log4j vulnerability - action plan for clients

pawelmitrus
Contributor

I'm looking for some information regarding log4j vulnerability - if any databricks runtime should be changed manually by the client or when specific update will be applied.

I know I can go through the docs by myself, finding out which log4j library is used in runtimes (and I did), but I'm wondering if there will be any note centrally released/announced?

EDIT: it's not only with regarding to databricks runtime, but also to API calls to Databricks API.