Skip to content

Bump org.apache.logging.log4j:log4j-core from 2.25.3 to 2.25.4 in the maven group across 1 directory#12

Merged
kothar merged 1 commit into
masterfrom
dependabot/maven/maven-ea4e1363a4
Apr 11, 2026
Merged

Bump org.apache.logging.log4j:log4j-core from 2.25.3 to 2.25.4 in the maven group across 1 directory#12
kothar merged 1 commit into
masterfrom
dependabot/maven/maven-ea4e1363a4

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Apr 10, 2026

Copy link
Copy Markdown
Contributor

Bumps the maven group with 1 update in the / directory: org.apache.logging.log4j:log4j-core.

Updates org.apache.logging.log4j:log4j-core from 2.25.3 to 2.25.4

@dependabot dependabot Bot added dependencies Pull requests that update a dependency file java Pull requests that update java code labels Apr 10, 2026
@socket-security

socket-security Bot commented Apr 10, 2026

Copy link
Copy Markdown

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Diff Package Supply Chain
Security
Vulnerability Quality Maintenance License
Updatedorg.apache.logging.log4j/​log4j-core@​2.25.3 ⏵ 2.25.460100 +210010080

View full report

@kothar

kothar commented Apr 11, 2026

Copy link
Copy Markdown
Owner

@dependabot rebase

Bumps the maven group with 1 update in the / directory: org.apache.logging.log4j:log4j-core.


Updates `org.apache.logging.log4j:log4j-core` from 2.25.3 to 2.25.4

---
updated-dependencies:
- dependency-name: org.apache.logging.log4j:log4j-core
  dependency-version: 2.25.4
  dependency-type: direct:development
  dependency-group: maven
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/maven/maven-ea4e1363a4 branch from 5ecb5a9 to 7fa9d7c Compare April 11, 2026 11:08
@kothar kothar merged commit 5fb97c4 into master Apr 11, 2026
4 checks passed
@kothar kothar deleted the dependabot/maven/maven-ea4e1363a4 branch April 11, 2026 11:12
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file java Pull requests that update java code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant