Skip to content

Replace dependency org.hibernate:hibernate-core with org.hibernate.orm:hibernate-core #24

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
dev-mend-for-github-com wants to merge 1 commit into
base: master
Choose a base branch
from

Replace dependency org.hibernate:hibernate-core with org.hibernate.or…

bf6b75d
Select commit
Loading
Failed to load commit list.
Open

Replace dependency org.hibernate:hibernate-core with org.hibernate.orm:hibernate-core #24

Replace dependency org.hibernate:hibernate-core with org.hibernate.or…
bf6b75d
Select commit
Loading
Failed to load commit list.
Dev - Mend for GitHub.com / Mend Security Check succeeded Dec 12, 2025 in 2m 41s

Security Report

❗️Scan Warnings: The scan completed with warnings. The integration encountered issues with one or more projects in this repository. Consequently, there may be gaps in the coverage of open-source dependencies used in the repository.

Scan Details Report

maven

/tmp/ws-scm/BenchmarkJava/pom.xml
Step Level Description Details
Preparing the project for scan ⚠Warn One or more of the installations failed [ERROR] Failed to execute goal on project benchmark: Could not resolve dependencies for project org.owasp:benchmark:war:1.2
Resolving the project ⚠Warn Some problems occurred while performing the resolution operation
  • Maven failed to detect the POM for the following dependencies:
    [org.hibernate:hibernate-entitymanager:jar:7.2.0.Final]
  • Fallback is used, returns direct dependencies only

✔️ 👍 You have successfully remediated 28 vulnerabilities in this branch:
Vulnerability Vulnerable Library
CVE-2023-24998 commons-fileupload-1.3.3.jar
CVE-2022-22965 spring-beans-4.3.30.RELEASE.jar
CVE-853521-722872 commons-pool-1.5.4.jar
CVE-2021-4104 log4j-1.2.17.jar
GHSA-7c2q-5qmr-v76q esapi-2.3.0.0.jar
CVE-2024-38820 spring-core-4.3.30.RELEASE.jar
CVE-2023-26464 log4j-1.2.17.jar
CVE-2022-22970 spring-core-4.3.30.RELEASE.jar
CVE-2022-22968 spring-context-4.3.30.RELEASE.jar
CVE-2024-38828 spring-core-4.3.30.RELEASE.jar
CVE-2020-9488 log4j-1.2.17.jar
CVE-2018-1000632 dom4j-1.6.1.jar
CVE-2018-1257 spring-core-4.3.30.RELEASE.jar
CVE-2020-9493 log4j-1.2.17.jar
CVE-2023-20861 spring-expression-4.3.30.RELEASE.jar
CVE-2024-52046 mina-core-2.0.0-RC1.jar
CVE-2021-29425 commons-io-2.6.jar
CVE-2019-0231 mina-core-2.0.0-RC1.jar
CVE-2018-1271 spring-core-4.3.30.RELEASE.jar
CVE-2023-20863 spring-expression-4.3.30.RELEASE.jar
CVE-2019-14900 hibernate-core-3.6.10.Final.jar
CVE-967109-690347 dom4j-1.6.1.jar
CVE-2025-48734 commons-beanutils-1.9.4.jar
GHSA-r68h-jhhj-9jvm esapi-2.3.0.0.jar
CVE-2020-25638 hibernate-core-3.6.10.Final.jar
CVE-106848-507795 commons-io-2.6.jar
CVE-2019-17571 log4j-1.2.17.jar
WS-2014-0034 commons-fileupload-1.3.3.jar

Base branch total remaining vulnerabilities: 57
Base branch commit: 1fd00a770baafe0512befd8f750adc4c60b578ca


Total libraries scanned: 37

Scan token: 497ef28e8872472d85754aa3746e6fd9

View more details on Dev - Mend for GitHub.com