-
-
Notifications
You must be signed in to change notification settings - Fork 109
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Log4j has a serious vulnerability. use kotlin-logging:1.12.5 #210
Comments
Thank you for reporting an issue. See the wiki for documentation and slack for questions. |
I was under the impression that 2.1.16 is still usable by Kotlin 1.4, given the declaration of the 1.4 API version in the Gradle file:
@oshai Is this correct? |
to the best of my knowledge, yes. |
To add more context 1.x is deprecates see #180. |
thx guys. |
Log4j has a serious vulnerability.
Currently, the kotlin version I can use is 1.4.32.
Therefore, use KLogger by adding "io.github" microutils:kotlin-logging:1.12.5' to the dependency.
Verified that the version that resolves the serious vulnerability in Log4j is kotlin-logging 2.1.16 and is available only in kotlin 1.6.0 and higher.
Is there any way to deal with the vulnerability of Log4j in the previous version?
The text was updated successfully, but these errors were encountered: