| { |
| "activemq": { |
| "name": "Apache ActiveMQ", |
| "link": "https://activemq.apache.org/security-advisories", |
| "advisory_link": "https://activemq.apache.org/security-advisories", |
| "contact": "security@apache.org" |
| }, |
| "apr": { |
| "name": "Apache Portable Runtime (APR)", |
| "link": "https://apr.apache.org/security_report.html", |
| "advisory_link": null, |
| "contact": "security@apache.org" |
| }, |
| "ambari": { |
| "name": "Apache Ambari", |
| "link": null, |
| "advisory_link": null, |
| "contact": "security@ambari.apache.org" |
| }, |
| "answer": { |
| "name": "Apache Answer", |
| "link": "https://answer.apache.org/community/security-model", |
| "advisory_link": "https://answer.apache.org/community/security/", |
| "contact": "security@apache.org" |
| }, |
| "ant": { |
| "name": "Apache Ant", |
| "link": "https://ant.apache.org/security.html", |
| "advisory_link": null, |
| "contact": "security@apache.org" |
| }, |
| "archiva": { |
| "name": "Apache Archiva", |
| "link": "https://archiva.apache.org/security.html", |
| "advisory_link": "https://archiva.apache.org/security.html", |
| "contact": "security@apache.org" |
| }, |
| "arrow": { |
| "name": "Apache Arrow", |
| "link": "https://arrow.apache.org/docs/dev/format/Security.html", |
| "advisory_link": null, |
| "contact": "security@apache.org" |
| }, |
| "baremaps": { |
| "name": "Apache Baremaps", |
| "link": "https://github.com/apache/incubator-baremaps/blob/main/SECURITY.md", |
| "advisory_link": null, |
| "contact": "security@apache.org" |
| }, |
| "camel": { |
| "name": "Apache Camel", |
| "link": "https://camel.apache.org/security/", |
| "advisory_link": "https://camel.apache.org/security/", |
| "contact": "security@apache.org" |
| }, |
| "carbondata": { |
| "name": "Apache Carbondata", |
| "link": "https://carbondata.apache.org/security.html", |
| "advisory_link": null, |
| "contact": "security@apache.org" |
| }, |
| "cloudstack": { |
| "name": "Apache CloudStack", |
| "link": "https://cloudstack.apache.org/security/", |
| "advisory_link": null, |
| "contact": "security@apache.org" |
| }, |
| "commons": { |
| "name": "Apache Commons", |
| "link": "https://commons.apache.org/security.html", |
| "advisory_link": "https://commons.apache.org/security.html#Known_Security_Vulnerabilities", |
| "contact": "security@commons.apache.org" |
| }, |
| "couchdb": { |
| "name": "Apache CouchDB", |
| "link": null, |
| "advisory_link": null, |
| "contact": "security@couchdb.apache.org" |
| }, |
| "devlake": { |
| "name": "Apache DevLake", |
| "link": "https://devlake.apache.org/docs/v1.0/GettingStarted/Authentication", |
| "advisory_link": null, |
| "contact": "security@apache.org" |
| }, |
| "dolphinscheduler": { |
| "name": "Apache DolphinScheduler", |
| "link": "https://github.com/apache/dolphinscheduler/blob/dev/docs/docs/en/contribute/join/security.md", |
| "advisory_link": null, |
| "contact": "security@dolphinscheduler.apache.org" |
| }, |
| "doris": { |
| "name": "Apache Doris", |
| "link": "https://doris.apache.org/docs/dev/admin-manual/auth/security-overview", |
| "advisory_link": null, |
| "contact": "security@apache.org" |
| }, |
| "druid": { |
| "name": "Apache Druid", |
| "link": "https://druid.apache.org/docs/latest/operations/security-overview.html", |
| "advisory_link": null, |
| "contact": "security@apache.org" |
| }, |
| "dubbo": { |
| "name": "Apache Dubbo", |
| "link": "https://dubbo.apache.org/en/docs/notices/security/", |
| "advisory_link": null, |
| "contact": "security@dubbo.apache.org" |
| }, |
| "echarts": { |
| "name": "Apache ECharts", |
| "link": "https://echarts.apache.org/handbook/en/best-practices/security/#", |
| "advisory_link": null, |
| "contact": "security@apache.org" |
| }, |
| "fineract": { |
| "name": "Apache Fineract", |
| "link": "https://fineract.apache.org/security.html", |
| "advisory_link": "https://fineract.apache.org/security.html", |
| "contact": "security@fineract.apache.org" |
| }, |
| "flink": { |
| "name": "Apache Flink", |
| "link": "https://flink.apache.org/what-is-flink/security/", |
| "advisory_link": "https://flink.apache.org/what-is-flink/security/", |
| "contact": "security@apache.org" |
| }, |
| "geode": { |
| "name": "Apache Geode", |
| "link": "https://geode.apache.org/docs/guide/20/security/security_model.html", |
| "advisory_link": null, |
| "contact": "security@apache.org" |
| }, |
| "geronimo": { |
| "name": "Apache Geronimo", |
| "link": "https://geronimo.apache.org/security-reports.html", |
| "advisory_link": null, |
| "contact": "security@geronimo.apache.org" |
| }, |
| "guacamole": { |
| "name": "Apache Guacamole", |
| "link": "https://guacamole.apache.org/security/", |
| "advisory_link": "https://guacamole.apache.org/security/", |
| "contact": "security@guacamole.apache.org" |
| }, |
| "hadoop": { |
| "name": "Apache Hadoop", |
| "link": "https://hadoop.apache.org/mailing_lists.html", |
| "advisory_link": "https://hadoop.apache.org/cve_list.html", |
| "contact": "security@hadoop.apache.org" |
| }, |
| "hc": { |
| "name": "Apache HttpComponents", |
| "link": "https://hc.apache.org/security.html", |
| "advisory_link": null, |
| "contact": "security@apache.org" |
| }, |
| "hertzbeat": { |
| "name": "Apache Hertzbeat", |
| "link": "https://hertzbeat.apache.org/docs/help/security_model/", |
| "advisory_link": null, |
| "contact": "security@apache.org" |
| }, |
| "hive": { |
| "name": "Apache Hive", |
| "link": "https://hive.apache.org/mailing_lists.html", |
| "advisory_link": null, |
| "contact": "security@hive.apache.org" |
| }, |
| "hop": { |
| "name": "Apache Hop", |
| "link": "https://hop.apache.org/security/", |
| "advisory_link": null, |
| "contact": "security@apache.org" |
| }, |
| "httpd": { |
| "name": "Apache HTTP Server", |
| "link": "https://httpd.apache.org/security_report.html", |
| "advisory_link": "https://httpd.apache.org/security/vulnerabilities_24.html", |
| "contact": "security@httpd.apache.org" |
| }, |
| "hudi": { |
| "name": "Apache Hudi", |
| "link": "https://hudi.apache.org/contribute/security", |
| "advisory_link": null, |
| "contact": "security@apache.org" |
| }, |
| "hugegraph": { |
| "name": "Apache HugeGraph", |
| "link": "https://hugegraph.apache.org/docs/guides/security", |
| "advisory_link": "https://hugegraph.apache.org/docs/guides/security", |
| "contact": "security@hugegraph.apache.org" |
| }, |
| "ignite": { |
| "name": "Apache Ignite", |
| "link": "https://ignite.apache.org/docs/latest/security/security-model", |
| "advisory_link": null, |
| "contact": "security@ignite.apache.org" |
| }, |
| "inlong": { |
| "name": "Apache InLong", |
| "link": "https://inlong.apache.org/docs/next/security/", |
| "advisory_link": null, |
| "contact": "security@apache.org" |
| }, |
| "jackrabbit": { |
| "name": "Apache Jackrabbit", |
| "link": "https://jackrabbit.apache.org/jcr/security-reports.html", |
| "advisory_link": "https://jackrabbit.apache.org/jcr/security-reports.html", |
| "contact": "security@jackrabbit.apache.org" |
| }, |
| "jmeter": { |
| "name": "Apache JMeter", |
| "link": "https://jmeter.apache.org/security.html", |
| "advisory_link": null, |
| "contact": "security@apache.org" |
| }, |
| "jspwiki": { |
| "name": "Apache JSPWiki", |
| "link": "https://jspwiki-wiki.apache.org/Wiki.jsp?page=Security", |
| "advisory_link": "https://jspwiki-wiki.apache.org/Wiki.jsp?page=CVE", |
| "contact": "security@apache.org" |
| }, |
| "johnzon": { |
| "name": "Apache Johnzon", |
| "link": "https://johnzon.apache.org/security.html", |
| "advisory_link": null, |
| "contact": "security@apache.org" |
| }, |
| "kafka": { |
| "name": "Apache Kafka", |
| "link": "https://kafka.apache.org/project-security.html", |
| "advisory_link": "https://kafka.apache.org/cve-list.html", |
| "contact": "security@kafka.apache.org", |
| "dependency_advisory_triage": "https://github.com/apache/kafka/blob/trunk/gradle/resources/dependencycheck-suppressions.xml" |
| }, |
| "libcloud": { |
| "name": "Apache Libcloud", |
| "link": "https://libcloud.apache.org/security.html", |
| "advisory_link": null, |
| "contact": "security@libcloud.apache.org" |
| }, |
| "logging": { |
| "name": "Apache Logging", |
| "link": "https://logging.apache.org/security.html", |
| "advisory_link": "https://logging.apache.org/security.html", |
| "contact": "security@logging.apache.org" |
| }, |
| "lucene": { |
| "name": "Apache Lucene", |
| "link": null, |
| "advisory_link": null, |
| "contact": "security@lucene.apache.org" |
| }, |
| "lucenenet": { |
| "name": "Apache Lucene.NET", |
| "link": null, |
| "advisory_link": null, |
| "contact": "security@apache.org" |
| }, |
| "maven": { |
| "name": "Apache Maven", |
| "link": "https://maven.apache.org/security.html", |
| "advisory_link": null, |
| "contact": "security@apache.org" |
| }, |
| "metron": { |
| "name": "Apache Metron", |
| "link": null, |
| "advisory_link": null, |
| "contact": "security@metron.apache.org" |
| }, |
| "nifi": { |
| "name": "Apache NiFi", |
| "link": "https://nifi.apache.org/documentation/security/", |
| "advisory_link": "https://nifi.apache.org/documentation/security/", |
| "contact": "security@nifi.apache.org" |
| }, |
| "nuttx": { |
| "name": "Apache NuttX", |
| "link": "https://nuttx.apache.org/docs/latest/security.html", |
| "advisory_link": "https://nuttx.apache.org/docs/latest/security.html#nuttx-cves", |
| "contact": "security@nuttx.apache.org" |
| }, |
| "ofbiz": { |
| "name": "Apache OFBiz", |
| "link": "https://ofbiz.apache.org/security.html", |
| "advisory_link": "https://ofbiz.apache.org/security.html", |
| "contact": "security@ofbiz.apache.org" |
| }, |
| "openmeetings": { |
| "name": "Apache OpenMeetings", |
| "link": "https://openmeetings.apache.org/security.html", |
| "advisory_link": null, |
| "contact": "security@openmeetings.apache.org" |
| }, |
| "openoffice": { |
| "name": "Apache OpenOffice", |
| "link": "https://openoffice.apache.org/security", |
| "advisory_link": "https://www.openoffice.org/security/bulletin.html", |
| "contact": "security@openoffice.apache.org" |
| }, |
| "orc": { |
| "name": "Apache ORC", |
| "link": "https://orc.apache.org/security/", |
| "advisory_link": null, |
| "contact": "security@apache.org" |
| }, |
| "pdfbox": { |
| "name": "Apache PDFBox", |
| "link": "https://pdfbox.apache.org/security.html", |
| "advisory_link": null, |
| "contact": "security@apache.org" |
| }, |
| "poi": { |
| "name": "Apache POI", |
| "link": "https://poi.apache.org/security.html", |
| "advisory_link": null, |
| "contact": "security@apache.org" |
| }, |
| "pulsar": { |
| "name": "Apache Pulsar", |
| "link": "https://github.com/apache/pulsar/security/policy", |
| "advisory_link": null, |
| "contact": "security@apache.org" |
| }, |
| "rocketmq": { |
| "name": "Apache RocketMQ", |
| "link": "https://rocketmq.apache.org/docs/security/01security/", |
| "advisory_link": null, |
| "contact": "security@apache.org" |
| }, |
| "santuario": { |
| "name": "Apache Santuario", |
| "link": "https://santuario.apache.org/secadv.html", |
| "advisory_link": null, |
| "contact": "security@apache.org" |
| }, |
| "seata": { |
| "name": "Apache Seata", |
| "link": "https://seata.apache.org/docs/next/security/secret-key", |
| "advisory_link": null, |
| "contact": "security@apache.org" |
| }, |
| "seatunnel": { |
| "name": "Apache SeaTunnel", |
| "link": "https://seatunnel.apache.org/security", |
| "advisory_link": null, |
| "contact": "security@apache.org" |
| }, |
| "sentry": { |
| "name": "Apache Sentry", |
| "link": "https://cwiki.apache.org/confluence/display/SENTRY/Vulnerabilities+found+in+Apache+Sentry", |
| "advisory_link": null, |
| "contact": "security@sentry.apache.org" |
| }, |
| "shardingsphere": { |
| "name": "Apache ShardingSphere", |
| "link": "https://shardingsphere.apache.org/community/en/security/", |
| "advisory_link": null, |
| "contact": "security@apache.org" |
| }, |
| "shiro": { |
| "name": "Apache Shiro", |
| "link": "https://shiro.apache.org/security-reports.html", |
| "advisory_link": null, |
| "contact": "security@shiro.apache.org" |
| }, |
| "singa": { |
| "name": "Apache SINGA", |
| "link": "https://singa.apache.org/security.html", |
| "advisory_link": null, |
| "contact": "security@singa.apache.org" |
| }, |
| "skywalking": { |
| "name": "Apache SkyWalking", |
| "link": "https://skywalking.apache.org/docs/main/next/en/security/readme/", |
| "advisory_link": null, |
| "contact": "security@apache.org" |
| }, |
| "sling": { |
| "name": "Apache Sling", |
| "link": "https://sling.apache.org/project-information/security.html", |
| "advisory_link": null, |
| "contact": "security@sling.apache.org" |
| }, |
| "solr": { |
| "name": "Apache Solr", |
| "link": "https://cwiki.apache.org/confluence/display/SOLR/SolrSecurity", |
| "advisory_link": "https://solr.apache.org/security.html#recent-cve-reports-for-apache-solr", |
| "contact": "security@solr.apache.org", |
| "dependency_advisory_triage": "https://solr.apache.org/solr.vex.json" |
| }, |
| "spamassassin": { |
| "name": "Apache SpamAssassin", |
| "link": "https://cwiki.apache.org/confluence/display/SPAMASSASSIN/SecurityPolicy", |
| "advisory_link": null, |
| "contact": "security@spamassassin.apache.org" |
| }, |
| "spark": { |
| "name": "Apache Spark", |
| "link": "https://spark.apache.org/security.html", |
| "advisory_link": "https://spark.apache.org/security.html", |
| "contact": "security@spark.apache.org" |
| }, |
| "stormcrawler": { |
| "name": "Apache StormCrawler", |
| "link": "https://stormcrawler.apache.org/security/", |
| "advisory_link": "https://stormcrawler.apache.org/security/", |
| "contact": "security@apache.org" |
| }, |
| "streampark": { |
| "name": "Apache StreamPark", |
| "link": "https://streampark.apache.org/community/security/", |
| "advisory_link": null, |
| "contact": "security@apache.org" |
| }, |
| "struts": { |
| "name": "Apache Struts", |
| "link": "https://struts.apache.org/security.html", |
| "advisory_link": "https://cwiki.apache.org/confluence/display/WW/Security+Bulletins", |
| "contact": "security@struts.apache.org" |
| }, |
| "subversion": { |
| "name": "Apache Subversion", |
| "link": "https://subversion.apache.org/security/", |
| "advisory_link": "https://subversion.apache.org/security/", |
| "contact": "security@subversion.apache.org" |
| }, |
| "superset": { |
| "name": "Apache Superset", |
| "link": "https://superset.apache.org/docs/security/", |
| "advisory_link": "https://superset.apache.org/docs/security/cves" |
| }, |
| "tika": { |
| "name": "Apache Tika", |
| "link": "https://tika.apache.org/security-model.html", |
| "advisory_link": "https://tika.apache.org/security.html", |
| "contact": "security@apache.org" |
| }, |
| "tomcat": { |
| "name": "Apache Tomcat", |
| "link": "https://tomcat.apache.org/security.html", |
| "advisory_link": "https://tomcat.apache.org/security.html", |
| "contact": "security@tomcat.apache.org" |
| }, |
| "trafficcontrol": { |
| "name": "Apache Traffic Control", |
| "link": "https://trafficcontrol.apache.org/security/index.html", |
| "advisory_link": null, |
| "contact": "security@trafficcontrol.apache.org" |
| }, |
| "trafficserver": { |
| "name": "Apache Traffic Server", |
| "link": "https://github.com/apache/trafficserver/security/policy", |
| "advisory_link": null, |
| "contact": "security@trafficserver.apache.org" |
| }, |
| "trafodion": { |
| "name": "Apache Trafodion", |
| "link": null, |
| "advisory_link": null, |
| "contact": "security@trafodion.apache.org" |
| }, |
| "tvm": { |
| "name": "Apache TVM", |
| "link": "https://tvm.apache.org/docs/reference/security.html", |
| "advisory_link": null, |
| "contact": "security@apache.org" |
| }, |
| "velocity": { |
| "name": "Apache Velocity", |
| "link": "https://velocity.apache.org/#security-model", |
| "advisory_link": null, |
| "contact": "security@apache.org" |
| }, |
| "xmlgraphics": { |
| "name": "Apache XML Graphics", |
| "link": "https://xmlgraphics.apache.org/security.html", |
| "advisory_link": null, |
| "contact": "security@apache.org" |
| }, |
| "zeppelin": { |
| "name": "Apache Zeppelin", |
| "link": "https://zeppelin.apache.org/security.html", |
| "advisory_link": null, |
| "contact": "security@zeppelin.apache.org" |
| }, |
| "zookeeper": { |
| "name": "Apache ZooKeeper", |
| "link": "https://zookeeper.apache.org/security.html", |
| "advisory_link": null, |
| "contact": "security@zookeeper.apache.org" |
| } |
| } |
