Log4Shell and Open Source
Into week 3 of what will certainly be a years-long event around this log4shell vulnerability. Some thoughts. Ok, what is log4shell? If you are not technically-inclined, please bear with me. I will keep this straightforward! Log4shell is a vulnerability in the log4j logging library. From the Wikipedia entry of Log4j: Log4j is an open source logging framework that allows software developers to log data within their applications. This data can include user input....