升级log4j2到2.17.1，防止漏洞风险

3 years ago · 8bcbdc3160
1 changed files with 14 additions and 0 deletions
--- a/pom.xml
+++ b/pom.xml
@ -32,6 +32,7 @@
        <commons.fileupload.version>1.4</commons.fileupload.version>
        <poi.version>4.1.2</poi.version>
        <velocity.version>2.3</velocity.version>
+        <log4j2.version>2.17.1</log4j2.version>
    </properties>

    <!-- 依赖声明 -->
@ -177,6 +178,19 @@
                <version>${fastjson.version}</version>
            </dependency>

+            <!-- log4j日志组件 -->
+            <dependency>
+                <groupId>org.apache.logging.log4j</groupId>
+                <artifactId>log4j-api</artifactId>
+                <version>${log4j2.version}</version>
+            </dependency>
+
+            <dependency>
+                <groupId>org.apache.logging.log4j</groupId>
+                <artifactId>log4j-to-slf4j</artifactId>
+                <version>${log4j2.version}</version>
+            </dependency>
+
            <!-- 定时任务-->
            <dependency>
                <groupId>com.ruoyi</groupId>