praseodym
commented
2 years ago As with https://github.com/WISVCH/events/pull/361, I don't think this works
Closed julian9499 closed 2 years ago
praseodym
commented
2 years ago As with https://github.com/WISVCH/events/pull/361, I don't think this works
Fastjur
commented
2 years ago Do we think it will work like this? I wasn't sure if in github.com/WISVCH/events it was fixed like this, but I have updated this PR to add the ext['log4j2.version'] = '2.15.0' line.
Could one of you confirm this and merge if it is the case.
praseodym
commented
2 years ago Yes this should work, but the bigger problem is that the CI/CD is currently broken and the app needs an update to Spring Boot 2 to fix that.
https://spring.io/blog/2021/12/10/log4j2-vulnerability-and-spring-boot