Changelog¶
Version 1.5.13¶
- CC-29177: Upgraded
connect-plugins-commonto resolve protobuf-java CVE
Version 1.5.12¶
- [CC-26757] Version bump for Jackson Databind & jose4j package
Version 1.5.11¶
- [CVE-2023-2976] and [PRISMA-2023-0067] vulnerabilities fixed.
Version 1.5.10¶
- CCMSG-2412: Fixed CVE-2020-13956
- Used MockDnsResolver instead of SystemDnsResolver
- Added JUnit vintage engine dependency to enable running unit test
Version 1.5.9¶
- Added
connect-formatters-stringdependency to support reporter value formats of type string
Version 1.5.8¶
- CC-18570: Encoded path segments in the key and topic placeholder according to HTTP protocol rules
- CCDB-5102: Fixed
jackson-databindCVEs (CVE-2022-42003 and CVE-2022-42004) - Reduced
max.retriesdefault value from 10 to 5
Version 1.5.7¶
- CCLOG-2307: Added support for JSON decimal format
Version 1.5.6¶
- Added retries of HTTP operation on SocketTimeoutException
Version 1.5.5¶
- Upgraded dependencies to resolve CVEs
Version 1.5.4¶
- Sensitive logging fix
Version 1.5.3¶
- Upgraded dependencies to resolve CVEs
Version 1.5.2¶
- Fixed Authorization header scheme for bearer tokens
- Upgraded dependencies to resolve CVEs
Version 1.5.1¶
- Fixed recommender for the
behavior.on.errorconfiguration property
Version 1.5.0¶
- Added a positive validator for batch max size
- Added support to filter private and local ips
- CCDB-3991: Do not log request payload
- Updated parent to 0.7.1 to use guava 30.1 to address CVE-2020-8908