{ "bomFormat" : "CycloneDX", "specVersion" : "1.4", "serialNumber" : "urn:uuid:2329429f-e310-4369-b6dd-0685451fd43a", "version" : 1, "metadata" : { "timestamp" : "2024-07-02T05:36:45Z", "tools" : [ { "vendor" : "OWASP Foundation", "name" : "CycloneDX Maven plugin", "version" : "2.7.9", "hashes" : [ { "alg" : "MD5", "content" : "8e595cdb67f17e4b41e046456970591d" }, { "alg" : "SHA-1", "content" : "69e8ca804520d09ce4657e7235bae84d01cbffa6" }, { "alg" : "SHA-256", "content" : "aa09074fe5aa403c008cd4fc7ef8ce41cd244489337f16b3e91a3914158a4db8" }, { "alg" : "SHA-512", "content" : "1488a8112da8e675813d7585f57c5efb178aed32901118186ee12d0e4ae3d19c53774c7f860bf70d17d70f050119b69443a2637cf641675b4b5d9cdcdd69b89b" }, { "alg" : "SHA-384", "content" : "b097295dfbf10887abc6eec58d4d0822cde5a73d1f5c1cf183a57bf569016ad5ced9d34efae3e574d82bb62837540c6c" } ] } ], "component" : { "publisher" : "Confluent, Inc.", "group" : "io.confluent", "name" : "kafka-connect-storage-common-hadoop-shaded-guava", "version" : "11.1.10", "description" : "Kafka Connect common packages for connectors transferring data between Kafka and distributed filesystems or cloud storage.", "licenses" : [ { "license" : { "name" : "Confluent Community License", "url" : "http://www.confluent.io/confluent-community-license" } } ], "purl" : "pkg:maven/io.confluent/kafka-connect-storage-common-hadoop-shaded-guava@11.1.10?type=jar", "externalReferences" : [ { "type" : "website", "url" : "http://confluent.io/kafka-connect-storage-common-hadoop-shaded-guava" }, { "type" : "distribution", "url" : "s3://dev-confluent-packages-maven-654654529379-us-west-2/connnect-releases/3f296e01-b48e-43fd-aed3-24c532a098eb/maven" }, { "type" : "vcs", "url" : "https://github.com/confluentinc/kafka-connect-storage-common/kafka-connect-storage-common-hadoop-shaded-guava" } ], "type" : "library", "bom-ref" : "pkg:maven/io.confluent/kafka-connect-storage-common-hadoop-shaded-guava@11.1.10?type=jar" }, "properties" : [ { "name" : "maven.goal", "value" : "makeBom" }, { "name" : "maven.scopes", "value" : "compile,provided,runtime,system,test" } ] }, "components" : [ { "group" : "com.google.guava", "name" : "guava", "version" : "32.0.1-jre", "description" : "Guava is a suite of core and expanded libraries that include utility classes, Google's collections, I/O classes, and much more.", "scope" : "required", "hashes" : [ { "alg" : "MD5", "content" : "6951895e804b36322214c95917e598d4" }, { "alg" : "SHA-1", "content" : "6e5d51a72d142f2d40a57dfb897188b36a95b489" }, { "alg" : "SHA-256", "content" : "bd7fa227591fb8509677d0d1122cf95158f3b8a9f45653f58281d879f6dc48c5" }, { "alg" : "SHA-512", "content" : "5dbe7a697511cfbe44f3ffb954e32e997677ecc61f03bb7bb374f1b8fa4a931a95cd9d1f5288eb5d42e2aa380e3241b35059786c07edc48e5aa67c30cddad8a5" }, { "alg" : "SHA-384", "content" : "abad4556e073fb38062c636b6599ceed992302c7d98150e3842d32ce92f6aac7d630633c56efa581523d591361fcf898" } ], "licenses" : [ { "license" : { "id" : "Apache-2.0" } } ], "purl" : "pkg:maven/com.google.guava/guava@32.0.1-jre?type=jar", "externalReferences" : [ { "type" : "website", "url" : "https://github.com/google/guava" }, { "type" : "build-system", "url" : "https://github.com/google/guava/actions" }, { "type" : "distribution", "url" : "https://oss.sonatype.org/service/local/staging/deploy/maven2/" }, { "type" : "issue-tracker", "url" : "https://github.com/google/guava/issues" }, { "type" : "vcs", "url" : "https://github.com/google/guava/guava" } ], "type" : "library", "bom-ref" : "pkg:maven/com.google.guava/guava@32.0.1-jre?type=jar" }, { "group" : "com.google.guava", "name" : "failureaccess", "version" : "1.0.1", "description" : "Contains com.google.common.util.concurrent.internal.InternalFutureFailureAccess and InternalFutures. Most users will never need to use this artifact. Its classes is conceptually a part of Guava, but they're in this separate artifact so that Android libraries can use them without pulling in all of Guava (just as they can use ListenableFuture by depending on the listenablefuture artifact).", "scope" : "required", "hashes" : [ { "alg" : "MD5", "content" : "091883993ef5bfa91da01dcc8fc52236" }, { "alg" : "SHA-1", "content" : "1dcf1de382a0bf95a3d8b0849546c88bac1292c9" }, { "alg" : "SHA-256", "content" : "a171ee4c734dd2da837e4b16be9df4661afab72a41adaf31eb84dfdaf936ca26" }, { "alg" : "SHA-512", "content" : "f8d59b808d6ba617252305b66d5590937da9b2b843d492d06b8d0b1b1f397e39f360d5817707797b979a5bf20bf21987b35333e7a15c44ed7401fea2d2119cae" }, { "alg" : "SHA-384", "content" : "67659dbd9647ec303d7f15128dc9dba19b98fd8d74758ee3b602451e32c855e236ccaafe08edf4bbfa245f981268440f" } ], "licenses" : [ { "license" : { "id" : "Apache-2.0" } } ], "purl" : "pkg:maven/com.google.guava/failureaccess@1.0.1?type=jar", "externalReferences" : [ { "type" : "website", "url" : "https://github.com/google/guava/failureaccess" }, { "type" : "build-system", "url" : "https://travis-ci.org/google/guava" }, { "type" : "distribution", "url" : "https://oss.sonatype.org/service/local/staging/deploy/maven2/" }, { "type" : "issue-tracker", "url" : "https://github.com/google/guava/issues" }, { "type" : "vcs", "url" : "https://github.com/google/guava/failureaccess" } ], "type" : "library", "bom-ref" : "pkg:maven/com.google.guava/failureaccess@1.0.1?type=jar" }, { "group" : "com.google.guava", "name" : "listenablefuture", "version" : "9999.0-empty-to-avoid-conflict-with-guava", "description" : "An empty artifact that Guava depends on to signal that it is providing ListenableFuture -- but is also available in a second \"version\" that contains com.google.common.util.concurrent.ListenableFuture class, without any other Guava classes. The idea is: - If users want only ListenableFuture, they depend on listenablefuture-1.0. - If users want all of Guava, they depend on guava, which, as of Guava 27.0, depends on listenablefuture-9999.0-empty-to-avoid-conflict-with-guava. The 9999.0-... version number is enough for some build systems (notably, Gradle) to select that empty artifact over the \"real\" listenablefuture-1.0 -- avoiding a conflict with the copy of ListenableFuture in guava itself. If users are using an older version of Guava or a build system other than Gradle, they may see class conflicts. If so, they can solve them by manually excluding the listenablefuture artifact or manually forcing their build systems to use 9999.0-....", "scope" : "required", "hashes" : [ { "alg" : "MD5", "content" : "d094c22570d65e132c19cea5d352e381" }, { "alg" : "SHA-1", "content" : "b421526c5f297295adef1c886e5246c39d4ac629" }, { "alg" : "SHA-256", "content" : "b372a037d4230aa57fbeffdef30fd6123f9c0c2db85d0aced00c91b974f33f99" }, { "alg" : "SHA-512", "content" : "c5987a979174cbacae2e78b319f080420cc71bcdbcf7893745731eeb93c23ed13bff8d4599441f373f3a246023d33df03e882de3015ee932a74a774afdd0782f" }, { "alg" : "SHA-384", "content" : "caff9b74079f95832ca7f6029346b34b606051cc8c5a4389fac263511d277ada0c55f28b0d43011055b268c6eb7184d5" } ], "licenses" : [ { "license" : { "id" : "Apache-2.0" } } ], "purl" : "pkg:maven/com.google.guava/listenablefuture@9999.0-empty-to-avoid-conflict-with-guava?type=jar", "externalReferences" : [ { "type" : "website", "url" : "https://github.com/google/guava/listenablefuture" }, { "type" : "build-system", "url" : "https://travis-ci.org/google/guava" }, { "type" : "distribution", "url" : "https://oss.sonatype.org/service/local/staging/deploy/maven2/" }, { "type" : "issue-tracker", "url" : "https://github.com/google/guava/issues" }, { "type" : "vcs", "url" : "https://github.com/google/guava/listenablefuture" } ], "type" : "library", "bom-ref" : "pkg:maven/com.google.guava/listenablefuture@9999.0-empty-to-avoid-conflict-with-guava?type=jar" }, { "group" : "com.google.code.findbugs", "name" : "jsr305", "version" : "3.0.2", "description" : "JSR305 Annotations for Findbugs", "scope" : "required", "hashes" : [ { "alg" : "MD5", "content" : "dd83accb899363c32b07d7a1b2e4ce40" }, { "alg" : "SHA-1", "content" : "25ea2e8b0c338a877313bd4672d3fe056ea78f0d" }, { "alg" : "SHA-256", "content" : "766ad2a0783f2687962c8ad74ceecc38a28b9f72a2d085ee438b7813e928d0c7" }, { "alg" : "SHA-512", "content" : "bb09db62919a50fa5b55906013be6ca4fc7acb2e87455fac5eaf9ede2e41ce8bbafc0e5a385a561264ea4cd71bbbd3ef5a45e02d63277a201d06a0ae1636f804" }, { "alg" : "SHA-384", "content" : "ca0b169d3eb2d0922dc031133a021f861a043bb3e405a88728215fd6ff00fa52fdc7347842dcc2031472e3726164bdc4" } ], "licenses" : [ { "license" : { "id" : "Apache-2.0" } } ], "purl" : "pkg:maven/com.google.code.findbugs/jsr305@3.0.2?type=jar", "externalReferences" : [ { "type" : "website", "url" : "http://findbugs.sourceforge.net/" }, { "type" : "distribution", "url" : "https://oss.sonatype.org/service/local/staging/deploy/maven2/" }, { "type" : "vcs", "url" : "https://code.google.com/p/jsr-305/" } ], "type" : "library", "bom-ref" : "pkg:maven/com.google.code.findbugs/jsr305@3.0.2?type=jar" }, { "group" : "org.checkerframework", "name" : "checker-qual", "version" : "3.33.0", "description" : "checker-qual contains annotations (type qualifiers) that a programmer writes to specify Java code for type-checking by the Checker Framework.", "scope" : "required", "hashes" : [ { "alg" : "MD5", "content" : "fc9418b779d9d57dcd52197006cbdb9b" }, { "alg" : "SHA-1", "content" : "de2b60b62da487644fc11f734e73c8b0b431238f" }, { "alg" : "SHA-256", "content" : "e316255bbfcd9fe50d165314b85abb2b33cb2a66a93c491db648e498a82c2de1" }, { "alg" : "SHA-512", "content" : "049c446677b7b386f3fb501bf65e032bdf2b1b29a3f545848035fff2b683cd275380cf302e30eea641af7f0801f779bcda3d82a71d928e4176f564f796640a64" }, { "alg" : "SHA-384", "content" : "ddf7a0f70421d1ed75e93c0a30434a4862c3905e433223e19861323cf0994e843392b746003040f10a7db6fc960b8aa6" } ], "licenses" : [ { "license" : { "id" : "MIT" } } ], "purl" : "pkg:maven/org.checkerframework/checker-qual@3.33.0?type=jar", "externalReferences" : [ { "type" : "website", "url" : "https://checkerframework.org/" }, { "type" : "vcs", "url" : "https://github.com/typetools/checker-framework.git" } ], "type" : "library", "bom-ref" : "pkg:maven/org.checkerframework/checker-qual@3.33.0?type=jar" }, { "publisher" : "Google LLC", "group" : "com.google.errorprone", "name" : "error_prone_annotations", "version" : "2.18.0", "description" : "Error Prone is a static analysis tool for Java that catches common programming mistakes at compile-time.", "scope" : "required", "hashes" : [ { "alg" : "MD5", "content" : "64145d0e7fee5a69ed7b84cf402de998" }, { "alg" : "SHA-1", "content" : "89b684257096f548fa39a7df9fdaa409d4d4df91" }, { "alg" : "SHA-256", "content" : "9e6814cb71816988a4fd1b07a993a8f21bb7058d522c162b1de849e19bea54ae" }, { "alg" : "SHA-512", "content" : "3cea86be94bb8ae40d21ad4bf7d7f6b2233e89593b7b741ad84c78840cd3837bb5136f52e62fe9ae0953d7b190c46ad3edc102dfa97b4c7ea472a80206bf5db7" }, { "alg" : "SHA-384", "content" : "7622eb33f83f03ab32b710b36c2fe836e24c5318f65fb8c0631a99507ca3ae65c2df8e33b63a5ce853b9cab6d9cb32e5" } ], "licenses" : [ { "license" : { "id" : "Apache-2.0" } } ], "purl" : "pkg:maven/com.google.errorprone/error_prone_annotations@2.18.0?type=jar", "externalReferences" : [ { "type" : "website", "url" : "https://errorprone.info/error_prone_annotations" }, { "type" : "vcs", "url" : "https://github.com/google/error-prone/error_prone_annotations" } ], "type" : "library", "bom-ref" : "pkg:maven/com.google.errorprone/error_prone_annotations@2.18.0?type=jar" }, { "group" : "com.google.j2objc", "name" : "j2objc-annotations", "version" : "2.8", "description" : "A set of annotations that provide additional information to the J2ObjC translator to modify the result of translation.", "scope" : "required", "hashes" : [ { "alg" : "MD5", "content" : "c50af69b704dc91050efb98e0dff66d1" }, { "alg" : "SHA-1", "content" : "c85270e307e7b822f1086b93689124b89768e273" }, { "alg" : "SHA-256", "content" : "f02a95fa1a5e95edb3ed859fd0fb7df709d121a35290eff8b74dce2ab7f4d6ed" }, { "alg" : "SHA-512", "content" : "f8263868a792b41707c9e7fe6fa5650a14cd93fbeafad20efe3772a3058fc933eb59782ec59e6eb9b9c569aa96da80134ae9fdf7547b69c44a97087efddceeff" }, { "alg" : "SHA-384", "content" : "e6087ec31fec8289158496ad2ed6ce8472d5d513808a312e0782cedac3b86c37a62a63c0b5ea3839491d109fe9e148a1" } ], "licenses" : [ { "license" : { "id" : "Apache-2.0" } } ], "purl" : "pkg:maven/com.google.j2objc/j2objc-annotations@2.8?type=jar", "externalReferences" : [ { "type" : "website", "url" : "https://github.com/google/j2objc/" }, { "type" : "distribution", "url" : "https://oss.sonatype.org/service/local/staging/deploy/maven2/" }, { "type" : "vcs", "url" : "http://svn.sonatype.org/spice/trunk/oss/oss-parent-9/j2objc-annotations" } ], "type" : "library", "bom-ref" : "pkg:maven/com.google.j2objc/j2objc-annotations@2.8?type=jar" }, { "group" : "org.apache.kafka", "name" : "connect-api", "version" : "7.2.7-15-ccs", "scope" : "required", "hashes" : [ { "alg" : "MD5", "content" : "5caead813d84124cd4c70652052ebaeb" }, { "alg" : "SHA-1", "content" : "2b17366bca8e17c44c2f744818b13214dbcebe19" }, { "alg" : "SHA-256", "content" : "587cbe64a12fdd10a824dfcb5cef3260b0d25d231ec899799a9d44bfe88b22d3" }, { "alg" : "SHA-512", "content" : "776b8a419e0c55ec0e5f92a6fd71aa8193d8d79dd14ce3df7992532d7ceb1539c997d2b89723133ef6c6a3524c87bc25be002fde95223455071c69f47e935b59" }, { "alg" : "SHA-384", "content" : "f7e5eb60bf3fbe4e3bbc9959bdebe8d67d822ec06b2fbd48cd4e4dcb4f0c7f9b280dba69e1ffeadabc5a21ce1732aa68" } ], "licenses" : [ { "license" : { "id" : "Apache-2.0" } } ], "purl" : "pkg:maven/org.apache.kafka/connect-api@7.2.7-15-ccs?type=jar", "externalReferences" : [ { "type" : "website", "url" : "https://kafka.apache.org" } ], "type" : "library", "bom-ref" : "pkg:maven/org.apache.kafka/connect-api@7.2.7-15-ccs?type=jar" }, { "group" : "org.apache.kafka", "name" : "kafka-clients", "version" : "7.2.7-15-ccs", "scope" : "required", "hashes" : [ { "alg" : "MD5", "content" : "3c2b3e651fcf3cb6f027600dd94763a7" }, { "alg" : "SHA-1", "content" : "db49db196c30557c4fc68321dd7825ba7c7e8822" }, { "alg" : "SHA-256", "content" : "f037ba4f67ad4f8bc5bf4a10f3c7c96f47272f1ecba3d1b86f7ce6bb11314934" }, { "alg" : "SHA-512", "content" : "351d035f95f04f199c52a734a26a9bb398d03d2723145597b4b3af3f8276020ca0d50222d6451f18a99a6911cf2a9809d74392cf7b1544fab56dfb15650a7a91" }, { "alg" : "SHA-384", "content" : "db8571cb98eccd904d49548698f55a48f1cf6d0bc64af346a7dc2162be4ad4eacf042bebc93da84f8f2da9333074c310" } ], "licenses" : [ { "license" : { "id" : "Apache-2.0" } } ], "purl" : "pkg:maven/org.apache.kafka/kafka-clients@7.2.7-15-ccs?type=jar", "externalReferences" : [ { "type" : "website", "url" : "https://kafka.apache.org" } ], "type" : "library", "bom-ref" : "pkg:maven/org.apache.kafka/kafka-clients@7.2.7-15-ccs?type=jar" }, { "publisher" : "com.github.luben", "group" : "com.github.luben", "name" : "zstd-jni", "version" : "1.5.2-1", "description" : "JNI bindings for Zstd native library that provides fast and high compression lossless algorithm for Java and all JVM languages.", "scope" : "required", "hashes" : [ { "alg" : "MD5", "content" : "2909788860e8e3ee29d51b327a43ca24" }, { "alg" : "SHA-1", "content" : "fad786abc1d1b81570e8d9a2fc8a1ef479bc27b6" }, { "alg" : "SHA-256", "content" : "93f7e4cbc907c2650f89f9f0bec94873735a58f1e4b66a54973294e4ec1878e8" }, { "alg" : "SHA-512", "content" : "92174059714b98d4275dca1b057c857766267afe6ae2b27bfdfe50395cb90a3ec973032977a074c5ce516a3769336e6bf63d3bbde95bea165c409f1c990a651d" }, { "alg" : "SHA-384", "content" : "cdc9284a4537fcf83166bae1c4731463d94ad9615f91200c4da6368ddbd769314e87453e9114649c694966e6c77d4883" } ], "licenses" : [ { "license" : { "id" : "BSD-2-Clause" } } ], "purl" : "pkg:maven/com.github.luben/zstd-jni@1.5.2-1?type=jar", "externalReferences" : [ { "type" : "website", "url" : "https://github.com/luben/zstd-jni" } ], "type" : "library", "bom-ref" : "pkg:maven/com.github.luben/zstd-jni@1.5.2-1?type=jar" }, { "group" : "org.lz4", "name" : "lz4-java", "version" : "1.8.0", "description" : "Java ports and bindings of the LZ4 compression algorithm and the xxHash hashing algorithm", "scope" : "required", "hashes" : [ { "alg" : "MD5", "content" : "936a927700aa8fc3b75d21d7571171f6" }, { "alg" : "SHA-1", "content" : "4b986a99445e49ea5fbf5d149c4b63f6ed6c6780" }, { "alg" : "SHA-256", "content" : "d74a3334fb35195009b338a951f918203d6bbca3d1d359033dc33edd1cadc9ef" }, { "alg" : "SHA-512", "content" : "98d59086a6021ca571d9c1d64b715e43044c730e1ac563f514c40cf44302615d30378b6d5cc69990446522de6260dc8e7b303e3990a3139dc326d058dfb6dbd9" }, { "alg" : "SHA-384", "content" : "8e3f2acdbb41a00c4d9cc5f328e63fb626ac7c6c84e1bf9502e2fcc76a591b2b819b2d27b29925ff986b95c297b30e2c" } ], "licenses" : [ { "license" : { "id" : "Apache-2.0" } } ], "purl" : "pkg:maven/org.lz4/lz4-java@1.8.0?type=jar", "externalReferences" : [ { "type" : "website", "url" : "https://github.com/lz4/lz4-java" }, { "type" : "vcs", "url" : "git://github.com/lz4/lz4-java.git" } ], "type" : "library", "bom-ref" : "pkg:maven/org.lz4/lz4-java@1.8.0?type=jar" }, { "publisher" : "xerial.org", "group" : "org.xerial.snappy", "name" : "snappy-java", "version" : "1.1.10.1", "description" : "snappy-java: A fast compression/decompression library", "scope" : "required", "hashes" : [ { "alg" : "MD5", "content" : "8c279ac12dc8872fed3ecafce26a2299" }, { "alg" : "SHA-1", "content" : "4a1e1a22cba39145dfa20f2fef4e1ca38c8e02a1" }, { "alg" : "SHA-256", "content" : "5a6224cb7f946f5a7db9c77e86af6ccd43ba5ae38b1a15bea23113cc83f8fabd" }, { "alg" : "SHA-512", "content" : "e3da2a7f423eaa442960422e95567ca4f06bf8c0be1a6f52c52d715eab76b539bbf244854fb918866fa08c6fac18147f5d30abf79ab210a7a0ed14d23d9c81ae" }, { "alg" : "SHA-384", "content" : "9b7b366fa9dbeacba10db4761b77bb4f6b4ca7503f3f51357b26532ffd0981d6dd955e738468a07b530dcec715ef3a2d" } ], "licenses" : [ { "license" : { "id" : "Apache-2.0", "url" : "https://www.apache.org/licenses/LICENSE-2.0" } } ], "purl" : "pkg:maven/org.xerial.snappy/snappy-java@1.1.10.1?type=jar", "externalReferences" : [ { "type" : "website", "url" : "https://github.com/xerial/snappy-java" }, { "type" : "vcs", "url" : "https://github.com/xerial/snappy-java" } ], "type" : "library", "bom-ref" : "pkg:maven/org.xerial.snappy/snappy-java@1.1.10.1?type=jar" }, { "publisher" : "QOS.ch", "group" : "org.slf4j", "name" : "slf4j-api", "version" : "1.7.36", "description" : "The slf4j API", "scope" : "required", "hashes" : [ { "alg" : "MD5", "content" : "872da51f5de7f3923da4de871d57fd85" }, { "alg" : "SHA-1", "content" : "6c62681a2f655b49963a5983b8b0950a6120ae14" }, { "alg" : "SHA-256", "content" : "d3ef575e3e4979678dc01bf1dcce51021493b4d11fb7f1be8ad982877c16a1c0" }, { "alg" : "SHA-512", "content" : "f9b033fc019a44f98b16048da7e2b59edd4a6a527ba60e358f65ab88e0afae03a9340f1b3e8a543d49fa542290f499c5594259affa1ff3e6e7bf3b428d4c610b" }, { "alg" : "SHA-384", "content" : "2b14ad035877087157e379d3277dcdcd79e58d6bdb147c47d29e377d75ce53ad42cafbf22f5fb7827c7e946ff4876b9a" } ], "licenses" : [ { "license" : { "id" : "MIT", "url" : "https://opensource.org/licenses/MIT" } } ], "purl" : "pkg:maven/org.slf4j/slf4j-api@1.7.36?type=jar", "externalReferences" : [ { "type" : "website", "url" : "http://www.slf4j.org" }, { "type" : "distribution", "url" : "https://oss.sonatype.org/service/local/staging/deploy/maven2/" }, { "type" : "vcs", "url" : "https://github.com/qos-ch/slf4j/slf4j-api" } ], "type" : "library", "bom-ref" : "pkg:maven/org.slf4j/slf4j-api@1.7.36?type=jar" }, { "publisher" : "Eclipse Foundation", "group" : "javax.ws.rs", "name" : "javax.ws.rs-api", "version" : "2.1.1", "description" : "Java API for RESTful Web Services", "scope" : "required", "hashes" : [ { "alg" : "MD5", "content" : "23b81452f9e2076ffefede649975b0d1" }, { "alg" : "SHA-1", "content" : "d3466bc9321fe84f268a1adb3b90373fc14b0eb5" }, { "alg" : "SHA-256", "content" : "2c309eb2c9455ffee9da8518c70a3b6d46be2a269b2e2a101c806a537efe79a4" }, { "alg" : "SHA-512", "content" : "308ffdd33a48f85d27988d702e917c1ac607b758155552ea45a251735ff9e5aed7f7fd4b59b6cb683f8b3adb8ac52d5de928635c3c843291e6d17998ba7d4108" }, { "alg" : "SHA-384", "content" : "437b4947c5a6ed2ba8f894ab4c362a6898ec501e695b3655d350f538768f66580fd71712753c185bf7182fe261c4f9af" } ], "licenses" : [ { "license" : { "id" : "EPL-2.0" } }, { "license" : { "id" : "GPL-2.0-with-classpath-exception" } } ], "purl" : "pkg:maven/javax.ws.rs/javax.ws.rs-api@2.1.1?type=jar", "externalReferences" : [ { "type" : "website", "url" : "https://github.com/eclipse-ee4j/jaxrs-api" }, { "type" : "distribution", "url" : "https://repo.eclipse.org/content/repositories/jax-rs-api-releases/" }, { "type" : "issue-tracker", "url" : "https://github.com/eclipse-ee4j/jaxrs-api/issues" }, { "type" : "mailing-list", "url" : "jaxrs-dev@eclipse.org" }, { "type" : "vcs", "url" : "https://github.com/eclipse-ee4j/jaxrs-api" } ], "type" : "library", "bom-ref" : "pkg:maven/javax.ws.rs/javax.ws.rs-api@2.1.1?type=jar" }, { "group" : "jline", "name" : "jline", "version" : "2.12.1", "description" : "Sonatype helps open source projects to set up Maven repositories on https://oss.sonatype.org/", "scope" : "required", "hashes" : [ { "alg" : "MD5", "content" : "96e04a388ffff0adee6c2ce64612a7a1" }, { "alg" : "SHA-1", "content" : "6995a145068fdc69d291e597531a414311100e72" }, { "alg" : "SHA-256", "content" : "c31f1dcf2cef46f8a6f8aea8ae5c295cc96910e8f8ea4c40291695d64d2e940f" }, { "alg" : "SHA-512", "content" : "4d7e542ec267740e5a5061db0d08e8c262b7ed6580ce4b4039149fefed7acb2ed8756b6b3ff4185ba991c892ed2030bee2281d364db16ea746786e7582a1fabf" }, { "alg" : "SHA-384", "content" : "efa118f546634fab758ce40ebd4bdb2207bd7aa37a186dd89cbf7c7bc9e756ffb4109ad29cb55c67c4b41e47f27cb479" } ], "licenses" : [ { "license" : { "id" : "BSD-4-Clause" } } ], "purl" : "pkg:maven/jline/jline@2.12.1?type=jar", "externalReferences" : [ { "type" : "website", "url" : "http://nexus.sonatype.org/oss-repository-hosting.html/jline" }, { "type" : "distribution", "url" : "https://oss.sonatype.org/service/local/staging/deploy/maven2/" }, { "type" : "issue-tracker", "url" : "https://github.com/jline/jline2/issues" }, { "type" : "mailing-list", "url" : "https://groups.google.com/group/jline-users" }, { "type" : "vcs", "url" : "http://github.com/jline/jline2" } ], "type" : "library", "bom-ref" : "pkg:maven/jline/jline@2.12.1?type=jar" }, { "publisher" : "QOS.CH Sarl (Switzerland)", "group" : "ch.qos.reload4j", "name" : "reload4j", "version" : "1.2.19", "description" : "Reload4j revives EOLed log4j 1.x", "scope" : "required", "hashes" : [ { "alg" : "MD5", "content" : "a1ec204eed23083c10b81d426fe35de1" }, { "alg" : "SHA-1", "content" : "4eae9978468c5e885a6fb44df7e2bbc07a20e6ce" }, { "alg" : "SHA-256", "content" : "fa07aa7adedf2a65eb09007443bb60b51c725b1b5b88e481e00c529ff2d3b5b5" }, { "alg" : "SHA-512", "content" : "7bd73d4180787bffdfac99b9e007e710a1a340e5f5ac7c67515a85d5657cbae5548193c0a9118ed8aa61ed52bbc397961a12d478839ff35baadfc7c3598b0ce9" }, { "alg" : "SHA-384", "content" : "1f50ce898a56bc75c55ddf35a5c8aae781f80e932e8d5925889c7886a427bef593408e7c82e105e72090568bcf77be94" } ], "licenses" : [ { "license" : { "id" : "Apache-2.0" } } ], "purl" : "pkg:maven/ch.qos.reload4j/reload4j@1.2.19?type=jar", "externalReferences" : [ { "type" : "website", "url" : "https://reload4j.qos.ch" }, { "type" : "distribution", "url" : "https://oss.sonatype.org/service/local/staging/deploy/maven2/" }, { "type" : "vcs", "url" : "https://github.com/qos-ch/reload4j" } ], "type" : "library", "bom-ref" : "pkg:maven/ch.qos.reload4j/reload4j@1.2.19?type=jar" }, { "publisher" : "Confluent, Inc.", "group" : "io.confluent", "name" : "common-utils", "version" : "7.2.7-38", "description" : "Common utilities, including metrics and config.", "scope" : "required", "hashes" : [ { "alg" : "MD5", "content" : "115010525faa6631fd59c344dee4620c" }, { "alg" : "SHA-1", "content" : "2ab808048c484934792de92231f768a2d749cd8f" }, { "alg" : "SHA-256", "content" : "8c5362c5f387cbc60cfac7f6694192b7f76c0dfedf37cc4b589295bcfcdcd70c" }, { "alg" : "SHA-512", "content" : "9acd117e232398ca9c7d552777e1f477f7457cf2c1500eb2c8c4948403e46ac6975176e749794a9e8dcaccb01e810207f158193db465148efca39e478cb9fc35" }, { "alg" : "SHA-384", "content" : "d821975e344d71b54f12400a53cdfb952273ad9e0123281752fe336a44c80d5485baa1f337859bfdea3551f9d4f99264" } ], "licenses" : [ { "license" : { "id" : "Apache-2.0", "url" : "https://www.apache.org/licenses/LICENSE-2.0" } } ], "purl" : "pkg:maven/io.confluent/common-utils@7.2.7-38?type=jar", "externalReferences" : [ { "type" : "website", "url" : "https://confluent.io/common-utils" }, { "type" : "vcs", "url" : "https://github.com/confluentinc/common/common-utils" } ], "type" : "library", "bom-ref" : "pkg:maven/io.confluent/common-utils@7.2.7-38?type=jar" }, { "group" : "io.confluent", "name" : "assembly-plugin-boilerplate", "version" : "7.2.7-38", "scope" : "required", "hashes" : [ { "alg" : "MD5", "content" : "e6969b83a2a34e2c323a996767563e68" }, { "alg" : "SHA-1", "content" : "586bf6a5cf3bd5796113f25c82d78e96b3aab094" }, { "alg" : "SHA-256", "content" : "e35aa7ef4c9af462d03f115ecf598303c67d792fba68828ee1f178a951ee284f" }, { "alg" : "SHA-512", "content" : "6ca00d5c159064210746bfb5bfceafcf3189e8e0be27327bbd2c368936585550f1a936b08f8a95eb2b7dcfc55a73c5cd0dc8afd29f478782fe3d7ed881127376" }, { "alg" : "SHA-384", "content" : "ea42c24ebc9bd23f68c7a7646ac9294f6f58940026d5000b9560604cd381fa27ce3305e30d8f7b04113fbb4e938fec53" } ], "purl" : "pkg:maven/io.confluent/assembly-plugin-boilerplate@7.2.7-38?classifier=resources&type=zip", "type" : "library", "bom-ref" : "pkg:maven/io.confluent/assembly-plugin-boilerplate@7.2.7-38?classifier=resources&type=zip" } ], "dependencies" : [ { "ref" : "pkg:maven/io.confluent/kafka-connect-storage-common-hadoop-shaded-guava@11.1.10?type=jar", "dependsOn" : [ "pkg:maven/com.google.guava/guava@32.0.1-jre?type=jar", "pkg:maven/org.apache.kafka/connect-api@7.2.7-15-ccs?type=jar", "pkg:maven/jline/jline@2.12.1?type=jar", "pkg:maven/ch.qos.reload4j/reload4j@1.2.19?type=jar", "pkg:maven/io.confluent/common-utils@7.2.7-38?type=jar", "pkg:maven/io.confluent/assembly-plugin-boilerplate@7.2.7-38?classifier=resources&type=zip" ] }, { "ref" : "pkg:maven/com.google.guava/guava@32.0.1-jre?type=jar", "dependsOn" : [ "pkg:maven/com.google.guava/failureaccess@1.0.1?type=jar", "pkg:maven/com.google.guava/listenablefuture@9999.0-empty-to-avoid-conflict-with-guava?type=jar", "pkg:maven/com.google.code.findbugs/jsr305@3.0.2?type=jar", "pkg:maven/org.checkerframework/checker-qual@3.33.0?type=jar", "pkg:maven/com.google.errorprone/error_prone_annotations@2.18.0?type=jar", "pkg:maven/com.google.j2objc/j2objc-annotations@2.8?type=jar" ] }, { "ref" : "pkg:maven/com.google.guava/failureaccess@1.0.1?type=jar", "dependsOn" : [ ] }, { "ref" : "pkg:maven/com.google.guava/listenablefuture@9999.0-empty-to-avoid-conflict-with-guava?type=jar", "dependsOn" : [ ] }, { "ref" : "pkg:maven/com.google.code.findbugs/jsr305@3.0.2?type=jar", "dependsOn" : [ ] }, { "ref" : "pkg:maven/org.checkerframework/checker-qual@3.33.0?type=jar", "dependsOn" : [ ] }, { "ref" : "pkg:maven/com.google.errorprone/error_prone_annotations@2.18.0?type=jar", "dependsOn" : [ ] }, { "ref" : "pkg:maven/com.google.j2objc/j2objc-annotations@2.8?type=jar", "dependsOn" : [ ] }, { "ref" : "pkg:maven/org.apache.kafka/connect-api@7.2.7-15-ccs?type=jar", "dependsOn" : [ "pkg:maven/org.apache.kafka/kafka-clients@7.2.7-15-ccs?type=jar", "pkg:maven/org.slf4j/slf4j-api@1.7.36?type=jar", "pkg:maven/javax.ws.rs/javax.ws.rs-api@2.1.1?type=jar" ] }, { "ref" : "pkg:maven/org.apache.kafka/kafka-clients@7.2.7-15-ccs?type=jar", "dependsOn" : [ "pkg:maven/com.github.luben/zstd-jni@1.5.2-1?type=jar", "pkg:maven/org.lz4/lz4-java@1.8.0?type=jar", "pkg:maven/org.xerial.snappy/snappy-java@1.1.10.1?type=jar", "pkg:maven/org.slf4j/slf4j-api@1.7.36?type=jar" ] }, { "ref" : "pkg:maven/com.github.luben/zstd-jni@1.5.2-1?type=jar", "dependsOn" : [ ] }, { "ref" : "pkg:maven/org.lz4/lz4-java@1.8.0?type=jar", "dependsOn" : [ ] }, { "ref" : "pkg:maven/org.xerial.snappy/snappy-java@1.1.10.1?type=jar", "dependsOn" : [ ] }, { "ref" : "pkg:maven/org.slf4j/slf4j-api@1.7.36?type=jar", "dependsOn" : [ ] }, { "ref" : "pkg:maven/javax.ws.rs/javax.ws.rs-api@2.1.1?type=jar", "dependsOn" : [ ] }, { "ref" : "pkg:maven/jline/jline@2.12.1?type=jar", "dependsOn" : [ ] }, { "ref" : "pkg:maven/ch.qos.reload4j/reload4j@1.2.19?type=jar", "dependsOn" : [ ] }, { "ref" : "pkg:maven/io.confluent/common-utils@7.2.7-38?type=jar", "dependsOn" : [ "pkg:maven/org.slf4j/slf4j-api@1.7.36?type=jar" ] }, { "ref" : "pkg:maven/io.confluent/assembly-plugin-boilerplate@7.2.7-38?classifier=resources&type=zip", "dependsOn" : [ ] } ] }