Changelog for Amazon Kinesis Source Connector for Confluent Platform

Version 2.0.7

• CC-41147: Bumped io.netty:netty-codec-http to 4.1.133.Final.

• CC-41219: Bumped io.netty:netty-codec-http2 to 4.1.133.Final.

• CC-41220: Bumped io.netty:netty-codec to 4.1.133.Final.

• CC-41377: Bumped org.bouncycastle:bcprov-jdk18on to 1.84.

• CC-41378: Bumped org.bouncycastle:bcpkix-jdk18on to 1.84.

• CC-41379: Bumped io.netty:netty-transport-native-epoll to 4.1.133.Final.

• CC-41380: Bumped io.netty:netty-handler-proxy to 4.1.133.Final.

• CC-41381: Bumped io.netty:netty-codec-dns to 4.1.133.Final.

Version 2.0.6

• CC-39400: Pinned com.squareup.wire:wire-runtime to 5.2.0 to address CVE-2024-58103.

Version 2.0.5

• CC-40243: Bumped io.netty:netty-codec-http to 4.1.132.Final to fix CVE-2026-33870

• CC-40242: Bumped io.netty:netty-codec-http2 to 4.1.132.Final to fix CVE-2026-33871

Version 2.0.4

• CC-39520: Bumped com.fasterxml.jackson.core:jackson-core to 2.21.1 to address GHSA-72hv-8253-57qq

Version 2.0.3

• CC-38587: Updated org.bitbucket.b_c:jose4j to 0.9.6 to fix CVE-2024-29371

• CC-38255: Updated io.netty:netty-codec-http to 4.1.129.Final to fix CVE-2025-67735

Version 2.0.2

• CC-37326: Pinned com.squareup.wire:wire-runtime to 5.2.0 to address CVE-2024-58103.

Version 2.0.1

• CC-36468, CC-36500: Pinned io.netty to 4.1.125.Final to address CVE-2025-58057 & CVE-2025-58056

Version 2.0.0

CC-36003: Migrated the connector to use AWS SDK v2