Skip to content

1.1.3: Fix CVE-2024-21634 in `software.amazon.ion:ion-java`
Compare
Choose a tag to compare
@kaklakariada kaklakariada released this 19 Jan 08:20
· 4 commits to main since this release
1.1.3
b91adce
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Learn about vigilant mode.

Summary

This release fixes vulnerability CVE-2024-21634 in transitive compile dependency software.amazon.ion:ion-java.

Security

Dependency Updates

Exasol Kinesis Connector Extension

Compile Dependency Updates

  • Updated com.amazonaws:aws-java-sdk-kinesis:1.12.593 to 1.12.639
  • Updated com.exasol:import-export-udf-common-scala_2.13:1.1.1 to 2.0.0

Test Dependency Updates

  • Updated com.exasol:exasol-testcontainers:6.6.3 to 7.0.0
  • Updated com.exasol:hamcrest-resultset-matcher:1.6.3 to 1.6.4
  • Updated com.exasol:test-db-builder-java:3.5.2 to 3.5.3
  • Updated org.mockito:mockito-core:5.7.0 to 5.9.0
  • Updated org.testcontainers:localstack:1.19.2 to 1.19.3

Plugin Dependency Updates

  • Updated com.exasol:project-keeper-maven-plugin:2.9.16 to 3.0.0
  • Updated org.apache.maven.plugins:maven-failsafe-plugin:3.2.2 to 3.2.3
  • Updated org.apache.maven.plugins:maven-surefire-plugin:3.2.2 to 3.2.3
  • Added org.apache.maven.plugins:maven-toolchains-plugin:3.1.0
  • Updated org.codehaus.mojo:versions-maven-plugin:2.16.1 to 2.16.2

Extension

Compile Dependency Updates

  • Updated @exasol/extension-manager-interface:0.3.1 to 0.4.1

Development Dependency Updates

  • Updated eslint:^8.47.0 to ^8.56.0
  • Updated @jest/globals:^29.6.3 to ^29.7.0
  • Updated @types/node:^20.5.4 to ^20.11.5
  • Updated @typescript-eslint/parser:^6.4.1 to ^6.19.0
  • Updated typescript:^5.1.6 to ^5.3.3
  • Updated @typescript-eslint/eslint-plugin:^6.4.1 to ^6.19.0
  • Updated jest:29.6.3 to 29.7.0
  • Updated ts-node:^10.9.1 to ^10.9.2
  • Updated esbuild:^0.19.2 to ^0.19.11
Assets 9
Loading