Java Developer Tools — Free Maven/Gradle Audits, Dependency Health & JDK Tracking

Java's ecosystem is managed through Maven (pom.xml) or Gradle (build.gradle). The Maven Central repository hosts 500,000+ artifacts. Java releases a new major version every 6 months, with Long Term Support (LTS) versions every 2 years. ReleaseRun provides free tools for auditing Java dependencies and tracking JDK release status.

Java Dependency Health Checkers

pom.xml Health Checker

The pom.xml Health Checker scans your Maven project's pom.xml for dependencies with known CVEs (via OSS Index and NVD), outdated versions, and artifacts that have been removed from Maven Central. Paste your pom.xml for an instant audit.

build.gradle Health Checker

The build.gradle Health Checker audits Gradle build files for outdated dependencies and known security advisories. Supports both Groovy DSL and Kotlin DSL Gradle configurations.

JDK Release History and LTS Policy

Oracle releases a new Java major version every 6 months. LTS versions (Java 8, 11, 17, 21) receive extended support. Non-LTS versions (9, 10, 12-16, 18-20, 22+) receive only 6 months of updates before EOL.

Current JDK status:

Java 21 LTS (September 2023) — supported until September 2031 (Oracle Premier)
Java 17 LTS (September 2021) — supported until September 2029
Java 11 LTS — Oracle Premier Support ended September 2023; Extended Support until September 2026
Java 8 LTS — Oracle Extended Support until December 2030

Spring Boot and Java Version Requirements

Spring Boot 3.x requires Java 17+. Spring Boot 2.7 (EOL November 2023) was the last version supporting Java 8/11. If you are running Java 11 with Spring Boot 2.x, you need to plan both a JDK upgrade and a Spring Boot upgrade together. The Spring Boot Release History page covers the migration path.

Common Java Security Tools

OWASP Dependency-Check — scans Maven/Gradle projects against NVD for known CVEs; the most widely used Java dependency scanner
Snyk for Java — commercial vulnerability scanner with Maven and Gradle integration
SpotBugs + FindSecBugs — static analysis tools for Java; FindSecBugs plugin adds security rules

All Java Tools on ReleaseRun

pom.xml Health Checker — Maven dependency audit
build.gradle Health Checker — Gradle dependency audit
Spring Boot Release History — LTS schedule and Java version requirements
CVE Dashboard — search Java library CVEs