Skip to content

Commit

Permalink
Bump org.apache.logging.log4j dependency set from 2.17.1 to 2.19.0
Browse files Browse the repository at this point in the history
Bumps `org.apache.logging.log4j` dependency set from 2.17.1 to 2.19.0.

Updates `log4j-api` from 2.17.1 to 2.19.0

Updates `log4j-to-slf4j` from 2.17.1 to 2.19.0

---
updated-dependencies:
- dependency-name: org.apache.logging.log4j:log4j-api
  dependency-type: direct:production
  update-type: version-update:semver-minor
- dependency-name: org.apache.logging.log4j:log4j-to-slf4j
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>
  • Loading branch information
dependabot[bot] authored Sep 26, 2022
1 parent 92de55b commit fdf6c85
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion build.gradle
Original file line number Diff line number Diff line change
Expand Up @@ -161,7 +161,7 @@ allprojects {
entry 'tomcat-embed-el'
}
//CVE-2021-44228, CVE-2021-44832, CVE-2021-45046, CVE-2021-45105
dependencySet(group: 'org.apache.logging.log4j', version: '2.17.1') {
dependencySet(group: 'org.apache.logging.log4j', version: '2.19.0') {
entry 'log4j-api'
entry 'log4j-to-slf4j'
}
Expand Down

0 comments on commit fdf6c85

Please sign in to comment.