pom	groupid	org.apache.deltaspike.core	Highest
Product	pom	name	Apache DeltaSpike Core-API	High
Product	pom	parent-artifactid	core-project	Medium
Version	file	version	2.0.1	High
Version	Manifest	Implementation-Version	2.0.1	High
Version	pom	version	2.0.1	Highest

Related Dependencies

Identifiers

pkg:maven/org.apache.deltaspike.core/deltaspike-core-api@2.0.1 (Confidence:High)
cpe:2.3:a:apache:deltaspike:2.0.1:*:*:*:*:*:*:* (Confidence:Highest)

error_prone_annotations-2.46.0.jar

Description:

Error Prone is a static analysis tool for Java that catches common programming mistakes at compile-time.

License:

Apache 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt

File Path: C:\Users\Jeremy\.m2\repository\com\google\errorprone\error_prone_annotations\2.46.0\error_prone_annotations-2.46.0.jar
MD5: d0dabea249c067d21d7eb997fbdf5c99
SHA1: 4ecb5d2392c38c46e6cb65e1bf60be708d97005d
SHA256:b67be81ff4b956401146e14eaf1526bc435a9480f2546e91eb45b796631a8a99
Referenced In Project/Scope: beanprovider:provided
pkg:maven/com.github.hazendaz.cdi/beanprovider@1.0.0

Evidence

Type	Source	Name	Value	Confidence
Vendor	file	name	error_prone_annotations	High
Vendor	jar	package name	annotations	Highest
Vendor	jar	package name	errorprone	Highest
Vendor	jar	package name	google	Highest
Vendor	Manifest	build-jdk-spec	21	Low
Vendor	Manifest	bundle-docurl	https://errorprone.info/error_prone_annotations	Low
Vendor	Manifest	bundle-symbolicname	com.google.errorprone.annotations	Medium
Vendor	Manifest	multi-release	true	Low
Vendor	pom	artifactid	error_prone_annotations	Highest
Vendor	pom	artifactid	error_prone_annotations	Low
Vendor	pom	groupid	com.google.errorprone	Highest
Vendor	pom	name	error-prone annotations	High
Vendor	pom	parent-artifactid	error_prone_parent	Low
Product	file	name	error_prone_annotations	High
Product	jar	package name	annotations	Highest
Product	jar	package name	errorprone	Highest
Product	jar	package name	google	Highest
Product	Manifest	build-jdk-spec	21	Low
Product	Manifest	bundle-docurl	https://errorprone.info/error_prone_annotations	Low
Product	Manifest	Bundle-Name	error-prone annotations	Medium
Product	Manifest	bundle-symbolicname	com.google.errorprone.annotations	Medium
Product	Manifest	multi-release	true	Low
Product	pom	artifactid	error_prone_annotations	Highest
Product	pom	groupid	com.google.errorprone	Highest
Product	pom	name	error-prone annotations	High
Product	pom	parent-artifactid	error_prone_parent	Medium
Version	file	version	2.46.0	High
Version	Manifest	Bundle-Version	2.46.0	High
Version	pom	version	2.46.0	Highest

Identifiers

pkg:maven/com.google.errorprone/error_prone_annotations@2.46.0 (Confidence:High)

j2objc-annotations-3.1.jar

Description:

    A set of annotations that provide additional information to the J2ObjC
    translator to modify the result of translation.

License:

Apache License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt

File Path: C:\Users\Jeremy\.m2\repository\com\google\j2objc\j2objc-annotations\3.1\j2objc-annotations-3.1.jar
MD5: abe8bd3abff622b9a8b15c3a737aa741
SHA1: a892ca9507839bbdb900d64310ac98256cab992f
SHA256:84d3a150518485f8140ea99b8a985656749629f6433c92b80c75b36aba3b099b
Referenced In Project/Scope: beanprovider:provided
pkg:maven/com.github.hazendaz.cdi/beanprovider@1.0.0

Evidence

Type	Source	Name	Value	Confidence
Vendor	file	name	j2objc-annotations	High
Vendor	jar	package name	annotations	Highest
Vendor	jar	package name	google	Highest
Vendor	jar	package name	j2objc	Highest
Vendor	Manifest	build-jdk-spec	22	Low
Vendor	Manifest	multi-release	true	Low
Vendor	pom	artifactid	j2objc-annotations	Highest
Vendor	pom	artifactid	j2objc-annotations	Low
Vendor	pom	developer email	tball@google.com	Low
Vendor	pom	developer id	tomball	Medium
Vendor	pom	developer name	Tom Ball	Medium
Vendor	pom	developer org	Google	Medium
Vendor	pom	developer org URL	https://www.google.com	Medium
Vendor	pom	groupid	com.google.j2objc	Highest
Vendor	pom	name	J2ObjC Annotations	High
Vendor	pom	url	google/j2objc/	Highest
Product	file	name	j2objc-annotations	High
Product	jar	package name	annotations	Highest
Product	jar	package name	google	Highest
Product	jar	package name	j2objc	Highest
Product	Manifest	build-jdk-spec	22	Low
Product	Manifest	multi-release	true	Low
Product	pom	artifactid	j2objc-annotations	Highest
Product	pom	developer email	tball@google.com	Low
Product	pom	developer id	tomball	Low
Product	pom	developer name	Tom Ball	Low
Product	pom	developer org	Google	Low
Product	pom	developer org URL	https://www.google.com	Low
Product	pom	groupid	com.google.j2objc	Highest
Product	pom	name	J2ObjC Annotations	High
Product	pom	url	google/j2objc/	High
Version	file	version	3.1	High
Version	pom	version	3.1	Highest

Identifiers

pkg:maven/com.google.j2objc/j2objc-annotations@3.1 (Confidence:High)

jakarta.annotation-api-2.1.0.jar

Description:

Jakarta Annotations API

License:

EPL 2.0: http://www.eclipse.org/legal/epl-2.0
GPL2 w/ CPE: https://www.gnu.org/software/classpath/license.html

File Path: C:\Users\Jeremy\.m2\repository\jakarta\annotation\jakarta.annotation-api\2.1.0\jakarta.annotation-api-2.1.0.jar
MD5: 740bc4e6204ccfafa1b05e7402a6d3d1
SHA1: 4f1cf660cde3a75a0ac3d12ee8afd2d798ec322d
SHA256:448f2abf53b0fb3e96eedc8fe0dafb6284af1252dd1aa4bd3e6774e91fd41a6a
Referenced In Project/Scope: beanprovider:compile
pkg:maven/jakarta.enterprise/jakarta.enterprise.cdi-api@4.0.0

Evidence

Type	Source	Name	Value	Confidence
Vendor	file	name	jakarta.annotation-api	High
Vendor	jar	package name	annotation	Highest
Vendor	jar	package name	jakarta	Highest
Vendor	Manifest	build-jdk-spec	11	Low
Vendor	Manifest	bundle-docurl	https://www.eclipse.org	Low
Vendor	Manifest	bundle-symbolicname	jakarta.annotation-api	Medium
Vendor	Manifest	extension-name	jakarta.annotation	Medium
Vendor	Manifest	Implementation-Vendor	Eclipse Foundation	High
Vendor	Manifest	Implementation-Vendor-Id	org.glassfish	Medium
Vendor	Manifest	specification-vendor	Eclipse Foundation	Low
Vendor	pom	artifactid	jakarta.annotation-api	Highest
Vendor	pom	artifactid	jakarta.annotation-api	Low
Vendor	pom	developer name	Dmitry Kornilov	Medium
Vendor	pom	developer name	Linda De Michiel	Medium
Vendor	pom	developer org	Oracle Corp.	Medium
Vendor	pom	groupid	jakarta.annotation	Highest
Vendor	pom	name	Jakarta Annotations API	High
Vendor	pom	parent-artifactid	project	Low
Vendor	pom	parent-groupid	org.eclipse.ee4j	Medium
Vendor	pom	url	https://projects.eclipse.org/projects/ee4j.ca	Highest
Product	file	name	jakarta.annotation-api	High
Product	jar	package name	annotation	Highest
Product	jar	package name	jakarta	Highest
Product	Manifest	build-jdk-spec	11	Low
Product	Manifest	bundle-docurl	https://www.eclipse.org	Low
Product	Manifest	Bundle-Name	Jakarta Annotations API	Medium
Product	Manifest	bundle-symbolicname	jakarta.annotation-api	Medium
Product	Manifest	extension-name	jakarta.annotation	Medium
Product	pom	artifactid	jakarta.annotation-api	Highest
Product	pom	developer name	Dmitry Kornilov	Low
Product	pom	developer name	Linda De Michiel	Low
Product	pom	developer org	Oracle Corp.	Low
Product	pom	groupid	jakarta.annotation	Highest
Product	pom	name	Jakarta Annotations API	High
Product	pom	parent-artifactid	project	Medium
Product	pom	parent-groupid	org.eclipse.ee4j	Medium
Product	pom	url	https://projects.eclipse.org/projects/ee4j.ca	Medium
Version	file	version	2.1.0	High
Version	Manifest	Bundle-Version	2.1.0	High
Version	Manifest	Implementation-Version	2.1.0	High
Version	pom	parent-version	2.1.0	Low
Version	pom	version	2.1.0	Highest

Identifiers

pkg:maven/jakarta.annotation/jakarta.annotation-api@2.1.0 (Confidence:High)
cpe:2.3:a:oracle:projects:2.1.0:*:*:*:*:*:*:* (Confidence:Low)

jakarta.el-api-5.0.0.jar

Description:

        Jakarta Expression Language defines an expression language for Java applications

License:

https://www.eclipse.org/org/documents/epl-2.0/EPL-2.0.txt, https://www.gnu.org/software/classpath/license.html

File Path: C:\Users\Jeremy\.m2\repository\jakarta\el\jakarta.el-api\5.0.0\jakarta.el-api-5.0.0.jar
MD5: 191b53c8c1c12c969f0678f9c6e073b0
SHA1: 2a22b304920f43d6427cdefb5ce5f6726e2a63a3
SHA256:57b822380207900f5145c2a687384c50fd41495d388a235791d96ae3b9bfd36d
Referenced In Project/Scope: beanprovider:compile
pkg:maven/jakarta.enterprise/jakarta.enterprise.cdi-api@4.0.0

Evidence

Type	Source	Name	Value	Confidence
Vendor	file	name	jakarta.el-api	High
Vendor	jar	package name	el	Highest
Vendor	jar	package name	expression	Highest
Vendor	jar	package name	jakarta	Highest
Vendor	Manifest	build-jdk-spec	11	Low
Vendor	Manifest	bundle-docurl	https://www.eclipse.org	Low
Vendor	Manifest	bundle-symbolicname	jakarta.el-api	Medium
Vendor	Manifest	extension-name	jakarta.el	Medium
Vendor	Manifest	Implementation-Vendor	Eclipse Foundation	High
Vendor	Manifest	specification-vendor	Eclipse Foundation	Low
Vendor	pom	artifactid	jakarta.el-api	Highest
Vendor	pom	artifactid	jakarta.el-api	Low
Vendor	pom	developer email	el-dev@eclipse.org	Low
Vendor	pom	developer id	jakarta-ee4j-el	Medium
Vendor	pom	developer name	Jakarta Expression Language Developers	Medium
Vendor	pom	developer org	Eclipse Foundation	Medium
Vendor	pom	groupid	jakarta.el	Highest
Vendor	pom	name	Jakarta Expression Language API	High
Vendor	pom	parent-artifactid	project	Low
Vendor	pom	parent-groupid	org.eclipse.ee4j	Medium
Vendor	pom	url	https://projects.eclipse.org/projects/ee4j.el	Highest
Product	file	name	jakarta.el-api	High
Product	jar	package name	el	Highest
Product	jar	package name	expression	Highest
Product	jar	package name	jakarta	Highest
Product	Manifest	build-jdk-spec	11	Low
Product	Manifest	bundle-docurl	https://www.eclipse.org	Low
Product	Manifest	Bundle-Name	Jakarta Expression Language API	Medium
Product	Manifest	bundle-symbolicname	jakarta.el-api	Medium
Product	Manifest	extension-name	jakarta.el	Medium
Product	pom	artifactid	jakarta.el-api	Highest
Product	pom	developer email	el-dev@eclipse.org	Low
Product	pom	developer id	jakarta-ee4j-el	Low
Product	pom	developer name	Jakarta Expression Language Developers	Low
Product	pom	developer org	Eclipse Foundation	Low
Product	pom	groupid	jakarta.el	Highest
Product	pom	name	Jakarta Expression Language API	High
Product	pom	parent-artifactid	project	Medium
Product	pom	parent-groupid	org.eclipse.ee4j	Medium
Product	pom	url	https://projects.eclipse.org/projects/ee4j.el	Medium
Version	file	version	5.0.0	High
Version	Manifest	Bundle-Version	5.0.0	High
Version	Manifest	Implementation-Version	5.0.0	High
Version	pom	parent-version	5.0.0	Low
Version	pom	version	5.0.0	Highest

Identifiers

pkg:maven/jakarta.el/jakarta.el-api@5.0.0 (Confidence:High)
cpe:2.3:a:eclipse:jakarta_expression_language:5.0.0:*:*:*:*:*:*:* (Confidence:Low)

jakarta.enterprise.cdi-api-4.0.0.jar

Description:

APIs for CDI (Contexts and Dependency Injection for Java)

License:

Apache License 2.0: https://www.apache.org/licenses/LICENSE-2.0

File Path: C:\Users\Jeremy\.m2\repository\jakarta\enterprise\jakarta.enterprise.cdi-api\4.0.0\jakarta.enterprise.cdi-api-4.0.0.jar
MD5: 70a8f1c6d6fd4b7a35eae51858d351fa
SHA1: e0d28f3357761ab8357899028323978440420030
SHA256:4762ec56f915bdaa6361d12fb75310e8d501d0ee9b0be597afc1b8470d48c9ec
Referenced In Project/Scope: beanprovider:compile
pkg:maven/com.github.hazendaz.cdi/beanprovider@1.0.0

Evidence

Type	Source	Name	Value	Confidence
Vendor	file	name	jakarta.enterprise.cdi-api	High
Vendor	jar	package name	enterprise	Highest
Vendor	jar	package name	jakarta	Highest
Vendor	Manifest	automatic-module-name	jakarta.cdi	Medium
Vendor	Manifest	build-jdk-spec	11	Low
Vendor	Manifest	bundle-docurl	https://jboss.org	Low
Vendor	Manifest	bundle-symbolicname	jakarta.enterprise.cdi-api	Medium
Vendor	pom	artifactid	jakarta.enterprise.cdi-api	Highest
Vendor	pom	artifactid	jakarta.enterprise.cdi-api	Low
Vendor	pom	developer email	asd[at]redhat[dot]com	Low
Vendor	pom	developer email	johndament[at]apache[dot]org	Low
Vendor	pom	developer email	manovotn[at]redhat[dot]com	Low
Vendor	pom	developer email	mkouba[at]redhat[dot]com	Low
Vendor	pom	developer email	mpaluch[at]paluch[dot]biz	Low
Vendor	pom	developer email	struberg[at]yahoo[dot]de	Low
Vendor	pom	developer email	tremes[at]redhat[dot]com	Low
Vendor	pom	developer id	asabotdu	Medium
Vendor	pom	developer id	johndament	Medium
Vendor	pom	developer id	manovotn	Medium
Vendor	pom	developer id	mkouba	Medium
Vendor	pom	developer id	mp911de	Medium
Vendor	pom	developer id	mstruberg	Medium
Vendor	pom	developer id	tremes	Medium
Vendor	pom	developer name	Antoine Sabot-Durand	Medium
Vendor	pom	developer name	John D. Ament	Medium
Vendor	pom	developer name	Mark Paluch	Medium
Vendor	pom	developer name	Mark Struberg	Medium
Vendor	pom	developer name	Martin Kouba	Medium
Vendor	pom	developer name	Matej Novotny	Medium
Vendor	pom	developer name	Tomas Remes	Medium
Vendor	pom	developer org	Independent	Medium
Vendor	pom	developer org	Red Hat Inc.	Medium
Vendor	pom	groupid	jakarta.enterprise	Highest
Vendor	pom	name	CDI APIs	High
Vendor	pom	organization name	JBoss by Red Hat, Inc.	High
Vendor	pom	organization url	https://jboss.org	Medium
Vendor	pom	parent-artifactid	jakarta.enterprise.cdi-parent	Low
Vendor	pom	url	http://cdi-spec.org	Highest
Product	file	name	jakarta.enterprise.cdi-api	High
Product	jar	package name	enterprise	Highest
Product	jar	package name	jakarta	Highest
Product	Manifest	automatic-module-name	jakarta.cdi	Medium
Product	Manifest	build-jdk-spec	11	Low
Product	Manifest	bundle-docurl	https://jboss.org	Low
Product	Manifest	Bundle-Name	CDI APIs	Medium
Product	Manifest	bundle-symbolicname	jakarta.enterprise.cdi-api	Medium
Product	pom	artifactid	jakarta.enterprise.cdi-api	Highest
Product	pom	developer email	asd[at]redhat[dot]com	Low
Product	pom	developer email	johndament[at]apache[dot]org	Low
Product	pom	developer email	manovotn[at]redhat[dot]com	Low
Product	pom	developer email	mkouba[at]redhat[dot]com	Low
Product	pom	developer email	mpaluch[at]paluch[dot]biz	Low
Product	pom	developer email	struberg[at]yahoo[dot]de	Low
Product	pom	developer email	tremes[at]redhat[dot]com	Low
Product	pom	developer id	asabotdu	Low
Product	pom	developer id	johndament	Low
Product	pom	developer id	manovotn	Low
Product	pom	developer id	mkouba	Low
Product	pom	developer id	mp911de	Low
Product	pom	developer id	mstruberg	Low
Product	pom	developer id	tremes	Low
Product	pom	developer name	Antoine Sabot-Durand	Low
Product	pom	developer name	John D. Ament	Low
Product	pom	developer name	Mark Paluch	Low
Product	pom	developer name	Mark Struberg	Low
Product	pom	developer name	Martin Kouba	Low
Product	pom	developer name	Matej Novotny	Low
Product	pom	developer name	Tomas Remes	Low
Product	pom	developer org	Independent	Low
Product	pom	developer org	Red Hat Inc.	Low
Product	pom	groupid	jakarta.enterprise	Highest
Product	pom	name	CDI APIs	High
Product	pom	organization name	JBoss by Red Hat, Inc.	Low
Product	pom	organization url	https://jboss.org	Low
Product	pom	parent-artifactid	jakarta.enterprise.cdi-parent	Medium
Product	pom	url	http://cdi-spec.org	Medium
Version	file	version	4.0.0	High
Version	Manifest	Bundle-Version	4.0.0	High
Version	pom	version	4.0.0	Highest

Identifiers

pkg:maven/jakarta.enterprise/jakarta.enterprise.cdi-api@4.0.0 (Confidence:High)
cpe:2.3:a:redhat:enterprise_ipa:4.0.0:*:*:*:*:*:*:* (Confidence:Low)

jakarta.enterprise.lang-model-4.0.0.jar

Description:

Build Compatible (Reflection-Free) Java Language Model for CDI

License:

Apache License 2.0: https://repository.jboss.org/licenses/apache-2.0.txt

File Path: C:\Users\Jeremy\.m2\repository\jakarta\enterprise\jakarta.enterprise.lang-model\4.0.0\jakarta.enterprise.lang-model-4.0.0.jar
MD5: 10536a214570ef93b3f3fa7f55d3eadb
SHA1: b2c6034406e74bf969438ea96d0b43af85feacc9
SHA256:d81f6298fea3e9514c0ba414cab49b5934aaa2e8e6eb981752ab51e2b248e8e0
Referenced In Project/Scope: beanprovider:compile
pkg:maven/jakarta.enterprise/jakarta.enterprise.cdi-api@4.0.0

Evidence

Type	Source	Name	Value	Confidence
Vendor	file	name	jakarta.enterprise.lang-model	High
Vendor	jar	package name	enterprise	Highest
Vendor	jar	package name	jakarta	Highest
Vendor	jar	package name	lang	Highest
Vendor	jar	package name	model	Highest
Vendor	Manifest	build-jdk-spec	11	Low
Vendor	Manifest	bundle-docurl	https://www.eclipse.org	Low
Vendor	Manifest	bundle-symbolicname	jakarta.enterprise.lang-model	Medium
Vendor	pom	artifactid	jakarta.enterprise.lang-model	Highest
Vendor	pom	artifactid	jakarta.enterprise.lang-model	Low
Vendor	pom	groupid	jakarta.enterprise	Highest
Vendor	pom	name	CDI Language Model	High
Vendor	pom	parent-artifactid	jakarta.enterprise.cdi-parent	Low
Product	file	name	jakarta.enterprise.lang-model	High
Product	jar	package name	enterprise	Highest
Product	jar	package name	jakarta	Highest
Product	jar	package name	lang	Highest
Product	jar	package name	model	Highest
Product	Manifest	build-jdk-spec	11	Low
Product	Manifest	bundle-docurl	https://www.eclipse.org	Low
Product	Manifest	Bundle-Name	CDI Language Model	Medium
Product	Manifest	bundle-symbolicname	jakarta.enterprise.lang-model	Medium
Product	pom	artifactid	jakarta.enterprise.lang-model	Highest
Product	pom	groupid	jakarta.enterprise	Highest
Product	pom	name	CDI Language Model	High
Product	pom	parent-artifactid	jakarta.enterprise.cdi-parent	Medium
Version	file	version	4.0.0	High
Version	Manifest	Bundle-Version	4.0.0	High
Version	pom	version	4.0.0	Highest

Identifiers

pkg:maven/jakarta.enterprise/jakarta.enterprise.lang-model@4.0.0 (Confidence:High)

jakarta.inject-api-2.0.1.jar

Description:

Jakarta Dependency Injection

License:

The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt

File Path: C:\Users\Jeremy\.m2\repository\jakarta\inject\jakarta.inject-api\2.0.1\jakarta.inject-api-2.0.1.jar
MD5: 72003bf6efcc8455d414bbd7da86c11c
SHA1: 4c28afe1991a941d7702fe1362c365f0a8641d1e
SHA256:f7dc98062fccf14126abb751b64fab12c312566e8cbdc8483598bffcea93af7c
Referenced In Project/Scope: beanprovider:compile
pkg:maven/jakarta.enterprise/jakarta.enterprise.cdi-api@4.0.0

Evidence

Type	Source	Name	Value	Confidence
Vendor	file	name	jakarta.inject-api	High
Vendor	jar	package name	inject	Highest
Vendor	jar	package name	jakarta	Highest
Vendor	Manifest	build-jdk-spec	11	Low
Vendor	Manifest	bundle-docurl	https://www.eclipse.org	Low
Vendor	Manifest	bundle-symbolicname	jakarta.inject.jakarta.inject-api	Medium
Vendor	pom	artifactid	jakarta.inject-api	Highest
Vendor	pom	artifactid	jakarta.inject-api	Low
Vendor	pom	developer email	asd[at]redhat[dot]com	Low
Vendor	pom	developer email	manovotn[at]redhat[dot]com	Low
Vendor	pom	developer email	mkouba[at]redhat[dot]com	Low
Vendor	pom	developer email	tremes[at]redhat[dot]com	Low
Vendor	pom	developer id	asabotdu	Medium
Vendor	pom	developer id	manovotn	Medium
Vendor	pom	developer id	mkouba	Medium
Vendor	pom	developer id	tremes	Medium
Vendor	pom	developer name	Antoine Sabot-Durand	Medium
Vendor	pom	developer name	Martin Kouba	Medium
Vendor	pom	developer name	Matej Novotny	Medium
Vendor	pom	developer name	Tomas Remes	Medium
Vendor	pom	developer org	Red Hat Inc.	Medium
Vendor	pom	groupid	jakarta.inject	Highest
Vendor	pom	name	Jakarta Dependency Injection	High
Vendor	pom	parent-artifactid	project	Low
Vendor	pom	parent-groupid	org.eclipse.ee4j	Medium
Vendor	pom	url	eclipse-ee4j/injection-api	Highest
Product	file	name	jakarta.inject-api	High
Product	jar	package name	inject	Highest
Product	jar	package name	jakarta	Highest
Product	Manifest	build-jdk-spec	11	Low
Product	Manifest	bundle-docurl	https://www.eclipse.org	Low
Product	Manifest	Bundle-Name	Jakarta Dependency Injection	Medium
Product	Manifest	bundle-symbolicname	jakarta.inject.jakarta.inject-api	Medium
Product	pom	artifactid	jakarta.inject-api	Highest
Product	pom	developer email	asd[at]redhat[dot]com	Low
Product	pom	developer email	manovotn[at]redhat[dot]com	Low
Product	pom	developer email	mkouba[at]redhat[dot]com	Low
Product	pom	developer email	tremes[at]redhat[dot]com	Low
Product	pom	developer id	asabotdu	Low
Product	pom	developer id	manovotn	Low
Product	pom	developer id	mkouba	Low
Product	pom	developer id	tremes	Low
Product	pom	developer name	Antoine Sabot-Durand	Low
Product	pom	developer name	Martin Kouba	Low
Product	pom	developer name	Matej Novotny	Low
Product	pom	developer name	Tomas Remes	Low
Product	pom	developer org	Red Hat Inc.	Low
Product	pom	groupid	jakarta.inject	Highest
Product	pom	name	Jakarta Dependency Injection	High
Product	pom	parent-artifactid	project	Medium
Product	pom	parent-groupid	org.eclipse.ee4j	Medium
Product	pom	url	eclipse-ee4j/injection-api	High
Version	file	version	2.0.1	High
Version	Manifest	Bundle-Version	2.0.1	High
Version	pom	parent-version	2.0.1	Low
Version	pom	version	2.0.1	Highest

Identifiers

pkg:maven/jakarta.inject/jakarta.inject-api@2.0.1 (Confidence:High)

jakarta.interceptor-api-2.1.0.jar

Description:

        Jakarta Interceptors defines a means of interposing on business method invocations
        and specific events—such as lifecycle events and timeout events—that occur on instances
        of Jakarta EE components and other managed classes.

License:

EPL 2.0: http://www.eclipse.org/legal/epl-2.0
GPL2 w/ CPE: https://www.gnu.org/software/classpath/license.html

File Path: C:\Users\Jeremy\.m2\repository\jakarta\interceptor\jakarta.interceptor-api\2.1.0\jakarta.interceptor-api-2.1.0.jar
MD5: c68f893a96a6ddbcd08c09d508ae0040
SHA1: 1d06a662708601400af4556577ee514c4ad01549
SHA256:ef787d3f713fc6ff4f02cd4b0dbed08f93d8af3400c90cbb43fb4b5c0583710b
Referenced In Project/Scope: beanprovider:compile
pkg:maven/jakarta.enterprise/jakarta.enterprise.cdi-api@4.0.0

Evidence

Type	Source	Name	Value	Confidence
Vendor	file	name	jakarta.interceptor-api	High
Vendor	jar	package name	interceptor	Highest
Vendor	jar	package name	interceptors	Highest
Vendor	jar	package name	jakarta	Highest
Vendor	Manifest	build-jdk-spec	11	Low
Vendor	Manifest	bundle-docurl	https://www.eclipse.org	Low
Vendor	Manifest	bundle-symbolicname	jakarta.interceptor-api	Medium
Vendor	Manifest	extension-name	jakarta.interceptor	Medium
Vendor	Manifest	Implementation-Vendor	Eclipse Foundation	High
Vendor	Manifest	Implementation-Vendor-Id	org.glassfish	Medium
Vendor	Manifest	specification-vendor	Oracle Corporation	Low
Vendor	pom	artifactid	jakarta.interceptor-api	Highest
Vendor	pom	artifactid	jakarta.interceptor-api	Low
Vendor	pom	developer id	yaminikb	Medium
Vendor	pom	developer name	Yamini K B	Medium
Vendor	pom	developer org	Oracle Corporation	Medium
Vendor	pom	developer org URL	http://www.oracle.com/	Medium
Vendor	pom	groupid	jakarta.interceptor	Highest
Vendor	pom	name	Jakarta Interceptors	High
Vendor	pom	parent-artifactid	project	Low
Vendor	pom	parent-groupid	org.eclipse.ee4j	Medium
Vendor	pom	url	eclipse-ee4j/interceptor-api	Highest
Product	file	name	jakarta.interceptor-api	High
Product	jar	package name	interceptor	Highest
Product	jar	package name	interceptors	Highest
Product	jar	package name	jakarta	Highest
Product	Manifest	build-jdk-spec	11	Low
Product	Manifest	bundle-docurl	https://www.eclipse.org	Low
Product	Manifest	Bundle-Name	Jakarta Interceptors	Medium
Product	Manifest	bundle-symbolicname	jakarta.interceptor-api	Medium
Product	Manifest	extension-name	jakarta.interceptor	Medium
Product	pom	artifactid	jakarta.interceptor-api	Highest
Product	pom	developer id	yaminikb	Low
Product	pom	developer name	Yamini K B	Low
Product	pom	developer org	Oracle Corporation	Low
Product	pom	developer org URL	http://www.oracle.com/	Low
Product	pom	groupid	jakarta.interceptor	Highest
Product	pom	name	Jakarta Interceptors	High
Product	pom	parent-artifactid	project	Medium
Product	pom	parent-groupid	org.eclipse.ee4j	Medium
Product	pom	url	eclipse-ee4j/interceptor-api	High
Version	file	version	2.1.0	High
Version	Manifest	Bundle-Version	2.1.0	High
Version	Manifest	Implementation-Version	2.1.0	High
Version	pom	parent-version	2.1.0	Low
Version	pom	version	2.1.0	Highest

Identifiers

pkg:maven/jakarta.interceptor/jakarta.interceptor-api@2.1.0 (Confidence:High)

jsr305-3.0.2.jar

Description:

JSR305 Annotations for Findbugs

License:

The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt

File Path: C:\Users\Jeremy\.m2\repository\com\google\code\findbugs\jsr305\3.0.2\jsr305-3.0.2.jar
MD5: dd83accb899363c32b07d7a1b2e4ce40
SHA1: 25ea2e8b0c338a877313bd4672d3fe056ea78f0d
SHA256:766ad2a0783f2687962c8ad74ceecc38a28b9f72a2d085ee438b7813e928d0c7
Referenced In Project/Scope: beanprovider:provided
pkg:maven/com.github.spotbugs/spotbugs-annotations@4.9.8

Evidence

Type	Source	Name	Value	Confidence
Vendor	file	name	jsr305	High
Vendor	Manifest	bundle-symbolicname	org.jsr-305	Medium
Vendor	pom	artifactid	jsr305	Highest
Vendor	pom	artifactid	jsr305	Low
Vendor	pom	groupid	com.google.code.findbugs	Highest
Vendor	pom	name	FindBugs-jsr305	High
Vendor	pom	url	http://findbugs.sourceforge.net/	Highest
Product	file	name	jsr305	High
Product	Manifest	Bundle-Name	FindBugs-jsr305	Medium
Product	Manifest	bundle-symbolicname	org.jsr-305	Medium
Product	pom	artifactid	jsr305	Highest
Product	pom	groupid	com.google.code.findbugs	Highest
Product	pom	name	FindBugs-jsr305	High
Product	pom	url	http://findbugs.sourceforge.net/	Medium
Version	file	version	3.0.2	High
Version	Manifest	Bundle-Version	3.0.2	High
Version	pom	version	3.0.2	Highest

Identifiers

pkg:maven/com.google.code.findbugs/jsr305@3.0.2 (Confidence:High)

lombok-1.18.42.jar: mavenEcjBootstrapAgent.jar

File Path: C:\Users\Jeremy\.m2\repository\org\projectlombok\lombok\1.18.42\lombok-1.18.42.jar\lombok\launch\mavenEcjBootstrapAgent.jar
MD5: 885d5d6be90a5dcd4b82cdf741e3f31a
SHA1: e1f7f1779f40157fd0b984c1bc32a0cb45cae66e
SHA256:74a80a6ee84e5c6fe497dfcc46a46dbe30578525e747eb531e918ee0750c8da9
Referenced In Project/Scope: beanprovider:provided

Evidence

Type	Source	Name	Value	Confidence
Vendor	file	name	mavenEcjBootstrapAgent	High
Vendor	jar	package name	launch	Low
Vendor	jar	package name	lombok	Low
Vendor	Manifest	can-redefine-classes	true	Low
Product	file	name	mavenEcjBootstrapAgent	High
Product	jar	package name	launch	Low
Product	Manifest	can-redefine-classes	true	Low

Identifiers

None

lombok-1.18.42.jar

Description:

Spice up your java: Automatic Resource Management, automatic generation of getters, setters, equals, hashCode and toString, and more!

License:

The MIT License: https://projectlombok.org/LICENSE

File Path: C:\Users\Jeremy\.m2\repository\org\projectlombok\lombok\1.18.42\lombok-1.18.42.jar
MD5: f29149836e0187fb9fd95d82dc718d36
SHA1: 8365263844ebb62398e0dc33057ba10ba472d3b8
SHA256:3488a4e9994c26596baaceebee58cad36a50e3bdaec5be72b5834d3c3b560306
Referenced In Project/Scope: beanprovider:provided
pkg:maven/com.github.hazendaz.cdi/beanprovider@1.0.0

Evidence

Type	Source	Name	Value	Confidence
Vendor	file	name	lombok	High
Vendor	jar	package name	java	Highest
Vendor	jar	package name	lombok	Highest
Vendor	jar	package name	tostring	Highest
Vendor	Manifest	automatic-module-name	lombok	Medium
Vendor	Manifest	can-redefine-classes	true	Low
Vendor	pom	artifactid	lombok	Highest
Vendor	pom	artifactid	lombok	Low
Vendor	pom	developer email	reinier@projectlombok.org	Low
Vendor	pom	developer email	roel@projectlombok.org	Low
Vendor	pom	developer id	rspilker	Medium
Vendor	pom	developer id	rzwitserloot	Medium
Vendor	pom	developer name	Reinier Zwitserloot	Medium
Vendor	pom	developer name	Roel Spilker	Medium
Vendor	pom	groupid	org.projectlombok	Highest
Vendor	pom	name	Project Lombok	High
Vendor	pom	url	https://projectlombok.org	Highest
Product	file	name	lombok	High
Product	jar	package name	java	Highest
Product	jar	package name	lombok	Highest
Product	jar	package name	tostring	Highest
Product	Manifest	automatic-module-name	lombok	Medium
Product	Manifest	can-redefine-classes	true	Low
Product	pom	artifactid	lombok	Highest
Product	pom	developer email	reinier@projectlombok.org	Low
Product	pom	developer email	roel@projectlombok.org	Low
Product	pom	developer id	rspilker	Low
Product	pom	developer id	rzwitserloot	Low
Product	pom	developer name	Reinier Zwitserloot	Low
Product	pom	developer name	Roel Spilker	Low
Product	pom	groupid	org.projectlombok	Highest
Product	pom	name	Project Lombok	High
Product	pom	url	https://projectlombok.org	Medium
Version	file	version	1.18.42	High
Version	Manifest	lombok-version	1.18.42	Medium
Version	pom	version	1.18.42	Highest

Identifiers

pkg:maven/org.projectlombok/lombok@1.18.42 (Confidence:High)

modernizer-maven-annotations-3.2.0.jar

File Path: C:\Users\Jeremy\.m2\repository\org\gaul\modernizer-maven-annotations\3.2.0\modernizer-maven-annotations-3.2.0.jar
MD5: 127396b14eb51fd93eb587308f079768
SHA1: 23a99089ff682152e86ab1691a8232db325def09
SHA256:9f9396f361f0d45d435355c1f2b57980307abd81f3131083ec18f54fbbaa5ecb
Referenced In Project/Scope: beanprovider:provided
modernizer-maven-annotations-3.2.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/com.github.hazendaz.cdi/beanprovider@1.0.0

Evidence

Type	Source	Name	Value	Confidence
Vendor	file	name	modernizer-maven-annotations	High
Vendor	jar	package name	gaul	Highest
Vendor	Manifest	build-jdk-spec	21	Low
Vendor	Manifest	multi-release	true	Low
Vendor	pom	artifactid	modernizer-maven-annotations	Highest
Vendor	pom	artifactid	modernizer-maven-annotations	Low
Vendor	pom	groupid	org.gaul	Highest
Vendor	pom	name	Modernizer Maven Plugin annotations	High
Vendor	pom	parent-artifactid	modernizer-maven-parent	Low
Product	file	name	modernizer-maven-annotations	High
Product	jar	package name	gaul	Highest
Product	Manifest	build-jdk-spec	21	Low
Product	Manifest	multi-release	true	Low
Product	pom	artifactid	modernizer-maven-annotations	Highest
Product	pom	groupid	org.gaul	Highest
Product	pom	name	Modernizer Maven Plugin annotations	High
Product	pom	parent-artifactid	modernizer-maven-parent	Medium
Version	file	version	3.2.0	High
Version	pom	version	3.2.0	Highest

Identifiers

pkg:maven/org.gaul/modernizer-maven-annotations@3.2.0 (Confidence:High)

spotbugs-annotations-4.9.8.jar

Description:

Annotations the SpotBugs tool supports

License:

GNU LESSER GENERAL PUBLIC LICENSE, Version 2.1: https://www.gnu.org/licenses/old-licenses/lgpl-2.1.en.html

File Path: C:\Users\Jeremy\.m2\repository\com\github\spotbugs\spotbugs-annotations\4.9.8\spotbugs-annotations-4.9.8.jar
MD5: d4c2e7bd090be697ad409a4e75684a94
SHA1: ca4a2783a6123e67124fd7feb4caccd2e2ac9a73
SHA256:6f69d6fe9c55a54dcb30e87d8fa2d5f52246af50d7a3445246d9539ef221be1c
Referenced In Project/Scope: beanprovider:provided
pkg:maven/com.github.hazendaz.cdi/beanprovider@1.0.0

Evidence

Type	Source	Name	Value	Confidence
Vendor	file	name	spotbugs-annotations	High
Vendor	Manifest	automatic-module-name	com.github.spotbugs.annotations	Medium
Vendor	Manifest	bundle-requiredexecutionenvironment	JavaSE-1.8	Low
Vendor	Manifest	bundle-symbolicname	spotbugs-annotations	Medium
Vendor	pom	artifactid	spotbugs-annotations	Highest
Vendor	pom	artifactid	spotbugs-annotations	Low
Vendor	pom	developer email	andreas.sewe@codetrails.com	Low
Vendor	pom	developer email	dbrosius@mebigfatguy.com	Low
Vendor	pom	developer email	loskutov@gmx.de	Low
Vendor	pom	developer email	skypencil@gmail.com	Low
Vendor	pom	developer id	henrik242	Medium
Vendor	pom	developer id	iloveeclipse	Medium
Vendor	pom	developer id	jsotuyod	Medium
Vendor	pom	developer id	KengoTODA	Medium
Vendor	pom	developer id	mebigfatguy	Medium
Vendor	pom	developer id	sewe	Medium
Vendor	pom	developer id	ThrawnCA	Medium
Vendor	pom	developer name	Andreas Sewe	Medium
Vendor	pom	developer name	Andrey Loskutov	Medium
Vendor	pom	developer name	Dave Brosius	Medium
Vendor	pom	developer name	Juan Martín Sotuyo Dodero	Medium
Vendor	pom	developer name	Kengo TODA	Medium
Vendor	pom	groupid	com.github.spotbugs	Highest
Vendor	pom	name	SpotBugs Annotations	High
Vendor	pom	url	https://spotbugs.github.io/	Highest
Product	file	name	spotbugs-annotations	High
Product	Manifest	automatic-module-name	com.github.spotbugs.annotations	Medium
Product	Manifest	Bundle-Name	spotbugs-annotations	Medium
Product	Manifest	bundle-requiredexecutionenvironment	JavaSE-1.8	Low
Product	Manifest	bundle-symbolicname	spotbugs-annotations	Medium
Product	pom	artifactid	spotbugs-annotations	Highest
Product	pom	developer email	andreas.sewe@codetrails.com	Low
Product	pom	developer email	dbrosius@mebigfatguy.com	Low
Product	pom	developer email	loskutov@gmx.de	Low
Product	pom	developer email	skypencil@gmail.com	Low
Product	pom	developer id	henrik242	Low
Product	pom	developer id	iloveeclipse	Low
Product	pom	developer id	jsotuyod	Low
Product	pom	developer id	KengoTODA	Low
Product	pom	developer id	mebigfatguy	Low
Product	pom	developer id	sewe	Low
Product	pom	developer id	ThrawnCA	Low
Product	pom	developer name	Andreas Sewe	Low
Product	pom	developer name	Andrey Loskutov	Low
Product	pom	developer name	Dave Brosius	Low
Product	pom	developer name	Juan Martín Sotuyo Dodero	Low
Product	pom	developer name	Kengo TODA	Low
Product	pom	groupid	com.github.spotbugs	Highest
Product	pom	name	SpotBugs Annotations	High
Product	pom	url	https://spotbugs.github.io/	Medium
Version	file	version	4.9.8	High
Version	Manifest	Bundle-Version	4.9.8	High
Version	pom	version	4.9.8	Highest

Identifiers

pkg:maven/com.github.spotbugs/spotbugs-annotations@4.9.8 (Confidence:High)

How to read the report | Suppressing false positives | Getting Help: github issues

Project: beanprovider

com.github.hazendaz.cdi:beanprovider:1.0.0

Summary

Dependencies (vulnerable)

checker-qual-3.53.0.jar

Evidence

Identifiers

deltaspike-core-api-2.0.1.jar

Evidence

Related Dependencies

Identifiers

error_prone_annotations-2.46.0.jar

Evidence

Identifiers

j2objc-annotations-3.1.jar

Evidence

Identifiers

jakarta.annotation-api-2.1.0.jar

Evidence

Identifiers

jakarta.el-api-5.0.0.jar

Evidence

Identifiers

jakarta.enterprise.cdi-api-4.0.0.jar

Evidence

Identifiers

jakarta.enterprise.lang-model-4.0.0.jar

Evidence

Identifiers

jakarta.inject-api-2.0.1.jar

Evidence

Identifiers

jakarta.interceptor-api-2.1.0.jar

Evidence

Identifiers

jsr305-3.0.2.jar

Evidence

Identifiers

lombok-1.18.42.jar: mavenEcjBootstrapAgent.jar

Evidence

Identifiers

lombok-1.18.42.jar

Evidence

Identifiers

modernizer-maven-annotations-3.2.0.jar

Evidence

Identifiers

spotbugs-annotations-4.9.8.jar

Evidence

Identifiers