Skip to content
This repository was archived by the owner on Jun 26, 2023. It is now read-only.

Update dependency org.apache.logging.log4j:log4j-core to v2.17.1 #1760

Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

Update dependency org.apache.logging.log4j:log4j-core to v2.17.1 #1760

wants to merge 1 commit into from

Conversation

@mend-for-github-com
Copy link

@mend-for-github-com mend-for-github-com bot commented Jan 27, 2022
edited
Loading

This PR contains the following updates:

Package Update Change
org.apache.logging.log4j:log4j-core (source) patch 2.17.0 -> 2.17.1

By merging this PR, the below vulnerabilities will be automatically resolved:

Severity CVSS Score CVE
Medium Medium 6.6 CVE-2021-44832
  • If you want to rebase/retry this PR, click this checkbox.

@mend-for-github-com mend-for-github-com bot added the security fix Security fix generated by WhiteSource label Jan 27, 2022
@welcome
Copy link

welcome bot commented Jan 27, 2022

Thanks for your contribution in opening this pull request! Now you can be rewarded with a CORTX sticker by requesting cortx sticker
In the meantime, please check out the contributing guidelines and explore other ways you can get involved.

@cla-bot
Copy link

cla-bot bot commented Jan 27, 2022

Thanks for your contribution!
The CLA bot has flagged your contribution as not having a Contributor License Agreement
in place. Note that this is not needed in the overwhelming majority of instances and this warning will usually be ignored.
The code reviewers will make a determination and may ask you to sign a CLA or may choose to ignore this warning.
More information about this can be found here.

@cortx-admin
Copy link

cortx-admin commented Jan 27, 2022

Can one of the admins verify this patch?

@mend-for-github-com mend-for-github-com bot force-pushed the whitesource-remediate/org.apache.logging.log4j-log4j-core-2.x branch from 2ac8fce to c532706 Compare January 29, 2022 10:19
@cla-bot
Copy link

cla-bot bot commented Jan 29, 2022

Thanks for your contribution!
The CLA bot has flagged your contribution as not having a Contributor License Agreement
in place. Note that this is not needed in the overwhelming majority of instances and this warning will usually be ignored.
The code reviewers will make a determination and may ask you to sign a CLA or may choose to ignore this warning.
More information about this can be found here.

@stale
Copy link

stale bot commented Feb 3, 2022

This issue/pull request has been marked as needs attention as it has been left pending without new activity for 4 days. Tagging @nileshgovande @bkirunge7 @knrajnambiar76 @t7ko-seagate for appropriate assignment. Sorry for the delay & Thank you for contributing to CORTX. We will get back to you as soon as possible.

@stale stale bot added the needs-attention label Feb 3, 2022
@mend-for-github-com mend-for-github-com bot force-pushed the whitesource-remediate/org.apache.logging.log4j-log4j-core-2.x branch from c532706 to 4f8f435 Compare February 20, 2022 21:08
@cla-bot
Copy link

cla-bot bot commented Feb 20, 2022

Thanks for your contribution!
The CLA bot has flagged your contribution as not having a Contributor License Agreement
in place. Note that this is not needed in the overwhelming majority of instances and this warning will usually be ignored.
The code reviewers will make a determination and may ask you to sign a CLA or may choose to ignore this warning.
More information about this can be found here.

@mend-for-github-com mend-for-github-com bot force-pushed the whitesource-remediate/org.apache.logging.log4j-log4j-core-2.x branch from 4f8f435 to 87152b3 Compare February 24, 2022 17:57
@cla-bot
Copy link

cla-bot bot commented Feb 24, 2022

Thanks for your contribution!
The CLA bot has flagged your contribution as not having a Contributor License Agreement
in place. Note that this is not needed in the overwhelming majority of instances and this warning will usually be ignored.
The code reviewers will make a determination and may ask you to sign a CLA or may choose to ignore this warning.
More information about this can be found here.

Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.

Reviewers

@bkirunge7 bkirunge7 Awaiting requested review from bkirunge7

@nileshgovande nileshgovande Awaiting requested review from nileshgovande

@t7ko-seagate t7ko-seagate Awaiting requested review from t7ko-seagate

At least 2 approving reviews are required to merge this pull request.

Assignees

No one assigned

Labels

needs-attention security fix Security fix generated by WhiteSource

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@cortx-admin