@yanokwa thanks for checking. As a fact I checked the latest available version of Aggregate with https://github.com/anchore/grype and it returned a long list of vulnerabilities (but not log4shell).
But sometimes it not easy to move, I have for example a very critical survey still going with Aggregate and I can't just move to Central because there is a lot going on in the DB backend (PostgreSQL) when the data enters ODK forms tables, and I have still not found any docs that shows/explain how the data model used by Aggregate relates to the one used by Central. Is there anything out there?
with regards,
thanks for your work