Changelog

Version 1.2.1

• MINOR: Bumped log4j-core version to version > 2.16.0
• CCMSG-2030, CCMSG-2119, CCMSG-2175: CVE fix for Velocity, Avatica and Calcite dependency
• CCMSG-2110, CCMSG-2108: Removed logging of sink record

Version 1.2.0

• CCMSG-1879: Removed region validator and recommender
• CCMSG-1685: CVE fix for guava dependency
• DP-8085: Migrated to Semaphore self-hosted agent
• CCMSG-2016: Addressed CVEs by updating Hadoop dependency
• CCMSG-1931: Updated connect-plugin-parent to pull Gson
• CCMSG-1768: Updated storage common version
• CCMSG-1634: Upgraded storage commmons to latest to resolve jackson-databind 2.13.2 CVE
• CCMSG-1719: Updated to latest commons to fix jackson-databind CVE-2020-36518
• CCMSG-1663: Updated to latest commons to fix protobuf and log4j CVE
• CCDB-4482: Updated log4j to 2.16.0
• CCLOG-1305: Bumped up the dependency for log4j to 2.15.0
• Changed FFI and io-like constraints to use versions which have the acceptable licensing
• CCMSG-1345, CCMSG-1410, CCMSG-1411: Upgraded google-cloud-dataproc, google-api-common and guava dep and exclude velocity-engine-core dep to resolve CVEs
• CCMSG-1265: Upgraded parent to 0.6.6 and resolve CVE in commons compress dependency
• CCMSG-1054: Upgraded json-smart to 2.4.7 through parent and resolve CVE
• Updated the support term for Dataproc Sink
• CCMSG-882: Made network access to Dataproc cluster more strict
• MINOR: Updated README to mention manual cleanup for created instances
• Fixed integration tests by excluding conflicting dependencies
• CCMSG-780: Updated kafka-connect-storage-common-parent to 10.0.4 to resolve CVE

Version 1.2.5

• CVE fix: CC-20330, CC-20331, CC-20973, CC-21164

Version 1.2.4

• CC-20638 Pinned SnakeYAML version 2.0 to fix CVE

Version 1.2.3

• Fixed CVEs for json-smart, protobuf-java, Jettison

Version 1.2.2

• CCMSG-2216: Bumped jackson-databind to 2.13.4.2
• CCMSG-2246: Bumped jettison to 1.5.3
• CCMSG-2268: Bumped woodstox-core to 6.5.0
• CCMSG-2341: Bumped ivy to 2.5.1