Changelog for Elasticsearch Service Sink Connector for Confluent Platform

Version 15.1.2

• PR-916 - CC-38403: Bumped org.apache.logging.log4j:log4j-core to 2.25.4 to fix CVE-2025-68161

• PR-916 - CC-38403: Bumped org.apache.logging.log4j:log4j-core to 2.25.4 to fix CVE-2026-34477, CVE-2026-34478, CVE-2026-34479, CVE-2026-34480, and CVE-2026-34481

• PR-916 - CC-39548: Bumped com.fasterxml.jackson.core:jackson-core to 2.18.6 to address GHSA-72hv-8253-57qq

Version 15.1.1

• PR-909 - [CC-38106] Upgraded lz4-java to v1.10.1 to fix CVE-2025-12183. Dependency group changed to at.yawk.lz from org.lz4.

Version 15.1.0

• PR-905 - feat: Added configurable maximum limit for topic-to-external-resource mappings”