GitHub

log4j 1.2.17 dependency

It looks like it have some vulnerable log4j 1.2.17 dependency. Have you consider update to 2.17.2? output from mvn dependency:tree command below [INFO] --- maven-dependency-plugin:2.8:tree ...
SecurityWeek

Google Finds 35,863 Java Packages Using Defective Log4j

The computer security industry is bracing for travel on long, bumpy roads littered with Log4j security problems as experts warn that software dependency patching hiccups will slow global mitigation ...
GitHub

thedevappsecguy/Log4J-Mitigation-CVE-2021-44228--CVE-2021-45046--CVE-2021-45105--CVE-2021-44832

Internet discussion was abuzz about a 0-day vulnerability (one that can yield remote code execution) in Apache’s popular Log4J logging library for Java. This particular vulnerability–tracked as ...
TheServerSide

How to setup a local Maven repository server for artifact hosting

Maven is an extremely popular Java build tool for a variety of reasons. As such, it is no wonder that developers and organizations are looking at setting up local Maven repositories to compliment the ...
InfoWorld

Portable Logger Names with Java 7 Method Handles

Java 7 introduced the Method Handles with the java.lang.invoke.MethodHandle and java.lang.invoke.MethodHandles classes. The Well-Grounded Java Developer (which I have previously reviewed) covers ...