[#3063] Whilst lombok is not vulnerable to Log4Shell, we do have the dependency on log4j, solely for testing purposes, and no user input is ever logged with it. Nevertheless, pushing the dep to 2.17 to avoid false positives from vulnerability scanners ruining the day. - github/lombok.git - Unnamed repository; edit this file 'description' to name the repository.

diff options

author	Reinier Zwitserloot <r.zwitserloot@projectlombok.org>	2021-12-18 17:47:22 +0100
committer	Reinier Zwitserloot <r.zwitserloot@projectlombok.org>	2021-12-18 17:47:22 +0100
commit	932c939f67a6459eb4d00689f0e6ff79a9a13169 (patch)
tree	7acc5ff6846348e15fede0ba350b03c89667495f /website
parent	c10b47a5d12b94570067c4b412c3018630300e7f (diff)
download	lombok-932c939f67a6459eb4d00689f0e6ff79a9a13169.tar.gz lombok-932c939f67a6459eb4d00689f0e6ff79a9a13169.tar.bz2 lombok-932c939f67a6459eb4d00689f0e6ff79a9a13169.zip

[#3063] Whilst lombok is not vulnerable to Log4Shell, we do have the dependency on log4j, solely for testing purposes, and no user input is ever logged with it. Nevertheless, pushing the dep to 2.17 to avoid false positives from vulnerability scanners ruining the day.

Diffstat (limited to 'website')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: