summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorgjoranv <gv@verizonmedia.com>2022-01-07 22:06:06 +0100
committergjoranv <gv@verizonmedia.com>2022-01-07 22:06:06 +0100
commitede5a1def77618209aaf15f276e6d50807918a2f (patch)
tree8cb53adbdb9b05b27170d0e7d460a677702b9394
parentd16c8302f36b331fa1ad9bd1d64386267de37bdf (diff)
Fail the build for any hosted application with log4j deps:
- log4j:log4j - org.apache.logging.log4j:log4j-core
Diffstat
-rw-r--r--hosted-tenant-base/pom.xml17
-rw-r--r--tenant-base/pom.xml17
2 files changed, 34 insertions, 0 deletions
diff --git a/hosted-tenant-base/pom.xml b/hosted-tenant-base/pom.xml
index e7c364cb7de..c2f3b40d225 100644
--- a/hosted-tenant-base/pom.xml
+++ b/hosted-tenant-base/pom.xml
@@ -182,6 +182,23 @@
</rules>
</configuration>
</execution>
+ <execution>
+ <id>enforce-no-log4j</id>
+ <goals>
+ <goal>enforce</goal>
+ </goals>
+ <configuration>
+ <rules>
+ <bannedDependencies>
+ <!-- Fail validation for apps with log4j deps, in any scope. -->
+ <excludes>
+ <exclude>log4j:log4j:*:jar:*</exclude>
+ <exclude>org.apache.logging.log4j:log4j-core:*:jar:*</exclude>
+ </excludes>
+ </bannedDependencies>
+ </rules>
+ </configuration>
+ </execution>
</executions>
</plugin>
diff --git a/tenant-base/pom.xml b/tenant-base/pom.xml
index f4923bf79f1..c43e9e116d4 100644
--- a/tenant-base/pom.xml
+++ b/tenant-base/pom.xml
@@ -366,6 +366,23 @@
</rules>
</configuration>
</execution>
+ <execution>
+ <id>enforce-no-log4j</id>
+ <goals>
+ <goal>enforce</goal>
+ </goals>
+ <configuration>
+ <rules>
+ <bannedDependencies>
+ <!-- Fail validation for apps with log4j deps, in any scope. -->
+ <excludes>
+ <exclude>log4j:log4j:*:jar:*</exclude>
+ <exclude>org.apache.logging.log4j:log4j-core:*:jar:*</exclude>
+ </excludes>
+ </bannedDependencies>
+ </rules>
+ </configuration>
+ </execution>
</executions>
</plugin>