Log4j Security Vulnerability CVE-2021-44832

mulesoft-catalyst / mule-sonarqube-plugin

The Mule SonarQube Plugin provides the capability to do code inspecting and taking project metrics from a mule project using SonarQube.

The Unlicense

46 stars 68 forks source link

Log4j Security Vulnerability CVE-2021-44832 #43

Closed chungss closed 2 years ago

chungss commented 2 years ago

Apache have recommended that the Log4j version be updated to at least 2.17.1 (https://logging.apache.org/log4j/2.x/). The latest plugin version 1.0.5 only updates to 2.17.0. Can the plugin be updated to fix the vulnerability?

fperezpa commented 2 years ago

PR merged with the fix. Thanks @Stift