ready-api-soapui-testrunner

Question

Hi everyone,i don't know if this belongs here,&nbsp;but it's worth a try:&nbsp;we use the ready-api-soapui-testrunner:3.20.0 from hub.docker.com.During our security scans (trivy v0.22.0) we discovered that the image contains a critical error. The&nbsp;CVE-2019-17571&nbsp;concerns log4j 1.12.7.&nbsp;&nbsp;Are there any plans to fix it?&nbsp;greetings

tsanchez_1 · Accepted Answer

Hello, unfortunately our license vendor users log4J&nbsp;1.12.7 which is why you are seeing the message. We have updated log4j in ReadyAPI but still working with our license vendor to update log4j on their end. Let me know if you have further concerns or questions and I will keep you posted.

Forum Discussion

ready-api-soapui-testrunner

1 Reply

Related Content

ready-api-soapui-testrunner does not pass global properties

How to set soapui-log4j.xml when using smartbear/ready-api-soapui-testrunner dockerimage?

testrunner.bat log files for Ready! API

Docker image with non-root user

No Project File Specified error when running a composite project in Docker container

Recent Discussions

MyFirstPlugin - button Project menu in Ready Api

Integrate ReadyApi with Devops Release pipelines

Is it possible to integrate the Azure TestPlan Test cases and the ReadyAPI tests ?

How to connect to Azure blob storage in Ready API

JDBC Request/Query for value located within data BLOB