Enable client-common logs in CLI console

[cx-riyaj-shaikh]

Description

All logs from CxClientCommon are now visible at INFO & DEBUG levels in the CLI console.
CxConsolePlugin debug and info logs are also displayed correctly.
Verified that both client-common and plugin logging work together without affecting scan functionality.

References

No specific GitHub issue, this PR is task-based update for cli-log branch logging

Testing

Manually verified CLI console output shows INFO & DEBUG logs from both CxClientCommon and CxConsolePlugin.
No impact observed on scan execution.

[amacedoo]

Checkmarx One – Scan Summary & Details – 881546c3-324b-44d5-9136-8e481d171859

New Issues (12)

Checkmarx found the following issues in this Pull Request

Severity	Issue	Source File / Package	Checkmarx Insight
	CVE-2025-55163	Maven-io.netty:netty-codec-http2-4.1.118.Final	details Recommended version: 4.1.121.Final-redhat-00003 Description: Netty is an asynchronous, event-driven network application framework. Netty is vulnerable to the "MadeYouReset" DDoS attack. This is a logical vuln... Attack Vector: NETWORK Attack Complexity: LOW ID: 5g8ReRp2RGj1oMdI7%2BvnfnRpI2Oy4pFnFziTjxe0W3M%3D Vulnerable Package
	CVE-2025-48924	Maven-org.apache.commons:commons-lang3-3.15.0	details Recommended version: 3.16.0.redhat-00002 Description: Uncontrolled Recursion vulnerability in Apache Commons Lang. The methods `ClassUtils.getClass(...)` can `throwStackOverflowError` on very long inpu... Attack Vector: NETWORK Attack Complexity: LOW ID: cr177UZ2dtT8VbtlAPPdVHLy%2B%2Bplas5mAixIw1aom1g%3D Vulnerable Package
	CVE-2025-48924	Maven-commons-lang:commons-lang-2.4	details Recommended version: 2.7-atlassian-1 Description: Uncontrolled Recursion vulnerability in Apache Commons Lang. The methods `ClassUtils.getClass(...)` can `throwStackOverflowError` on very long inpu... Attack Vector: NETWORK Attack Complexity: LOW ID: ZOL3eiWCqVEWVHC2a8gvQUMH8G5%2FRF2jdnIfg%2BrUz3I%3D Vulnerable Package
	CVE-2025-58057	Maven-io.netty:netty-codec-4.1.118.Final	details Description: Netty is an asynchronous event-driven network application framework for rapid development of maintainable high performance protocol servers & clien... Attack Vector: NETWORK Attack Complexity: LOW ID: cFqk9u1Gf7sY6x%2FnSMshOdJKIing0kKo3gP5WlDdQgU%3D Vulnerable Package
	CVE-2025-58057	Maven-io.netty:netty-codec-http2-4.1.118.Final	details Description: Netty is an asynchronous event-driven network application framework for rapid development of maintainable high performance protocol servers & clien... Attack Vector: NETWORK Attack Complexity: LOW ID: ODXUzo2qzHJqmyzu3CA58LeRJBLUFyKuSvjb29KlNh0%3D Vulnerable Package
	CVE-2025-58057	Maven-io.netty:netty-codec-http-4.1.118.Final	details Description: Netty is an asynchronous event-driven network application framework for rapid development of maintainable high performance protocol servers & clien... Attack Vector: NETWORK Attack Complexity: LOW ID: %2F%2Fu1b6Pz28QXdRXyV6IF4sfNaAAUoc5HJoSBqJ%2BfBXI%3D Vulnerable Package
	CVE-2025-8916	Maven-org.bouncycastle:bcprov-jdk18on-1.78.1	details Recommended version: 1.79 Description: Allocation of Resources Without Limits or Throttling vulnerability in Legion of the Bouncy Castle Inc. Bouncy Castle for Java bcpkix, bcprov, bcpki... Attack Vector: NETWORK Attack Complexity: LOW ID: guN9hG0aOuoODkHBpkYHqskDazTvKBV5Ms3hMesnWgI%3D Vulnerable Package
	CVE-2025-58056	Maven-io.netty:netty-codec-http-4.1.118.Final	details Description: Netty is an asynchronous event-driven network application framework for development of maintainable high performance protocol servers and clients. ... Attack Vector: NETWORK Attack Complexity: LOW ID: ZogPdFxjoYQmF2bhG0jb6sFG4Yk7KVRI8NZzNl75rik%3D Vulnerable Package
	Heap_Inspection	/src/main/java/com/cx/plugin/cli/utils/CxConfigHelper.java: 298	details Method at line 298 of /src/main/java/com/cx/plugin/cli/utils/CxConfigHelper.java defines customTrustStorePassword, which is designated to contain... ID: 37yHu16CuyHB6E5TgxLO2YRrjp0%3D Attack Vector
	Heap_Inspection	/src/main/java/com/cx/plugin/cli/utils/CxConfigHelper.java: 917	details Method at line 917 of /src/main/java/com/cx/plugin/cli/utils/CxConfigHelper.java defines password, which is designated to contain user passwords... ID: YTbr8JJ6hAGgmYER3tDtIzfzMAE%3D Attack Vector
	Heap_Inspection	/src/main/java/com/cx/plugin/cli/utils/CxConfigHelper.java: 796	details Method at line 796 of /src/main/java/com/cx/plugin/cli/utils/CxConfigHelper.java defines password, which is designated to contain user passwords... ID: 0sw3flQIPnmzW%2FdN9biZuDZeq%2Fo%3D Attack Vector
	Heap_Inspection	/src/main/java/com/cx/plugin/cli/utils/CxConfigHelper.java: 1288	details Method at line 1288 of /src/main/java/com/cx/plugin/cli/utils/CxConfigHelper.java defines cxpassword, which is designated to contain user passwor... ID: jeiPKxWRdSXt3SLbwWeRxQlVOgg%3D Attack Vector

---

Use @Checkmarx to reach out to us for assistance.

Just send a PR comment with @Checkmarx followed by a natural language request.

Examples: @Checkmarx how are you able to help me? @Checkmarx rescan this PR