evernat
commented
2 years ago The javamelody monitoring plugin for JIRA/Confluence/Bamboo/Bitbucket is not affected by log4j vulnerabilities, because it does not include log4j.
See the security advisory for javamelody if you need more information: https://groups.google.com/g/javamelody/c/NqQy8rTTC6U
Hi team, I hope you are doing well. On behalf of a customer, I have been tasked with asking if the JavaMelody Monitoring Plugin is affected by the Apache log4j Vulnerability CVE-2021-44228.
If this is the case, we would need to react promptly. Thanks in advance.
Best regards, Christopher