Hi Everyone,
We are currently facing a vuln report of using pf4j using the below dependency,
Do we have an updated version of pf4j using the latest version of log4j.
com.external.plugins:rapidAp...@1.0-SNAPSHOT › org.pf4j:pf4j-...@0.7.0 › org.slf4j:slf4j-...@1.7.29 › log4j:lo...@1.2.17
log4j:log4j Deserialization of Untrusted Data
Thanks in advance, looking for suggestions if already been addressed.
Thanks,
Yogesh