Thanks! cc dev@
On Mon, Dec 13, 2021 at 6:06 PM Windham Wong <[email protected]> wrote: > Hello folks, > > For the log4j2 vulnerability (log4shell), thinker0 and I confirmed that > Heron is not vulnerable as we are using log4j version 1 only. However, our > Kubernetes template has Bookkeeper 4.13.0 which is vulnerable to this. We > will need to bump this when official version has been released. > > > Regards J, > *Windham Wong* > OSWE, OSCP, GCIA, Specialist in Cybersecurity > Co-Founder, Managing Partner of > *Stormeye.io, Hong Kong Managed Security Operation Center Limited* > Specialist in Cybersecurity, Log Management and SIEM System > <https://www.stormeye.io> > Email // [email protected] > Phone // +852_3590_2212_|_+852_9832_0707 <+85235902212> > Fax // +852_3590_2202 > On 14/12/2021 09:30, Ning Wang wrote: > > Hello, > > It has been two weeks since our last sync! Let's share our works for the > last two weeks in this thread. Thanks! > > Mine: > - Thinking about supporting labels/tags in Heron metrics. > > > Regards, > --ning > > >
