Code Review / clamp.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | review | tree
raw | patch | inline | side by side (parent: c405a83)
log4j security issue 65/104165/1
authorJulienBe <jb379x@att.com>
Mon, 23 Mar 2020 16:37:33 +0000 (17:37 +0100)
committerJulienBe <jb379x@att.com>
Mon, 23 Mar 2020 16:41:05 +0000 (17:41 +0100)
aaf-cadi-aaf comes with a 1.2.17 log4j flagged by nexusiq as a security issue

Issue-ID: CLAMP-789

Signed-off-by: JulienBe <jb379x@att.com>
Change-Id: I99cd29941c12c6d868db90c4f46395216afc57b3

pom.xml patch | blob | history

diff --git a/pom.xml b/pom.xml
index 633109b..c82ddc9 100644 (file)
--- a/pom.xml
+++ b/pom.xml
@@ -428,6 +428,10 @@
                                        <groupId>javax.servlet</groupId>
                                        <artifactId>servlet-api</artifactId>
                                </exclusion>
+                               <exclusion>
+                                       <groupId>log4j</groupId>
+                                       <artifactId>log4j</artifactId>
+                               </exclusion>
                        </exclusions>
                </dependency>
                <dependency>
CLAMP is a platform for designing and managing control loops. Archived.