Even if the client used log4j, what could that exploit do?
It's a problem for java-backed app/web servers, where user input may result in some shady calls from the server.
With haven client what could you do with it - if you type specific phrase you will make the client, ran locally on your pc, make some calls?