Press CTR-C to copy XML [help]


Dependency-Check is an open source tool performing a best effort analysis of 3rd party dependencies; false positives and false negatives may exist in the analysis performed by the tool. Use of the tool and the reporting provided constitutes acceptance for use in an AS IS condition, and there are NO warranties, implied or otherwise, with regard to the analysis or its use. Any use of the tool and the reporting provided is at the user’s risk. In no event shall the copyright holder or OWASP be held liable for any damages whatsoever arising out of or in connection with the use of this tool, the analysis performed, or the resulting report.

How to read the report | Suppressing false positives | Getting Help: github issues

 Sponsor

Project: Node.js Maven Plugin

io.wcm.maven.plugins:nodejs-maven-plugin:3.0.3-SNAPSHOT

Scan Information (show all):

Summary

Display: Showing Vulnerable Dependencies (click to show all)

DependencyVulnerability IDsPackageHighest SeverityCVE CountConfidenceEvidence Count
aether-api-1.13.1.jarpkg:maven/org.sonatype.aether/aether-api@1.13.1 024
aether-impl-1.13.1.jarpkg:maven/org.sonatype.aether/aether-impl@1.13.1 027
aether-spi-1.13.1.jarpkg:maven/org.sonatype.aether/aether-spi@1.13.1 027
aether-util-1.13.1.jarpkg:maven/org.sonatype.aether/aether-util@1.13.1 028
commons-compress-1.21.jarcpe:2.3:a:apache:commons_compress:1.21:*:*:*:*:*:*:*pkg:maven/org.apache.commons/commons-compress@1.21 0Highest45
commons-io-2.7.jarcpe:2.3:a:apache:commons_io:2.7:*:*:*:*:*:*:*pkg:maven/commons-io/commons-io@2.7 0Highest41
commons-lang3-3.8.1.jarpkg:maven/org.apache.commons/commons-lang3@3.8.1 042
maven-aether-provider-3.0.5.jarpkg:maven/org.apache.maven/maven-aether-provider@3.0.5 027
maven-artifact-3.0.5.jarpkg:maven/org.apache.maven/maven-artifact@3.0.5 027
maven-compat-3.0.5.jarpkg:maven/org.apache.maven/maven-compat@3.0.5 025
maven-core-3.0.5.jarcpe:2.3:a:apache:maven:3.0.5:*:*:*:*:*:*:*pkg:maven/org.apache.maven/maven-core@3.0.5CRITICAL1Highest25
maven-model-3.0.5.jarpkg:maven/org.apache.maven/maven-model@3.0.5 027
maven-model-builder-3.0.5.jarpkg:maven/org.apache.maven/maven-model-builder@3.0.5 033
maven-plugin-api-3.0.5.jarpkg:maven/org.apache.maven/maven-plugin-api@3.0.5 027
maven-repository-metadata-3.0.5.jarpkg:maven/org.apache.maven/maven-repository-metadata@3.0.5 027
maven-settings-3.0.5.jarpkg:maven/org.apache.maven/maven-settings@3.0.5 027
maven-settings-builder-3.0.5.jarpkg:maven/org.apache.maven/maven-settings-builder@3.0.5 027
plexus-cipher-1.4.jarpkg:maven/org.sonatype.plexus/plexus-cipher@1.4 030
plexus-classworlds-2.4.jarpkg:maven/org.codehaus.plexus/plexus-classworlds@2.4 027
plexus-component-annotations-1.5.5.jarpkg:maven/org.codehaus.plexus/plexus-component-annotations@1.5.5 029
plexus-interpolation-1.14.jarpkg:maven/org.codehaus.plexus/plexus-interpolation@1.14 027
plexus-sec-dispatcher-1.3.jarpkg:maven/org.sonatype.plexus/plexus-sec-dispatcher@1.3 030
plexus-utils-3.0.9.jarcpe:2.3:a:plexus-utils_project:plexus-utils:3.0.9:*:*:*:*:*:*:*pkg:maven/org.codehaus.plexus/plexus-utils@3.0.9Unknown3Highest29
sisu-guava-0.9.9.jarcpe:2.3:a:google:guava:0.9.9:*:*:*:*:*:*:*pkg:maven/org.sonatype.sisu/sisu-guava@0.9.9LOW1Low26
sisu-guice-3.1.0-no_aop.jarpkg:maven/org.sonatype.sisu/sisu-guice@3.1.0 028
sisu-inject-bean-2.3.0.jarpkg:maven/org.sonatype.sisu/sisu-inject-bean@2.3.0 039
sisu-inject-plexus-2.3.0.jarpkg:maven/org.sonatype.sisu/sisu-inject-plexus@2.3.0 031
wagon-provider-api-2.4.jarcpe:2.3:a:apache:maven_wagon:2.4:*:*:*:*:*:*:*pkg:maven/org.apache.maven.wagon/wagon-provider-api@2.4 0Highest27

Dependencies

aether-api-1.13.1.jar

Description:

    The application programming interface for the repository system.

File Path: /home/runner/.m2/repository/org/sonatype/aether/aether-api/1.13.1/aether-api-1.13.1.jar
MD5: 6438f4b31d3f3220d88edc16abdc3721
SHA1: e48292eae5e14ec44978aa53debb1af7ddd6df93
SHA256:ae8dc80232771f8913febfa410c5719e9ba8ded81fb99788e214fd676dbbe13f
Referenced In Project/Scope:Node.js Maven Plugin:compile

Identifiers

aether-impl-1.13.1.jar

Description:

    An implementation of the repository system.

File Path: /home/runner/.m2/repository/org/sonatype/aether/aether-impl/1.13.1/aether-impl-1.13.1.jar
MD5: 4236e1586cfdd28f032bcf71293f6bb1
SHA1: ba2656934fa7c0f20c0c3882873dc705e16ae201
SHA256:865511994805827e88f327944a089142bb7f3d88cde271ba3dceb732cb137a93
Referenced In Project/Scope:Node.js Maven Plugin:compile

Identifiers

aether-spi-1.13.1.jar

Description:

    The service provider interface for repository system implementations and repository connectors.

File Path: /home/runner/.m2/repository/org/sonatype/aether/aether-spi/1.13.1/aether-spi-1.13.1.jar
MD5: 3f1881f890062e779fa27aa9a6789ceb
SHA1: c62b02d2a5a3939fded72039dd83e5b8ed42d45e
SHA256:d5de4e299be5a79feb1dbe8ff3814034c6e44314b4c00b92ffa8d97576ded5b3
Referenced In Project/Scope:Node.js Maven Plugin:compile

Identifiers

aether-util-1.13.1.jar

Description:

    A collection of utility classes to ease usage of the repository system.

File Path: /home/runner/.m2/repository/org/sonatype/aether/aether-util/1.13.1/aether-util-1.13.1.jar
MD5: 119757ef761de4a43c763622dcb1f56e
SHA1: c8487ceb499b9ced96694731810acd1a70e13aca
SHA256:687799a0ce988bee9e8eb9ae0ba870300adc0114248ad4a4327bdb625d27e010
Referenced In Project/Scope:Node.js Maven Plugin:compile

Identifiers

commons-compress-1.21.jar

Description:

Apache Commons Compress software defines an API for working with
compression and archive formats.  These include: bzip2, gzip, pack200,
lzma, xz, Snappy, traditional Unix Compress, DEFLATE, DEFLATE64, LZ4,
Brotli, Zstandard and ar, cpio, jar, tar, zip, dump, 7z, arj.

License:

https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/org/apache/commons/commons-compress/1.21/commons-compress-1.21.jar
MD5: 2a713d10331bc4e13459a3dc0463f16f
SHA1: 4ec95b60d4e86b5c95a0e919cb172a0af98011ef
SHA256:6aecfd5459728a595601cfa07258d131972ffc39b492eb48bdd596577a2f244a
Referenced In Project/Scope:Node.js Maven Plugin:compile

Identifiers

commons-io-2.7.jar

Description:

The Apache Commons IO library contains utility classes, stream implementations, file filters,
file comparators, endian transformation classes, and much more.

License:

https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/commons-io/commons-io/2.7/commons-io-2.7.jar
MD5: 87709c85b69a685ddba69c65fe6dd6f9
SHA1: 3f2bd4ba11c4162733c13cc90ca7c7ea09967102
SHA256:4547858fff38bbf15262d520685b184a3dce96897bc1844871f055b96e8f6e95
Referenced In Project/Scope:Node.js Maven Plugin:compile

Identifiers

commons-lang3-3.8.1.jar

Description:

  Apache Commons Lang, a package of Java utility classes for the
  classes that are in java.lang's hierarchy, or are considered to be so
  standard as to justify existence in java.lang.

License:

https://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/org/apache/commons/commons-lang3/3.8.1/commons-lang3-3.8.1.jar
MD5: 540b1256d887a6993ecbef23371a3302
SHA1: 6505a72a097d9270f7a9e7bf42c4238283247755
SHA256:dac807f65b07698ff39b1b07bfef3d87ae3fd46d91bbf8a2bc02b2a831616f68
Referenced In Project/Scope:Node.js Maven Plugin:compile

Identifiers

maven-aether-provider-3.0.5.jar

Description:

    This module provides extensions to Aether for utilizing the Maven POM and Maven repository metadata for artifacts resolution
    and download.

File Path: /home/runner/.m2/repository/org/apache/maven/maven-aether-provider/3.0.5/maven-aether-provider-3.0.5.jar
MD5: aad430d4111400e0d78c4e79eb0f9797
SHA1: e0716af7536efeb1da5d90b12464fea2a6fb40ef
SHA256:c74327cd5d7b137c8be3591c766271ac8ace1a617518f0410b8a95579f9839b0
Referenced In Project/Scope:Node.js Maven Plugin:compile

Identifiers

maven-artifact-3.0.5.jar

File Path: /home/runner/.m2/repository/org/apache/maven/maven-artifact/3.0.5/maven-artifact-3.0.5.jar
MD5: 37818c6f0ef84b6338fdd1520e9831db
SHA1: 7cd9aa7425c4a967bd39c2f6f61ab9535570fcb4
SHA256:c6d5e244dd2329971f91b8df666ffe9e0b00a7dd014d6ee073b6f6cb82877f5c
Referenced In Project/Scope:Node.js Maven Plugin:compile

Identifiers

maven-compat-3.0.5.jar

Description:

Maven classes maintained as compatibility layer for tools done with Maven 2.

File Path: /home/runner/.m2/repository/org/apache/maven/maven-compat/3.0.5/maven-compat-3.0.5.jar
MD5: 9e7496beab913c7eba402f4bf841ad33
SHA1: eba28d69a67413f5edcad8cfc826b9e0312a6d57
SHA256:1e821ef210f502d541741e950399bf7db385dfbb07d6b09ab9d65ff3ff0567fc
Referenced In Project/Scope:Node.js Maven Plugin:compile

Identifiers

maven-core-3.0.5.jar

Description:

Maven Core classes.

File Path: /home/runner/.m2/repository/org/apache/maven/maven-core/3.0.5/maven-core-3.0.5.jar
MD5: ee0bd82403231f5e268fd85044027221
SHA1: 27659b27346aff66d36e8ab16c7050220d875bca
SHA256:ac8e617f951ecde3c4f6bca4922fdd7861500fe7d58289f26ad5adac443075bc
Referenced In Project/Scope:Node.js Maven Plugin:compile

Identifiers

CVE-2021-26291  

Apache Maven will follow repositories that are defined in a dependency’s Project Object Model (pom) which may be surprising to some users, resulting in potential risk if a malicious actor takes over that repository or is able to insert themselves into a position to pretend to be that repository. Maven is changing the default behavior in 3.8.1+ to no longer follow http (non-SSL) repository references by default. More details available in the referenced urls. If you are currently using a repository manager to govern the repositories used by your builds, you are unaffected by the risks present in the legacy behavior, and are unaffected by this vulnerability and change to default behavior. See this link for more information about repository management: https://maven.apache.org/repository-management.html
CWE-346 Origin Validation Error

CVSSv2:
  • Base Score: MEDIUM (6.4)
  • Vector: /AV:N/AC:L/Au:N/C:P/I:P/A:N
CVSSv3:
  • Base Score: CRITICAL (9.1)
  • Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

References:

Vulnerable Software & Versions: (show all)

maven-model-3.0.5.jar

Description:

Model for Maven POM (Project Object Model)

File Path: /home/runner/.m2/repository/org/apache/maven/maven-model/3.0.5/maven-model-3.0.5.jar
MD5: 40a2c5b201caf14b90faa27fd55f9515
SHA1: 490d7489dd73137f6afef52c5a3e465201c533bf
SHA256:876a76b663db6c7326ad234afe430c473d3261a06b3284f31d5eb4889d1c3084
Referenced In Project/Scope:Node.js Maven Plugin:compile

Identifiers

maven-model-builder-3.0.5.jar

Description:

The effective model builder, with inheritance, profile activation, interpolation, ...

File Path: /home/runner/.m2/repository/org/apache/maven/maven-model-builder/3.0.5/maven-model-builder-3.0.5.jar
MD5: 98198ff5698781c9bf48b081bad49e62
SHA1: f1e0b49ebe74335c11c93eec7549c65291053bc9
SHA256:45a2c6ff76e12678eaf576bd7a68d028c5a5ba85fdc216a381ea86e9187e1b51
Referenced In Project/Scope:Node.js Maven Plugin:compile

Identifiers

maven-plugin-api-3.0.5.jar

Description:

The API for plugins - Mojos - development.

File Path: /home/runner/.m2/repository/org/apache/maven/maven-plugin-api/3.0.5/maven-plugin-api-3.0.5.jar
MD5: cbe2f575d378fc6163c157a0e6af42a3
SHA1: 958b87b581d46e7958b39733b0cc600927e8521e
SHA256:469505f75b8526a338cfd7e0ec841655ae52ddbcc1b36482e97d72f52ce7d890
Referenced In Project/Scope:Node.js Maven Plugin:compile

Identifiers

maven-repository-metadata-3.0.5.jar

Description:

Per-directory local and remote repository metadata.

File Path: /home/runner/.m2/repository/org/apache/maven/maven-repository-metadata/3.0.5/maven-repository-metadata-3.0.5.jar
MD5: 2b5e8628b7d1d32829437dd1dc66f97a
SHA1: 94475fff77103ae46a1b02284a0950ed74497fc3
SHA256:c867b4e075a4548bf27422542f96b159f94c4e7ffaaf6427b10433afd6a3a38c
Referenced In Project/Scope:Node.js Maven Plugin:compile

Identifiers

maven-settings-3.0.5.jar

Description:

Maven Settings model.

File Path: /home/runner/.m2/repository/org/apache/maven/maven-settings/3.0.5/maven-settings-3.0.5.jar
MD5: a608e0ce2bffaf9f89418e657746c894
SHA1: 8e98d918ba2b41175d72307853f792e3bded4fc7
SHA256:d8f9f237afc21d8202eedffa29cbf6e9d46c78b3c22b217d16267216988221b9
Referenced In Project/Scope:Node.js Maven Plugin:compile

Identifiers

maven-settings-builder-3.0.5.jar

Description:

The effective settings builder, with inheritance and password decryption.

File Path: /home/runner/.m2/repository/org/apache/maven/maven-settings-builder/3.0.5/maven-settings-builder-3.0.5.jar
MD5: 9446d7885d57cd95170f1c2cccd89564
SHA1: 7b87eb83abd6efa77e51882bbebc1b316739c681
SHA256:ac0e62e26b7f690e265ba75667531973b8a2da12b3b0ff102a612f05b42b6faf
Referenced In Project/Scope:Node.js Maven Plugin:compile

Identifiers

plexus-cipher-1.4.jar

File Path: /home/runner/.m2/repository/org/sonatype/plexus/plexus-cipher/1.4/plexus-cipher-1.4.jar
MD5: 7b2d6fcf0d5800d5b1ce09d98d98dcaf
SHA1: 50ade46f23bb38cd984b4ec560c46223432aac38
SHA256:5a15fdba22669e0fdd06e10dcce6320879e1f7398fbc910cd0677b50672a78c4
Referenced In Project/Scope:Node.js Maven Plugin:compile

Identifiers

plexus-classworlds-2.4.jar

Description:

A class loader framework

File Path: /home/runner/.m2/repository/org/codehaus/plexus/plexus-classworlds/2.4/plexus-classworlds-2.4.jar
MD5: 4b6ec19d96af7d901c1aad7d2415d498
SHA1: ef38ff5c25f83a4a02fcd9843d85f3e47012873e
SHA256:259d528a29722cab6349d7e7d432e3fd4877c087ffcb04985a6612e97023bba8
Referenced In Project/Scope:Node.js Maven Plugin:compile

Identifiers

plexus-component-annotations-1.5.5.jar

Description:

    Plexus Component "Java 5" Annotations, to describe plexus components properties in java sources with
    standard annotations instead of javadoc annotations.

File Path: /home/runner/.m2/repository/org/codehaus/plexus/plexus-component-annotations/1.5.5/plexus-component-annotations-1.5.5.jar
MD5: ef37dcdb84030422db428b63c4354e5b
SHA1: c72f2660d0cbed24246ddb55d7fdc4f7374d2078
SHA256:4df7a6a7be64b35bbccf60b5c115697f9ea3421d22674ae67135dde375fcca1f
Referenced In Project/Scope:Node.js Maven Plugin:compile

Identifiers

plexus-interpolation-1.14.jar

File Path: /home/runner/.m2/repository/org/codehaus/plexus/plexus-interpolation/1.14/plexus-interpolation-1.14.jar
MD5: f92db8b194fc417d72cc74c428afacf8
SHA1: c88dd864fe8b8256c25558ce7cd63be66ba07693
SHA256:7fc63378d3e84663619b9bedace9f9fe78b276c2be3c62ca2245449294c84176
Referenced In Project/Scope:Node.js Maven Plugin:compile

Identifiers

plexus-sec-dispatcher-1.3.jar

File Path: /home/runner/.m2/repository/org/sonatype/plexus/plexus-sec-dispatcher/1.3/plexus-sec-dispatcher-1.3.jar
MD5: 53160199f5667de3fca69b723173639b
SHA1: dedc02034fb8fcd7615d66593228cb71709134b4
SHA256:3b0559bb8432f28937efe6ca193ef54a8506d0075d73fd7406b9b116c6a11063
Referenced In Project/Scope:Node.js Maven Plugin:compile

Identifiers

plexus-utils-3.0.9.jar

Description:

A collection of various utility classes to ease working with strings, files, command lines, XML and
    more.

File Path: /home/runner/.m2/repository/org/codehaus/plexus/plexus-utils/3.0.9/plexus-utils-3.0.9.jar
MD5: e67bb1921d7f5c723140f5e39dd4eab2
SHA1: 48362e7b8a6edd68f8ff2e26bfb84ee370a5380b
SHA256:2421354d43e97c2268309c069def71a1567fdec1c540a8c1b326e5699c3a1b9a
Referenced In Project/Scope:Node.js Maven Plugin:compile

Identifiers

CVE-2017-1000487  

Plexus-utils before 3.0.16 is vulnerable to command injection because it does not correctly process the contents of double quoted strings.
CWE-78 Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

CVSSv2:
  • Base Score: HIGH (7.5)
  • Vector: /AV:N/AC:L/Au:N/C:P/I:P/A:P
CVSSv3:
  • Base Score: CRITICAL (9.8)
  • Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

References:

Vulnerable Software & Versions:

Directory traversal in org.codehaus.plexus.util.Expand (OSSINDEX)  

> org.codehaus.plexus.util.Expand does not guard against directory traversal, but such protection is generally expected from unarchiving tools.> > -- [github.com](https://github.com/codehaus-plexus/plexus-utils/issues/4)
Unscored:
  • Severity: Unknown

References:

Vulnerable Software & Versions (OSSINDEX):

  • cpe:2.3:a:org.codehaus.plexus:plexus-utils:3.0.9:*:*:*:*:*:*:*

Possible XML Injection (OSSINDEX)  

> `org.codehaus.plexus.util.xml.XmlWriterUtil#writeComment(XMLWriter, String, int, int, int)` does not check if the comment includes a `"-->"` sequence.  This means that text contained in the command string could be interpreted as XML, possibly leading to XML injection issues, depending on how this method is being called.> > -- [github.com](https://github.com/codehaus-plexus/plexus-utils/issues/3)
Unscored:
  • Severity: Unknown

References:

Vulnerable Software & Versions (OSSINDEX):

  • cpe:2.3:a:org.codehaus.plexus:plexus-utils:3.0.9:*:*:*:*:*:*:*

sisu-guava-0.9.9.jar

Description:

Patched build of Guava: Google Core Libraries for Java 1.5+

License:

http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/org/sonatype/sisu/sisu-guava/0.9.9/sisu-guava-0.9.9.jar
MD5: 36484b30beda10de99c56801db4657e0
SHA1: 91395a7816ad64c5ef68e1a1b5b861463f0eb3e2
SHA256:9897e80ff6c08fc45b5b5ebd81d9e943a1087bdf0ad50cda457d616abbdaacd9
Referenced In Project/Scope:Node.js Maven Plugin:compile

Identifiers

CVE-2020-8908  

A temp directory creation vulnerability exists in all versions of Guava, allowing an attacker with access to the machine to potentially access data in a temporary directory created by the Guava API com.google.common.io.Files.createTempDir(). By default, on unix-like systems, the created directory is world-readable (readable by an attacker with access to the system). The method in question has been marked @Deprecated in versions 30.0 and later and should not be used. For Android developers, we recommend choosing a temporary directory API provided by Android, such as context.getCacheDir(). For other Java developers, we recommend migrating to the Java 7 API java.nio.file.Files.createTempDirectory() which explicitly configures permissions of 700, or configuring the Java runtime's java.io.tmpdir system property to point to a location whose permissions are appropriately configured.
CWE-732 Incorrect Permission Assignment for Critical Resource

CVSSv2:
  • Base Score: LOW (2.1)
  • Vector: /AV:L/AC:L/Au:N/C:P/I:N/A:N
CVSSv3:
  • Base Score: LOW (3.3)
  • Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

References:

Vulnerable Software & Versions: (show all)

sisu-guice-3.1.0-no_aop.jar

Description:

Patched build of Guice: a lightweight dependency injection framework for Java 5 and above

License:

http://www.apache.org/licenses/LICENSE-2.0.txt
File Path: /home/runner/.m2/repository/org/sonatype/sisu/sisu-guice/3.1.0/sisu-guice-3.1.0-no_aop.jar
MD5: 19f877ae736fa153a545d0cf801dcec9
SHA1: 97c87d15d749c86b2be1b9809b28321a1d926c7f
SHA256:4b76079f35407e5682aac1ecbe67afd5f430ae619044a9d6a413666a45750c25
Referenced In Project/Scope:Node.js Maven Plugin:compile

Identifiers

sisu-inject-bean-2.3.0.jar

License:

http://www.apache.org/licenses/LICENSE-2.0.txt, http://www.eclipse.org/legal/epl-v10.html
File Path: /home/runner/.m2/repository/org/sonatype/sisu/sisu-inject-bean/2.3.0/sisu-inject-bean-2.3.0.jar
MD5: 27a128e32326472ebfec3a7b8cb2cdf9
SHA1: 4767ee22f0b84fc0fe3af2095c30bfbdafba9459
SHA256:75819b29737c2bee1bfbda1011d455c7036738e0ef32ffbf85ba1d8fa157ceb2
Referenced In Project/Scope:Node.js Maven Plugin:compile

Identifiers

sisu-inject-plexus-2.3.0.jar

License:

http://www.eclipse.org/legal/epl-v10.html
File Path: /home/runner/.m2/repository/org/sonatype/sisu/sisu-inject-plexus/2.3.0/sisu-inject-plexus-2.3.0.jar
MD5: 5c35e512b479cc0d1c830c0cc9452504
SHA1: 7d8ecdce497bf361b83cfbc890670ca50d6ec299
SHA256:bf9083fb846993689409b2bdbc735048e53bac6cc32707cde7ef84817b6e9365
Referenced In Project/Scope:Node.js Maven Plugin:compile

Identifiers

wagon-provider-api-2.4.jar

Description:

Maven Wagon API that defines the contract between different Wagon implementations

File Path: /home/runner/.m2/repository/org/apache/maven/wagon/wagon-provider-api/2.4/wagon-provider-api-2.4.jar
MD5: 882add48c16ceb068eacb5a19e636c1e
SHA1: e40429d9dd849c5fe0bdf97062b1d9358d99826d
SHA256:f65d8d59d71bca18ffa259b5a6de67697bc65b9ff1142c7bb4417ab4b1cacd92
Referenced In Project/Scope:Node.js Maven Plugin:compile

Identifiers



This report contains data retrieved from the National Vulnerability Database.
This report may contain data retrieved from the NPM Public Advisories.
This report may contain data retrieved from RetireJS.
This report may contain data retrieved from the Sonatype OSS Index.