Upgrade Vulnerable Direct Dependencies [log4j] Signed-off-by: amohamad <a.mohamad@queensu.ca> Issue-ID: SDC-3051 Upgrade from the vulnerable log4j 1.x to log4j 2.13.1 Add a log4j version property in sdc-main pom.xml Add two maven dependencies to respective child pom.xml Change name of log4j .properties and .xml config files to reflect log4j2 naming Update the configuration files to the totally new log4j 2 config syntax Replace PropertyConfigurator with LoggerContext Remove the abandoned log4j.lf5.util.ResourceUtils Signed-off-by: amohamad <a.mohamad@queensu.ca> Change-Id: Ie0f141eb2e0337ee5b63b61dc1395ccd8040558d

commit: 9ee60949d3ceca3ab1fcf47c9214f7bf6baf89c6 [log] [tgz]
author: amohamad <a.mohamad@queensu.ca> Fri Jun 26 12:40:11 2020 -0400
committer: amohamad <a.mohamad@queensu.ca> Wed Jul 29 15:47:42 2020 -0400
tree: 67bf3fbecf8b3bbd4beaccc1378e3914c5c51ed2
parent: 3c54913a795813ead9dd8a50f22a846ad10ee415 [diff] [blame]
diff --git a/test-apis-ci/src/main/resources/ci/conf/log4j2.xml b/test-apis-ci/src/main/resources/ci/conf/log4j2.xml
new file mode 100644
index 0000000..5295d45
--- /dev/null
+++ b/test-apis-ci/src/main/resources/ci/conf/log4j2.xml

@@ -0,0 +1,13 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<Configuration status="ERROR">
+	<Appenders>
+		<File name="fileAppender" fileName="logfile.log" append="false">
+			<PatternLayout pattern="%d %-5p [%c{1}] %m %n"/>
+		</File>
+	</Appenders>
+	<Loggers>
+		<Root level="info">
+			<AppenderRef ref="fileAppender"/>
+		</Root>
+	</Loggers>
+</Configuration>
\ No newline at end of file
commit	9ee60949d3ceca3ab1fcf47c9214f7bf6baf89c6	[log] [tgz]
author	amohamad <a.mohamad@queensu.ca>	Fri Jun 26 12:40:11 2020 -0400
committer	amohamad <a.mohamad@queensu.ca>	Wed Jul 29 15:47:42 2020 -0400
tree	67bf3fbecf8b3bbd4beaccc1378e3914c5c51ed2
parent	3c54913a795813ead9dd8a50f22a846ad10ee415 [diff] [blame]