Critical
High
Medium
Low
Secrets
Misconfig
| Severity | CVE ID | Package | Installed | Fixed In | Description |
|---|---|---|---|---|---|
| MEDIUM | CVE-2025-67735 | io.netty:netty-codec-http | 4.1.126.Final | 4.2.8.Final, 4.1.129.Final | netty-codec-http: Netty (netty-codec-http): Request Smuggling via CRLF Injection |
| HIGH | CVE-2025-48989 | org.apache.tomcat.embed:tomcat-embed-core | 10.1.42 | 11.0.10, 10.1.44, 9.0.108 | tomcat: http/2 "MadeYouReset" DoS attack through HTTP/2 control frames |
| HIGH | CVE-2025-55752 | org.apache.tomcat.embed:tomcat-embed-core | 10.1.42 | 11.0.11, 10.1.45, 9.0.109 | tomcat: org.apache.tomcat/tomcat-catalina: Apache Tomcat: Directory traversal via rewrite with possi |
| MEDIUM | CVE-2025-66614 | org.apache.tomcat.embed:tomcat-embed-core | 10.1.42 | 11.0.14, 10.1.49, 9.0.112 | tomcat: Client certificate verification bypass due to virtual host mapping |
| HIGH | CVE-2025-41249 | org.springframework:spring-core | 6.2.8 | 6.2.11 | org.springframework/spring-core: Spring Framework Annotation Detection Vulnerability |
| MEDIUM | CVE-2025-41242 | org.springframework:spring-webmvc | 6.2.8 | 6.2.10 | org.springframework/spring-webmvc: Spring Framework MVC path traversal vulnerability |
| MEDIUM | CVE-2025-41254 | org.springframework:spring-websocket | 6.2.8 | 6.2.12 | org.springframework/spring-core: Spring Framework STOMP CSRF Vulnerability |
| Type | File | Line | Match |
|---|---|---|---|
| AWS | .env | 16 | # S3_ACCESS_ID=********************... |
| AWS | security-reports/gitleaks-report.json | 93 | "Match": "********************",... |
| AWS | security-reports/gitleaks-report.json | 94 | "Secret": "********************",... |
| AWS | security-reports/gitleaks-report.json | 198 | "Match": "********************",... |
| AWS | security-reports/gitleaks-report.json | 199 | "Secret": "********************",... |
| Severity | ID | Check | File | Message |
|---|---|---|---|---|
| HIGH | DS-0002 | Image user should not be 'root' | Dockerfile | Specify at least 1 USER command in Dockerfile with non-root user as argument |
{
"SchemaVersion": 2,
"Trivy": {
"Version": "0.69.0"
},
"ReportID": "019c7aa4-d7d0-74e5-807a-ad5cbc3099b8",
"CreatedAt": "2026-02-20T10:42:29.45632355Z",
"ArtifactID": "sha256:69c364d20a42654a2a6cd3c059f6921bb6ab476e7c73a8473aa5e1577f49ac10",
"ArtifactName": "/src",
"ArtifactType": "repository",
"Metadata": {
"RepoURL": "https://github.com/eizen-ai/ha-process-engine.git",
"Branch": "feature/dev-2",
"Commit": "aeb16ae512a1a1e601fa8e06108b7cedd0c43baf",
"CommitMsg": "Update pom.xml to include specific versions for Spring Framework, Tomcat, and Reactor Netty, addressing security vulnerabilities and ensuring compatibility.",
"Author": "eizen <eizen@eizens-MacBook-Pro-2.local>",
"Committer": "eizen <eizen@eizens-MacBook-Pro-2.local>"
},
"Results": [
{
"Target": "pom.xml",
"Class": "lang-pkgs",
"Type": "pom",
"Packages": [
{
"ID": "com.eizen:agent.workflow.engine:0.0.1-SNAPSHOT::3bd0ba40",
"Name": "com.eizen:agent.workflow.engine",
"Identifier": {
"PURL": "pkg:maven/com.eizen/agent.workflow.engine@0.0.1-SNAPSHOT",
"UID": "c9ec3d815ea90649"
},
"Version": "0.0.1-SNAPSHOT",
"Licenses": [
"Apache-2.0"
],
"Relationship": "root",
"DependsOn": [
"ch.qos.logback:logback-classic:1.5.25::9a88b3c1",
"ch.qos.logback:logback-core:1.5.25::8116359c",
"com.fasterxml.jackson.core:jackson-annotations:2.18.0::35397b1c",
"com.fasterxml.jackson.core:jackson-core:2.18.0::1358b2b6",
"com.fasterxml.jackson.core:jackson-databind:2.18.0::8d1de767",
"com.fasterxml.jackson.dataformat:jackson-dataformat-yaml:2.19.0::69d8c960",
"com.fasterxml.jackson.datatype:jackson-datatype-jdk8:2.18.4::bf2df8d3",
"com.fasterxml.jackson.datatype:jackson-datatype-jsr310:2.18.0::edac1c1f",
"com.fasterxml.jackson.module:jackson-module-kotlin:2.18.4::bbadf9b0",
"com.mysql:mysql-connector-j:9.0.0::8db54cc6",
"com.sun.mail:jakarta.mail:2.0.1::bdeac114",
"io.netty:netty-codec-http2:4.1.126.Final::1ae06a85",
"io.netty:netty-codec-http:4.1.126.Final::f89a729a",
"io.netty:netty-codec:4.1.126.Final::43ba0eb1",
"io.netty:netty-common:4.1.126.Final::7eb0b3b1",
"io.netty:netty-handler:4.1.126.Final::da0db403",
"io.projectreactor.netty:reactor-netty-http:1.2.8::f16a65be",
"org.apache.groovy:groovy:4.0.23::c2c30958",
"org.apache.tika:tika-core:3.2.3::725ee343",
"org.apache.tomcat.embed:tomcat-embed-core:10.1.42::94b9dfaf",
"org.codenarc:CodeNarc:3.5.0-groovy-4.0::5cb4bbde",
"org.flywaydb:flyway-core:10.17.1::c54a988b",
"org.flywaydb:flyway-mysql:10.20.1::960b9d93",
"org.jetbrains.kotlin:kotlin-reflect:1.9.24::71f6de91",
"org.jetbrains.kotlin:kotlin-stdlib:1.9.24::71cb25f7",
"org.json:json:20250107::ecdc7515",
"org.jsoup:jsoup:1.19.1::32211f80",
"org.keycloak:keycloak-admin-client:26.0.5::74945713",
"org.springdoc:springdoc-openapi-starter-webmvc-ui:2.2.0::77312fe7",
"org.springframework.boot:spring-boot-starter-cache:3.4.7::cd20a68b",
"org.springframework.boot:spring-boot-starter-data-jdbc:3.4.7::743c5fe4",
"org.springframework.boot:spring-boot-starter-data-jpa:3.4.7::7c06fa4a",
"org.springframework.boot:spring-boot-starter-data-redis:3.4.7::7b8e81d9",
"org.springframework.boot:spring-boot-starter-mail:3.4.7::86101834",
"org.springframework.boot:spring-boot-starter-web:3.4.7::d66e2ee5",
"org.springframework.boot:spring-boot-starter-webflux:3.4.7::a7ff2cb4",
"org.springframework.boot:spring-boot-starter-websocket:3.4.7::65b91ea7",
"org.springframework:spring-context:6.2.8::3e9114c1"
],
"AnalyzedBy": "pom"
},
{
"ID": "ch.qos.logback:logback-classic:1.5.25::9a88b3c1",
"Name": "ch.qos.logback:logback-classic",
"Identifier": {
"PURL": "pkg:maven/ch.qos.logback/logback-classic@1.5.25",
"UID": "919a0b777b836a12"
},
"Version": "1.5.25",
"Licenses": [
"EPL-1.0",
"LGPL-2.1-only"
],
"Relationship": "direct",
"DependsOn": [
"ch.qos.logback:logback-core:1.5.25::8116359c",
"org.slf4j:slf4j-api:2.0.17::b5c66eae"
],
"Locations": [
{
"StartLine": 112,
"EndLine": 116
}
],
"AnalyzedBy": "pom"
},
{
"ID": "ch.qos.logback:logback-core:1.5.25::8116359c",
"Name": "ch.qos.logback:logback-core",
"Identifier": {
"PURL": "pkg:maven/ch.qos.logback/logback-core@1.5.25",
"UID": "accf9ed09494be30"
},
"Version": "1.5.25",
"Licenses": [
"EPL-1.0",
"LGPL-2.1-only"
],
"Relationship": "direct",
"Locations": [
{
"StartLine": 117,
"EndLine": 121
}
],
"AnalyzedBy": "pom"
},
{
"ID": "com.fasterxml.jackson.core:jackson-annotations:2.18.0::35397b1c",
"Name": "com.fasterxml.jackson.core:jackson-annotations",
"Identifier": {
"PURL": "pkg:maven/com.fasterxml.jackson.core/jackson-annotations@2.18.0",
"UID": "980cdfa56b1ef49b"
},
"Version": "2.18.0",
"Licenses": [
"Apache-2.0"
],
"Relationship": "direct",
"Locations": [
{
"StartLine": 286,
"EndLine": 290
}
],
"AnalyzedBy": "pom"
},
{
"ID": "com.fasterxml.jackson.core:jackson-core:2.18.0::1358b2b6",
"Name": "com.fasterxml.jackson.core:jackson-core",
"Identifier": {
"PURL": "pkg:maven/com.fasterxml.jackson.core/jackson-core@2.18.0",
"UID": "8e54088d5b3fe37f"
},
"Version": "2.18.0",
"Licenses": [
"Apache-2.0"
],
"Relationship": "direct",
"Locations": [
{
"StartLine": 281,
"EndLine": 285
}
],
"AnalyzedBy": "pom"
},
{
"ID": "com.fasterxml.jackson.core:jackson-databind:2.18.0::8d1de767",
"Name": "com.fasterxml.jackson.core:jackson-databind",
"Identifier": {
"PURL": "pkg:maven/com.fasterxml.jackson.core/jackson-databind@2.18.0",
"UID": "83bbffe8a589be53"
},
"Version": "2.18.0",
"Licenses": [
"Apache-2.0"
],
"Relationship": "direct",
"DependsOn": [
"com.fasterxml.jackson.core:jackson-annotations:2.18.0::35397b1c",
"com.fasterxml.jackson.core:jackson-core:2.18.0::1358b2b6"
],
"Locations": [
{
"StartLine": 184,
"EndLine": 188
}
],
"AnalyzedBy": "pom"
},
{
"ID": "com.fasterxml.jackson.dataformat:jackson-dataformat-yaml:2.19.0::69d8c960",
"Name": "com.fasterxml.jackson.dataformat:jackson-dataformat-yaml",
"Identifier": {
"PURL": "pkg:maven/com.fasterxml.jackson.dataformat/jackson-dataformat-yaml@2.19.0",
"UID": "40c32ca63e3c434d"
},
"Version": "2.19.0",
"Licenses": [
"Apache-2.0"
],
"Relationship": "direct",
"DependsOn": [
"com.fasterxml.jackson.core:jackson-core:2.18.0::1358b2b6",
"com.fasterxml.jackson.core:jackson-databind:2.18.0::8d1de767",
"org.yaml:snakeyaml:2.3::31fe2f51"
],
"Locations": [
{
"StartLine": 291,
"EndLine": 295
}
],
"AnalyzedBy": "pom"
},
{
"ID": "com.fasterxml.jackson.datatype:jackson-datatype-jdk8:2.18.4::bf2df8d3",
"Name": "com.fasterxml.jackson.datatype:jackson-datatype-jdk8",
"Identifier": {
"PURL": "pkg:maven/com.fasterxml.jackson.datatype/jackson-datatype-jdk8@2.18.4",
"UID": "5efbe55a49c9978f"
},
"Version": "2.18.4",
"Licenses": [
"Apache-2.0"
],
"Relationship": "direct",
"DependsOn": [
"com.fasterxml.jackson.core:jackson-core:2.18.0::1358b2b6",
"com.fasterxml.jackson.core:jackson-databind:2.18.0::8d1de767"
],
"Locations": [
{
"StartLine": 257,
"EndLine": 260
}
],
"AnalyzedBy": "pom"
},
{
"ID": "com.fasterxml.jackson.datatype:jackson-datatype-jsr310:2.18.0::edac1c1f",
"Name": "com.fasterxml.jackson.datatype:jackson-datatype-jsr310",
"Identifier": {
"PURL": "pkg:maven/com.fasterxml.jackson.datatype/jackson-datatype-jsr310@2.18.0",
"UID": "72bfa5c6970713b8"
},
"Version": "2.18.0",
"Licenses": [
"Apache-2.0"
],
"Relationship": "direct",
"DependsOn": [
"com.fasterxml.jackson.core:jackson-annotations:2.18.0::35397b1c",
"com.fasterxml.jackson.core:jackson-core:2.18.0::1358b2b6",
"com.fasterxml.jackson.core:jackson-databind:2.18.0::8d1de767"
],
"Locations": [
{
"StartLine": 276,
"EndLine": 280
}
],
"AnalyzedBy": "pom"
},
{
"ID": "com.fasterxml.jackson.module:jackson-module-kotlin:2.18.4::bbadf9b0",
"Name": "com.fasterxml.jackson.module:jackson-module-kotlin",
"Identifier": {
"PURL": "pkg:maven/com.fasterxml.jackson.module/jackson-module-kotlin@2.18.4",
"UID": "28eab1fff3515d5f"
},
"Version": "2.18.4",
"Licenses": [
"Apache-2.0"
],
"Relationship": "direct",
"DependsOn": [
"com.fasterxml.jackson.core:jackson-annotations:2.18.0::35397b1c",
"com.fasterxml.jackson.core:jackson-databind:2.18.0::8d1de767",
"org.jetbrains.kotlin:kotlin-reflect:1.9.24::71f6de91"
],
"Locations": [
{
"StartLine": 180,
"EndLine": 183
}
],
"AnalyzedBy": "pom"
},
{
"ID": "com.mysql:mysql-connector-j:9.0.0::8db54cc6",
"Name": "com.mysql:mysql-connector-j",
"Identifier": {
"PURL": "pkg:maven/com.mysql/mysql-connector-j@9.0.0",
"UID": "13233d85826ae7fd"
},
"Version": "9.0.0",
"Licenses": [
"The GNU General Public License, v2 with Universal FOSS Exception, v1.0"
],
"Relationship": "direct",
"Locations": [
{
"StartLine": 213,
"EndLine": 217
}
],
"AnalyzedBy": "pom"
},
{
"ID": "com.sun.mail:jakarta.mail:2.0.1::bdeac114",
"Name": "com.sun.mail:jakarta.mail",
"Identifier": {
"PURL": "pkg:maven/com.sun.mail/jakarta.mail@2.0.1",
"UID": "756458be74ff66b5"
},
"Version": "2.0.1",
"Licenses": [
"EPL-2.0",
"GPL-2.0-with-classpath-exception",
"BSD-3-Clause"
],
"Relationship": "direct",
"DependsOn": [
"com.sun.activation:jakarta.activation:2.0.1::44773cf8"
],
"Locations": [
{
"StartLine": 189,
"EndLine": 193
}
],
"AnalyzedBy": "pom"
},
{
"ID": "io.netty:netty-codec:4.1.126.Final::43ba0eb1",
"Name": "io.netty:netty-codec",
"Identifier": {
"PURL": "pkg:maven/io.netty/netty-codec@4.1.126.Final",
"UID": "cc9588322eb4c39e"
},
"Version": "4.1.126.Final",
"Licenses": [
"Apache-2.0"
],
"Relationship": "direct",
"DependsOn": [
"io.netty:netty-buffer:4.1.126.Final::e2216222",
"io.netty:netty-common:4.1.126.Final::7eb0b3b1",
"io.netty:netty-transport:4.1.126.Final::ba3f05fb"
],
"Locations": [
{
"StartLine": 122,
"EndLine": 126
}
],
"AnalyzedBy": "pom"
},
{
"ID": "io.netty:netty-codec-http:4.1.126.Final::f89a729a",
"Name": "io.netty:netty-codec-http",
"Identifier": {
"PURL": "pkg:maven/io.netty/netty-codec-http@4.1.126.Final",
"UID": "62c650d5287cd9b1"
},
"Version": "4.1.126.Final",
"Licenses": [
"Apache-2.0"
],
"Relationship": "direct",
"DependsOn": [
"io.netty:netty-buffer:4.1.126.Final::e2216222",
"io.netty:netty-codec:4.1.126.Final::43ba0eb1",
"io.netty:netty-common:4.1.126.Final::7eb0b3b1",
"io.netty:netty-handler:4.1.126.Final::da0db403",
"io.netty:netty-transport:4.1.126.Final::ba3f05fb"
],
"Locations": [
{
"StartLine": 127,
"EndLine": 131
}
],
"AnalyzedBy": "pom"
},
{
"ID": "io.netty:netty-codec-http2:4.1.126.Final::1ae06a85",
"Name": "io.netty:netty-codec-http2",
"Identifier": {
"PURL": "pkg:maven/io.netty/netty-codec-http2@4.1.126.Final",
"UID": "c8141df7e535124a"
},
"Version": "4.1.126.Final",
"Licenses": [
"Apache-2.0"
],
"Relationship": "direct",
"DependsOn": [
"io.netty:netty-buffer:4.1.126.Final::e2216222",
"io.netty:netty-codec-http:4.1.126.Final::f89a729a",
"io.netty:netty-codec:4.1.126.Final::43ba0eb1",
"io.netty:netty-common:4.1.126.Final::7eb0b3b1",
"io.netty:netty-handler:4.1.126.Final::da0db403",
"io.netty:netty-transport:4.1.126.Final::ba3f05fb"
],
"Locations": [
{
"StartLine": 132,
"EndLine": 136
}
],
"AnalyzedBy": "pom"
},
{
"ID": "io.netty:netty-common:4.1.126.Final::7eb0b3b1",
"Name": "io.netty:netty-common",
"Identifier": {
"PURL": "pkg:maven/io.netty/netty-common@4.1.126.Final",
"UID": "688d3e590928a931"
},
"Version": "4.1.126.Final",
"Licenses": [
"Apache-2.0"
],
"Relationship": "direct",
"Locations": [
{
"StartLine": 137,
"EndLine": 141
}
],
"AnalyzedBy": "pom"
},
{
"ID": "io.netty:netty-handler:4.1.126.Final::da0db403",
"Name": "io.netty:netty-handler",
"Identifier": {
"PURL": "pkg:maven/io.netty/netty-handler@4.1.126.Final",
"UID": "ff8a6a32a1a43abe"
},
"Version": "4.1.126.Final",
"Licenses": [
"Apache-2.0"
],
"Relationship": "direct",
"DependsOn": [
"io.netty:netty-buffer:4.1.126.Final::e2216222",
"io.netty:netty-codec:4.1.126.Final::43ba0eb1",
"io.netty:netty-common:4.1.126.Final::7eb0b3b1",
"io.netty:netty-resolver:4.1.126.Final::97cdbfec",
"io.netty:netty-transport-native-unix-common:4.1.126.Final::e3e180ad",
"io.netty:netty-transport:4.1.126.Final::ba3f05fb"
],
"Locations": [
{
"StartLine": 142,
"EndLine": 146
}
],
"AnalyzedBy": "pom"
},
{
"ID": "io.projectreactor.netty:reactor-netty-http:1.2.8::f16a65be",
"Name": "io.projectreactor.netty:reactor-netty-http",
"Identifier": {
"PURL": "pkg:maven/io.projectreactor.netty/reactor-netty-http@1.2.8",
"UID": "7f46bda79f277dda"
},
"Version": "1.2.8",
"Licenses": [
"Apache-2.0"
],
"Relationship": "direct",
"DependsOn": [
"io.netty:netty-codec-http2:4.1.126.Final::1ae06a85",
"io.netty:netty-codec-http:4.1.126.Final::f89a729a",
"io.netty:netty-resolver-dns-native-macos:4.1.126.Final::f21a3f67",
"io.netty:netty-resolver-dns:4.1.126.Final::3b5c339d",
"io.netty:netty-transport-native-epoll:4.1.126.Final::f36a387e",
"io.projectreactor.netty:reactor-netty-core:1.2.7::4c5f8ad7",
"io.projectreactor:reactor-core:3.7.7::e96da611"
],
"Locations": [
{
"StartLine": 158,
"EndLine": 162
}
],
"AnalyzedBy": "pom"
},
{
"ID": "org.apache.groovy:groovy:4.0.23::c2c30958",
"Name": "org.apache.groovy:groovy",
"Identifier": {
"PURL": "pkg:maven/org.apache.groovy/groovy@4.0.23",
"UID": "97d83c9e53817045"
},
"Version": "4.0.23",
"Licenses": [
"Apache-2.0"
],
"Relationship": "direct",
"Locations": [
{
"StartLine": 266,
"EndLine": 270
}
],
"AnalyzedBy": "pom"
},
{
"ID": "org.apache.tika:tika-core:3.2.3::725ee343",
"Name": "org.apache.tika:tika-core",
"Identifier": {
"PURL": "pkg:maven/org.apache.tika/tika-core@3.2.3",
"UID": "eca6bcc8a8c384ef"
},
"Version": "3.2.3",
"Licenses": [
"Apache-2.0"
],
"Relationship": "direct",
"DependsOn": [
"commons-io:commons-io:2.20.0::7ecb520a",
"org.slf4j:slf4j-api:2.0.17::b5c66eae"
],
"Locations": [
{
"StartLine": 271,
"EndLine": 275
}
],
"AnalyzedBy": "pom"
},
{
"ID": "org.apache.tomcat.embed:tomcat-embed-core:10.1.42::94b9dfaf",
"Name": "org.apache.tomcat.embed:tomcat-embed-core",
"Identifier": {
"PURL": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.42",
"UID": "8e82c8166caae753"
},
"Version": "10.1.42",
"Licenses": [
"Apache-2.0"
],
"Relationship": "direct",
"DependsOn": [
"org.apache.tomcat:tomcat-annotations-api:10.1.42::de042d66"
],
"Locations": [
{
"StartLine": 153,
"EndLine": 157
}
],
"AnalyzedBy": "pom"
},
{
"ID": "org.codenarc:CodeNarc:3.5.0-groovy-4.0::5cb4bbde",
"Name": "org.codenarc:CodeNarc",
"Identifier": {
"PURL": "pkg:maven/org.codenarc/CodeNarc@3.5.0-groovy-4.0",
"UID": "3c0a1b87eb969993"
},
"Version": "3.5.0-groovy-4.0",
"Licenses": [
"Apache-2.0"
],
"Relationship": "direct",
"DependsOn": [
"org.apache.groovy:groovy-ant:4.0.27::11e47e72",
"org.apache.groovy:groovy-groovydoc:4.0.27::3701e16b",
"org.apache.groovy:groovy-json:4.0.27::1350c666",
"org.apache.groovy:groovy-templates:4.0.27::41b18871",
"org.apache.groovy:groovy-xml:4.0.27::8d43fc22",
"org.apache.groovy:groovy:4.0.23::c2c30958",
"org.gmetrics:GMetrics-Groovy4:2.1.0::bdf1c574",
"org.slf4j:slf4j-api:2.0.17::b5c66eae"
],
"Locations": [
{
"StartLine": 261,
"EndLine": 265
}
],
"AnalyzedBy": "pom"
},
{
"ID": "org.flywaydb:flyway-core:10.17.1::c54a988b",
"Name": "org.flywaydb:flyway-core",
"Identifier": {
"PURL": "pkg:maven/org.flywaydb/flyway-core@10.17.1",
"UID": "d0368484c1d20f65"
},
"Version": "10.17.1",
"Licenses": [
"Apache-2.0"
],
"Relationship": "direct",
"DependsOn": [
"com.fasterxml.jackson.dataformat:jackson-dataformat-toml:2.18.4::aedc1a00",
"com.fasterxml.jackson.datatype:jackson-datatype-jsr310:2.18.0::edac1c1f",
"com.google.code.gson:gson:2.11.0::54f7692f"
],
"Locations": [
{
"StartLine": 218,
"EndLine": 222
}
],
"AnalyzedBy": "pom"
},
{
"ID": "org.flywaydb:flyway-mysql:10.20.1::960b9d93",
"Name": "org.flywaydb:flyway-mysql",
"Identifier": {
"PURL": "pkg:maven/org.flywaydb/flyway-mysql@10.20.1",
"UID": "5f8a04959c041ea6"
},
"Version": "10.20.1",
"Licenses": [
"Apache-2.0"
],
"Relationship": "direct",
"DependsOn": [
"org.flywaydb:flyway-core:10.17.1::c54a988b"
],
"Locations": [
{
"StartLine": 223,
"EndLine": 226
}
],
"AnalyzedBy": "pom"
},
{
"ID": "org.jetbrains.kotlin:kotlin-reflect:1.9.24::71f6de91",
"Name": "org.jetbrains.kotlin:kotlin-reflect",
"Identifier": {
"PURL": "pkg:maven/org.jetbrains.kotlin/kotlin-reflect@1.9.24",
"UID": "9861a41ad6ebe0"
},
"Version": "1.9.24",
"Licenses": [
"Apache-2.0"
],
"Relationship": "direct",
"DependsOn": [
"org.jetbrains.kotlin:kotlin-stdlib:1.9.24::71cb25f7"
],
"Locations": [
{
"StartLine": 227,
"EndLine": 230
}
],
"AnalyzedBy": "pom"
},
{
"ID": "org.jetbrains.kotlin:kotlin-stdlib:1.9.24::71cb25f7",
"Name": "org.jetbrains.kotlin:kotlin-stdlib",
"Identifier": {
"PURL": "pkg:maven/org.jetbrains.kotlin/kotlin-stdlib@1.9.24",
"UID": "e49e7738393e521f"
},
"Version": "1.9.24",
"Licenses": [
"Apache-2.0"
],
"Relationship": "direct",
"DependsOn": [
"org.jetbrains:annotations:13.0::d26ab00c"
],
"Locations": [
{
"StartLine": 231,
"EndLine": 234
}
],
"AnalyzedBy": "pom"
},
{
"ID": "org.json:json:20250107::ecdc7515",
"Name": "org.json:json",
"Identifier": {
"PURL": "pkg:maven/org.json/json@20250107",
"UID": "4b8a2f13b0ed0a51"
},
"Version": "20250107",
"Licenses": [
"Public Domain"
],
"Relationship": "direct",
"Locations": [
{
"StartLine": 203,
"EndLine": 207
}
],
"AnalyzedBy": "pom"
},
{
"ID": "org.jsoup:jsoup:1.19.1::32211f80",
"Name": "org.jsoup:jsoup",
"Identifier": {
"PURL": "pkg:maven/org.jsoup/jsoup@1.19.1",
"UID": "69ccea8b8cb932ed"
},
"Version": "1.19.1",
"Licenses": [
"MIT"
],
"Relationship": "direct",
"Locations": [
{
"StartLine": 208,
"EndLine": 212
}
],
"AnalyzedBy": "pom"
},
{
"ID": "org.keycloak:keycloak-admin-client:26.0.5::74945713",
"Name": "org.keycloak:keycloak-admin-client",
"Identifier": {
"PURL": "pkg:maven/org.keycloak/keycloak-admin-client@26.0.5",
"UID": "99e9c2f76d8860f7"
},
"Version": "26.0.5",
"Licenses": [
"Apache-2.0"
],
"Relationship": "direct",
"DependsOn": [
"com.fasterxml.jackson.core:jackson-annotations:2.18.0::35397b1c",
"com.fasterxml.jackson.core:jackson-core:2.18.0::1358b2b6",
"com.fasterxml.jackson.datatype:jackson-datatype-jdk8:2.18.4::bf2df8d3",
"com.fasterxml.jackson.datatype:jackson-datatype-jsr310:2.18.0::edac1c1f",
"org.eclipse.microprofile.openapi:microprofile-openapi-api:3.1.1::278510f1",
"org.jboss.resteasy:resteasy-client:6.2.9.Final::899118ee",
"org.jboss.resteasy:resteasy-jackson2-provider:6.2.9.Final::1e319cd4",
"org.jboss.resteasy:resteasy-jaxb-provider:6.2.9.Final::b27abc61",
"org.jboss.resteasy:resteasy-multipart-provider:6.2.9.Final::57cbd15c",
"org.keycloak:keycloak-client-common-synced:26.0.5::f02ceae9"
],
"Locations": [
{
"StartLine": 198,
"EndLine": 202
}
],
"AnalyzedBy": "pom"
},
{
"ID": "org.springdoc:springdoc-openapi-starter-webmvc-ui:2.2.0::77312fe7",
"Name": "org.springdoc:springdoc-openapi-starter-webmvc-ui",
"Identifier": {
"PURL": "pkg:maven/org.springdoc/springdoc-openapi-starter-webmvc-ui@2.2.0",
"UID": "dc6a89eb493d843b"
},
"Version": "2.2.0",
"Licenses": [
"Apache-2.0"
],
"Relationship": "direct",
"DependsOn": [
"org.springdoc:springdoc-openapi-starter-webmvc-api:2.2.0::3d452163",
"org.webjars:swagger-ui:5.2.0::7ae134a6"
],
"Locations": [
{
"StartLine": 171,
"EndLine": 175
}
],
"AnalyzedBy": "pom"
},
{
"ID": "org.springframework.boot:spring-boot-starter-cache:3.4.7::cd20a68b",
"Name": "org.springframework.boot:spring-boot-starter-cache",
"Identifier": {
"PURL": "pkg:maven/org.springframework.boot/spring-boot-starter-cache@3.4.7",
"UID": "1fea043d6e4f1ad0"
},
"Version": "3.4.7",
"Licenses": [
"Apache-2.0"
],
"Relationship": "direct",
"DependsOn": [
"org.springframework.boot:spring-boot-starter:3.4.7::d78167c9",
"org.springframework:spring-context-support:6.2.8::e9226ab0"
],
"Locations": [
{
"StartLine": 253,
"EndLine": 256
}
],
"AnalyzedBy": "pom"
},
{
"ID": "org.springframework.boot:spring-boot-starter-data-jdbc:3.4.7::743c5fe4",
"Name": "org.springframework.boot:spring-boot-starter-data-jdbc",
"Identifier": {
"PURL": "pkg:maven/org.springframework.boot/spring-boot-starter-data-jdbc@3.4.7",
"UID": "8807630d7ab4e68f"
},
"Version": "3.4.7",
"Licenses": [
"Apache-2.0"
],
"Relationship": "direct",
"DependsOn": [
"org.springframework.boot:spring-boot-starter-jdbc:3.4.7::cb3cc684",
"org.springframework.data:spring-data-jdbc:3.4.7::92f77e90"
],
"Locations": [
{
"StartLine": 163,
"EndLine": 166
}
],
"AnalyzedBy": "pom"
},
{
"ID": "org.springframework.boot:spring-boot-starter-data-jpa:3.4.7::7c06fa4a",
"Name": "org.springframework.boot:spring-boot-starter-data-jpa",
"Identifier": {
"PURL": "pkg:maven/org.springframework.boot/spring-boot-starter-data-jpa@3.4.7",
"UID": "ec4629bee7747539"
},
"Version": "3.4.7",
"Licenses": [
"Apache-2.0"
],
"Relationship": "direct",
"DependsOn": [
"org.hibernate.orm:hibernate-core:6.6.18.Final::2c88494f",
"org.springframework.boot:spring-boot-starter-jdbc:3.4.7::cb3cc684",
"org.springframework.boot:spring-boot-starter:3.4.7::d78167c9",
"org.springframework.data:spring-data-jpa:3.4.7::8febd175",
"org.springframework:spring-aspects:6.2.8::6333c39e"
],
"Locations": [
{
"StartLine": 167,
"EndLine": 170
}
],
"AnalyzedBy": "pom"
},
{
"ID": "org.springframework.boot:spring-boot-starter-data-redis:3.4.7::7b8e81d9",
"Name": "org.springframework.boot:spring-boot-starter-data-redis",
"Identifier": {
"PURL": "pkg:maven/org.springframework.boot/spring-boot-starter-data-redis@3.4.7",
"UID": "e8461913f8afd53"
},
"Version": "3.4.7",
"Licenses": [
"Apache-2.0"
],
"Relationship": "direct",
"DependsOn": [
"io.lettuce:lettuce-core:6.4.2.RELEASE::36fe1716",
"org.springframework.boot:spring-boot-starter:3.4.7::d78167c9",
"org.springframework.data:spring-data-redis:3.4.7::8477445f"
],
"Locations": [
{
"StartLine": 296,
"EndLine": 299
}
],
"AnalyzedBy": "pom"
},
{
"ID": "org.springframework.boot:spring-boot-starter-mail:3.4.7::86101834",
"Name": "org.springframework.boot:spring-boot-starter-mail",
"Identifier": {
"PURL": "pkg:maven/org.springframework.boot/spring-boot-starter-mail@3.4.7",
"UID": "ce5cc94bdb9b284b"
},
"Version": "3.4.7",
"Licenses": [
"Apache-2.0"
],
"Relationship": "direct",
"DependsOn": [
"org.eclipse.angus:jakarta.mail:2.0.3::ec4e8eee",
"org.springframework.boot:spring-boot-starter:3.4.7::d78167c9",
"org.springframework:spring-context-support:6.2.8::e9226ab0"
],
"Locations": [
{
"StartLine": 194,
"EndLine": 197
}
],
"AnalyzedBy": "pom"
},
{
"ID": "org.springframework.boot:spring-boot-starter-web:3.4.7::d66e2ee5",
"Name": "org.springframework.boot:spring-boot-starter-web",
"Identifier": {
"PURL": "pkg:maven/org.springframework.boot/spring-boot-starter-web@3.4.7",
"UID": "31219d8f59b6cb27"
},
"Version": "3.4.7",
"Licenses": [
"Apache-2.0"
],
"Relationship": "direct",
"DependsOn": [
"org.springframework.boot:spring-boot-starter-json:3.4.7::bbf1ecb0",
"org.springframework.boot:spring-boot-starter-tomcat:3.4.7::b503ba03",
"org.springframework.boot:spring-boot-starter:3.4.7::d78167c9",
"org.springframework:spring-web:6.2.8::128e81f1",
"org.springframework:spring-webmvc:6.2.8::473b6ed6"
],
"Locations": [
{
"StartLine": 176,
"EndLine": 179
}
],
"AnalyzedBy": "pom"
},
{
"ID": "org.springframework.boot:spring-boot-starter-webflux:3.4.7::a7ff2cb4",
"Name": "org.springframework.boot:spring-boot-starter-webflux",
"Identifier": {
"PURL": "pkg:maven/org.springframework.boot/spring-boot-starter-webflux@3.4.7",
"UID": "bb2709b783f9708"
},
"Version": "3.4.7",
"Licenses": [
"Apache-2.0"
],
"Relationship": "direct",
"DependsOn": [
"org.springframework.boot:spring-boot-starter-json:3.4.7::bbf1ecb0",
"org.springframework.boot:spring-boot-starter-reactor-netty:3.4.7::bddb72b0",
"org.springframework.boot:spring-boot-starter:3.4.7::d78167c9",
"org.springframework:spring-web:6.2.8::128e81f1",
"org.springframework:spring-webflux:6.2.8::a70f6124"
],
"Locations": [
{
"StartLine": 245,
"EndLine": 248
}
],
"AnalyzedBy": "pom"
},
{
"ID": "org.springframework.boot:spring-boot-starter-websocket:3.4.7::65b91ea7",
"Name": "org.springframework.boot:spring-boot-starter-websocket",
"Identifier": {
"PURL": "pkg:maven/org.springframework.boot/spring-boot-starter-websocket@3.4.7",
"UID": "3a62e7d6ca48d55a"
},
"Version": "3.4.7",
"Licenses": [
"Apache-2.0"
],
"Relationship": "direct",
"DependsOn": [
"org.springframework.boot:spring-boot-starter-web:3.4.7::d66e2ee5",
"org.springframework:spring-messaging:6.2.8::d4e229a6",
"org.springframework:spring-websocket:6.2.8::9b82ccd7"
],
"Locations": [
{
"StartLine": 249,
"EndLine": 252
}
],
"AnalyzedBy": "pom"
},
{
"ID": "org.springframework:spring-context:6.2.8::3e9114c1",
"Name": "org.springframework:spring-context",
"Identifier": {
"PURL": "pkg:maven/org.springframework/spring-context@6.2.8",
"UID": "8acec8561bbeec9e"
},
"Version": "6.2.8",
"Licenses": [
"Apache-2.0"
],
"Relationship": "direct",
"DependsOn": [
"io.micrometer:micrometer-observation:1.14.8::404e2f37",
"org.springframework:spring-aop:6.2.8::921b84aa",
"org.springframework:spring-beans:6.2.8::4f0cc2be",
"org.springframework:spring-core:6.2.8::c84009b1",
"org.springframework:spring-expression:6.2.8::37dbd8aa"
],
"Locations": [
{
"StartLine": 148,
"EndLine": 152
}
],
"AnalyzedBy": "pom"
},
{
"ID": "com.fasterxml.jackson.dataformat:jackson-dataformat-toml:2.18.4::aedc1a00",
"Name": "com.fasterxml.jackson.dataformat:jackson-dataformat-toml",
"Identifier": {
"PURL": "pkg:maven/com.fasterxml.jackson.dataformat/jackson-dataformat-toml@2.18.4",
"UID": "75aa35c8e7f81a08"
},
"Version": "2.18.4",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"DependsOn": [
"com.fasterxml.jackson.core:jackson-core:2.18.0::1358b2b6",
"com.fasterxml.jackson.core:jackson-databind:2.18.0::8d1de767"
],
"AnalyzedBy": "pom"
},
{
"ID": "com.fasterxml.jackson.jakarta.rs:jackson-jakarta-rs-base:2.18.4::ac9bcbd7",
"Name": "com.fasterxml.jackson.jakarta.rs:jackson-jakarta-rs-base",
"Identifier": {
"PURL": "pkg:maven/com.fasterxml.jackson.jakarta.rs/jackson-jakarta-rs-base@2.18.4",
"UID": "5891ccc300d6eb1"
},
"Version": "2.18.4",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"DependsOn": [
"com.fasterxml.jackson.core:jackson-core:2.18.0::1358b2b6",
"com.fasterxml.jackson.core:jackson-databind:2.18.0::8d1de767"
],
"AnalyzedBy": "pom"
},
{
"ID": "com.fasterxml.jackson.jakarta.rs:jackson-jakarta-rs-json-provider:2.18.4::199fb9ff",
"Name": "com.fasterxml.jackson.jakarta.rs:jackson-jakarta-rs-json-provider",
"Identifier": {
"PURL": "pkg:maven/com.fasterxml.jackson.jakarta.rs/jackson-jakarta-rs-json-provider@2.18.4",
"UID": "7d1dce6e91622677"
},
"Version": "2.18.4",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"DependsOn": [
"com.fasterxml.jackson.jakarta.rs:jackson-jakarta-rs-base:2.18.4::ac9bcbd7",
"com.fasterxml.jackson.module:jackson-module-jakarta-xmlbind-annotations:2.18.4::a17bdb74"
],
"AnalyzedBy": "pom"
},
{
"ID": "com.fasterxml.jackson.module:jackson-module-jakarta-xmlbind-annotations:2.18.4::a17bdb74",
"Name": "com.fasterxml.jackson.module:jackson-module-jakarta-xmlbind-annotations",
"Identifier": {
"PURL": "pkg:maven/com.fasterxml.jackson.module/jackson-module-jakarta-xmlbind-annotations@2.18.4",
"UID": "9941b47680baceef"
},
"Version": "2.18.4",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"DependsOn": [
"com.fasterxml.jackson.core:jackson-annotations:2.18.0::35397b1c",
"com.fasterxml.jackson.core:jackson-core:2.18.0::1358b2b6",
"com.fasterxml.jackson.core:jackson-databind:2.18.0::8d1de767",
"jakarta.activation:jakarta.activation-api:2.1.3::d620ae3b",
"jakarta.xml.bind:jakarta.xml.bind-api:4.0.2::ff6b5be5"
],
"AnalyzedBy": "pom"
},
{
"ID": "com.fasterxml.jackson.module:jackson-module-parameter-names:2.18.4::d55c13a2",
"Name": "com.fasterxml.jackson.module:jackson-module-parameter-names",
"Identifier": {
"PURL": "pkg:maven/com.fasterxml.jackson.module/jackson-module-parameter-names@2.18.4",
"UID": "92ee553213d801c5"
},
"Version": "2.18.4",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"DependsOn": [
"com.fasterxml.jackson.core:jackson-core:2.18.0::1358b2b6",
"com.fasterxml.jackson.core:jackson-databind:2.18.0::8d1de767"
],
"AnalyzedBy": "pom"
},
{
"ID": "com.fasterxml:classmate:1.7.0::e548c67a",
"Name": "com.fasterxml:classmate",
"Identifier": {
"PURL": "pkg:maven/com.fasterxml/classmate@1.7.0",
"UID": "7aeef271a0a444ff"
},
"Version": "1.7.0",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"AnalyzedBy": "pom"
},
{
"ID": "com.github.java-json-tools:json-patch::4c114d23",
"Name": "com.github.java-json-tools:json-patch",
"Identifier": {
"PURL": "pkg:maven/com.github.java-json-tools/json-patch",
"UID": "bd120605d64b4596"
},
"Indirect": true,
"Relationship": "indirect",
"AnalyzedBy": "pom"
},
{
"ID": "com.github.javaparser:javaparser-core:3.26.4::23e8902e",
"Name": "com.github.javaparser:javaparser-core",
"Identifier": {
"PURL": "pkg:maven/com.github.javaparser/javaparser-core@3.26.4",
"UID": "fb58bffb54cd783b"
},
"Version": "3.26.4",
"Licenses": [
"LGPL-2.1-only",
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"AnalyzedBy": "pom"
},
{
"ID": "com.google.code.gson:gson:2.11.0::54f7692f",
"Name": "com.google.code.gson:gson",
"Identifier": {
"PURL": "pkg:maven/com.google.code.gson/gson@2.11.0",
"UID": "b5b1c63727099aec"
},
"Version": "2.11.0",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"DependsOn": [
"com.google.errorprone:error_prone_annotations:2.27.0::74bc1773"
],
"AnalyzedBy": "pom"
},
{
"ID": "com.google.errorprone:error_prone_annotations:2.27.0::74bc1773",
"Name": "com.google.errorprone:error_prone_annotations",
"Identifier": {
"PURL": "pkg:maven/com.google.errorprone/error_prone_annotations@2.27.0",
"UID": "4493dc3258de4667"
},
"Version": "2.27.0",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"AnalyzedBy": "pom"
},
{
"ID": "com.ibm.async:asyncutil::3f9d98be",
"Name": "com.ibm.async:asyncutil",
"Identifier": {
"PURL": "pkg:maven/com.ibm.async/asyncutil",
"UID": "250dbe17a1ab396c"
},
"Indirect": true,
"Relationship": "indirect",
"AnalyzedBy": "pom"
},
{
"ID": "com.sun.activation:jakarta.activation:2.0.1::44773cf8",
"Name": "com.sun.activation:jakarta.activation",
"Identifier": {
"PURL": "pkg:maven/com.sun.activation/jakarta.activation@2.0.1",
"UID": "94efa0547a68dc6a"
},
"Version": "2.0.1",
"Licenses": [
"BSD-3-Clause"
],
"Indirect": true,
"Relationship": "indirect",
"AnalyzedBy": "pom"
},
{
"ID": "com.sun.istack:istack-commons-runtime:4.1.2::684c6b99",
"Name": "com.sun.istack:istack-commons-runtime",
"Identifier": {
"PURL": "pkg:maven/com.sun.istack/istack-commons-runtime@4.1.2",
"UID": "ac47edbec49b7ae0"
},
"Version": "4.1.2",
"Licenses": [
"BSD-3-Clause"
],
"Indirect": true,
"Relationship": "indirect",
"AnalyzedBy": "pom"
},
{
"ID": "com.sun.istack:istack-commons-tools::8206376e",
"Name": "com.sun.istack:istack-commons-tools",
"Identifier": {
"PURL": "pkg:maven/com.sun.istack/istack-commons-tools",
"UID": "483c93d00f1f51e5"
},
"Indirect": true,
"Relationship": "indirect",
"AnalyzedBy": "pom"
},
{
"ID": "com.sun.xml.bind.external:relaxng-datatype::f3097d7c",
"Name": "com.sun.xml.bind.external:relaxng-datatype",
"Identifier": {
"PURL": "pkg:maven/com.sun.xml.bind.external/relaxng-datatype",
"UID": "7ab9edd38fcf5df8"
},
"Indirect": true,
"Relationship": "indirect",
"AnalyzedBy": "pom"
},
{
"ID": "com.sun.xml.bind.external:rngom::932165c2",
"Name": "com.sun.xml.bind.external:rngom",
"Identifier": {
"PURL": "pkg:maven/com.sun.xml.bind.external/rngom",
"UID": "db6efaddec47b789"
},
"Indirect": true,
"Relationship": "indirect",
"AnalyzedBy": "pom"
},
{
"ID": "com.sun.xml.dtd-parser:dtd-parser:1.5.1::e28c65fd",
"Name": "com.sun.xml.dtd-parser:dtd-parser",
"Identifier": {
"PURL": "pkg:maven/com.sun.xml.dtd-parser/dtd-parser@1.5.1",
"UID": "bfdb2e4aa0f1d889"
},
"Version": "1.5.1",
"Licenses": [
"BSD-3-Clause"
],
"Indirect": true,
"Relationship": "indirect",
"AnalyzedBy": "pom"
},
{
"ID": "com.thoughtworks.qdox:qdox:1.12.1::8e2963dc",
"Name": "com.thoughtworks.qdox:qdox",
"Identifier": {
"PURL": "pkg:maven/com.thoughtworks.qdox/qdox@1.12.1",
"UID": "5500fcaad9eeb2ca"
},
"Version": "1.12.1",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"AnalyzedBy": "pom"
},
{
"ID": "com.zaxxer:HikariCP:5.1.0::a9a0d6b5",
"Name": "com.zaxxer:HikariCP",
"Identifier": {
"PURL": "pkg:maven/com.zaxxer/HikariCP@5.1.0",
"UID": "6c5aa7b75d27efab"
},
"Version": "5.1.0",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"DependsOn": [
"org.slf4j:slf4j-api:2.0.17::b5c66eae"
],
"AnalyzedBy": "pom"
},
{
"ID": "commons-codec:commons-codec:1.17.2::1c76f94d",
"Name": "commons-codec:commons-codec",
"Identifier": {
"PURL": "pkg:maven/commons-codec/commons-codec@1.17.2",
"UID": "6cd2f77134477e3"
},
"Version": "1.17.2",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"AnalyzedBy": "pom"
},
{
"ID": "commons-io:commons-io:2.20.0::7ecb520a",
"Name": "commons-io:commons-io",
"Identifier": {
"PURL": "pkg:maven/commons-io/commons-io@2.20.0",
"UID": "fe749f7676436630"
},
"Version": "2.20.0",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"AnalyzedBy": "pom"
},
{
"ID": "io.lettuce:lettuce-core:6.4.2.RELEASE::36fe1716",
"Name": "io.lettuce:lettuce-core",
"Identifier": {
"PURL": "pkg:maven/io.lettuce/lettuce-core@6.4.2.RELEASE",
"UID": "52f7707ab82bb964"
},
"Version": "6.4.2.RELEASE",
"Licenses": [
"MIT"
],
"Indirect": true,
"Relationship": "indirect",
"DependsOn": [
"io.netty:netty-common:4.1.126.Final::7eb0b3b1",
"io.netty:netty-handler:4.1.126.Final::da0db403",
"io.netty:netty-transport:4.1.126.Final::ba3f05fb",
"io.projectreactor:reactor-core:3.7.7::e96da611"
],
"AnalyzedBy": "pom"
},
{
"ID": "io.micrometer:micrometer-commons:1.14.8::ddaccf30",
"Name": "io.micrometer:micrometer-commons",
"Identifier": {
"PURL": "pkg:maven/io.micrometer/micrometer-commons@1.14.8",
"UID": "be1e58f7dd3a4c99"
},
"Version": "1.14.8",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"AnalyzedBy": "pom"
},
{
"ID": "io.micrometer:micrometer-observation:1.14.8::404e2f37",
"Name": "io.micrometer:micrometer-observation",
"Identifier": {
"PURL": "pkg:maven/io.micrometer/micrometer-observation@1.14.8",
"UID": "9d663af3aeba1f0f"
},
"Version": "1.14.8",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"DependsOn": [
"io.micrometer:micrometer-commons:1.14.8::ddaccf30"
],
"AnalyzedBy": "pom"
},
{
"ID": "io.netty:netty-buffer:4.1.126.Final::e2216222",
"Name": "io.netty:netty-buffer",
"Identifier": {
"PURL": "pkg:maven/io.netty/netty-buffer@4.1.126.Final",
"UID": "3879c42bb0295ade"
},
"Version": "4.1.126.Final",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"DependsOn": [
"io.netty:netty-common:4.1.126.Final::7eb0b3b1"
],
"AnalyzedBy": "pom"
},
{
"ID": "io.netty:netty-codec-dns:4.1.126.Final::ef768b2f",
"Name": "io.netty:netty-codec-dns",
"Identifier": {
"PURL": "pkg:maven/io.netty/netty-codec-dns@4.1.126.Final",
"UID": "dca2cf47f38aeca9"
},
"Version": "4.1.126.Final",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"DependsOn": [
"io.netty:netty-buffer:4.1.126.Final::e2216222",
"io.netty:netty-codec:4.1.126.Final::43ba0eb1",
"io.netty:netty-common:4.1.126.Final::7eb0b3b1",
"io.netty:netty-transport:4.1.126.Final::ba3f05fb"
],
"AnalyzedBy": "pom"
},
{
"ID": "io.netty:netty-codec-socks:4.1.126.Final::f70c2796",
"Name": "io.netty:netty-codec-socks",
"Identifier": {
"PURL": "pkg:maven/io.netty/netty-codec-socks@4.1.126.Final",
"UID": "e4297f91e879689d"
},
"Version": "4.1.126.Final",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"DependsOn": [
"io.netty:netty-buffer:4.1.126.Final::e2216222",
"io.netty:netty-codec:4.1.126.Final::43ba0eb1",
"io.netty:netty-common:4.1.126.Final::7eb0b3b1",
"io.netty:netty-transport:4.1.126.Final::ba3f05fb"
],
"AnalyzedBy": "pom"
},
{
"ID": "io.netty:netty-handler-proxy:4.1.126.Final::ef428eca",
"Name": "io.netty:netty-handler-proxy",
"Identifier": {
"PURL": "pkg:maven/io.netty/netty-handler-proxy@4.1.126.Final",
"UID": "749171f96fcaf3ac"
},
"Version": "4.1.126.Final",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"DependsOn": [
"io.netty:netty-buffer:4.1.126.Final::e2216222",
"io.netty:netty-codec-http:4.1.126.Final::f89a729a",
"io.netty:netty-codec-socks:4.1.126.Final::f70c2796",
"io.netty:netty-codec:4.1.126.Final::43ba0eb1",
"io.netty:netty-common:4.1.126.Final::7eb0b3b1",
"io.netty:netty-transport:4.1.126.Final::ba3f05fb"
],
"AnalyzedBy": "pom"
},
{
"ID": "io.netty:netty-resolver:4.1.126.Final::97cdbfec",
"Name": "io.netty:netty-resolver",
"Identifier": {
"PURL": "pkg:maven/io.netty/netty-resolver@4.1.126.Final",
"UID": "bb78f1cf0fa9333e"
},
"Version": "4.1.126.Final",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"DependsOn": [
"io.netty:netty-common:4.1.126.Final::7eb0b3b1"
],
"AnalyzedBy": "pom"
},
{
"ID": "io.netty:netty-resolver-dns:4.1.126.Final::3b5c339d",
"Name": "io.netty:netty-resolver-dns",
"Identifier": {
"PURL": "pkg:maven/io.netty/netty-resolver-dns@4.1.126.Final",
"UID": "ffa71d102d85b4ef"
},
"Version": "4.1.126.Final",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"DependsOn": [
"io.netty:netty-buffer:4.1.126.Final::e2216222",
"io.netty:netty-codec-dns:4.1.126.Final::ef768b2f",
"io.netty:netty-codec:4.1.126.Final::43ba0eb1",
"io.netty:netty-common:4.1.126.Final::7eb0b3b1",
"io.netty:netty-handler:4.1.126.Final::da0db403",
"io.netty:netty-resolver:4.1.126.Final::97cdbfec",
"io.netty:netty-transport:4.1.126.Final::ba3f05fb"
],
"AnalyzedBy": "pom"
},
{
"ID": "io.netty:netty-resolver-dns-classes-macos:4.1.126.Final::d4c8758a",
"Name": "io.netty:netty-resolver-dns-classes-macos",
"Identifier": {
"PURL": "pkg:maven/io.netty/netty-resolver-dns-classes-macos@4.1.126.Final",
"UID": "356d99621ca7cd68"
},
"Version": "4.1.126.Final",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"DependsOn": [
"io.netty:netty-common:4.1.126.Final::7eb0b3b1",
"io.netty:netty-resolver-dns:4.1.126.Final::3b5c339d",
"io.netty:netty-transport-native-unix-common:4.1.126.Final::e3e180ad"
],
"AnalyzedBy": "pom"
},
{
"ID": "io.netty:netty-resolver-dns-native-macos:4.1.126.Final::f21a3f67",
"Name": "io.netty:netty-resolver-dns-native-macos",
"Identifier": {
"PURL": "pkg:maven/io.netty/netty-resolver-dns-native-macos@4.1.126.Final",
"UID": "3ce3c26a3e0c2178"
},
"Version": "4.1.126.Final",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"DependsOn": [
"io.netty:netty-resolver-dns-classes-macos:4.1.126.Final::d4c8758a"
],
"AnalyzedBy": "pom"
},
{
"ID": "io.netty:netty-transport:4.1.126.Final::ba3f05fb",
"Name": "io.netty:netty-transport",
"Identifier": {
"PURL": "pkg:maven/io.netty/netty-transport@4.1.126.Final",
"UID": "af4f9ea297428a4f"
},
"Version": "4.1.126.Final",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"DependsOn": [
"io.netty:netty-buffer:4.1.126.Final::e2216222",
"io.netty:netty-common:4.1.126.Final::7eb0b3b1",
"io.netty:netty-resolver:4.1.126.Final::97cdbfec"
],
"AnalyzedBy": "pom"
},
{
"ID": "io.netty:netty-transport-classes-epoll:4.1.126.Final::2f84effb",
"Name": "io.netty:netty-transport-classes-epoll",
"Identifier": {
"PURL": "pkg:maven/io.netty/netty-transport-classes-epoll@4.1.126.Final",
"UID": "5630476afbc45505"
},
"Version": "4.1.126.Final",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"DependsOn": [
"io.netty:netty-buffer:4.1.126.Final::e2216222",
"io.netty:netty-common:4.1.126.Final::7eb0b3b1",
"io.netty:netty-transport-native-unix-common:4.1.126.Final::e3e180ad",
"io.netty:netty-transport:4.1.126.Final::ba3f05fb"
],
"AnalyzedBy": "pom"
},
{
"ID": "io.netty:netty-transport-native-epoll:4.1.126.Final::f36a387e",
"Name": "io.netty:netty-transport-native-epoll",
"Identifier": {
"PURL": "pkg:maven/io.netty/netty-transport-native-epoll@4.1.126.Final",
"UID": "b1f30b7aad292e0a"
},
"Version": "4.1.126.Final",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"DependsOn": [
"io.netty:netty-buffer:4.1.126.Final::e2216222",
"io.netty:netty-common:4.1.126.Final::7eb0b3b1",
"io.netty:netty-transport-classes-epoll:4.1.126.Final::2f84effb",
"io.netty:netty-transport-native-unix-common:4.1.126.Final::e3e180ad",
"io.netty:netty-transport:4.1.126.Final::ba3f05fb"
],
"AnalyzedBy": "pom"
},
{
"ID": "io.netty:netty-transport-native-unix-common:4.1.126.Final::e3e180ad",
"Name": "io.netty:netty-transport-native-unix-common",
"Identifier": {
"PURL": "pkg:maven/io.netty/netty-transport-native-unix-common@4.1.126.Final",
"UID": "d444662ebb9325a1"
},
"Version": "4.1.126.Final",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"DependsOn": [
"io.netty:netty-buffer:4.1.126.Final::e2216222",
"io.netty:netty-common:4.1.126.Final::7eb0b3b1",
"io.netty:netty-transport:4.1.126.Final::ba3f05fb"
],
"AnalyzedBy": "pom"
},
{
"ID": "io.projectreactor.netty:reactor-netty-core:1.2.7::4c5f8ad7",
"Name": "io.projectreactor.netty:reactor-netty-core",
"Identifier": {
"PURL": "pkg:maven/io.projectreactor.netty/reactor-netty-core@1.2.7",
"UID": "66d15f74665f9c48"
},
"Version": "1.2.7",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"DependsOn": [
"io.netty:netty-handler-proxy:4.1.126.Final::ef428eca",
"io.netty:netty-handler:4.1.126.Final::da0db403",
"io.netty:netty-resolver-dns-native-macos:4.1.126.Final::f21a3f67",
"io.netty:netty-resolver-dns:4.1.126.Final::3b5c339d",
"io.netty:netty-transport-native-epoll:4.1.126.Final::f36a387e",
"io.projectreactor:reactor-core:3.7.7::e96da611"
],
"AnalyzedBy": "pom"
},
{
"ID": "io.projectreactor:reactor-core:3.7.7::e96da611",
"Name": "io.projectreactor:reactor-core",
"Identifier": {
"PURL": "pkg:maven/io.projectreactor/reactor-core@3.7.7",
"UID": "7b08ade00a757b81"
},
"Version": "3.7.7",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"DependsOn": [
"org.reactivestreams:reactive-streams:1.0.4::895ad079"
],
"AnalyzedBy": "pom"
},
{
"ID": "io.smallrye:jandex:3.2.0::7ea6ebb1",
"Name": "io.smallrye:jandex",
"Identifier": {
"PURL": "pkg:maven/io.smallrye/jandex@3.2.0",
"UID": "c5e2b5c80f738655"
},
"Version": "3.2.0",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"AnalyzedBy": "pom"
},
{
"ID": "io.swagger.core.v3:swagger-annotations-jakarta:2.2.15::cee7968b",
"Name": "io.swagger.core.v3:swagger-annotations-jakarta",
"Identifier": {
"PURL": "pkg:maven/io.swagger.core.v3/swagger-annotations-jakarta@2.2.15",
"UID": "1b93f3d253e1cab0"
},
"Version": "2.2.15",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"AnalyzedBy": "pom"
},
{
"ID": "io.swagger.core.v3:swagger-core-jakarta:2.2.15::d3e39944",
"Name": "io.swagger.core.v3:swagger-core-jakarta",
"Identifier": {
"PURL": "pkg:maven/io.swagger.core.v3/swagger-core-jakarta@2.2.15",
"UID": "2f6ce5bee2f8b691"
},
"Version": "2.2.15",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"DependsOn": [
"com.fasterxml.jackson.core:jackson-annotations:2.18.0::35397b1c",
"com.fasterxml.jackson.core:jackson-databind:2.18.0::8d1de767",
"com.fasterxml.jackson.dataformat:jackson-dataformat-yaml:2.19.0::69d8c960",
"com.fasterxml.jackson.datatype:jackson-datatype-jsr310:2.18.0::edac1c1f",
"io.swagger.core.v3:swagger-annotations-jakarta:2.2.15::cee7968b",
"io.swagger.core.v3:swagger-models-jakarta:2.2.15::681cc124",
"jakarta.validation:jakarta.validation-api:3.0.2::dee863a2",
"jakarta.xml.bind:jakarta.xml.bind-api:4.0.2::ff6b5be5",
"org.apache.commons:commons-lang3:3.20.0::fd8baf63",
"org.slf4j:slf4j-api:2.0.17::b5c66eae",
"org.yaml:snakeyaml:2.3::31fe2f51"
],
"AnalyzedBy": "pom"
},
{
"ID": "io.swagger.core.v3:swagger-models-jakarta:2.2.15::681cc124",
"Name": "io.swagger.core.v3:swagger-models-jakarta",
"Identifier": {
"PURL": "pkg:maven/io.swagger.core.v3/swagger-models-jakarta@2.2.15",
"UID": "d509ce8c8ae4a5ef"
},
"Version": "2.2.15",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"DependsOn": [
"com.fasterxml.jackson.core:jackson-annotations:2.18.0::35397b1c"
],
"AnalyzedBy": "pom"
},
{
"ID": "jakarta.activation:jakarta.activation-api:2.1.3::d620ae3b",
"Name": "jakarta.activation:jakarta.activation-api",
"Identifier": {
"PURL": "pkg:maven/jakarta.activation/jakarta.activation-api@2.1.3",
"UID": "f28a3f1c949a3bbc"
},
"Version": "2.1.3",
"Licenses": [
"BSD-3-Clause"
],
"Indirect": true,
"Relationship": "indirect",
"AnalyzedBy": "pom"
},
{
"ID": "jakarta.annotation:jakarta.annotation-api:2.1.1::78d77cec",
"Name": "jakarta.annotation:jakarta.annotation-api",
"Identifier": {
"PURL": "pkg:maven/jakarta.annotation/jakarta.annotation-api@2.1.1",
"UID": "57fed4fd90d79cb7"
},
"Version": "2.1.1",
"Licenses": [
"EPL-2.0",
"GPL-2.0-with-classpath-exception"
],
"Indirect": true,
"Relationship": "indirect",
"AnalyzedBy": "pom"
},
{
"ID": "jakarta.inject:jakarta.inject-api:2.0.1::3171caf8",
"Name": "jakarta.inject:jakarta.inject-api",
"Identifier": {
"PURL": "pkg:maven/jakarta.inject/jakarta.inject-api@2.0.1",
"UID": "41b55aa9df08c6ec"
},
"Version": "2.0.1",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"AnalyzedBy": "pom"
},
{
"ID": "jakarta.mail:jakarta.mail-api:2.1.3::76b82dc3",
"Name": "jakarta.mail:jakarta.mail-api",
"Identifier": {
"PURL": "pkg:maven/jakarta.mail/jakarta.mail-api@2.1.3",
"UID": "e4e2b2eb81c91f36"
},
"Version": "2.1.3",
"Licenses": [
"EPL-2.0",
"GPL-2.0-with-classpath-exception",
"BSD-3-Clause"
],
"Indirect": true,
"Relationship": "indirect",
"DependsOn": [
"jakarta.activation:jakarta.activation-api:2.1.3::d620ae3b"
],
"AnalyzedBy": "pom"
},
{
"ID": "jakarta.persistence:jakarta.persistence-api:3.1.0::bb112ae3",
"Name": "jakarta.persistence:jakarta.persistence-api",
"Identifier": {
"PURL": "pkg:maven/jakarta.persistence/jakarta.persistence-api@3.1.0",
"UID": "336e6b0ddff0b2cd"
},
"Version": "3.1.0",
"Licenses": [
"EPL-2.0",
"BSD-3-Clause"
],
"Indirect": true,
"Relationship": "indirect",
"AnalyzedBy": "pom"
},
{
"ID": "jakarta.servlet:jakarta.servlet-api:6.0.0::b24849b7",
"Name": "jakarta.servlet:jakarta.servlet-api",
"Identifier": {
"PURL": "pkg:maven/jakarta.servlet/jakarta.servlet-api@6.0.0",
"UID": "ddc760f3bcf824a6"
},
"Version": "6.0.0",
"Licenses": [
"EPL-2.0",
"GPL-2.0-with-classpath-exception"
],
"Indirect": true,
"Relationship": "indirect",
"AnalyzedBy": "pom"
},
{
"ID": "jakarta.transaction:jakarta.transaction-api:2.0.1::57a386ea",
"Name": "jakarta.transaction:jakarta.transaction-api",
"Identifier": {
"PURL": "pkg:maven/jakarta.transaction/jakarta.transaction-api@2.0.1",
"UID": "ea791f51b8523e71"
},
"Version": "2.0.1",
"Licenses": [
"EPL-2.0",
"GPL-2.0-with-classpath-exception"
],
"Indirect": true,
"Relationship": "indirect",
"AnalyzedBy": "pom"
},
{
"ID": "jakarta.validation:jakarta.validation-api:3.0.2::dee863a2",
"Name": "jakarta.validation:jakarta.validation-api",
"Identifier": {
"PURL": "pkg:maven/jakarta.validation/jakarta.validation-api@3.0.2",
"UID": "536bf5f955c342f7"
},
"Version": "3.0.2",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"AnalyzedBy": "pom"
},
{
"ID": "jakarta.ws.rs:jakarta.ws.rs-api:3.1.0::35e0df68",
"Name": "jakarta.ws.rs:jakarta.ws.rs-api",
"Identifier": {
"PURL": "pkg:maven/jakarta.ws.rs/jakarta.ws.rs-api@3.1.0",
"UID": "2d5147b09674a542"
},
"Version": "3.1.0",
"Licenses": [
"EPL-2.0",
"GPL-2.0-with-classpath-exception"
],
"Indirect": true,
"Relationship": "indirect",
"AnalyzedBy": "pom"
},
{
"ID": "jakarta.xml.bind:jakarta.xml.bind-api:4.0.2::ff6b5be5",
"Name": "jakarta.xml.bind:jakarta.xml.bind-api",
"Identifier": {
"PURL": "pkg:maven/jakarta.xml.bind/jakarta.xml.bind-api@4.0.2",
"UID": "c45de4939610df75"
},
"Version": "4.0.2",
"Licenses": [
"BSD-3-Clause"
],
"Indirect": true,
"Relationship": "indirect",
"DependsOn": [
"jakarta.activation:jakarta.activation-api:2.1.3::d620ae3b"
],
"AnalyzedBy": "pom"
},
{
"ID": "net.bytebuddy:byte-buddy:1.15.11::16fec00a",
"Name": "net.bytebuddy:byte-buddy",
"Identifier": {
"PURL": "pkg:maven/net.bytebuddy/byte-buddy@1.15.11",
"UID": "1bb503c5be377882"
},
"Version": "1.15.11",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"AnalyzedBy": "pom"
},
{
"ID": "org.antlr:antlr4-runtime:4.13.0::faab9f67",
"Name": "org.antlr:antlr4-runtime",
"Identifier": {
"PURL": "pkg:maven/org.antlr/antlr4-runtime@4.13.0",
"UID": "1d5448eda9458c0b"
},
"Version": "4.13.0",
"Licenses": [
"BSD-3-Clause"
],
"Indirect": true,
"Relationship": "indirect",
"AnalyzedBy": "pom"
},
{
"ID": "org.apache.ant:ant:1.10.15::39bbddad",
"Name": "org.apache.ant:ant",
"Identifier": {
"PURL": "pkg:maven/org.apache.ant/ant@1.10.15",
"UID": "bae37fa3ba322ba3"
},
"Version": "1.10.15",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"AnalyzedBy": "pom"
},
{
"ID": "org.apache.ant:ant-antlr:1.10.15::5d91d99e",
"Name": "org.apache.ant:ant-antlr",
"Identifier": {
"PURL": "pkg:maven/org.apache.ant/ant-antlr@1.10.15",
"UID": "90d2f277c60c8df8"
},
"Version": "1.10.15",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"AnalyzedBy": "pom"
},
{
"ID": "org.apache.ant:ant-junit:1.10.15::829523bc",
"Name": "org.apache.ant:ant-junit",
"Identifier": {
"PURL": "pkg:maven/org.apache.ant/ant-junit@1.10.15",
"UID": "af2d5601347359df"
},
"Version": "1.10.15",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"DependsOn": [
"org.apache.ant:ant:1.10.15::39bbddad"
],
"AnalyzedBy": "pom"
},
{
"ID": "org.apache.ant:ant-launcher:1.10.15::7ba64e45",
"Name": "org.apache.ant:ant-launcher",
"Identifier": {
"PURL": "pkg:maven/org.apache.ant/ant-launcher@1.10.15",
"UID": "2e938777e68fd8f6"
},
"Version": "1.10.15",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"AnalyzedBy": "pom"
},
{
"ID": "org.apache.commons:commons-lang3:3.20.0::fd8baf63",
"Name": "org.apache.commons:commons-lang3",
"Identifier": {
"PURL": "pkg:maven/org.apache.commons/commons-lang3@3.20.0",
"UID": "d95e2fe357117caf"
},
"Version": "3.20.0",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"AnalyzedBy": "pom"
},
{
"ID": "org.apache.groovy:groovy-ant:4.0.27::11e47e72",
"Name": "org.apache.groovy:groovy-ant",
"Identifier": {
"PURL": "pkg:maven/org.apache.groovy/groovy-ant@4.0.27",
"UID": "ca5ef32bdb88c4d9"
},
"Version": "4.0.27",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"DependsOn": [
"org.apache.ant:ant-antlr:1.10.15::5d91d99e",
"org.apache.ant:ant-junit:1.10.15::829523bc",
"org.apache.ant:ant-launcher:1.10.15::7ba64e45",
"org.apache.ant:ant:1.10.15::39bbddad",
"org.apache.groovy:groovy-groovydoc:4.0.27::3701e16b",
"org.apache.groovy:groovy:4.0.23::c2c30958"
],
"AnalyzedBy": "pom"
},
{
"ID": "org.apache.groovy:groovy-docgenerator:4.0.27::215c5bac",
"Name": "org.apache.groovy:groovy-docgenerator",
"Identifier": {
"PURL": "pkg:maven/org.apache.groovy/groovy-docgenerator@4.0.27",
"UID": "7558ac50e3c26acb"
},
"Version": "4.0.27",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"DependsOn": [
"com.thoughtworks.qdox:qdox:1.12.1::8e2963dc",
"org.apache.groovy:groovy-templates:4.0.27::41b18871",
"org.apache.groovy:groovy:4.0.23::c2c30958"
],
"AnalyzedBy": "pom"
},
{
"ID": "org.apache.groovy:groovy-groovydoc:4.0.27::3701e16b",
"Name": "org.apache.groovy:groovy-groovydoc",
"Identifier": {
"PURL": "pkg:maven/org.apache.groovy/groovy-groovydoc@4.0.27",
"UID": "20b6e8a5eba0ecc"
},
"Version": "4.0.27",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"DependsOn": [
"com.github.javaparser:javaparser-core:3.26.4::23e8902e",
"org.apache.groovy:groovy-docgenerator:4.0.27::215c5bac",
"org.apache.groovy:groovy-templates:4.0.27::41b18871",
"org.apache.groovy:groovy:4.0.23::c2c30958"
],
"AnalyzedBy": "pom"
},
{
"ID": "org.apache.groovy:groovy-json:4.0.27::1350c666",
"Name": "org.apache.groovy:groovy-json",
"Identifier": {
"PURL": "pkg:maven/org.apache.groovy/groovy-json@4.0.27",
"UID": "3ce58d790c498168"
},
"Version": "4.0.27",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"DependsOn": [
"org.apache.groovy:groovy:4.0.23::c2c30958"
],
"AnalyzedBy": "pom"
},
{
"ID": "org.apache.groovy:groovy-templates:4.0.27::41b18871",
"Name": "org.apache.groovy:groovy-templates",
"Identifier": {
"PURL": "pkg:maven/org.apache.groovy/groovy-templates@4.0.27",
"UID": "f827ee92f4bf7579"
},
"Version": "4.0.27",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"DependsOn": [
"org.apache.groovy:groovy-xml:4.0.27::8d43fc22",
"org.apache.groovy:groovy:4.0.23::c2c30958"
],
"AnalyzedBy": "pom"
},
{
"ID": "org.apache.groovy:groovy-xml:4.0.27::8d43fc22",
"Name": "org.apache.groovy:groovy-xml",
"Identifier": {
"PURL": "pkg:maven/org.apache.groovy/groovy-xml@4.0.27",
"UID": "e8db293d381d167e"
},
"Version": "4.0.27",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"DependsOn": [
"org.apache.groovy:groovy:4.0.23::c2c30958"
],
"AnalyzedBy": "pom"
},
{
"ID": "org.apache.httpcomponents:httpclient::6386b88a",
"Name": "org.apache.httpcomponents:httpclient",
"Identifier": {
"PURL": "pkg:maven/org.apache.httpcomponents/httpclient",
"UID": "c2cc9fa913463eb2"
},
"Indirect": true,
"Relationship": "indirect",
"AnalyzedBy": "pom"
},
{
"ID": "org.apache.james:apache-mime4j-dom::86e769f9",
"Name": "org.apache.james:apache-mime4j-dom",
"Identifier": {
"PURL": "pkg:maven/org.apache.james/apache-mime4j-dom",
"UID": "81a526b7bc565942"
},
"Indirect": true,
"Relationship": "indirect",
"AnalyzedBy": "pom"
},
{
"ID": "org.apache.james:apache-mime4j-storage::ce26d565",
"Name": "org.apache.james:apache-mime4j-storage",
"Identifier": {
"PURL": "pkg:maven/org.apache.james/apache-mime4j-storage",
"UID": "e1e07a5495434ffc"
},
"Indirect": true,
"Relationship": "indirect",
"AnalyzedBy": "pom"
},
{
"ID": "org.apache.logging.log4j:log4j-api:2.24.3::9741b808",
"Name": "org.apache.logging.log4j:log4j-api",
"Identifier": {
"PURL": "pkg:maven/org.apache.logging.log4j/log4j-api@2.24.3",
"UID": "877d93ae3cebaab5"
},
"Version": "2.24.3",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"AnalyzedBy": "pom"
},
{
"ID": "org.apache.logging.log4j:log4j-to-slf4j:2.24.3::1db61e78",
"Name": "org.apache.logging.log4j:log4j-to-slf4j",
"Identifier": {
"PURL": "pkg:maven/org.apache.logging.log4j/log4j-to-slf4j@2.24.3",
"UID": "dc372916f9eb7592"
},
"Version": "2.24.3",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"DependsOn": [
"org.apache.logging.log4j:log4j-api:2.24.3::9741b808",
"org.slf4j:slf4j-api:2.0.17::b5c66eae"
],
"AnalyzedBy": "pom"
},
{
"ID": "org.apache.tomcat.embed:tomcat-embed-el:10.1.42::31b6b2b6",
"Name": "org.apache.tomcat.embed:tomcat-embed-el",
"Identifier": {
"PURL": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-el@10.1.42",
"UID": "a3736e66fb26e8c"
},
"Version": "10.1.42",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"AnalyzedBy": "pom"
},
{
"ID": "org.apache.tomcat.embed:tomcat-embed-websocket:10.1.42::278b24e0",
"Name": "org.apache.tomcat.embed:tomcat-embed-websocket",
"Identifier": {
"PURL": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-websocket@10.1.42",
"UID": "5568a7b6868819f7"
},
"Version": "10.1.42",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"DependsOn": [
"org.apache.tomcat.embed:tomcat-embed-core:10.1.42::94b9dfaf"
],
"AnalyzedBy": "pom"
},
{
"ID": "org.apache.tomcat:tomcat-annotations-api:10.1.42::de042d66",
"Name": "org.apache.tomcat:tomcat-annotations-api",
"Identifier": {
"PURL": "pkg:maven/org.apache.tomcat/tomcat-annotations-api@10.1.42",
"UID": "47e6c88af258d153"
},
"Version": "10.1.42",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"AnalyzedBy": "pom"
},
{
"ID": "org.aspectj:aspectjweaver:1.9.24::d6c75cb8",
"Name": "org.aspectj:aspectjweaver",
"Identifier": {
"PURL": "pkg:maven/org.aspectj/aspectjweaver@1.9.24",
"UID": "3c92136ea6198be"
},
"Version": "1.9.24",
"Licenses": [
"EPL-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"AnalyzedBy": "pom"
},
{
"ID": "org.eclipse.angus:angus-activation:2.0.2::e2e7585b",
"Name": "org.eclipse.angus:angus-activation",
"Identifier": {
"PURL": "pkg:maven/org.eclipse.angus/angus-activation@2.0.2",
"UID": "1f77b14b6e9576f5"
},
"Version": "2.0.2",
"Licenses": [
"BSD-3-Clause"
],
"Indirect": true,
"Relationship": "indirect",
"DependsOn": [
"jakarta.activation:jakarta.activation-api:2.1.3::d620ae3b"
],
"AnalyzedBy": "pom"
},
{
"ID": "org.eclipse.angus:angus-mail:2.0.3::9610f6cb",
"Name": "org.eclipse.angus:angus-mail",
"Identifier": {
"PURL": "pkg:maven/org.eclipse.angus/angus-mail@2.0.3",
"UID": "a8d733e1987a22c3"
},
"Version": "2.0.3",
"Licenses": [
"EPL-2.0",
"GPL-2.0-with-classpath-exception",
"BSD-3-Clause"
],
"Indirect": true,
"Relationship": "indirect",
"DependsOn": [
"jakarta.activation:jakarta.activation-api:2.1.3::d620ae3b",
"jakarta.mail:jakarta.mail-api:2.1.3::76b82dc3",
"org.eclipse.angus:angus-activation:2.0.2::e2e7585b"
],
"AnalyzedBy": "pom"
},
{
"ID": "org.eclipse.angus:jakarta.mail:2.0.3::ec4e8eee",
"Name": "org.eclipse.angus:jakarta.mail",
"Identifier": {
"PURL": "pkg:maven/org.eclipse.angus/jakarta.mail@2.0.3",
"UID": "c1322b19719fad96"
},
"Version": "2.0.3",
"Licenses": [
"EPL-2.0",
"GPL-2.0-with-classpath-exception",
"BSD-3-Clause"
],
"Indirect": true,
"Relationship": "indirect",
"DependsOn": [
"jakarta.activation:jakarta.activation-api:2.1.3::d620ae3b",
"org.eclipse.angus:angus-activation:2.0.2::e2e7585b"
],
"AnalyzedBy": "pom"
},
{
"ID": "org.eclipse.microprofile.openapi:microprofile-openapi-api:3.1.1::278510f1",
"Name": "org.eclipse.microprofile.openapi:microprofile-openapi-api",
"Identifier": {
"PURL": "pkg:maven/org.eclipse.microprofile.openapi/microprofile-openapi-api@3.1.1",
"UID": "32dbb64d8ba7e34"
},
"Version": "3.1.1",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"AnalyzedBy": "pom"
},
{
"ID": "org.glassfish.jaxb:codemodel:4.0.5::28cb2f32",
"Name": "org.glassfish.jaxb:codemodel",
"Identifier": {
"PURL": "pkg:maven/org.glassfish.jaxb/codemodel@4.0.5",
"UID": "185cc282917e7004"
},
"Version": "4.0.5",
"Licenses": [
"BSD-3-Clause"
],
"Indirect": true,
"Relationship": "indirect",
"AnalyzedBy": "pom"
},
{
"ID": "org.glassfish.jaxb:jaxb-core:4.0.5::cc94282f",
"Name": "org.glassfish.jaxb:jaxb-core",
"Identifier": {
"PURL": "pkg:maven/org.glassfish.jaxb/jaxb-core@4.0.5",
"UID": "87820237ac7759cc"
},
"Version": "4.0.5",
"Licenses": [
"BSD-3-Clause"
],
"Indirect": true,
"Relationship": "indirect",
"DependsOn": [
"com.sun.istack:istack-commons-runtime:4.1.2::684c6b99",
"jakarta.activation:jakarta.activation-api:2.1.3::d620ae3b",
"jakarta.xml.bind:jakarta.xml.bind-api:4.0.2::ff6b5be5",
"org.eclipse.angus:angus-activation:2.0.2::e2e7585b",
"org.glassfish.jaxb:txw2:4.0.5::e868f41c"
],
"AnalyzedBy": "pom"
},
{
"ID": "org.glassfish.jaxb:jaxb-jxc:4.0.5::77b010d8",
"Name": "org.glassfish.jaxb:jaxb-jxc",
"Identifier": {
"PURL": "pkg:maven/org.glassfish.jaxb/jaxb-jxc@4.0.5",
"UID": "d3ff458cce4288a"
},
"Version": "4.0.5",
"Licenses": [
"BSD-3-Clause"
],
"Indirect": true,
"Relationship": "indirect",
"DependsOn": [
"org.glassfish.jaxb:jaxb-runtime:4.0.5::953067bb",
"org.glassfish.jaxb:jaxb-xjc:4.0.5::d8d59b22"
],
"AnalyzedBy": "pom"
},
{
"ID": "org.glassfish.jaxb:jaxb-runtime:4.0.5::953067bb",
"Name": "org.glassfish.jaxb:jaxb-runtime",
"Identifier": {
"PURL": "pkg:maven/org.glassfish.jaxb/jaxb-runtime@4.0.5",
"UID": "d66a11a5610fafe6"
},
"Version": "4.0.5",
"Licenses": [
"BSD-3-Clause"
],
"Indirect": true,
"Relationship": "indirect",
"DependsOn": [
"org.glassfish.jaxb:jaxb-core:4.0.5::cc94282f"
],
"AnalyzedBy": "pom"
},
{
"ID": "org.glassfish.jaxb:jaxb-xjc:4.0.5::d8d59b22",
"Name": "org.glassfish.jaxb:jaxb-xjc",
"Identifier": {
"PURL": "pkg:maven/org.glassfish.jaxb/jaxb-xjc@4.0.5",
"UID": "9caec92cf8d239ef"
},
"Version": "4.0.5",
"Licenses": [
"BSD-3-Clause"
],
"Indirect": true,
"Relationship": "indirect",
"DependsOn": [
"com.sun.xml.dtd-parser:dtd-parser:1.5.1::e28c65fd",
"org.glassfish.jaxb:codemodel:4.0.5::28cb2f32",
"org.glassfish.jaxb:jaxb-core:4.0.5::cc94282f",
"org.glassfish.jaxb:xsom:4.0.5::7404a0e8"
],
"AnalyzedBy": "pom"
},
{
"ID": "org.glassfish.jaxb:txw2:4.0.5::e868f41c",
"Name": "org.glassfish.jaxb:txw2",
"Identifier": {
"PURL": "pkg:maven/org.glassfish.jaxb/txw2@4.0.5",
"UID": "dbde3121d8954582"
},
"Version": "4.0.5",
"Licenses": [
"BSD-3-Clause"
],
"Indirect": true,
"Relationship": "indirect",
"AnalyzedBy": "pom"
},
{
"ID": "org.glassfish.jaxb:xsom:4.0.5::7404a0e8",
"Name": "org.glassfish.jaxb:xsom",
"Identifier": {
"PURL": "pkg:maven/org.glassfish.jaxb/xsom@4.0.5",
"UID": "3e4a7660e356ab96"
},
"Version": "4.0.5",
"Licenses": [
"BSD-3-Clause"
],
"Indirect": true,
"Relationship": "indirect",
"AnalyzedBy": "pom"
},
{
"ID": "org.gmetrics:GMetrics-Groovy4:2.1.0::bdf1c574",
"Name": "org.gmetrics:GMetrics-Groovy4",
"Identifier": {
"PURL": "pkg:maven/org.gmetrics/GMetrics-Groovy4@2.1.0",
"UID": "d953d408bc9c0173"
},
"Version": "2.1.0",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"AnalyzedBy": "pom"
},
{
"ID": "org.hibernate.common:hibernate-commons-annotations:7.0.3.Final::90b25bce",
"Name": "org.hibernate.common:hibernate-commons-annotations",
"Identifier": {
"PURL": "pkg:maven/org.hibernate.common/hibernate-commons-annotations@7.0.3.Final",
"UID": "e5b7fc500ffcb28d"
},
"Version": "7.0.3.Final",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"AnalyzedBy": "pom"
},
{
"ID": "org.hibernate.orm:hibernate-core:6.6.18.Final::2c88494f",
"Name": "org.hibernate.orm:hibernate-core",
"Identifier": {
"PURL": "pkg:maven/org.hibernate.orm/hibernate-core@6.6.18.Final",
"UID": "743f90b0961c21c7"
},
"Version": "6.6.18.Final",
"Licenses": [
"LGPL-2.1-or-later"
],
"Indirect": true,
"Relationship": "indirect",
"DependsOn": [
"com.fasterxml:classmate:1.7.0::e548c67a",
"io.smallrye:jandex:3.2.0::7ea6ebb1",
"jakarta.inject:jakarta.inject-api:2.0.1::3171caf8",
"jakarta.persistence:jakarta.persistence-api:3.1.0::bb112ae3",
"jakarta.transaction:jakarta.transaction-api:2.0.1::57a386ea",
"jakarta.xml.bind:jakarta.xml.bind-api:4.0.2::ff6b5be5",
"net.bytebuddy:byte-buddy:1.15.11::16fec00a",
"org.antlr:antlr4-runtime:4.13.0::faab9f67",
"org.glassfish.jaxb:jaxb-runtime:4.0.5::953067bb",
"org.hibernate.common:hibernate-commons-annotations:7.0.3.Final::90b25bce",
"org.jboss.logging:jboss-logging:3.6.1.Final::a3a7783d"
],
"AnalyzedBy": "pom"
},
{
"ID": "org.jboss.logging:commons-logging-jboss-logging:1.0.0.Final::6d6b3ede",
"Name": "org.jboss.logging:commons-logging-jboss-logging",
"Identifier": {
"PURL": "pkg:maven/org.jboss.logging/commons-logging-jboss-logging@1.0.0.Final",
"UID": "21c3b805828958d0"
},
"Version": "1.0.0.Final",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"DependsOn": [
"org.jboss.logging:jboss-logging:3.6.1.Final::a3a7783d"
],
"AnalyzedBy": "pom"
},
{
"ID": "org.jboss.logging:jboss-logging:3.6.1.Final::a3a7783d",
"Name": "org.jboss.logging:jboss-logging",
"Identifier": {
"PURL": "pkg:maven/org.jboss.logging/jboss-logging@3.6.1.Final",
"UID": "9e7faa53ef1673b2"
},
"Version": "3.6.1.Final",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"AnalyzedBy": "pom"
},
{
"ID": "org.jboss.resteasy:resteasy-client:6.2.9.Final::899118ee",
"Name": "org.jboss.resteasy:resteasy-client",
"Identifier": {
"PURL": "pkg:maven/org.jboss.resteasy/resteasy-client@6.2.9.Final",
"UID": "c0590446c29d97ee"
},
"Version": "6.2.9.Final",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"DependsOn": [
"commons-codec:commons-codec:1.17.2::1c76f94d",
"jakarta.ws.rs:jakarta.ws.rs-api:3.1.0::35e0df68",
"org.jboss.logging:jboss-logging:3.6.1.Final::a3a7783d",
"org.jboss.resteasy:resteasy-client-api:6.2.9.Final::7807b48e",
"org.jboss.resteasy:resteasy-core-spi:6.2.9.Final::26ed32dc",
"org.jboss.resteasy:resteasy-core:6.2.9.Final::d594fe4a",
"org.reactivestreams:reactive-streams:1.0.4::895ad079"
],
"AnalyzedBy": "pom"
},
{
"ID": "org.jboss.resteasy:resteasy-client-api:6.2.9.Final::7807b48e",
"Name": "org.jboss.resteasy:resteasy-client-api",
"Identifier": {
"PURL": "pkg:maven/org.jboss.resteasy/resteasy-client-api@6.2.9.Final",
"UID": "8c9033b7e71d44e0"
},
"Version": "6.2.9.Final",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"DependsOn": [
"jakarta.ws.rs:jakarta.ws.rs-api:3.1.0::35e0df68",
"org.jboss.logging:jboss-logging:3.6.1.Final::a3a7783d",
"org.jboss.resteasy:resteasy-core-spi:6.2.9.Final::26ed32dc"
],
"AnalyzedBy": "pom"
},
{
"ID": "org.jboss.resteasy:resteasy-core:6.2.9.Final::d594fe4a",
"Name": "org.jboss.resteasy:resteasy-core",
"Identifier": {
"PURL": "pkg:maven/org.jboss.resteasy/resteasy-core@6.2.9.Final",
"UID": "3dea10bdd5151880"
},
"Version": "6.2.9.Final",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"DependsOn": [
"jakarta.activation:jakarta.activation-api:2.1.3::d620ae3b",
"jakarta.annotation:jakarta.annotation-api:2.1.1::78d77cec",
"jakarta.servlet:jakarta.servlet-api:6.0.0::b24849b7",
"jakarta.validation:jakarta.validation-api:3.0.2::dee863a2",
"jakarta.ws.rs:jakarta.ws.rs-api:3.1.0::35e0df68",
"jakarta.xml.bind:jakarta.xml.bind-api:4.0.2::ff6b5be5",
"org.eclipse.angus:angus-activation:2.0.2::e2e7585b",
"org.jboss.logging:jboss-logging:3.6.1.Final::a3a7783d",
"org.jboss.resteasy:resteasy-core-spi:6.2.9.Final::26ed32dc",
"org.reactivestreams:reactive-streams:1.0.4::895ad079"
],
"AnalyzedBy": "pom"
},
{
"ID": "org.jboss.resteasy:resteasy-core-spi:6.2.9.Final::26ed32dc",
"Name": "org.jboss.resteasy:resteasy-core-spi",
"Identifier": {
"PURL": "pkg:maven/org.jboss.resteasy/resteasy-core-spi@6.2.9.Final",
"UID": "6739bbcab8828b00"
},
"Version": "6.2.9.Final",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"DependsOn": [
"jakarta.annotation:jakarta.annotation-api:2.1.1::78d77cec",
"jakarta.validation:jakarta.validation-api:3.0.2::dee863a2",
"jakarta.ws.rs:jakarta.ws.rs-api:3.1.0::35e0df68",
"jakarta.xml.bind:jakarta.xml.bind-api:4.0.2::ff6b5be5",
"org.jboss.logging:jboss-logging:3.6.1.Final::a3a7783d",
"org.reactivestreams:reactive-streams:1.0.4::895ad079"
],
"AnalyzedBy": "pom"
},
{
"ID": "org.jboss.resteasy:resteasy-jackson2-provider:6.2.9.Final::1e319cd4",
"Name": "org.jboss.resteasy:resteasy-jackson2-provider",
"Identifier": {
"PURL": "pkg:maven/org.jboss.resteasy/resteasy-jackson2-provider@6.2.9.Final",
"UID": "1d2c263126526984"
},
"Version": "6.2.9.Final",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"DependsOn": [
"com.fasterxml.jackson.core:jackson-annotations:2.18.0::35397b1c",
"com.fasterxml.jackson.core:jackson-core:2.18.0::1358b2b6",
"com.fasterxml.jackson.core:jackson-databind:2.18.0::8d1de767",
"com.fasterxml.jackson.jakarta.rs:jackson-jakarta-rs-base:2.18.4::ac9bcbd7",
"com.fasterxml.jackson.jakarta.rs:jackson-jakarta-rs-json-provider:2.18.4::199fb9ff",
"com.fasterxml.jackson.module:jackson-module-jakarta-xmlbind-annotations:2.18.4::a17bdb74",
"jakarta.servlet:jakarta.servlet-api:6.0.0::b24849b7",
"org.jboss.logging:jboss-logging:3.6.1.Final::a3a7783d"
],
"AnalyzedBy": "pom"
},
{
"ID": "org.jboss.resteasy:resteasy-jaxb-provider:6.2.9.Final::b27abc61",
"Name": "org.jboss.resteasy:resteasy-jaxb-provider",
"Identifier": {
"PURL": "pkg:maven/org.jboss.resteasy/resteasy-jaxb-provider@6.2.9.Final",
"UID": "110425fc9813bd61"
},
"Version": "6.2.9.Final",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"DependsOn": [
"com.sun.istack:istack-commons-runtime:4.1.2::684c6b99",
"jakarta.xml.bind:jakarta.xml.bind-api:4.0.2::ff6b5be5",
"org.glassfish.jaxb:codemodel:4.0.5::28cb2f32",
"org.glassfish.jaxb:jaxb-core:4.0.5::cc94282f",
"org.glassfish.jaxb:jaxb-jxc:4.0.5::77b010d8",
"org.glassfish.jaxb:jaxb-runtime:4.0.5::953067bb",
"org.glassfish.jaxb:jaxb-xjc:4.0.5::d8d59b22",
"org.glassfish.jaxb:txw2:4.0.5::e868f41c",
"org.glassfish.jaxb:xsom:4.0.5::7404a0e8",
"org.jboss.logging:jboss-logging:3.6.1.Final::a3a7783d"
],
"AnalyzedBy": "pom"
},
{
"ID": "org.jboss.resteasy:resteasy-multipart-provider:6.2.9.Final::57cbd15c",
"Name": "org.jboss.resteasy:resteasy-multipart-provider",
"Identifier": {
"PURL": "pkg:maven/org.jboss.resteasy/resteasy-multipart-provider@6.2.9.Final",
"UID": "60ab67118f381c20"
},
"Version": "6.2.9.Final",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"DependsOn": [
"commons-io:commons-io:2.20.0::7ecb520a",
"jakarta.mail:jakarta.mail-api:2.1.3::76b82dc3",
"org.eclipse.angus:angus-mail:2.0.3::9610f6cb",
"org.jboss.logging:jboss-logging:3.6.1.Final::a3a7783d",
"org.jboss.resteasy:resteasy-core-spi:6.2.9.Final::26ed32dc",
"org.jboss.resteasy:resteasy-core:6.2.9.Final::d594fe4a",
"org.jboss.resteasy:resteasy-jaxb-provider:6.2.9.Final::b27abc61"
],
"AnalyzedBy": "pom"
},
{
"ID": "org.jboss:jandex::6d118cea",
"Name": "org.jboss:jandex",
"Identifier": {
"PURL": "pkg:maven/org.jboss/jandex",
"UID": "763cba780348ae67"
},
"Indirect": true,
"Relationship": "indirect",
"AnalyzedBy": "pom"
},
{
"ID": "org.jetbrains:annotations:13.0::d26ab00c",
"Name": "org.jetbrains:annotations",
"Identifier": {
"PURL": "pkg:maven/org.jetbrains/annotations@13.0",
"UID": "907ad6b473f916f"
},
"Version": "13.0",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"AnalyzedBy": "pom"
},
{
"ID": "org.keycloak:keycloak-client-common-synced:26.0.5::f02ceae9",
"Name": "org.keycloak:keycloak-client-common-synced",
"Identifier": {
"PURL": "pkg:maven/org.keycloak/keycloak-client-common-synced@26.0.5",
"UID": "86096f15d5ede72d"
},
"Version": "26.0.5",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"DependsOn": [
"com.fasterxml.jackson.datatype:jackson-datatype-jdk8:2.18.4::bf2df8d3",
"com.fasterxml.jackson.datatype:jackson-datatype-jsr310:2.18.0::edac1c1f",
"org.eclipse.microprofile.openapi:microprofile-openapi-api:3.1.1::278510f1",
"org.jboss.logging:commons-logging-jboss-logging:1.0.0.Final::6d6b3ede",
"org.jboss.logging:jboss-logging:3.6.1.Final::a3a7783d"
],
"AnalyzedBy": "pom"
},
{
"ID": "org.reactivestreams:reactive-streams:1.0.4::895ad079",
"Name": "org.reactivestreams:reactive-streams",
"Identifier": {
"PURL": "pkg:maven/org.reactivestreams/reactive-streams@1.0.4",
"UID": "155528fca27d7b05"
},
"Version": "1.0.4",
"Licenses": [
"MIT-0"
],
"Indirect": true,
"Relationship": "indirect",
"AnalyzedBy": "pom"
},
{
"ID": "org.slf4j:jul-to-slf4j:2.0.17::66a480e2",
"Name": "org.slf4j:jul-to-slf4j",
"Identifier": {
"PURL": "pkg:maven/org.slf4j/jul-to-slf4j@2.0.17",
"UID": "fbf1d690149d772c"
},
"Version": "2.0.17",
"Licenses": [
"MIT"
],
"Indirect": true,
"Relationship": "indirect",
"DependsOn": [
"org.slf4j:slf4j-api:2.0.17::b5c66eae"
],
"AnalyzedBy": "pom"
},
{
"ID": "org.slf4j:slf4j-api:2.0.17::b5c66eae",
"Name": "org.slf4j:slf4j-api",
"Identifier": {
"PURL": "pkg:maven/org.slf4j/slf4j-api@2.0.17",
"UID": "f8085c3d799116b8"
},
"Version": "2.0.17",
"Licenses": [
"MIT"
],
"Indirect": true,
"Relationship": "indirect",
"AnalyzedBy": "pom"
},
{
"ID": "org.springdoc:springdoc-openapi-starter-common:2.2.0::dd01450f",
"Name": "org.springdoc:springdoc-openapi-starter-common",
"Identifier": {
"PURL": "pkg:maven/org.springdoc/springdoc-openapi-starter-common@2.2.0",
"UID": "3b31d38e8afe58d9"
},
"Version": "2.2.0",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"DependsOn": [
"io.swagger.core.v3:swagger-core-jakarta:2.2.15::d3e39944",
"org.springframework.boot:spring-boot-autoconfigure:3.4.7::1f788fe1"
],
"AnalyzedBy": "pom"
},
{
"ID": "org.springdoc:springdoc-openapi-starter-webmvc-api:2.2.0::3d452163",
"Name": "org.springdoc:springdoc-openapi-starter-webmvc-api",
"Identifier": {
"PURL": "pkg:maven/org.springdoc/springdoc-openapi-starter-webmvc-api@2.2.0",
"UID": "5233122362a375c3"
},
"Version": "2.2.0",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"DependsOn": [
"org.springdoc:springdoc-openapi-starter-common:2.2.0::dd01450f",
"org.springframework:spring-webmvc:6.2.8::473b6ed6"
],
"AnalyzedBy": "pom"
},
{
"ID": "org.springframework.boot:spring-boot:3.4.7::6b01387b",
"Name": "org.springframework.boot:spring-boot",
"Identifier": {
"PURL": "pkg:maven/org.springframework.boot/spring-boot@3.4.7",
"UID": "25ccac3ffae1075a"
},
"Version": "3.4.7",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"DependsOn": [
"org.springframework:spring-context:6.2.8::3e9114c1",
"org.springframework:spring-core:6.2.8::c84009b1"
],
"AnalyzedBy": "pom"
},
{
"ID": "org.springframework.boot:spring-boot-autoconfigure:3.4.7::1f788fe1",
"Name": "org.springframework.boot:spring-boot-autoconfigure",
"Identifier": {
"PURL": "pkg:maven/org.springframework.boot/spring-boot-autoconfigure@3.4.7",
"UID": "1247052cc7973689"
},
"Version": "3.4.7",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"DependsOn": [
"org.springframework.boot:spring-boot:3.4.7::6b01387b"
],
"AnalyzedBy": "pom"
},
{
"ID": "org.springframework.boot:spring-boot-starter:3.4.7::d78167c9",
"Name": "org.springframework.boot:spring-boot-starter",
"Identifier": {
"PURL": "pkg:maven/org.springframework.boot/spring-boot-starter@3.4.7",
"UID": "93c9403df8202de9"
},
"Version": "3.4.7",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"DependsOn": [
"jakarta.annotation:jakarta.annotation-api:2.1.1::78d77cec",
"org.springframework.boot:spring-boot-autoconfigure:3.4.7::1f788fe1",
"org.springframework.boot:spring-boot-starter-logging:3.4.7::9c41eb8a",
"org.springframework.boot:spring-boot:3.4.7::6b01387b",
"org.springframework:spring-core:6.2.8::c84009b1",
"org.yaml:snakeyaml:2.3::31fe2f51"
],
"AnalyzedBy": "pom"
},
{
"ID": "org.springframework.boot:spring-boot-starter-jdbc:3.4.7::cb3cc684",
"Name": "org.springframework.boot:spring-boot-starter-jdbc",
"Identifier": {
"PURL": "pkg:maven/org.springframework.boot/spring-boot-starter-jdbc@3.4.7",
"UID": "8b59e25acab1c2eb"
},
"Version": "3.4.7",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"DependsOn": [
"com.zaxxer:HikariCP:5.1.0::a9a0d6b5",
"org.springframework.boot:spring-boot-starter:3.4.7::d78167c9",
"org.springframework:spring-jdbc:6.2.8::aeddca19"
],
"AnalyzedBy": "pom"
},
{
"ID": "org.springframework.boot:spring-boot-starter-json:3.4.7::bbf1ecb0",
"Name": "org.springframework.boot:spring-boot-starter-json",
"Identifier": {
"PURL": "pkg:maven/org.springframework.boot/spring-boot-starter-json@3.4.7",
"UID": "f62bcf09ef8f11dc"
},
"Version": "3.4.7",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"DependsOn": [
"com.fasterxml.jackson.core:jackson-databind:2.18.0::8d1de767",
"com.fasterxml.jackson.datatype:jackson-datatype-jdk8:2.18.4::bf2df8d3",
"com.fasterxml.jackson.datatype:jackson-datatype-jsr310:2.18.0::edac1c1f",
"com.fasterxml.jackson.module:jackson-module-parameter-names:2.18.4::d55c13a2",
"org.springframework.boot:spring-boot-starter:3.4.7::d78167c9",
"org.springframework:spring-web:6.2.8::128e81f1"
],
"AnalyzedBy": "pom"
},
{
"ID": "org.springframework.boot:spring-boot-starter-logging:3.4.7::9c41eb8a",
"Name": "org.springframework.boot:spring-boot-starter-logging",
"Identifier": {
"PURL": "pkg:maven/org.springframework.boot/spring-boot-starter-logging@3.4.7",
"UID": "5065da3efd4fe5a2"
},
"Version": "3.4.7",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"DependsOn": [
"ch.qos.logback:logback-classic:1.5.25::9a88b3c1",
"org.apache.logging.log4j:log4j-to-slf4j:2.24.3::1db61e78",
"org.slf4j:jul-to-slf4j:2.0.17::66a480e2"
],
"AnalyzedBy": "pom"
},
{
"ID": "org.springframework.boot:spring-boot-starter-reactor-netty:3.4.7::bddb72b0",
"Name": "org.springframework.boot:spring-boot-starter-reactor-netty",
"Identifier": {
"PURL": "pkg:maven/org.springframework.boot/spring-boot-starter-reactor-netty@3.4.7",
"UID": "e9e3dcd3876a3903"
},
"Version": "3.4.7",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"DependsOn": [
"io.projectreactor.netty:reactor-netty-http:1.2.8::f16a65be"
],
"AnalyzedBy": "pom"
},
{
"ID": "org.springframework.boot:spring-boot-starter-tomcat:3.4.7::b503ba03",
"Name": "org.springframework.boot:spring-boot-starter-tomcat",
"Identifier": {
"PURL": "pkg:maven/org.springframework.boot/spring-boot-starter-tomcat@3.4.7",
"UID": "201a8e334c9e27c5"
},
"Version": "3.4.7",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"DependsOn": [
"jakarta.annotation:jakarta.annotation-api:2.1.1::78d77cec",
"org.apache.tomcat.embed:tomcat-embed-core:10.1.42::94b9dfaf",
"org.apache.tomcat.embed:tomcat-embed-el:10.1.42::31b6b2b6",
"org.apache.tomcat.embed:tomcat-embed-websocket:10.1.42::278b24e0"
],
"AnalyzedBy": "pom"
},
{
"ID": "org.springframework.data:spring-data-commons:3.4.7::ec027b09",
"Name": "org.springframework.data:spring-data-commons",
"Identifier": {
"PURL": "pkg:maven/org.springframework.data/spring-data-commons@3.4.7",
"UID": "79567ca37aa1156a"
},
"Version": "3.4.7",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"DependsOn": [
"org.slf4j:slf4j-api:2.0.17::b5c66eae",
"org.springframework:spring-beans:6.2.8::4f0cc2be",
"org.springframework:spring-core:6.2.8::c84009b1"
],
"AnalyzedBy": "pom"
},
{
"ID": "org.springframework.data:spring-data-jdbc:3.4.7::92f77e90",
"Name": "org.springframework.data:spring-data-jdbc",
"Identifier": {
"PURL": "pkg:maven/org.springframework.data/spring-data-jdbc@3.4.7",
"UID": "4d19ebf722eacb8f"
},
"Version": "3.4.7",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"DependsOn": [
"org.slf4j:slf4j-api:2.0.17::b5c66eae",
"org.springframework.data:spring-data-commons:3.4.7::ec027b09",
"org.springframework.data:spring-data-relational:3.4.7::9990afb7",
"org.springframework:spring-beans:6.2.8::4f0cc2be",
"org.springframework:spring-context:6.2.8::3e9114c1",
"org.springframework:spring-core:6.2.8::c84009b1",
"org.springframework:spring-jdbc:6.2.8::aeddca19",
"org.springframework:spring-tx:6.2.8::339a5784"
],
"AnalyzedBy": "pom"
},
{
"ID": "org.springframework.data:spring-data-jpa:3.4.7::8febd175",
"Name": "org.springframework.data:spring-data-jpa",
"Identifier": {
"PURL": "pkg:maven/org.springframework.data/spring-data-jpa@3.4.7",
"UID": "ac0cc2eddc8224bb"
},
"Version": "3.4.7",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"DependsOn": [
"jakarta.annotation:jakarta.annotation-api:2.1.1::78d77cec",
"org.antlr:antlr4-runtime:4.13.0::faab9f67",
"org.slf4j:slf4j-api:2.0.17::b5c66eae",
"org.springframework.data:spring-data-commons:3.4.7::ec027b09",
"org.springframework:spring-aop:6.2.8::921b84aa",
"org.springframework:spring-beans:6.2.8::4f0cc2be",
"org.springframework:spring-context:6.2.8::3e9114c1",
"org.springframework:spring-core:6.2.8::c84009b1",
"org.springframework:spring-orm:6.2.8::215bf882",
"org.springframework:spring-tx:6.2.8::339a5784"
],
"AnalyzedBy": "pom"
},
{
"ID": "org.springframework.data:spring-data-keyvalue:3.4.7::aa4bff12",
"Name": "org.springframework.data:spring-data-keyvalue",
"Identifier": {
"PURL": "pkg:maven/org.springframework.data/spring-data-keyvalue@3.4.7",
"UID": "39c25be4734ad276"
},
"Version": "3.4.7",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"DependsOn": [
"org.slf4j:slf4j-api:2.0.17::b5c66eae",
"org.springframework.data:spring-data-commons:3.4.7::ec027b09",
"org.springframework:spring-context:6.2.8::3e9114c1",
"org.springframework:spring-tx:6.2.8::339a5784"
],
"AnalyzedBy": "pom"
},
{
"ID": "org.springframework.data:spring-data-redis:3.4.7::8477445f",
"Name": "org.springframework.data:spring-data-redis",
"Identifier": {
"PURL": "pkg:maven/org.springframework.data/spring-data-redis@3.4.7",
"UID": "c4b1b8e4feb58909"
},
"Version": "3.4.7",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"DependsOn": [
"org.slf4j:slf4j-api:2.0.17::b5c66eae",
"org.springframework.data:spring-data-keyvalue:3.4.7::aa4bff12",
"org.springframework:spring-aop:6.2.8::921b84aa",
"org.springframework:spring-context-support:6.2.8::e9226ab0",
"org.springframework:spring-oxm:6.2.8::d1b26fc1",
"org.springframework:spring-tx:6.2.8::339a5784"
],
"AnalyzedBy": "pom"
},
{
"ID": "org.springframework.data:spring-data-relational:3.4.7::9990afb7",
"Name": "org.springframework.data:spring-data-relational",
"Identifier": {
"PURL": "pkg:maven/org.springframework.data/spring-data-relational@3.4.7",
"UID": "9846ff8697984609"
},
"Version": "3.4.7",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"DependsOn": [
"org.slf4j:slf4j-api:2.0.17::b5c66eae",
"org.springframework.data:spring-data-commons:3.4.7::ec027b09",
"org.springframework:spring-beans:6.2.8::4f0cc2be",
"org.springframework:spring-context:6.2.8::3e9114c1",
"org.springframework:spring-core:6.2.8::c84009b1",
"org.springframework:spring-tx:6.2.8::339a5784"
],
"AnalyzedBy": "pom"
},
{
"ID": "org.springframework:spring-aop:6.2.8::921b84aa",
"Name": "org.springframework:spring-aop",
"Identifier": {
"PURL": "pkg:maven/org.springframework/spring-aop@6.2.8",
"UID": "1700162b4a50abb"
},
"Version": "6.2.8",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"DependsOn": [
"org.springframework:spring-beans:6.2.8::4f0cc2be",
"org.springframework:spring-core:6.2.8::c84009b1"
],
"AnalyzedBy": "pom"
},
{
"ID": "org.springframework:spring-aspects:6.2.8::6333c39e",
"Name": "org.springframework:spring-aspects",
"Identifier": {
"PURL": "pkg:maven/org.springframework/spring-aspects@6.2.8",
"UID": "224b5478ce51aaf9"
},
"Version": "6.2.8",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"DependsOn": [
"org.aspectj:aspectjweaver:1.9.24::d6c75cb8"
],
"AnalyzedBy": "pom"
},
{
"ID": "org.springframework:spring-beans:6.2.8::4f0cc2be",
"Name": "org.springframework:spring-beans",
"Identifier": {
"PURL": "pkg:maven/org.springframework/spring-beans@6.2.8",
"UID": "948e26389ac34470"
},
"Version": "6.2.8",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"DependsOn": [
"org.springframework:spring-core:6.2.8::c84009b1"
],
"AnalyzedBy": "pom"
},
{
"ID": "org.springframework:spring-context-support:6.2.8::e9226ab0",
"Name": "org.springframework:spring-context-support",
"Identifier": {
"PURL": "pkg:maven/org.springframework/spring-context-support@6.2.8",
"UID": "2a93d36a412d7bd5"
},
"Version": "6.2.8",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"DependsOn": [
"org.springframework:spring-beans:6.2.8::4f0cc2be",
"org.springframework:spring-context:6.2.8::3e9114c1",
"org.springframework:spring-core:6.2.8::c84009b1"
],
"AnalyzedBy": "pom"
},
{
"ID": "org.springframework:spring-core:6.2.8::c84009b1",
"Name": "org.springframework:spring-core",
"Identifier": {
"PURL": "pkg:maven/org.springframework/spring-core@6.2.8",
"UID": "c8cc585e92c915c7"
},
"Version": "6.2.8",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"DependsOn": [
"org.springframework:spring-jcl:6.2.8::1aab28a9"
],
"AnalyzedBy": "pom"
},
{
"ID": "org.springframework:spring-expression:6.2.8::37dbd8aa",
"Name": "org.springframework:spring-expression",
"Identifier": {
"PURL": "pkg:maven/org.springframework/spring-expression@6.2.8",
"UID": "da128d5041f49e27"
},
"Version": "6.2.8",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"DependsOn": [
"org.springframework:spring-core:6.2.8::c84009b1"
],
"AnalyzedBy": "pom"
},
{
"ID": "org.springframework:spring-jcl:6.2.8::1aab28a9",
"Name": "org.springframework:spring-jcl",
"Identifier": {
"PURL": "pkg:maven/org.springframework/spring-jcl@6.2.8",
"UID": "8159b4b0522b833d"
},
"Version": "6.2.8",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"AnalyzedBy": "pom"
},
{
"ID": "org.springframework:spring-jdbc:6.2.8::aeddca19",
"Name": "org.springframework:spring-jdbc",
"Identifier": {
"PURL": "pkg:maven/org.springframework/spring-jdbc@6.2.8",
"UID": "2239fd7eba9b8e88"
},
"Version": "6.2.8",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"DependsOn": [
"org.springframework:spring-beans:6.2.8::4f0cc2be",
"org.springframework:spring-core:6.2.8::c84009b1",
"org.springframework:spring-tx:6.2.8::339a5784"
],
"AnalyzedBy": "pom"
},
{
"ID": "org.springframework:spring-messaging:6.2.8::d4e229a6",
"Name": "org.springframework:spring-messaging",
"Identifier": {
"PURL": "pkg:maven/org.springframework/spring-messaging@6.2.8",
"UID": "df47904433cba191"
},
"Version": "6.2.8",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"DependsOn": [
"org.springframework:spring-beans:6.2.8::4f0cc2be",
"org.springframework:spring-core:6.2.8::c84009b1"
],
"AnalyzedBy": "pom"
},
{
"ID": "org.springframework:spring-orm:6.2.8::215bf882",
"Name": "org.springframework:spring-orm",
"Identifier": {
"PURL": "pkg:maven/org.springframework/spring-orm@6.2.8",
"UID": "97ad7f98a07a44fa"
},
"Version": "6.2.8",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"DependsOn": [
"org.springframework:spring-beans:6.2.8::4f0cc2be",
"org.springframework:spring-core:6.2.8::c84009b1",
"org.springframework:spring-jdbc:6.2.8::aeddca19",
"org.springframework:spring-tx:6.2.8::339a5784"
],
"AnalyzedBy": "pom"
},
{
"ID": "org.springframework:spring-oxm:6.2.8::d1b26fc1",
"Name": "org.springframework:spring-oxm",
"Identifier": {
"PURL": "pkg:maven/org.springframework/spring-oxm@6.2.8",
"UID": "419eccab605ad038"
},
"Version": "6.2.8",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"DependsOn": [
"jakarta.xml.bind:jakarta.xml.bind-api:4.0.2::ff6b5be5",
"org.springframework:spring-beans:6.2.8::4f0cc2be",
"org.springframework:spring-core:6.2.8::c84009b1"
],
"AnalyzedBy": "pom"
},
{
"ID": "org.springframework:spring-tx:6.2.8::339a5784",
"Name": "org.springframework:spring-tx",
"Identifier": {
"PURL": "pkg:maven/org.springframework/spring-tx@6.2.8",
"UID": "d79582209b00d72"
},
"Version": "6.2.8",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"DependsOn": [
"org.springframework:spring-beans:6.2.8::4f0cc2be",
"org.springframework:spring-core:6.2.8::c84009b1"
],
"AnalyzedBy": "pom"
},
{
"ID": "org.springframework:spring-web:6.2.8::128e81f1",
"Name": "org.springframework:spring-web",
"Identifier": {
"PURL": "pkg:maven/org.springframework/spring-web@6.2.8",
"UID": "4d55354262658644"
},
"Version": "6.2.8",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"DependsOn": [
"io.micrometer:micrometer-observation:1.14.8::404e2f37",
"org.springframework:spring-beans:6.2.8::4f0cc2be",
"org.springframework:spring-core:6.2.8::c84009b1"
],
"AnalyzedBy": "pom"
},
{
"ID": "org.springframework:spring-webflux:6.2.8::a70f6124",
"Name": "org.springframework:spring-webflux",
"Identifier": {
"PURL": "pkg:maven/org.springframework/spring-webflux@6.2.8",
"UID": "f3e1ab6b3334f2fc"
},
"Version": "6.2.8",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"DependsOn": [
"io.projectreactor:reactor-core:3.7.7::e96da611",
"org.springframework:spring-beans:6.2.8::4f0cc2be",
"org.springframework:spring-core:6.2.8::c84009b1",
"org.springframework:spring-web:6.2.8::128e81f1"
],
"AnalyzedBy": "pom"
},
{
"ID": "org.springframework:spring-webmvc:6.2.8::473b6ed6",
"Name": "org.springframework:spring-webmvc",
"Identifier": {
"PURL": "pkg:maven/org.springframework/spring-webmvc@6.2.8",
"UID": "7ee5207205cab21c"
},
"Version": "6.2.8",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"DependsOn": [
"org.springframework:spring-aop:6.2.8::921b84aa",
"org.springframework:spring-beans:6.2.8::4f0cc2be",
"org.springframework:spring-context:6.2.8::3e9114c1",
"org.springframework:spring-core:6.2.8::c84009b1",
"org.springframework:spring-expression:6.2.8::37dbd8aa",
"org.springframework:spring-web:6.2.8::128e81f1"
],
"AnalyzedBy": "pom"
},
{
"ID": "org.springframework:spring-websocket:6.2.8::9b82ccd7",
"Name": "org.springframework:spring-websocket",
"Identifier": {
"PURL": "pkg:maven/org.springframework/spring-websocket@6.2.8",
"UID": "4c1b2d40d30968fe"
},
"Version": "6.2.8",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"DependsOn": [
"org.springframework:spring-context:6.2.8::3e9114c1",
"org.springframework:spring-core:6.2.8::c84009b1",
"org.springframework:spring-web:6.2.8::128e81f1"
],
"AnalyzedBy": "pom"
},
{
"ID": "org.webjars:swagger-ui:5.2.0::7ae134a6",
"Name": "org.webjars:swagger-ui",
"Identifier": {
"PURL": "pkg:maven/org.webjars/swagger-ui@5.2.0",
"UID": "15cbef28a5704df6"
},
"Version": "5.2.0",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"AnalyzedBy": "pom"
},
{
"ID": "org.yaml:snakeyaml:2.3::31fe2f51",
"Name": "org.yaml:snakeyaml",
"Identifier": {
"PURL": "pkg:maven/org.yaml/snakeyaml@2.3",
"UID": "8c5ea61eafe8838f"
},
"Version": "2.3",
"Licenses": [
"Apache-2.0"
],
"Indirect": true,
"Relationship": "indirect",
"AnalyzedBy": "pom"
}
],
"Vulnerabilities": [
{
"VulnerabilityID": "CVE-2025-67735",
"VendorIDs": [
"GHSA-84h7-rjj3-6jx4"
],
"PkgID": "io.netty:netty-codec-http:4.1.126.Final::f89a729a",
"PkgName": "io.netty:netty-codec-http",
"PkgIdentifier": {
"PURL": "pkg:maven/io.netty/netty-codec-http@4.1.126.Final",
"UID": "62c650d5287cd9b1"
},
"InstalledVersion": "4.1.126.Final",
"FixedVersion": "4.2.8.Final, 4.1.129.Final",
"Status": "fixed",
"SeveritySource": "ghsa",
"PrimaryURL": "https://avd.aquasec.com/nvd/cve-2025-67735",
"DataSource": {
"ID": "ghsa",
"Name": "GitHub Security Advisory Maven",
"URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Amaven"
},
"Fingerprint": "sha256:693a4e7593bdf4d1cc53bf379452bd680512a5c7f0dc8c47b6975a444f026437",
"Title": "netty-codec-http: Netty (netty-codec-http): Request Smuggling via CRLF Injection",
"Description": "Netty is an asynchronous, event-driven network application framework. In versions prior to 4.1.129.Final and 4.2.8.Final, the `io.netty.handler.codec.http.HttpRequestEncoder` has a CRLF injection with the request URI when constructing a request. This leads to request smuggling when `HttpRequestEncoder` is used without proper sanitization of the URI. Any application / framework using `HttpRequestEncoder` can be subject to be abused to perform request smuggling using CRLF injection. Versions 4.1.129.Final and 4.2.8.Final fix the issue.",
"Severity": "MEDIUM",
"CweIDs": [
"CWE-93"
],
"VendorSeverity": {
"ghsa": 2,
"redhat": 2
},
"CVSS": {
"ghsa": {
"V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N",
"V3Score": 6.5
},
"redhat": {
"V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N",
"V3Score": 6.5
}
},
"References": [
"https://access.redhat.com/security/cve/CVE-2025-67735",
"https://github.com/netty/netty",
"https://github.com/netty/netty/commit/77e81f1e5944d98b3acf887d3aa443b252752e94",
"https://github.com/netty/netty/security/advisories/GHSA-84h7-rjj3-6jx4",
"https://nvd.nist.gov/vuln/detail/CVE-2025-67735",
"https://www.cve.org/CVERecord?id=CVE-2025-67735"
],
"PublishedDate": "2025-12-16T01:15:52.367Z",
"LastModifiedDate": "2026-01-02T18:50:23.313Z"
},
{
"VulnerabilityID": "CVE-2025-48989",
"VendorIDs": [
"GHSA-gqp3-2cvr-x8m3"
],
"PkgID": "org.apache.tomcat.embed:tomcat-embed-core:10.1.42::94b9dfaf",
"PkgName": "org.apache.tomcat.embed:tomcat-embed-core",
"PkgIdentifier": {
"PURL": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.42",
"UID": "8e82c8166caae753"
},
"InstalledVersion": "10.1.42",
"FixedVersion": "11.0.10, 10.1.44, 9.0.108",
"Status": "fixed",
"SeveritySource": "ghsa",
"PrimaryURL": "https://avd.aquasec.com/nvd/cve-2025-48989",
"DataSource": {
"ID": "ghsa",
"Name": "GitHub Security Advisory Maven",
"URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Amaven"
},
"Fingerprint": "sha256:f8831d7c568a6c5e847df2c62d9b231e065cd6e2b751ba3548dea71e14cef500",
"Title": "tomcat: http/2 \"MadeYouReset\" DoS attack through HTTP/2 control frames",
"Description": "Improper Resource Shutdown or Release vulnerability in Apache Tomcat made Tomcat vulnerable to the made you reset attack.\n\nThis issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.9, from 10.1.0-M1 through 10.1.43 and from 9.0.0.M1 through 9.0.107. Older, EOL versions may also be affected.\n\nUsers are recommended to upgrade to one of versions 11.0.10, 10.1.44 or 9.0.108 which fix the issue.",
"Severity": "HIGH",
"CweIDs": [
"CWE-404"
],
"VendorSeverity": {
"alma": 3,
"amazon": 3,
"bitnami": 3,
"ghsa": 3,
"oracle-oval": 3,
"redhat": 3,
"rocky": 3,
"ubuntu": 2
},
"CVSS": {
"bitnami": {
"V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"V3Score": 7.5
},
"ghsa": {
"V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"V3Score": 7.5
},
"redhat": {
"V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"V3Score": 7.5
}
},
"References": [
"http://www.openwall.com/lists/oss-security/2025/08/13/2",
"https://access.redhat.com/errata/RHSA-2025:14178",
"https://access.redhat.com/security/cve/CVE-2025-48989",
"https://bugzilla.redhat.com/2373015",
"https://bugzilla.redhat.com/2373018",
"https://bugzilla.redhat.com/2373020",
"https://bugzilla.redhat.com/2373309",
"https://bugzilla.redhat.com/2379374",
"https://bugzilla.redhat.com/2379382",
"https://bugzilla.redhat.com/2379386",
"https://bugzilla.redhat.com/show_bug.cgi?id=2373015",
"https://bugzilla.redhat.com/show_bug.cgi?id=2373018",
"https://bugzilla.redhat.com/show_bug.cgi?id=2373020",
"https://bugzilla.redhat.com/show_bug.cgi?id=2373309",
"https://bugzilla.redhat.com/show_bug.cgi?id=2379374",
"https://bugzilla.redhat.com/show_bug.cgi?id=2379382",
"https://bugzilla.redhat.com/show_bug.cgi?id=2379386",
"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-48976",
"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-48988",
"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-48989",
"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-49125",
"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-52434",
"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-52520",
"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-53506",
"https://errata.almalinux.org/10/ALSA-2025-14178.html",
"https://errata.rockylinux.org/RLSA-2025:14181",
"https://github.com/apache/tomcat",
"https://github.com/apache/tomcat/commit/73c04a10395774bda71a0b37802cf983662ce255",
"https://github.com/apache/tomcat/commit/73c04a10395774bda71a0b37802cf983662ce255 (10.1.44)",
"https://github.com/apache/tomcat/commit/f362c8eb3b8ec5b7f312f7f5610731c0fb299a06",
"https://github.com/apache/tomcat/commit/f362c8eb3b8ec5b7f312f7f5610731c0fb299a06 (11.0.10)",
"https://github.com/apache/tomcat/commit/f36b8a4eea4ce8a0bc035079e1d259d29f5eb7bf",
"https://github.com/apache/tomcat/commit/f36b8a4eea4ce8a0bc035079e1d259d29f5eb7bf (9.0.108)",
"https://kb.cert.org/vuls/id/767506",
"https://linux.oracle.com/cve/CVE-2025-48989.html",
"https://linux.oracle.com/errata/ELSA-2025-14181.html",
"https://lists.apache.org/thread/9ydfg0xr0tchmglcprhxgwhj0hfwxlyf",
"https://nvd.nist.gov/vuln/detail/CVE-2025-48989",
"https://tomcat.apache.org/security-10.html",
"https://tomcat.apache.org/security-11.html",
"https://tomcat.apache.org/security-9.html",
"https://www.cve.org/CVERecord?id=CVE-2025-48989",
"https://www.kb.cert.org/vuls/id/767506"
],
"PublishedDate": "2025-08-13T13:15:34.153Z",
"LastModifiedDate": "2025-11-04T22:16:17.987Z"
},
{
"VulnerabilityID": "CVE-2025-55752",
"VendorIDs": [
"GHSA-wmwf-9ccg-fff5"
],
"PkgID": "org.apache.tomcat.embed:tomcat-embed-core:10.1.42::94b9dfaf",
"PkgName": "org.apache.tomcat.embed:tomcat-embed-core",
"PkgIdentifier": {
"PURL": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.42",
"UID": "8e82c8166caae753"
},
"InstalledVersion": "10.1.42",
"FixedVersion": "11.0.11, 10.1.45, 9.0.109",
"Status": "fixed",
"SeveritySource": "ghsa",
"PrimaryURL": "https://avd.aquasec.com/nvd/cve-2025-55752",
"DataSource": {
"ID": "ghsa",
"Name": "GitHub Security Advisory Maven",
"URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Amaven"
},
"Fingerprint": "sha256:53f3b87e9894fd85ceeb92de4cea6c29515da48b712a42c6738088cfbe8d9a58",
"Title": "tomcat: org.apache.tomcat/tomcat-catalina: Apache Tomcat: Directory traversal via rewrite with possible RCE",
"Description": "Relative Path Traversal vulnerability in Apache Tomcat.\n\nThe fix for bug 60013 introduced a regression where the rewritten URL was normalized before it was decoded. This introduced the possibility that, for rewrite rules that rewrite query parameters to the URL, an attacker could manipulate the request URI to bypass security constraints including the protection for /WEB-INF/ and /META-INF/. If PUT requests were also enabled then malicious files could be uploaded leading to remote code execution. PUT requests are normally limited to trusted users and it is considered unlikely that PUT requests would be enabled in conjunction with a rewrite that manipulated the URI.\n\n\n\nThis issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.10, from 10.1.0-M1 through 10.1.44, from 9.0.0.M11 through 9.0.108.\n\nThe following versions were EOL at the time the CVE was created but are \nknown to be affected: 8.5.6 though 8.5.100. Other, older, EOL versions may also be affected.\nUsers are recommended to upgrade to version 11.0.11 or later, 10.1.45 or later or 9.0.109 or later, which fix the issue.",
"Severity": "HIGH",
"CweIDs": [
"CWE-23"
],
"VendorSeverity": {
"alma": 3,
"amazon": 3,
"bitnami": 3,
"ghsa": 3,
"oracle-oval": 3,
"redhat": 3,
"rocky": 3
},
"CVSS": {
"bitnami": {
"V3Vector": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"V3Score": 7.5
},
"ghsa": {
"V3Vector": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"V40Vector": "CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
"V3Score": 7.5,
"V40Score": 7.7
},
"redhat": {
"V3Vector": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"V3Score": 7.5
}
},
"References": [
"http://www.openwall.com/lists/oss-security/2025/10/27/4",
"https://access.redhat.com/errata/RHSA-2025:23052",
"https://access.redhat.com/security/cve/CVE-2025-55752",
"https://bugzilla.redhat.com/2362782",
"https://bugzilla.redhat.com/2406591",
"https://bugzilla.redhat.com/show_bug.cgi?id=2362782",
"https://bugzilla.redhat.com/show_bug.cgi?id=2406591",
"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-31651",
"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-55752",
"https://errata.almalinux.org/10/ALSA-2025-23052.html",
"https://errata.rockylinux.org/RLSA-2025:23049",
"https://github.com/apache/tomcat",
"https://github.com/apache/tomcat/commit/130d36d8492ef9e4eb22952c17c92423cb35fd06",
"https://github.com/apache/tomcat/commit/b5042622b8b78340ae65403c55dcb9c7416924df",
"https://github.com/apache/tomcat/commit/fec06c610ed7466b401e29cc567a58aee5ed826a",
"https://linux.oracle.com/cve/CVE-2025-55752.html",
"https://linux.oracle.com/errata/ELSA-2025-23052.html",
"https://lists.apache.org/thread/n05kjcwyj1s45ovs8ll1qrrojhfb1tog",
"https://nvd.nist.gov/vuln/detail/CVE-2025-55752",
"https://tomcat.apache.org/security-10.html#Fixed_in_Apache_Tomcat_10.1.45",
"https://tomcat.apache.org/security-11.html#Fixed_in_Apache_Tomcat_11.0.11",
"https://tomcat.apache.org/security-9.html#Fixed_in_Apache_Tomcat_9.0.109",
"https://www.cve.org/CVERecord?id=CVE-2025-55752",
"https://www.vicarius.io/vsociety/posts/cve-2025-55752-detect-apache-tomcat-vulnerability",
"https://www.vicarius.io/vsociety/posts/cve-2025-55752-mitigate-apache-tomcat-vulnerability"
],
"PublishedDate": "2025-10-27T18:15:42.283Z",
"LastModifiedDate": "2025-11-14T17:44:41.047Z"
},
{
"VulnerabilityID": "CVE-2025-66614",
"VendorIDs": [
"GHSA-fpj8-gq4v-p354"
],
"PkgID": "org.apache.tomcat.embed:tomcat-embed-core:10.1.42::94b9dfaf",
"PkgName": "org.apache.tomcat.embed:tomcat-embed-core",
"PkgIdentifier": {
"PURL": "pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@10.1.42",
"UID": "8e82c8166caae753"
},
"InstalledVersion": "10.1.42",
"FixedVersion": "11.0.14, 10.1.49, 9.0.112",
"Status": "fixed",
"SeveritySource": "ghsa",
"PrimaryURL": "https://avd.aquasec.com/nvd/cve-2025-66614",
"DataSource": {
"ID": "ghsa",
"Name": "GitHub Security Advisory Maven",
"URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Amaven"
},
"Fingerprint": "sha256:6b031e8fc63272fc2ef60c6365c76ec80b034d45ab5776e31fd71d1a9e5d7b58",
"Title": "tomcat: Client certificate verification bypass due to virtual host mapping",
"Description": "Improper Input Validation vulnerability.\n\nThis issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.14, from 10.1.0-M1 through 10.1.49, from 9.0.0-M1 through 9.0.112.\n\nThe following versions were EOL at the time the CVE was created but are \nknown to be affected: 8.5.0 through 8.5.100. Older EOL versions are not affected.\nTomcat did not validate that the host name provided via the SNI \nextension was the same as the host name provided in the HTTP host header \nfield. If Tomcat was configured with more than one virtual host and the \nTLS configuration for one of those hosts did not require client \ncertificate authentication but another one did, it was possible for a \nclient to bypass the client certificate authentication by sending \ndifferent host names in the SNI extension and the HTTP host header field.\n\n\n\nThe vulnerability only applies if client certificate authentication is \nonly enforced at the Connector. It does not apply if client certificate \nauthentication is enforced at the web application.\n\n\nUsers are recommended to upgrade to version 11.0.15 or later, 10.1.50 or later or 9.0.113 or later, which fix the issue.",
"Severity": "MEDIUM",
"CweIDs": [
"CWE-20"
],
"VendorSeverity": {
"ghsa": 2,
"redhat": 2
},
"CVSS": {
"ghsa": {
"V40Vector": "CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N",
"V40Score": 6.3
},
"redhat": {
"V3Vector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N",
"V3Score": 5.3
}
},
"References": [
"https://access.redhat.com/security/cve/CVE-2025-66614",
"https://github.com/apache/tomcat",
"https://github.com/apache/tomcat/commit/152c14885d45f5e0a8b59bd9f93c289cfe20ce30",
"https://github.com/apache/tomcat/commit/258a591b61f8cf5c22109e21e5a2a38b63454fd2",
"https://github.com/apache/tomcat/commit/5053fa82a1b2b52756810601227984a8b71888a4",
"https://github.com/apache/tomcat/commit/9276b5e783c8cd5b3fe2bb716306b65004bdd940",
"https://github.com/apache/tomcat/commit/972f9a5e2a07674d92610c478aac1b205d60724e",
"https://github.com/apache/tomcat/commit/a4aa74232e826028cd2f7ba0445caf8a8b52c509",
"https://lists.apache.org/thread/vw6lxtlh2qbqwpb61wd3sv1flm2nttw7",
"https://nvd.nist.gov/vuln/detail/CVE-2025-66614",
"https://tomcat.apache.org/security-10.html",
"https://tomcat.apache.org/security-11.html",
"https://tomcat.apache.org/security-9.html",
"https://www.cve.org/CVERecord?id=CVE-2025-66614"
],
"PublishedDate": "2026-02-17T19:21:55.31Z",
"LastModifiedDate": "2026-02-18T17:51:53.51Z"
},
{
"VulnerabilityID": "CVE-2025-41249",
"VendorIDs": [
"GHSA-jmp9-x22r-554x"
],
"PkgID": "org.springframework:spring-core:6.2.8::c84009b1",
"PkgName": "org.springframework:spring-core",
"PkgIdentifier": {
"PURL": "pkg:maven/org.springframework/spring-core@6.2.8",
"UID": "c8cc585e92c915c7"
},
"InstalledVersion": "6.2.8",
"FixedVersion": "6.2.11",
"Status": "fixed",
"SeveritySource": "ghsa",
"PrimaryURL": "https://avd.aquasec.com/nvd/cve-2025-41249",
"DataSource": {
"ID": "ghsa",
"Name": "GitHub Security Advisory Maven",
"URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Amaven"
},
"Fingerprint": "sha256:13d21b1caf398f66cd7517e31ad038d6538a38ee73b3fb41625861af2eea14a6",
"Title": "org.springframework/spring-core: Spring Framework Annotation Detection Vulnerability",
"Description": "The Spring Framework annotation detection mechanism may not correctly resolve annotations on methods within type hierarchies with a parameterized super type with unbounded generics. This can be an issue if such annotations are used for authorization decisions.\n\nYour application may be affected by this if you are using Spring Security's @EnableMethodSecurity\u00a0feature.\n\nYou are not affected by this if you are not using @EnableMethodSecurity\u00a0or if you do not use security annotations on methods in generic superclasses or generic interfaces.\n\nThis CVE is published in conjunction with CVE-2025-41248 https://spring.io/security/cve-2025-41248 .",
"Severity": "HIGH",
"CweIDs": [
"CWE-285"
],
"VendorSeverity": {
"ghsa": 3,
"redhat": 3
},
"CVSS": {
"ghsa": {
"V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"V3Score": 7.5
},
"redhat": {
"V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"V3Score": 7.5
}
},
"References": [
"https://access.redhat.com/security/cve/CVE-2025-41249",
"https://github.com/spring-projects/spring-framework",
"https://github.com/spring-projects/spring-framework/commit/6d710d482a6785b069e35022e81758953afc21ff",
"https://github.com/spring-projects/spring-framework/issues/35342",
"https://github.com/spring-projects/spring-framework/releases/tag/v6.2.11",
"https://nvd.nist.gov/vuln/detail/CVE-2025-41249",
"https://spring.io/security/cve-2025-41249",
"https://www.cve.org/CVERecord?id=CVE-2025-41249"
],
"PublishedDate": "2025-09-16T11:15:30.887Z",
"LastModifiedDate": "2025-09-16T20:15:35.127Z"
},
{
"VulnerabilityID": "CVE-2025-41242",
"VendorIDs": [
"GHSA-r936-gwx5-v52f"
],
"PkgID": "org.springframework:spring-webmvc:6.2.8::473b6ed6",
"PkgName": "org.springframework:spring-webmvc",
"PkgIdentifier": {
"PURL": "pkg:maven/org.springframework/spring-webmvc@6.2.8",
"UID": "7ee5207205cab21c"
},
"InstalledVersion": "6.2.8",
"FixedVersion": "6.2.10",
"Status": "fixed",
"SeveritySource": "ghsa",
"PrimaryURL": "https://avd.aquasec.com/nvd/cve-2025-41242",
"DataSource": {
"ID": "ghsa",
"Name": "GitHub Security Advisory Maven",
"URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Amaven"
},
"Fingerprint": "sha256:4667354b18960cdaa9e30d3e4fa7fc93c28e9370d3a44cd9ea0d3f1f32b8a568",
"Title": "org.springframework/spring-webmvc: Spring Framework MVC path traversal vulnerability",
"Description": "Spring Framework MVC applications can be vulnerable to a \u201cPath Traversal Vulnerability\u201d when deployed on a non-compliant Servlet container.\n\nAn application can be vulnerable when all the following are true:\n\n * the application is deployed as a WAR or with an embedded Servlet container\n * the Servlet container does not reject suspicious sequences https://jakarta.ee/specifications/servlet/6.1/jakarta-servlet-spec-6.1.html#uri-path-canonicalization \n * the application serves static resources https://docs.spring.io/spring-framework/reference/web/webmvc/mvc-config/static-resources.html#page-title \u00a0with Spring resource handling\n\n\nWe have verified that applications deployed on Apache Tomcat or Eclipse Jetty are not vulnerable, as long as default security features are not disabled in the configuration. Because we cannot check exploits against all Servlet containers and configuration variants, we strongly recommend upgrading your application.",
"Severity": "MEDIUM",
"CweIDs": [
"CWE-22"
],
"VendorSeverity": {
"ghsa": 2,
"redhat": 2
},
"CVSS": {
"ghsa": {
"V3Vector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"V3Score": 5.9
},
"redhat": {
"V3Vector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"V3Score": 5.9
}
},
"References": [
"http://spring.io/security/cve-2025-41242",
"https://access.redhat.com/security/cve/CVE-2025-41242",
"https://docs.spring.io/spring-framework/reference/web/webmvc/mvc-config/static-resources.html#page-title",
"https://github.com/spring-projects/spring-framework",
"https://jakarta.ee/specifications/servlet/6.1/jakarta-servlet-spec-6.1.html#uri-path-canonicalization",
"https://nvd.nist.gov/vuln/detail/CVE-2025-41242",
"https://www.cve.org/CVERecord?id=CVE-2025-41242"
],
"PublishedDate": "2025-08-18T09:15:28.637Z",
"LastModifiedDate": "2025-08-25T19:15:29.667Z"
},
{
"VulnerabilityID": "CVE-2025-41254",
"VendorIDs": [
"GHSA-7fch-4f2f-jcgm"
],
"PkgID": "org.springframework:spring-websocket:6.2.8::9b82ccd7",
"PkgName": "org.springframework:spring-websocket",
"PkgIdentifier": {
"PURL": "pkg:maven/org.springframework/spring-websocket@6.2.8",
"UID": "4c1b2d40d30968fe"
},
"InstalledVersion": "6.2.8",
"FixedVersion": "6.2.12",
"Status": "fixed",
"SeveritySource": "ghsa",
"PrimaryURL": "https://avd.aquasec.com/nvd/cve-2025-41254",
"DataSource": {
"ID": "ghsa",
"Name": "GitHub Security Advisory Maven",
"URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Amaven"
},
"Fingerprint": "sha256:37e314e360cc4a35cdeb4ed422aeb9ac10fe79c464f1b651e0d7c1679b25be50",
"Title": "org.springframework/spring-core: Spring Framework STOMP CSRF Vulnerability",
"Description": "STOMP over WebSocket applications may be vulnerable to a security bypass that allows an attacker to send unauthorized messages.\n\nAffected Spring Products and VersionsSpring Framework:\n\n * 6.2.0 - 6.2.11\n * 6.1.0 - 6.1.23\n * 6.0.x - 6.0.29\n * 5.3.0 - 5.3.45\n * Older, unsupported versions are also affected.\n\n\nMitigationUsers of affected versions should upgrade to the corresponding fixed version.\n\nAffected version(s)Fix versionAvailability6.2.x6.2.12OSS6.1.x6.1.24 Commercial https://enterprise.spring.io/ 6.0.xN/A Out of support https://spring.io/projects/spring-framework#support 5.3.x5.3.46 Commercial https://enterprise.spring.io/ No further mitigation steps are necessary.\n\nCreditThis vulnerability was discovered and responsibly reported by Jannis Kaiser.",
"Severity": "MEDIUM",
"CweIDs": [
"CWE-352"
],
"VendorSeverity": {
"ghsa": 2,
"redhat": 2
},
"CVSS": {
"ghsa": {
"V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N",
"V3Score": 4.3
},
"redhat": {
"V3Vector": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N",
"V3Score": 4.3
}
},
"References": [
"https://access.redhat.com/security/cve/CVE-2025-41254",
"https://github.com/spring-projects/spring-framework",
"https://nvd.nist.gov/vuln-metrics/cvss/v3-calculator?vector=AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N&version=3.1",
"https://nvd.nist.gov/vuln/detail/CVE-2025-41254",
"https://spring.io/security/cve/2025-41254",
"https://www.cve.org/CVERecord?id=CVE-2025-41254"
],
"PublishedDate": "2025-10-16T15:15:33.417Z",
"LastModifiedDate": "2025-10-16T15:28:59.61Z"
}
]
},
{
"Target": "Dockerfile",
"Class": "config",
"Type": "dockerfile",
"MisconfSummary": {
"Successes": 23,
"Failures": 1
},
"Misconfigurations": [
{
"Type": "Dockerfile Security Check",
"ID": "DS-0002",
"Title": "Image user should not be 'root'",
"Description": "Running containers with 'root' user can lead to a container escape situation. It is a best practice to run containers as non-root users, which can be done by adding a 'USER' statement to the Dockerfile.",
"Message": "Specify at least 1 USER command in Dockerfile with non-root user as argument",
"Namespace": "builtin.dockerfile.DS002",
"Query": "data.builtin.dockerfile.DS002.deny",
"Resolution": "Add 'USER <non root user name>' line to the Dockerfile",
"Severity": "HIGH",
"PrimaryURL": "https://avd.aquasec.com/misconfig/ds-0002",
"References": [
"https://docs.docker.com/develop/develop-images/dockerfile_best-practices/",
"https://avd.aquasec.com/misconfig/ds-0002"
],
"Status": "FAIL",
"CauseMetadata": {
"Provider": "Dockerfile",
"Service": "general"
}
}
]
},
{
"Target": ".env",
"Class": "secret",
"Secrets": [
{
"RuleID": "aws-access-key-id",
"Category": "AWS",
"Severity": "CRITICAL",
"Title": "AWS Access Key ID",
"StartLine": 16,
"EndLine": 16,
"Code": {
"Lines": [
{
"Number": 14,
"Content": "MYSQL_PASSWORD=root",
"IsCause": false,
"Annotation": "",
"Truncated": false,
"Highlighted": "MYSQL_PASSWORD=root",
"FirstCause": false,
"LastCause": false
},
{
"Number": 15,
"Content": "MYSQL_URL=mysql://192.168.0.90:3306",
"IsCause": false,
"Annotation": "",
"Truncated": false,
"Highlighted": "MYSQL_URL=mysql://192.168.0.90:3306",
"FirstCause": false,
"LastCause": false
},
{
"Number": 16,
"Content": "# S3_ACCESS_ID=********************",
"IsCause": true,
"Annotation": "",
"Truncated": false,
"Highlighted": "# S3_ACCESS_ID=********************",
"FirstCause": true,
"LastCause": true
},
{
"Number": 17,
"Content": "# S3_ACCESS_SECRET_KEY=sa/M2BUfvomc+rqUm9sjbRhjdY8nMT9dHlLT4rkN",
"IsCause": false,
"Annotation": "",
"Truncated": false,
"Highlighted": "# S3_ACCESS_SECRET_KEY=sa/M2BUfvomc+rqUm9sjbRhjdY8nMT9dHlLT4rkN",
"FirstCause": false,
"LastCause": false
}
]
},
"Match": "# S3_ACCESS_ID=********************",
"Offset": 579
}
]
},
{
"Target": "security-reports/gitleaks-report.json",
"Class": "secret",
"Secrets": [
{
"RuleID": "aws-access-key-id",
"Category": "AWS",
"Severity": "CRITICAL",
"Title": "AWS Access Key ID",
"StartLine": 93,
"EndLine": 93,
"Code": {
"Lines": [
{
"Number": 91,
"Content": " \"StartColumn\": 17,",
"IsCause": false,
"Annotation": "",
"Truncated": false,
"Highlighted": " \"StartColumn\": 17,",
"FirstCause": false,
"LastCause": false
},
{
"Number": 92,
"Content": " \"EndColumn\": 36,",
"IsCause": false,
"Annotation": "",
"Truncated": false,
"Highlighted": " \"EndColumn\": 36,",
"FirstCause": false,
"LastCause": false
},
{
"Number": 93,
"Content": " \"Match\": \"********************\",",
"IsCause": true,
"Annotation": "",
"Truncated": false,
"Highlighted": " \"Match\": \"********************\",",
"FirstCause": true,
"LastCause": true
},
{
"Number": 94,
"Content": " \"Secret\": \"********************\",",
"IsCause": false,
"Annotation": "",
"Truncated": false,
"Highlighted": " \"Secret\": \"********************\",",
"FirstCause": false,
"LastCause": false
}
]
},
"Match": " \"Match\": \"********************\",",
"Offset": 4017
},
{
"RuleID": "aws-access-key-id",
"Category": "AWS",
"Severity": "CRITICAL",
"Title": "AWS Access Key ID",
"StartLine": 94,
"EndLine": 94,
"Code": {
"Lines": [
{
"Number": 92,
"Content": " \"EndColumn\": 36,",
"IsCause": false,
"Annotation": "",
"Truncated": false,
"Highlighted": " \"EndColumn\": 36,",
"FirstCause": false,
"LastCause": false
},
{
"Number": 93,
"Content": " \"Match\": \"********************\",",
"IsCause": false,
"Annotation": "",
"Truncated": false,
"Highlighted": " \"Match\": \"********************\",",
"FirstCause": false,
"LastCause": false
},
{
"Number": 94,
"Content": " \"Secret\": \"********************\",",
"IsCause": true,
"Annotation": "",
"Truncated": false,
"Highlighted": " \"Secret\": \"********************\",",
"FirstCause": true,
"LastCause": true
},
{
"Number": 95,
"Content": " \"File\": \".env\",",
"IsCause": false,
"Annotation": "",
"Truncated": false,
"Highlighted": " \"File\": \".env\",",
"FirstCause": false,
"LastCause": false
}
]
},
"Match": " \"Secret\": \"********************\",",
"Offset": 4053
},
{
"RuleID": "aws-access-key-id",
"Category": "AWS",
"Severity": "CRITICAL",
"Title": "AWS Access Key ID",
"StartLine": 198,
"EndLine": 198,
"Code": {
"Lines": [
{
"Number": 196,
"Content": " \"StartColumn\": 15,",
"IsCause": false,
"Annotation": "",
"Truncated": false,
"Highlighted": " \"StartColumn\": 15,",
"FirstCause": false,
"LastCause": false
},
{
"Number": 197,
"Content": " \"EndColumn\": 34,",
"IsCause": false,
"Annotation": "",
"Truncated": false,
"Highlighted": " \"EndColumn\": 34,",
"FirstCause": false,
"LastCause": false
},
{
"Number": 198,
"Content": " \"Match\": \"********************\",",
"IsCause": true,
"Annotation": "",
"Truncated": false,
"Highlighted": " \"Match\": \"********************\",",
"FirstCause": true,
"LastCause": true
},
{
"Number": 199,
"Content": " \"Secret\": \"********************\",",
"IsCause": false,
"Annotation": "",
"Truncated": false,
"Highlighted": " \"Secret\": \"********************\",",
"FirstCause": false,
"LastCause": false
}
]
},
"Match": " \"Match\": \"********************\",",
"Offset": 8337
},
{
"RuleID": "aws-access-key-id",
"Category": "AWS",
"Severity": "CRITICAL",
"Title": "AWS Access Key ID",
"StartLine": 199,
"EndLine": 199,
"Code": {
"Lines": [
{
"Number": 197,
"Content": " \"EndColumn\": 34,",
"IsCause": false,
"Annotation": "",
"Truncated": false,
"Highlighted": " \"EndColumn\": 34,",
"FirstCause": false,
"LastCause": false
},
{
"Number": 198,
"Content": " \"Match\": \"********************\",",
"IsCause": false,
"Annotation": "",
"Truncated": false,
"Highlighted": " \"Match\": \"********************\",",
"FirstCause": false,
"LastCause": false
},
{
"Number": 199,
"Content": " \"Secret\": \"********************\",",
"IsCause": true,
"Annotation": "",
"Truncated": false,
"Highlighted": " \"Secret\": \"********************\",",
"FirstCause": true,
"LastCause": true
},
{
"Number": 200,
"Content": " \"File\": \".env\",",
"IsCause": false,
"Annotation": "",
"Truncated": false,
"Highlighted": " \"File\": \".env\",",
"FirstCause": false,
"LastCause": false
}
]
},
"Match": " \"Secret\": \"********************\",",
"Offset": 8373
}
]
}
]
}