Java Naming and Directory Interface (JNDI) is a Java API that allows clients to discover and look up data and objects via a name.

On December 10, 2021, Apache released a fix for CVE-2021-44228, a critical RCE vulnerability affecting Log4j that is being exploited in the wild.

Preventing JNDI injection vulnerabilities by using a source code review is always a good idea.