升级log4j2到2.17.1，防止漏洞风险

2021-12-30 14:41:25 +08:00 · 2021-12-30 14:41:25 +08:00 · bb1af390a7
commit bb1af390a7
parent f65cd6245d
1 changed files with 14 additions and 0 deletions
--- a/pom.xml
+++ b/pom.xml
@ -32,6 +32,7 @@
        <commons.collections.version>3.2.2</commons.collections.version>
        <poi.version>4.1.2</poi.version>
        <velocity.version>2.3</velocity.version>
+        <log4j2.version>2.17.1</log4j2.version>
        <jwt.version>0.9.1</jwt.version>
    </properties>
 	
@ -150,6 +151,19 @@
                <version>${fastjson.version}</version>
            </dependency>

+            <!-- log4j日志组件 -->
+            <dependency>
+                <groupId>org.apache.logging.log4j</groupId>
+                <artifactId>log4j-api</artifactId>
+                <version>${log4j2.version}</version>
+            </dependency>
+
+            <dependency>
+                <groupId>org.apache.logging.log4j</groupId>
+                <artifactId>log4j-to-slf4j</artifactId>
+                <version>${log4j2.version}</version>
+            </dependency>
+
            <!-- Token生成与解析-->
            <dependency>
                <groupId>io.jsonwebtoken</groupId>