Open dan-tr opened 2 years ago
The pom.xml file shows that java-sparkpost is at Log4J 2.17.0
<dependency> <groupId>org.apache.logging.log4j</groupId> <artifactId>log4j-core</artifactId> <version>2.17.0</version> </dependency>
Can this bumped to Log4J 2.17.1? The new version is the latest to address CVE-2021-44228
The pom.xml file shows that java-sparkpost is at Log4J 2.17.0
Can this bumped to Log4J 2.17.1? The new version is the latest to address CVE-2021-44228