WhiteSource Log4j Detect scans projects to find vulnerable Log4j versions
WhiteSource launched WhiteSource Log4j Detect, a free command-line interface (CLI) tool to help organizations quickly detect and remediate the Log4j vulnerabilities CVE-2021-44228 and CVE-2021-445046. This free developer tool, which is hosted on GitHub and is now available for use, quickly scans projects to find vulnerable Log4j versions and provides the exact path — both to direct or indirect dependencies — along with the fixed version for speedy remediation. As a standalone tool, developers can download … More
The post WhiteSource Log4j Detect scans projects to find vulnerable Log4j versions appeared first on Help Net Security.