[Snyk] Upgrade org.apache.logging.log4j:log4j-api from 2.10.0 to 2.13.2 (!41) · Merge requests · Moritz Aurel Pascal Schubotz / MathMLTools

Moritz Aurel Pascal Schubotz requested to merge snyk-upgrade-2ac0747251b58b5a5e7ff0ee4804b5b9 into master May 19, 2020

Created by: snyk-bot

Snyk has created this PR to upgrade org.apache.logging.log4j:log4j-api from 2.10.0 to 2.13.2.

ℹ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

The recommended version is 8 versions ahead of your current version.
The recommended version was released a month ago, on 2020-04-21.

The recommended version fixes:

Severity	Issue	Exploit Maturity
	Man-in-the-Middle (MitM) SNYK-JAVA-ORGAPACHELOGGINGLOG4J-567761	No Known Exploit

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

[Snyk] Upgrade org.apache.logging.log4j:log4j-api from 2.10.0 to 2.13.2

Snyk has created this PR to upgrade org.apache.logging.log4j:log4j-api from 2.10.0 to 2.13.2.

Merge request reports