{
  "_class" : "io.jenkins.plugins.analysis.core.restapi.ReportApi",
  "issues" : [
    {
      "addedAt" : 0,
      "authorEmail" : "-",
      "authorName" : "-",
      "baseName" : "log4j-core-2.25.3.jar",
      "category" : "",
      "columnEnd" : 0,
      "columnStart" : 0,
      "commit" : "-",
      "description" : "",
      "fileName" : "govway//usr/local/tomcat/webapps/govwayAPIMonitor.war:WEB-INF/lib/log4j-core-2.25.3.jar",
      "fingerprint" : "FALLBACK-ef08f755",
      "lineEnd" : 1,
      "lineStart" : 1,
      "message" : "GHSA-3pxv-7cmr-fjr4-log4j-core: JavaMatcherExactDirectMatch\u000a\u000aGHSA-3pxv-7cmr-fjr4 medium vulnerability for log4j-core package\u000a\u000aFor additional help see: **Vulnerability GHSA-3pxv-7cmr-fjr4**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium  | log4j-core  | 2.25.3  | 2.25.4  | java-archive  | /usr/local/tomcat/webapps/govwayAPIConfig.war:WEB-INF/lib/log4j-core-2.25.3.jar  | github:language:java  | [GHSA-3pxv-7cmr-fjr4](https://github.com/advisories/GHSA-3pxv-7cmr-fjr4)  |\u000a\u000a\u000aA medium vulnerability in java-archive package: log4j-core, version 2.25.3 was found in image linkitaly/govway:master at: /usr/local/tomcat/webapps/govwayAPIMonitor.war:WEB-INF/lib/log4j-core-2.25.3.jar",
      "moduleName" : "",
      "origin" : "grype",
      "originName" : "Grype Security Scanner",
      "packageName" : "-",
      "reference" : "1398",
      "severity" : "NORMAL",
      "toString" : "log4j-core-2.25.3.jar(1,0): GHSA-3pxv-7cmr-fjr4-log4j-core: : GHSA-3pxv-7cmr-fjr4-log4j-core: JavaMatcherExactDirectMatch\u000a\u000aGHSA-3pxv-7cmr-fjr4 medium vulnerability for log4j-core package\u000a\u000aFor additional help see: **Vulnerability GHSA-3pxv-7cmr-fjr4**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium  | log4j-core  | 2.25.3  | 2.25.4  | java-archive  | /usr/local/tomcat/webapps/govwayAPIConfig.war:WEB-INF/lib/log4j-core-2.25.3.jar  | github:language:java  | [GHSA-3pxv-7cmr-fjr4](https://github.com/advisories/GHSA-3pxv-7cmr-fjr4)  |\u000a\u000a\u000aA medium vulnerability in java-archive package: log4j-core, version 2.25.3 was found in image linkitaly/govway:master at: /usr/local/tomcat/webapps/govwayAPIMonitor.war:WEB-INF/lib/log4j-core-2.25.3.jar",
      "type" : "GHSA-3pxv-7cmr-fjr4-log4j-core"
    }
  ],
  "size" : 1,
  "toString" : "1 warning (normal: 1)"
}