From: niamhcore <niamh.core@est.tech>
Date: Wed, 15 Dec 2021 11:44:41 +0000 (+0000)
Subject: Update log4j version due to security vulnerability for CPS Temporal
X-Git-Tag: 1.1.0~12
X-Git-Url: https://gerrit.onap.org/r/gitweb?a=commitdiff_plain;h=4b57fd343378f0cc09f276a7bc0c20a3e4e18fa0;p=cps%2Fcps-temporal.git

Update log4j version due to security vulnerability for CPS Temporal

This change excludes old log4j libraries and includes newer versions
that are not tagged with a security vulnerability.

Issue-ID: CPS-820
Signed-off-by: niamhcore <niamh.core@est.tech>
Change-Id: I209de398df3756d335e7fae4bf6ffb90fbfe334a
---

diff --git a/pom.xml b/pom.xml
index 957be6c..15c62a3 100755
--- a/pom.xml
+++ b/pom.xml
@@ -73,6 +73,16 @@
                 <type>pom</type>
                 <scope>import</scope>
             </dependency>
+            <dependency>
+                <groupId>org.apache.logging.log4j</groupId>
+                <artifactId>log4j-api</artifactId>
+                <version>2.16.0</version>
+            </dependency>
+            <dependency>
+                <groupId>org.apache.logging.log4j</groupId>
+                <artifactId>log4j-to-slf4j</artifactId>
+                <version>2.16.0</version>
+            </dependency>
         </dependencies>
     </dependencyManagement>