All Day DevOps: Third of Log4j downloads still pull vulnerable version despite threat of supply chain attacks – The Daily Swig

Despite the threat of supply chain attacks, a third of Log4j downloads still pull the vulnerable version, says a report from All Day DevOps. This comes even as awareness about the Log4j critical vulnerability spreads.