update log4j to 2.17.0 for security reason.

Question

update log4j to 2.17.0 for security reason.

Closed this issue 3 years ago · 1 comments

new security fix of log4j is out: https://logging.apache.org/log4j/2.x/security.html. we have to update the dependency, please do a hotfix as what we did for 0.3.9. after this update, attestation.id will do use the new attestation.jar from maven repo.

Answer 1 · 2021-12-20T11:16:53.000Z

This is closed in release 0.3.10