Open Hub
Open Hub

 Settings |  Report Duplicate

I Use This!
Activity Not Available
Analyzed about 1 month ago. based on code collected about 1 month ago.

Project Summary

The Apache Tomcat software is an open source implementation of the Java Servlet, JavaServer Pages, Java Expression Language and Java WebSocket technologies.

Tags

apache http http_server java jsp servlet web web_services

In a Nutshell, Apache Tomcat...

Quick Reference

Organization:
Apache Software Foundation
Project Links:

Documentation ( 2 Links )
Download
Forums
Other ( 2 Links )
Code Locations:
https://github.com/apache/tomcat
Similar Projects:
Managers:
Jim Jagielski

Licenses

Apache License 2.0
Permitted

Commercial Use

Modify

Distribute

Place Warranty

Sub-License

Private Use

Use Patent Claims

Forbidden

Hold Liable

Use Trademarks

Required

Include Copyright

State Changes

Include License

Include Notice

These details are provided for information only. No information here is legal advice and should not be used as such.

All Licenses

Project Security

Vulnerabilities per Version ( last 10 releases )

Project Vulnerability Report

Security Confidence Index

Poor security track-record
Favorable security track-record

Vulnerability Exposure Index

Many reported vulnerabilities
Few reported vulnerabilities
About Project Vulnerability Report

Did You Know...

  • ...
    nearly 1 in 3 companies have no process for identifying, tracking, or remediating known open source vulnerabilities
  • ...
    search using multiple tags to find exactly what you need
  • ...
    use of OSS increased in 65% of companies in 2016
  • ...
    learn about Open Hub updates and features on the Open Hub blog
About Project Security

Code

Lines of Code

Activity

Commits per Month

Community

Languages

Java 		82%
XML 		9%
XML Schema 		7%
10 Other 		2%

30 Day Summary

Apr 13 2026 — May 13 2026

12 Month Summary

May 13 2025 — May 13 2026
  • 1021 Commits
    Down -77 (7%) from previous 12 months
  • 39 Contributors
    Up + 12 (44%) from previous 12 months

Most Recent Contributors

Remy Maucherat Mark Thomas
Rainer Jung Coty Sutherland
...ghunath Shelke Dimitris Soumis

Ratings

315 users rate this project:
4.23175
   
4.2/5.0
Click to add your rating
  
Review this Project!
 

Static Analysis ( Generated by Coverity Scan for Apache Tomcat )

Repository URL: https://github.com/apache/tomcat

Version: 12.0.x\ -\ a462fc4e4fcf6294481734f849befe56d71e88e8

2026-05-10
Last Analyzed
251,973
Lines of Code Analyze
0.03
Defect Density

Defects by status for current build

1,341
Total defects
7
Outstanding
869
Fixed

CWE Top 25 defects

ID CWE-Name Number of Defects
79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') 2