m

maven-lockfile

This plugin is a state-of-the-art solution that can be used to validate the integrity of a maven repository. It does this by generating a lock file that contains the checksums of all the artifacts in the repository. The lock file can then be used to validate the integrity of the repository. This guards the supply chain against malicious actors that might tamper with the artifacts in the repository.
https://github.com/chains-project/maven-lockfile
checksums tamper against generating used repository supply guards that malicious integrity file solution does lock state validate artifacts chain maven might this then actors with contains plugin
文件下载
文件名 操作
maven-lockfile-5.1.0.jar 下载
maven-lockfile-5.1.0.pom 下载
maven-lockfile-5.1.0-sources.jar 下载
Apache Maven 
<dependency>
  <groupId>io.github.chains-project</groupId>
  <artifactId>maven-lockfile</artifactId>
  <version>5.1.0</version>
  <type>maven-plugin</type>
</dependency>
Gradle Groovy 
implementation 'io.github.chains-project:maven-lockfile:5.1.0'
Gradle Kotlin 
implementation("io.github.chains-project:maven-lockfile:5.1.0")
Scala SBT 
libraryDependencies += "io.github.chains-project" % "maven-lockfile" % "5.1.0"
Groovy Grape 
@Grapes(
  @Grab(group='io.github.chains-project', module='maven-lockfile', version='5.1.0')
)
Apache Ivy 
<dependency org="io.github.chains-project" name="maven-lockfile" rev="5.1.0" />
Leiningen 
[io.github.chains-project/maven-lockfile "5.1.0"]
Apache Buildr 
'io.github.chains-project:maven-lockfile:jar:5.1.0'
本项目依赖 
<parent>
  <groupId>io.github.chains-project</groupId>
  <artifactId>maven-lockfile-parent</artifactId>
  <version>5.1.0</version>
</parent>

compile

|-- com.google.code.gson:gson:2.10.1

|-- org.apache.maven.resolver:maven-resolver-api:1.9.20

|-- org.slf4j:log4j-over-slf4j:2.0.13

|-- org.apache.logging.log4j:log4j-core:2.23.1

|-- com.google.guava:guava:33.1.0-jre

|-- org.apache.maven.shared:maven-dependency-tree:3.2.1

|-- org.apache.maven.shared:maven-artifact-transfer:0.13.1

provided

|-- org.apache.maven:maven-plugin-api:3.9.6

|-- org.apache.maven.plugin-tools:maven-plugin-annotations:3.12.0

|-- org.apache.maven:maven-core:3.9.6

|-- org.apache.maven:maven-model:3.9.6

|-- org.apache.maven:maven-artifact:3.9.6

test

|-- org.junit.jupiter:junit-jupiter-api:5.10.2

|-- org.apache.maven.plugin-testing:maven-plugin-testing-harness:3.3.0

|-- org.apache.maven:maven-compat:3.9.6

|-- org.junit.jupiter:junit-jupiter-engine:5.10.2

|-- com.soebes.itf.jupiter.extension:itf-jupiter-extension:0.13.1

|-- com.soebes.itf.jupiter.extension:itf-assertj:0.13.1

|-- org.instancio:instancio-junit:4.5.1

|-- commons-io:commons-io:2.16.1