Dependency-Check Core

dependency-check-core is the engine and reporting tool used to identify and report if there are any known, publicly disclosed vulnerabilities in the scanned project's dependencies. The engine extracts meta-data from the dependencies and uses this to do fuzzy key-word matching against the Common Platfrom Enumeration (CPE), if any CPE identifiers are found the associated Common Vulnerability and Exposure (CVE) entries are added to the generated report.

License	License The Apache Software License, Version 2.0
GroupId	GroupId org.owasp
ArtifactId	ArtifactId dependency-check-core
Last Version	Last Version 7.1.1
Release Date	Release Date Jun 12, 2022
Type	Type jar
Description	Description Dependency-Check Core dependency-check-core is the engine and reporting tool used to identify and report if there are any known, publicly disclosed vulnerabilities in the scanned project's dependencies. The engine extracts meta-data from the dependencies and uses this to do fuzzy key-word matching against the Common Platfrom Enumeration (CPE), if any CPE identifiers are found the associated Common Vulnerability and Exposure (CVE) entries are added to the generated report.
Project Organization	Project Organization OWASP
Source Code Management	Source Code Management https://github.com/jeremylong/DependencyCheck/tree/master/core

Download dependency-check-core

Filename	Size
dependency-check-core-7.1.1.pom
dependency-check-core-7.1.1.jar	1 MB
dependency-check-core-7.1.1-tests.jar	241 KB
dependency-check-core-7.1.1-sources.jar	1 MB
dependency-check-core-7.1.1-javadoc.jar	1 MB
Browse

How to add to project

Apache Maven

<!-- https://jarcasting.com/artifacts/org.owasp/dependency-check-core/ -->
<dependency>
    <groupId>org.owasp</groupId>
    <artifactId>dependency-check-core</artifactId>
    <version>7.1.1</version>
</dependency>

Gradle Groovy

// https://jarcasting.com/artifacts/org.owasp/dependency-check-core/
implementation 'org.owasp:dependency-check-core:7.1.1'

Gradle Kotlin

// https://jarcasting.com/artifacts/org.owasp/dependency-check-core/
implementation ("org.owasp:dependency-check-core:7.1.1")

Apache Buildr

'org.owasp:dependency-check-core:jar:7.1.1'

Apache Ivy

<dependency org="org.owasp" name="dependency-check-core" rev="7.1.1">
  <artifact name="dependency-check-core" type="jar" />
</dependency>

Groovy Grape

@Grapes(
@Grab(group='org.owasp', module='dependency-check-core', version='7.1.1')
)

Scala SBT

libraryDependencies += "org.owasp" % "dependency-check-core" % "7.1.1"

Leiningen

[org.owasp/dependency-check-core "7.1.1"]

Dependencies

compile (33)

Group / Artifact	Type	Version
org.anarres.jdiagnostics : jdiagnostics	jar	1.0.7
org.whitesource : pecoff4j	jar	0.0.2.1
org.apache.commons : commons-jcs-core	jar	2.2.1
com.github.package-url : packageurl-java	jar	1.4.1
us.springett : cpe-parser	jar	2.0.2
com.vdurmont : semver4j	jar	3.1.0
org.slf4j : slf4j-api	jar	1.7.36
org.owasp : dependency-check-utils	jar	7.1.1
org.apache.commons : commons-collections4	jar	4.4
org.apache.commons : commons-compress	jar	1.21
commons-io : commons-io	jar	2.11.0
org.apache.commons : commons-lang3	jar	3.12.0
org.apache.commons : commons-text	jar	1.9
org.apache.commons : commons-dbcp2	jar	2.9.0
org.apache.lucene : lucene-core	jar	8.11.1
org.apache.lucene : lucene-analyzers-common	jar	8.11.1
org.apache.lucene : lucene-queryparser	jar	8.11.1
org.apache.velocity : velocity-engine-core	jar	2.3
com.h2database : h2	jar	2.1.210
org.glassfish : javax.json	jar	1.1.4
org.jsoup : jsoup	jar	1.15.1
com.fasterxml.jackson.core : jackson-databind	jar
com.fasterxml.jackson.module : jackson-module-afterburner	jar
com.h3xstream.retirejs : retirejs-core	jar	3.0.3
org.sonatype.ossindex : ossindex-service-client	jar	1.8.1
com.google.guava : guava	jar	31.1-jre
com.moandjiezana.toml : toml4j	jar	0.7.2
com.hankcs : aho-corasick-double-array-trie	jar	1.2.3
commons-validator : commons-validator	jar	1.7
commons-beanutils : commons-beanutils	jar	1.9.4
org.eclipse.packager : packager-rpm	jar	0.18.0
org.jetbrains : annotations Optional	jar	23.0.0
com.github.spotbugs : spotbugs-annotations Optional	jar	4.7.0

test (27)

Group / Artifact	Type	Version
ch.qos.logback : logback-classic	jar	1.2.11
org.apache.lucene : lucene-test-framework	jar	8.11.1
org.mockito : mockito-core	jar	4.6.1
io.github.faob-dev : aar Optional	aar	1.0.0
org.jslipc : jslipc Optional	jar	0.2.0
org.apache.maven.scm : maven-scm-provider-cvsexe Optional	jar	1.8.1
org.springframework : spring-webmvc Optional	jar	2.5.5
org.springframework.security : spring-security-web Optional	jar	3.0.0.RELEASE
com.hazelcast : hazelcast Optional	jar	2.5
net.sf.ehcache : ehcache-core Optional	jar	2.2.0
org.apache.struts : struts2-core Optional	jar	2.1.2
org.mortbay.jetty : jetty Optional	jar	6.1.0
org.apache.axis2 : axis2-spring Optional	jar	1.4.1
org.apache.axis2 : axis2-adb Optional	jar	1.4.1
org.apache.geronimo.daytrader : daytrader-ear Optional	ear	2.1.7
org.glassfish.main.admingui : war Optional	war	4.0
org.dojotoolkit : dojo-war Optional	war	1.3.0
org.apache.openjpa : openjpa Optional	jar	2.0.1
com.google.inject : guice Optional	jar	3.0
org.springframework.retry : spring-retry Optional	jar	1.1.0.RELEASE
uk.ltd.getahead : dwr Optional	jar	1.1.1
xalan : xalan Optional	jar	2.7.0
com.thoughtworks.xstream : xstream Optional	jar	1.4.8
commons-fileupload : commons-fileupload Optional	jar	1.2.1
junit : junit	jar	4.13.2
org.hamcrest : hamcrest-core	jar	2.2
org.jmockit : jmockit	jar	1.49

Project Modules

There are no modules declared in this project.

Versions

Version
7.1.1 Jun 12, 2022
7.1.0 Apr 23, 2022
7.0.4 Mar 30, 2022
7.0.3 Mar 29, 2022
7.0.2 Mar 28, 2022
7.0.1 Mar 23, 2022
7.0.0 Feb 28, 2022
6.5.3 Jan 12, 2022
6.5.2 Jan 3, 2022
6.5.1 Dec 19, 2021
6.5.0 Nov 8, 2021
6.4.1 Oct 12, 2021
6.4.0 Oct 11, 2021
6.3.2 Sep 29, 2021
6.3.1 Sep 1, 2021
6.3.0 Aug 31, 2021
6.2.2 Jun 10, 2021
6.2.1 Jun 8, 2021
6.2.0 May 29, 2021
6.1.6 Apr 29, 2021
6.1.5 Mar 31, 2021
6.1.4 Mar 30, 2021
6.1.3 Mar 22, 2021
6.1.2 Mar 8, 2021
6.1.1 Feb 13, 2021
6.1.0 Jan 27, 2021
6.0.5 Jan 7, 2021
6.0.4 Jan 1, 2021
6.0.3 Nov 3, 2020
6.0.2 Sep 27, 2020
6.0.1 Sep 13, 2020
6.0.0 Sep 7, 2020
5.3.2 Mar 26, 2020
5.3.1 Mar 10, 2020
5.3.0 Jan 15, 2020
5.2.4 Nov 12, 2019
5.2.3 Nov 11, 2019
5.2.2 Sep 22, 2019
5.2.1 Aug 4, 2019
5.2.0 Jul 21, 2019
5.1.1 Jul 15, 2019
5.1.0 Jun 28, 2019
5.0.0 Jun 9, 2019
5.0.0-M3 May 7, 2019
5.0.0-M2 Mar 11, 2019
5.0.0-M1 Feb 17, 2019
4.0.2 Jan 1, 2019
4.0.1 Dec 17, 2018
4.0.0 Nov 21, 2018
3.3.4 Oct 28, 2018
3.3.3 Oct 27, 2018
3.3.2 Sep 16, 2018
3.3.1 Aug 6, 2018
3.3.0 Jul 22, 2018
3.2.1 May 28, 2018
3.2.0 May 21, 2018
3.1.2 Apr 2, 2018
3.1.1 Jan 28, 2018
3.1.0 Jan 3, 2018
3.0.2 Nov 14, 2017
3.0.1 Oct 18, 2017
3.0.0 Oct 15, 2017
2.1.1 Aug 25, 2017
2.1.0 Jul 23, 2017
2.0.1 Jul 7, 2017
2.0.0 Jul 2, 2017
1.4.5 Jan 23, 2017
1.4.4 Nov 5, 2016
1.4.3 Sep 6, 2016
1.4.2 Jul 31, 2016
1.4.1 Jul 30, 2016
1.4.0 Jun 16, 2016
1.3.6 Apr 10, 2016
1.3.5 Mar 5, 2016
1.3.4 Feb 1, 2016
1.3.3 Dec 11, 2015
1.3.2 Nov 29, 2015
1.3.1 Sep 20, 2015
1.3.0 Aug 5, 2015
1.2.11 May 12, 2015
1.2.10 Apr 12, 2015
1.2.9 Mar 6, 2015
1.2.8 Dec 28, 2014
1.2.7 Dec 8, 2014
1.2.6 Nov 16, 2014
1.2.5 Sep 17, 2014
1.2.4 Aug 6, 2014
1.2.3 Jun 28, 2014
1.2.2 Jun 23, 2014
1.2.1 May 10, 2014
1.2.0 Apr 28, 2014
1.1.4 Mar 29, 2014
1.1.3 Mar 11, 2014
1.1.2 Mar 4, 2014
1.1.1 Jan 30, 2014
1.1.0 Jan 26, 2014
1.0.8 Jan 16, 2014
1.0.7 Dec 3, 2013
1.0.6 Dec 1, 2013
1.0.5 Nov 16, 2013
1.0.4 Oct 22, 2013
1.0.3 Oct 14, 2013
1.0.2 Sep 3, 2013
1.0.1 Aug 1, 2013
1.0.0 Aug 1, 2013

Dependency-Check Core

License

GroupId

ArtifactId

Last Version

Release Date

Type

Description

Project Organization

Source Code Management