The BigFix Compliance team has released a new version of Compliance, that removes Log4j entirely in the product. Note that we believe there was not a vulnerability due to the way we were using Log4j previously, but updating to this version should remove any concerns for Compliance.