Spring Security is a powerful and highly customizable authentication and access-control framework. It provides protection against attacks like session fixation, clickjacking, cross site request forgery, etc
Compile Dependencies (13)
| Category/License | Group / Artifact | Version | Updates | |
|---|---|---|---|---|
AOP
Public
|  | aopalliance
»
aopalliance AOP Alliance | 1.0 | ✔ |
JSON Lib
Apache 2.0
|  | com.fasterxml.jackson.core
»
jackson-databind(optional)54 vulnerabilities General data-binding functionality for Jackson: works on core streaming API | 2.8.3 | 3.1.3 |
Logging
Apache 2.0
|  | commons-logging
»
commons-logging(optional) Apache Commons Logging is a thin adapter allowing configurable bridging to other, | 1.2 | 1.3.6 |
Annotation Lib
CDDL +1
|  | javax.annotation
»
jsr250-api(optional) Common Annotations for the JavaTM Platform API | 1.0 | 1.3.2 |
Cache Impl
Apache 2.0
|  | net.sf.ehcache
»
ehcache(optional) End-user ehcache3 jar artifact | 2.9.0 | 3.12.0 |
AOP
EPL 2.0
|  | org.aspectj
»
aspectjrt(optional) The AspectJ runtime is a small library necessary to run Java programs enhanced by AspectJ aspects during a previous | 1.8.4 | 1.9.25.1 |
AOP
Apache 2.0
|  | org.springframework
»
spring-aop Spring AOP provides an Alliance-compliant aspect-oriented programming implementation allowing you to define method ... | 4.3.3.RELEASE | 7.0.7 |
Dep Injection
Apache 2.0
| | org.springframework
»
spring-beans2 vulnerabilities Spring Beans provides the configuration framework and basic functionality to instantiate, configure, and assemble java ... | 4.3.3.RELEASE | 7.0.7 |
Dep Injection
Apache 2.0
| | org.springframework
»
spring-context3 vulnerabilities Spring Context provides access to configured objects like a registry (a context). It inherits its features from Spring ... | 4.3.3.RELEASE | 7.0.7 |
Core Utils
Apache 2.0
| | org.springframework
»
spring-core6 vulnerabilities Basic building block for Spring that in conjunction with Spring Beans provides dependency injection and IoC features. | 4.3.3.RELEASE | 7.0.7 |
Expression Lang
Apache 2.0
| | org.springframework
»
spring-expression4 vulnerabilities Powerful Expression Language for querying and manipulating an object graph at runtime. It is an extension of the ... | 4.3.3.RELEASE | 7.0.7 |
JDBC Extension
Apache 2.0
| | org.springframework
»
spring-jdbc(optional) Spring JDBC provides an abstraction layer that simplifies code to use JDBC and the parsing of database-vendor specific ... | 4.3.3.RELEASE | 7.0.7 |
Transactions
Apache 2.0
| | org.springframework
»
spring-tx(optional) Support for programmatic and declarative transaction management for classes that implement special interfaces or any ... | 4.3.3.RELEASE | 7.0.7 |
Test Dependencies (15)
| Category/License | Group / Artifact | Version | Updates | |
|---|---|---|---|---|
Logging
EPL 2.0 +1
|  | ch.qos.logback
»
logback-classic2 vulnerabilities Implementation of the SLF4J API for Logback, a reliable, generic, fast and flexible logging framework. | 1.1.2 | 1.5.32 |
Collections
Apache 2.0
| | commons-collections
»
commons-collections The Apache Commons Collections package contains types that extend and augment the Java Collections Framework. | 3.2.2 | 4.5.0 |
Testing
EPL 2.0
|  | junit
»
junit1 vulnerability JUnit Jupiter is the API for writing tests using JUnit 5. | 4.12 | 6.0.3 |
Assertion
Apache 2.0
|  | org.assertj
»
assertj-core1 vulnerability Rich and fluent assertions for testing in Java | 2.2.0 | 3.27.7 |
 | org.hsqldb
»
hsqldb1 vulnerability HSQLDB - Lightweight 100% Java SQL Database Engine | 2.3.2 | 2.7.4 | |
Mocking
MIT
|  | org.mockito
»
mockito-core Mockito mock objects library core API and implementation | 1.10.19 | 5.23.0 |
Mocking
Apache 2.0
|  | org.powermock
»
powermock-api-mockito PowerMock API for Mockito 2.+.. | 1.6.2 | 2.0.9 |
Apache 2.0
| | org.powermock
»
powermock-api-support PowerMock API Utility classes. | 1.6.2 | 2.0.9 |
Mocking
Apache 2.0
| | org.powermock
»
powermock-core Various utilities for accessing internals of a class. | 1.6.2 | 2.0.9 |
Mocking
Apache 2.0
| | org.powermock
»
powermock-module-junit4 PowerMock support module for JUnit 4.x. | 1.6.2 | 2.0.9 |
Apache 2.0
| | org.powermock
»
powermock-module-junit4-common PowerMock support module for all versions of JUnit 4.x. | 1.6.2 | 2.0.9 |
Apache 2.0
| | org.powermock
»
powermock-reflect Various utilities for accessing internals of a class. | 1.6.2 | 2.0.9 |
Testing
Apache 2.0
|  | org.skyscreamer
»
jsonassert Library for writing tests that checks JSON documents (useful for testing responses from REST services). | 1.3.0 | 1.5.3 |
Logging Bridge
Apache 2.0
|  | org.slf4j
»
jcl-over-slf4j Jakarta/Apache commons logging 1.2 implemented over SLF4J | 1.7.7 | 2.0.17 |
Testing
Apache 2.0
| | org.springframework
»
spring-test Spring Test supports the unit testing and integration testing of Spring components with JUnit or TestNG. It provides ... | 4.3.3.RELEASE | 7.0.7 |
