我正在嘗試獲取我的 Maven 項(xiàng)目之一的依賴項(xiàng)檢查報(bào)告，但每次運(yùn)行時(shí)：mvn verify依賴關(guān)系報(bào)告中的依賴關(guān)系顯示沒(méi)有易受攻擊的 JAR。我在 POM 中添加了以下插件以生成依賴項(xiàng)檢查報(bào)告： <dependencyManagement>    <dependencies>        <dependency>        <groupId>org.apache.commons</groupId>        <artifactId>commons-email</artifactId>        <version>1.1</version>    </dependency>        <dependency>            <groupId>apache.axis</groupId>            <artifactId>jaxrpc</artifactId>            <version>1.2beta</version>            <scope>provided</scope>        </dependency>       <dependencies><dependencyManagement><build>  <plugins>    <plugin>          <groupId>org.owasp</groupId>          <artifactId>dependency-check-maven</artifactId>          <version>3.3.2</version>          <executions>              <execution>                  <goals>                      <goal>check</goal>                  </goals>              </execution>          </executions>        </plugin>  </plugins>我需要糾正什么或有其他方法嗎？commons-email-1.1.jar有一些漏洞，但仍然沒(méi)有被檢測(cè)到。這些是 Maven 日志：[INFO] Scanning for projects...[INFO] Inspecting build with total of 1 modules...[INFO] Installing Nexus Staging features:[INFO]   ... total of 1 executions of maven-deploy-plugin replaced with nexus-staging-maven-plugin[INFO][INFO][INFO] --- maven-clean-plugin:2.6.1:clean (default-clean) @ version-mana -  --[INFO][INFO] --- maven-source-plugin:2.4:jar-no-fork (attach-sources) @ version-  mana ---[INFO][INFO] --- maven-source-plugin:2.4:test-jar-no-fork (attach-sources) @ version-mana ---[INFO]