You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@inlong.apache.org by go...@apache.org on 2021/12/15 11:48:24 UTC
[incubator-inlong] branch master updated: [INLONG-1958][Bug]Avoid the security risks of log4j package(addendum) (#2005)
This is an automated email from the ASF dual-hosted git repository.
gosonzhang pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/incubator-inlong.git
The following commit(s) were added to refs/heads/master by this push:
new c26cb57 [INLONG-1958][Bug]Avoid the security risks of log4j package(addendum) (#2005)
c26cb57 is described below
commit c26cb5798f0f22a829fdece0c91e5b9503c5ddb5
Author: healchow <he...@gmail.com>
AuthorDate: Wed Dec 15 19:48:21 2021 +0800
[INLONG-1958][Bug]Avoid the security risks of log4j package(addendum) (#2005)
---
inlong-manager/manager-dao/pom.xml | 1 -
inlong-manager/pom.xml | 7 ++++++-
2 files changed, 6 insertions(+), 2 deletions(-)
diff --git a/inlong-manager/manager-dao/pom.xml b/inlong-manager/manager-dao/pom.xml
index 77c63e7..c557383 100644
--- a/inlong-manager/manager-dao/pom.xml
+++ b/inlong-manager/manager-dao/pom.xml
@@ -56,7 +56,6 @@
<dependency>
<groupId>org.apache.logging.log4j</groupId>
<artifactId>log4j-api</artifactId>
- <version>2.15.0</version>
</dependency>
<dependency>
<groupId>org.springframework.boot</groupId>
diff --git a/inlong-manager/pom.xml b/inlong-manager/pom.xml
index 391f053..22d3d58 100644
--- a/inlong-manager/pom.xml
+++ b/inlong-manager/pom.xml
@@ -69,7 +69,7 @@
<knife4j.version>2.0.5</knife4j.version>
<swagger.version>3.0.0</swagger.version>
<swagger-annotations.version>1.6.2</swagger-annotations.version>
-
+ <log4j.version>2.16.0</log4j.version>
<maven.compiler.source>1.8</maven.compiler.source>
<maven.compiler.target>1.8</maven.compiler.target>
<checkstyle.version>6.19</checkstyle.version>
@@ -181,6 +181,11 @@
</exclusions>
</dependency>
<dependency>
+ <groupId>org.apache.logging.log4j</groupId>
+ <artifactId>log4j-api</artifactId>
+ <version>${log4j.version}</version>
+ </dependency>
+ <dependency>
<groupId>org.springframework.boot</groupId>
<artifactId>spring-boot-starter-aop</artifactId>
<version>${spring-boot.version}</version>