Log4j mitigation

• Previous message (by thread): Log4j mitigation
• Next message (by thread): Log4j mitigation
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 13. Dec 2021, at 20:32, Jared Mauch <jared at puck.nether.net> wrote:
> 
> This is an great modern example showing how deeply embedded things could be, and they get worse with each of these nesting technologies as well, it may be embedded in a docker or VM image, or the class could be in some other JAR or zip you are not aware of, or could come back with an overlapping class definition based on the order things get loaded.

That’s what we’ll have SBOMs for [1].

Grüße, Carsten

[1]: https://en.wikipedia.org/wiki/Software_bill_of_materials

• Previous message (by thread): Log4j mitigation
• Next message (by thread): Log4j mitigation
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]