Changelog

Version 2.0.9

  • CVE-2024-29371 | kafka-connect-sqs:1.2.6 | org.bitbucket.b_c:jose4j:0.9.5

  • Fix CVEs

Version 2.0.8

  • CC-36471, CC-36448, CC-36518: Pinned io.netty to 4.1.125.Final to address CVE-2025-58057 & CVE-2025-58056

Version 2.0.7

  • CC-36123: Pinned io.netty to 4.1.124.Final to address CVE-2025-55163

Version 2.0.6

  • Removed deprecated sourceTask.commitRecord(SourceRecord record) in favour of commitRecord(SourceRecord record, RecordMetadata metadata).

Version 2.0.5

  • Added support for config injection in custom credentials provider.

Version 2.0.4

  • CC-32455,CC-32071, CC-32070 - Upgrade netty-handler to 4.1.11

Version 2.0.3

  • CC-30767: Pinned io.netty:netty-common to 4.1.119.Final to fix CVE-2024-47535

  • Upgrade connect plugins version to fix CVEs

Version 2.0.2

  • Merge Conflict Resolution (from 1.2.x to 2.0.x)

  • CC-30773, CC-30772, CC-30768: CVE fixes

  • CC-29191: Upgrade com.google.protobuf_protobuf-java to 3.25.5

  • CC-26575, CC-26574: Upgrade to io.netty_netty-codec-http:4.1.108.Final and org.bitbucket.b_c:jose4j:jar:0.9.5

  • DP-13727: Add CodeArtifact package paths to service.yml

  • CC-25274: Delete info log line from SqsSourceTask

  • Fix version in pom.xml

  • CC-24800: Add connector.endpoint low-level connector configuration to cloud template

  • Delete Jenkinsfile

  • Add release notes

  • CC-22945: Vulnerable dependency io.netty netty codec 4.1.86.final for kafka connect sqs master latest

  • Migration: Jenkins -> Semaphore

  • [TD] auto-commit : Update connect-templates to v0.44.0

  • [TD] auto-generate template-decoupling changes for single-module connectors

Version 2.0.1

  • Fixed AssumeIAMRole support which was broken after upgrade to AWS SDK for Java 2.x

Version 2.0.0

  • CC-21187, CC-20530: Upgraded com.fasterxml.jackson.core_jackson-core to 2.15.2 and com.google.guava_guava to 32.1.1-jre

  • CC-21103: Upgraded to AWS SDK for Java 2.x. “sqs.credentials.provider.class” should now implement a static no-args create() method which returns AwsCredentialsProvider. The static builder() method is not supported. Please refer https://docs.aws.amazon.com/sdk-for-java/latest/developer-guide/migration-client-credentials.html to understand the changes in credential providers.

  • CCMSG-2224: Updated Jackson Databind to fix CVE-2022-42003 and CVE-2022-42004

  • CCMSG-1954: Updated com.google.code.gson_gson to 2.9

  • Minor:Upgrade connect-commons-plugins from 0.8.12 to 0.8.13 to use backward compatible licensing jar

  • Minor:Upgrade connect-commons-plugins from 0.8.11 to 0.8.12 to remove nano version

  • CVE: Upgrade connect-commons-plugins from 0.8.10 to 0.8.11

  • updated storage commons to fix jackson databind

  • CCMSG-1652 updated to latest commons to resolve protobuf CVE

  • CCLOG-870: Introduce retry counter with exponential backoff to prevent infinite retry with no backoff

  • CCLOG-886: Add config validation ITs; refactor existing IT framework