search

guardian / flexible-octopus-converter

An AWS Lambda for converting JSON from Octopus into Thrift.
1 stars 0 forks source link

Bump log4j to safe version #19

Closed jonathonherbert closed 2 years ago

jonathonherbert commented 2 years ago

co-authored-with: @andrew-nowak

What does this change?

Bumps log4j to a safe version. It's pulled in transitively by aws-lambda-java-log4j2:1.1.0.

Also adds the dependencyTree plugin, which gives us an easy way of querying for dependencies for this versoin of sbt.

How to test

Run sbt dependencyTree | grep log4j. You should see that any log4j dependencies are > 2.15.x.