Press CTR-C to copy XML [help]


Dependency-Check is an open source tool performing a best effort analysis of 3rd party dependencies; false positives and false negatives may exist in the analysis performed by the tool. Use of the tool and the reporting provided constitutes acceptance for use in an AS IS condition, and there are NO warranties, implied or otherwise, with regard to the analysis or its use. Any use of the tool and the reporting provided is at the user’s risk. In no event shall the copyright holder or OWASP be held liable for any damages whatsoever arising out of or in connection with the use of this tool, the analysis performed, or the resulting report.

How to read the report | Suppressing false positives | Getting Help: github issues

 Sponsor

Project: Roman to Arabic

epam:epam-ai-roman:1.0-SNAPSHOT

Scan Information (show all):

Summary

Display: Showing Vulnerable Dependencies (click to show all)

DependencyVulnerability IDsPackageHighest SeverityCVE CountConfidenceEvidence Count
apiguardian-api-1.1.2.jarpkg:maven/org.apiguardian/apiguardian-api@1.1.2 040
hamcrest-2.2.jarpkg:maven/org.hamcrest/hamcrest@2.2 040
junit-platform-engine-1.10.1.jarcpe:2.3:a:fan_platform_project:fan_platform:1.10.1:*:*:*:*:*:*:*pkg:maven/org.junit.platform/junit-platform-engine@1.10.1 0Low76
opentest4j-1.3.0.jarpkg:maven/org.opentest4j/opentest4j@1.3.0 060
spock-core-2.3-groovy-4.0.jarpkg:maven/org.spockframework/spock-core@2.3-groovy-4.0 047

Dependencies (vulnerable)

apiguardian-api-1.1.2.jar

Description:

@API Guardian

License:

The Apache License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /Users/jegors/.m2/repository/org/apiguardian/apiguardian-api/1.1.2/apiguardian-api-1.1.2.jar
MD5: 8c7de3f82037fa4a2e8be2a2f13092af
SHA1: a231e0d844d2721b0fa1b238006d15c6ded6842a
SHA256:b509448ac506d607319f182537f0b35d71007582ec741832a1f111e5b5b70b38
Referenced In Project/Scope: Roman to Arabic:compile
apiguardian-api-1.1.2.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.junit.jupiter/junit-jupiter-api@5.10.1

Identifiers

hamcrest-2.2.jar

Description:

Core API and libraries of hamcrest matcher framework.

License:

BSD License 3: http://opensource.org/licenses/BSD-3-Clause
File Path: /Users/jegors/.m2/repository/org/hamcrest/hamcrest/2.2/hamcrest-2.2.jar
MD5: 10b47e837f271d0662f28780e60388e8
SHA1: 1820c0968dba3a11a1b30669bb1f01978a91dedc
SHA256:5e62846a89f05cd78cd9c1a553f340d002458380c320455dd1f8fc5497a8a1c1
Referenced In Project/Scope: Roman to Arabic:compile
hamcrest-2.2.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.spockframework/spock-core@2.3-groovy-4.0

Identifiers

junit-platform-engine-1.10.1.jar

Description:

Module "junit-platform-engine" of JUnit 5.

License:

Eclipse Public License v2.0: https://www.eclipse.org/legal/epl-v20.html
File Path: /Users/jegors/.m2/repository/org/junit/platform/junit-platform-engine/1.10.1/junit-platform-engine-1.10.1.jar
MD5: 4d571057589cd109f3f4bedf7bbf5e7a
SHA1: f32ae4af74fde68414b8a3d2b7cf1fb43824a83a
SHA256:baa48e470d6dee7369a0a8820c51da89c1463279eda6e13a304d11f45922c760
Referenced In Project/Scope: Roman to Arabic:compile
junit-platform-engine-1.10.1.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.spockframework/spock-core@2.3-groovy-4.0

Identifiers

opentest4j-1.3.0.jar

Description:

Open Test Alliance for the JVM

License:

The Apache License, Version 2.0: https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /Users/jegors/.m2/repository/org/opentest4j/opentest4j/1.3.0/opentest4j-1.3.0.jar
MD5: 03c404f727531f3fd3b4c73997899327
SHA1: 152ea56b3a72f655d4fd677fc0ef2596c3dd5e6e
SHA256:48e2df636cab6563ced64dcdff8abb2355627cb236ef0bf37598682ddf742f1b
Referenced In Project/Scope: Roman to Arabic:compile
opentest4j-1.3.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/org.junit.jupiter/junit-jupiter-api@5.10.1

Identifiers

spock-core-2.3-groovy-4.0.jar

Description:

Spock is a testing and specification framework for Java and Groovy applications.
What makes it stand out from the crowd is its beautiful and highly expressive specification language.
Thanks to its JUnit runner, Spock is compatible with most IDEs, build tools, and continuous integration servers.
Spock is inspired from JUnit, jMock, RSpec, Groovy, Scala, Vulcans, and other fascinating life forms.

License:

The Apache Software License, Version 2.0: https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /Users/jegors/.m2/repository/org/spockframework/spock-core/2.3-groovy-4.0/spock-core-2.3-groovy-4.0.jar
MD5: 9398b3171132bedd81f523e9ea36eeb1
SHA1: 8861b2590bb8e4709b052fb4ed6da3de98e734d9
SHA256:60a614a7640c4fc9dfd432929a426bd0448f299915924556ae372105a118ff14
Referenced In Project/Scope: Roman to Arabic:compile
spock-core-2.3-groovy-4.0.jar is in the transitive dependency tree of the listed items.Included by: pkg:maven/epam/epam-ai-roman@1.0-SNAPSHOT

Identifiers



This report contains data retrieved from the National Vulnerability Database.
This report may contain data retrieved from the CISA Known Exploited Vulnerability Catalog.
This report may contain data retrieved from the Github Advisory Database (via NPM Audit API).
This report may contain data retrieved from RetireJS.
This report may contain data retrieved from the Sonatype OSS Index.