Dependency-Check Report

Dependency-Check is an open source tool performing a best effort analysis of 3rd party dependencies; false positives and false negatives may exist in the analysis performed by the tool. Use of the tool and the reporting provided constitutes acceptance for use in an AS IS condition, and there are NO warranties, implied or otherwise, with regard to the analysis or its use. Any use of the tool and the reporting provided is at the user’s risk. In no event shall the copyright holder or OWASP be held liable for any damages whatsoever arising out of or in connection with the use of this tool, the analysis performed, or the resulting report.

Scan Information (show all):

dependency-check version: 12.1.1
Report Generated On: Tue, 15 Apr 2025 04:00:13 GMT
Dependencies Scanned: 24 (19 unique)
Vulnerable Dependencies: 0
Vulnerabilities Found: 0
Vulnerabilities Suppressed: 0
...
NVD API Last Checked: 2025-04-15T04:00:04Z
NVD API Last Modified: 2025-04-15T03:15:19Z

Summary

Display: Showing Vulnerable Dependencies (click to show all)

Dependency	Vulnerability IDs	Package	Confidence	Evidence Count
com.github.oshi:oshi-core-java11:6.8.1-SNAPSHOT		pkg:maven/com.github.oshi/oshi-core-java11@6.8.1-SNAPSHOT		6
com.github.oshi:oshi-core:6.8.1-SNAPSHOT		pkg:maven/com.github.oshi/oshi-core@6.8.1-SNAPSHOT		6
com.github.oshi:oshi-demo:6.8.1-SNAPSHOT		pkg:maven/com.github.oshi/oshi-demo@6.8.1-SNAPSHOT		6
jLibreHardwareMonitor-1.0.5.jar		pkg:maven/io.github.pandalxb/jLibreHardwareMonitor@1.0.5		33
jLibreHardwareMonitor-1.0.5.jar: HidSharp.dll		pkg:generic/HidSharp@2.1.0		16
jLibreHardwareMonitor-1.0.5.jar: LibreHardwareMonitorLib.dll		pkg:generic/LibreHardwareMonitorLib@0.9.4		13
jLibreHardwareMonitor-1.0.5.jar: OpenHardwareMonitorLib.dll		pkg:generic/OpenHardwareMonitorLib@0.9.3		11
jPowerShell-1.0.0.jar		pkg:maven/io.github.pandalxb/jPowerShell@1.0.0		35
jackson-core-2.18.3.jar	cpe:2.3:a:fasterxml:jackson-modules-java8:2.18.3:::::::*	pkg:maven/com.fasterxml.jackson.core/jackson-core@2.18.3	Low	47
jackson-databind-2.18.3.jar	cpe:2.3:a:fasterxml:jackson-databind:2.18.3:::::::* cpe:2.3:a:fasterxml:jackson-modules-java8:2.18.3:::::::*	pkg:maven/com.fasterxml.jackson.core/jackson-databind@2.18.3	Highest	41
jfreechart-1.5.5.jar	cpe:2.3:a:time_project:time:1.5.5:::::::*	pkg:maven/org.jfree/jfreechart@1.5.5	Low	37
jna-5.17.0.jar	cpe:2.3:a:oracle:java_se:5.17.0:::::::*	pkg:maven/net.java.dev.jna/jna@5.17.0	Low	48
jna-jpms-5.17.0.jar: jnidispatch.dll				2
jna-jpms-5.17.0.jar: jnidispatch.dll				2
jna-jpms-5.17.0.jar: jnidispatch.dll				2
jna-platform-5.17.0.jar		pkg:maven/net.java.dev.jna/jna-platform@5.17.0		42
jna-platform-jpms-5.17.0.jar		pkg:maven/net.java.dev.jna/jna-platform-jpms@5.17.0		42
slf4j-api-2.0.17.jar		pkg:maven/org.slf4j/slf4j-api@2.0.17		29
slf4j-simple-2.0.17.jar		pkg:maven/org.slf4j/slf4j-simple@2.0.17		37

Dependencies (vulnerable)

com.github.oshi:oshi-core-java11:6.8.1-SNAPSHOT

Description:

A JNA-based (native) operating system information library for Java that aims to provide a
        cross-platform implementation to retrieve system information, such as version, memory, CPU, disk, battery, etc.

License:

SPDX-License-Identifier: MIT https://opensource.org/licenses/MIT

File Path: /home/runner/work/oshi/oshi/oshi-core-java11/pom.xml

Referenced In Project/Scope: oshi-dist
pkg:maven/com.github.oshi/oshi-dist@6.8.1-SNAPSHOT

Evidence

Type	Source	Name	Value	Confidence
Vendor	file	name	pom	High
Vendor	project	artifactid	oshi-core-java11	Low
Vendor	project	groupid	com.github.oshi	Highest
Product	file	name	pom	High
Product	project	artifactid	oshi-core-java11	Highest
Product	project	groupid	com.github.oshi	Low

Identifiers

pkg:maven/com.github.oshi/oshi-core-java11@6.8.1-SNAPSHOT (Confidence:Highest)

com.github.oshi:oshi-core:6.8.1-SNAPSHOT

Description:

A JNA-based (native) operating system information library for Java that aims to provide a
        cross-platform implementation to retrieve system information, such as version, memory, CPU, disk, battery, etc.

License:

SPDX-License-Identifier: MIT https://opensource.org/licenses/MIT

File Path: /home/runner/work/oshi/oshi/oshi-core/pom.xml

Referenced In Projects/Scopes:

oshi-demo
oshi-dist

pkg:maven/com.github.oshi/oshi-dist@6.8.1-SNAPSHOT
pkg:maven/com.github.oshi/oshi-demo@6.8.1-SNAPSHOT

Evidence

Type	Source	Name	Value	Confidence
Vendor	file	name	pom	High
Vendor	project	artifactid	oshi-core	Low
Vendor	project	groupid	com.github.oshi	Highest
Product	file	name	pom	High
Product	project	artifactid	oshi-core	Highest
Product	project	groupid	com.github.oshi	Low

Identifiers

pkg:maven/com.github.oshi/oshi-core@6.8.1-SNAPSHOT (Confidence:Highest)

com.github.oshi:oshi-demo:6.8.1-SNAPSHOT

Description:

A JNA-based (native) operating system information library for Java that aims to provide a
        cross-platform implementation to retrieve system information, such as version, memory, CPU, disk, battery, etc.

License:

SPDX-License-Identifier: MIT https://opensource.org/licenses/MIT

File Path: /home/runner/work/oshi/oshi/oshi-demo/pom.xml

Referenced In Project/Scope: oshi-dist
pkg:maven/com.github.oshi/oshi-dist@6.8.1-SNAPSHOT

Evidence

Type	Source	Name	Value	Confidence
Vendor	file	name	pom	High
Vendor	project	artifactid	oshi-demo	Low
Vendor	project	groupid	com.github.oshi	Highest
Product	file	name	pom	High
Product	project	artifactid	oshi-demo	Highest
Product	project	groupid	com.github.oshi	Low

Identifiers

pkg:maven/com.github.oshi/oshi-demo@6.8.1-SNAPSHOT (Confidence:Highest)

jLibreHardwareMonitor-1.0.5.jar

Description:

Get all system sensors information from Java

License:

Apache License, Version 2.0: http://wcd taww.apache.org/licenses/LICENSE-2.0.txt

File Path: /home/runner/.m2/repository/io/github/pandalxb/jLibreHardwareMonitor/1.0.5/jLibreHardwareMonitor-1.0.5.jar
MD5: 60548abdaa1cf31160e561d20b9c12c3
SHA1: a00bda1abcd86390bb06926392f91cee033bb8a0
SHA256:f414a8a26dfdc80719504ef4f53297f5128b4760543ca21a35c0d71cd09a4e83
Referenced In Projects/Scopes:

oshi-core-java11:compile
oshi-core:compile

pkg:maven/com.github.oshi/oshi-core-java11@6.8.1-SNAPSHOT
pkg:maven/com.github.oshi/oshi-core@6.8.1-SNAPSHOT

Evidence

Type	Source	Name	Value	Confidence
Vendor	file	name	jLibreHardwareMonitor	High
Vendor	jar	package name	github	Highest
Vendor	jar	package name	io	Highest
Vendor	jar	package name	jlibrehardwaremonitor	Highest
Vendor	jar	package name	pandalxb	Highest
Vendor	Manifest	automatic-module-name	io.github.pandalxb.jlibrehardwaremonitor	Medium
Vendor	Manifest	build-jdk-spec	1.8	Low
Vendor	pom	artifactid	jLibreHardwareMonitor	Highest
Vendor	pom	artifactid	jLibreHardwareMonitor	Low
Vendor	pom	developer email	fzuxx@qq.com	Low
Vendor	pom	developer name	pandalxb	Medium
Vendor	pom	developer org	pandalxb	Medium
Vendor	pom	developer org URL	https://github.com/pandalxb	Medium
Vendor	pom	groupid	io.github.pandalxb	Highest
Vendor	pom	name	jLibreHardwareMonitor	High
Vendor	pom	url	pandalxb/jLibreHardwareMonitor	Highest
Product	file	name	jLibreHardwareMonitor	High
Product	jar	package name	github	Highest
Product	jar	package name	io	Highest
Product	jar	package name	jlibrehardwaremonitor	Highest
Product	jar	package name	pandalxb	Highest
Product	Manifest	automatic-module-name	io.github.pandalxb.jlibrehardwaremonitor	Medium
Product	Manifest	build-jdk-spec	1.8	Low
Product	pom	artifactid	jLibreHardwareMonitor	Highest
Product	pom	developer email	fzuxx@qq.com	Low
Product	pom	developer name	pandalxb	Low
Product	pom	developer org	pandalxb	Low
Product	pom	developer org URL	https://github.com/pandalxb	Low
Product	pom	groupid	io.github.pandalxb	Highest
Product	pom	name	jLibreHardwareMonitor	High
Product	pom	url	pandalxb/jLibreHardwareMonitor	High
Version	file	version	1.0.5	High
Version	pom	version	1.0.5	Highest

Identifiers

pkg:maven/io.github.pandalxb/jLibreHardwareMonitor@1.0.5 (Confidence:High)

jLibreHardwareMonitor-1.0.5.jar: HidSharp.dll

Description:

HidSharp

C# HID wrappers

File Path: /home/runner/.m2/repository/io/github/pandalxb/jLibreHardwareMonitor/1.0.5/jLibreHardwareMonitor-1.0.5.jar/lib/HidSharp.dll
MD5: 8d3eb299f8447b633334d1c426a2f0f7
SHA1: 8497ae75f2dd9271d9158a27250288905e8cca28
SHA256:8c58e5fba22acc751032dfe97ce633e4f8a4c96089749bf316d55283b36649c2
Referenced In Projects/Scopes:

oshi-core-java11:compile
oshi-core:compile

Evidence

Type	Source	Name	Value	Confidence
Vendor	dll	namespace	HidSharp	Highest
Vendor	file	name	HidSharp	High
Vendor	grokassembly	CompanyName	Illusory Studios LLC	Highest
Vendor	grokassembly	FileDescription	HidSharp	Low
Vendor	grokassembly	InternalName	HidSharp.dll	Low
Vendor	grokassembly	OriginalFilename	HidSharp.dll	Low
Vendor	grokassembly	ProductName	HidSharp	Medium
Product	dll	namespace	HidSharp	Highest
Product	file	name	HidSharp	High
Product	grokassembly	CompanyName	Illusory Studios LLC	Low
Product	grokassembly	FileDescription	HidSharp	High
Product	grokassembly	InternalName	HidSharp.dll	Medium
Product	grokassembly	OriginalFilename	HidSharp.dll	Medium
Product	grokassembly	ProductName	HidSharp	Highest
Version	AssemblyAnalyzer	FilteredVersion	2.1.0	Highest
Version	grokassembly	ProductVersion	2.1.0	Highest

Identifiers

pkg:generic/HidSharp@2.1.0 (Confidence:Medium)

jLibreHardwareMonitor-1.0.5.jar: LibreHardwareMonitorLib.dll

Description:

LibreHardwareMonitorLib

Monitor the temperature sensors, fan speeds, voltages, load and clock speeds of your computer.

File Path: /home/runner/.m2/repository/io/github/pandalxb/jLibreHardwareMonitor/1.0.5/jLibreHardwareMonitor-1.0.5.jar/lib/LibreHardwareMonitorLib.dll
MD5: ca5f27a875cd921a43e054cee361432a
SHA1: a989ad6f4d9eacdc30b31344059a57735e3c5377
SHA256:a0f2728f1734c236a9d02d9e25a88bc4f8cb7bd1faff1770726beb7af06bf8dc
Referenced In Projects/Scopes:

oshi-core-java11:compile
oshi-core:compile

Evidence

Type	Source	Name	Value	Confidence
Vendor	file	name	LibreHardwareMonitorLib	High
Vendor	grokassembly	CompanyName	LibreHardwareMonitorLib	Highest
Vendor	grokassembly	FileDescription	LibreHardwareMonitorLib	Low
Vendor	grokassembly	InternalName	LibreHardwareMonitorLib.dll	Low
Vendor	grokassembly	OriginalFilename	LibreHardwareMonitorLib.dll	Low
Vendor	grokassembly	ProductName	LibreHardwareMonitorLib	Medium
Product	file	name	LibreHardwareMonitorLib	High
Product	grokassembly	CompanyName	LibreHardwareMonitorLib	Low
Product	grokassembly	FileDescription	LibreHardwareMonitorLib	High
Product	grokassembly	InternalName	LibreHardwareMonitorLib.dll	Medium
Product	grokassembly	OriginalFilename	LibreHardwareMonitorLib.dll	Medium
Product	grokassembly	ProductName	LibreHardwareMonitorLib	Highest
Version	AssemblyAnalyzer	FilteredVersion	0.9.4	Highest

Identifiers

pkg:generic/LibreHardwareMonitorLib@0.9.4 (Confidence:Medium)

jLibreHardwareMonitor-1.0.5.jar: OpenHardwareMonitorLib.dll

Description:

Open Hardware Monitor Library

File Path: /home/runner/.m2/repository/io/github/pandalxb/jLibreHardwareMonitor/1.0.5/jLibreHardwareMonitor-1.0.5.jar/lib/OpenHardwareMonitorLib.dll
MD5: 80c5b3e1dbf82abd74a93586625a2540
SHA1: 07b6413c8b6e9ae996ac6bae04004959c9301b2a
SHA256:e8f9ddede1416c7ae3c82d9c702c64ccc712866d1d98a58d7176a1489ebedaaa
Referenced In Projects/Scopes:

oshi-core-java11:compile
oshi-core:compile

Evidence

Type	Source	Name	Value	Confidence
Vendor	file	name	OpenHardwareMonitorLib	High
Vendor	grokassembly	FileDescription	Open Hardware Monitor Library	Low
Vendor	grokassembly	InternalName	OpenHardwareMonitorLib.dll	Low
Vendor	grokassembly	OriginalFilename	OpenHardwareMonitorLib.dll	Low
Vendor	grokassembly	ProductName	Open Hardware Monitor Library	Medium
Product	file	name	OpenHardwareMonitorLib	High
Product	grokassembly	FileDescription	Open Hardware Monitor Library	High
Product	grokassembly	InternalName	OpenHardwareMonitorLib.dll	Medium
Product	grokassembly	OriginalFilename	OpenHardwareMonitorLib.dll	Medium
Product	grokassembly	ProductName	Open Hardware Monitor Library	Highest
Version	grokassembly	ProductVersion	0.9.3	Highest

Identifiers

pkg:generic/OpenHardwareMonitorLib@0.9.3 (Confidence:Medium)

jPowerShell-1.0.0.jar

Description:

API to use PowerShell from Java

License:

Apache License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt

File Path: /home/runner/.m2/repository/io/github/pandalxb/jPowerShell/1.0.0/jPowerShell-1.0.0.jar
MD5: 4c1c543312bd2c51b6a157b4509c247c
SHA1: 24f99ad65255194afbf0d9157cb9583707fa01ac
SHA256:22ec71bf7a6d42954e3a82d62c76d31735cef7734c5e3ca3b81faa8a3d6b4406
Referenced In Projects/Scopes:

oshi-core-java11:compile
oshi-core:compile

pkg:maven/io.github.pandalxb/jLibreHardwareMonitor@1.0.5
pkg:maven/io.github.pandalxb/jLibreHardwareMonitor@1.0.5

Evidence

Type	Source	Name	Value	Confidence
Vendor	file	name	jPowerShell	High
Vendor	jar	package name	github	Highest
Vendor	jar	package name	github	Low
Vendor	jar	package name	io	Highest
Vendor	jar	package name	io	Low
Vendor	jar	package name	jpowershell	Highest
Vendor	jar	package name	pandalxb	Highest
Vendor	jar	package name	pandalxb	Low
Vendor	pom	artifactid	jPowerShell	Highest
Vendor	pom	artifactid	jPowerShell	Low
Vendor	pom	developer email	fzuxx@qq.com	Low
Vendor	pom	developer name	pandalxb	Medium
Vendor	pom	developer org	pandalxb	Medium
Vendor	pom	developer org URL	https://github.com/pandalxb	Medium
Vendor	pom	groupid	io.github.pandalxb	Highest
Vendor	pom	name	jPowerShell	High
Vendor	pom	url	pandalxb/jPowerShell	Highest
Product	file	name	jPowerShell	High
Product	jar	package name	github	Highest
Product	jar	package name	github	Low
Product	jar	package name	io	Highest
Product	jar	package name	jpowershell	Highest
Product	jar	package name	jpowershell	Low
Product	jar	package name	pandalxb	Highest
Product	jar	package name	pandalxb	Low
Product	pom	artifactid	jPowerShell	Highest
Product	pom	developer email	fzuxx@qq.com	Low
Product	pom	developer name	pandalxb	Low
Product	pom	developer org	pandalxb	Low
Product	pom	developer org URL	https://github.com/pandalxb	Low
Product	pom	groupid	io.github.pandalxb	Highest
Product	pom	name	jPowerShell	High
Product	pom	url	pandalxb/jPowerShell	High
Version	file	version	1.0.0	High
Version	pom	version	1.0.0	Highest

Identifiers

pkg:maven/io.github.pandalxb/jPowerShell@1.0.0 (Confidence:High)

jackson-core-2.18.3.jar

Description:

Core Jackson processing abstractions (aka Streaming API), implementation for JSON

License:

The Apache Software License, Version 2.0: https://www.apache.org/licenses/LICENSE-2.0.txt

File Path: /home/runner/.m2/repository/com/fasterxml/jackson/core/jackson-core/2.18.3/jackson-core-2.18.3.jar
MD5: b36e17ef5ba214242b700f8e621e6f12
SHA1: 78f80c259268200e588aa204dd97ecf09b76916e
SHA256:056bc4d3e5e53ce821450fa97b3f9e0f8dde125cf6da6884353bb1f09582e1d9
Referenced In Projects/Scopes:

oshi-demo:compile
oshi-dist:compile

pkg:maven/com.fasterxml.jackson.core/jackson-databind@2.18.3
pkg:maven/com.github.oshi/oshi-demo@6.8.1-SNAPSHOT

Evidence

Type	Source	Name	Value	Confidence
Vendor	file	name	jackson-core	High
Vendor	jar	package name	base	Highest
Vendor	jar	package name	com	Highest
Vendor	jar	package name	core	Highest
Vendor	jar	package name	fasterxml	Highest
Vendor	jar	package name	jackson	Highest
Vendor	jar	package name	json	Highest
Vendor	Manifest	build-jdk-spec	1.8	Low
Vendor	Manifest	bundle-docurl	https://github.com/FasterXML/jackson-core	Low
Vendor	Manifest	bundle-symbolicname	com.fasterxml.jackson.core.jackson-core	Medium
Vendor	Manifest	Implementation-Vendor	FasterXML	High
Vendor	Manifest	Implementation-Vendor-Id	com.fasterxml.jackson.core	Medium
Vendor	Manifest	multi-release	true	Low
Vendor	Manifest	specification-vendor	FasterXML	Low
Vendor	pom	artifactid	jackson-core	Highest
Vendor	pom	artifactid	jackson-core	Low
Vendor	pom	groupid	com.fasterxml.jackson.core	Highest
Vendor	pom	name	Jackson-core	High
Vendor	pom	parent-artifactid	jackson-base	Low
Vendor	pom	parent-groupid	com.fasterxml.jackson	Medium
Vendor	pom	url	FasterXML/jackson-core	Highest
Product	file	name	jackson-core	High
Product	hint analyzer	product	java8	Highest
Product	hint analyzer	product	modules	Highest
Product	jar	package name	base	Highest
Product	jar	package name	com	Highest
Product	jar	package name	core	Highest
Product	jar	package name	fasterxml	Highest
Product	jar	package name	jackson	Highest
Product	jar	package name	json	Highest
Product	Manifest	build-jdk-spec	1.8	Low
Product	Manifest	bundle-docurl	https://github.com/FasterXML/jackson-core	Low
Product	Manifest	Bundle-Name	Jackson-core	Medium
Product	Manifest	bundle-symbolicname	com.fasterxml.jackson.core.jackson-core	Medium
Product	Manifest	Implementation-Title	Jackson-core	High
Product	Manifest	multi-release	true	Low
Product	Manifest	specification-title	Jackson-core	Medium
Product	pom	artifactid	jackson-core	Highest
Product	pom	groupid	com.fasterxml.jackson.core	Highest
Product	pom	name	Jackson-core	High
Product	pom	parent-artifactid	jackson-base	Medium
Product	pom	parent-groupid	com.fasterxml.jackson	Medium
Product	pom	url	FasterXML/jackson-core	High
Version	file	version	2.18.3	High
Version	Manifest	Bundle-Version	2.18.3	High
Version	Manifest	Implementation-Version	2.18.3	High
Version	pom	version	2.18.3	Highest

Related Dependencies

Identifiers

pkg:maven/com.fasterxml.jackson.core/jackson-core@2.18.3 (Confidence:High)
cpe:2.3:a:fasterxml:jackson-modules-java8:2.18.3:*:*:*:*:*:*:* (Confidence:Low)

jackson-databind-2.18.3.jar

Description:

General data-binding functionality for Jackson: works on core streaming API

License:

The Apache Software License, Version 2.0: https://www.apache.org/licenses/LICENSE-2.0.txt

File Path: /home/runner/.m2/repository/com/fasterxml/jackson/core/jackson-databind/2.18.3/jackson-databind-2.18.3.jar
MD5: 0cedbc3d377d089e73bb949653b1c76a
SHA1: 537e3886263e3b3464385040453e92567fd509e2
SHA256:510bdda75a7a6186c5bf33b851239488a1450906ae5757121f2e1cc48a7e108f
Referenced In Projects/Scopes:

oshi-demo:compile
oshi-dist:compile

pkg:maven/com.github.oshi/oshi-demo@6.8.1-SNAPSHOT
pkg:maven/com.github.oshi/oshi-demo@6.8.1-SNAPSHOT

Evidence

Type	Source	Name	Value	Confidence
Vendor	file	name	jackson-databind	High
Vendor	jar	package name	databind	Highest
Vendor	jar	package name	fasterxml	Highest
Vendor	jar	package name	jackson	Highest
Vendor	Manifest	build-jdk-spec	1.8	Low
Vendor	Manifest	bundle-docurl	https://github.com/FasterXML/jackson	Low
Vendor	Manifest	bundle-symbolicname	com.fasterxml.jackson.core.jackson-databind	Medium
Vendor	Manifest	Implementation-Vendor	FasterXML	High
Vendor	Manifest	Implementation-Vendor-Id	com.fasterxml.jackson.core	Medium
Vendor	Manifest	multi-release	true	Low
Vendor	Manifest	specification-vendor	FasterXML	Low
Vendor	pom	artifactid	jackson-databind	Highest
Vendor	pom	artifactid	jackson-databind	Low
Vendor	pom	groupid	com.fasterxml.jackson.core	Highest
Vendor	pom	name	jackson-databind	High
Vendor	pom	parent-artifactid	jackson-base	Low
Vendor	pom	parent-groupid	com.fasterxml.jackson	Medium
Vendor	pom	url	FasterXML/jackson	Highest
Product	file	name	jackson-databind	High
Product	hint analyzer	product	java8	Highest
Product	hint analyzer	product	modules	Highest
Product	jar	package name	databind	Highest
Product	jar	package name	fasterxml	Highest
Product	jar	package name	jackson	Highest
Product	Manifest	build-jdk-spec	1.8	Low
Product	Manifest	bundle-docurl	https://github.com/FasterXML/jackson	Low
Product	Manifest	Bundle-Name	jackson-databind	Medium
Product	Manifest	bundle-symbolicname	com.fasterxml.jackson.core.jackson-databind	Medium
Product	Manifest	Implementation-Title	jackson-databind	High
Product	Manifest	multi-release	true	Low
Product	Manifest	specification-title	jackson-databind	Medium
Product	pom	artifactid	jackson-databind	Highest
Product	pom	groupid	com.fasterxml.jackson.core	Highest
Product	pom	name	jackson-databind	High
Product	pom	parent-artifactid	jackson-base	Medium
Product	pom	parent-groupid	com.fasterxml.jackson	Medium
Product	pom	url	FasterXML/jackson	High
Version	file	version	2.18.3	High
Version	Manifest	Bundle-Version	2.18.3	High
Version	Manifest	Implementation-Version	2.18.3	High
Version	pom	version	2.18.3	Highest

Identifiers

pkg:maven/com.fasterxml.jackson.core/jackson-databind@2.18.3 (Confidence:High)
cpe:2.3:a:fasterxml:jackson-databind:2.18.3:*:*:*:*:*:*:* (Confidence:Highest)
cpe:2.3:a:fasterxml:jackson-modules-java8:2.18.3:*:*:*:*:*:*:* (Confidence:Low)

jfreechart-1.5.5.jar

Description:

        JFreeChart is a class library, written in Java, for generating charts. 
        Utilising the Java2D API, it supports a wide range of chart types including
        bar charts, pie charts, line charts, XY-plots, time series plots, Sankey charts
        and more.

License:

GNU Lesser General Public Licence: http://www.gnu.org/licenses/lgpl.txt

File Path: /home/runner/.m2/repository/org/jfree/jfreechart/1.5.5/jfreechart-1.5.5.jar
MD5: f39186dfa4084491a92094f6ed195427
SHA1: 4147651ba863c28090a585a6f1e91c7a9bcc1f12
SHA256:0912b43a7dd4456c9fd4012fcc9c7b14fd70732adfeaead996824b734a036d5a
Referenced In Projects/Scopes:

oshi-demo:compile
oshi-dist:compile

pkg:maven/com.github.oshi/oshi-demo@6.8.1-SNAPSHOT
pkg:maven/com.github.oshi/oshi-demo@6.8.1-SNAPSHOT

Evidence

Type	Source	Name	Value	Confidence
Vendor	file	name	jfreechart	High
Vendor	jar	package name	jfree	Highest
Vendor	jar	package name	jfreechart	Highest
Vendor	jar	package name	range	Highest
Vendor	jar	package name	series	Highest
Vendor	jar	package name	time	Highest
Vendor	jar	package name	xy	Highest
Vendor	Manifest	automatic-module-name	org.jfree.jfreechart	Medium
Vendor	Manifest	build-jdk-spec	21	Low
Vendor	pom	artifactid	jfreechart	Highest
Vendor	pom	artifactid	jfreechart	Low
Vendor	pom	developer email	dave@jfree.org	Low
Vendor	pom	developer name	David Gilbert	Medium
Vendor	pom	groupid	org.jfree	Highest
Vendor	pom	name	JFreeChart	High
Vendor	pom	organization name	JFree.org	High
Vendor	pom	organization url	http://www.jfree.org/	Medium
Vendor	pom	url	http://www.jfree.org/jfreechart/	Highest
Product	file	name	jfreechart	High
Product	jar	package name	jfree	Highest
Product	jar	package name	jfreechart	Highest
Product	jar	package name	range	Highest
Product	jar	package name	series	Highest
Product	jar	package name	time	Highest
Product	jar	package name	xy	Highest
Product	Manifest	automatic-module-name	org.jfree.jfreechart	Medium
Product	Manifest	build-jdk-spec	21	Low
Product	pom	artifactid	jfreechart	Highest
Product	pom	developer email	dave@jfree.org	Low
Product	pom	developer name	David Gilbert	Low
Product	pom	groupid	org.jfree	Highest
Product	pom	name	JFreeChart	High
Product	pom	organization name	JFree.org	Low
Product	pom	organization url	http://www.jfree.org/	Low
Product	pom	url	http://www.jfree.org/jfreechart/	Medium
Version	file	version	1.5.5	High
Version	pom	version	1.5.5	Highest

Identifiers

pkg:maven/org.jfree/jfreechart@1.5.5 (Confidence:High)
cpe:2.3:a:time_project:time:1.5.5:*:*:*:*:*:*:* (Confidence:Low)

jna-5.17.0.jar

Description:

Java Native Access

License:

LGPL-2.1-or-later: https://www.gnu.org/licenses/old-licenses/lgpl-2.1
Apache-2.0: https://www.apache.org/licenses/LICENSE-2.0.txt

File Path: /home/runner/.m2/repository/net/java/dev/jna/jna/5.17.0/jna-5.17.0.jar
MD5: 08fc1e1f239ec4511e8d9e5a433f6244
SHA1: 33d12735bef894440780fce64f9758d420c7bae2
SHA256:b3a9408e7c51e08ef0e3bfcc08f443f6ec0f6191ba8cd7c18d53d2b22e5bdbc0
Referenced In Projects/Scopes:

oshi-demo:compile
oshi-dist:compile
oshi-core:compile

pkg:maven/com.github.oshi/oshi-core@6.8.1-SNAPSHOT
pkg:maven/com.github.oshi/oshi-core@6.8.1-SNAPSHOT
pkg:maven/com.github.oshi/oshi-core@6.8.1-SNAPSHOT

Evidence

Type	Source	Name	Value	Confidence
Vendor	file	name	jna	High
Vendor	jar	package name	jna	Highest
Vendor	jar	package name	native	Highest
Vendor	jar	package name	sun	Highest
Vendor	jar (hint)	package name	oracle	Highest
Vendor	Manifest	automatic-module-name	com.sun.jna	Medium
Vendor	Manifest	bundle-activationpolicy	lazy	Low
Vendor	Manifest	bundle-category	jni	Low
Vendor	Manifest	bundle-nativecode	com/sun/jna/win32-x86/jnidispatch.dll; processor=x86;osname=win32, com/sun/jna/win32-x86-64/jnidispatch.dll; processor=x86-64;osname=win32, com/sun/jna/win32-aarch64/jnidispatch.dll; processor=aarch64;osname=win32, com/sun/jna/win32-x86/jnidispatch.dll; processor=x86;osname=win, com/sun/jna/win32-x86-64/jnidispatch.dll; processor=x86-64;osname=win, com/sun/jna/win32-aarch64/jnidispatch.dll; processor=aarch64;osname=win, com/sun/jna/w32ce-arm/jnidispatch.dll; processor=arm;osname=wince, com/sun/jna/sunos-x86/libjnidispatch.so; processor=x86;osname=sunos, com/sun/jna/sunos-x86-64/libjnidispatch.so; processor=x86-64;osname=sunos, com/sun/jna/sunos-sparc/libjnidispatch.so; processor=sparc;osname=sunos, com/sun/jna/sunos-sparcv9/libjnidispatch.so; processor=sparcv9;osname=sunos, com/sun/jna/aix-ppc/libjnidispatch.a; processor=ppc;osname=aix, com/sun/jna/aix-ppc64/libjnidispatch.a; processor=ppc64;osname=aix, com/sun/jna/linux-ppc/libjnidispatch.so; processor=ppc;osname=linux, com/sun/jna/linux-ppc64/libjnidispatch.so; processor=ppc64;osname=linux, com/sun/jna/linux-ppc64le/libjnidispatch.so; processor=ppc64le;osname=linux, com/sun/jna/linux-x86/libjnidispatch.so; processor=x86;osname=linux, com/sun/jna/linux-x86-64/libjnidispatch.so; processor=x86-64;osname=linux, com/sun/jna/linux-arm/libjnidispatch.so; processor=arm;osname=linux, com/sun/jna/linux-arm/libjnidispatch.so; processor=arm_le;osname=linux, com/sun/jna/linux-armel/libjnidispatch.so; processor=armel;osname=linux, com/sun/jna/linux-aarch64/libjnidispatch.so; processor=aarch64;osname=linux, com/sun/jna/linux-ia64/libjnidispatch.so; processor=ia64;osname=linux, com/sun/jna/linux-sparcv9/libjnidispatch.so; processor=sparcv9;osname=linux, com/sun/jna/linux-mips64el/libjnidispatch.so; processor=mips64el;osname=linux, com/sun/jna/linux-s390x/libjnidispatch.so; processor=S390x;osname=linux, com/sun/jna/linux-loongarch64/libjnidispatch.so; processor=loongarch64;osname=linux, com/sun/jna/linux-riscv64/libjnidispatch.so; processor=riscv64;osname=linux, com/sun/jna/dragonflybsd-x86-64/libjnidispatch.so; processor=x86-64;osname=dragonflybsd, com/sun/jna/freebsd-x86/libjnidispatch.so; processor=x86;osname=freebsd, com/sun/jna/freebsd-x86-64/libjnidispatch.so; processor=x86-64;osname=freebsd, com/sun/jna/freebsd-aarch64/libjnidispatch.so; processor=aarch64;osname=freebsd, com/sun/jna/freebsd-ppc64le/libjnidispatch.so; processor=ppc64le;osname=freebsd, com/sun/jna/freebsd-ppc64/libjnidispatch.so; processor=ppc64;osname=freebsd, com/sun/jna/openbsd-x86/libjnidispatch.so; processor=x86;osname=openbsd, com/sun/jna/openbsd-x86-64/libjnidispatch.so; processor=x86-64;osname=openbsd, com/sun/jna/darwin-ppc/libjnidispatch.jnilib; osname=macosx;processor=ppc, com/sun/jna/darwin-ppc64/libjnidispatch.jnilib; osname=macosx;processor=ppc64, com/sun/jna/darwin-x86/libjnidispatch.jnilib; osname=macosx;processor=x86, com/sun/jna/darwin-x86-64/libjnidispatch.jnilib; osname=macosx;processor=x86-64, com/sun/jna/darwin-aarch64/libjnidispatch.jnilib; osname=macosx;processor=aarch64	Low
Vendor	Manifest	bundle-requiredexecutionenvironment	JavaSE-1.6	Low
Vendor	Manifest	bundle-symbolicname	com.sun.jna	Medium
Vendor	Manifest	Implementation-Vendor	JNA Development Team	High
Vendor	Manifest	specification-vendor	JNA Development Team	Low
Vendor	pom	artifactid	jna	Highest
Vendor	pom	artifactid	jna	Low
Vendor	pom	developer email	mblaesing@doppel-helix.eu	Low
Vendor	pom	developer id	twall	Medium
Vendor	pom	developer name	Matthias Bläsing	Medium
Vendor	pom	developer name	Timothy Wall	Medium
Vendor	pom	groupid	net.java.dev.jna	Highest
Vendor	pom	name	Java Native Access	High
Vendor	pom	url	java-native-access/jna	Highest
Product	file	name	jna	High
Product	jar	package name	jna	Highest
Product	jar	package name	library	Highest
Product	jar	package name	native	Highest
Product	jar	package name	sun	Highest
Product	jar	package name	win32	Highest
Product	Manifest	automatic-module-name	com.sun.jna	Medium
Product	Manifest	bundle-activationpolicy	lazy	Low
Product	Manifest	bundle-category	jni	Low
Product	Manifest	Bundle-Name	jna	Medium
Product	Manifest	bundle-nativecode	com/sun/jna/win32-x86/jnidispatch.dll; processor=x86;osname=win32, com/sun/jna/win32-x86-64/jnidispatch.dll; processor=x86-64;osname=win32, com/sun/jna/win32-aarch64/jnidispatch.dll; processor=aarch64;osname=win32, com/sun/jna/win32-x86/jnidispatch.dll; processor=x86;osname=win, com/sun/jna/win32-x86-64/jnidispatch.dll; processor=x86-64;osname=win, com/sun/jna/win32-aarch64/jnidispatch.dll; processor=aarch64;osname=win, com/sun/jna/w32ce-arm/jnidispatch.dll; processor=arm;osname=wince, com/sun/jna/sunos-x86/libjnidispatch.so; processor=x86;osname=sunos, com/sun/jna/sunos-x86-64/libjnidispatch.so; processor=x86-64;osname=sunos, com/sun/jna/sunos-sparc/libjnidispatch.so; processor=sparc;osname=sunos, com/sun/jna/sunos-sparcv9/libjnidispatch.so; processor=sparcv9;osname=sunos, com/sun/jna/aix-ppc/libjnidispatch.a; processor=ppc;osname=aix, com/sun/jna/aix-ppc64/libjnidispatch.a; processor=ppc64;osname=aix, com/sun/jna/linux-ppc/libjnidispatch.so; processor=ppc;osname=linux, com/sun/jna/linux-ppc64/libjnidispatch.so; processor=ppc64;osname=linux, com/sun/jna/linux-ppc64le/libjnidispatch.so; processor=ppc64le;osname=linux, com/sun/jna/linux-x86/libjnidispatch.so; processor=x86;osname=linux, com/sun/jna/linux-x86-64/libjnidispatch.so; processor=x86-64;osname=linux, com/sun/jna/linux-arm/libjnidispatch.so; processor=arm;osname=linux, com/sun/jna/linux-arm/libjnidispatch.so; processor=arm_le;osname=linux, com/sun/jna/linux-armel/libjnidispatch.so; processor=armel;osname=linux, com/sun/jna/linux-aarch64/libjnidispatch.so; processor=aarch64;osname=linux, com/sun/jna/linux-ia64/libjnidispatch.so; processor=ia64;osname=linux, com/sun/jna/linux-sparcv9/libjnidispatch.so; processor=sparcv9;osname=linux, com/sun/jna/linux-mips64el/libjnidispatch.so; processor=mips64el;osname=linux, com/sun/jna/linux-s390x/libjnidispatch.so; processor=S390x;osname=linux, com/sun/jna/linux-loongarch64/libjnidispatch.so; processor=loongarch64;osname=linux, com/sun/jna/linux-riscv64/libjnidispatch.so; processor=riscv64;osname=linux, com/sun/jna/dragonflybsd-x86-64/libjnidispatch.so; processor=x86-64;osname=dragonflybsd, com/sun/jna/freebsd-x86/libjnidispatch.so; processor=x86;osname=freebsd, com/sun/jna/freebsd-x86-64/libjnidispatch.so; processor=x86-64;osname=freebsd, com/sun/jna/freebsd-aarch64/libjnidispatch.so; processor=aarch64;osname=freebsd, com/sun/jna/freebsd-ppc64le/libjnidispatch.so; processor=ppc64le;osname=freebsd, com/sun/jna/freebsd-ppc64/libjnidispatch.so; processor=ppc64;osname=freebsd, com/sun/jna/openbsd-x86/libjnidispatch.so; processor=x86;osname=openbsd, com/sun/jna/openbsd-x86-64/libjnidispatch.so; processor=x86-64;osname=openbsd, com/sun/jna/darwin-ppc/libjnidispatch.jnilib; osname=macosx;processor=ppc, com/sun/jna/darwin-ppc64/libjnidispatch.jnilib; osname=macosx;processor=ppc64, com/sun/jna/darwin-x86/libjnidispatch.jnilib; osname=macosx;processor=x86, com/sun/jna/darwin-x86-64/libjnidispatch.jnilib; osname=macosx;processor=x86-64, com/sun/jna/darwin-aarch64/libjnidispatch.jnilib; osname=macosx;processor=aarch64	Low
Product	Manifest	bundle-requiredexecutionenvironment	JavaSE-1.6	Low
Product	Manifest	bundle-symbolicname	com.sun.jna	Medium
Product	Manifest	Implementation-Title	com.sun.jna	High
Product	Manifest	specification-title	Java Native Access (JNA)	Medium
Product	pom	artifactid	jna	Highest
Product	pom	developer email	mblaesing@doppel-helix.eu	Low
Product	pom	developer id	twall	Low
Product	pom	developer name	Matthias Bläsing	Low
Product	pom	developer name	Timothy Wall	Low
Product	pom	groupid	net.java.dev.jna	Highest
Product	pom	name	Java Native Access	High
Product	pom	url	java-native-access/jna	High
Version	file	version	5.17.0	High
Version	Manifest	Bundle-Version	5.17.0	High
Version	pom	version	5.17.0	Highest

Related Dependencies

Identifiers

pkg:maven/net.java.dev.jna/jna@5.17.0 (Confidence:High)
cpe:2.3:a:oracle:java_se:5.17.0:*:*:*:*:*:*:* (Confidence:Low)

jna-jpms-5.17.0.jar: jnidispatch.dll

File Path: /home/runner/.m2/repository/net/java/dev/jna/jna-jpms/5.17.0/jna-jpms-5.17.0.jar/com/sun/jna/win32-aarch64/jnidispatch.dll
MD5: 302945a811fd8e21bcdd5226c73b6f74
SHA1: 6b05e299ff2b3eb3b7b7aeac44263f715693607c
SHA256:b8f98be314234cf12b5b46c29652f70c0f6abb93ae19b63d3fe2692062aa699d
Referenced In Projects/Scopes:

oshi-demo:compile
oshi-dist:compile
oshi-core-java11:compile
oshi-core:compile

Evidence

Type	Source	Name	Value	Confidence
Vendor	file	name	jnidispatch	High
Product	file	name	jnidispatch	High

Related Dependencies

Identifiers

None

jna-jpms-5.17.0.jar: jnidispatch.dll

File Path: /home/runner/.m2/repository/net/java/dev/jna/jna-jpms/5.17.0/jna-jpms-5.17.0.jar/com/sun/jna/win32-x86-64/jnidispatch.dll
MD5: 2d2475f1f026dd54e9f3e787ae4f81da
SHA1: 27ff882ac271db547aee520b38e3ba9aa91e136c
SHA256:5a7ff949f6d93d86491eb5b26b1cfc60051168a60622650224b89995ac420023
Referenced In Projects/Scopes:

oshi-demo:compile
oshi-dist:compile
oshi-core-java11:compile
oshi-core:compile

Evidence

Type	Source	Name	Value	Confidence
Vendor	file	name	jnidispatch	High
Product	file	name	jnidispatch	High

Related Dependencies

Identifiers

None

jna-jpms-5.17.0.jar: jnidispatch.dll

File Path: /home/runner/.m2/repository/net/java/dev/jna/jna-jpms/5.17.0/jna-jpms-5.17.0.jar/com/sun/jna/win32-x86/jnidispatch.dll
MD5: 0caa1ef75a807f9dde05084fa2219a5c
SHA1: 2f5e1cd82cde192905c7510ce99037b67d980640
SHA256:752d597cee7e95cb517327146bf42f124c0d6c0bc48b3ecc3b1b3b0531a52f44
Referenced In Projects/Scopes:

oshi-demo:compile
oshi-dist:compile
oshi-core-java11:compile
oshi-core:compile

Evidence

Type	Source	Name	Value	Confidence
Vendor	file	name	jnidispatch	High
Product	file	name	jnidispatch	High

Related Dependencies

Identifiers

None

jna-platform-5.17.0.jar

Description:

Java Native Access Platform

License:

LGPL-2.1-or-later: https://www.gnu.org/licenses/old-licenses/lgpl-2.1
Apache-2.0: https://www.apache.org/licenses/LICENSE-2.0.txt

File Path: /home/runner/.m2/repository/net/java/dev/jna/jna-platform/5.17.0/jna-platform-5.17.0.jar
MD5: e0ae0c295de31af32a3800e56a5263be
SHA1: a4934c44d25a9d8c2ddf4203affd20330cb3426f
SHA256:b7e3d46c87bad2eb409b0e704916bcd81206168e357312dfddd0e253679cd9e0
Referenced In Projects/Scopes:

oshi-demo:compile
oshi-dist:compile
oshi-core:compile

pkg:maven/com.github.oshi/oshi-core@6.8.1-SNAPSHOT
pkg:maven/com.github.oshi/oshi-core@6.8.1-SNAPSHOT
pkg:maven/com.github.oshi/oshi-core@6.8.1-SNAPSHOT

Evidence

Type	Source	Name	Value	Confidence
Vendor	file	name	jna-platform	High
Vendor	jar	package name	jna	Highest
Vendor	jar	package name	platform	Highest
Vendor	jar	package name	sun	Highest
Vendor	jar (hint)	package name	oracle	Highest
Vendor	Manifest	automatic-module-name	com.sun.jna.platform	Medium
Vendor	Manifest	bundle-category	jni	Low
Vendor	Manifest	bundle-requiredexecutionenvironment	J2SE-1.4	Low
Vendor	Manifest	bundle-symbolicname	com.sun.jna.platform	Medium
Vendor	Manifest	Implementation-Vendor	JNA Development Team	High
Vendor	Manifest	specification-vendor	JNA Development Team	Low
Vendor	pom	artifactid	jna-platform	Highest
Vendor	pom	artifactid	jna-platform	Low
Vendor	pom	developer email	mblaesing@doppel-helix.eu	Low
Vendor	pom	developer id	twall	Medium
Vendor	pom	developer name	Matthias Bläsing	Medium
Vendor	pom	developer name	Timothy Wall	Medium
Vendor	pom	groupid	net.java.dev.jna	Highest
Vendor	pom	name	Java Native Access Platform	High
Vendor	pom	url	java-native-access/jna	Highest
Product	file	name	jna-platform	High
Product	jar	package name	jna	Highest
Product	jar	package name	platform	Highest
Product	jar	package name	sun	Highest
Product	Manifest	automatic-module-name	com.sun.jna.platform	Medium
Product	Manifest	bundle-category	jni	Low
Product	Manifest	Bundle-Name	jna-platform	Medium
Product	Manifest	bundle-requiredexecutionenvironment	J2SE-1.4	Low
Product	Manifest	bundle-symbolicname	com.sun.jna.platform	Medium
Product	Manifest	Implementation-Title	com.sun.jna	High
Product	Manifest	specification-title	Java Native Access (JNA)	Medium
Product	pom	artifactid	jna-platform	Highest
Product	pom	developer email	mblaesing@doppel-helix.eu	Low
Product	pom	developer id	twall	Low
Product	pom	developer name	Matthias Bläsing	Low
Product	pom	developer name	Timothy Wall	Low
Product	pom	groupid	net.java.dev.jna	Highest
Product	pom	name	Java Native Access Platform	High
Product	pom	url	java-native-access/jna	High
Version	file	version	5.17.0	High
Version	Manifest	Bundle-Version	5.17.0	High
Version	pom	version	5.17.0	Highest

Identifiers

pkg:maven/net.java.dev.jna/jna-platform@5.17.0 (Confidence:High)

jna-platform-jpms-5.17.0.jar

Description:

Java Native Access Platform

License:

LGPL-2.1-or-later: https://www.gnu.org/licenses/old-licenses/lgpl-2.1
Apache-2.0: https://www.apache.org/licenses/LICENSE-2.0.txt

File Path: /home/runner/.m2/repository/net/java/dev/jna/jna-platform-jpms/5.17.0/jna-platform-jpms-5.17.0.jar
MD5: 1358c9f34d3c816b5716c51770d39613
SHA1: 3e188fef07cb6a9ac434ec30f59e6c622045bf13
SHA256:0754ecfa6ec755b9630fca187431bd6591f304faabf3f9c59cd9e61d66213482
Referenced In Projects/Scopes:

oshi-dist:compile
oshi-core-java11:compile

pkg:maven/com.github.oshi/oshi-core-java11@6.8.1-SNAPSHOT
pkg:maven/com.github.oshi/oshi-core-java11@6.8.1-SNAPSHOT

Evidence

Type	Source	Name	Value	Confidence
Vendor	file	name	jna-platform-jpms	High
Vendor	jar	package name	jna	Highest
Vendor	jar	package name	platform	Highest
Vendor	jar	package name	sun	Highest
Vendor	jar (hint)	package name	oracle	Highest
Vendor	Manifest	bundle-category	jni	Low
Vendor	Manifest	bundle-requiredexecutionenvironment	J2SE-1.4	Low
Vendor	Manifest	bundle-symbolicname	com.sun.jna.platform	Medium
Vendor	Manifest	Implementation-Vendor	JNA Development Team	High
Vendor	Manifest	multi-release	true	Low
Vendor	Manifest	specification-vendor	JNA Development Team	Low
Vendor	pom	artifactid	jna-platform-jpms	Highest
Vendor	pom	artifactid	jna-platform-jpms	Low
Vendor	pom	developer email	mblaesing@doppel-helix.eu	Low
Vendor	pom	developer id	twall	Medium
Vendor	pom	developer name	Matthias Bläsing	Medium
Vendor	pom	developer name	Timothy Wall	Medium
Vendor	pom	groupid	net.java.dev.jna	Highest
Vendor	pom	name	Java Native Access Platform	High
Vendor	pom	url	java-native-access/jna	Highest
Product	file	name	jna-platform-jpms	High
Product	jar	package name	jna	Highest
Product	jar	package name	platform	Highest
Product	jar	package name	sun	Highest
Product	Manifest	bundle-category	jni	Low
Product	Manifest	Bundle-Name	jna-platform	Medium
Product	Manifest	bundle-requiredexecutionenvironment	J2SE-1.4	Low
Product	Manifest	bundle-symbolicname	com.sun.jna.platform	Medium
Product	Manifest	Implementation-Title	com.sun.jna	High
Product	Manifest	multi-release	true	Low
Product	Manifest	specification-title	Java Native Access (JNA)	Medium
Product	pom	artifactid	jna-platform-jpms	Highest
Product	pom	developer email	mblaesing@doppel-helix.eu	Low
Product	pom	developer id	twall	Low
Product	pom	developer name	Matthias Bläsing	Low
Product	pom	developer name	Timothy Wall	Low
Product	pom	groupid	net.java.dev.jna	Highest
Product	pom	name	Java Native Access Platform	High
Product	pom	url	java-native-access/jna	High
Version	file	version	5.17.0	High
Version	Manifest	Bundle-Version	5.17.0	High
Version	pom	version	5.17.0	Highest

Identifiers

pkg:maven/net.java.dev.jna/jna-platform-jpms@5.17.0 (Confidence:High)

slf4j-api-2.0.17.jar

Description:

The slf4j API

License:

https://opensource.org/license/mit

File Path: /home/runner/.m2/repository/org/slf4j/slf4j-api/2.0.17/slf4j-api-2.0.17.jar
MD5: b6480d114a23683498ac3f746f959d2f
SHA1: d9e58ac9c7779ba3bf8142aff6c830617a7fe60f
SHA256:7b751d952061954d5abfed7181c1f645d336091b679891591d63329c622eb832
Referenced In Projects/Scopes:

oshi-demo:compile
oshi-dist:compile
oshi-core-java11:compile
oshi-core:compile

pkg:maven/com.github.oshi/oshi-core@6.8.1-SNAPSHOT
pkg:maven/com.github.oshi/oshi-core-java11@6.8.1-SNAPSHOT
pkg:maven/com.github.oshi/oshi-core@6.8.1-SNAPSHOT
pkg:maven/com.github.oshi/oshi-core@6.8.1-SNAPSHOT

Evidence

Type	Source	Name	Value	Confidence
Vendor	file	name	slf4j-api	High
Vendor	jar	package name	slf4j	Highest
Vendor	Manifest	build-jdk-spec	21	Low
Vendor	Manifest	bundle-docurl	http://www.slf4j.org	Low
Vendor	Manifest	bundle-symbolicname	slf4j.api	Medium
Vendor	Manifest	multi-release	true	Low
Vendor	pom	artifactid	slf4j-api	Highest
Vendor	pom	artifactid	slf4j-api	Low
Vendor	pom	groupid	org.slf4j	Highest
Vendor	pom	name	SLF4J API Module	High
Vendor	pom	parent-artifactid	slf4j-parent	Low
Vendor	pom	url	http://www.slf4j.org	Highest
Product	file	name	slf4j-api	High
Product	jar	package name	slf4j	Highest
Product	Manifest	build-jdk-spec	21	Low
Product	Manifest	bundle-docurl	http://www.slf4j.org	Low
Product	Manifest	Bundle-Name	SLF4J API Module	Medium
Product	Manifest	bundle-symbolicname	slf4j.api	Medium
Product	Manifest	Implementation-Title	slf4j-api	High
Product	Manifest	multi-release	true	Low
Product	pom	artifactid	slf4j-api	Highest
Product	pom	groupid	org.slf4j	Highest
Product	pom	name	SLF4J API Module	High
Product	pom	parent-artifactid	slf4j-parent	Medium
Product	pom	url	http://www.slf4j.org	Medium
Version	file	version	2.0.17	High
Version	Manifest	Bundle-Version	2.0.17	High
Version	Manifest	Implementation-Version	2.0.17	High
Version	pom	version	2.0.17	Highest

Identifiers

pkg:maven/org.slf4j/slf4j-api@2.0.17 (Confidence:High)

slf4j-simple-2.0.17.jar

Description:

SLF4J Simple Provider

License:

https://opensource.org/license/mit

File Path: /home/runner/.m2/repository/org/slf4j/slf4j-simple/2.0.17/slf4j-simple-2.0.17.jar
MD5: 47a7060262b6800b3e0e41db00909b81
SHA1: 9872a3fd794ffe7b18d17747926a64d61526ca96
SHA256:ddfea59ac074c6d3e24ac2c38622d2d963895e17f70b38ed4bdae4d780be6964
Referenced In Projects/Scopes:

oshi-demo:compile
oshi-dist:compile

pkg:maven/com.github.oshi/oshi-demo@6.8.1-SNAPSHOT
pkg:maven/com.github.oshi/oshi-demo@6.8.1-SNAPSHOT

Evidence

Type	Source	Name	Value	Confidence
Vendor	file	name	slf4j-simple	High
Vendor	jar	package name	simple	Highest
Vendor	jar	package name	slf4j	Highest
Vendor	Manifest	build-jdk-spec	21	Low
Vendor	Manifest	bundle-docurl	http://www.slf4j.org	Low
Vendor	Manifest	bundle-symbolicname	slf4j.simple	Medium
Vendor	Manifest	multi-release	true	Low
Vendor	Manifest	originally-created-by	Apache Maven Bundle Plugin 5.1.9	Low
Vendor	Manifest	provide-capability	osgi.service;objectClass:List="org.slf4j.spi.SLF4JServiceProvider";type=simple;effective:=active,osgi.serviceloader;osgi.serviceloader="org.slf4j.spi.SLF4JServiceProvider";register:="org.slf4j.simple.SimpleServiceProvider";type=simple	Low
Vendor	pom	artifactid	slf4j-simple	Highest
Vendor	pom	artifactid	slf4j-simple	Low
Vendor	pom	groupid	org.slf4j	Highest
Vendor	pom	name	SLF4J Simple Provider	High
Vendor	pom	parent-artifactid	slf4j-parent	Low
Vendor	pom	url	http://www.slf4j.org	Highest
Product	file	name	slf4j-simple	High
Product	jar	package name	9	Highest
Product	jar	package name	simple	Highest
Product	jar	package name	simpleserviceprovider	Highest
Product	jar	package name	slf4j	Highest
Product	Manifest	build-jdk-spec	21	Low
Product	Manifest	bundle-docurl	http://www.slf4j.org	Low
Product	Manifest	Bundle-Name	SLF4J Simple Provider	Medium
Product	Manifest	bundle-symbolicname	slf4j.simple	Medium
Product	Manifest	Implementation-Title	slf4j-simple	High
Product	Manifest	multi-release	true	Low
Product	Manifest	originally-created-by	Apache Maven Bundle Plugin 5.1.9	Low
Product	Manifest	provide-capability	osgi.service;objectClass:List="org.slf4j.spi.SLF4JServiceProvider";type=simple;effective:=active,osgi.serviceloader;osgi.serviceloader="org.slf4j.spi.SLF4JServiceProvider";register:="org.slf4j.simple.SimpleServiceProvider";type=simple	Low
Product	pom	artifactid	slf4j-simple	Highest
Product	pom	groupid	org.slf4j	Highest
Product	pom	name	SLF4J Simple Provider	High
Product	pom	parent-artifactid	slf4j-parent	Medium
Product	pom	url	http://www.slf4j.org	Medium
Version	file	version	2.0.17	High
Version	Manifest	Bundle-Version	2.0.17	High
Version	Manifest	Implementation-Version	2.0.17	High
Version	pom	version	2.0.17	Highest

Identifiers

pkg:maven/org.slf4j/slf4j-simple@2.0.17 (Confidence:High)

How to read the report | Suppressing false positives | Getting Help: github issues Sponsor

Project: Operating System and Hardware Information

com.github.oshi:oshi-parent:6.8.1-SNAPSHOT

Summary

Dependencies (vulnerable)

com.github.oshi:oshi-core-java11:6.8.1-SNAPSHOT

Evidence

Identifiers

com.github.oshi:oshi-core:6.8.1-SNAPSHOT

Evidence

Identifiers

com.github.oshi:oshi-demo:6.8.1-SNAPSHOT

Evidence

Identifiers

jLibreHardwareMonitor-1.0.5.jar

Evidence

Identifiers

jLibreHardwareMonitor-1.0.5.jar: HidSharp.dll

Evidence

Identifiers

jLibreHardwareMonitor-1.0.5.jar: LibreHardwareMonitorLib.dll

Evidence

Identifiers

jLibreHardwareMonitor-1.0.5.jar: OpenHardwareMonitorLib.dll

Evidence

Identifiers

jPowerShell-1.0.0.jar

Evidence

Identifiers

jackson-core-2.18.3.jar

Evidence

Related Dependencies

Identifiers

jackson-databind-2.18.3.jar

Evidence

Identifiers

jfreechart-1.5.5.jar

Evidence

Identifiers

jna-5.17.0.jar

Evidence

Related Dependencies

Identifiers

jna-jpms-5.17.0.jar: jnidispatch.dll

Evidence

Related Dependencies

Identifiers

jna-jpms-5.17.0.jar: jnidispatch.dll

Evidence

Related Dependencies

Identifiers

jna-jpms-5.17.0.jar: jnidispatch.dll

Evidence

Related Dependencies

Identifiers

jna-platform-5.17.0.jar

Evidence

Identifiers

jna-platform-jpms-5.17.0.jar

Evidence

Identifiers

slf4j-api-2.0.17.jar

Evidence

Identifiers

slf4j-simple-2.0.17.jar

Evidence

Identifiers

How to read the report | Suppressing false positives | Getting Help: github issues

Sponsor