{ "_class" : "io.jenkins.plugins.analysis.core.restapi.ReportApi", "issues" : [ { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "nimbus-jose-jwt-9.37.3.jar", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//usr/local/tomcat/webapps/govwayMonitor.war:WEB-INF/lib/nimbus-jose-jwt-9.37.3.jar", "fingerprint" : "FALLBACK-89d67db9", "lineEnd" : 1, "lineStart" : 1, "message" : "GHSA-xwmg-2g98-w7v9-nimbus-jose-jwt: JavaMatcherExactDirectMatch\u000a\u000aGHSA-xwmg-2g98-w7v9 medium vulnerability for nimbus-jose-jwt package\u000a\u000aFor additional help see: **Vulnerability GHSA-xwmg-2g98-w7v9**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | nimbus-jose-jwt | 9.37.3 | 10.0.2 | java-archive | /usr/local/tomcat/webapps/govway.war:WEB-INF/lib/nimbus-jose-jwt-9.37.3.jar | github:language:java | [GHSA-xwmg-2g98-w7v9](https://github.com/advisories/GHSA-xwmg-2g98-w7v9) |\u000a\u000a\u000aA medium vulnerability in java-archive package: nimbus-jose-jwt, version 9.37.3 was found in image linkitaly/govway:master_oracle at: /usr/local/tomcat/webapps/govwayMonitor.war:WEB-INF/lib/nimbus-jose-jwt-9.37.3.jar", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1267", "severity" : "NORMAL", "toString" : "nimbus-jose-jwt-9.37.3.jar(1,0): GHSA-xwmg-2g98-w7v9-nimbus-jose-jwt: : GHSA-xwmg-2g98-w7v9-nimbus-jose-jwt: JavaMatcherExactDirectMatch\u000a\u000aGHSA-xwmg-2g98-w7v9 medium vulnerability for nimbus-jose-jwt package\u000a\u000aFor additional help see: **Vulnerability GHSA-xwmg-2g98-w7v9**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | nimbus-jose-jwt | 9.37.3 | 10.0.2 | java-archive | /usr/local/tomcat/webapps/govway.war:WEB-INF/lib/nimbus-jose-jwt-9.37.3.jar | github:language:java | [GHSA-xwmg-2g98-w7v9](https://github.com/advisories/GHSA-xwmg-2g98-w7v9) |\u000a\u000a\u000aA medium vulnerability in java-archive package: nimbus-jose-jwt, version 9.37.3 was found in image linkitaly/govway:master_oracle at: /usr/local/tomcat/webapps/govwayMonitor.war:WEB-INF/lib/nimbus-jose-jwt-9.37.3.jar", "type" : "GHSA-xwmg-2g98-w7v9-nimbus-jose-jwt" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "nimbus-jose-jwt-9.37.3.jar", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//usr/local/tomcat/webapps/govwayMonitor.war:WEB-INF/lib/nimbus-jose-jwt-9.37.3.jar", "fingerprint" : "FALLBACK-89d67db9", "lineEnd" : 1, "lineStart" : 1, "message" : "GHSA-xwmg-2g98-w7v9-nimbus-jose-jwt: JavaMatcherExactDirectMatch\u000a\u000aGHSA-xwmg-2g98-w7v9 medium vulnerability for nimbus-jose-jwt package\u000a\u000aFor additional help see: **Vulnerability GHSA-xwmg-2g98-w7v9**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | nimbus-jose-jwt | 9.37.3 | 10.0.2 | java-archive | /usr/local/tomcat/webapps/govway.war:WEB-INF/lib/nimbus-jose-jwt-9.37.3.jar | github:language:java | [GHSA-xwmg-2g98-w7v9](https://github.com/advisories/GHSA-xwmg-2g98-w7v9) |\u000a\u000a\u000aA medium vulnerability in java-archive package: nimbus-jose-jwt, version 9.37.3 was found in image linkitaly/govway:master_postgres at: /usr/local/tomcat/webapps/govwayMonitor.war:WEB-INF/lib/nimbus-jose-jwt-9.37.3.jar", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1267", "severity" : "NORMAL", "toString" : "nimbus-jose-jwt-9.37.3.jar(1,0): GHSA-xwmg-2g98-w7v9-nimbus-jose-jwt: : GHSA-xwmg-2g98-w7v9-nimbus-jose-jwt: JavaMatcherExactDirectMatch\u000a\u000aGHSA-xwmg-2g98-w7v9 medium vulnerability for nimbus-jose-jwt package\u000a\u000aFor additional help see: **Vulnerability GHSA-xwmg-2g98-w7v9**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | nimbus-jose-jwt | 9.37.3 | 10.0.2 | java-archive | /usr/local/tomcat/webapps/govway.war:WEB-INF/lib/nimbus-jose-jwt-9.37.3.jar | github:language:java | [GHSA-xwmg-2g98-w7v9](https://github.com/advisories/GHSA-xwmg-2g98-w7v9) |\u000a\u000a\u000aA medium vulnerability in java-archive package: nimbus-jose-jwt, version 9.37.3 was found in image linkitaly/govway:master_postgres at: /usr/local/tomcat/webapps/govwayMonitor.war:WEB-INF/lib/nimbus-jose-jwt-9.37.3.jar", "type" : "GHSA-xwmg-2g98-w7v9-nimbus-jose-jwt" }, { "addedAt" : 0, "authorEmail" : "-", "authorName" : "-", "baseName" : "nimbus-jose-jwt-9.37.3.jar", "category" : "", "columnEnd" : 0, "columnStart" : 0, "commit" : "-", "description" : "", "fileName" : "govway//usr/local/tomcat/webapps/govwayMonitor.war:WEB-INF/lib/nimbus-jose-jwt-9.37.3.jar", "fingerprint" : "FALLBACK-89d67db9", "lineEnd" : 1, "lineStart" : 1, "message" : "GHSA-xwmg-2g98-w7v9-nimbus-jose-jwt: JavaMatcherExactDirectMatch\u000a\u000aGHSA-xwmg-2g98-w7v9 medium vulnerability for nimbus-jose-jwt package\u000a\u000aFor additional help see: **Vulnerability GHSA-xwmg-2g98-w7v9**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | nimbus-jose-jwt | 9.37.3 | 10.0.2 | java-archive | /usr/local/tomcat/webapps/govway.war:WEB-INF/lib/nimbus-jose-jwt-9.37.3.jar | github:language:java | [GHSA-xwmg-2g98-w7v9](https://github.com/advisories/GHSA-xwmg-2g98-w7v9) |\u000a\u000a\u000aA medium vulnerability in java-archive package: nimbus-jose-jwt, version 9.37.3 was found in image linkitaly/govway:master_standalone at: /usr/local/tomcat/webapps/govwayMonitor.war:WEB-INF/lib/nimbus-jose-jwt-9.37.3.jar", "moduleName" : "", "origin" : "grype", "originName" : "Grype Security Scanner", "packageName" : "-", "reference" : "1267", "severity" : "NORMAL", "toString" : "nimbus-jose-jwt-9.37.3.jar(1,0): GHSA-xwmg-2g98-w7v9-nimbus-jose-jwt: : GHSA-xwmg-2g98-w7v9-nimbus-jose-jwt: JavaMatcherExactDirectMatch\u000a\u000aGHSA-xwmg-2g98-w7v9 medium vulnerability for nimbus-jose-jwt package\u000a\u000aFor additional help see: **Vulnerability GHSA-xwmg-2g98-w7v9**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium | nimbus-jose-jwt | 9.37.3 | 10.0.2 | java-archive | /usr/local/tomcat/webapps/govway.war:WEB-INF/lib/nimbus-jose-jwt-9.37.3.jar | github:language:java | [GHSA-xwmg-2g98-w7v9](https://github.com/advisories/GHSA-xwmg-2g98-w7v9) |\u000a\u000a\u000aA medium vulnerability in java-archive package: nimbus-jose-jwt, version 9.37.3 was found in image linkitaly/govway:master_standalone at: /usr/local/tomcat/webapps/govwayMonitor.war:WEB-INF/lib/nimbus-jose-jwt-9.37.3.jar", "type" : "GHSA-xwmg-2g98-w7v9-nimbus-jose-jwt" } ], "size" : 3, "toString" : "3 warnings (normal: 3)" }