Changelog for Amazon S3 Source Connector for Confluent Platform

Version 2.6.11

• CC-33008 Bumped parquet-avro version

Version 2.6.10

• CC-32056: Fixed CVE-4401, CVE-4877
• Upgraded connect-plugins and jetty
• Updated credentials provider in s3 source

Version 2.6.9

• CC-29812: Added validation to ensure that the provided S3 bucket name is valid.
• CVE-3978: Bumped java-xmlbuilder dependency version to 1.2 to resolve CVE-2014-125087

Version 2.6.8

• CC-30037 Fixed assume role provider to accept aws credentials provided as configs

Version 2.6.7

• CC-29526: Fixed the way the folders are scanned to address a potential data loss
• CC-29565: Bumped jetty-server to 9.4.56 to fix CVE-2024-8184
• CC-29503: Bumped avro to 1.11.4 to fix CVE-2024-47561
• CC-29198: Remove hadoop-shaded-protobuf_3_21 dependency

Version 2.6.6

• CC-29200: Bump com.google.protobuf:protobuf-java to version 3.25.5

Version 2.6.5

• CC-28101 Return null record on empty file in generic mode

Version 2.6.4

• CC-28256 Bumped dnsjava dependency to fix 3.6.1

Version 2.6.3

• CC-27926 Bumped netty-codec-http dependency version to 4.1.108.Final to resolve CVE-2024-29025

Version 2.6.2

• Fixed issue: S3 source was only sourcing 1000 folders

Version 2.6.1

• Fixed CVE-2024-23944, CVE-2024-30172, CVE-2024-30171, CVE-2024-29857, CVE-2024-29025
• Bumped jackson-databind and jackson-core to fix CVEs

Version 2.6.0

• Improve startup time - Scanning folders in parallel