OWASP Foundation CycloneDX Maven plugin 2.7.10 1cc7f6a0382f8bb2f758d6a6ea401d1b a4297947a1f2d7d453105db542651614bbd37f38 bd0fdd8f2f2116eee5e715aeac1580f19eb7a10ec2b6f805b53567067658e872 9cde8352a427e10b96cae01348fc7cfe5d4aa9cd0a5e5dd93b414ce3bb7d112993c3b3004e53af52567fbfa16de0704ec59a5556a635ad70571fd124ae389f39 93d7bf5b5c735347edfbfbd66810273ca840f9a322b816d22d44c3d8e8255c09e86570bb23712aeb0cade0f478be5aeb 4467f16e9ca32190a6e49c65339eb28ee5e8c78f4e918fcf95128a4b7648898de56ccb43eacfad0c9391ef8cdb7d629a ed2996c99b483e969221d5e9a40f562ea2ab85442d361d72a90e85266a3ed781 c8e6ea9ddc38edc77e284b3bf541663e84752bdc59ed1935799847a48a14ea2fa531b61008fefcba37d732a56702a11ac112437b9b80d18f4ecc8ef0ecfb32cf The Apache Software Foundation org.apache.logging.log4j log4j-mongodb4 2.23.1 MongoDB appender for Log4j using the MongoDB 4 driver API. Apache-2.0 https://www.apache.org/licenses/LICENSE-2.0 pkg:maven/org.apache.logging.log4j/log4j-mongodb4@2.23.1?type=jar https://logging.apache.org/log4j/2.x/ https://github.com/apache/logging-log4j2/actions https://logging.apache.org/log4j/2.x/download.html https://github.com/apache/logging-log4j2/issues https://lists.apache.org/list.html?log4j-user@logging.apache.org https://github.com/apache/logging-log4j2 https://logging.apache.org/cyclonedx/vdr.xml makeBom compile,provided,runtime,system enabled The Apache Software Foundation org.apache.logging.log4j log4j-api 2.23.1 The Apache Log4j API required f2781441b566a824230d447ebd363173 58290683e2744d4b446e5eb0964aa69971179296 2d4098e44de6f45cda73ee06e1ea68f0ded81e4643b1df4a6b8d25e6a8b33a1b 4084e561de7017c25ba8618017f41eb04e5d70bdac965702a90113270b8ba97ce5aa4b8f51518e8b99d409d0a05e3fa7a9ef14e4235b144ee7036a6c6ce0c07c 81a0bfa062360e478420f3814e9fcdbb5703baaf9a917a1d5231d843f95276cda2d6e87cf117f8fe6518a25861bb3b31 f00c1f9676389d88ee98be01c5ea23b7b194b42ec1f893dc995c2daecbffef104a531c80a043f5aa6d8dbc77f5464e0c 36b54cef9b4723d93a4ddb9f3df75977bc3cf604a8acc3edc0bcf606108d6712 5016f9a6c126bda46a41da04e73400e01702d540fc845087c935a166417fd8755ddf7e0d2dc6b0d2a151f21930dc81aaf4b6fed468eb951f992b3d7c86a76332 Apache-2.0 https://www.apache.org/licenses/LICENSE-2.0 pkg:maven/org.apache.logging.log4j/log4j-api@2.23.1?type=jar https://logging.apache.org/log4j/2.x/log4j/log4j-api/ https://github.com/apache/logging-log4j2/actions https://logging.apache.org/logging-parent/latest/#distribution https://github.com/apache/logging-log4j2/issues https://lists.apache.org/list.html?log4j-user@logging.apache.org https://github.com/apache/logging-log4j2 https://logging.apache.org/cyclonedx/vdr.xml The Apache Software Foundation org.apache.logging.log4j log4j-core 2.23.1 The Apache Log4j Implementation required 7392baea1324a2c70715c1c14af11682 bb94b35ae386cccd99c1da7e76c1d6611ec9ab9e f7fffc0da66525462c02dff8577ac36bc83a688e31c0cc14152a075217f4c233 433ee902713c3e678c214da17afdf76606b6211a23064a45d81ca914f0ccb777d946de6a45a8be481153bcb8b97cb5636cbe8c3a7165023f6f84c73099d9bc01 60a0b67c1b6dbaae2d42eae54f5df6ddbd3a8a0b0cc7737cc6a5d420b4f932fccac7e19dc844a20dc9fd10983bd3ae3a 663a2bcca3625bb570a0f1188d0b2195cde2661844721e07f0636099f5a009d85f43db0b5315ce425d2dc6480a3fbfcb 13524d1f7780fa5d5217b8a6011d7023e4b36a88e9172daab3cdbbaed7b06c40 b38ff3639ab354854cfaa54700c8616b5ed8fc76ebf9d5241a64403e416e07b3c2b4a4690f81f3a9827633affebc03e62d57543d667aac30e5453b07c08f9973 Apache-2.0 https://www.apache.org/licenses/LICENSE-2.0 pkg:maven/org.apache.logging.log4j/log4j-core@2.23.1?type=jar https://logging.apache.org/log4j/2.x/log4j/log4j-core/ https://github.com/apache/logging-log4j2/actions https://logging.apache.org/logging-parent/latest/#distribution https://github.com/apache/logging-log4j2/issues https://lists.apache.org/list.html?log4j-user@logging.apache.org https://github.com/apache/logging-log4j2 https://logging.apache.org/cyclonedx/vdr.xml org.mongodb bson 4.11.1 The BSON library required 5c73f367d2e1e9e9a83ad6c8467956a8 b88ffb4f994f5fef89084f037bb17f8285aaa925 d6590dbb96826812f9d1eb4a8f309f2bfb58f99ea773807e35cb92d50b7e2d30 c13ed6e0cce80cc83557d776bc1e6c2722e6337079a4ed7cc8b8e31082eaee2d07de07e9a74ec913ae4f2fca66c50882c288c530c7e7263b062cd331561b8e21 2c6ccdcf1970d70642bfc9b8b301383f3e497f6a6d8022b57d827fef0c331b154e3af147638db8290264475eb9bfb940 2798cf0b94954014a2ce0c7b71d3cab0a35b4c1d4541d6465bd216b2d42cbf1e7aabd5a33385b763f51d4f0e31009dd0 2466dc3e26615f2bb65016a7287afaa287c05a4c229f6b72bfba2a27681f03bc 91f9ff9f863d85086a194a66a1057f9421b07a4825bb42da84a5449864067a9fc016804c5de125fcb71a5251ed161e95049cf338aa2203bf101a5d49fa869e50 Apache-2.0 pkg:maven/org.mongodb/bson@4.11.1?type=jar https://bsonspec.org https://github.com/mongodb/mongo-java-driver org.mongodb mongodb-driver-core 4.11.1 Shared components for the Synchronous and Reactive Streams implementations of the MongoDB Java Driver. required 1e4e9dca97fb11918af2b3bd5bf1d99f ff92549ef5bdfbc451edeb23dd42ee395223d6e4 d5e1ebd29a81d8ed3f9fb6798016a1e613a2214446ea83a53c0b497e9e9248c6 f9484745ec3f15e22f1c0b404d9e549d3c93c00eb8bbf6a706efdbcac3da70f31da16d001fdafdbab35660cdc4e55400c4cbb151390eeb20079faea8f24c4fd1 25db14a221582bdfd51ba7e61450b1bcc857bf0fe9d6c677b6b276c1e42c4cdadece3d0e0a616e229e6c91f8590c0c48 bd78a94406f2f6f6315e3f4e34f02b43240b7ddefc2389836cda4194e7dd0b60a09ddb24484c36f105dd2051ad8bf2fa 1a3eeadcc0e150b088df85a6c50e80dee18d236d561be6c6b7d11b172da0de78 1bcef537646ac0b80d818023f395d5af3062a762941fc0bd37f555603b539625029f776ff4fb571ef3ec7ee2f87111e2c6df4a77db620d72f8d1ace55b5c68a2 Apache-2.0 pkg:maven/org.mongodb/mongodb-driver-core@4.11.1?type=jar https://www.mongodb.com/ https://github.com/mongodb/mongo-java-driver org.mongodb bson-record-codec 4.11.1 The BSON Codec for Java records required 687032b466e27b1723235f977a337be2 d7c145266733ead62fa55883b83840931f6eefe5 aec28ce1ee0c7b3c599f1965a940093543710e4a36e7df6e7889e1e796a06192 ab7f806d7059c7e7fb50df0d4bf275407380d566dfe2229100b1f07f3bd7cc68493eef5bcbc28a9cddb6958435efa4e1e0f76001e34d87187a0e3bfd96144bee 466d242a470e90dea78b9867878e35bd341c84b6821f8600c1ae36d5b4d2515e943439b2c7a36f0fbf8fb3c3691d9e5b 12b915cf5ed4fa8eb8fcd2e9255feab40c38e71aafcfb788569729af9ee2b5fa856ab3fc16ba068225b223d513457076 2964d5df9989bec4689053967c8fc672fc94b28f63eea2ba08d6bd05a0b02000 3b52555bb41bc39762ac2359b394776d0c72c1b933202f9fa6fe8637186e05375108494f0ee3f847d4f7f6be69909500c3280ec059becf73b060a00bc3bab7ea Apache-2.0 pkg:maven/org.mongodb/bson-record-codec@4.11.1?type=jar https://www.mongodb.com/ https://github.com/mongodb/mongo-java-driver org.mongodb mongodb-driver-sync 4.11.1 The MongoDB Synchronous Driver required 3a6bd2e6768a9626a2210f2e28cc47ef 745dd8183b5f89e6211db8c1acdf30cc44447759 ba95adc915c8b0745abb0c1b05b42c5a7591088b17e142e6fc7b8ff8da551fb7 2d957e0c697f089eb0ef60dda1d6fa0cc9a659a19a0ac42a875151d9ae07b4c64ff5339c692aa70bdda85fc9993701d18f7d8c5ed2bde5e3a30ec9efa4e67f6e 8bf71773c5111ee269e8d42a8422e5a33ca03480c5b2396df728c938be403a6007e384b2a9f4a13d0cda80b9581d0ec7 c136ee16c3fe28cc150e34c04ad75eaa5b2ac921e290862d34bc64d8294e4110abe14024c7fadb8dcbf70700054d2063 b916abe586fa7daa84665080aa7cd73bc45dd813c72c8e49b13280896b802e42 f5d01db5f16f3a458ff440437c77a136821e29492d66540238a39550825c1d9028fb7605b17f37de4d332b9db990d8ec48f44188d16a8361b55ed067ba9377b0 Apache-2.0 pkg:maven/org.mongodb/mongodb-driver-sync@4.11.1?type=jar https://www.mongodb.com/ https://github.com/mongodb/mongo-java-driver Bndtools biz.aQute.bnd biz.aQute.bnd.annotation 7.0.0 bnd Annotations Library required 0339bd011cf13131841417c0de7452f5 8ad279ebf0d04ea89c5ce4d934189d0d16bb6d50 a0090390963dd2092f8abb6d76092bab1696494d2e31b127f5b1b2bf29c08638 6e96cffe60466e9bd5730c93686a6ae252958be6202ba07d235239f0033b9a1cc53faad327ddaebab9eab30825b881acc6296777851028c7fad5668cbbe99c81 f51cd44911333bf7c2f58bdf7440062c138005c8332be3bf69b0ab0d9d93af4d1e1dde3a4eae5bfae92e835b70e6f561 7e93113ee29b6fbed02fbeac096582476b0b7c04703a54ecf0c3c89cab6fff06bc486d072c78f5a19e2c7da1c603b9d2 e0a35d4ec2afe652ef58a37a9f2491349527e86c7a1b37d13436fdfef77f32b2 62783affe413b5419c08008094a43e63712c65d6e4a0cd345e58e1a7c66dc32a08f2e68852d14641d30da31d665091c19571809145f769480cb0b80e0ad003e9 (Apache-2.0 OR EPL-2.0) https://opensource.org/licenses/Apache-2.0,https://opensource.org/licenses/EPL-2.0 pkg:maven/biz.aQute.bnd/biz.aQute.bnd.annotation@7.0.0?type=jar https://bnd.bndtools.org/ https://github.com/bndtools/bnd OSGi Alliance org.osgi org.osgi.resource 1.0.0 OSGi Companion Code for org.osgi.resource Version 1.0.0. required 7d857a4203e2996fab0cf070133e43df 343c88949132984b3f2d4175a72c40b77dc65619 81fc50f1f1d38a4af28e131907d4afe213249aab05060484edca0e60c4af9b4a 4e798790856f83f50832db80bfab64dfceeff1c509d7dde43e74a9f9192ea7a7d5ea77b9b1e81291fa6ba3dcef5ab8fa791ca8093a72a08d7ca6f6499e13e506 73038c395166552b64b6b5469bd8056584f48d19b5762df2e8bd2770405ed8f6071e397a87d9a7ed39f8c2e0e8ab85b2 e06c8a460b3bf06d6cb22237aeffa6afd2eadd9461096c67b768a14603ad8aaa88f891d03cf0a273a99d86906c1c8eb3 1097cfd20e80ce368fd828a23ad7c32a202cebd92106f6ebb88ba55ca74349ee d7b710e1e0484badb875f326c602c90df6705df48b0f057320919a5255d3ecbddd7053eabc68787480a70aebd7e553e9f51728112e1fa0846c849366b7e8d69b Apache-2.0 pkg:maven/org.osgi/org.osgi.resource@1.0.0?type=jar http://www.osgi.org/ https://osgi.org/git/build.git OSGi Alliance org.osgi org.osgi.service.serviceloader 1.0.0 OSGi Companion Code for org.osgi.service.serviceloader Version 1.0.0. required 4943f0102a6d893c4dd77f369a5f0537 3728ff37909c6a3c1870b3e851342d9f2bd3cc63 8f876ce2a9aa4e95b1f1952950255103e2487425050a654f3285447ba601c154 a7def4cb7a8ed992645faa80a780e0b30bd39c1587b5bcb65fe170d10842d0d880c2849edd50c64807fe0e4b9cc0051337d1b161d0d390465d9e63a762861c49 1e480694b8a541da4cd1e044d3f3ea3cd55152515ac022b80d865b6654242506c2138daabb4e71c30d36b12b9aaf676d 7f076af200ae9c2bd9f235b949aee01a1a758c8aac10fee8b98ec2497197d2029117d5627eb0eabd9b42979eb1baa009 83b1dce69c4c899176eb6e368e434ecb77dfed7c436530b8c5d08b9b6f2430aa 5debde53a7ead231dcd907467d59728f59cae4eb3b967c19808f78890bd97d2f04657cad9c093e88f9818338b0b3b38a57c66400ebcff61fbb26d18e9f7bf8ed Apache-2.0 pkg:maven/org.osgi/org.osgi.service.serviceloader@1.0.0?type=jar http://www.osgi.org/ https://osgi.org/git/build.git Google LLC com.google.errorprone error_prone_annotations 2.24.1 Error Prone is a static analysis tool for Java that catches common programming mistakes at compile-time. required 345bbebec9b3c68d2638c0f6809436dc 32b299e45105aa9b0df8279c74dc1edfcf313ff0 19fe2f7155d20ea093168527999da98108103ee546d1e8b726bc4b27c31a3c30 75a8d055b90fc2be2198d8502299b5e4f08a81d87b15334a788a719e155f006b23c3648a4574be831de932db212593a2b004584948c394adb8272ed7d5844c94 b474fabb3ed301583358187787cb89161d4ea3a5e46d66aaf4317bfa74cba0063f53872c30fbc130af505537ac72f9c3 5d5456af3f5d809c6e1fbe13b6b65c71b442dcff66e087bf1be3958e582c7565135cf61f7b3bff55cee6d27a74365d01 39119e15f4769fdd5b018c1c9cae88c78e9454e05666731e8a703f47ed903693 d25c633ed33e217d71076ecf76040c13e3d8dfcc9eda1a2300a718a8699317de0b87680bfa5e499bf8c51f133408ab24c93e47393aa8c4300e92db0d683b48d6 Apache-2.0 pkg:maven/com.google.errorprone/error_prone_annotations@2.24.1?type=jar https://errorprone.info/error_prone_annotations https://github.com/google/error-prone/error_prone_annotations Eclipse Foundation org.osgi osgi.annotation 8.1.0 OSGi Annotation Release 8, Annotations for use in compiling bundles required 3bcfab9c55a2bcc158aa4953084021b6 59d42736bcc0af2144ba5c1a12ff7c08ea4b7e12 68afeb86a5322675d4dfe3df5863c7d8a37b34c18e3a8e41553f1ab3ac15d78f a190fa888fd22c2c31455d672b3e50ca79fa9f02269b9d45f6e6fc189dc8f90d20663e290f151a851e010b52ce87e62dc5079253c3e59caa72f11ea6248ffb26 581c88a48fc7df5edae29712f943ef780fb0f32b4eee10dfcaa879f122f19fd1645b961b38bc0a97dd894d89952fdb68 ab4fab76440671def19eb0ca3370d8f0f8a915df4ec92e5aa2b9e12a4b97aa49301c51ccd28a2d2718beec6fe8105bc6 6849ce4a9cad5dbf2dce1ad817442821a633f8ae10ab1ccde69ac46d26127a46 3c3ce68b5ae1ea157f78d72a210cc152375fd8819a7c85ed5c718fbe387ffb522715e1b0dfa5094caed1e8bbe4b8fcc6d2aadd1cd3851f4c0fffebda5acaebba Apache-2.0 https://www.apache.org/licenses/LICENSE-2.0 pkg:maven/org.osgi/osgi.annotation@8.1.0?type=jar https://docs.osgi.org/ https://github.com/osgi/osgi Eclipse Foundation org.osgi org.osgi.annotation.bundle 2.0.0 OSGi Companion Code for org.osgi.annotation.bundle Version 2.0.0 required 19115314a0ce4cfb711a811dcc0be0a3 f5c2cd6e670c3c5d440d3003efd5ef2ead5c68eb b9c9546ec5be3ebc2e85ba4919150ad76d64594805282fc895133a47d264a7ae f16b8983240ba3c08d6bc78e2eae92e89eb528f32a705961d90b463def0a5ed1ba08cc3d0be38b5dcfb946c6f759df772e122fb769e58e8c20aa79a489a1fd21 88217b7d3a2d9a0a3f005162b95d68ba2bd29629688b2c32e93e4587d89fe6bd468f5c62ef422ebf2b609d402e62ff56 c7ee64dd3e235d900d01d8629b82245303d34a006e1edcd2571ef736d9c6256dcb718be326ad4909cb6d2cea26118ea9 9adcacb036caf30d17a13fcd5952a35e011678b1dbfabafdff73dba065ace8a3 76bec6bb2cdbc8da043760a7aedd51203c8d70b740c9b8de0ba6b0cf9ad991a58059566e7f62dee30606f32d267b2596d5bd5e885c73e336ae7fff6cf7f970db Apache-2.0 https://www.apache.org/licenses/LICENSE-2.0 pkg:maven/org.osgi/org.osgi.annotation.bundle@2.0.0?type=jar https://docs.osgi.org/ https://github.com/osgi/osgi Eclipse Foundation org.osgi org.osgi.annotation.versioning 1.1.2 OSGi Companion Code for org.osgi.annotation.versioning Version 1.1.2 required a61b3b8d09c85ad296c61e21bf77ec70 dc3cd4ec96c0b3c5459fe00694bd73a816ecf93e f51f235e80df8ffbc30ef1b557b6ea38a696632d675404ec117e952978b8b863 a4c612bec624a168f25f0923d51925bbc914686673eeebd5b2442998b876f05855e2b0a6e6e9aca4a6533ed3156b0d24f94c3e508ee9778e1b2e469be318afa3 68a2046f083a2e77304622a56d07c0e73ba88534af4a87b5428cebf8b638c40ce21bbac089a8b5520ad488c946b633ea 930734f6979650191d51cd8bf1f9ab4548d307950735aa98e2dbda7aecc19b49d01a3b968824f6df2ffafce65e122c60 513392d0e8ddd873d04c5cf4f402a9cfe094413832bb859fe37b70fd0512dd12 3d2bd7d2eb784a9fab4b09c42adb0722363079235340f1915bb82a99f1c5e616ee8f3dc34d2c90b941d2651dcb4f393c7fea3e23b579456a696604148d10f22b Apache-2.0 https://www.apache.org/licenses/LICENSE-2.0 pkg:maven/org.osgi/org.osgi.annotation.versioning@1.1.2?type=jar https://docs.osgi.org/ https://github.com/osgi/osgi com.github.spotbugs spotbugs-annotations 4.8.3 Annotations the SpotBugs tool supports required cd5917b77643c3a7ba5420aea78f940c 05d2dc4ca5b632976371155252499819aea372ed e5d4f60be8e57595766ba7f1d4535dc46aebf98dae05e16372a4d4120d3ebb6b 1a64f6911a94654d440ce4918395af0cbdee79696acbcf727af79134b02e6be17956fffa8f39e05fa9e22e336041443eb31165b338164b48a1c70f947e66d68b 6875428ea8454185df4ac50b6551f9d9ba7d9152083eec2ecc5046aa464767982abfe0733c258f2dfed9fc3f2ad68add 25422667753a299021150558bf094a6bd5a521a0b736d94866f807f3246b11a0574e9e480f85c7a894258979afdaedd4 116a3c20fdd3253ab1cfc1bdc95c8d4eb3c454b3f7d89af1d2b87bde4b890c88 0e9ee42600abe9496fedc2d82cd71e51fd05f26c0094c1710025d3931b79507a3502a9f9e83fddefeb6ed784123c7faa7251bd58368e78cdcc218481cd05045d LGPL-2.1-only pkg:maven/com.github.spotbugs/spotbugs-annotations@4.8.3?type=jar https://spotbugs.github.io/ https://github.com/spotbugs/spotbugs/ com.google.code.findbugs jsr305 3.0.2 JSR305 Annotations for Findbugs required dd83accb899363c32b07d7a1b2e4ce40 25ea2e8b0c338a877313bd4672d3fe056ea78f0d 766ad2a0783f2687962c8ad74ceecc38a28b9f72a2d085ee438b7813e928d0c7 bb09db62919a50fa5b55906013be6ca4fc7acb2e87455fac5eaf9ede2e41ce8bbafc0e5a385a561264ea4cd71bbbd3ef5a45e02d63277a201d06a0ae1636f804 ca0b169d3eb2d0922dc031133a021f861a043bb3e405a88728215fd6ff00fa52fdc7347842dcc2031472e3726164bdc4 9903fd7505218999f8262efedb3d935d64bcef84aae781064ab5e1b24755466b269517cada562fa140cd1d417ede57a1 223fda9a89a461afaae73b177a2dc20ed4a90f2f8757f5c65f3241b0510f00ff 3996b5af57a5d5c6a0cd62b11773360fb051dd86a2ba968476806a2a5d32049b82d69a24a3c694e8fe4d735be6a28e41000cc500cc2a9fb577e058045855d2d6 Apache-2.0 pkg:maven/com.google.code.findbugs/jsr305@3.0.2?type=jar http://findbugs.sourceforge.net/ https://oss.sonatype.org/service/local/staging/deploy/maven2/ https://code.google.com/p/jsr-305/