Security for Katalon Projects

Getting into the depths of the log4shell issue, I did a scan on my Katalon projects using grype, and this has uncovered some Critical vulnerabilities related to the jackson-databind library v 2.9.9 . I need to patch this.

Has anyone else experienced this? What is Katalon’s approach for patching existing projects?

I’d love any insights for how others are handling security with Katalon.

Hi @andrew.nixdorf,

Dependencies of a Katalon Studio project is listed in .classpath file. You can add/replace the jar file in Project Settings/Library Management. For further using, please refer to our document:
Libraries Management | Katalon Docs

1 Like