Dependency-Check is an open source tool performing a best effort analysis of 3rd party dependencies;
false positives and false negatives may exist in the analysis performed by the tool. Use of the tool and
the reporting provided constitutes acceptance for use in an AS IS condition, and there are NO warranties,
implied or otherwise, with regard to the analysis or its use. Any use of the tool and the reporting provided
is at the user’s risk. In no event shall the copyright holder or OWASP be held liable for any damages whatsoever
arising out of or in connection with the use of this tool, the analysis performed, or the resulting report.
Scan Information (
show all ):
dependency-check version : 10.0.3Report Generated On : Sun, 25 Jan 2026 09:42:29 +0100Dependencies Scanned : 78 (77 unique)Vulnerable Dependencies : 0 Vulnerabilities Found : 0Vulnerabilities Suppressed : 4 (show )... NVD API Last Checked : 2026-01-25T08:39:32ZNVD API Last Modified : 2024-09-18T11:15:10ZNVD Cache Last Checked : 2026-01-25T08:39:32ZNVD Cache Last Modified : 2024-09-18T11:15:10ZSummary Display:
Showing Vulnerable Dependencies (click to show all) File Path: /home/jenkins/.gradle/caches/modules-2/files-2.1/lib/Merlia/0/21956e2c178030eb6943181dca7fd4849333d65e/Merlia-0.jarMD5: a2aa4399359074b15b51eb53e2ca2d3fSHA1: 21956e2c178030eb6943181dca7fd4849333d65eSHA256: 88c1bbb391688baf082de76bf4f73e36d122969dcb0d9cdef22217c88628debfReferenced In Project/Scope: CoWorkInstaller:inetPluginMerlia-0.jar is in the transitive dependency tree of the listed items. Included by:
Evidence Type Source Name Value Confidence Vendor file name Merlia-0 High Vendor gradle artifactid Merlia Highest Vendor gradle groupid lib Highest Vendor jar package name inet Low Vendor jar package name tds Low Product file name Merlia-0 High Product gradle artifactid Merlia Highest Product jar package name tds Low Version file name Merlia-0 Medium Version file version 0 Medium Version gradle version 0 Highest Version Manifest driver-version 8.13.02 Medium
Description:
JSR305 Annotations for Findbugs License:
The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt File Path: /home/jenkins/.gradle/caches/modules-2/files-2.1/com.google.code.findbugs/annotations/3.0.1/fc019a2216218990d64dfe756e7aa20f0069dea2/annotations-3.0.1.jar/META-INF/maven/com.google.code.findbugs/jsr305/pom.xml
MD5: d08567d16867a0b79bc8149683918452
SHA1: d04690f71f3393e23f30998d9534365274fa5f9f
SHA256: 4170a761dc5bfd3981a8e6f7aab9e2acdce82d34fd5aa9bb11e3c090d25314ce
Referenced In Project/Scope: CoWorkInstaller:inetPlugin
Evidence Type Source Name Value Confidence Vendor pom artifactid jsr305 Low Vendor pom groupid com.google.code.findbugs Highest Vendor pom name FindBugs-jsr305 High Vendor pom url http://findbugs.sourceforge.net/ Highest Product pom artifactid jsr305 Highest Product pom groupid com.google.code.findbugs Highest Product pom name FindBugs-jsr305 High Product pom url http://findbugs.sourceforge.net/ Medium Version pom version 3.0.1 Highest
Description:
Annotation the FindBugs tool supports License:
GNU Lesser Public License: http://www.gnu.org/licenses/lgpl.html File Path: /home/jenkins/.gradle/caches/modules-2/files-2.1/com.google.code.findbugs/annotations/3.0.1/fc019a2216218990d64dfe756e7aa20f0069dea2/annotations-3.0.1.jar
MD5: fc4f102f22ba4f1df3f1d7cc6b202152
SHA1: fc019a2216218990d64dfe756e7aa20f0069dea2
SHA256: 6b47ff0a6de0ce17cbedc3abb0828ca5bce3009d53ea47b3723ff023c4742f79
Referenced In Project/Scope: CoWorkInstaller:inetPlugin
annotations-3.0.1.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/de.inetsoftware/jlessc@1.14
Evidence Type Source Name Value Confidence Vendor file name annotations High Vendor gradle artifactid annotations Highest Vendor gradle groupid com.google.code.findbugs Highest Vendor jar package name annotation Highest Vendor jar package name annotations Highest Vendor jar package name findbugs Highest Vendor Manifest bundle-requiredexecutionenvironment J2SE-1.5 Low Vendor Manifest bundle-symbolicname findbugsAnnotations Medium Vendor pom artifactid annotations Low Vendor pom developer email Loskutov@gmx.de Low Vendor pom developer email pugh at cs.umd.edu Low Vendor pom developer id al Medium Vendor pom developer id bp Medium Vendor pom developer name Andrey Loskutov Medium Vendor pom developer name Bill Pugh Medium Vendor pom developer name Keith Lea Medium Vendor pom groupid com.google.code.findbugs Highest Vendor pom name FindBugs-Annotations High Vendor pom url http://findbugs.sourceforge.net/ Highest Product file name annotations High Product gradle artifactid annotations Highest Product jar package name annotation Highest Product jar package name annotations Highest Product jar package name findbugs Highest Product Manifest Bundle-Name FindBugs-Annotations Medium Product Manifest bundle-requiredexecutionenvironment J2SE-1.5 Low Product Manifest bundle-symbolicname findbugsAnnotations Medium Product pom artifactid annotations Highest Product pom developer email Loskutov@gmx.de Low Product pom developer email pugh at cs.umd.edu Low Product pom developer id al Low Product pom developer id bp Low Product pom developer name Andrey Loskutov Low Product pom developer name Bill Pugh Low Product pom developer name Keith Lea Low Product pom groupid com.google.code.findbugs Highest Product pom name FindBugs-Annotations High Product pom url http://findbugs.sourceforge.net/ Medium Version file version 3.0.1 High Version gradle version 3.0.1 Highest Version Manifest Bundle-Version 3.0.1 High Version pom version 3.0.1 Highest
File Path: /home/jenkins/workspace/cowork/Check-Product-Installer-for-Security-Problems/CoWorkInstaller/build/tmp/dependencies/i-net CoWork/plugins/cowork.calls.zip/bc-fips.jarMD5: 0e3ce147f5132e096e7c3b22ab23a079SHA1: 061fbe8383f70489dda95a11a2a4739eb818ff2cSHA256: 044fcd8a29d236edea8a5b414406cdae63b475f9ad9f05fe2dc904a277941115Referenced In Project/Scope: CoWorkInstaller
Evidence Type Source Name Value Confidence Vendor file name bc-fips High Vendor jar package name bouncycastle Highest Vendor jar package name bouncycastle Low Vendor jar package name fips Highest Vendor jar package name org Highest Vendor jar package name provider Highest Vendor Manifest application-library-allowable-codebase * Low Vendor Manifest application-name Bouncy Castle FIPS Provider Medium Vendor Manifest bundle-requiredexecutionenvironment JavaSE-1.8 Low Vendor Manifest bundle-symbolicname bcfips Medium Vendor Manifest caller-allowable-codebase * Low Vendor Manifest codebase * Low Vendor Manifest extension-name org.bouncycastle.bcfips Medium Vendor Manifest Implementation-Vendor BouncyCastle.org High Vendor Manifest Implementation-Vendor-Id org.bouncycastle Medium Vendor Manifest multi-release true Low Vendor Manifest permissions all-permissions Low Vendor Manifest specification-vendor BouncyCastle.org Low Vendor Manifest trusted-library true Low Product file name bc-fips High Product jar package name bouncycastle Highest Product jar package name fips Highest Product jar package name org Highest Product jar package name permissions Highest Product jar package name provider Highest Product Manifest application-library-allowable-codebase * Low Product Manifest application-name Bouncy Castle FIPS Provider Medium Product Manifest Bundle-Name bcfips Medium Product Manifest bundle-requiredexecutionenvironment JavaSE-1.8 Low Product Manifest bundle-symbolicname bcfips Medium Product Manifest caller-allowable-codebase * Low Product Manifest codebase * Low Product Manifest extension-name org.bouncycastle.bcfips Medium Product Manifest multi-release true Low Product Manifest permissions all-permissions Low Product Manifest trusted-library true Low Version jar package name permissions Highest Version Manifest Bundle-Version 2.1.2 High Version Manifest Implementation-Version 2.1.2 High
cpe:2.3:a:bouncycastle:bouncy_castle_for_java:2.1.2:*:*:*:*:*:*:* (Confidence :Low) suppress File Path: /home/jenkins/workspace/cowork/Check-Product-Installer-for-Security-Problems/CoWorkInstaller/build/tmp/dependencies/i-net CoWork/plugins/cowork.calls.zip/bcpkix-fips.jarMD5: 17235576f301545c841cd96c00cc4815SHA1: 41d15c70437440d63b65225d7c00873a030d25d0SHA256: c4370064664d474d8681f55f302cfdade4cae0f3d798b10fd18b0ab8fbd6fed1Referenced In Project/Scope: CoWorkInstaller
Evidence Type Source Name Value Confidence Vendor file name bcpkix-fips High Vendor jar package name bouncycastle Highest Vendor jar package name bouncycastle Low Vendor jar package name pkix Highest Vendor Manifest application-library-allowable-codebase * Low Vendor Manifest application-name Bouncy Castle FIPS PKIX API Medium Vendor Manifest automatic-module-name org.bouncycastle.fips.pkix Medium Vendor Manifest bundle-requiredexecutionenvironment JavaSE-1.8 Low Vendor Manifest bundle-symbolicname bcpkix Medium Vendor Manifest caller-allowable-codebase * Low Vendor Manifest codebase * Low Vendor Manifest extension-name org.bouncycastle.bcfips.pkix Medium Vendor Manifest Implementation-Vendor BouncyCastle.org High Vendor Manifest Implementation-Vendor-Id org.bouncycastle Medium Vendor Manifest multi-release true Low Vendor Manifest permissions all-permissions Low Vendor Manifest specification-vendor BouncyCastle.org Low Vendor Manifest trusted-library true Low Product file name bcpkix-fips High Product jar package name bouncycastle Highest Product jar package name pkix Highest Product Manifest application-library-allowable-codebase * Low Product Manifest application-name Bouncy Castle FIPS PKIX API Medium Product Manifest automatic-module-name org.bouncycastle.fips.pkix Medium Product Manifest Bundle-Name bcpkix Medium Product Manifest bundle-requiredexecutionenvironment JavaSE-1.8 Low Product Manifest bundle-symbolicname bcpkix Medium Product Manifest caller-allowable-codebase * Low Product Manifest codebase * Low Product Manifest extension-name org.bouncycastle.bcfips.pkix Medium Product Manifest multi-release true Low Product Manifest permissions all-permissions Low Product Manifest trusted-library true Low Version Manifest Bundle-Version 2.1.10 High Version Manifest Implementation-Version 2.1.10 High
File Path: /home/jenkins/workspace/cowork/Check-Product-Installer-for-Security-Problems/CoWorkInstaller/build/tmp/dependencies/i-net CoWork/plugins/cowork.calls.zip/bctls-fips.jarMD5: 31c3f7bcb6b823e5bc8a8c0e8c8ea6b5SHA1: d2979016bf75ef8b5e8aa17211399651a391a21fSHA256: 688410563445e1a65ff33cb67842499f0788994d752c3df8f7ea4a0d40ddbf50Referenced In Project/Scope: CoWorkInstaller
Evidence Type Source Name Value Confidence Vendor file name bctls-fips High Vendor jar package name bouncycastle Highest Vendor jar package name bouncycastle Low Vendor jar package name org Highest Vendor jar package name tls Highest Vendor Manifest application-library-allowable-codebase * Low Vendor Manifest application-name Bouncy Castle FIPS TLS API Medium Vendor Manifest automatic-module-name org.bouncycastle.fips.tls Medium Vendor Manifest bundle-requiredexecutionenvironment JavaSE-1.8 Low Vendor Manifest bundle-symbolicname bctls Medium Vendor Manifest caller-allowable-codebase * Low Vendor Manifest codebase * Low Vendor Manifest extension-name org.bouncycastle.bcfips.tls Medium Vendor Manifest Implementation-Vendor BouncyCastle.org High Vendor Manifest Implementation-Vendor-Id org.bouncycastle Medium Vendor Manifest multi-release true Low Vendor Manifest permissions all-permissions Low Vendor Manifest specification-vendor BouncyCastle.org Low Vendor Manifest trusted-library true Low Product file name bctls-fips High Product jar package name bouncycastle Highest Product jar package name org Highest Product jar package name tls Highest Product Manifest application-library-allowable-codebase * Low Product Manifest application-name Bouncy Castle FIPS TLS API Medium Product Manifest automatic-module-name org.bouncycastle.fips.tls Medium Product Manifest Bundle-Name bctls Medium Product Manifest bundle-requiredexecutionenvironment JavaSE-1.8 Low Product Manifest bundle-symbolicname bctls Medium Product Manifest caller-allowable-codebase * Low Product Manifest codebase * Low Product Manifest extension-name org.bouncycastle.bcfips.tls Medium Product Manifest multi-release true Low Product Manifest permissions all-permissions Low Product Manifest trusted-library true Low Version Manifest Bundle-Version 2.1.22 High Version Manifest Implementation-Version 2.1.22 High
File Path: /home/jenkins/workspace/cowork/Check-Product-Installer-for-Security-Problems/CoWorkInstaller/build/tmp/dependencies/i-net CoWork/plugins/cowork.calls.zip/bcutil-fips.jarMD5: ca132f36f25d85df12535487bb9a2d33SHA1: 30b41ebc759a4f02e2ff7ab9acb09268923ee41fSHA256: 503aaf5c2c5b7c729547462efe13699b5f6dacf9be150b7c48bba974b793dc92Referenced In Project/Scope: CoWorkInstaller
Evidence Type Source Name Value Confidence Vendor file name bcutil-fips High Vendor jar package name asn1 Low Vendor jar package name bouncycastle Highest Vendor jar package name bouncycastle Low Vendor jar package name its Low Vendor Manifest application-library-allowable-codebase * Low Vendor Manifest application-name Bouncy Castle FIPS Utility API Medium Vendor Manifest automatic-module-name org.bouncycastle.fips.util Medium Vendor Manifest bundle-requiredexecutionenvironment JavaSE-1.8 Low Vendor Manifest bundle-symbolicname bcutil Medium Vendor Manifest caller-allowable-codebase * Low Vendor Manifest codebase * Low Vendor Manifest extension-name org.bouncycastle.bcfips.util Medium Vendor Manifest Implementation-Vendor BouncyCastle.org High Vendor Manifest Implementation-Vendor-Id org.bouncycastle Medium Vendor Manifest multi-release true Low Vendor Manifest permissions all-permissions Low Vendor Manifest specification-vendor BouncyCastle.org Low Vendor Manifest trusted-library true Low Product file name bcutil-fips High Product jar package name asn1 Low Product jar package name bouncycastle Highest Product jar package name its Low Product Manifest application-library-allowable-codebase * Low Product Manifest application-name Bouncy Castle FIPS Utility API Medium Product Manifest automatic-module-name org.bouncycastle.fips.util Medium Product Manifest Bundle-Name bcutil Medium Product Manifest bundle-requiredexecutionenvironment JavaSE-1.8 Low Product Manifest bundle-symbolicname bcutil Medium Product Manifest caller-allowable-codebase * Low Product Manifest codebase * Low Product Manifest extension-name org.bouncycastle.bcfips.util Medium Product Manifest multi-release true Low Product Manifest permissions all-permissions Low Product Manifest trusted-library true Low Version Manifest Bundle-Version 2.1.5 High Version Manifest Implementation-Version 2.1.5 High
Description:
configuration library for JVM languages using HOCON files License:
https://www.apache.org/licenses/LICENSE-2.0;description=Apache-2.0 File Path: /home/jenkins/workspace/cowork/Check-Product-Installer-for-Security-Problems/CoWorkInstaller/build/tmp/dependencies/i-net CoWork/plugins/cowork.calls.zip/config.jar
MD5: 1c5702a33999ed337c9b256a4d68eee7
SHA1: b57e0fbdc7270d8ea59c1ba367457a5cc7ba0e98
SHA256: 8ada4c185ce72416712d63e0b5afdc5f009c0cdf405e5f26efecdf156aa5dfb6
Referenced In Project/Scope: CoWorkInstaller
Evidence Type Source Name Value Confidence Vendor file name config High Vendor jar package name config Highest Vendor jar package name config Low Vendor jar package name impl Low Vendor jar package name typesafe Highest Vendor jar package name typesafe Low Vendor Manifest automatic-module-name typesafe.config Medium Vendor Manifest bundle-symbolicname com.typesafe.config Medium Vendor Manifest implementation-url https://github.com/lightbend/config Low Vendor Manifest Implementation-Vendor com.typesafe High Vendor Manifest Implementation-Vendor-Id com.typesafe Medium Vendor Manifest specification-vendor com.typesafe Low Product file name config High Product jar package name config Highest Product jar package name config Low Product jar package name impl Low Product jar package name typesafe Highest Product Manifest automatic-module-name typesafe.config Medium Product Manifest Bundle-Name config Medium Product Manifest bundle-symbolicname com.typesafe.config Medium Product Manifest Implementation-Title config High Product Manifest implementation-url https://github.com/lightbend/config Low Product Manifest specification-title config Medium Version jar package name config Highest Version Manifest Bundle-Version 1.4.3 High Version Manifest Implementation-Version 1.4.3 High
File Path: /home/jenkins/workspace/cowork/Check-Product-Installer-for-Security-Problems/CoWorkInstaller/build/tmp/dependencies/i-net CoWork/plugins/cowork.calls.zip/cowork.calls.jarMD5: 08e114e4543a82704bec9b4cfeff94f1SHA1: dc6af577026e8709aab69e83544b4bb2ff2cc57cSHA256: 71c554a565212e0f668343412952b749523f3128db0ee7ce41ce9e4d158adf15Referenced In Project/Scope: CoWorkInstaller
Evidence Type Source Name Value Confidence Vendor file name cowork.calls High Vendor jar package name calls Low Vendor jar package name cowork Low Vendor jar package name inet Low Vendor Manifest built-date 2026-01-25 09:31 Low Vendor Manifest implementation-group cowork Low Vendor Manifest Implementation-Vendor i-net software High Vendor Manifest Implementation-Vendor-Id de.inetsoftware Medium Vendor Manifest specification-vendor i-net software Low Vendor Manifest vendor i-net software GmbH, Berlin, Germany Medium Product file name cowork.calls High Product jar package name calls Highest Product jar package name calls Low Product jar package name cowork Highest Product jar package name cowork Low Product jar package name server Low Product Manifest built-date 2026-01-25 09:31 Low Product Manifest implementation-group cowork Low Product Manifest Implementation-Title cowork.calls High Product Manifest specification-title cowork.calls Medium Version jar package name cowork Highest Version Manifest Implementation-Version 25.10.314 High
File Path: /home/jenkins/workspace/cowork/Check-Product-Installer-for-Security-Problems/CoWorkInstaller/build/tmp/dependencies/i-net CoWork/plugins/cowork.calls.zip/cowork.calls.jar/com/inet/cowork/calls/js/coworkcallsactions.jsMD5: 0f95beae5c867b63a5dc8053905a125cSHA1: 157945822cedcd19fd835c731fbd6e54916e275aSHA256: c6ad9f99a70c999213777c0272765103770ade4ec9ea805e2264e02d8897f162Referenced In Project/Scope: CoWorkInstaller
Evidence Type Source Name Value Confidence
File Path: /home/jenkins/workspace/cowork/Check-Product-Installer-for-Security-Problems/CoWorkInstaller/build/tmp/dependencies/i-net CoWork/plugins/cowork.calls.zip/cowork.calls.jar/com/inet/cowork/calls/js/coworkcallsettings.jsMD5: 5eed696ed7543eb8fef2f5517bc60d50SHA1: dfb632578cb7f82f9789f99401a0e7e491fa641dSHA256: 19c58f3827b91a97bc6629504c0f95bd806693d889630762ab87155c24540ee2Referenced In Project/Scope: CoWorkInstaller
Evidence Type Source Name Value Confidence
File Path: /home/jenkins/workspace/cowork/Check-Product-Installer-for-Security-Problems/CoWorkInstaller/build/tmp/dependencies/i-net CoWork/plugins/cowork.calls.zip/cowork.calls.jar/com/inet/cowork/calls/js/coworkcallsfactory.jsMD5: b63fc1880073e3e6b1a22c338881dd5cSHA1: 61bdc1d9eed8024e6ddd66cfff7ac5c738131aacSHA256: 28f0a456ee217450e604de89db50c2a1f2d8451baca20c517a781ea90752b2aeReferenced In Project/Scope: CoWorkInstaller
Evidence Type Source Name Value Confidence
Description:
A Java implementation of the ICE protocol License:
Apache-2.0: https://github.com/jitsi/ice4j/blob/master/LICENSE File Path: /home/jenkins/workspace/cowork/Check-Product-Installer-for-Security-Problems/CoWorkInstaller/build/tmp/dependencies/i-net CoWork/plugins/cowork.calls.zip/ice4j.jar
MD5: 95ccd42c22c821a10722a74fb75d47f2
SHA1: 4fbe65fd307d75b45dd3e5710715124cb73e17bd
SHA256: 00b9cf7c274558de404c2d08f35de298541409eaf210994edb4c60b51a12757d
Referenced In Project/Scope: CoWorkInstaller
Evidence Type Source Name Value Confidence Vendor file name ice4j High Vendor jar package name ice Highest Vendor jar package name ice4j Highest Vendor Manifest build-jdk-spec 11 Low Vendor Manifest bundle-developers "org.jitsi";email="dev@jitsi.org";name="Jitsi Team" Low Vendor Manifest bundle-docurl https://github.com/jitsi/ice4j Low Vendor Manifest bundle-symbolicname org.jitsi.ice4j Medium Vendor pom artifactid ice4j Low Vendor pom developer email dev@jitsi.org Low Vendor pom developer id org.jitsi Medium Vendor pom developer name Jitsi Team Medium Vendor pom groupid org.jitsi Highest Vendor pom name ice4j High Vendor pom organization name jitsi.org High Vendor pom organization url https://jitsi.org Medium Vendor pom url jitsi/ice4j Highest Product file name ice4j High Product jar package name ice Highest Product jar package name ice4j Highest Product Manifest build-jdk-spec 11 Low Product Manifest bundle-developers "org.jitsi";email="dev@jitsi.org";name="Jitsi Team" Low Product Manifest bundle-docurl https://github.com/jitsi/ice4j Low Product Manifest Bundle-Name ice4j Medium Product Manifest bundle-symbolicname org.jitsi.ice4j Medium Product pom artifactid ice4j Highest Product pom developer email dev@jitsi.org Low Product pom developer id org.jitsi Low Product pom developer name Jitsi Team Low Product pom groupid org.jitsi Highest Product pom name ice4j High Product pom organization name jitsi.org Low Product pom organization url https://jitsi.org Low Product pom url jitsi/ice4j High Version pom version 3.2-7-g4f13296 Highest
Description:
Jitsi Common Components (Configuration Utilities) License:
"Apache-2.0";link="https://github.com/jitsi/jicoco/blob/master/LICENSE" File Path: /home/jenkins/workspace/cowork/Check-Product-Installer-for-Security-Problems/CoWorkInstaller/build/tmp/dependencies/i-net CoWork/plugins/cowork.calls.zip/jicoco-config.jar
MD5: 2369693cf96dd817e1ddf46129143ad7
SHA1: d6602d58a4b13bbad51202338fa23ffc9595c707
SHA256: 9db4cc0c0d1985820c82895cffaf695a5d940db892c8e23d51cdce6d3c82a862
Referenced In Project/Scope: CoWorkInstaller
Evidence Type Source Name Value Confidence Vendor file name jicoco-config High Vendor jar package name config Highest Vendor jar package name jitsi Highest Vendor Manifest build-jdk-spec 11 Low Vendor Manifest bundle-developers "org.jitsi";email="dev@jitsi.org";name="Jitsi Team" Low Vendor Manifest bundle-docurl https://github.com/jitsi/jicoco/jicoco-config Low Vendor Manifest bundle-symbolicname org.jitsi.config Medium Vendor pom artifactid jicoco-config Low Vendor pom groupid org.jitsi Highest Vendor pom name jicoco-config High Vendor pom parent-artifactid jicoco-parent Low Product file name jicoco-config High Product jar package name config Highest Product jar package name jitsi Highest Product Manifest build-jdk-spec 11 Low Product Manifest bundle-developers "org.jitsi";email="dev@jitsi.org";name="Jitsi Team" Low Product Manifest bundle-docurl https://github.com/jitsi/jicoco/jicoco-config Low Product Manifest Bundle-Name jicoco-config Medium Product Manifest bundle-symbolicname org.jitsi.config Medium Product pom artifactid jicoco-config Highest Product pom groupid org.jitsi Highest Product pom name jicoco-config High Product pom parent-artifactid jicoco-parent Medium Version pom version 1.1-151-g63a0655 Highest
Description:
jitsi-metaconfig helps solve the problems around the evolution of configuration properties License:
Apache-2.0: https://github.com/jitsi/jitsi-metaconfig/blob/master/LICENSE File Path: /home/jenkins/workspace/cowork/Check-Product-Installer-for-Security-Problems/CoWorkInstaller/build/tmp/dependencies/i-net CoWork/plugins/cowork.calls.zip/jitsi-metaconfig.jar
MD5: 725b026d03d1dfcefb3ca4301f8d619a
SHA1: 20cf06693fec9f78466c21e15aa8b3f6b875f2f2
SHA256: 51802cbf89e0813cc3d59288eaf09d145101d874c8ca3433f968a4eb0c2c872a
Referenced In Project/Scope: CoWorkInstaller
Evidence Type Source Name Value Confidence Vendor file name jitsi-metaconfig High Vendor jar package name jitsi Highest Vendor jar package name metaconfig Highest Vendor Manifest build-jdk-spec 11 Low Vendor Manifest bundle-developers "org.jitsi";email="dev@jitsi.org";name="Jitsi Team" Low Vendor Manifest bundle-docurl https://github.com/jitsi/jitsi-metaconfig Low Vendor Manifest bundle-symbolicname org.jitsi.metaconfig Medium Vendor pom artifactid jitsi-metaconfig Low Vendor pom developer email dev@jitsi.org Low Vendor pom developer id org.jitsi Medium Vendor pom developer name Jitsi Team Medium Vendor pom groupid org.jitsi Highest Vendor pom name jitsi-metaconfig High Vendor pom organization name jitsi.org High Vendor pom organization url https://jitsi.org Medium Vendor pom url jitsi/jitsi-metaconfig Highest Product file name jitsi-metaconfig High Product jar package name jitsi Highest Product jar package name metaconfig Highest Product Manifest build-jdk-spec 11 Low Product Manifest bundle-developers "org.jitsi";email="dev@jitsi.org";name="Jitsi Team" Low Product Manifest bundle-docurl https://github.com/jitsi/jitsi-metaconfig Low Product Manifest Bundle-Name jitsi-metaconfig Medium Product Manifest bundle-symbolicname org.jitsi.metaconfig Medium Product pom artifactid jitsi-metaconfig Highest Product pom developer email dev@jitsi.org Low Product pom developer id org.jitsi Low Product pom developer name Jitsi Team Low Product pom groupid org.jitsi Highest Product pom name jitsi-metaconfig High Product pom organization name jitsi.org Low Product pom organization url https://jitsi.org Low Product pom url jitsi/jitsi-metaconfig High Version pom version 1.0-14-gbec165a Highest
Description:
A set of basic utilities used in Jitsi projects License:
Apache-2.0: https://github.com/jitsi/jitsi-utils/blob/master/LICENSE File Path: /home/jenkins/workspace/cowork/Check-Product-Installer-for-Security-Problems/CoWorkInstaller/build/tmp/dependencies/i-net CoWork/plugins/cowork.calls.zip/jitsi-utils.jar
MD5: b2ca06a9a2e5e253298685fd3a38449c
SHA1: 20bb058007931515baf37d41e1cb252f88f56fa4
SHA256: 60503c6c694df00e5a878638198e8e54fdcb0a6c7a28fd519940e2cbc593773c
Referenced In Project/Scope: CoWorkInstaller
Evidence Type Source Name Value Confidence Vendor file name jitsi-utils High Vendor jar package name jitsi Highest Vendor jar package name utils Highest Vendor Manifest build-jdk-spec 11 Low Vendor Manifest bundle-docurl https://github.com/jitsi/jitsi-utils Low Vendor Manifest bundle-symbolicname org.jitsi.utils Medium Vendor pom artifactid jitsi-utils Low Vendor pom developer email dev@jitsi.org Low Vendor pom developer id org.jitsi Medium Vendor pom developer name Jitsi Team Medium Vendor pom groupid org.jitsi Highest Vendor pom name jitsi-utils High Vendor pom organization name jitsi.org High Vendor pom organization url https://jitsi.org Medium Vendor pom url jitsi/jitsi-utils Highest Product file name jitsi-utils High Product jar package name jitsi Highest Product jar package name utils Highest Product Manifest build-jdk-spec 11 Low Product Manifest bundle-docurl https://github.com/jitsi/jitsi-utils Low Product Manifest Bundle-Name jitsi-utils Medium Product Manifest bundle-symbolicname org.jitsi.utils Medium Product pom artifactid jitsi-utils Highest Product pom developer email dev@jitsi.org Low Product pom developer id org.jitsi Low Product pom developer name Jitsi Team Low Product pom groupid org.jitsi Highest Product pom name jitsi-utils High Product pom organization name jitsi.org Low Product pom organization url https://jitsi.org Low Product pom url jitsi/jitsi-utils High Version pom version 1.0-134-ga33c52c Highest
File Path: /home/jenkins/workspace/cowork/Check-Product-Installer-for-Security-Problems/CoWorkInstaller/build/tmp/dependencies/i-net CoWork/plugins/cowork.calls.zip/kotlin-stdlib.jarMD5: 895fde81aafd572b5853c1b4a250a94dSHA1: 85f8b81009cda5890e54ba67d64b5e599c645020SHA256: d6f91b7b0f306cca299fec74fb7c34e4874d6f5ec5b925a0b4de21901e119c3fReferenced In Project/Scope: CoWorkInstaller
Evidence Type Source Name Value Confidence Vendor file name kotlin-stdlib High Vendor jar package name kotlin Low Vendor Manifest Implementation-Vendor JetBrains High Vendor Manifest kotlin-runtime-component Main Low Vendor Manifest multi-release true Low Product file name kotlin-stdlib High Product jar package name kotlin Highest Product Manifest Implementation-Title kotlin-stdlib High Product Manifest kotlin-runtime-component Main Low Product Manifest multi-release true Low Version Manifest Implementation-Version 2.1.0-release-394 High
Related Dependencies cowork.calls.zip: kotlin-reflect.jarFile Path: /home/jenkins/workspace/cowork/Check-Product-Installer-for-Security-Problems/CoWorkInstaller/build/tmp/dependencies/i-net CoWork/plugins/cowork.calls.zip/kotlin-reflect.jar MD5: 57f61bdc8081e6fd963b6e3ce63f07c1 SHA1: dc3753b59b67d79b7d2f546d51e22a0ec1f082d8 SHA256: b5f608edfa98a8cfa2372cc12d18ada974be1c56c1093eff06cc061f4fc088b2 File Path: /home/jenkins/workspace/cowork/Check-Product-Installer-for-Security-Problems/CoWorkInstaller/build/tmp/dependencies/i-net CoWork/plugins/cowork.meetingrooms.zip/cowork.meetingrooms.jarMD5: eada4f11c5e7230ded495f15c96784ecSHA1: 64325308222a51069bdc74a2478a130f8c4135caSHA256: e8a39377e53dc5fcd8d9e8c8bb4fe451816329ddfde553cc41918c282f38b911Referenced In Project/Scope: CoWorkInstaller
Evidence Type Source Name Value Confidence Vendor file name cowork.meetingrooms High Vendor jar package name cowork Low Vendor jar package name inet Low Vendor jar package name meetingrooms Low Vendor Manifest built-date 2026-01-25 09:31 Low Vendor Manifest implementation-group cowork Low Vendor Manifest Implementation-Vendor i-net software High Vendor Manifest Implementation-Vendor-Id de.inetsoftware Medium Vendor Manifest specification-vendor i-net software Low Vendor Manifest vendor i-net software GmbH, Berlin, Germany Medium Product file name cowork.meetingrooms High Product jar package name cowork Highest Product jar package name cowork Low Product jar package name meetingrooms Highest Product jar package name meetingrooms Low Product jar package name server Low Product Manifest built-date 2026-01-25 09:31 Low Product Manifest implementation-group cowork Low Product Manifest Implementation-Title cowork.meetingrooms High Product Manifest specification-title cowork.meetingrooms Medium Version jar package name cowork Highest Version Manifest Implementation-Version 25.10.314 High
File Path: /home/jenkins/workspace/cowork/Check-Product-Installer-for-Security-Problems/CoWorkInstaller/build/tmp/dependencies/i-net CoWork/plugins/cowork.meetingrooms.zip/cowork.meetingrooms.jar/com/inet/cowork/meetingrooms/js/coworkmeetingroom.jsMD5: d8d75a82676baadffbcfb4fbca9cba64SHA1: 40559ccdee37d2c24465a4e5991ed3523a667b06SHA256: 8f777d5bc8e08b5f4569aee36308879c909809cd95df590bb5f4f14f7fa05810Referenced In Project/Scope: CoWorkInstaller
Evidence Type Source Name Value Confidence
File Path: /home/jenkins/workspace/cowork/Check-Product-Installer-for-Security-Problems/CoWorkInstaller/build/tmp/dependencies/i-net CoWork/plugins/cowork.meetingrooms.zip/cowork.meetingrooms.jar/com/inet/cowork/meetingrooms/js/coworkmeetingroommoderator.jsMD5: 845d5a6891e95cd4bf65092b9eb4c452SHA1: d52fc0907e17d0c4bc334d2d32925f3ae3975b86SHA256: 4c2951693dee701046a02085c71c684a12b5519a987f64ed64970488aaca4886Referenced In Project/Scope: CoWorkInstaller
Evidence Type Source Name Value Confidence
File Path: /home/jenkins/workspace/cowork/Check-Product-Installer-for-Security-Problems/CoWorkInstaller/build/tmp/dependencies/i-net CoWork/plugins/cowork.meetingrooms.zip/cowork.meetingrooms.jar/com/inet/cowork/meetingrooms/js/endofmeeting.jsMD5: 0281ea6e71a959ed149d54fad9386462SHA1: f305ac2dc2ae559f53d00345fce6ee6bbae5f13cSHA256: 4470698bfb5d861a24d4c27ad1b2ebfc7b5dd2b24e700fef1e992368618bb9f2Referenced In Project/Scope: CoWorkInstaller
Evidence Type Source Name Value Confidence
File Path: /home/jenkins/workspace/cowork/Check-Product-Installer-for-Security-Problems/CoWorkInstaller/build/tmp/dependencies/i-net CoWork/plugins/cowork.meetingrooms.zip/cowork.meetingrooms.jar/com/inet/cowork/meetingrooms/js/joinmeeting.jsMD5: 398c8fe5b911dcf780426d09c7531d67SHA1: cd6587dbc2d8eb175b72f80d95a58ccb89e3cd49SHA256: 9f04c67d31561578bd2181776f53516634da1deeda66768ead65b1f9f4233508Referenced In Project/Scope: CoWorkInstaller
Evidence Type Source Name Value Confidence
File Path: /home/jenkins/workspace/cowork/Check-Product-Installer-for-Security-Problems/CoWorkInstaller/build/tmp/dependencies/i-net CoWork/plugins/cowork.meetingrooms.zip/cowork.meetingrooms.jar/com/inet/cowork/meetingrooms/maintenance/meetingrooms.maintenance.jsMD5: 7e27ccccc544c5665b021f6762df3606SHA1: 61a3f1396caa98e3da7f9c62681179c65e00bad0SHA256: 6e6bbc667e7cd096f926c7e20e415cb0a893253ca5e3eaaf0f1ffd594c6d65c5Referenced In Project/Scope: CoWorkInstaller
Evidence Type Source Name Value Confidence
File Path: /home/jenkins/workspace/cowork/Check-Product-Installer-for-Security-Problems/CoWorkInstaller/build/tmp/dependencies/i-net CoWork/plugins/cowork.tenor.zip/cowork.tenor.jarMD5: 8aae378e8a901a472f3192a077d17a11SHA1: d94724203d0113a0628570b766d68ae3b1333a76SHA256: d33b6ffcff49fde9a4dbdad26f73bd2513b13cf3ce93d08ada4ac0957b3e1231Referenced In Project/Scope: CoWorkInstaller
Evidence Type Source Name Value Confidence Vendor file name cowork.tenor High Vendor jar package name cowork Low Vendor jar package name inet Low Vendor jar package name tenor Low Vendor Manifest built-date 2026-01-25 09:32 Low Vendor Manifest implementation-group cowork Low Vendor Manifest Implementation-Vendor i-net software High Vendor Manifest Implementation-Vendor-Id de.inetsoftware Medium Vendor Manifest specification-vendor i-net software Low Vendor Manifest vendor i-net software GmbH, Berlin, Germany Medium Product file name cowork.tenor High Product jar package name cowork Highest Product jar package name cowork Low Product jar package name server Low Product jar package name tenor Highest Product jar package name tenor Low Product Manifest built-date 2026-01-25 09:32 Low Product Manifest implementation-group cowork Low Product Manifest Implementation-Title cowork.tenor High Product Manifest specification-title cowork.tenor Medium Version jar package name cowork Highest Version Manifest Implementation-Version 25.10.314 High
File Path: /home/jenkins/workspace/cowork/Check-Product-Installer-for-Security-Problems/CoWorkInstaller/build/tmp/dependencies/i-net CoWork/plugins/cowork.tenor.zip/cowork.tenor.jar/com/inet/cowork/tenor/js/coworktenor.jsMD5: 074ded7c1c1f959db8cbaa36a7ddac77SHA1: 157a1b841e1479dfbd90ae8903538f0963320a2fSHA256: 1fbfa51d71ee0b28262612b619d499f25e49fb78ba133ac5c9203a4ef848f14cReferenced In Project/Scope: CoWorkInstaller
Evidence Type Source Name Value Confidence
File Path: /home/jenkins/workspace/cowork/Check-Product-Installer-for-Security-Problems/CoWorkInstaller/build/tmp/dependencies/i-net CoWork/plugins/cowork.tenor.zip/cowork.tenor.jar/com/inet/cowork/tenor/js/tenorgifselector.directive.jsMD5: 0be77d66a6a58791cd1993be18329a39SHA1: 1eab77234d42746d53d3e6c7f69176767886b079SHA256: cab3691933d9ec324ae32feb1083fd92ff5b73cda9df6b4d2eca0e94d045e98cReferenced In Project/Scope: CoWorkInstaller
Evidence Type Source Name Value Confidence
File Path: /home/jenkins/workspace/cowork/Check-Product-Installer-for-Security-Problems/CoWorkInstaller/build/tmp/dependencies/i-net CoWork/plugins/cowork.waitingqueue.zip/cowork.waitingqueue.jarMD5: c07323e9dfc380f028137a4d5d40b942SHA1: 35aebfb876e760ff4aab8463211bbb54372b2f6fSHA256: 4aff39a2c00092702b9ebad184167475ee3147ee206f27e4769308d48454fedaReferenced In Project/Scope: CoWorkInstaller
Evidence Type Source Name Value Confidence Vendor file name cowork.waitingqueue High Vendor jar package name cowork Low Vendor jar package name inet Low Vendor jar package name waitingqueue Low Vendor Manifest built-date 2026-01-25 09:32 Low Vendor Manifest implementation-group cowork Low Vendor Manifest Implementation-Vendor i-net software High Vendor Manifest Implementation-Vendor-Id de.inetsoftware Medium Vendor Manifest specification-vendor i-net software Low Vendor Manifest vendor i-net software GmbH, Berlin, Germany Medium Product file name cowork.waitingqueue High Product jar package name cowork Highest Product jar package name cowork Low Product jar package name server Low Product jar package name waitingqueue Highest Product jar package name waitingqueue Low Product Manifest built-date 2026-01-25 09:32 Low Product Manifest implementation-group cowork Low Product Manifest Implementation-Title cowork.waitingqueue High Product Manifest specification-title cowork.waitingqueue Medium Version jar package name cowork Highest Version Manifest Implementation-Version 25.10.314 High
File Path: /home/jenkins/workspace/cowork/Check-Product-Installer-for-Security-Problems/CoWorkInstaller/build/tmp/dependencies/i-net CoWork/plugins/cowork.waitingqueue.zip/cowork.waitingqueue.jar/com/inet/cowork/waitingqueue/client/js/coworkwaitingqueue.dialog.jsMD5: 555717b4737747d476ab4d3fb8b44777SHA1: 0d8ada1cdedf3a09256d41e34c32d02aefaead11SHA256: 4307df33a30130a3baa09a753d96e4ff85d8aee2d57fe6a55ab478be5114b1fdReferenced In Project/Scope: CoWorkInstaller
Evidence Type Source Name Value Confidence
File Path: /home/jenkins/workspace/cowork/Check-Product-Installer-for-Security-Problems/CoWorkInstaller/build/tmp/dependencies/i-net CoWork/plugins/cowork.waitingqueue.zip/cowork.waitingqueue.jar/com/inet/cowork/waitingqueue/client/js/coworkwaitingqueue.indicator.jsMD5: f4da33e42876ea622579e6ece21909e6SHA1: 2d459499d1daa92f09a8ccf6ecec27365ad9bddaSHA256: e3adca167fc8e5a50a692f0e603f6df210d1c10ad88e7114054f0c861960f68cReferenced In Project/Scope: CoWorkInstaller
Evidence Type Source Name Value Confidence
File Path: /home/jenkins/workspace/cowork/Check-Product-Installer-for-Security-Problems/CoWorkInstaller/build/tmp/dependencies/i-net CoWork/plugins/cowork.waitingqueue.zip/cowork.waitingqueue.jar/com/inet/cowork/waitingqueue/client/js/coworkwaitingqueue.jsMD5: a2f4e13ac1e973acc97a2e74c64142a2SHA1: 024d38e8ba4ff1d7e481fcf28436c63f83001527SHA256: 4c4712c1d7af1cc82ca8de749b681c5a8dd03a8bd0455bab61eb4f489091504dReferenced In Project/Scope: CoWorkInstaller
Evidence Type Source Name Value Confidence
File Path: /home/jenkins/workspace/cowork/Check-Product-Installer-for-Security-Problems/CoWorkInstaller/build/tmp/dependencies/i-net CoWork/plugins/cowork.zip/cowork-javadoc.jarMD5: bde9cb8cafe8da808c46f195160ca3f5SHA1: 58ff18434b911b150bef3aba5c5ca013643eb23fSHA256: 6865a7397bfd1ba97c39d562241b01380e448b8bf4d93249914bbc6c1031b048Referenced In Project/Scope: CoWorkInstaller
Evidence Type Source Name Value Confidence Vendor file name cowork-javadoc High Product file name cowork-javadoc High
File Path: /home/jenkins/workspace/cowork/Check-Product-Installer-for-Security-Problems/CoWorkInstaller/build/tmp/dependencies/i-net CoWork/plugins/cowork.zip/cowork-javadoc.jar/script-dir/jquery-3.7.1.min.jsMD5: 2c872dbe60f4ba70fb85356113d8b35eSHA1: ee48592d1fff952fcf06ce0b666ed4785493afdcSHA256: fc9a93dd241f6b045cbff0481cf4e1901becd0e12fb45166a8f17f95823f0b1aReferenced In Project/Scope: CoWorkInstaller
Evidence Type Source Name Value Confidence
File Path: /home/jenkins/workspace/cowork/Check-Product-Installer-for-Security-Problems/CoWorkInstaller/build/tmp/dependencies/i-net CoWork/plugins/cowork.zip/cowork-javadoc.jar/script-dir/jquery-ui.min.jsMD5: a443ef25e4d347d30d3222a401f9ae54SHA1: 47c18aebea0d1116f19b279134e50c9f0d381405SHA256: a6c0904499f1efeef05641bd28fd7c73785e60f69ce9c699daf65af8b3720703Referenced In Project/Scope: CoWorkInstaller
Evidence Type Source Name Value Confidence
File Path: /home/jenkins/workspace/cowork/Check-Product-Installer-for-Security-Problems/CoWorkInstaller/build/tmp/dependencies/i-net CoWork/plugins/cowork.zip/cowork-javadoc.jar/member-search-index.jsMD5: b53fed2c85f54971f9814355b8658c01SHA1: 0214b99220b6797c45f01569549fcc923694a5d7SHA256: 8d88b33f1eebff05ff24ecdd0d7685ba49518f2fb0dfda9e31318a930d29e445Referenced In Project/Scope: CoWorkInstaller
Evidence Type Source Name Value Confidence
File Path: /home/jenkins/workspace/cowork/Check-Product-Installer-for-Security-Problems/CoWorkInstaller/build/tmp/dependencies/i-net CoWork/plugins/cowork.zip/cowork-javadoc.jar/module-search-index.jsMD5: a33da0f469acbd03f77bf407bac505f5SHA1: 1e996ce630c6e1ada3ea86d7b71dabca0180f8e8SHA256: 814a05983e3267d591c7e62b314eb8eb0504eee844c8a70d494f6edbaa0f4f18Referenced In Project/Scope: CoWorkInstaller
Evidence Type Source Name Value Confidence
File Path: /home/jenkins/workspace/cowork/Check-Product-Installer-for-Security-Problems/CoWorkInstaller/build/tmp/dependencies/i-net CoWork/plugins/cowork.zip/cowork-javadoc.jar/package-search-index.jsMD5: 7843e0fe10197c0f0117f699e1e7cd40SHA1: e48fd8df27e997b6b55659eac22ae3a2d68c20a5SHA256: 1aba1d547394c186ec32485f12fa55450a73511ab1cefa478a92dcf1d359520aReferenced In Project/Scope: CoWorkInstaller
Evidence Type Source Name Value Confidence
File Path: /home/jenkins/workspace/cowork/Check-Product-Installer-for-Security-Problems/CoWorkInstaller/build/tmp/dependencies/i-net CoWork/plugins/cowork.zip/cowork-javadoc.jar/script.jsMD5: 33752b38a1be87b6104cf5bdd7ffc6a9SHA1: e3aa5200cbabd88c6e041e081e31c037127197b6SHA256: cbcc9c6530d4b8243436efb89516537f3d6b3a4eceaa0e6256c57bdb8ddb544dReferenced In Project/Scope: CoWorkInstaller
Evidence Type Source Name Value Confidence
File Path: /home/jenkins/workspace/cowork/Check-Product-Installer-for-Security-Problems/CoWorkInstaller/build/tmp/dependencies/i-net CoWork/plugins/cowork.zip/cowork-javadoc.jar/search.jsMD5: cb277f670590ffec20a12745260518dcSHA1: 4b222ef8d1c52e1ce5ceb40a3b5c1fb9cad01ecaSHA256: 47c74de257f7e407a21e5d22519b664cfa1c83d04c362bff466c8424b702d31fReferenced In Project/Scope: CoWorkInstaller
Evidence Type Source Name Value Confidence
File Path: /home/jenkins/workspace/cowork/Check-Product-Installer-for-Security-Problems/CoWorkInstaller/build/tmp/dependencies/i-net CoWork/plugins/cowork.zip/cowork-javadoc.jar/tag-search-index.jsMD5: acda0a4d961a2dbb052cf81694d1c50bSHA1: 4853e0d2a022b5098359e59d740952ee1e187c04SHA256: 4394bc27c97d0c9018c2fb763bfc045db14433b160e3c1fec16795d1d1967aafReferenced In Project/Scope: CoWorkInstaller
Evidence Type Source Name Value Confidence
File Path: /home/jenkins/workspace/cowork/Check-Product-Installer-for-Security-Problems/CoWorkInstaller/build/tmp/dependencies/i-net CoWork/plugins/cowork.zip/cowork-javadoc.jar/type-search-index.jsMD5: 8c30fed2a2e350ef639f9b7bda912507SHA1: 5670fb1b145339466f0ea57751f0d816cd8eb8b3SHA256: 6340ac435040dd803b2df28710ff32c54598221a2e79d45bf7dbcec174962a57Referenced In Project/Scope: CoWorkInstaller
Evidence Type Source Name Value Confidence
File Path: /home/jenkins/workspace/cowork/Check-Product-Installer-for-Security-Problems/CoWorkInstaller/build/tmp/dependencies/i-net CoWork/plugins/cowork.zip/cowork.jarMD5: 92fec0a889926298424dc39165c678a7SHA1: a09c4aca8f93e2e1c2836e7fc206ea5c63290411SHA256: 2b4677c5313e2e806cd8b819448e54d0d949f5bf90bf88558de483f9fe5dc35fReferenced In Project/Scope: CoWorkInstaller
Evidence Type Source Name Value Confidence Vendor file name cowork High Vendor jar package name cowork Low Vendor jar package name i Highest Vendor jar package name inet Low Vendor jar package name server Low Vendor Manifest built-date 2026-01-25 09:31 Low Vendor Manifest implementation-group cowork Low Vendor Manifest Implementation-Vendor i-net software High Vendor Manifest Implementation-Vendor-Id de.inetsoftware Medium Vendor Manifest specification-vendor i-net software Low Vendor Manifest vendor i-net software GmbH, Berlin, Germany Medium Product file name cowork High Product jar package name cowork Highest Product jar package name cowork Low Product jar package name server Low Product Manifest built-date 2026-01-25 09:31 Low Product Manifest implementation-group cowork Low Product Manifest Implementation-Title cowork High Product Manifest specification-title cowork Medium Version jar package name cowork Highest Version Manifest Implementation-Version 25.10.314 High
File Path: /home/jenkins/workspace/cowork/Check-Product-Installer-for-Security-Problems/CoWorkInstaller/build/tmp/dependencies/i-net CoWork/plugins/cowork.zip/cowork.jar/com/inet/cowork/integration/diagnostics/MessageCreationChart.jsMD5: f4c599d8972b7b53d9343562328ed654SHA1: a94fea0ec8920c5f5c167ca01f4aecf5195407a7SHA256: fc7edcf5111888705df4335864ec9c210360a7284e889fe9fa6edb1f0fb3d3e4Referenced In Project/Scope: CoWorkInstaller
Evidence Type Source Name Value Confidence
File Path: /home/jenkins/workspace/cowork/Check-Product-Installer-for-Security-Problems/CoWorkInstaller/build/tmp/dependencies/i-net CoWork/plugins/cowork.zip/cowork.jar/com/inet/cowork/integration/diagnostics/cowork.diagnostics.jsMD5: 61bdfed6bb2704fbe22d33f93da17f84SHA1: 5c1617a08b0b62537b8b9aca098691405c38c6a5SHA256: 4b4ce83af515336cbc544bda234527c6f541a2abdd456dd1554b0b9c5ce7bf08Referenced In Project/Scope: CoWorkInstaller
Evidence Type Source Name Value Confidence
File Path: /home/jenkins/workspace/cowork/Check-Product-Installer-for-Security-Problems/CoWorkInstaller/build/tmp/dependencies/i-net CoWork/plugins/cowork.zip/cowork.jar/com/inet/cowork/client/js/coworkcomponents.jsMD5: fbf1a223b1647efe67092fa2810ebe1cSHA1: 0a414e3126ab88629e70b94a448f960a54cae128SHA256: 7fdcff971c146290716df650ad26fbab008737b3ed5f1f8aa887dd42d0a1dee0Referenced In Project/Scope: CoWorkInstaller
Evidence Type Source Name Value Confidence
File Path: /home/jenkins/workspace/cowork/Check-Product-Installer-for-Security-Problems/CoWorkInstaller/build/tmp/dependencies/i-net CoWork/plugins/cowork.zip/cowork.jar/com/inet/cowork/client/js/coworkcontroller.jsMD5: b92bcc498d4577990c9d2afacf32185aSHA1: b9b8318888f29163ad4e177eef9815a3ccaa0a8eSHA256: 7226bb6c38b95670b7bae75bb25114c4d04f62894bf3b5ebf039d175fc01289bReferenced In Project/Scope: CoWorkInstaller
Evidence Type Source Name Value Confidence
File Path: /home/jenkins/workspace/cowork/Check-Product-Installer-for-Security-Problems/CoWorkInstaller/build/tmp/dependencies/i-net CoWork/plugins/cowork.zip/cowork.jar/com/inet/cowork/client/js/coworkconversation.jsMD5: 68d74db2822dbf248a10225f8fccb3ceSHA1: 782dbaf6e57fe26b8f1c22e32adbb759d5a5beddSHA256: 6c8f2e08a2eb50bd4714a9383a6291441da0b831b39b8de63512551bb10642a2Referenced In Project/Scope: CoWorkInstaller
Evidence Type Source Name Value Confidence
File Path: /home/jenkins/workspace/cowork/Check-Product-Installer-for-Security-Problems/CoWorkInstaller/build/tmp/dependencies/i-net CoWork/plugins/cowork.zip/cowork.jar/com/inet/cowork/client/js/coworkfactory.jsMD5: 59f527ceb52dd8066d9cf0caaedd4a9dSHA1: a1bf98e7dd8ea7e490a5c10e8498218c52615cf1SHA256: 379cb406950bcefb36436f516dda578c5992f46714ce8f8fb196694ceb314a87Referenced In Project/Scope: CoWorkInstaller
Evidence Type Source Name Value Confidence
File Path: /home/jenkins/workspace/cowork/Check-Product-Installer-for-Security-Problems/CoWorkInstaller/build/tmp/dependencies/i-net CoWork/plugins/cowork.zip/cowork.jar/com/inet/cowork/client/js/coworkinputbox.jsMD5: f39c512ee4a439c68f7b305ea6ddddd5SHA1: e257a1d23de522ff3e818bc8b9bffff3d38efd0dSHA256: 2815abca1cee4a62944535da1c7868e359288604df5bc524c196ecd46b454c70Referenced In Project/Scope: CoWorkInstaller
Evidence Type Source Name Value Confidence
File Path: /home/jenkins/workspace/cowork/Check-Product-Installer-for-Security-Problems/CoWorkInstaller/build/tmp/dependencies/i-net CoWork/plugins/cowork.zip/cowork.jar/com/inet/cowork/client/js/coworkmodel.jsMD5: e9d699655b02385130c6e1bae9e48e67SHA1: 362dfa3c7194edef45aa806096069fd61f81725eSHA256: e46e192dae12315f596d74d0e317c1b57e3e97420e85c6d4e5b8ed3f6d9edd60Referenced In Project/Scope: CoWorkInstaller
Evidence Type Source Name Value Confidence
File Path: /home/jenkins/workspace/cowork/Check-Product-Installer-for-Security-Problems/CoWorkInstaller/build/tmp/dependencies/i-net CoWork/plugins/cowork.zip/cowork.jar/com/inet/cowork/client/js/coworksettingscontroller.jsMD5: f03330b6a50eb2188e5714486cbc76d3SHA1: 5186f8bf71b626e7d88bd818fb6a4f1765df5657SHA256: daec405ffba8cbed86614fae4e666658bc39e58956e850f4189eb010ee9cea9bReferenced In Project/Scope: CoWorkInstaller
Evidence Type Source Name Value Confidence
File Path: /home/jenkins/workspace/cowork/Check-Product-Installer-for-Security-Problems/CoWorkInstaller/build/tmp/dependencies/i-net CoWork/plugins/cowork.zip/cowork.jar/com/inet/cowork/client/js/inetmarkdown.jsMD5: e2ffc59274042d1caa1ac43dddf8a10cSHA1: c2bfbe449b77aab091a19e29d9d8ebd472187231SHA256: 5931729e41d3e1aa91dcfb6107388d141ea63ef2a1c22419a07c75d0fcb3ca43Referenced In Project/Scope: CoWorkInstaller
Evidence Type Source Name Value Confidence
File Path: /home/jenkins/workspace/cowork/Check-Product-Installer-for-Security-Problems/CoWorkInstaller/build/tmp/dependencies/i-net CoWork/plugins/cowork.zip/cowork.jar/com/inet/cowork/client/js/showreactionscontroller.jsMD5: b72ebeef733ddaef5734b2426cae3787SHA1: 0d9069c4e55362bcb3c54bb834bd622661348c0bSHA256: e38cd47b134e24364d6462eba469e7d7cf76b3b1222bb1b11566b6b01e81c38eReferenced In Project/Scope: CoWorkInstaller
Evidence Type Source Name Value Confidence
File Path: /home/jenkins/workspace/cowork/Check-Product-Installer-for-Security-Problems/CoWorkInstaller/build/tmp/dependencies/i-net CoWork/plugins/cowork.zip/cowork.jar/com/inet/cowork/client/js/teamsettingscontroller.jsMD5: 729da9798ef3dfcff996d5f2b8bef6d5SHA1: 3ac925b9279b84c1bc4eeb9d29cbaed6216f2a1dSHA256: 4bffa93c7e6cc3cf83a2431ce63399db14ed1827528cbb291dfae2b0c8153210Referenced In Project/Scope: CoWorkInstaller
Evidence Type Source Name Value Confidence
License:
BSD-3-Clause File Path: /home/jenkins/.gradle/caches/modules-2/files-2.1/org.hamcrest/hamcrest/3.0/8fd9b78a8e6a6510a078a9e30e9e86a6035cfaf7/hamcrest-3.0.jar
MD5: 781023c38b054e9cf1c818c77895e1eb
SHA1: 8fd9b78a8e6a6510a078a9e30e9e86a6035cfaf7
SHA256: 5d66b6a4a680755cb6ed7cb104fa7835ef644667586ff0737adeb977c39ecdbc
Referenced In Project/Scope: CoWorkInstaller:inetPlugin
hamcrest-3.0.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/cowork/CoWorkInstaller@25.10
Evidence Type Source Name Value Confidence Vendor file name hamcrest High Vendor gradle artifactid hamcrest Highest Vendor gradle groupid org.hamcrest Highest Vendor jar package name hamcrest Highest Vendor jar package name hamcrest Low Vendor Manifest automatic-module-name org.hamcrest Medium Vendor Manifest bundle-symbolicname org.hamcrest Medium Vendor Manifest Implementation-Vendor hamcrest.org High Product file name hamcrest High Product gradle artifactid hamcrest Highest Product jar package name hamcrest Highest Product Manifest automatic-module-name org.hamcrest Medium Product Manifest Bundle-Name org.hamcrest Medium Product Manifest bundle-symbolicname org.hamcrest Medium Product Manifest Implementation-Title hamcrest High Version file version 3.0 High Version Manifest Implementation-Version 3.0 High
File Path: /home/jenkins/.gradle/caches/modules-2/files-2.1/shared/inetcore/25.10/6ff98cd4031c897d1e401e7582c1980e9d7f0f0d/inetcore-25.10-tools.jarMD5: 5e6ceec1df3987b5b49efdb4ce5e0c6cSHA1: 6ff98cd4031c897d1e401e7582c1980e9d7f0f0dSHA256: 44027b55321915ce58c17316b83807f9e64ac8ca0775611440575a40a93f4a12Referenced In Project/Scope: CoWorkInstaller:inetPlugininetcore-25.10-tools.jar is in the transitive dependency tree of the listed items. Included by:
Evidence Type Source Name Value Confidence Vendor file name inetcore High Vendor gradle artifactid inetcore Highest Vendor gradle groupid shared Highest Vendor jar package name test Low Product file name inetcore High Product gradle artifactid inetcore Highest Version file name inetcore Medium Version file version 25.10 High Version gradle version 25.10 Highest
Description:
A blend composite defines the rule according to which a drawing primitive (known as the source) is mixed with existing graphics (know as the destination.)
ColorUtilities contains a set of tools to perform common color operations easily. License:
LGPL: http://www.gnu.org/licenses/lgpl.txt File Path: /home/jenkins/.gradle/caches/modules-2/files-2.1/shared/inetcore/25.10/779db27c2248cfe0ea602c5120b2f0fd6f6d8cfa/inetcore-25.10.jar/META-INF/com/inet/shared/utils/BlendComposite/pom.xml
MD5: 15e3963148212192804e2b1a2b73ad1c
SHA1: 1095ba4522949a04590ab9c98b7f684e92579ef9
SHA256: e5556987ad0b1ede84a994741147dadf6de0cb7d80b845f530e2a96505b79151
Referenced In Project/Scope: CoWorkInstaller:inetPlugin
Evidence Type Source Name Value Confidence Vendor pom artifactid inetcore Low Vendor pom developer email contact@inetsoftware.de Low Vendor pom developer email morgand@apache.org Low Vendor pom developer id inetsoftware Medium Vendor pom developer id romainguy Medium Vendor pom developer id sun Medium Vendor pom developer name i-net /// software Medium Vendor pom developer name Romain Guy Medium Vendor pom developer name Sun Medium Vendor pom developer org Sun Medium Vendor pom groupid com.inet.shared Highest Vendor pom name BlendComposite and ColorUtilities High Vendor pom (hint) developer id oracle Medium Vendor pom (hint) developer name oracle Medium Vendor pom (hint) developer org oracle Medium Product pom artifactid inetcore Highest Product pom developer email contact@inetsoftware.de Low Product pom developer email morgand@apache.org Low Product pom developer id inetsoftware Low Product pom developer id romainguy Low Product pom developer id sun Low Product pom developer name i-net /// software Low Product pom developer name Romain Guy Low Product pom developer name Sun Low Product pom developer org Sun Low Product pom groupid com.inet.shared Highest Product pom name BlendComposite and ColorUtilities High
File Path: /home/jenkins/.gradle/caches/modules-2/files-2.1/shared/inetcore/25.10/779db27c2248cfe0ea602c5120b2f0fd6f6d8cfa/inetcore-25.10.jarMD5: bf30dc039e5d97c938f1c4ca26e06346SHA1: 779db27c2248cfe0ea602c5120b2f0fd6f6d8cfaSHA256: 9447dee735706c912ef3ccc337ac2cd5919195070e464e1e647e64c7c0898cc2Referenced In Project/Scope: CoWorkInstaller:inetPlugininetcore-25.10.jar is in the transitive dependency tree of the listed items. Included by:
Evidence Type Source Name Value Confidence Vendor file name inetcore High Vendor gradle artifactid inetcore Highest Vendor gradle groupid shared Highest Vendor jar package name i Highest Vendor jar package name inet Low Vendor Manifest application-library-allowable-codebase * Low Vendor Manifest built-date 2026-01-25 08:23 Low Vendor Manifest codebase * Low Vendor Manifest implementation-group shared Low Vendor Manifest Implementation-Vendor i-net software High Vendor Manifest Implementation-Vendor-Id de.inetsoftware Medium Vendor Manifest permissions all-permissions Low Vendor Manifest specification-vendor i-net software Low Vendor Manifest trusted-library false Low Vendor Manifest trusted-only false Low Vendor Manifest vendor i-net software GmbH, Berlin, Germany Medium Product file name inetcore High Product gradle artifactid inetcore Highest Product jar package name permissions Highest Product jar package name shared Highest Product Manifest application-library-allowable-codebase * Low Product Manifest built-date 2026-01-25 08:23 Low Product Manifest codebase * Low Product Manifest implementation-group shared Low Product Manifest Implementation-Title inetcore High Product Manifest permissions all-permissions Low Product Manifest specification-title inetcore Medium Product Manifest trusted-library false Low Product Manifest trusted-only false Low Version file name inetcore Medium Version file version 25.10 High Version gradle version 25.10 Highest Version jar package name permissions Highest Version jar package name shared Highest Version Manifest Implementation-Version 25.10.314 High
File Path: /home/jenkins/workspace/cowork/Check-Product-Installer-for-Security-Problems/CoWorkInstaller/build/tmp/dependencies/java-21-jre-x64-linux.tar.gz/java-21-jre-x64-linux.tar/jre-11/lib/jrt-fs.jarMD5: 276de9c23c2c16d354492597c6b9832fSHA1: 266df3de8a88656fe28e132bc6dbdbe2cc724b20SHA256: 494c3d85ab7e8758d5fff4f168ad11817ded6c48409c8056803bb72f589b4abbReferenced In Project/Scope: CoWorkInstaller
Evidence Type Source Name Value Confidence Vendor file name jrt-fs High Vendor jar package name internal Low Vendor jar package name jdk Low Vendor jar package name jimage Low Vendor Manifest Implementation-Vendor Eclipse Adoptium High Vendor Manifest specification-vendor Oracle Corporation Low Product file name jrt-fs High Product jar package name internal Low Product jar package name jimage Low Product Manifest Implementation-Title Java Runtime Environment High Product Manifest specification-title Java Platform API Specification Medium Version Manifest Implementation-Version 21.0.9 High
File Path: /home/jenkins/.gradle/caches/modules-2/files-2.1/net.jcip/jcip-annotations/1.0/afba4942caaeaf46aab0b976afd57cc7c181467e/jcip-annotations-1.0.jarMD5: 9d5272954896c5a5d234f66b7372b17aSHA1: afba4942caaeaf46aab0b976afd57cc7c181467eSHA256: be5805392060c71474bf6c9a67a099471274d30b83eef84bfc4e0889a4f1dcc0Referenced In Project/Scope: CoWorkInstaller:inetPluginjcip-annotations-1.0.jar is in the transitive dependency tree of the listed items. Included by:
Evidence Type Source Name Value Confidence Vendor file name jcip-annotations High Vendor gradle artifactid jcip-annotations Highest Vendor gradle groupid net.jcip Highest Vendor jar package name annotations Low Vendor jar package name jcip Low Vendor jar package name net Low Product file name jcip-annotations High Product gradle artifactid jcip-annotations Highest Product jar package name annotations Low Product jar package name jcip Low Version file name jcip-annotations Medium Version file version 1.0 High Version gradle version 1.0 Highest
File Path: /home/jenkins/.gradle/caches/modules-2/files-2.1/de.inetsoftware/jlessc/1.14/5b2789630acdc41bab5c86da8937ffef3811a3c3/jlessc-1.14.jarMD5: 73ef6dc09f0efda918ffcf67677ad2b0SHA1: 5b2789630acdc41bab5c86da8937ffef3811a3c3SHA256: 5445ebb2231d943301b977e2b30451fc704835ea9b5f96fa64618c608938cb52Referenced In Project/Scope: CoWorkInstaller:inetPluginjlessc-1.14.jar is in the transitive dependency tree of the listed items. Included by:
Evidence Type Source Name Value Confidence Vendor file name jlessc High Vendor gradle artifactid jlessc Highest Vendor gradle groupid de.inetsoftware Highest Vendor jar package name inet Low Vendor jar package name less Low Vendor jar package name lib Low Vendor Manifest automatic-module-name de.inetsoftware.jlessc Medium Vendor Manifest bundle-symbolicname de.inetsoftware.jlessc Medium Vendor Manifest Implementation-Vendor i-net software GmbH, Berlin, Germany High Vendor Manifest Implementation-Vendor-Id de.inetsoftware Medium Product file name jlessc High Product gradle artifactid jlessc Highest Product jar package name less Low Product jar package name lib Low Product Manifest automatic-module-name de.inetsoftware.jlessc Medium Product Manifest bundle-symbolicname de.inetsoftware.jlessc Medium Product Manifest Implementation-Title JLessC, a Less CSS compiler High Version file version 1.14 High Version Manifest Implementation-Version 1.14 High
Description:
JSR305 Annotations for Findbugs License:
The Apache Software License, Version 2.0: http://www.apache.org/licenses/LICENSE-2.0.txt File Path: /home/jenkins/.gradle/caches/modules-2/files-2.1/com.google.code.findbugs/jsr305/3.0.2/25ea2e8b0c338a877313bd4672d3fe056ea78f0d/jsr305-3.0.2.jar
MD5: dd83accb899363c32b07d7a1b2e4ce40
SHA1: 25ea2e8b0c338a877313bd4672d3fe056ea78f0d
SHA256: 766ad2a0783f2687962c8ad74ceecc38a28b9f72a2d085ee438b7813e928d0c7
Referenced In Project/Scope: CoWorkInstaller:inetPlugin
jsr305-3.0.2.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/de.inetsoftware/jlessc@1.14
Evidence Type Source Name Value Confidence Vendor file name jsr305 High Vendor gradle artifactid jsr305 Highest Vendor gradle groupid com.google.code.findbugs Highest Vendor Manifest bundle-symbolicname org.jsr-305 Medium Vendor pom artifactid jsr305 Low Vendor pom groupid com.google.code.findbugs Highest Vendor pom name FindBugs-jsr305 High Vendor pom url http://findbugs.sourceforge.net/ Highest Product file name jsr305 High Product gradle artifactid jsr305 Highest Product Manifest Bundle-Name FindBugs-jsr305 Medium Product Manifest bundle-symbolicname org.jsr-305 Medium Product pom artifactid jsr305 Highest Product pom groupid com.google.code.findbugs Highest Product pom name FindBugs-jsr305 High Product pom url http://findbugs.sourceforge.net/ Medium Version file version 3.0.2 High Version gradle version 3.0.2 Highest Version Manifest Bundle-Version 3.0.2 High Version pom version 3.0.2 Highest
File Path: /home/jenkins/.gradle/caches/modules-2/files-2.1/junit/junit/4.13.2/8ac9e16d933b6fb43bc7f576336b8f4d7eb5ba12/junit-4.13.2.jarMD5: d98a9a02a99a9acd22d7653cbcc1f31fSHA1: 8ac9e16d933b6fb43bc7f576336b8f4d7eb5ba12SHA256: 8e495b634469d64fb8acfa3495a065cbacc8a0fff55ce1e31007be4c16dc57d3Referenced In Project/Scope: CoWorkInstaller:inetPluginjunit-4.13.2.jar is in the transitive dependency tree of the listed items. Included by:
Evidence Type Source Name Value Confidence Vendor file name junit High Vendor gradle artifactid junit Highest Vendor gradle groupid junit Highest Vendor jar package name junit Highest Vendor jar package name junit Low Vendor Manifest automatic-module-name junit Medium Vendor Manifest implementation-url http://junit.org Low Vendor Manifest Implementation-Vendor JUnit High Vendor Manifest Implementation-Vendor-Id junit Medium Product file name junit High Product gradle artifactid junit Highest Product jar package name junit Highest Product Manifest automatic-module-name junit Medium Product Manifest Implementation-Title JUnit High Product Manifest implementation-url http://junit.org Low Version file version 4.13.2 High Version Manifest Implementation-Version 4.13.2 High
File Path: /home/jenkins/.gradle/caches/modules-2/files-2.1/org.junit.jupiter/junit-jupiter/5.13.4/93547b3eca48a61f65f735c1898d3ec196e34149/junit-jupiter-5.13.4.jarMD5: 3f4e38bdbea73c98a50f08b7c6e33426SHA1: 93547b3eca48a61f65f735c1898d3ec196e34149SHA256: b960f79217dd01c863031b678f07df4730bbf1eac650c74ad6b0c61faad78379Referenced In Project/Scope: CoWorkInstaller:inetPluginjunit-jupiter-5.13.4.jar is in the transitive dependency tree of the listed items. Included by:
pkg:maven/org.junit.platform/junit-platform-suite@1.13.4 pkg:maven/cowork/CoWorkInstaller@25.10 pkg:maven/org.junit.jupiter/junit-jupiter@5.13.4 pkg:maven/org.junit.jupiter/junit-jupiter-engine@5.13.4 Evidence Type Source Name Value Confidence Vendor file name junit-jupiter High Vendor gradle artifactid junit-jupiter Highest Vendor gradle groupid org.junit.jupiter Highest Vendor jar package name module-info Low Vendor Manifest build-date 2025-07-21 Low Vendor Manifest build-revision 8a21048605e61dc388c1c83cbecf9dd5097a595d Low Vendor Manifest build-time 08:57:57.538+0200 Low Vendor Manifest bundle-symbolicname junit-jupiter Medium Vendor Manifest Implementation-Vendor junit.org High Vendor Manifest specification-vendor junit.org Low Product file name junit-jupiter High Product gradle artifactid junit-jupiter Highest Product Manifest build-date 2025-07-21 Low Product Manifest build-revision 8a21048605e61dc388c1c83cbecf9dd5097a595d Low Product Manifest build-time 08:57:57.538+0200 Low Product Manifest Bundle-Name JUnit Jupiter (Aggregator) Medium Product Manifest bundle-symbolicname junit-jupiter Medium Product Manifest Implementation-Title junit-jupiter High Product Manifest specification-title junit-jupiter Medium Version file version 5.13.4 High Version Manifest Implementation-Version 5.13.4 High
File Path: /home/jenkins/.gradle/caches/modules-2/files-2.1/org.junit.jupiter/junit-jupiter-api/5.13.4/2817f736551fe4949b79924715ef6f594ee072f4/junit-jupiter-api-5.13.4.jarMD5: d9981621212d598a4ba380342094c92fSHA1: 2817f736551fe4949b79924715ef6f594ee072f4SHA256: d1bb81abfd9e03418306b4e6a3390c8db52c58372e749c2980ac29f0c08278f1Referenced In Project/Scope: CoWorkInstaller:inetPluginjunit-jupiter-api-5.13.4.jar is in the transitive dependency tree of the listed items. Included by:
pkg:maven/org.junit.platform/junit-platform-suite@1.13.4 pkg:maven/org.junit.jupiter/junit-jupiter@5.13.4 pkg:maven/org.junit.jupiter/junit-jupiter-engine@5.13.4 Evidence Type Source Name Value Confidence Vendor file name junit-jupiter-api High Vendor gradle artifactid junit-jupiter-api Highest Vendor gradle groupid org.junit.jupiter Highest Vendor jar package name api Highest Vendor jar package name api Low Vendor jar package name junit Highest Vendor jar package name junit Low Vendor jar package name jupiter Highest Vendor jar package name jupiter Low Vendor Manifest build-date 2025-07-21 Low Vendor Manifest build-revision 8a21048605e61dc388c1c83cbecf9dd5097a595d Low Vendor Manifest build-time 08:57:57.538+0200 Low Vendor Manifest bundle-symbolicname junit-jupiter-api Medium Vendor Manifest Implementation-Vendor junit.org High Vendor Manifest specification-vendor junit.org Low Product file name junit-jupiter-api High Product gradle artifactid junit-jupiter-api Highest Product jar package name api Highest Product jar package name api Low Product jar package name junit Highest Product jar package name jupiter Highest Product jar package name jupiter Low Product Manifest build-date 2025-07-21 Low Product Manifest build-revision 8a21048605e61dc388c1c83cbecf9dd5097a595d Low Product Manifest build-time 08:57:57.538+0200 Low Product Manifest Bundle-Name JUnit Jupiter API Medium Product Manifest bundle-symbolicname junit-jupiter-api Medium Product Manifest Implementation-Title junit-jupiter-api High Product Manifest specification-title junit-jupiter-api Medium Version file version 5.13.4 High Version Manifest Implementation-Version 5.13.4 High
File Path: /home/jenkins/.gradle/caches/modules-2/files-2.1/org.junit.jupiter/junit-jupiter-engine/5.13.4/d29fc8b6a28d21b8741f299ae4deb3e3aa68b2e8/junit-jupiter-engine-5.13.4.jarMD5: 3416ff6cff3dd4ea789b92338a49b9b2SHA1: d29fc8b6a28d21b8741f299ae4deb3e3aa68b2e8SHA256: 027404a92fe618b72465792a257951495c503a7d5751e2791e0f51c87f67f5bcReferenced In Project/Scope: CoWorkInstaller:inetPluginjunit-jupiter-engine-5.13.4.jar is in the transitive dependency tree of the listed items. Included by:
pkg:maven/org.junit.platform/junit-platform-suite@1.13.4 pkg:maven/cowork/CoWorkInstaller@25.10 pkg:maven/org.junit.jupiter/junit-jupiter@5.13.4 pkg:maven/org.junit.jupiter/junit-jupiter-engine@5.13.4 Evidence Type Source Name Value Confidence Vendor file name junit-jupiter-engine High Vendor gradle artifactid junit-jupiter-engine Highest Vendor gradle groupid org.junit.jupiter Highest Vendor jar package name engine Highest Vendor jar package name engine Low Vendor jar package name junit Highest Vendor jar package name junit Low Vendor jar package name jupiter Highest Vendor jar package name jupiter Low Vendor Manifest build-date 2025-07-21 Low Vendor Manifest build-revision 8a21048605e61dc388c1c83cbecf9dd5097a595d Low Vendor Manifest build-time 08:57:57.538+0200 Low Vendor Manifest bundle-symbolicname junit-jupiter-engine Medium Vendor Manifest Implementation-Vendor junit.org High Vendor Manifest provide-capability org.junit.platform.engine;org.junit.platform.engine=junit-jupiter;version:Version="5.13.4" Low Vendor Manifest specification-vendor junit.org Low Product file name junit-jupiter-engine High Product gradle artifactid junit-jupiter-engine Highest Product jar package name engine Highest Product jar package name engine Low Product jar package name junit Highest Product jar package name jupiter Highest Product jar package name jupiter Low Product Manifest build-date 2025-07-21 Low Product Manifest build-revision 8a21048605e61dc388c1c83cbecf9dd5097a595d Low Product Manifest build-time 08:57:57.538+0200 Low Product Manifest Bundle-Name JUnit Jupiter Engine Medium Product Manifest bundle-symbolicname junit-jupiter-engine Medium Product Manifest Implementation-Title junit-jupiter-engine High Product Manifest provide-capability org.junit.platform.engine;org.junit.platform.engine=junit-jupiter;version:Version="5.13.4" Low Product Manifest specification-title junit-jupiter-engine Medium Version file version 5.13.4 High Version Manifest Implementation-Version 5.13.4 High
File Path: /home/jenkins/.gradle/caches/modules-2/files-2.1/org.junit.jupiter/junit-jupiter-params/5.13.4/c8930eb7fcfbed0b191703ab53f48475a75bd17/junit-jupiter-params-5.13.4.jarMD5: a1db21cc54b627a085918626a3908c9eSHA1: 0c8930eb7fcfbed0b191703ab53f48475a75bd17SHA256: 3a8c6365716dbb698c0d49a05456c1e1ad05c406613c550f9dd50037872efc41Referenced In Project/Scope: CoWorkInstaller:inetPluginjunit-jupiter-params-5.13.4.jar is in the transitive dependency tree of the listed items. Included by:
pkg:maven/org.junit.platform/junit-platform-suite@1.13.4 pkg:maven/org.junit.jupiter/junit-jupiter@5.13.4 pkg:maven/org.junit.jupiter/junit-jupiter-engine@5.13.4 Evidence Type Source Name Value Confidence Vendor file name junit-jupiter-params High Vendor gradle artifactid junit-jupiter-params Highest Vendor gradle groupid org.junit.jupiter Highest Vendor jar package name junit Highest Vendor jar package name junit Low Vendor jar package name jupiter Highest Vendor jar package name jupiter Low Vendor jar package name params Highest Vendor jar package name params Low Vendor Manifest build-date 2025-07-21 Low Vendor Manifest build-revision 8a21048605e61dc388c1c83cbecf9dd5097a595d Low Vendor Manifest build-time 08:57:57.538+0200 Low Vendor Manifest bundle-symbolicname junit-jupiter-params Medium Vendor Manifest Implementation-Vendor junit.org High Vendor Manifest specification-vendor junit.org Low Product file name junit-jupiter-params High Product gradle artifactid junit-jupiter-params Highest Product jar package name junit Highest Product jar package name jupiter Highest Product jar package name jupiter Low Product jar package name params Highest Product jar package name params Low Product jar package name shadow Low Product Manifest build-date 2025-07-21 Low Product Manifest build-revision 8a21048605e61dc388c1c83cbecf9dd5097a595d Low Product Manifest build-time 08:57:57.538+0200 Low Product Manifest Bundle-Name JUnit Jupiter Params Medium Product Manifest bundle-symbolicname junit-jupiter-params Medium Product Manifest Implementation-Title junit-jupiter-params High Product Manifest specification-title junit-jupiter-params Medium Version file version 5.13.4 High Version Manifest Implementation-Version 5.13.4 High
File Path: /home/jenkins/.gradle/caches/modules-2/files-2.1/org.junit.platform/junit-platform-commons/1.13.4/8f63c7ed05b473d95cc63d1082054d7bfcf9c0e5/junit-platform-commons-1.13.4.jarMD5: 7c39b85780e5bec0a23408959ac83fa9SHA1: 8f63c7ed05b473d95cc63d1082054d7bfcf9c0e5SHA256: 1c25ca641ebaae44ff3ad21ca1b2ef68d0dd84bfeb07c4805ba7840899b77408Referenced In Project/Scope: CoWorkInstaller:inetPluginjunit-platform-commons-1.13.4.jar is in the transitive dependency tree of the listed items. Included by:
pkg:maven/org.junit.platform/junit-platform-suite@1.13.4 pkg:maven/org.junit.jupiter/junit-jupiter@5.13.4 pkg:maven/org.junit.jupiter/junit-jupiter-engine@5.13.4 Evidence Type Source Name Value Confidence Vendor file name junit-platform-commons High Vendor gradle artifactid junit-platform-commons Highest Vendor gradle groupid org.junit.platform Highest Vendor jar package name commons Highest Vendor jar package name commons Low Vendor jar package name junit Highest Vendor jar package name junit Low Vendor jar package name org Highest Vendor jar package name platform Highest Vendor jar package name platform Low Vendor Manifest build-date 2025-07-21 Low Vendor Manifest build-revision 8a21048605e61dc388c1c83cbecf9dd5097a595d Low Vendor Manifest build-time 08:57:57.538+0200 Low Vendor Manifest bundle-symbolicname junit-platform-commons Medium Vendor Manifest Implementation-Vendor junit.org High Vendor Manifest multi-release true Low Vendor Manifest specification-vendor junit.org Low Product file name junit-platform-commons High Product gradle artifactid junit-platform-commons Highest Product jar package name commons Highest Product jar package name commons Low Product jar package name junit Highest Product jar package name platform Highest Product jar package name platform Low Product Manifest build-date 2025-07-21 Low Product Manifest build-revision 8a21048605e61dc388c1c83cbecf9dd5097a595d Low Product Manifest build-time 08:57:57.538+0200 Low Product Manifest Bundle-Name JUnit Platform Commons Medium Product Manifest bundle-symbolicname junit-platform-commons Medium Product Manifest Implementation-Title junit-platform-commons High Product Manifest multi-release true Low Product Manifest specification-title junit-platform-commons Medium Version file version 1.13.4 High Version Manifest Implementation-Version 1.13.4 High
File Path: /home/jenkins/.gradle/caches/modules-2/files-2.1/org.junit.platform/junit-platform-engine/1.13.4/cdd49063ae6e25494d1a9a08f4a9ab5de2b73bcb/junit-platform-engine-1.13.4.jarMD5: 736aa9e83f7ba2b54adb5f86821fd4ddSHA1: cdd49063ae6e25494d1a9a08f4a9ab5de2b73bcbSHA256: 390c5f77b84283a64b644f88251b397e0b0debb80bdcc50f899881aecff43a5aReferenced In Project/Scope: CoWorkInstaller:inetPluginjunit-platform-engine-1.13.4.jar is in the transitive dependency tree of the listed items. Included by:
pkg:maven/org.junit.platform/junit-platform-suite@1.13.4 pkg:maven/org.junit.jupiter/junit-jupiter@5.13.4 pkg:maven/org.junit.jupiter/junit-jupiter-engine@5.13.4 Evidence Type Source Name Value Confidence Vendor file name junit-platform-engine High Vendor gradle artifactid junit-platform-engine Highest Vendor gradle groupid org.junit.platform Highest Vendor jar package name engine Highest Vendor jar package name engine Low Vendor jar package name junit Highest Vendor jar package name junit Low Vendor jar package name platform Highest Vendor jar package name platform Low Vendor Manifest build-date 2025-07-21 Low Vendor Manifest build-revision 8a21048605e61dc388c1c83cbecf9dd5097a595d Low Vendor Manifest build-time 08:57:57.538+0200 Low Vendor Manifest bundle-symbolicname junit-platform-engine Medium Vendor Manifest Implementation-Vendor junit.org High Vendor Manifest specification-vendor junit.org Low Product file name junit-platform-engine High Product gradle artifactid junit-platform-engine Highest Product jar package name engine Highest Product jar package name engine Low Product jar package name junit Highest Product jar package name platform Highest Product jar package name platform Low Product jar package name support Low Product Manifest build-date 2025-07-21 Low Product Manifest build-revision 8a21048605e61dc388c1c83cbecf9dd5097a595d Low Product Manifest build-time 08:57:57.538+0200 Low Product Manifest Bundle-Name JUnit Platform Engine API Medium Product Manifest bundle-symbolicname junit-platform-engine Medium Product Manifest Implementation-Title junit-platform-engine High Product Manifest specification-title junit-platform-engine Medium Version file version 1.13.4 High Version Manifest Implementation-Version 1.13.4 High
File Path: /home/jenkins/.gradle/caches/modules-2/files-2.1/org.junit.platform/junit-platform-launcher/1.13.4/e72a4d00af6177569fd57df4c8c4bb241c6aa4b6/junit-platform-launcher-1.13.4.jarMD5: bdfea9c8c038752c70631934b2067073SHA1: e72a4d00af6177569fd57df4c8c4bb241c6aa4b6SHA256: 0b0beaeb6880a31149641d2d848b863712885469670c12099586d7f798522564Referenced In Project/Scope: CoWorkInstaller:inetPluginjunit-platform-launcher-1.13.4.jar is in the transitive dependency tree of the listed items. Included by:
pkg:maven/org.junit.platform/junit-platform-suite@1.13.4 pkg:maven/org.junit.jupiter/junit-jupiter@5.13.4 pkg:maven/org.junit.jupiter/junit-jupiter-engine@5.13.4 Evidence Type Source Name Value Confidence Vendor file name junit-platform-launcher High Vendor gradle artifactid junit-platform-launcher Highest Vendor gradle groupid org.junit.platform Highest Vendor jar package name junit Highest Vendor jar package name junit Low Vendor jar package name launcher Highest Vendor jar package name launcher Low Vendor jar package name platform Highest Vendor jar package name platform Low Vendor Manifest build-date 2025-07-21 Low Vendor Manifest build-revision 8a21048605e61dc388c1c83cbecf9dd5097a595d Low Vendor Manifest build-time 08:57:57.538+0200 Low Vendor Manifest bundle-symbolicname junit-platform-launcher Medium Vendor Manifest Implementation-Vendor junit.org High Vendor Manifest provide-capability org.junit.platform.launcher;org.junit.platform.launcher=junit-platform-launcher;version:Version="1.13.4" Low Vendor Manifest specification-vendor junit.org Low Product file name junit-platform-launcher High Product gradle artifactid junit-platform-launcher Highest Product jar package name junit Highest Product jar package name launcher Highest Product jar package name launcher Low Product jar package name platform Highest Product jar package name platform Low Product Manifest build-date 2025-07-21 Low Product Manifest build-revision 8a21048605e61dc388c1c83cbecf9dd5097a595d Low Product Manifest build-time 08:57:57.538+0200 Low Product Manifest Bundle-Name JUnit Platform Launcher Medium Product Manifest bundle-symbolicname junit-platform-launcher Medium Product Manifest Implementation-Title junit-platform-launcher High Product Manifest provide-capability org.junit.platform.launcher;org.junit.platform.launcher=junit-platform-launcher;version:Version="1.13.4" Low Product Manifest specification-title junit-platform-launcher Medium Version file version 1.13.4 High Version Manifest Implementation-Version 1.13.4 High
File Path: /home/jenkins/.gradle/caches/modules-2/files-2.1/org.junit.platform/junit-platform-suite/1.13.4/7af47cc4d0fbbd9a940644799a69f1f4c3ec4ee7/junit-platform-suite-1.13.4.jarMD5: 378c01f6aba4143235fcd78ee5e1490fSHA1: 7af47cc4d0fbbd9a940644799a69f1f4c3ec4ee7SHA256: 8088a80b47f5a7e73fa107f466dfa6a86776ca496fc2e7724aba65202d467913Referenced In Project/Scope: CoWorkInstaller:inetPluginjunit-platform-suite-1.13.4.jar is in the transitive dependency tree of the listed items. Included by:
pkg:maven/org.junit.platform/junit-platform-suite@1.13.4 pkg:maven/cowork/CoWorkInstaller@25.10 pkg:maven/org.junit.jupiter/junit-jupiter@5.13.4 pkg:maven/org.junit.jupiter/junit-jupiter-engine@5.13.4 Evidence Type Source Name Value Confidence Vendor file name junit-platform-suite High Vendor gradle artifactid junit-platform-suite Highest Vendor gradle groupid org.junit.platform Highest Vendor jar package name module-info Low Vendor Manifest build-date 2025-07-21 Low Vendor Manifest build-revision 8a21048605e61dc388c1c83cbecf9dd5097a595d Low Vendor Manifest build-time 08:57:57.538+0200 Low Vendor Manifest bundle-symbolicname junit-platform-suite Medium Vendor Manifest Implementation-Vendor junit.org High Vendor Manifest specification-vendor junit.org Low Product file name junit-platform-suite High Product gradle artifactid junit-platform-suite Highest Product Manifest build-date 2025-07-21 Low Product Manifest build-revision 8a21048605e61dc388c1c83cbecf9dd5097a595d Low Product Manifest build-time 08:57:57.538+0200 Low Product Manifest Bundle-Name JUnit Platform Suite (Aggregator) Medium Product Manifest bundle-symbolicname junit-platform-suite Medium Product Manifest Implementation-Title junit-platform-suite High Product Manifest specification-title junit-platform-suite Medium Version file version 1.13.4 High Version Manifest Implementation-Version 1.13.4 High
File Path: /home/jenkins/.gradle/caches/modules-2/files-2.1/org.junit.platform/junit-platform-suite-api/1.13.4/7e29167859b8b66ae9bc60f63f33202b1c8b77e3/junit-platform-suite-api-1.13.4.jarMD5: 53ff3dfddb5bc864217e7442ca0a8243SHA1: 7e29167859b8b66ae9bc60f63f33202b1c8b77e3SHA256: 9a05bf77e128371f5b3e25ffc89f7af467a9f68dd365fdfced469ebcf533abc9Referenced In Project/Scope: CoWorkInstaller:inetPluginjunit-platform-suite-api-1.13.4.jar is in the transitive dependency tree of the listed items. Included by:
pkg:maven/org.junit.platform/junit-platform-suite@1.13.4 pkg:maven/org.junit.jupiter/junit-jupiter@5.13.4 pkg:maven/org.junit.jupiter/junit-jupiter-engine@5.13.4 Evidence Type Source Name Value Confidence Vendor file name junit-platform-suite-api High Vendor gradle artifactid junit-platform-suite-api Highest Vendor gradle groupid org.junit.platform Highest Vendor jar package name api Highest Vendor jar package name junit Highest Vendor jar package name junit Low Vendor jar package name platform Highest Vendor jar package name platform Low Vendor jar package name suite Highest Vendor jar package name suite Low Vendor Manifest build-date 2025-07-21 Low Vendor Manifest build-revision 8a21048605e61dc388c1c83cbecf9dd5097a595d Low Vendor Manifest build-time 08:57:57.538+0200 Low Vendor Manifest bundle-symbolicname junit-platform-suite-api Medium Vendor Manifest Implementation-Vendor junit.org High Vendor Manifest specification-vendor junit.org Low Product file name junit-platform-suite-api High Product gradle artifactid junit-platform-suite-api Highest Product jar package name api Highest Product jar package name api Low Product jar package name junit Highest Product jar package name platform Highest Product jar package name platform Low Product jar package name suite Highest Product jar package name suite Low Product Manifest build-date 2025-07-21 Low Product Manifest build-revision 8a21048605e61dc388c1c83cbecf9dd5097a595d Low Product Manifest build-time 08:57:57.538+0200 Low Product Manifest Bundle-Name JUnit Platform Suite API Medium Product Manifest bundle-symbolicname junit-platform-suite-api Medium Product Manifest Implementation-Title junit-platform-suite-api High Product Manifest specification-title junit-platform-suite-api Medium Version file version 1.13.4 High Version Manifest Implementation-Version 1.13.4 High
File Path: /home/jenkins/.gradle/caches/modules-2/files-2.1/org.junit.platform/junit-platform-suite-commons/1.13.4/65f946a08a21ddecb266dd3010977111bbc84043/junit-platform-suite-commons-1.13.4.jarMD5: ecab6fa371485191490729865ca59fbaSHA1: 65f946a08a21ddecb266dd3010977111bbc84043SHA256: e7dacfcfa3bc692c0a7a413cefd5f51ae420415a14d39091bdf88aebfdba70b6Referenced In Project/Scope: CoWorkInstaller:inetPluginjunit-platform-suite-commons-1.13.4.jar is in the transitive dependency tree of the listed items. Included by:
pkg:maven/org.junit.platform/junit-platform-suite@1.13.4 pkg:maven/org.junit.jupiter/junit-jupiter@5.13.4 pkg:maven/org.junit.jupiter/junit-jupiter-engine@5.13.4 Evidence Type Source Name Value Confidence Vendor file name junit-platform-suite-commons High Vendor gradle artifactid junit-platform-suite-commons Highest Vendor gradle groupid org.junit.platform Highest Vendor jar package name commons Highest Vendor jar package name junit Highest Vendor jar package name junit Low Vendor jar package name platform Highest Vendor jar package name platform Low Vendor jar package name suite Highest Vendor jar package name suite Low Vendor Manifest build-date 2025-07-21 Low Vendor Manifest build-revision 8a21048605e61dc388c1c83cbecf9dd5097a595d Low Vendor Manifest build-time 08:57:57.538+0200 Low Vendor Manifest bundle-symbolicname junit-platform-suite-commons Medium Vendor Manifest Implementation-Vendor junit.org High Vendor Manifest specification-vendor junit.org Low Product file name junit-platform-suite-commons High Product gradle artifactid junit-platform-suite-commons Highest Product jar package name commons Highest Product jar package name commons Low Product jar package name junit Highest Product jar package name platform Highest Product jar package name platform Low Product jar package name suite Highest Product jar package name suite Low Product Manifest build-date 2025-07-21 Low Product Manifest build-revision 8a21048605e61dc388c1c83cbecf9dd5097a595d Low Product Manifest build-time 08:57:57.538+0200 Low Product Manifest Bundle-Name JUnit Platform Suite Commons Medium Product Manifest bundle-symbolicname junit-platform-suite-commons Medium Product Manifest Implementation-Title junit-platform-suite-commons High Product Manifest specification-title junit-platform-suite-commons Medium Version file version 1.13.4 High Version Manifest Implementation-Version 1.13.4 High
File Path: /home/jenkins/.gradle/caches/modules-2/files-2.1/org.junit.platform/junit-platform-suite-engine/1.13.4/b888a7a9e00b25cc19b4d45dbd4dcfe0b3a4f6ca/junit-platform-suite-engine-1.13.4.jarMD5: 69e03866f05f55ea65268adc36fa3fc0SHA1: b888a7a9e00b25cc19b4d45dbd4dcfe0b3a4f6caSHA256: 3b34fd8172d70d0d7c59155e487bd8e77d43bdbfdcfe1d78c2b4eea55e9acb92Referenced In Project/Scope: CoWorkInstaller:inetPluginjunit-platform-suite-engine-1.13.4.jar is in the transitive dependency tree of the listed items. Included by:
pkg:maven/org.junit.platform/junit-platform-suite@1.13.4 pkg:maven/org.junit.jupiter/junit-jupiter@5.13.4 pkg:maven/org.junit.jupiter/junit-jupiter-engine@5.13.4 Evidence Type Source Name Value Confidence Vendor file name junit-platform-suite-engine High Vendor gradle artifactid junit-platform-suite-engine Highest Vendor gradle groupid org.junit.platform Highest Vendor jar package name engine Highest Vendor jar package name junit Highest Vendor jar package name junit Low Vendor jar package name platform Highest Vendor jar package name platform Low Vendor jar package name suite Highest Vendor jar package name suite Low Vendor Manifest build-date 2025-07-21 Low Vendor Manifest build-revision 8a21048605e61dc388c1c83cbecf9dd5097a595d Low Vendor Manifest build-time 08:57:57.538+0200 Low Vendor Manifest bundle-symbolicname junit-platform-suite-engine Medium Vendor Manifest Implementation-Vendor junit.org High Vendor Manifest specification-vendor junit.org Low Product file name junit-platform-suite-engine High Product gradle artifactid junit-platform-suite-engine Highest Product jar package name engine Highest Product jar package name engine Low Product jar package name junit Highest Product jar package name platform Highest Product jar package name platform Low Product jar package name suite Highest Product jar package name suite Low Product Manifest build-date 2025-07-21 Low Product Manifest build-revision 8a21048605e61dc388c1c83cbecf9dd5097a595d Low Product Manifest build-time 08:57:57.538+0200 Low Product Manifest Bundle-Name JUnit Platform Suite Engine Medium Product Manifest bundle-symbolicname junit-platform-suite-engine Medium Product Manifest Implementation-Title junit-platform-suite-engine High Product Manifest specification-title junit-platform-suite-engine Medium Version file version 1.13.4 High Version Manifest Implementation-Version 1.13.4 High
File Path: /home/jenkins/.gradle/caches/modules-2/files-2.1/org.junit.vintage/junit-vintage-engine/5.13.4/9fa3f512a7b8de3013eb63e51623c9e73f8d0e34/junit-vintage-engine-5.13.4.jarMD5: 77270af1c5e9ea55a3705683f261edddSHA1: 9fa3f512a7b8de3013eb63e51623c9e73f8d0e34SHA256: 066b702d850ebcde36f2a8181b46a2f0f1416129d1dc63c3a1e1531006e74739Referenced In Project/Scope: CoWorkInstaller:inetPluginjunit-vintage-engine-5.13.4.jar is in the transitive dependency tree of the listed items. Included by:
pkg:maven/org.junit.platform/junit-platform-suite@1.13.4 pkg:maven/cowork/CoWorkInstaller@25.10 pkg:maven/org.junit.jupiter/junit-jupiter@5.13.4 pkg:maven/org.junit.jupiter/junit-jupiter-engine@5.13.4 Evidence Type Source Name Value Confidence Vendor file name junit-vintage-engine High Vendor gradle artifactid junit-vintage-engine Highest Vendor gradle groupid org.junit.vintage Highest Vendor jar package name engine Highest Vendor jar package name engine Low Vendor jar package name junit Highest Vendor jar package name junit Low Vendor jar package name vintage Highest Vendor jar package name vintage Low Vendor Manifest build-date 2025-07-21 Low Vendor Manifest build-revision 8a21048605e61dc388c1c83cbecf9dd5097a595d Low Vendor Manifest build-time 08:57:57.538+0200 Low Vendor Manifest bundle-symbolicname junit-vintage-engine Medium Vendor Manifest Implementation-Vendor junit.org High Vendor Manifest provide-capability org.junit.platform.engine;org.junit.platform.engine=junit-vintage;version:Version="5.13.4" Low Vendor Manifest specification-vendor junit.org Low Product file name junit-vintage-engine High Product gradle artifactid junit-vintage-engine Highest Product jar package name engine Highest Product jar package name engine Low Product jar package name junit Highest Product jar package name vintage Highest Product jar package name vintage Low Product Manifest build-date 2025-07-21 Low Product Manifest build-revision 8a21048605e61dc388c1c83cbecf9dd5097a595d Low Product Manifest build-time 08:57:57.538+0200 Low Product Manifest Bundle-Name JUnit Vintage Engine Medium Product Manifest bundle-symbolicname junit-vintage-engine Medium Product Manifest Implementation-Title junit-vintage-engine High Product Manifest provide-capability org.junit.platform.engine;org.junit.platform.engine=junit-vintage;version:Version="5.13.4" Low Product Manifest specification-title junit-vintage-engine Medium Version file version 5.13.4 High Version Manifest Implementation-Version 5.13.4 High
License:
The Apache License, Version 2.0 File Path: /home/jenkins/.gradle/caches/modules-2/files-2.1/org.opentest4j/opentest4j/1.3.0/152ea56b3a72f655d4fd677fc0ef2596c3dd5e6e/opentest4j-1.3.0.jar
MD5: 03c404f727531f3fd3b4c73997899327
SHA1: 152ea56b3a72f655d4fd677fc0ef2596c3dd5e6e
SHA256: 48e2df636cab6563ced64dcdff8abb2355627cb236ef0bf37598682ddf742f1b
Referenced In Project/Scope: CoWorkInstaller:inetPlugin
opentest4j-1.3.0.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/org.junit.platform/junit-platform-suite@1.13.4 pkg:maven/org.junit.jupiter/junit-jupiter@5.13.4 pkg:maven/org.junit.jupiter/junit-jupiter-engine@5.13.4 Evidence Type Source Name Value Confidence Vendor file name opentest4j High Vendor gradle artifactid opentest4j Highest Vendor gradle groupid org.opentest4j Highest Vendor jar package name opentest4j Highest Vendor jar package name opentest4j Low Vendor Manifest build-date 2023-07-06 Low Vendor Manifest build-revision 214973bfa4e7e9be7d04e623202cc4147c7036d2 Low Vendor Manifest build-time 14:25:06.116+0200 Low Vendor Manifest bundle-symbolicname org.opentest4j Medium Vendor Manifest Implementation-Vendor opentest4j.org High Vendor Manifest specification-vendor opentest4j.org Low Product file name opentest4j High Product gradle artifactid opentest4j Highest Product jar package name opentest4j Highest Product Manifest build-date 2023-07-06 Low Product Manifest build-revision 214973bfa4e7e9be7d04e623202cc4147c7036d2 Low Product Manifest build-time 14:25:06.116+0200 Low Product Manifest Bundle-Name opentest4j Medium Product Manifest bundle-symbolicname org.opentest4j Medium Product Manifest Implementation-Title opentest4j High Product Manifest specification-title opentest4j Medium Version file version 1.3.0 High Version Manifest Implementation-Version 1.3.0 High
Description:
The slf4j API License:
http://www.opensource.org/licenses/mit-license.php File Path: /home/jenkins/.gradle/caches/modules-2/files-2.1/org.slf4j/slf4j-api/2.0.16/172931663a09a1fa515567af5fbef00897d3c04/slf4j-api-2.0.16.jar
MD5: c8de8f5d740584cb24b5652cfba8b3c4
SHA1: 0172931663a09a1fa515567af5fbef00897d3c04
SHA256: a12578dde1ba00bd9b816d388a0b879928d00bab3c83c240f7013bf4196c579a
Referenced In Project/Scope: CoWorkInstaller:inetPlugin
slf4j-api-2.0.16.jar is in the transitive dependency tree of the listed items. Included by: pkg:maven/cowork/CoWorkInstaller@25.10
Evidence Type Source Name Value Confidence Vendor file name slf4j-api High Vendor gradle artifactid slf4j-api Highest Vendor gradle groupid org.slf4j Highest Vendor jar package name slf4j Highest Vendor Manifest build-jdk-spec 21 Low Vendor Manifest bundle-docurl http://www.slf4j.org Low Vendor Manifest bundle-symbolicname slf4j.api Medium Vendor Manifest multi-release true Low Vendor pom artifactid slf4j-api Low Vendor pom groupid org.slf4j Highest Vendor pom name SLF4J API Module High Vendor pom parent-artifactid slf4j-parent Low Vendor pom url http://www.slf4j.org Highest Product file name slf4j-api High Product gradle artifactid slf4j-api Highest Product jar package name slf4j Highest Product Manifest build-jdk-spec 21 Low Product Manifest bundle-docurl http://www.slf4j.org Low Product Manifest Bundle-Name SLF4J API Module Medium Product Manifest bundle-symbolicname slf4j.api Medium Product Manifest Implementation-Title slf4j-api High Product Manifest multi-release true Low Product pom artifactid slf4j-api Highest Product pom groupid org.slf4j Highest Product pom name SLF4J API Module High Product pom parent-artifactid slf4j-parent Medium Product pom url http://www.slf4j.org Medium Version file version 2.0.16 High Version gradle version 2.0.16 Highest Version Manifest Bundle-Version 2.0.16 High Version Manifest Implementation-Version 2.0.16 High Version pom version 2.0.16 Highest
File Path: /home/jenkins/workspace/cowork/Check-Product-Installer-for-Security-Problems/CoWorkInstaller/build/tmp/dependencies/i-net CoWork/plugins/taskplanner.coworkmessage.zip/taskplanner.coworkmessage.jarMD5: 19c9e5b7b14dcb8b0eafbfd8b9d82508SHA1: a5caadb7b773097c8db92c102c7c26a757bfbce8SHA256: 9d105b1e96e8fa256e89b15934cd5456dc926bb5ae5e713d11e0cb8441266fbeReferenced In Project/Scope: CoWorkInstaller
Evidence Type Source Name Value Confidence Vendor file name taskplanner.coworkmessage High Vendor jar package name inet Low Vendor jar package name plugin Low Vendor jar package name taskplanner Low Vendor Manifest built-date 2026-01-25 09:32 Low Vendor Manifest implementation-group cowork Low Vendor Manifest Implementation-Vendor i-net software High Vendor Manifest Implementation-Vendor-Id de.inetsoftware Medium Vendor Manifest specification-vendor i-net software Low Vendor Manifest vendor i-net software GmbH, Berlin, Germany Medium Product file name taskplanner.coworkmessage High Product jar package name cowork Highest Product jar package name cowork Low Product jar package name plugin Low Product jar package name taskplanner Highest Product jar package name taskplanner Low Product Manifest built-date 2026-01-25 09:32 Low Product Manifest implementation-group cowork Low Product Manifest Implementation-Title taskplanner.coworkmessage High Product Manifest specification-title taskplanner.coworkmessage Medium Version jar package name cowork Highest Version Manifest Implementation-Version 25.10.314 High
Suppressed Vulnerabilities cowork.calls.zip: ice4j.jar Description:
A Java implementation of the ICE protocol License:
Apache-2.0: https://github.com/jitsi/ice4j/blob/master/LICENSE File Path: /home/jenkins/workspace/cowork/Check-Product-Installer-for-Security-Problems/CoWorkInstaller/build/tmp/dependencies/i-net CoWork/plugins/cowork.calls.zip/ice4j.jar
MD5: 95ccd42c22c821a10722a74fb75d47f2
SHA1: 4fbe65fd307d75b45dd3e5710715124cb73e17bd
SHA256: 00b9cf7c274558de404c2d08f35de298541409eaf210994edb4c60b51a12757d
Referenced In Project/Scope: CoWorkInstaller
Evidence Type Source Name Value Confidence Vendor file name ice4j High Vendor jar package name ice Highest Vendor jar package name ice4j Highest Vendor Manifest build-jdk-spec 11 Low Vendor Manifest bundle-developers "org.jitsi";email="dev@jitsi.org";name="Jitsi Team" Low Vendor Manifest bundle-docurl https://github.com/jitsi/ice4j Low Vendor Manifest bundle-symbolicname org.jitsi.ice4j Medium Vendor pom artifactid ice4j Low Vendor pom developer email dev@jitsi.org Low Vendor pom developer id org.jitsi Medium Vendor pom developer name Jitsi Team Medium Vendor pom groupid org.jitsi Highest Vendor pom name ice4j High Vendor pom organization name jitsi.org High Vendor pom organization url https://jitsi.org Medium Vendor pom url jitsi/ice4j Highest Product file name ice4j High Product jar package name ice Highest Product jar package name ice4j Highest Product Manifest build-jdk-spec 11 Low Product Manifest bundle-developers "org.jitsi";email="dev@jitsi.org";name="Jitsi Team" Low Product Manifest bundle-docurl https://github.com/jitsi/ice4j Low Product Manifest Bundle-Name ice4j Medium Product Manifest bundle-symbolicname org.jitsi.ice4j Medium Product pom artifactid ice4j Highest Product pom developer email dev@jitsi.org Low Product pom developer id org.jitsi Low Product pom developer name Jitsi Team Low Product pom groupid org.jitsi Highest Product pom name ice4j High Product pom organization name jitsi.org Low Product pom organization url https://jitsi.org Low Product pom url jitsi/ice4j High Version pom version 3.2-7-g4f13296 Highest
CVE-2022-43550 suppressed
A command injection vulnerability exists in Jitsi before commit 8aa7be58522f4264078d54752aae5483bfd854b2 when launching browsers on Windows which could allow an attacker to insert an arbitrary URL which opens up the opportunity to remote execution. CWE-77 Improper Neutralization of Special Elements used in a Command ('Command Injection'), CWE-78 Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
Notes: false positives, no end date
CVE-2008-7271 - This is for the eclipse ide and not for any library from eclipse.
CVE-2010-4647 - This is for the eclipse ide and not for any library from eclipse.
CVE-2020-26939 - The BouncyCastle FIPS variant uses same maven package matcher but has different version numbers.
CVE-2021-4236 - This is for a go project, match on every lib with 'web' in the name
CVE-2021-4277 - This is for a utils project from fredssmith, match on every lib with 'utils' in the name
CVE-2022-31548 - This is a CVE for a sample phyton project.
CVE-2022-43550 - This is a CVE for the jitsi main project and not for any library from jitsi.
CVE-2022-45688 - This is for hutool-json, matched on every component with 'json' in the name
CVE-2023-5072 - This is for JSON-java, matched on every component with 'json' in the name
CVE-2023-33202 - The BouncyCastle FIPS variant uses same maven package matcher but has different version numbers.
CVE-2023-35116 - DISPUTED
CVE-2023-36052 - This is for Azure CLI and not for com.azure:azure-core.
CVE-2023-45161 - This is for 1E-Exchange which we does not use.
CVSSv3:
CRITICAL (9.8) CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:3.9/RC:R/MAV:A References:
support@hackerone.com - PATCH Vulnerable Software & Versions:
cowork.calls.zip: jicoco-config.jar Description:
Jitsi Common Components (Configuration Utilities) License:
"Apache-2.0";link="https://github.com/jitsi/jicoco/blob/master/LICENSE" File Path: /home/jenkins/workspace/cowork/Check-Product-Installer-for-Security-Problems/CoWorkInstaller/build/tmp/dependencies/i-net CoWork/plugins/cowork.calls.zip/jicoco-config.jar
MD5: 2369693cf96dd817e1ddf46129143ad7
SHA1: d6602d58a4b13bbad51202338fa23ffc9595c707
SHA256: 9db4cc0c0d1985820c82895cffaf695a5d940db892c8e23d51cdce6d3c82a862
Referenced In Project/Scope: CoWorkInstaller
Evidence Type Source Name Value Confidence Vendor file name jicoco-config High Vendor jar package name config Highest Vendor jar package name jitsi Highest Vendor Manifest build-jdk-spec 11 Low Vendor Manifest bundle-developers "org.jitsi";email="dev@jitsi.org";name="Jitsi Team" Low Vendor Manifest bundle-docurl https://github.com/jitsi/jicoco/jicoco-config Low Vendor Manifest bundle-symbolicname org.jitsi.config Medium Vendor pom artifactid jicoco-config Low Vendor pom groupid org.jitsi Highest Vendor pom name jicoco-config High Vendor pom parent-artifactid jicoco-parent Low Product file name jicoco-config High Product jar package name config Highest Product jar package name jitsi Highest Product Manifest build-jdk-spec 11 Low Product Manifest bundle-developers "org.jitsi";email="dev@jitsi.org";name="Jitsi Team" Low Product Manifest bundle-docurl https://github.com/jitsi/jicoco/jicoco-config Low Product Manifest Bundle-Name jicoco-config Medium Product Manifest bundle-symbolicname org.jitsi.config Medium Product pom artifactid jicoco-config Highest Product pom groupid org.jitsi Highest Product pom name jicoco-config High Product pom parent-artifactid jicoco-parent Medium Version pom version 1.1-151-g63a0655 Highest
CVE-2022-43550 suppressed
A command injection vulnerability exists in Jitsi before commit 8aa7be58522f4264078d54752aae5483bfd854b2 when launching browsers on Windows which could allow an attacker to insert an arbitrary URL which opens up the opportunity to remote execution. CWE-77 Improper Neutralization of Special Elements used in a Command ('Command Injection'), CWE-78 Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
Notes: false positives, no end date
CVE-2008-7271 - This is for the eclipse ide and not for any library from eclipse.
CVE-2010-4647 - This is for the eclipse ide and not for any library from eclipse.
CVE-2020-26939 - The BouncyCastle FIPS variant uses same maven package matcher but has different version numbers.
CVE-2021-4236 - This is for a go project, match on every lib with 'web' in the name
CVE-2021-4277 - This is for a utils project from fredssmith, match on every lib with 'utils' in the name
CVE-2022-31548 - This is a CVE for a sample phyton project.
CVE-2022-43550 - This is a CVE for the jitsi main project and not for any library from jitsi.
CVE-2022-45688 - This is for hutool-json, matched on every component with 'json' in the name
CVE-2023-5072 - This is for JSON-java, matched on every component with 'json' in the name
CVE-2023-33202 - The BouncyCastle FIPS variant uses same maven package matcher but has different version numbers.
CVE-2023-35116 - DISPUTED
CVE-2023-36052 - This is for Azure CLI and not for com.azure:azure-core.
CVE-2023-45161 - This is for 1E-Exchange which we does not use.
CVSSv3:
CRITICAL (9.8) CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:3.9/RC:R/MAV:A References:
support@hackerone.com - PATCH Vulnerable Software & Versions:
cowork.calls.zip: jitsi-metaconfig.jar Description:
jitsi-metaconfig helps solve the problems around the evolution of configuration properties License:
Apache-2.0: https://github.com/jitsi/jitsi-metaconfig/blob/master/LICENSE File Path: /home/jenkins/workspace/cowork/Check-Product-Installer-for-Security-Problems/CoWorkInstaller/build/tmp/dependencies/i-net CoWork/plugins/cowork.calls.zip/jitsi-metaconfig.jar
MD5: 725b026d03d1dfcefb3ca4301f8d619a
SHA1: 20cf06693fec9f78466c21e15aa8b3f6b875f2f2
SHA256: 51802cbf89e0813cc3d59288eaf09d145101d874c8ca3433f968a4eb0c2c872a
Referenced In Project/Scope: CoWorkInstaller
Evidence Type Source Name Value Confidence Vendor file name jitsi-metaconfig High Vendor jar package name jitsi Highest Vendor jar package name metaconfig Highest Vendor Manifest build-jdk-spec 11 Low Vendor Manifest bundle-developers "org.jitsi";email="dev@jitsi.org";name="Jitsi Team" Low Vendor Manifest bundle-docurl https://github.com/jitsi/jitsi-metaconfig Low Vendor Manifest bundle-symbolicname org.jitsi.metaconfig Medium Vendor pom artifactid jitsi-metaconfig Low Vendor pom developer email dev@jitsi.org Low Vendor pom developer id org.jitsi Medium Vendor pom developer name Jitsi Team Medium Vendor pom groupid org.jitsi Highest Vendor pom name jitsi-metaconfig High Vendor pom organization name jitsi.org High Vendor pom organization url https://jitsi.org Medium Vendor pom url jitsi/jitsi-metaconfig Highest Product file name jitsi-metaconfig High Product jar package name jitsi Highest Product jar package name metaconfig Highest Product Manifest build-jdk-spec 11 Low Product Manifest bundle-developers "org.jitsi";email="dev@jitsi.org";name="Jitsi Team" Low Product Manifest bundle-docurl https://github.com/jitsi/jitsi-metaconfig Low Product Manifest Bundle-Name jitsi-metaconfig Medium Product Manifest bundle-symbolicname org.jitsi.metaconfig Medium Product pom artifactid jitsi-metaconfig Highest Product pom developer email dev@jitsi.org Low Product pom developer id org.jitsi Low Product pom developer name Jitsi Team Low Product pom groupid org.jitsi Highest Product pom name jitsi-metaconfig High Product pom organization name jitsi.org Low Product pom organization url https://jitsi.org Low Product pom url jitsi/jitsi-metaconfig High Version pom version 1.0-14-gbec165a Highest
CVE-2022-43550 suppressed
A command injection vulnerability exists in Jitsi before commit 8aa7be58522f4264078d54752aae5483bfd854b2 when launching browsers on Windows which could allow an attacker to insert an arbitrary URL which opens up the opportunity to remote execution. CWE-77 Improper Neutralization of Special Elements used in a Command ('Command Injection'), CWE-78 Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
Notes: false positives, no end date
CVE-2008-7271 - This is for the eclipse ide and not for any library from eclipse.
CVE-2010-4647 - This is for the eclipse ide and not for any library from eclipse.
CVE-2020-26939 - The BouncyCastle FIPS variant uses same maven package matcher but has different version numbers.
CVE-2021-4236 - This is for a go project, match on every lib with 'web' in the name
CVE-2021-4277 - This is for a utils project from fredssmith, match on every lib with 'utils' in the name
CVE-2022-31548 - This is a CVE for a sample phyton project.
CVE-2022-43550 - This is a CVE for the jitsi main project and not for any library from jitsi.
CVE-2022-45688 - This is for hutool-json, matched on every component with 'json' in the name
CVE-2023-5072 - This is for JSON-java, matched on every component with 'json' in the name
CVE-2023-33202 - The BouncyCastle FIPS variant uses same maven package matcher but has different version numbers.
CVE-2023-35116 - DISPUTED
CVE-2023-36052 - This is for Azure CLI and not for com.azure:azure-core.
CVE-2023-45161 - This is for 1E-Exchange which we does not use.
CVSSv3:
CRITICAL (9.8) CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:3.9/RC:R/MAV:A References:
support@hackerone.com - PATCH Vulnerable Software & Versions:
cowork.calls.zip: jitsi-utils.jar Description:
A set of basic utilities used in Jitsi projects License:
Apache-2.0: https://github.com/jitsi/jitsi-utils/blob/master/LICENSE File Path: /home/jenkins/workspace/cowork/Check-Product-Installer-for-Security-Problems/CoWorkInstaller/build/tmp/dependencies/i-net CoWork/plugins/cowork.calls.zip/jitsi-utils.jar
MD5: b2ca06a9a2e5e253298685fd3a38449c
SHA1: 20bb058007931515baf37d41e1cb252f88f56fa4
SHA256: 60503c6c694df00e5a878638198e8e54fdcb0a6c7a28fd519940e2cbc593773c
Referenced In Project/Scope: CoWorkInstaller
Evidence Type Source Name Value Confidence Vendor file name jitsi-utils High Vendor jar package name jitsi Highest Vendor jar package name utils Highest Vendor Manifest build-jdk-spec 11 Low Vendor Manifest bundle-docurl https://github.com/jitsi/jitsi-utils Low Vendor Manifest bundle-symbolicname org.jitsi.utils Medium Vendor pom artifactid jitsi-utils Low Vendor pom developer email dev@jitsi.org Low Vendor pom developer id org.jitsi Medium Vendor pom developer name Jitsi Team Medium Vendor pom groupid org.jitsi Highest Vendor pom name jitsi-utils High Vendor pom organization name jitsi.org High Vendor pom organization url https://jitsi.org Medium Vendor pom url jitsi/jitsi-utils Highest Product file name jitsi-utils High Product jar package name jitsi Highest Product jar package name utils Highest Product Manifest build-jdk-spec 11 Low Product Manifest bundle-docurl https://github.com/jitsi/jitsi-utils Low Product Manifest Bundle-Name jitsi-utils Medium Product Manifest bundle-symbolicname org.jitsi.utils Medium Product pom artifactid jitsi-utils Highest Product pom developer email dev@jitsi.org Low Product pom developer id org.jitsi Low Product pom developer name Jitsi Team Low Product pom groupid org.jitsi Highest Product pom name jitsi-utils High Product pom organization name jitsi.org Low Product pom organization url https://jitsi.org Low Product pom url jitsi/jitsi-utils High Version pom version 1.0-134-ga33c52c Highest
CVE-2022-43550 suppressed
A command injection vulnerability exists in Jitsi before commit 8aa7be58522f4264078d54752aae5483bfd854b2 when launching browsers on Windows which could allow an attacker to insert an arbitrary URL which opens up the opportunity to remote execution. CWE-77 Improper Neutralization of Special Elements used in a Command ('Command Injection'), CWE-78 Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
Notes: false positives, no end date
CVE-2008-7271 - This is for the eclipse ide and not for any library from eclipse.
CVE-2010-4647 - This is for the eclipse ide and not for any library from eclipse.
CVE-2020-26939 - The BouncyCastle FIPS variant uses same maven package matcher but has different version numbers.
CVE-2021-4236 - This is for a go project, match on every lib with 'web' in the name
CVE-2021-4277 - This is for a utils project from fredssmith, match on every lib with 'utils' in the name
CVE-2022-31548 - This is a CVE for a sample phyton project.
CVE-2022-43550 - This is a CVE for the jitsi main project and not for any library from jitsi.
CVE-2022-45688 - This is for hutool-json, matched on every component with 'json' in the name
CVE-2023-5072 - This is for JSON-java, matched on every component with 'json' in the name
CVE-2023-33202 - The BouncyCastle FIPS variant uses same maven package matcher but has different version numbers.
CVE-2023-35116 - DISPUTED
CVE-2023-36052 - This is for Azure CLI and not for com.azure:azure-core.
CVE-2023-45161 - This is for 1E-Exchange which we does not use.
CVSSv3:
CRITICAL (9.8) CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:3.9/RC:R/MAV:A References:
support@hackerone.com - PATCH Vulnerable Software & Versions: