Dependabot: ignore log4j version 2.2+ (#2664)

Version 2.2 conflicts with JUnit 4 in ingestion-sink. We'd need to update it to v5 first.
mozilla · Oct 23, 2024 · afb5379 · afb5379
1 parent 7ece87e
commit afb5379
Showing 1 changed file with 6 additions and 0 deletions.
diff --git a/.github/dependabot.yml b/.github/dependabot.yml
@@ -9,6 +9,12 @@ updates:
   - dependency-name: org.springframework:spring-core
     # Spring 6 requires Java 17
     versions: [">=6.0.0"]
+  - dependency-name: org.apache.logging.log4j:log4j-bom
+    # Log4j 2.2+ requires Junit5, otherwise ingestion-sink build fails
+    versions: [">=2.2.0"]
+  - dependency-name: org.apache.logging.log4j:log4j-core
+    # Log4j 2.2+ requires Junit5, otherwise ingestion-sink build fails
+    versions: [ ">=2.2.0" ]
   schedule:
     interval: daily
   reviewers: