| Package | Description |
|---|---|
| org.owasp.dependencycheck |
Includes the main entry point for dependency-check.
|
| org.owasp.dependencycheck.agent |
The agent package holds an agent API that can be used by other applications that have information about dependencies; but would
rather implement something in their code directly rather then spawn a process to run the entire dependency-check engine.
|
| org.owasp.dependencycheck.analyzer |
Analyzers are used to inspect the identified dependencies, collect Evidence, and process the dependencies.
|
| org.owasp.dependencycheck.analyzer.exception |
A collection of exception classes used within the analyzers.
|
| org.owasp.dependencycheck.data.artifactory |
Contains classes related to searching Artifactory Maven repository.
These are used to abstractArtifactory searching away from OWASP Dependency Check so they can be reused elsewhere. |
| org.owasp.dependencycheck.data.cache |
Implements a generic persisted cache that can be used to store results of external analysis between executions.
|
| org.owasp.dependencycheck.data.central |
Contains classes related to searching Maven Central.
These are used to abstract Maven Central searching away from OWASP Dependency Check so they can be reused elsewhere. |
| org.owasp.dependencycheck.data.composer |
Model elements for PHP Composer files
|
| org.owasp.dependencycheck.data.cpe |
Contains classes for working with the CPE Lucene Index.
|
| org.owasp.dependencycheck.data.cwe |
Contains classes for working with the CWE Database.
|
| org.owasp.dependencycheck.data.elixir |
Contains classes for working with various Elixir project data.
|
| org.owasp.dependencycheck.data.golang |
Contains classes for working with the Go Lang project data.
|
| org.owasp.dependencycheck.data.knownexploited.json | |
| org.owasp.dependencycheck.data.lucene |
Contains classes used to work with the Lucene Indexes.
|
| org.owasp.dependencycheck.data.nexus |
Contains classes related to searching a Nexus repository.
These are used to abstract Nexus searching away from OWASP Dependency Check so they can be reused elsewhere. |
| org.owasp.dependencycheck.data.nodeaudit |
Contains classes related to searching via Node Audit API.
These are used to abstract Node Audit searching away from OWASP Dependency Check so they can be reused elsewhere. |
| org.owasp.dependencycheck.data.nuget |
Contains classes related to parsing Nuget related files
These are used to abstract away Nuget-related handling from Dependency Check so they can be used elsewhere. |
| org.owasp.dependencycheck.data.nvd.ecosystem |
Contains utility classes used to identify the ecosystem for CPEs from the NVD.
|
| org.owasp.dependencycheck.data.nvdcve |
Contains classes used to work with the NVD CVE data.
|
| org.owasp.dependencycheck.data.ossindex |
Support for Sonatype OSS Index analysis.
|
| org.owasp.dependencycheck.data.update |
Contains classes used to update the data stores.
The UpdateService will load, any correctly defined CachedWebDataSource(s) and call update() on them. |
| org.owasp.dependencycheck.data.update.cisa |
Contains classes used to parse the CISA Known Exploited Vulnerability Catalog.
|
| org.owasp.dependencycheck.data.update.cpe |
Contains classes used to parse the CPE XML file from NIST.
These classes are not used as they add no value over the existing CPE data contained within the CVE data from the NVD. |
| org.owasp.dependencycheck.data.update.exception |
A collection of exception classes used within the application.
|
| org.owasp.dependencycheck.data.update.nvd.api |
Contains classes used to download, parse, and load the NVD API CVE data from NIST into the local database.
|
| org.owasp.dependencycheck.dependency |
Contains the core Dependency implementation.
|
| org.owasp.dependencycheck.dependency.naming |
A collection of identifiers for Dependency objects.
|
| org.owasp.dependencycheck.exception |
A collection of exception classes used within the application.
|
| org.owasp.dependencycheck.processing |
Classes used to process the output of external tools.
|
| org.owasp.dependencycheck.reporting |
Contains classes used to generate reports.
|
| org.owasp.dependencycheck.utils |
Includes various utility classes such as a Settings wrapper, a Checksum utility, etc.
|
| org.owasp.dependencycheck.xml |
Contains classes used to fix XML prior to parsing.
|
| org.owasp.dependencycheck.xml.assembly |
Support classes for parsing GrokAssembly output.
|
| org.owasp.dependencycheck.xml.hints |
Contains classes used to parse the hints file to add evidence to dependencies.
|
| org.owasp.dependencycheck.xml.pom |
This package contains classes used to parse pom.xml files.
|
| org.owasp.dependencycheck.xml.suppression |
Contains classes used to suppress findings.
|
Copyright© 2012-21 Jeremy Long. All Rights Reserved.