Skip to content
Better HN
Top
Best
Ask
Show
New
Jobs
Search
⌘K
35% of Log4j downloads are grabbing the vulnerable version
(opens in new tab)
(writing.gonze.com)
19 points
lucasgonze
4y ago
4 comments
Save
Share
4 comments
4 comments · 1 top-level
top
newest
oldest
jimmySixDOF
4y ago
· 3 in thread
Begging the question of why the vulnerable version is
still
available to be grabbed in the first place?
nikonyrh
4y ago
Deleting them would break builds ;)
Shadonototra
4y ago
this, companies who are hosting known vulnerable libraries should be charged criminally imo
lucasgonze
OP
4y ago
That's one of the open questions. YES. Absolutely.
j
/
k
navigate · click thread line to collapse
