Affects Version/s: None
Fix Version/s: 7.4
We need to add org.apache.logging.log4j.** to forbidden APIs
We don't do log4j calls in the code in general, we have that explicitly forbidden in forbidden APIS today, and code that does something with log4j has to supress that. Developers must instead use slf4j APIs. I don't believe that's changing now with log4j2, or does it?
We need to address this before 7.4 to make sure we don't break anything by using Log4j2 directly
SOLR-7887 the following classes explicitly import the org.apache.logging.log4j.** package so let's validate it's usage