Analyzed
1 day
ago.
based on code collected
1 day
ago.
Project Summary
Tomcat embed core is an embedded Tomcat server consists of a single Java web application along with a full Tomcat server distribution, packaged together and compressed into a single JAR, WAR or ZIP file
In a Nutshell, tomcat-embed-core...
- ...
- ...
-
...
has a well established, mature codebase
maintained by a very large development team
with stable Y-O-Y commits -
...
took an estimated 129 years of effort (COCOMO model)
starting with its first commit in March, 2006
ending with its most recent commit 2 days ago
Quick Reference
https://github.com/apache/tomcat
Project Security
Vulnerabilities per Version ( last 10 releases )
There are no reported vulnerabilities
Project Vulnerability Report
Security Confidence Index
Poor security track-record
Favorable security track-record
Vulnerability Exposure Index
Many reported vulnerabilities
Few reported vulnerabilities
Did You Know...
-
...
65% of companies leverage OSS to speed application development in 2016
-
...
check out hot projects on the Open Hub
-
...
in 2016, 47% of companies did not have formal process in place to track OS code
-
...
you can embed statistics from Open Hub on your site
30 Day SummaryNov 13 2025 — Dec 13 2025
|
12 Month SummaryDec 13 2024 — Dec 13 2025
|
Static Analysis ( Generated by Coverity Scan for Apache Tomcat )
Repository URL: https://github.com/apache/tomcat
Version: 12.0.x\ -\ 97f157af6d750a644a3d1c26e2d6af0d59d7b553
- 2025-12-07
- Last Analyzed
- 250,869
- Lines of Code Analyze
- 0.03
- Defect Density
Defects by status for current build
- 1,333
- Total defects
- 7
- Outstanding
- 861
- Fixed
CWE Top 25 defects
No top 25 CWE defects were found.