Upstream has moved to GitHub [1] and the last update was released in 2014 but the security issue is still not fixed [2].
This was a dependency of Jenkins which is now gone. There is a slim chance that this package could be useful again in the future since it's a dependency of some Apache projects (Zeppelin, Atlas, Ranger and Knox). Emmanuel Bourg [1] https://github.com/kohsuke [2] https://github.com/kohsuke/libpam4j/issues/18
