mirrors/bisq
1
0
Fork 0
mirror of https://github.com/bisq-network/bisq.git synced 2025-01-18 05:12:42 +01:00
Code Issues Packages Projects Releases Wiki Activity
07a139c927
bisq/gradle
History
Chris Beams 07a139c927
Upgrade log4j 2.15.0 => 2.17.0 
This change upgrades log4j to patch fixes for recently documented
CVE-2021-45046 CVE-2021-45105 vulnerabilities related to the Log4Shell
exploit.

Like the earlier fix, Bisq does not appear to be vulnerable to these
exploits because it does not use log4j directly, only transitively
depends on it. Nevertheless, the upgrade is still the safe bet.
2021-12-20 07:34:04 +01:00
..
wrapper Upgrade to Gradle 7.3 2021-11-13 12:09:22 +01:00
README.md Codacy: Test tag to skip check 2020-09-19 07:50:50 +02:00
verification-metadata.xml Upgrade log4j 2.15.0 => 2.17.0 2021-12-20 07:34:04 +01:00

README.md

How to upgrade the Gradle version

Visit the Gradle website and decide the:

  • desired version
  • desired distribution type
  • what is the sha256 for the version and type chosen above

Adjust the following command with tha arguments above and execute it twice:

./gradlew wrapper --gradle-version 6.6.1 \
    --distribution-type all \
    --gradle-distribution-sha256-sum 11657af6356b7587bfb37287b5992e94a9686d5c8a0a1b60b87b9928a2decde5

The first execution should automatically update:

  • bisq/gradle/wrapper/gradle-wrapper.properties

The second execution should then update:

  • bisq/gradle/wrapper/gradle-wrapper.jar
  • bisq/gradlew
  • bisq/gradlew.bat

The four updated files are ready to be committed.