1. 2021. Google Online Security Blog: Understanding the Impact of Apache Log4j Vulnerability. https://security.googleblog.com/2021/12/understanding-impact-of-apache-log4j.html 2021. Google Online Security Blog: Understanding the Impact of Apache Log4j Vulnerability. https://security.googleblog.com/2021/12/understanding-impact-of-apache-log4j.html

2. 2021. Maven Pom Descriptor Reference documentation. https://maven.apache.org/ref/3.8.5/maven-model/maven.html 2021. Maven Pom Descriptor Reference documentation. https://maven.apache.org/ref/3.8.5/maven-model/maven.html

3. 2021. OWASP Dependency-Check Project - OWASP. https://owasp.org/www-project-dependency-check/ 2021. OWASP Dependency-Check Project - OWASP. https://owasp.org/www-project-dependency-check/

4. 2021. Software dependencies: How to manage dependencies at scale | Why you should manage open source dependencies. https://snyk.io/series/open-source-security/software-dependencies/#managing-open-source-dependencies 2021. Software dependencies: How to manage dependencies at scale | Why you should manage open source dependencies. https://snyk.io/series/open-source-security/software-dependencies/#managing-open-source-dependencies

5. 2022. Component Analysis OWASP Foundation. https://owasp.org/www-community/Component_Analysis 2022. Component Analysis OWASP Foundation. https://owasp.org/www-community/Component_Analysis