OWASP Foundation CycloneDX Maven plugin 2.7.10 1cc7f6a0382f8bb2f758d6a6ea401d1b a4297947a1f2d7d453105db542651614bbd37f38 bd0fdd8f2f2116eee5e715aeac1580f19eb7a10ec2b6f805b53567067658e872 9cde8352a427e10b96cae01348fc7cfe5d4aa9cd0a5e5dd93b414ce3bb7d112993c3b3004e53af52567fbfa16de0704ec59a5556a635ad70571fd124ae389f39 93d7bf5b5c735347edfbfbd66810273ca840f9a322b816d22d44c3d8e8255c09e86570bb23712aeb0cade0f478be5aeb 4467f16e9ca32190a6e49c65339eb28ee5e8c78f4e918fcf95128a4b7648898de56ccb43eacfad0c9391ef8cdb7d629a ed2996c99b483e969221d5e9a40f562ea2ab85442d361d72a90e85266a3ed781 c8e6ea9ddc38edc77e284b3bf541663e84752bdc59ed1935799847a48a14ea2fa531b61008fefcba37d732a56702a11ac112437b9b80d18f4ecc8ef0ecfb32cf io.dropwizard dropwizard-validation 3.0.4 Dropwizard is a Java framework for developing ops-friendly, high-performance, RESTful web applications. Apache-2.0 https://www.apache.org/licenses/LICENSE-2.0 pkg:maven/io.dropwizard/dropwizard-validation@3.0.4?type=jar http://www.dropwizard.io/3.0.4/dropwizard-bom/dropwizard-dependencies/dropwizard-parent/dropwizard-validationhttps://github.com/dropwizard/dropwizard/actionshttps://s01.oss.sonatype.org/service/local/staging/deploy/maven2/https://github.com/dropwizard/dropwizard/issueshttps://groups.google.com/forum/#!forum/dropwizard-userhttps://github.com/dropwizard/dropwizard/dropwizard-bom/dropwizard-dependencies/dropwizard-parent/dropwizard-validation makeBom compile,provided,runtime,system enabled io.dropwizard dropwizard-util 3.0.4 Dropwizard is a Java framework for developing ops-friendly, high-performance, RESTful web applications. required aa5d428bc8dbddcc34dcbb26f67348d1 ab241d08e1f738c858d7166447ce51a900f5ff36 0ee5f5568f4704f09934f71059c7c124d1f4f85a4126863bb38a5a2a98e6f5c4 f0ded26906990baed6c08772b6617e1d9744fb1bad0b42beb8c2de4f146d203881f758399a1b76387639b989a85fbdde73dda4dd53d3f2f09d2e3ab31d42c275 d516d8276dc7950f13ab5aebef74ee8c5dd3816310373fb8b14b78757e444893382ce96ad8af2a7c032f67302e94e5ac e3febe9a162dba084eaf86ce72dccde27075acbec79e52c7d85fd0e9040e223a8b8b83768c6de21d51da6e00db2b275e 6ef03bd59b5bdfb4c4b58eb77e6c9cf81d2c7fbc9297a2d497bc26449bf2e30d 0bcf56b40b369f1c1c8baaab34adf908d012f9f1995d8576298a227f207d49be0b6bbf323bc993759a89d1cd9c1df985197cd0d8cea08f3e9f4ed1702bd30008 Apache-2.0 https://www.apache.org/licenses/LICENSE-2.0 pkg:maven/io.dropwizard/dropwizard-util@3.0.4?type=jar http://www.dropwizard.io/3.0.4/dropwizard-bom/dropwizard-dependencies/dropwizard-parent/dropwizard-utilhttps://github.com/dropwizard/dropwizard/actionshttps://s01.oss.sonatype.org/service/local/staging/deploy/maven2/https://github.com/dropwizard/dropwizard/issueshttps://groups.google.com/forum/#!forum/dropwizard-userhttps://github.com/dropwizard/dropwizard/dropwizard-bom/dropwizard-dependencies/dropwizard-parent/dropwizard-util fasterxml.com com.fasterxml classmate 1.6.0 Library for introspecting types with full generic information including resolving of field and method types. required 9e5d937cfab5e40ccbd2c626e242794b 91affab6f84a2182fce5dd72a8d01bc14346dddd d2fcbd956837a57a1c600dda118d5634136cbd673f30852251e4f0de28fd4ebf a59266085ddbb61f47e238a43f69a3fcb3cd6217c63a3f2176dac84e59db482537804efb77eb4e49343e24ef9a07aaceab6082da7f2dc2290d73a033a6261d1d 5ababee5a0f9ae8fc681abd8d447a0966270e76dcc80830dbb8684066147fb0183e5bb863a46ea371d3da325905ce054 9321206256c27f822748b652b0143f62ebba41ff36e734ec7d3f8c09d1d336906e9a2935f119ccf0eb46b2ec15e029e3 1c4c97ad78c33e6c1f565e6489cb4831e5699aab8a914991cfbe2e45e0949fc4 0f28f4a07d65ff2afa0b14e325e2df185d4f1da6058dd0d438e2f7396cfbf58f23ac3a6da92fc04da488ed5fd1cddad16e9e2a140f579c70d61178da28418b84 Apache-2.0 pkg:maven/com.fasterxml/classmate@1.6.0?type=jar https://github.com/FasterXML/java-classmatehttps://oss.sonatype.org/service/local/staging/deploy/maven2/https://github.com/FasterXML/classmate/issueshttps://github.com/FasterXML/java-classmate FasterXML com.fasterxml.jackson.core jackson-annotations 2.15.3 Core annotations used for value types, used by Jackson data binding package. required f478f693731e4a2f0f0d3c7bba119b32 79baf4e605eb3bbb60b1c475d44a7aecceea1d60 aae865c3d88256d61b11523cb1e88bd48d5b9ad5855fa1fc859504fd2204708a c496afd736fa8acbf8126887e2ff375f162212f451326451fbb4b9194231d814e25bccacbaead9db98beec454f6b8d9ed706c5c88e2145bf7e1a37e13fd81af0 13b4d153cc113a69008147974d8887f868f2f3f0a551ef0bacaccf0add17a3168465a94a471e075913f9c6649980a3cb dcf8ed73f748eb32e1ab25eba3c294344cc0ddb2cc7bb4376814f1866df42c3093f1336291ce9ed9e1c8730663e0017c 59f42bc85ee3a8a5b422085b0462aed2a770cf52d7a3660f2cd6dd257ec6e694 1d1a6fd0e6851d419e79f82170f4060981c233ec8dc61656b84ce7988e9b71bbeecd7364cdadac066ddaf0b3de4dc8aa5acc411ebd1641f549a3af5ba214667b Apache-2.0 pkg:maven/com.fasterxml.jackson.core/jackson-annotations@2.15.3?type=jar https://github.com/FasterXML/jacksonhttps://oss.sonatype.org/service/local/staging/deploy/maven2/https://github.com/FasterXML/jackson-annotations/issueshttps://github.com/FasterXML/jackson-annotations Eclipse Foundation jakarta.validation jakarta.validation-api 2.0.2 Jakarta Bean Validation API required 77501d529c1928c9bac2500cc9f93fb0 5eacc6522521f7eacb081f95cee1e231648461e7 b42d42428f3d922c892a909fa043287d577c0c5b165ad9b7d568cebf87fc9ea4 3ca8556b80ca809b3a43fac31469702bbad62a00e63b11a304dad1e372d9f6c128357463a4c70c423055941c7e2e417f87a9474a204d189c8e4b62f42047c8eb 6ae3963fd6a5e83b068a8344b88f6bfbd26d29cee64193025bc5e98195678e49826463da27a7a1c15cd83b2149d57a94 55a570386718064b422f9ebc0c0c07f0b37259e44a14c9a16c20e945402339b1d01b7d6969ef40d6b5baf5bce3e1161d 1ff48fdabab86a398b25e491e6ba4fd9b62d597314202628a3cfedf723c17f21 c23bb0b43fb0c39d4c9d2cce0cd38334fa7c253130f0bda3007d9f7d2dd451c0896ff4265ee2cc35024fad282f9ccaa398c19874775d9cabbb786843fae155d7 Apache-2.0 https://www.apache.org/licenses/LICENSE-2.0 pkg:maven/jakarta.validation/jakarta.validation-api@2.0.2?type=jar https://beanvalidation.orghttps://oss.sonatype.org/service/local/staging/deploy/maven2/https://hibernate.atlassian.net/projects/BVAL/https://dev.eclipse.org/mhonarc/lists/jakarta.ee-community/https://github.com/eclipse-ee4j/beanvalidation-api org.hibernate.validator hibernate-validator 6.2.5.Final Hibernate's Jakarta Bean Validation reference implementation. required 9bce6e6e05f6975c0d414a5e935c8107 a68959c06e5f8ff45faff469aa16f232c04af620 8d6d89c3204b30a01dc248352f43dba196140bf4adc5f437f63e2ad62a3d2144 7c29acb57e7ac2c46e47c4f4b716f5518bdfcba81bfad333764894c6b7be679fc8cff1c3598b9210bfd0da1b704e8b11f9f71e0ed7e57bf0eea4fd76b65458f8 db1a36d00f1e07ffbdb8bd2a24dfbb07e97703f6054ec86e8a2ba3e5848fa83955fd082c48436c4aab7cb864ec5f12c0 46a17e6d4fdda01a91bb5921001506169fd4bcaf8c0aeea5f959480eecad3b2b258b361968f12cf8ffbe454fcf5562fc 7523582fe81c98cff0fd8e2229eb1f8a703ef4e099d8af20931b095a21277b8f b1478874a387b448085c6a1e0012ec5cf3aec808285d4ec6386cf15e1309d6d8fb0f21af9c4df8dc0c1bb50887ca4f90f85fa9c55250ea5541a1403f465cd073 Apache-2.0 https://www.apache.org/licenses/LICENSE-2.0 pkg:maven/org.hibernate.validator/hibernate-validator@6.2.5.Final?type=jar http://hibernate.org/validator/hibernate-validatorhttp://ci.hibernate.org/view/Validator/https://oss.sonatype.org/service/local/staging/deploy/maven2/https://hibernate.atlassian.net/projects/HV/summaryhttp://github.com/hibernate/hibernate-validator/hibernate-validator JBoss by Red Hat org.jboss.logging jboss-logging 3.4.1.Final The JBoss Logging Framework required 52ee373b84e39570c78c0815006375bc 40fd4d696c55793e996d1ff3c475833f836c2498 8efe877d93e5e1057a1388b2950503b88b0c28447364fde08adbec61e524eeb8 c17b8882481c0cb8fbcdf7ea33d268e2173b1bfe04be71e61d5f07c3040b1c33b58781063f8ebf27325979d02255e62d1df16a633ac22f9d08adeb5c6b83a32a 1a9a57638b6d9da1f50dc92da88405878885ccfc1cd6e3a66f5cee1fcef5af51a2d63294afd23f2300f550758af58469 aabecb31aaa548a5bf9ed6f540ad91e8f3c713a10c351c43aa71e845f6f80d81d673484e1c566ab246c80c8c77acfa74 447c31f632013a87e7e9e90a346b2011f2213df22a3844a502e813536f14611c 1b34af205a56d3f93d2070e335ef853090fb7dabe630b05beeee13c8596503c2f242fc93aa7a8763418771bc3593e65e8bd93c62288324e29caaf53ffbee27d0 Apache-2.0 pkg:maven/org.jboss.logging/jboss-logging@3.4.1.Final?type=jar http://www.jboss.orghttps://repository.jboss.org/nexus/service/local/staging/deploy/maven2/https://issues.jboss.org/http://lists.jboss.org/pipermail/jboss-user/https://github.com/jboss-logging/jboss-logging com.google.guava guava 32.1.3-jre Guava is a suite of core and expanded libraries that include utility classes, Google's collections, I/O classes, and much more. required adc3cf557a48d15cb71be90948558923 0f306708742ce2bf0fb0901216183bc14073feae 6d4e2b5a118aab62e6e5e29d185a0224eed82c85c40ac3d33cf04a270c3b3744 f575321aa79046f2c12bdf9895db7e235cbaaa8e913389ae48ec4bb5f387d6bf066ed98c5f2c7854bf0c56bb38b59b005ca3c16d68e314743491a223a18cee47 efd979f8c807eb973c7bb2edcede11c2881db4232147bb94069701fc002b1c336651aa3347858e3ba25cb89f3df69428 83429ce32c8a20a7314175c053ba0a0e57c20486e6f8abcf7bf1e19c64148db70ae8e6b4437ec168f53b37a653e8bb24 52974020b1d930e646d2fe26b13841275fb9c51e81c28140993c228adda71e78 b9bd05ca990c5b76c43248493bb29cbbaad5aa667f394714f35765a8ec04c302a19c4f53f610485c933281211cd6bf4a11a14aaf754ffaed33e02c8b1b78289e Apache-2.0 pkg:maven/com.google.guava/guava@32.1.3-jre?type=jar https://github.com/google/guavahttps://github.com/google/guava/actionshttps://oss.sonatype.org/service/local/staging/deploy/maven2/https://github.com/google/guava/issueshttps://github.com/google/guava/guava com.google.guava failureaccess 1.0.1 Contains com.google.common.util.concurrent.internal.InternalFutureFailureAccess and InternalFutures. Most users will never need to use this artifact. Its classes is conceptually a part of Guava, but they're in this separate artifact so that Android libraries can use them without pulling in all of Guava (just as they can use ListenableFuture by depending on the listenablefuture artifact). required 091883993ef5bfa91da01dcc8fc52236 1dcf1de382a0bf95a3d8b0849546c88bac1292c9 a171ee4c734dd2da837e4b16be9df4661afab72a41adaf31eb84dfdaf936ca26 f8d59b808d6ba617252305b66d5590937da9b2b843d492d06b8d0b1b1f397e39f360d5817707797b979a5bf20bf21987b35333e7a15c44ed7401fea2d2119cae 67659dbd9647ec303d7f15128dc9dba19b98fd8d74758ee3b602451e32c855e236ccaafe08edf4bbfa245f981268440f 1460875f0331c5fa3791772a6a322a7db180261bc2adacf7271df1fbf3b088a587a755a604c039982cb593c5cfc1f101 ea86406e75fcd93eafe3cde1b3135ba485f1bb9b75fed98894a0bf1f0aee04f0 52ac0f487ab5dd27c9f2e54fd1d84c7a620cae9d49be4072aa2b11501787bf4391ddaa13d02eccdf19e8eea46aecbea5f6064b26777c1b836108a280652e04ac Apache-2.0 pkg:maven/com.google.guava/failureaccess@1.0.1?type=jar https://github.com/google/guava/failureaccesshttps://travis-ci.org/google/guavahttps://oss.sonatype.org/service/local/staging/deploy/maven2/https://github.com/google/guava/issueshttps://github.com/google/guava/failureaccess com.google.guava listenablefuture 9999.0-empty-to-avoid-conflict-with-guava An empty artifact that Guava depends on to signal that it is providing ListenableFuture -- but is also available in a second "version" that contains com.google.common.util.concurrent.ListenableFuture class, without any other Guava classes. The idea is: - If users want only ListenableFuture, they depend on listenablefuture-1.0. - If users want all of Guava, they depend on guava, which, as of Guava 27.0, depends on listenablefuture-9999.0-empty-to-avoid-conflict-with-guava. The 9999.0-... version number is enough for some build systems (notably, Gradle) to select that empty artifact over the "real" listenablefuture-1.0 -- avoiding a conflict with the copy of ListenableFuture in guava itself. If users are using an older version of Guava or a build system other than Gradle, they may see class conflicts. If so, they can solve them by manually excluding the listenablefuture artifact or manually forcing their build systems to use 9999.0-.... required d094c22570d65e132c19cea5d352e381 b421526c5f297295adef1c886e5246c39d4ac629 b372a037d4230aa57fbeffdef30fd6123f9c0c2db85d0aced00c91b974f33f99 c5987a979174cbacae2e78b319f080420cc71bcdbcf7893745731eeb93c23ed13bff8d4599441f373f3a246023d33df03e882de3015ee932a74a774afdd0782f caff9b74079f95832ca7f6029346b34b606051cc8c5a4389fac263511d277ada0c55f28b0d43011055b268c6eb7184d5 e939f08df0545847ea0d3e4b04a114b08499ad069ba8ec9461d1779f87a56e0c37273630a0f4c14e78c348d3ac7eb97f 1f0a8b1177773b3a8ace839df5eed63cbf56b24a38714898a6e4ed065c42559f 6b495ecc2a18b17365cb08d124a0da47f04bcdde81927b5245edf3edd8e498c3c3fb92ce6a4127f660bac851bb1d3e4510e5c20d03be47ce99dc296d360db285 Apache-2.0 pkg:maven/com.google.guava/listenablefuture@9999.0-empty-to-avoid-conflict-with-guava?type=jar https://github.com/google/guava/listenablefuturehttps://travis-ci.org/google/guavahttps://oss.sonatype.org/service/local/staging/deploy/maven2/https://github.com/google/guava/issueshttps://github.com/google/guava/listenablefuture Google LLC com.google.errorprone error_prone_annotations 2.23.0 Error Prone is a static analysis tool for Java that catches common programming mistakes at compile-time. required b3ea764beb68c9b44cf57c1b5a5608b2 43a27853b6c7d54893e0b1997c2c778c347179eb ec6f39f068b6ff9ac323c68e28b9299f8c0a80ca512dccb1d4a70f40ac3ec054 a71637e21cdd4f236494af2fabe6ddcf3173c53627b9157913195e9f5b4a6b1d000122d7eb10229059f50deb8115d91fd25d2f12a3887936a19238477c623bc7 1301f6229ac0c890bcf1356ef255d97dcebcf6a35f45f3321d7b13b164a4d89a96459fea25c5b0d280d86388eb05cbfb 31b07b9d8541da42debf6dd119254d1e480c05549ee7ecf4295adc2553130ec5220ae9e5e0da74a55f75044bd2a794b6 0c3566a22f558ba7bbbcab6b00bef402032f55cb299b949aa947b08db528bd58 50d8990e8ffcd78e62899cde5790fbde4bdd3e362494d5261aff80bcefc3224c2c1df58bd9d4cda32a893dd8d94c8b0f65e24fda0e6a42d7176c2aed56e50358 Apache-2.0 pkg:maven/com.google.errorprone/error_prone_annotations@2.23.0?type=jar https://errorprone.info/error_prone_annotationshttps://github.com/google/error-prone/error_prone_annotations com.google.j2objc j2objc-annotations 2.8 A set of annotations that provide additional information to the J2ObjC translator to modify the result of translation. required c50af69b704dc91050efb98e0dff66d1 c85270e307e7b822f1086b93689124b89768e273 f02a95fa1a5e95edb3ed859fd0fb7df709d121a35290eff8b74dce2ab7f4d6ed f8263868a792b41707c9e7fe6fa5650a14cd93fbeafad20efe3772a3058fc933eb59782ec59e6eb9b9c569aa96da80134ae9fdf7547b69c44a97087efddceeff e6087ec31fec8289158496ad2ed6ce8472d5d513808a312e0782cedac3b86c37a62a63c0b5ea3839491d109fe9e148a1 10add34bfeb8612283eef89ac96747a3c9b755acd80ad526e1addaeb7efd6323c52b9bfa1a3d34adb40e1ccb963ee65d b3336f8abd6b1f73b9f06d306974557000a000073bfbae6b54fda26d17dbb072 d376c184a6df071c4e93b913d175b5c2e63deac37105dc20342c19bdda62e4e9598ca1e8bfb4f4fd5cdee6dd5ac3b8af49e2c5193e324d59a59ce1f7adeab627 Apache-2.0 pkg:maven/com.google.j2objc/j2objc-annotations@2.8?type=jar https://github.com/google/j2objc/https://oss.sonatype.org/service/local/staging/deploy/maven2/http://svn.sonatype.org/spice/trunk/oss/oss-parent-9/j2objc-annotations QOS.ch org.slf4j slf4j-api 2.0.9 The slf4j API required 45630e54b0f0ac2b3c80462515ad8fda 7cf2726fdcfbc8610f9a71fb3ed639871f315340 0818930dc8d7debb403204611691da58e49d42c50b6ffcfdce02dadb7c3c2b6c 069e6ddce79617e37d61758120c7e68348ee62f255781948937f7bec3058e46244026d7f6a11e90fbc15cd4288c4bb1acee4f242af521c721a9e68a05e64d526 fd6f7ad85d02ac63cd1a586c8bb158c1fc000495f512f097731ea9f749b5da2637615b821294962805ba312c738f40aa 17cd61f59a162250b52a89c7c56eb60da253b776210500313c7b82744483ff84717946f969251fb4d76f9bb12a2458fe 9dcb04582c64c79e788f9191195834ec75bb3457133d22a176a0ccb069b97103 990faffa454598a3fa82affe30f1323db769d2e1fff20d9c7163ef6fd95ac7a0874c06a634207a2eaed9e5afbdee68b225138fc75018717ba97efe3ffe92c88a MIT https://opensource.org/licenses/MIT pkg:maven/org.slf4j/slf4j-api@2.0.9?type=jar http://www.slf4j.orghttps://oss.sonatype.org/service/local/staging/deploy/maven2/https://github.com/qos-ch/slf4j/slf4j-parent/slf4j-api org.checkerframework checker-qual 3.40.0 checker-qual contains annotations (type qualifiers) that a programmer writes to specify Java code for type-checking by the Checker Framework. required 8c7fbd29a6763f88a1b138813c57565d 0ee3d7f12ee557875f1d93ca275cc4a019b693ab e8fce29a11df9934cf04df17bd629bfcf360b4b8ba5a8bd0457f6c4567d1fee4 8707782887ad2644b87b0d157d5a61d36fcff166c986e336dea3a67e778f65fb0ad6ba2aa9c0f97745dc4fc66ece4215cc04f3f3349c4c4d55d38a94ef9a232a a3b66367f3f08a9d0af5d5af7f961b4a1db72a2d0e45d2467ef80dced0666e896b9209de588fbcd7a3a34af80a43a99d 9629a36ce6d222aaa7fd48bd5a58e9e2218e9026a9a2a0b242c00d5b825cdbc750089e4d626ba5109e1812734311f8e3 113c8beabdbee3c73c893080798896b6ee88c4024f29594a1eec5b0bede85284 b80054d901a53a9472eed27007d83be9f3bd592e2dce059702f8bc67d8294e0759e0a8330cb11c9a8102143bd9af8db0e3f1e45d58fbda2b0e2bc88d7c1f7144 MIT pkg:maven/org.checkerframework/checker-qual@3.40.0?type=jar https://checkerframework.org/https://github.com/typetools/checker-framework.git Eclipse Foundation org.glassfish jakarta.el 3.0.4 Jakarta Expression Language provides a specification document, API, reference implementation and TCK that describes an expression language for Java applications. required a4ff0d711c405e054f8166c2ea893e0e f48473482c0e3e714f87186d9305bcae30b7f5cb 3b8d4311b47fb47d168ad4338b6649a7cc21d5066b9765bd28ebca93148064be 45b9142c3ba82abd44decd350257be6f951bfb23e3baa96e6e8a26b269881f96c4e50615fef06c3b27434d7cb346e87da913f90284e11614118699a8a3e883be 14e457f2bbbabd02bbd6ddf8c9dd0c27ab7c50c4c7908c81a17660bc45de3a800119c00da8e799335fae4241adc2745a eaa1fa45a0f0d152f78dd000518c23edb1e31025cd0dbc86c3cccafab64bd89d6bfbd605c062b6e5aeabc259f0bf9aba 86bb8ff8f351449a2ac125c09914eebdd8ee4b8e5616477fd155a481aa98b6a8 f40a2b2fb4595a9aadc4e38b4dbd8b958bb303c4d90df4241cd1eaa1181ca0715bbff6e29c3bd5c424542392f351cf09329d772ae66d72608c272dd6f5042ede EPL-2.0 GPL-2.0-with-classpath-exception pkg:maven/org.glassfish/jakarta.el@3.0.4?type=jar https://projects.eclipse.org/projects/ee4j.elhttps://jakarta.oss.sonatype.org/service/local/staging/deploy/maven2/https://github.com/eclipse-ee4j/el-ri/issueshttps://dev.eclipse.org/mhonarc/lists/el-devhttps://github.com/eclipse-ee4j/el-ri