{
  "_class" : "io.jenkins.plugins.analysis.core.restapi.ReportApi",
  "issues" : [
    {
      "addedAt" : 0,
      "authorEmail" : "-",
      "authorName" : "-",
      "baseName" : "log4j-1.2-api-2.25.3.jar",
      "category" : "",
      "columnEnd" : 0,
      "columnStart" : 0,
      "commit" : "-",
      "description" : "",
      "fileName" : "govway//usr/local/tomcat/webapps/govwayMonitor.war:WEB-INF/lib/log4j-1.2-api-2.25.3.jar",
      "fingerprint" : "FALLBACK-9b8f2042",
      "lineEnd" : 1,
      "lineStart" : 1,
      "message" : "GHSA-h383-gmxw-35v2-log4j-1.2-api: JavaMatcherExactDirectMatch\u000a\u000aGHSA-h383-gmxw-35v2 medium vulnerability for log4j-1.2-api package\u000a\u000aFor additional help see: **Vulnerability GHSA-h383-gmxw-35v2**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium  | log4j-1.2-api  | 2.25.3  | 2.25.4  | java-archive  | /usr/local/tomcat/webapps/govway.war:WEB-INF/lib/log4j-1.2-api-2.25.3.jar  | github:language:java  | [GHSA-h383-gmxw-35v2](https://github.com/advisories/GHSA-h383-gmxw-35v2)  |\u000a\u000a\u000aA medium vulnerability in java-archive package: log4j-1.2-api, version 2.25.3 was found in image linkitaly/govway:master4 at: /usr/local/tomcat/webapps/govwayMonitor.war:WEB-INF/lib/log4j-1.2-api-2.25.3.jar",
      "moduleName" : "",
      "origin" : "grype",
      "originName" : "Grype Security Scanner",
      "packageName" : "-",
      "reference" : "1444",
      "severity" : "NORMAL",
      "toString" : "log4j-1.2-api-2.25.3.jar(1,0): GHSA-h383-gmxw-35v2-log4j-1.2-api: : GHSA-h383-gmxw-35v2-log4j-1.2-api: JavaMatcherExactDirectMatch\u000a\u000aGHSA-h383-gmxw-35v2 medium vulnerability for log4j-1.2-api package\u000a\u000aFor additional help see: **Vulnerability GHSA-h383-gmxw-35v2**\u000a| Severity | Package | Version | Fix Version | Type | Location | Data Namespace | Link |\u000a| --- | --- | --- | --- | --- | --- | --- | --- |\u000a| medium  | log4j-1.2-api  | 2.25.3  | 2.25.4  | java-archive  | /usr/local/tomcat/webapps/govway.war:WEB-INF/lib/log4j-1.2-api-2.25.3.jar  | github:language:java  | [GHSA-h383-gmxw-35v2](https://github.com/advisories/GHSA-h383-gmxw-35v2)  |\u000a\u000a\u000aA medium vulnerability in java-archive package: log4j-1.2-api, version 2.25.3 was found in image linkitaly/govway:master4 at: /usr/local/tomcat/webapps/govwayMonitor.war:WEB-INF/lib/log4j-1.2-api-2.25.3.jar",
      "type" : "GHSA-h383-gmxw-35v2-log4j-1.2-api"
    }
  ],
  "size" : 1,
  "toString" : "1 warning (normal: 1)"
}