log4j vulnerability #1621
beechwood13
started this conversation in
General
log4j vulnerability
#1621
Replies: 0 comments 1 reply
-
|
Hi there Similar post here Just as an added note suggested by @scottcain you could delete those files and the code would likely still work |
Beta Was this translation helpful? Give feedback.
0 replies
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
-
Hi, It appears the JBrowse has log4j security issue:
===============================================================================
[WARNING] [42 - contains log4j files] /usr/local/jbrowse/node_modules/dojo-util/buildscripts/cldr/lib/bsf.jar
[WARNING] [43 - contains log4j files] /usr/local/jbrowse/node_modules/dojo-util/buildscripts/cldr/lib/commons-logging-1.1.1.jar
[WARNING] [55 - contains log4j files] /usr/local/jbrowse-1.16.10-release/node_modules/dojo-util/buildscripts/cldr/lib/bsf.jar
[WARNING] [56 - contains log4j files] /usr/local/jbrowse-1.16.10-release/node_modules/dojo-util/buildscripts/cldr/lib/commons-logging-1.1.1.jar
[WARNING] This script does not guarantee that you are not vulnerable, but is a strong hint.
I am wondering whether a security update for JBrowse 1.x is planned in the near future ?
Beta Was this translation helpful? Give feedback.
All reactions