summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorniamhcore <niamh.core@est.tech>2021-12-15 13:05:08 +0000
committerNiamh Core <niamh.core@est.tech>2021-12-16 09:40:30 +0000
commitb689ba5b6ee5838371ee385074fdb1766ad66d8c (patch)
tree270fdae930253059e9f776f8c80795025bbb946b
parentd2d4d75689c91ec681e1ecdcbd7bd3b9b27281e6 (diff)
Update log4j version due to security vulnerability for CPS
This change excludes old log4j libraries and includes newer versions that are not tagged with a security vulnerability. Issue-ID: CPS-820 Signed-off-by: niamhcore <niamh.core@est.tech> Change-Id: I4b5a950b7f9abafa3a3fe56200ad577ed01d9934 (cherry picked from commit cf6c2e8ac2076439fd5d3bd64587658e123c0428)
-rwxr-xr-xcps-dependencies/pom.xml10
1 files changed, 10 insertions, 0 deletions
diff --git a/cps-dependencies/pom.xml b/cps-dependencies/pom.xml
index 3c48f595d6..737b9b74ab 100755
--- a/cps-dependencies/pom.xml
+++ b/cps-dependencies/pom.xml
@@ -168,6 +168,16 @@
<version>0.18.0</version>
<scope>test</scope>
</dependency>
+ <dependency>
+ <groupId>org.apache.logging.log4j</groupId>
+ <artifactId>log4j-api</artifactId>
+ <version>2.16.0</version>
+ </dependency>
+ <dependency>
+ <groupId>org.apache.logging.log4j</groupId>
+ <artifactId>log4j-to-slf4j</artifactId>
+ <version>2.16.0</version>
+ </dependency>
</dependencies>
</dependencyManagement>
</project>