Free of constraints!

We don't need the clunky log4j constraints anymore. I also updated some docs.

build.gradle

@@ -6,16 +6,7 @@ buildscript {
         gradlePluginPortal()
     }
     dependencies {
-        classpath 'com.vanniktech:gradle-maven-publish-plugin:0.21.0'
-        constraints {
-            classpath("org.apache.logging.log4j:log4j-core") {
-                version {
-                    strictly("[2.18, 3[")
-                    prefer("2.18.0")
-                }
-                because("CVE-2021-44228, CVE-2021-45046, CVE-2021-45105: Log4j vulnerable to remote code execution and other critical security vulnerabilities")
-            }
-        }
+        classpath 'com.vanniktech:gradle-maven-publish-plugin:0.22.0'
     }
 }
 
@@ -51,7 +42,9 @@ if (JavaVersion.current().isJava8Compatible()) {
 if(JavaVersion.current().isJava9Compatible()) {
     allprojects {
         tasks.withType(JavaCompile) {
-            options.release.set(8) // LWJGL3 needs Java 8 starting in libGDX 1.11.0, which forces tests to use Java 8 or higher.
+            options.release.set(8) // LWJGL3 needs Java 8 starting in libGDX 1.11.0, which forces tests
+                                   // to use Java 8 or higher. options.release enforces compatibility with Java 8,
+                                   // including how NIO Buffers behave (which broke compatibility in Java 9).
         }
     }
 }
@@ -92,15 +85,4 @@ dependencies {
 
     // I don't know what conditions may require this to run tests.
     //testRuntimeOnly "org.junit.vintage:junit-vintage-engine:5.9.0"
-
-    constraints {
-        implementation("org.apache.logging.log4j:log4j-core") {
-            version {
-                strictly("[2.18, 3[")
-                prefer("2.18.0")
-            }
-            because("CVE-2021-44228, CVE-2021-45046, CVE-2021-45105: Log4j vulnerable to remote code execution and other critical security vulnerabilities")
-        }
-    }
-
 }

gradle.properties

@@ -1,16 +1,24 @@
 org.gradle.daemon=true
 org.gradle.jvmargs=-Xms128m -Xmx512m -Dfile.encoding=UTF-8 -Dconsole.encoding=UTF-8
 org.gradle.configureondemand=false
+# You can downgrade this for compatibility with older libGDX versions.
 gdxVersion=1.11.0
 
+# This must match your Maven Central group if you publish there.
 GROUP=com.github.tommyettinger
+# The name of the library, as it can be downloaded using Maven or Gradle.
 POM_ARTIFACT_ID=libgdx-library-template
+# This version should always be updated here; it is used elsewhere.
 VERSION_NAME=0.0.1-SNAPSHOT
 
+# The name of the library; might be different from POM_ARTIFACT_ID .
 POM_NAME=libgdx-library-template
 POM_DESCRIPTION=Change all of this! This is only a libgdx-library-template!
+# This is probably not correct for a new project; 2021 is when the template
+# was first made.
 POM_INCEPTION_YEAR=2021
 
+# Just change all this to use your GitHub or other URL.
 POM_URL=https://github.com/tommyettinger/libgdx-library-template/
 POM_SCM_URL=https://github.com/tommyettinger/libgdx-library-template/
 POM_SCM_CONNECTION=scm:https://tommyettinger@github.com/tommyettinger/libgdx-library-template.git
@@ -42,11 +50,20 @@ POM_LICENCE_DIST=repo
 ## POM_LICENCE_DIST=repo
 
 # I can't stop you from licensing your code as GPL, but I won't use it if you do.
+# The GPL isn't compatible with most other licenses, and restricts code that uses
+# a GPL library to also be GPL. The LGPL was created in an attempt to solve this
+# library issue; still, it isn't preferable to Apache, EPL, MIT, or BSD in regard
+# to license compatibility with existing Java libraries.
 
+# Obviously, change this part of the template if you aren't Tommy Ettinger.
 POM_DEVELOPER_ID=tommyettinger
 POM_DEVELOPER_NAME=Tommy Ettinger
 POM_DEVELOPER_URL=https://github.com/tommyettinger/
 
 # These two lines allow uploading to Maven Central, if you want.
+# You can use JitPack to handle releases and never touch Maven Central, or you can
+# register with Sonatype to get a Maven Central "group" that you can push to.
+# Maven Central can be a lot more work, but is the more "professional" and stable
+# of the two options.
 SONATYPE_HOST=DEFAULT
 RELEASE_SIGNING_ENABLED=true