Title: Dependency Audit · Issue #36 · Testing-For-Organization/java-sec-code · GitHub
Open Graph Title: Dependency Audit · Issue #36 · Testing-For-Organization/java-sec-code
X Title: Dependency Audit · Issue #36 · Testing-For-Organization/java-sec-code
Description: Dependency Audit Overview The table presented below outlines a dependency audit based on the findings from our recent Software Composition Analysis (SCA) scan. We have identified several dependencies within this project that require atte...
Open Graph Description: Dependency Audit Overview The table presented below outlines a dependency audit based on the findings from our recent Software Composition Analysis (SCA) scan. We have identified several dependenci...
X Description: Dependency Audit Overview The table presented below outlines a dependency audit based on the findings from our recent Software Composition Analysis (SCA) scan. We have identified several dependenci...
Opengraph URL: https://github.com/Testing-For-Organization/java-sec-code/issues/36
X: @github
Domain: github.com
{"@context":"https://schema.org","@type":"DiscussionForumPosting","headline":"Dependency Audit","articleBody":"## Dependency Audit Overview\n\nThe table presented below outlines a dependency audit based on the findings from our recent Software Composition Analysis (SCA) scan. We have identified several dependencies within this project that require attention to ensure compliance, security, and optimal performance.\n\n### Key Highlights:\n\n- **Dependencies**: The table lists dependencies under review for upgrade and remediation.\n- **Current vs. Target Versions**: Each dependency is accompanied by its current version and the recommended target version.\n- **Status**: The status column indicates whether the upgrade is pending, failed, or completed.\n- **Location**: The location of each dependency within the project structure is specified.\n- **⚠️ Client-Server Dependencies**: Some dependencies require version compatibility with your server infrastructure.\n\n### Action Items:\n\n1. **Review Dependencies**: Please take a moment to review the dependencies listed in the table.\n2. **Plan Upgrades**: For each dependency, consider the implications of upgrading to the target version. This may involve testing the new versions in a staging environment to ensure that existing functionality is not adversely affected.\n3. **⚠️ Client-Server Dependencies**: Check the warnings below for dependencies that require version compatibility between client and server.\n\n\n## Dependency Health Overview\n\nThe following table shows dependencies that are currently not vulnerable but whose current version was published more than 6 months ago. These dependencies may become vulnerable in the future due to lack of maintenance.\n\n**Risk Level** indicates maintenance risk based on how long the dependency has been unmaintained (older = higher risk):\n\n| Dependency | Version | Last Upgrade | Risk Level |\n|---------|---------|---------|---------|\n| com.squareup.okhttp:okhttp | 2.5.0 | 2015-08-26 | 🔴 HIGH |\n| org.springframework.boot:spring-boot-starter-thymeleaf | 1.5.1.RELEASE | 2017-01-30 | 🔴 HIGH |\n| org.springframework.cloud:spring-cloud-starter-netflix-eureka-client | 1.4.0.RELEASE | 2017-11-20 | 🔴 HIGH |\n| org.mybatis.spring.boot:mybatis-spring-boot-starter | 1.3.2 | 2018-03-14 | 🔴 HIGH |\n\n\n\n## Security Vulnerabilities\n\nThe following table shows dependencies with security vulnerabilities that require attention:\n\n| Dependency | Version (Advisories) | Recommended (Advisories) |\n|---------|---------|---------|\n| cn.hutool:hutool-all | 🔴 5.8.10 (2 / 0) | 🟢 5.8.44 (0) |\n| com.alibaba:fastjson | 🔴 1.2.24 (2 / 0) | 🟢 2.0.61 (0) |\n| com.fasterxml.jackson.core:jackson-core | 🔴 2.9.8 (3 / 0) | 🟢 2.21.3 (0) |\n| com.fasterxml.jackson.core:jackson-databind | 🔴 2.9.8 (53 / 0) | 🟢 2.21.3 (0) |\n| com.google.guava:guava | 🟠 23.0 (3 / 0) | 🟢 33.6.0-jre (0) |\n| com.jayway.jsonpath:json-path | 🟠 2.2.0 (1 / 3) | 🟢 2.10.0 (0) |\n| \u0026nbsp;\u0026nbsp;↳ net.minidev:json-smart | 🟠 2.2.1 (2 / 0) | 🟢 2.6.0 (0) |\n| com.monitorjbl:xlsx-streamer | 🔴 2.0.0 (1 / 0) | 🟢 2.2.0 (0) |\n| com.squareup.okhttp:okhttp | 🟢 2.5.0 (0 / 1) | 🟢 2.7.5 (0) |\n| \u0026nbsp;\u0026nbsp;↳ com.squareup.okio:okio | 🟠 1.6.0 (1 / 0) | 🟢 3.17.0 (0) |\n| com.thoughtworks.xstream:xstream | 🔴 1.4.20 (1 / 0) | 🟢 1.4.21 (0) |\n| commons-beanutils:commons-beanutils | 🔴 1.9.4 (1 / 0) | 🟢 20030211.134440 (0) |\n| commons-collections:commons-collections | 🔴 3.1 (2 / 0) | 🟢 20040616 (0) |\n| commons-httpclient:commons-httpclient | 🟢 3.1 (1 / 0) | n/a |\n| commons-io:commons-io | 🔴 2.5 (2 / 0) | 🟢 20030203.000550 (0) |\n| commons-lang:commons-lang | 🟠 2.4 (1 / 0) | 🟢 20030203.000129 (0) |\n| commons-net:commons-net | 🟠 3.6 (1 / 0) | 🟢 20030805.205232 (0) |\n| io.springfox:springfox-swagger-ui | 🔴 2.9.2 (1 / 0) | 🟢 3.0.0 (0) |\n| junit:junit | 🟠 4.12 (1 / 0) | 🟢 4.13.2 (0) |\n| mysql:mysql-connector-java | 🔴 8.0.12 (5 / 8) | 🔴 8.0.30 (1) |\n| \u0026nbsp;\u0026nbsp;↳ com.google.protobuf:protobuf-java | 🔴 2.6.0 (3 / 0) | 🟢 4.34.1 (0) |\n| org.apache.httpcomponents:httpclient | 🟠 4.5.12 (1 / 0) | 🟢 4.5.14 (0) |\n| org.apache.logging.log4j:log4j-core | 🔴 2.9.1 (7 / 0) | 🟢 2.25.4 (0) |\n| org.apache.poi:poi-ooxml | 🟠 3.9 (1 / 4) | 🟢 5.5.1 (0) |\n| \u0026nbsp;\u0026nbsp;↳ dom4j:dom4j | 🔴 1.6.1 (2 / 0) | 🟢 20040902.021138 (0) |\n| \u0026nbsp;\u0026nbsp;↳ org.apache.poi:poi-ooxml-schemas | 🟢 3.9 (0 / 1) | 🟢 4.1.2 (0) |\n| \u0026nbsp;\u0026nbsp;\u0026nbsp;\u0026nbsp;↳ org.apache.xmlbeans:xmlbeans | 🔴 2.3.0 (1 / 0) | 🟢 5.3.0 (0) |\n| org.apache.poi:poi | 🟠 3.10-FINAL (6 / 0) | 🟢 5.5.1 (0) |\n| org.apache.shiro:shiro-core | 🔴 1.2.4 (10 / 0) | 🟢 2.1.0 (0) |\n| org.apache.velocity:velocity | 🔴 1.7 (1 / 0) | n/a |\n| org.dom4j:dom4j | 🔴 2.1.0 (2 / 0) | 🟢 2.2.0 (0) |\n| org.jdom:jdom2 | 🟠 2.0.6 (1 / 0) | 🟢 2.0.6.1 (0) |\n| org.jolokia:jolokia-core | 🔴 1.6.0 (1 / 0) | 🟢 1.7.2 (0) |\n| org.jsoup:jsoup | 🟠 1.10.2 (2 / 0) | 🟢 1.22.2 (0) |\n| org.mybatis.spring.boot:mybatis-spring-boot-starter | 🟢 1.3.2 (0 / 1) | 🟢 3.0.3 (0) |\n| \u0026nbsp;\u0026nbsp;↳ org.mybatis:mybatis | 🔴 3.4.6 (1 / 0) | 🟢 3.5.19 (0) |\n| org.postgresql:postgresql | 🔴 42.3.1 (6 / 0) | 🟢 42.7.11 (0) |\n| org.springframework.boot:spring-boot-starter-actuator | 🔴 1.5.1.RELEASE (1 / 2) | 🟢 4.0.6 (0) |\n| \u0026nbsp;\u0026nbsp;↳ org.springframework.boot:spring-boot-actuator | 🟠 1.5.1.RELEASE (1 / 0) | 🟢 2.7.18 (0) |\n| org.springframework.boot:spring-boot-starter-thymeleaf | 🟢 1.5.1.RELEASE (0 / 5) | 🟢 4.0.6 (0) |\n| \u0026nbsp;\u0026nbsp;↳ nz.net.ultraq.thymeleaf:thymeleaf-layout-dialect | 🟢 1.4.0 (0 / 2) | 🟢 3.4.0 (0) |\n| \u0026nbsp;\u0026nbsp;\u0026nbsp;\u0026nbsp;↳ org.codehaus.groovy:groovy | 🔴 2.4.7 (2 / 0) | 🟢 3.0.25 (0) |\n| \u0026nbsp;\u0026nbsp;↳ org.thymeleaf:thymeleaf-spring4 | 🟢 2.1.5.RELEASE (0 / 3) | 🟢 3.0.15.RELEASE (0) |\n| \u0026nbsp;\u0026nbsp;\u0026nbsp;\u0026nbsp;↳ org.thymeleaf:thymeleaf | 🔴 2.1.5.RELEASE (2 / 3) | 🟢 3.1.5.RELEASE (0) |\n| \u0026nbsp;\u0026nbsp;\u0026nbsp;\u0026nbsp;\u0026nbsp;\u0026nbsp;↳ ognl:ognl | 🟠 3.0.8 (1 / 0) | 🟢 3.4.11 (0) |\n| org.springframework.boot:spring-boot-starter-web | 🔴 1.5.1.RELEASE (1 / 71) | 🟢 4.0.6 (0) |\n| \u0026nbsp;\u0026nbsp;↳ org.hibernate:hibernate-validator | 🟠 5.3.4.Final (4 / 0) | 🟢 8.0.3.Final (0) |\n| \u0026nbsp;\u0026nbsp;↳ org.springframework.boot:spring-boot-starter-tomcat | 🟢 1.5.1.RELEASE (0 / 44) | 🟢 4.0.6 (0) |\n| \u0026nbsp;\u0026nbsp;\u0026nbsp;\u0026nbsp;↳ org.apache.tomcat.embed:tomcat-embed-core | 🔴 8.5.11 (43 / 0) | 🟢 10.1.54 (0) |\n| \u0026nbsp;\u0026nbsp;\u0026nbsp;\u0026nbsp;↳ org.apache.tomcat.embed:tomcat-embed-websocket | 🟠 8.5.11 (1 / 0) | 🟢 10.1.54 (0) |\n| \u0026nbsp;\u0026nbsp;↳ org.springframework.boot:spring-boot-starter | 🟢 1.5.1.RELEASE (0 / 13) | 🟢 4.0.6 (0) |\n| \u0026nbsp;\u0026nbsp;\u0026nbsp;\u0026nbsp;↳ org.springframework.boot:spring-boot-autoconfigure | 🟠 1.5.1.RELEASE (1 / 0) | 🟢 2.7.18 (0) |\n| \u0026nbsp;\u0026nbsp;\u0026nbsp;\u0026nbsp;↳ org.springframework.boot:spring-boot-starter-logging | 🟢 1.5.1.RELEASE (0 / 9) | 🟢 4.0.6 (0) |\n| \u0026nbsp;\u0026nbsp;\u0026nbsp;\u0026nbsp;\u0026nbsp;\u0026nbsp;↳ ch.qos.logback:logback-classic | 🔴 1.1.9 (2 / 9) | 🟢 1.5.32 (0) |\n| \u0026nbsp;\u0026nbsp;\u0026nbsp;\u0026nbsp;\u0026nbsp;\u0026nbsp;\u0026nbsp;\u0026nbsp;↳ ch.qos.logback:logback-core | 🔴 1.1.9 (7 / 0) | 🟠 1.4.14 (4) |\n| \u0026nbsp;\u0026nbsp;\u0026nbsp;\u0026nbsp;↳ org.springframework.boot:spring-boot | 🔴 1.5.1.RELEASE (3 / 0) | 🟠 2.7.18 (1) |\n| \u0026nbsp;\u0026nbsp;↳ org.springframework:spring-web | 🔴 4.3.6.RELEASE (7 / 0) | 🔴 5.3.39 (2) |\n| \u0026nbsp;\u0026nbsp;↳ org.springframework:spring-webmvc | 🔴 4.3.6.RELEASE (2 / 0) | 🟠 5.2.25.RELEASE (1) |\n| org.springframework.cloud:spring-cloud-starter-netflix-eureka-client | 🟢 1.4.0.RELEASE (0 / 43) | 🟢 5.0.1 (0) |\n| \u0026nbsp;\u0026nbsp;↳ com.netflix.eureka:eureka-client | 🟢 1.4.11 (0 / 6) | 🟢 2.0.6 (0) |\n| \u0026nbsp;\u0026nbsp;\u0026nbsp;\u0026nbsp;↳ com.netflix.netflix-commons:netflix-eventbus | 🟢 0.3.0 (0 / 1) | n/a |\n| \u0026nbsp;\u0026nbsp;\u0026nbsp;\u0026nbsp;\u0026nbsp;\u0026nbsp;↳ com.netflix.netflix-commons:netflix-infix | 🟢 0.3.0 (0 / 1) | n/a |\n| \u0026nbsp;\u0026nbsp;\u0026nbsp;\u0026nbsp;\u0026nbsp;\u0026nbsp;\u0026nbsp;\u0026nbsp;↳ com.google.code.gson:gson | 🔴 2.8.0 (1 / 0) | 🟢 2.14.0 (0) |\n| \u0026nbsp;\u0026nbsp;\u0026nbsp;\u0026nbsp;↳ org.codehaus.jettison:jettison | 🟠 1.3.7 (5 / 0) | 🟢 1.5.5 (0) |\n| \u0026nbsp;\u0026nbsp;↳ org.springframework.cloud:spring-cloud-starter-netflix-archaius | 🟢 1.4.0.RELEASE (0 / 1) | 🟢 2.2.10.RELEASE (0) |\n| \u0026nbsp;\u0026nbsp;\u0026nbsp;\u0026nbsp;↳ commons-configuration:commons-configuration | 🟠 1.8 (1 / 0) | 🟢 20041012.002804 (0) |\n| \u0026nbsp;\u0026nbsp;↳ org.springframework.cloud:spring-cloud-starter-netflix-ribbon | 🟢 1.4.0.RELEASE (0 / 16) | 🟢 2.2.10.RELEASE (0) |\n| \u0026nbsp;\u0026nbsp;\u0026nbsp;\u0026nbsp;↳ com.netflix.ribbon:ribbon | 🟢 2.2.0 (0 / 16) | 🟢 2.7.18 (0) |\n| \u0026nbsp;\u0026nbsp;\u0026nbsp;\u0026nbsp;\u0026nbsp;\u0026nbsp;↳ io.reactivex:rxnetty | 🟢 0.4.9 (0 / 16) | 🟢 0.5.1 (0) |\n| \u0026nbsp;\u0026nbsp;\u0026nbsp;\u0026nbsp;\u0026nbsp;\u0026nbsp;\u0026nbsp;\u0026nbsp;↳ io.netty:netty-codec-http | 🔴 4.0.27.Final (8 / 14) | 🟢 4.2.12.Final (0) |\n| \u0026nbsp;\u0026nbsp;\u0026nbsp;\u0026nbsp;\u0026nbsp;\u0026nbsp;\u0026nbsp;\u0026nbsp;\u0026nbsp;\u0026nbsp;↳ io.netty:netty-codec | 🟠 4.0.27.Final (3 / 0) | 🟢 4.2.12.Final (0) |\n| \u0026nbsp;\u0026nbsp;\u0026nbsp;\u0026nbsp;\u0026nbsp;\u0026nbsp;\u0026nbsp;\u0026nbsp;\u0026nbsp;\u0026nbsp;↳ io.netty:netty-handler | 🟠 4.0.27.Final (3 / 0) | 🟢 4.2.12.Final (0) |\n| \u0026nbsp;\u0026nbsp;\u0026nbsp;\u0026nbsp;\u0026nbsp;\u0026nbsp;\u0026nbsp;\u0026nbsp;↳ io.netty:netty-transport-native-epoll | 🟢 4.0.27.Final (0 / 2) | 🟢 4.2.12.Final (0) |\n| \u0026nbsp;\u0026nbsp;\u0026nbsp;\u0026nbsp;\u0026nbsp;\u0026nbsp;\u0026nbsp;\u0026nbsp;\u0026nbsp;\u0026nbsp;↳ io.netty:netty-common | 🟠 4.0.27.Final (2 / 0) | 🟢 4.2.12.Final (0) |\n| \u0026nbsp;\u0026nbsp;↳ org.springframework.cloud:spring-cloud-starter | 🟢 1.1.3.RELEASE (0 / 20) | 🟢 5.0.1 (0) |\n| \u0026nbsp;\u0026nbsp;\u0026nbsp;\u0026nbsp;↳ org.springframework.cloud:spring-cloud-context | 🟢 1.1.3.RELEASE (0 / 1) | 🟢 3.1.9 (0) |\n| \u0026nbsp;\u0026nbsp;\u0026nbsp;\u0026nbsp;\u0026nbsp;\u0026nbsp;↳ org.springframework.security:spring-security-crypto | 🟠 4.2.1.RELEASE (1 / 0) | n/a |\n| \u0026nbsp;\u0026nbsp;\u0026nbsp;\u0026nbsp;↳ org.springframework.security:spring-security-rsa | 🟢 1.0.3.RELEASE (0 / 19) | 🟢 1.1.5 (0) |\n| \u0026nbsp;\u0026nbsp;\u0026nbsp;\u0026nbsp;\u0026nbsp;\u0026nbsp;↳ org.bouncycastle:bcpkix-jdk15on | 🟠 1.55 (2 / 19) | n/a |\n| \u0026nbsp;\u0026nbsp;\u0026nbsp;\u0026nbsp;\u0026nbsp;\u0026nbsp;\u0026nbsp;\u0026nbsp;↳ org.bouncycastle:bcprov-jdk15on | 🟠 1.55 (17 / 0) | 🟠 1.70 (5) |\n| org.springframework.data:spring-data-commons | 🟠 1.13.11.RELEASE (1 / 0) | 🟢 2.7.18 (0) |\n| org.springframework.security:spring-security-web | 🔴 4.2.12.RELEASE (4 / 23) | 🔴 5.8.16 (1) |\n| \u0026nbsp;\u0026nbsp;↳ org.springframework.security:spring-security-core | 🔴 4.2.1.RELEASE (8 / 0) | 🟢 5.8.16 (0) |\n| \u0026nbsp;\u0026nbsp;↳ org.springframework:spring-beans | 🔴 4.3.6.RELEASE (2 / 0) | 🟢 5.3.39 (0) |\n| \u0026nbsp;\u0026nbsp;↳ org.springframework:spring-context | 🟠 4.3.6.RELEASE (3 / 0) | 🟠 5.3.39 (2) |\n| \u0026nbsp;\u0026nbsp;↳ org.springframework:spring-core | 🟠 4.3.6.RELEASE (6 / 0) | 🟢 5.2.25.RELEASE (0) |\n| org.springframework:spring-expression | 🟠 4.3.16.RELEASE (4 / 0) | 🟢 5.3.39 (0) |\n| org.yaml:snakeyaml | 🔴 1.21 (8 / 0) | 🟢 2.6 (0) |\n\n\n\n### ⚠️ Client-Server Dependencies Warning\n\nThe following dependencies require version compatibility between client and server:\n\n| Dependency | Risk Level | Description |\n|------------|:----------:|-------------|\n| `pkg:maven/org.jolokia/jolokia-core@1.6.0` | 🔴\u0026nbsp;HIGH | JMX over HTTP agent (server) and client library. Client and server versions must match due to JSON/HTTP protocol changes. |\n| `pkg:maven/com.netflix.eureka/eureka-client@1.4.11` | 🔴\u0026nbsp;HIGH | A client for the Eureka service discovery server. The client version must match the server's API and protocol to ensure registration and heartbeat work correctly. |\n| `pkg:maven/org.apache.tomcat.embed/tomcat-embed-websocket@8.5.11` | 🔴\u0026nbsp;HIGH | Embedded WebSocket server; client browsers must use compatible WebSocket protocol version supported by the server. |\n| `pkg:maven/org.springframework.boot/spring-boot-starter@1.5.1.RELEASE` | 🔴\u0026nbsp;HIGH | Core starter for Spring Boot applications, often embedding a web server. Server version must match the Spring Boot ecosystem. |\n| `pkg:maven/commons-net/commons-net@3.6` | 🔴\u0026nbsp;HIGH | Client library for network protocols (FTP, SMTP, etc.). Client must match server protocol version to avoid connection failures. |\n| `pkg:maven/org.postgresql/postgresql@42.3.1` | 🔴\u0026nbsp;HIGH | PostgreSQL JDBC driver. Client version must be compatible with the database server version to ensure correct protocol and feature support. |\n| `pkg:maven/org.apache.tomcat.embed/tomcat-embed-core@8.5.11` | 🔴\u0026nbsp;HIGH | Embedded HTTP server core; client browsers and tools must use HTTP protocol versions compatible with the server runtime. |\n| `pkg:maven/mysql/mysql-connector-java@8.0.12` | 🔴\u0026nbsp;HIGH | The official JDBC driver for MySQL. The client driver version must be compatible with the MySQL server version to avoid protocol or authentication failures. |\n| `pkg:maven/org.springframework.cloud/spring-cloud-starter-netflix-eureka-client@1.4.0.RELEASE` | 🔴\u0026nbsp;HIGH | Client for the Eureka service registry. Must match the Eureka server's API version to ensure proper service discovery and registration. |\n| `pkg:maven/org.springframework.boot/spring-boot-starter-tomcat@1.5.1.RELEASE` | 🟡\u0026nbsp;MEDIUM | An embedded Tomcat server for Spring Boot. Risk is medium; server version must be compatible with the Servlet API and Spring Boot's auto-configuration. |\n| `pkg:maven/org.springframework.cloud/spring-cloud-starter-netflix-ribbon@1.4.0.RELEASE` | 🟡\u0026nbsp;MEDIUM | This is a client-side load balancer for REST clients. It must be compatible with the service discovery server (e.g., Eureka) and the target microservices' API ver... |\n| `pkg:maven/org.springframework.boot/spring-boot-starter-web@1.5.1.RELEASE` | 🟡\u0026nbsp;MEDIUM | Includes embedded Tomcat server; ensure client HTTP libraries are compatible with server's HTTP/1.1 or HTTP/2 support. |\n| `pkg:maven/org.springframework.boot/spring-boot@1.5.1.RELEASE` | 🟡\u0026nbsp;MEDIUM | Framework for creating standalone Spring applications, often embedding a server. Major versions may introduce breaking changes to auto-configuration. |\n| `pkg:maven/org.springframework.cloud/spring-cloud-starter-netflix-archaius@1.4.0.RELEASE` | 🟡\u0026nbsp;MEDIUM | Archaius is a configuration management client for Netflix OSS services. Client version must be compatible with the remote configuration server's API and data format. |\n| `pkg:maven/com.netflix.ribbon/ribbon@2.2.0` | 🟡\u0026nbsp;MEDIUM | A client-side load balancer for REST services. It must be compatible with the service discovery mechanism and other Netflix OSS components. |\n\n\n\n\nI will start working on this plan shortly; however, you can prompt me to take action immediately or suggest changes. For example:\n\n**Upgrade to target version:**\n`@00felix upgrade org.group:artifact`\n\nor\n\n**Upgrade to specific version:**\n`@00felix upgrade org.group:artifact@version`\n\n**Set JDK version:**\n`@00felix settings set jdk {version}` (e.g., `@00felix settings set jdk 17` to switch to Java 17 for compatibility requirements)\n\nIn response, I will create a remediation and generate a pull request for your review.\n","author":{"url":"https://github.com/00felix-app[bot]","@type":"Person","name":"00felix-app[bot]"},"datePublished":"2026-04-30T16:23:25.000Z","interactionStatistic":{"@type":"InteractionCounter","interactionType":"https://schema.org/CommentAction","userInteractionCount":0},"url":"https://github.com/36/java-sec-code/issues/36"}
| route-pattern | /_view_fragments/issues/show/:user_id/:repository/:id/issue_layout(.:format) |
| route-controller | voltron_issues_fragments |
| route-action | issue_layout |
| fetch-nonce | v2:91fc3c73-9dd0-4f66-77e0-7d78ae2d7592 |
| current-catalog-service-hash | 81bb79d38c15960b92d99bca9288a9108c7a47b18f2423d0f6438c5b7bcd2114 |
| request-id | D6CA:347700:30A38:404EA:6A53F250 |
| html-safe-nonce | b52c59a82437b0035bc83cc2473b765130706e91dbb1ff001576c7f0c554fed8 |
| visitor-payload | eyJyZWZlcnJlciI6IiIsInJlcXVlc3RfaWQiOiJENkNBOjM0NzcwMDozMEEzODo0MDRFQTo2QTUzRjI1MCIsInZpc2l0b3JfaWQiOiI4NTY1NzQ4NzUyNDcxODE0NzM2IiwicmVnaW9uX2VkZ2UiOiJpYWQiLCJyZWdpb25fcmVuZGVyIjoiaWFkIn0= |
| visitor-hmac | e4ff8e2f24a67f78848b29843750eb02e7d3b66c478bb314925dda81288fc6d4 |
| hovercard-subject-tag | issue:4359652843 |
| github-keyboard-shortcuts | repository,issues,copilot |
| google-site-verification | Apib7-x98H0j5cPqHWwSMm6dNU4GmODRoqxLiDzdx9I |
| octolytics-url | https://collector.github.com/github/collect |
| analytics-location | / |
| fb:app_id | 1401488693436528 |
| apple-itunes-app | app-id=1477376905, app-argument=https://github.com/_view_fragments/issues/show/Testing-For-Organization/java-sec-code/36/issue_layout |
| twitter:image | https://opengraph.githubassets.com/01b0db1b6cfd81f5a991904981bd63f2b409e51007e68e099cd514cb5ece7a4e/Testing-For-Organization/java-sec-code/issues/36 |
| twitter:card | summary_large_image |
| og:image | https://opengraph.githubassets.com/01b0db1b6cfd81f5a991904981bd63f2b409e51007e68e099cd514cb5ece7a4e/Testing-For-Organization/java-sec-code/issues/36 |
| og:image:alt | Dependency Audit Overview The table presented below outlines a dependency audit based on the findings from our recent Software Composition Analysis (SCA) scan. We have identified several dependenci... |
| og:image:width | 1200 |
| og:image:height | 600 |
| og:site_name | GitHub |
| og:type | object |
| og:author:username | 00felix-app[bot] |
| hostname | github.com |
| expected-hostname | github.com |
| None | b9a586c06a05a7a86fc7e3f4dbd03e42f6869085879aa184aa6369456dbd50fb |
| turbo-cache-control | no-preview |
| go-import | github.com/Testing-For-Organization/java-sec-code git https://github.com/Testing-For-Organization/java-sec-code.git |
| octolytics-dimension-user_id | 236858541 |
| octolytics-dimension-user_login | Testing-For-Organization |
| octolytics-dimension-repository_id | 1099293729 |
| octolytics-dimension-repository_nwo | Testing-For-Organization/java-sec-code |
| octolytics-dimension-repository_public | true |
| octolytics-dimension-repository_is_fork | true |
| octolytics-dimension-repository_parent_id | 115394871 |
| octolytics-dimension-repository_parent_nwo | JoyChou93/java-sec-code |
| octolytics-dimension-repository_network_root_id | 115394871 |
| octolytics-dimension-repository_network_root_nwo | JoyChou93/java-sec-code |
| turbo-body-classes | logged-out env-production page-responsive |
| disable-turbo | false |
| browser-stats-url | https://api.github.com/_private/browser/stats |
| browser-errors-url | https://api.github.com/_private/browser/errors |
| release | 07a982c1d40157c619b364352b704c3ce66bb332 |
| ui-target | full |
| theme-color | #1e2327 |
| color-scheme | light dark |
Links:
Viewport: width=device-width