From d8cad30b6ca75796921e9b1f5e5ca26969c34abf Mon Sep 17 00:00:00 2001
From: rauligsky <94386642+rauligsky@users.noreply.github.com>
Date: Tue, 21 Dec 2021 10:52:18 +0000
Subject: [PATCH] Upgrade log4j to fix CVE-2021-45105 issue: (#108)

- "Apache Log4j2 does not always protect from infinite recursion in
    lookup evaluation". See  https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-45105

Co-authored-by: Raul Garcia and Stephen Wink <pair+raul.garcia2+stephen.wink@sky.uk>
---
 build.gradle | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/build.gradle b/build.gradle
index bb543ac..fc04e7f 100644
--- a/build.gradle
+++ b/build.gradle
@@ -48,7 +48,7 @@ dependencies {
     implementation('org.slf4j:slf4j-api:1.7.25')
 
     testImplementation("com.google.guava:guava:25.1-jre")
-    testImplementation('org.apache.logging.log4j:log4j-core:2.16.0')
+    testImplementation('org.apache.logging.log4j:log4j-core:2.17.0')
     testImplementation('junit:junit:4.12')
     testImplementation('org.assertj:assertj-core:3.12.2')
     testImplementation('org.mockito:mockito-core:2.25.1')