{
  "_class" : "io.jenkins.plugins.analysis.core.restapi.ReportApi",
  "issues" : [
    {
      "addedAt" : 0,
      "authorEmail" : "-",
      "authorName" : "-",
      "baseName" : "commons-lang-2.6.jar",
      "category" : "",
      "columnEnd" : 0,
      "columnStart" : 0,
      "commit" : "-",
      "description" : "",
      "fileName" : "govway//usr/local/tomcat/webapps/govway.war:WEB-INF/lib/commons-lang-2.6.jar",
      "fingerprint" : "FALLBACK-7016d195",
      "lineEnd" : 1,
      "lineStart" : 1,
      "message" : "GHSA-j288-q9x7-2f5v-commons-lang: JavaMatcherExactDirectMatch\u000a\u000aGHSA-j288-q9x7-2f5v medium vulnerability for commons-lang package\u000a\u000aFor additional help see: **Vulnerability GHSA-j288-q9x7-2f5v**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium  | commons-lang  | 2.6  |   | java-archive  | /usr/local/tomcat/webapps/govwayMonitor.war:WEB-INF/lib/commons-lang-2.6.jar  | github:language:java  | [GHSA-j288-q9x7-2f5v](https://github.com/advisories/GHSA-j288-q9x7-2f5v)  |\u000a\u000a\u000aA medium vulnerability in java-archive package: commons-lang, version 2.6 was found in image linkitaly/govway:master at: /usr/local/tomcat/webapps/govway.war:WEB-INF/lib/commons-lang-2.6.jar",
      "moduleName" : "",
      "origin" : "grype",
      "originName" : "Grype Security Scanner",
      "packageName" : "-",
      "reference" : "1382",
      "severity" : "NORMAL",
      "toString" : "commons-lang-2.6.jar(1,0): GHSA-j288-q9x7-2f5v-commons-lang: : GHSA-j288-q9x7-2f5v-commons-lang: JavaMatcherExactDirectMatch\u000a\u000aGHSA-j288-q9x7-2f5v medium vulnerability for commons-lang package\u000a\u000aFor additional help see: **Vulnerability GHSA-j288-q9x7-2f5v**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium  | commons-lang  | 2.6  |   | java-archive  | /usr/local/tomcat/webapps/govwayMonitor.war:WEB-INF/lib/commons-lang-2.6.jar  | github:language:java  | [GHSA-j288-q9x7-2f5v](https://github.com/advisories/GHSA-j288-q9x7-2f5v)  |\u000a\u000a\u000aA medium vulnerability in java-archive package: commons-lang, version 2.6 was found in image linkitaly/govway:master at: /usr/local/tomcat/webapps/govway.war:WEB-INF/lib/commons-lang-2.6.jar",
      "type" : "GHSA-j288-q9x7-2f5v-commons-lang"
    },
    {
      "addedAt" : 0,
      "authorEmail" : "-",
      "authorName" : "-",
      "baseName" : "hazelcast-5.3.8.jar",
      "category" : "",
      "columnEnd" : 0,
      "columnStart" : 0,
      "commit" : "-",
      "description" : "",
      "fileName" : "govway//usr/local/tomcat/webapps/govway.war:WEB-INF/lib/hazelcast-5.3.8.jar",
      "fingerprint" : "FALLBACK-545aefc7",
      "lineEnd" : 1,
      "lineStart" : 1,
      "message" : "GHSA-72hv-8253-57qq-jackson-core: JavaMatcherExactDirectMatch\u000a\u000aGHSA-72hv-8253-57qq high vulnerability for jackson-core package\u000a\u000aFor additional help see: **Vulnerability GHSA-72hv-8253-57qq**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| high  | jackson-core  | 2.15.2  | 2.18.6  | java-archive  | /usr/local/tomcat/webapps/govway.war:WEB-INF/lib/hazelcast-5.3.8.jar  | github:language:java  | [GHSA-72hv-8253-57qq](https://github.com/advisories/GHSA-72hv-8253-57qq)  |\u000a\u000a\u000aA high vulnerability in java-archive package: jackson-core, version 2.15.2 was found in image linkitaly/govway:master at: /usr/local/tomcat/webapps/govway.war:WEB-INF/lib/hazelcast-5.3.8.jar",
      "moduleName" : "",
      "origin" : "grype",
      "originName" : "Grype Security Scanner",
      "packageName" : "-",
      "reference" : "1382",
      "severity" : "HIGH",
      "toString" : "hazelcast-5.3.8.jar(1,0): GHSA-72hv-8253-57qq-jackson-core: : GHSA-72hv-8253-57qq-jackson-core: JavaMatcherExactDirectMatch\u000a\u000aGHSA-72hv-8253-57qq high vulnerability for jackson-core package\u000a\u000aFor additional help see: **Vulnerability GHSA-72hv-8253-57qq**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| high  | jackson-core  | 2.15.2  | 2.18.6  | java-archive  | /usr/local/tomcat/webapps/govway.war:WEB-INF/lib/hazelcast-5.3.8.jar  | github:language:java  | [GHSA-72hv-8253-57qq](https://github.com/advisories/GHSA-72hv-8253-57qq)  |\u000a\u000a\u000aA high vulnerability in java-archive package: jackson-core, version 2.15.2 was found in image linkitaly/govway:master at: /usr/local/tomcat/webapps/govway.war:WEB-INF/lib/hazelcast-5.3.8.jar",
      "type" : "GHSA-72hv-8253-57qq-jackson-core"
    },
    {
      "addedAt" : 0,
      "authorEmail" : "-",
      "authorName" : "-",
      "baseName" : "jackson-core-2.18.3.jar",
      "category" : "",
      "columnEnd" : 0,
      "columnStart" : 0,
      "commit" : "-",
      "description" : "",
      "fileName" : "govway//usr/local/tomcat/webapps/govway.war:WEB-INF/lib/jackson-core-2.18.3.jar",
      "fingerprint" : "FALLBACK-c4d11e7d",
      "lineEnd" : 1,
      "lineStart" : 1,
      "message" : "GHSA-72hv-8253-57qq-jackson-core: JavaMatcherExactDirectMatch\u000a\u000aGHSA-72hv-8253-57qq high vulnerability for jackson-core package\u000a\u000aFor additional help see: **Vulnerability GHSA-72hv-8253-57qq**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| high  | jackson-core  | 2.15.2  | 2.18.6  | java-archive  | /usr/local/tomcat/webapps/govway.war:WEB-INF/lib/hazelcast-5.3.8.jar  | github:language:java  | [GHSA-72hv-8253-57qq](https://github.com/advisories/GHSA-72hv-8253-57qq)  |\u000a\u000a\u000aA high vulnerability in java-archive package: jackson-core, version 2.18.3 was found in image linkitaly/govway:master at: /usr/local/tomcat/webapps/govway.war:WEB-INF/lib/jackson-core-2.18.3.jar",
      "moduleName" : "",
      "origin" : "grype",
      "originName" : "Grype Security Scanner",
      "packageName" : "-",
      "reference" : "1382",
      "severity" : "HIGH",
      "toString" : "jackson-core-2.18.3.jar(1,0): GHSA-72hv-8253-57qq-jackson-core: : GHSA-72hv-8253-57qq-jackson-core: JavaMatcherExactDirectMatch\u000a\u000aGHSA-72hv-8253-57qq high vulnerability for jackson-core package\u000a\u000aFor additional help see: **Vulnerability GHSA-72hv-8253-57qq**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| high  | jackson-core  | 2.15.2  | 2.18.6  | java-archive  | /usr/local/tomcat/webapps/govway.war:WEB-INF/lib/hazelcast-5.3.8.jar  | github:language:java  | [GHSA-72hv-8253-57qq](https://github.com/advisories/GHSA-72hv-8253-57qq)  |\u000a\u000a\u000aA high vulnerability in java-archive package: jackson-core, version 2.18.3 was found in image linkitaly/govway:master at: /usr/local/tomcat/webapps/govway.war:WEB-INF/lib/jackson-core-2.18.3.jar",
      "type" : "GHSA-72hv-8253-57qq-jackson-core"
    }
  ],
  "size" : 3,
  "toString" : "3 warnings (high: 2, normal: 1)"
}