kotlin-analysis-intellij-1.6.21.jar is bundled with log4j 1.2

[Gamadril]

Describe the bug
Seems that kotlin-analysis-intellij-1.6.21.jar is bundled with log4j version 1.2.17.2. NexusIQ is blocking it because of CVE-2022-23305. META-INF/maven/log4j/log4j/pom.xml confirms it.

Expected behaviour
Upgrade to log4j version without security issues.

To Reproduce
Check the dependency tree

Installation

• Operating system: macOS
• Build tool: Gradle v7.2
• Dokka version: 1.6.21

[IgnatBeresnev]

Hi! Thanks for the report. It came from a transitive dependency, so we didn't even know

Should be fixed in 1.7.0