diff --git a/techstack.md b/techstack.md new file mode 100644 index 00000000..0deb4843 --- /dev/null +++ b/techstack.md @@ -0,0 +1,137 @@ + +
+ +# Tech Stack File +![](https://img.stackshare.io/repo.svg "repo") [shandanjay/java.jdbc](https://github.com/shandanjay/java.jdbc)![](https://img.stackshare.io/public_badge.svg "public") +

+|15
Tools used|01/31/24
Report generated| +|------|------| +
+ +## Languages (1) + + + + +
+ Clojure +
+ Clojure +
+ +
+ +## Data (5) + + + + + + + + + + + + +
+ Apache Derby +
+ Apache Derby +
+ +		 + HSQLDB +
+ HSQLDB +
+ v1.8.0 +		 + MySQL +
+ MySQL +
+ +		 + PostgreSQL +
+ PostgreSQL +
+ v8.4 +		 + SQLite +
+ SQLite +
+ +
+ +## DevOps (1) + + + + +
+ Git +
+ Git +
+ +
+ + +## Open source packages (8) + +## Apache Maven (6) + +|NAME|VERSION|LAST UPDATED|LAST UPDATED BY|LICENSE|VULNERABILITIES| +|:------|:------|:------|:------|:------|:------| +|[hsqldb:hsqldb](http://hsqldb.org/)|v1.8.0|07/25/11|Sean Corfield |BSD-3-Clause|N/A| +|[mysql:mysql-connector-java](http://dev.mysql.com/doc/connector-j/en/)|v5.1.25|07/18/11|Sean Corfield |GPL-3.0-only|[CVE-2018-3258](https://github.com/advisories/GHSA-4vrv-ch96-6h42) (High)
[CVE-2017-3523](https://github.com/advisories/GHSA-2xxh-f8r3-hvvr) (High)
[CVE-2019-2692](https://github.com/advisories/GHSA-jcq3-cprp-m333) (Moderate)
[CVE-2017-3586](https://github.com/advisories/GHSA-pwh7-92h3-mqr6) (Moderate)
[CVE-2015-2575](https://github.com/advisories/GHSA-gc43-g62c-99g2) (Moderate)
[CVE-2022-21363](https://github.com/advisories/GHSA-g76j-4cxx-23h9) (Moderate)
[CVE-2017-3589](https://github.com/advisories/GHSA-cjcf-wm2p-59h5) (Low)| +|[net.sourceforge.jtds:jtds](http://jtds.sourceforge.net)|v1.2.4|03/01/12|Sean Corfield |Other|N/A| +|[org.apache.derby:derby](http://db.apache.org/derby/)|v10.8.1|03/01/12|Sean Corfield |Apache-2.0|[CVE-2022-46337](https://github.com/advisories/GHSA-rcjc-c4pj-xxrp) (Critical)
[CVE-2015-1832](https://github.com/advisories/GHSA-wr69-g62g-2r9h) (Critical)
[CVE-2018-1313](https://github.com/advisories/GHSA-42xw-p62x-hwcf) (Moderate)| +|[org.xerial:sqlite-jdbc]()|v3.8.7|03/01/12|Sean Corfield |Apache-2.0|[CVE-2023-32697](https://github.com/advisories/GHSA-6phf-6h5g-97j2) (High)| +|[postgresql:postgresql](http://jdbc.postgresql.org)|v8.4|10/17/11|Phil Hagelberg |DSDP|N/A| + + +## Clojars (2) + +|NAME|VERSION|LAST UPDATED|LAST UPDATED BY|LICENSE|VULNERABILITIES| +|:------|:------|:------|:------|:------|:------| +|[mysql/mysql-connector-java](https://clojars.org/mysql/mysql-connector-java)|v5.1.25|10/28/14|Sean Corfield |N/A|N/A| +|[postgresql](https://clojars.org/postgresql)|v8.4|06/28/13|Sean Corfield |N/A|N/A| + +
+
+ +Generated via [Stack File](https://github.com/marketplace/stack-file) diff --git a/techstack.yml b/techstack.yml new file mode 100644 index 00000000..3d6ed60c --- /dev/null +++ b/techstack.yml @@ -0,0 +1,271 @@ +repo_name: shandanjay/java.jdbc +report_id: eb00e0f4788bf7fb0f02f4bc687f3167 +version: 0.1 +repo_type: Public +timestamp: '2024-01-31T14:27:16+00:00' +requested_by: seancorfield +provider: github +branch: master +detected_tools_count: 15 +tools: +- name: Clojure + description: A dynamic programming language that targets the Java Virtual Machine + website_url: http://clojure.org/ + open_source: true + hosted_saas: false + category: Languages & Frameworks + sub_category: Languages + image_url: https://img.stackshare.io/service/1003/Clojure_300x300.png + detection_source_url: https://github.com/shandanjay/java.jdbc + detection_source: Repo Metadata +- name: Apache Derby + description: An open source relational database implemented entirely in Java + website_url: https://db.apache.org/derby/index.html + license: Apache-2.0 + open_source: true + hosted_saas: false + category: Data Stores + sub_category: Databases + image_url: https://img.stackshare.io/service/7309/derby.png + detection_source_url: https://github.com/shandanjay/java.jdbc/blob/master/pom.xml + detection_source: pom.xml + last_updated_by: Sean Corfield + last_updated_on: 2011-07-25 03:17:43.000000000 Z +- name: HSQLDB + description: Leading SQL relational database software written in Java + website_url: http://hsqldb.org + version: 1.8.0 + open_source: false + hosted_saas: false + category: Data Stores + sub_category: Databases + image_url: https://img.stackshare.io/service/6958/yQ4763oZ_400x400.jpg + detection_source_url: https://github.com/shandanjay/java.jdbc/blob/master/project.clj + detection_source: pom.xml + last_updated_by: Sean Corfield + last_updated_on: 2011-04-17 22:19:51.000000000 Z +- name: MySQL + description: The world's most popular open source database + website_url: http://www.mysql.com + open_source: true + hosted_saas: false + category: Data Stores + sub_category: Databases + image_url: https://img.stackshare.io/service/1025/logo-mysql-170x170.png + detection_source_url: https://github.com/shandanjay/java.jdbc/blob/master/pom.xml + detection_source: pom.xml + last_updated_by: Sean Corfield + last_updated_on: 2011-04-17 22:19:51.000000000 Z +- name: PostgreSQL + description: A powerful, open source object-relational database system + website_url: http://www.postgresql.org/ + version: '8.4' + open_source: true + hosted_saas: false + category: Data Stores + sub_category: Databases + image_url: https://img.stackshare.io/service/1028/ASOhU5xJ.png + detection_source_url: https://github.com/shandanjay/java.jdbc/blob/master/project.clj + detection_source: pom.xml + last_updated_by: Phil Hagelberg + last_updated_on: 2011-10-17 22:55:23.000000000 Z +- name: SQLite + description: A software library that implements a self-contained, serverless, zero-configuration, + transactional SQL database engine + website_url: http://www.sqlite.org/ + open_source: false + hosted_saas: true + category: Data Stores + sub_category: Databases + image_url: https://img.stackshare.io/service/1071/sqlite.jpg + detection_source_url: https://github.com/shandanjay/java.jdbc/blob/master/pom.xml + detection_source: pom.xml + last_updated_by: Sean Corfield + last_updated_on: 2011-04-17 22:19:51.000000000 Z +- name: Git + description: Fast, scalable, distributed revision control system + website_url: http://git-scm.com/ + open_source: true + hosted_saas: false + category: Build, Test, Deploy + sub_category: Version Control System + image_url: https://img.stackshare.io/service/1046/git.png + detection_source_url: https://github.com/shandanjay/java.jdbc + detection_source: Repo Metadata +- name: hsqldb:hsqldb + description: Lightweight 100% Java SQL Database Engine + version: 1.8.0 + license: BSD-3-Clause + open_source: true + hosted_saas: false + category: Libraries + sub_category: Maven Packages + image_url: https://img.stackshare.io/package/maven/image.png + detection_source_url: https://github.com/shandanjay/java.jdbc/blob/master/pom.xml + detection_source: pom.xml + last_updated_by: Sean Corfield + last_updated_on: 2011-07-25 03:17:43.000000000 Z +- name: mysql:mysql-connector-java + description: MySQL JDBC Type 4 driver + version: 5.1.25 + license: GPL-3.0-only + open_source: true + hosted_saas: false + category: Libraries + sub_category: Maven Packages + image_url: https://img.stackshare.io/package/maven/image.png + detection_source_url: https://github.com/shandanjay/java.jdbc/blob/master/pom.xml + detection_source: pom.xml + last_updated_by: Sean Corfield + last_updated_on: 2011-07-18 03:32:31.000000000 Z + vulnerabilities: + - name: Improper Privilege Management in MySQL Connectors Java + cve_id: CVE-2018-3258 + cve_url: https://github.com/advisories/GHSA-4vrv-ch96-6h42 + detected_date: Jun 29 + severity: high + first_patched: 8.0.13 + - name: Improper Access Control in MySQL Connectors Java + cve_id: CVE-2017-3523 + cve_url: https://github.com/advisories/GHSA-2xxh-f8r3-hvvr + detected_date: Jul 2 + severity: high + first_patched: 5.1.41 + - name: Privilege escalation in mysql-connector-jav + cve_id: CVE-2019-2692 + cve_url: https://github.com/advisories/GHSA-jcq3-cprp-m333 + detected_date: Aug 22 + severity: moderate + first_patched: 8.0.16 + - name: Exposure of Sensitive Information to an Unauthorized Actor in Oracle MySQL + Connectors Java + cve_id: CVE-2017-3586 + cve_url: https://github.com/advisories/GHSA-pwh7-92h3-mqr6 + detected_date: Jul 2 + severity: moderate + first_patched: 5.1.42 + - name: Improper Access Control in MySQL Connectors Java + cve_id: CVE-2015-2575 + cve_url: https://github.com/advisories/GHSA-gc43-g62c-99g2 + detected_date: Jul 7 + severity: moderate + first_patched: 5.1.35 + - name: Improper Handling of Insufficient Permissions or Privileges in MySQL Connectors + Java + cve_id: CVE-2022-21363 + cve_url: https://github.com/advisories/GHSA-g76j-4cxx-23h9 + detected_date: Jun 21 + severity: moderate + first_patched: 8.0.28 + - name: Exposure of Sensitive Information to an Unauthorized Actor in Oracle MySQL + Connectors Java + cve_id: CVE-2017-3589 + cve_url: https://github.com/advisories/GHSA-cjcf-wm2p-59h5 + detected_date: Jul 2 + severity: low + first_patched: 5.1.42 +- name: net.sourceforge.jtds:jtds + description: JTDS is an open source 100% pure Java + version: 1.2.4 + license: Other + open_source: true + hosted_saas: false + category: Libraries + sub_category: Maven Packages + image_url: https://img.stackshare.io/package/maven/image.png + detection_source_url: https://github.com/shandanjay/java.jdbc/blob/master/pom.xml + detection_source: pom.xml + last_updated_by: Sean Corfield + last_updated_on: 2012-03-01 03:26:22.000000000 Z +- name: org.apache.derby:derby + description: Contains the core Apache Derby database engine + version: 10.8.1 + license: Apache-2.0 + open_source: true + hosted_saas: false + category: Libraries + sub_category: Maven Packages + image_url: https://img.stackshare.io/package/maven/image.png + detection_source_url: https://github.com/shandanjay/java.jdbc/blob/master/pom.xml + detection_source: pom.xml + last_updated_by: Sean Corfield + last_updated_on: 2012-03-01 05:31:44.000000000 Z + vulnerabilities: + - name: 'Apache Derby: LDAP injection vulnerability in authenticator' + cve_id: CVE-2022-46337 + cve_url: https://github.com/advisories/GHSA-rcjc-c4pj-xxrp + detected_date: Nov 21 + severity: critical + first_patched: 10.14.3 + - name: Improper Restriction of XML External Entity Reference in Apace Derby + cve_id: CVE-2015-1832 + cve_url: https://github.com/advisories/GHSA-wr69-g62g-2r9h + detected_date: Jul 7 + severity: critical + first_patched: 10.12.1.1 + - name: Improper Access Control in Apache Derby + cve_id: CVE-2018-1313 + cve_url: https://github.com/advisories/GHSA-42xw-p62x-hwcf + detected_date: Jun 30 + severity: moderate + first_patched: 10.14.2.0 +- name: org.xerial:sqlite-jdbc + description: SQLite JDBC library + version: 3.8.7 + license: Apache-2.0 + open_source: true + hosted_saas: false + category: Libraries + sub_category: Maven Packages + image_url: https://img.stackshare.io/package/maven/image.png + detection_source_url: https://github.com/shandanjay/java.jdbc/blob/master/pom.xml + detection_source: pom.xml + last_updated_by: Sean Corfield + last_updated_on: 2012-03-01 05:31:44.000000000 Z + vulnerabilities: + - name: Sqlite-jdbc vulnerable to remote code execution when JDBC url is attacker + controlled + cve_id: CVE-2023-32697 + cve_url: https://github.com/advisories/GHSA-6phf-6h5g-97j2 + detected_date: May 24 + severity: high + first_patched: 3.41.2.2 +- name: postgresql:postgresql + description: The PostgreSQL Driver JDBC4 + version: '8.4' + license: DSDP + open_source: true + hosted_saas: false + category: Libraries + sub_category: Maven Packages + image_url: https://img.stackshare.io/package/maven/image.png + detection_source_url: https://github.com/shandanjay/java.jdbc/blob/master/pom.xml + detection_source: pom.xml + last_updated_by: Phil Hagelberg + last_updated_on: 2011-10-17 22:55:23.000000000 Z +- name: mysql/mysql-connector-java + description: MySQL java connector + package_url: https://clojars.org/mysql/mysql-connector-java + version: 5.1.25 + open_source: false + hosted_saas: false + category: Build, Test, Deploy + sub_category: Package Managers + image_url: https://img.stackshare.io/package/clojars/image.png + detection_source_url: https://github.com/shandanjay/java.jdbc/blob/master/project.clj + detection_source: project.clj + last_updated_by: Sean Corfield + last_updated_on: 2014-10-28 23:41:08.000000000 Z +- name: postgresql + description: The PostgreSQL JDBC Driver JDBC4 + package_url: https://clojars.org/postgresql + version: '8.4' + open_source: false + hosted_saas: false + category: Build, Test, Deploy + sub_category: Package Managers + image_url: https://img.stackshare.io/package/clojars/image.png + detection_source_url: https://github.com/shandanjay/java.jdbc/blob/master/project.clj + detection_source: project.clj + last_updated_by: Sean Corfield + last_updated_on: 2013-06-28 22:46:03.000000000 Z