Merge pull request #26 from advanced-security/securingdev-patch-1

Update pom.xml to fix breaking CodeQL scans
advanced-security · Feb 24, 2023 · 545951b · 545951b
2 parents 628480c + 89d06d2
commit 545951b
Showing 1 changed file with 9 additions and 4 deletions.
diff --git a/pom.xml b/pom.xml
@@ -34,10 +34,15 @@
         </dependency>
         <dependency>
             <groupId>org.apache.logging.log4j</groupId>
-            <artifactId>log4j</artifactId>
-            <version>2.16.0</version>
-            </dependency>
-        </dependencies>
+            <artifactId>log4j-core</artifactId>
+            <version>2.1</version>
+        </dependency>
+        <dependency>
+            <groupId>org.apache.logging.log4j</groupId>
+            <artifactId>log4j-api</artifactId>
+            <version>2.1</version>
+        </dependency>
+    </dependencies>
     <build>
         <plugins>
             <plugin>