From ac2d6e2ad5e7adec35927f3e593075121a83e162 Mon Sep 17 00:00:00 2001 From: stacksharebot Date: Wed, 31 Jan 2024 08:51:40 +0000 Subject: [PATCH 1/2] Create techstack.yml --- techstack.yml | 318 ++++++++++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 318 insertions(+) create mode 100644 techstack.yml diff --git a/techstack.yml b/techstack.yml new file mode 100644 index 0000000..65f9c0b --- /dev/null +++ b/techstack.yml @@ -0,0 +1,318 @@ +repo_name: hantsy/javaee8-jsf-sample +report_id: 5792bc28d1d655924c6cafc7dd897c8d +version: 0.1 +repo_type: Public +timestamp: '2024-01-31T08:51:37+00:00' +requested_by: hantsy +provider: github +branch: master +detected_tools_count: 22 +tools: +- name: CSS 3 + description: The latest evolution of the Cascading Style Sheets language + website_url: https://developer.mozilla.org/en-US/docs/Web/CSS/CSS3 + open_source: true + hosted_saas: false + category: Languages & Frameworks + sub_category: Languages + image_url: https://img.stackshare.io/service/6727/css.png + detection_source_url: https://github.com/hantsy/javaee8-jsf-sample + detection_source: Repo Metadata +- name: Java + description: A concurrent, class-based, object-oriented, language specifically designed + to have as few implementation dependencies as possible + website_url: https://www.java.com + version: '1.8' + open_source: true + hosted_saas: false + category: Languages & Frameworks + sub_category: Languages + image_url: https://img.stackshare.io/service/995/K85ZWV2F.png + detection_source_url: https://github.com/hantsy/javaee8-jsf-sample/blob/master/pom.xml + detection_source: Repo Metadata + last_updated_by: hantsy + last_updated_on: 2017-10-21 14:42:57.000000000 Z +- name: Java EE + description: The standard in community-driven enterprise software + website_url: http://www.oracle.com/technetwork/java/javaee/overview/index.html + open_source: true + hosted_saas: false + category: Languages & Frameworks + sub_category: Languages + image_url: https://img.stackshare.io/service/4522/652rxwyK_400x400.png + detection_source_url: https://github.com/hantsy/javaee8-jsf-sample/blob/master/pom.xml + detection_source: pom.xml + last_updated_by: hantsy + last_updated_on: 2017-10-21 14:42:57.000000000 Z +- name: Git + description: Fast, scalable, distributed revision control system + website_url: http://git-scm.com/ + open_source: true + hosted_saas: false + category: Build, Test, Deploy + sub_category: Version Control System + image_url: https://img.stackshare.io/service/1046/git.png + detection_source_url: https://github.com/hantsy/javaee8-jsf-sample + detection_source: Repo Metadata +- name: JBoss + description: An open source Java EE-based application server + website_url: https://developers.redhat.com/products/eap + open_source: false + hosted_saas: false + category: Application Hosting + sub_category: Web Servers + image_url: https://img.stackshare.io/service/2188/unnamed.jpg + detection_source_url: https://github.com/hantsy/javaee8-jsf-sample/blob/master/pom.xml + detection_source: pom.xml + last_updated_by: hantsy + last_updated_on: 2017-10-21 14:42:57.000000000 Z +- name: JUnit + description: A programmer-oriented testing framework for Java + website_url: http://junit.org/ + version: '4.12' + license: EPL-1.0 + open_source: true + hosted_saas: false + category: Build, Test, Deploy + sub_category: Testing Frameworks + image_url: https://img.stackshare.io/service/2020/874086.png + detection_source_url: https://github.com/hantsy/javaee8-jsf-sample/blob/master/pom.xml + detection_source: pom.xml + last_updated_by: hantsy + last_updated_on: 2017-10-21 14:42:57.000000000 Z +- name: Mockito + description: Tasty mocking framework for unit tests in Java + website_url: https://site.mockito.org/ + version: 2.10.0 + license: MIT + open_source: true + hosted_saas: false + category: Build, Test, Deploy + sub_category: Testing Frameworks + image_url: https://img.stackshare.io/service/2021/4y634TJm_400x400.jpg + detection_source_url: https://github.com/hantsy/javaee8-jsf-sample/blob/master/pom.xml + detection_source: pom.xml + last_updated_by: hantsy + last_updated_on: 2017-10-21 14:42:57.000000000 Z +- name: com.google.code.gson:gson + description: Gson JSON library + version: 2.8.2 + license: Apache-2.0 + open_source: true + hosted_saas: false + category: Libraries + sub_category: Maven Packages + image_url: https://img.stackshare.io/package/maven/image.png + detection_source_url: https://github.com/hantsy/javaee8-jsf-sample/blob/master/pom.xml + detection_source: pom.xml + last_updated_by: Marco Klein + last_updated_on: 2022-08-17 16:44:01.000000000 Z + vulnerabilities: + - name: Deserialization of Untrusted Data in Gson + cve_id: CVE-2022-25647 + cve_url: https://github.com/advisories/GHSA-4jrv-ppp4-jm57 + detected_date: May 21 + severity: high + first_patched: 2.8.9 +- name: com.jayway.jsonpath:json-path + description: Java port of Stefan Goessner JsonPath + version: 2.4.0 + license: Apache-2.0 + open_source: true + hosted_saas: false + category: Libraries + sub_category: Maven Packages + image_url: https://img.stackshare.io/package/maven/image.png + detection_source_url: https://github.com/hantsy/javaee8-jsf-sample/blob/master/pom.xml + detection_source: pom.xml + last_updated_by: hantsy + last_updated_on: 2017-10-21 14:42:57.000000000 Z + vulnerabilities: + - name: json-path Out-of-bounds Write vulnerability + cve_id: CVE-2023-51074 + cve_url: https://github.com/advisories/GHSA-pfh2-hfmq-phg5 + detected_date: Jan 18 + severity: moderate + first_patched: 2.9.0 +- name: javax:javaee-api + description: Java + version: '8.0' + license: GPL-2.0-with-classpath-exception + open_source: true + hosted_saas: false + category: Libraries + sub_category: Maven Packages + image_url: https://img.stackshare.io/package/maven/image.png + detection_source_url: https://github.com/hantsy/javaee8-jsf-sample/blob/master/pom.xml + detection_source: pom.xml + last_updated_by: hantsy + last_updated_on: 2017-10-21 14:42:57.000000000 Z +- name: junit:junit + description: JUnit is a unit testing framework for Java + version: '4.12' + license: EPL-1.0 + open_source: true + hosted_saas: false + category: Libraries + sub_category: Maven Packages + image_url: https://img.stackshare.io/package/maven/image.png + detection_source_url: https://github.com/hantsy/javaee8-jsf-sample/blob/master/pom.xml + detection_source: pom.xml + last_updated_by: hantsy + last_updated_on: 2017-10-21 14:42:57.000000000 Z + vulnerabilities: + - name: TemporaryFolder on unix-like systems does not limit access to created files + cve_id: CVE-2020-15250 + cve_url: https://github.com/advisories/GHSA-269g-pwp5-87pp + detected_date: Aug 22 + severity: moderate + first_patched: 4.13.1 +- name: org.apache.httpcomponents:httpclient + description: Apache HttpComponents Client + version: 4.5.3 + license: Apache-2.0 + open_source: true + hosted_saas: false + category: Libraries + sub_category: Maven Packages + image_url: https://img.stackshare.io/package/maven/image.png + detection_source_url: https://github.com/hantsy/javaee8-jsf-sample/blob/master/pom.xml + detection_source: pom.xml + last_updated_by: Marco Klein + last_updated_on: 2022-08-17 16:44:01.000000000 Z + vulnerabilities: + - name: Cross-site scripting in Apache HttpClient + cve_id: CVE-2020-13956 + cve_url: https://github.com/advisories/GHSA-7r82-7xv7-xcpj + detected_date: Aug 22 + severity: moderate + first_patched: 4.5.13 +- name: org.assertj:assertj-core + description: Rich and fluent assertions for testing for Java + version: 3.2.0 + license: Apache-2.0 + open_source: true + hosted_saas: false + category: Libraries + sub_category: Maven Packages + image_url: https://img.stackshare.io/package/maven/image.png + detection_source_url: https://github.com/hantsy/javaee8-jsf-sample/blob/master/pom.xml + detection_source: pom.xml + last_updated_by: hantsy + last_updated_on: 2017-11-04 11:29:09.000000000 Z +- name: org.hamcrest:hamcrest-core + description: Core Hamcrest API - deprecated + version: '1.3' + license: DSDP + open_source: true + hosted_saas: false + category: Libraries + sub_category: Maven Packages + image_url: https://img.stackshare.io/package/maven/image.png + detection_source_url: https://github.com/hantsy/javaee8-jsf-sample/blob/master/pom.xml + detection_source: pom.xml + last_updated_by: hantsy + last_updated_on: 2017-11-04 11:29:09.000000000 Z +- name: org.hamcrest:hamcrest-library + description: A library of Hamcrest matchers - deprecated + version: '1.3' + license: DSDP + open_source: true + hosted_saas: false + category: Libraries + sub_category: Maven Packages + image_url: https://img.stackshare.io/package/maven/image.png + detection_source_url: https://github.com/hantsy/javaee8-jsf-sample/blob/master/pom.xml + detection_source: pom.xml + last_updated_by: hantsy + last_updated_on: 2017-11-04 11:29:09.000000000 Z +- name: org.jboss.arquillian.graphene:graphene-webdriver + description: Starting point for integration Graphene test suites + version: 2.3.2 + license: LGPL-2.1+ + open_source: true + hosted_saas: false + category: Libraries + sub_category: Maven Packages + image_url: https://img.stackshare.io/package/maven/image.png + detection_source_url: https://github.com/hantsy/javaee8-jsf-sample/blob/master/pom.xml + detection_source: pom.xml + last_updated_by: hantsy + last_updated_on: 2017-11-04 11:29:09.000000000 Z +- name: org.jboss.arquillian.junit:arquillian-junit-container + description: JUnit Container Implementation for the Arquillian Project + license: Apache-2.0 + open_source: true + hosted_saas: false + category: Libraries + sub_category: Maven Packages + image_url: https://img.stackshare.io/package/maven/image.png + detection_source_url: https://github.com/hantsy/javaee8-jsf-sample/blob/master/pom.xml + detection_source: pom.xml + last_updated_by: Marco Klein + last_updated_on: 2022-08-17 16:44:01.000000000 Z +- name: org.jboss.arquillian.protocol:arquillian-protocol-servlet + description: Protocol handler for communicating using a servlet / http following + the Servlet 2.5/ 2.5/.x spec + license: Apache-2.0 + open_source: true + hosted_saas: false + category: Libraries + sub_category: Maven Packages + image_url: https://img.stackshare.io/package/maven/image.png + detection_source_url: https://github.com/hantsy/javaee8-jsf-sample/blob/master/pom.xml + detection_source: pom.xml + last_updated_by: hantsy + last_updated_on: 2017-11-04 11:29:09.000000000 Z +- name: org.jboss.shrinkwrap.resolver:shrinkwrap-resolver-depchain + description: Single-POM Definition to export the ShrinkWrap Resolver artifacts in + proper scope + license: Apache-2.0 + open_source: true + hosted_saas: false + category: Libraries + sub_category: Maven Packages + image_url: https://img.stackshare.io/package/maven/image.png + detection_source_url: https://github.com/hantsy/javaee8-jsf-sample/blob/master/pom.xml + detection_source: pom.xml + last_updated_by: hantsy + last_updated_on: 2017-11-04 11:29:09.000000000 Z +- name: org.mockito:mockito-core + description: Mockito mock objects library core API and implementation + version: 2.10.0 + license: MIT + open_source: true + hosted_saas: false + category: Libraries + sub_category: Maven Packages + image_url: https://img.stackshare.io/package/maven/image.png + detection_source_url: https://github.com/hantsy/javaee8-jsf-sample/blob/master/pom.xml + detection_source: pom.xml + last_updated_by: hantsy + last_updated_on: 2017-11-04 11:29:09.000000000 Z +- name: org.projectlombok:lombok + description: 'Spice up your java: Automatic Resource Management' + version: 1.16.8 + license: MIT + open_source: true + hosted_saas: false + category: Libraries + sub_category: Maven Packages + image_url: https://img.stackshare.io/package/maven/image.png + detection_source_url: https://github.com/hantsy/javaee8-jsf-sample/blob/master/pom.xml + detection_source: pom.xml + last_updated_by: hantsy + last_updated_on: 2017-11-04 11:29:09.000000000 Z +- name: org.skyscreamer:jsonassert + description: A library to develop RESTful but flexible APIs + version: 1.5.0 + license: Apache-2.0 + open_source: true + hosted_saas: false + category: Libraries + sub_category: Maven Packages + image_url: https://img.stackshare.io/package/maven/image.png + detection_source_url: https://github.com/hantsy/javaee8-jsf-sample/blob/master/pom.xml + detection_source: pom.xml + last_updated_by: hantsy + last_updated_on: 2017-11-04 11:29:09.000000000 Z From 7f51bfed382090926dcebff23140ed83a33e0957 Mon Sep 17 00:00:00 2001 From: stacksharebot Date: Wed, 31 Jan 2024 08:51:41 +0000 Subject: [PATCH 2/2] Create techstack.md --- techstack.md | 131 +++++++++++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 131 insertions(+) create mode 100644 techstack.md diff --git a/techstack.md b/techstack.md new file mode 100644 index 0000000..010ac93 --- /dev/null +++ b/techstack.md @@ -0,0 +1,131 @@ + +
+ +# Tech Stack File +![](https://img.stackshare.io/repo.svg "repo") [hantsy/javaee8-jsf-sample](https://github.com/hantsy/javaee8-jsf-sample)![](https://img.stackshare.io/public_badge.svg "public") +

+|22
Tools used|01/31/24
Report generated| +|------|------| +
+ +## Languages (3) + + + + + + + + +
+ CSS 3 +
+ CSS 3 +
+ +		 + Java +
+ Java +
+ v1.8 +		 + Java EE +
+ Java EE +
+ +
+ +## DevOps (4) + + + + + + + + + + +
+ Git +
+ Git +
+ +		 + JBoss +
+ JBoss +
+ +		 + JUnit +
+ JUnit +
+ v4.12 +		 + Mockito +
+ Mockito +
+ v2.10.0 +
+ + +## Open source packages (15) + +## Apache Maven (15) + +|NAME|VERSION|LAST UPDATED|LAST UPDATED BY|LICENSE|VULNERABILITIES| +|:------|:------|:------|:------|:------|:------| +|[com.google.code.gson:gson](https://github.com/google/gson)|v2.8.2|08/17/22|Marco Klein |Apache-2.0|[CVE-2022-25647](https://github.com/advisories/GHSA-4jrv-ppp4-jm57) (High)| +|[com.jayway.jsonpath:json-path](https://github.com/jayway/JsonPath)|v2.4.0|10/21/17|hantsy |Apache-2.0|[CVE-2023-51074](https://github.com/advisories/GHSA-pfh2-hfmq-phg5) (Moderate)| +|[javax:javaee-api](http://java.net/javaee-api/)|v8.0|10/21/17|hantsy |GPL-2.0-with-classpath-exception|N/A| +|[junit:junit](http://junit.org)|v4.12|10/21/17|hantsy |EPL-1.0|[CVE-2020-15250](https://github.com/advisories/GHSA-269g-pwp5-87pp) (Moderate)| +|[org.apache.httpcomponents:httpclient](http://hc.apache.org/httpcomponents-client)|v4.5.3|08/17/22|Marco Klein |Apache-2.0|[CVE-2020-13956](https://github.com/advisories/GHSA-7r82-7xv7-xcpj) (Moderate)| +|[org.assertj:assertj-core](http://assertj.org)|v3.2.0|11/04/17|hantsy |Apache-2.0|N/A| +|[org.hamcrest:hamcrest-core](http://hamcrest.org/JavaHamcrest/)|v1.3|11/04/17|hantsy |DSDP|N/A| +|[org.hamcrest:hamcrest-library](http://hamcrest.org/JavaHamcrest/)|v1.3|11/04/17|hantsy |DSDP|N/A| +|[org.jboss.arquillian.graphene:graphene-webdriver]()|v2.3.2|11/04/17|hantsy |LGPL-2.1+|N/A| +|[org.jboss.arquillian.junit:arquillian-junit-container](http://arquillian.org)|N/A|08/17/22|Marco Klein |Apache-2.0|N/A| +|[org.jboss.arquillian.protocol:arquillian-protocol-servlet](http://arquillian.org)|N/A|11/04/17|hantsy |Apache-2.0|N/A| +|[org.jboss.shrinkwrap.resolver:shrinkwrap-resolver-depchain](http://www.jboss.org)|N/A|11/04/17|hantsy |Apache-2.0|N/A| +|[org.mockito:mockito-core](https://github.com/mockito/mockito)|v2.10.0|11/04/17|hantsy |MIT|N/A| +|[org.projectlombok:lombok](https://projectlombok.org)|v1.16.8|11/04/17|hantsy |MIT|N/A| +|[org.skyscreamer:jsonassert](https://github.com/skyscreamer/JSONassert)|v1.5.0|11/04/17|hantsy |Apache-2.0|N/A| + +
+
+ +Generated via [Stack File](https://github.com/marketplace/stack-file)