From 08fdeab88369e8a7e9d21c10936c8661b5523f18 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 14 Apr 2026 00:28:52 +0000
Subject: [PATCH] Bump org.apache.logging.log4j:log4j-1.2-api from 2.25.3 to
 2.25.4 in /fe

Bumps org.apache.logging.log4j:log4j-1.2-api from 2.25.3 to 2.25.4.

---
updated-dependencies:
- dependency-name: org.apache.logging.log4j:log4j-1.2-api
  dependency-version: 2.25.4
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
---
 fe/pom.xml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/fe/pom.xml b/fe/pom.xml
index 763162883820e1..613de31d4c1679 100644
--- a/fe/pom.xml
+++ b/fe/pom.xml
@@ -317,7 +317,7 @@ under the License.
         <thrift.version>0.16.0</thrift.version>
         <tomcat-embed.version>9.0.104</tomcat-embed.version>
         <log4j2.version>2.25.3</log4j2.version>
-        <log4j-1.2.version>2.25.3</log4j-1.2.version>
+        <log4j-1.2.version>2.25.4</log4j-1.2.version>
         <mqtt.version>1.2.5</mqtt.version>
         <slf4j.version>2.0.17</slf4j.version>
         <metrics-core.version>4.0.2</metrics-core.version>