chore(deps): bump log4j-api from 2.16.0 to 2.17.0 in /iris-client-bff

Bumps log4j-api from 2.16.0 to 2.17.0. --- updated-dependencies: - dependency-name: org.apache.logging.log4j:log4j-api dependency-type: direct:production ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> PR #531
iris-connect · Dec 18, 2021 · 45b4852 · 45b4852
1 parent 8b9a084
commit 45b4852
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/iris-client-bff/pom.xml b/iris-client-bff/pom.xml
@@ -250,7 +250,7 @@
 			<!-- Added to fix current vulnerability in versions <2.15.0 until Spring is adjusted. https://github.com/iris-connect/iris-client/security/code-scanning/1857?query=ref%3Arefs%2Fpull%2F509%2Fmerge -->
 			<groupId>org.apache.logging.log4j</groupId>
 			<artifactId>log4j-api</artifactId>
-			<version>2.16.0</version>
+			<version>2.17.0</version>
 		</dependency>
 		<dependency>
 			<groupId>org.apache.logging.log4j</groupId>