From aa195ed04fe5fe64fb6c1bf95a1e308eb199a690 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 4 Jan 2022 16:57:42 +0000
Subject: [PATCH] Bump log4j-core from 2.13.2 to 2.17.1 in /vulnerable_lambda

Bumps log4j-core from 2.13.2 to 2.17.1.

---
updated-dependencies:
- dependency-name: org.apache.logging.log4j:log4j-core
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
---
 vulnerable_lambda/pom.xml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/vulnerable_lambda/pom.xml b/vulnerable_lambda/pom.xml
index 2e3707e..c699238 100644
--- a/vulnerable_lambda/pom.xml
+++ b/vulnerable_lambda/pom.xml
@@ -40,7 +40,7 @@
     <dependency>
       <groupId>org.apache.logging.log4j</groupId>
       <artifactId>log4j-core</artifactId>
-      <version>2.13.2</version>
+      <version>2.17.1</version>
     </dependency>
     <dependency>
       <groupId>org.apache.logging.log4j</groupId>