Log4Shell, the Apache Log4j utility
please let us know is JS Report is using Apache Log4j utility.
A critical zero-day exploit, known as Log4Shell, affecting the Apache Log4j utility (CVE-2021-44228) was made public on December 9, 2021
Currently we are using 1.7.0 version in our report.
jsreport has never used this utility.
Thanks for the confirmation