Skip to content

Commit

Permalink
Bump version.log4j from 2.12.4 to 2.21.1
Browse files Browse the repository at this point in the history
Bumps `version.log4j` from 2.12.4 to 2.21.1.

Updates `org.apache.logging.log4j:log4j-core` from 2.12.4 to 2.21.1

Updates `org.apache.logging.log4j:log4j-slf4j-impl` from 2.12.4 to 2.21.1

---
updated-dependencies:
- dependency-name: org.apache.logging.log4j:log4j-core
  dependency-type: direct:production
  update-type: version-update:semver-minor
- dependency-name: org.apache.logging.log4j:log4j-slf4j-impl
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>
  • Loading branch information
dependabot[bot] authored Nov 13, 2023
1 parent 2c82469 commit b9a360c
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion pom.xml
Original file line number Diff line number Diff line change
Expand Up @@ -125,7 +125,7 @@
<!-- this is the last version of log4j that is compatible with Java 7. Due to a known vulnerability
(https://nvd.nist.gov/vuln/detail/CVE-2020-9488#vulnCurrentDescriptionTitle), the SMTP appender is
excluded from the build and not packaged into the agent artifacts -->
<version.log4j>2.12.4</version.log4j>
<version.log4j>2.21.1</version.log4j>
<version.ecs.logging>1.5.0</version.ecs.logging>
<version.spring>5.0.15.RELEASE</version.spring>
<version.jetty-server>9.4.11.v20180605</version.jetty-server>
Expand Down

0 comments on commit b9a360c

Please sign in to comment.