DrawIO and Log4j Vulnerability (CVE-2021-44228)

[T0mWz]

Not really a bug, but might be good to investigate.
Was curious about how much DrawIO is susceptible for the Log4j Vulnerability, where this module is used in the Java code.

Thanks!

PS; want to say that we are very happy with this project, really nice project! 👏

[davidjgraph]

None of our deployments are vulnerable is the conclusion of our analysis.

We're keeping our official statement up to date at https://drawio.atlassian.net/servicedesk/customer/kb/view/2294251521 .