Skip to content

Commit

Permalink
50: Update dependencies (#52)
Browse files Browse the repository at this point in the history
  • Loading branch information
@kaklakariada
kaklakariada committed Mar 15, 2024
1 parent 686fa6e commit f4d8682
Show file tree
Hide file tree
Showing 17 changed files with 502 additions and 228 deletions.
4 changes: 3 additions & 1 deletion .gitattributes
View file
Original file line number Diff line number Diff line change
Expand Up @@ -5,10 +5,12 @@ pk_generated_parent.pom linguist-genera
dependencies.md linguist-generated=true
doc/changes/changelog.md linguist-generated=true
.github/workflows/broken_links_checker.yml linguist-generated=true
.github/workflows/ci-build.yml linguist-generated=true
.github/workflows/ci-build-next-java.yml linguist-generated=true
.github/workflows/dependencies_check.yml linguist-generated=true
.github/workflows/dependencies_update.yml linguist-generated=true
.github/workflows/release_droid_print_quick_checksum.yml linguist-generated=true
.github/workflows/release_droid_upload_github_release_assets.yml linguist-generated=true
.github/workflows/release_droid_prepare_original_checksum.yml linguist-generated=true
.settings/org.eclipse.jdt.core.prefs linguist-generated=true
.settings/org.eclipse.jdt.ui.prefs linguist-generated=true
src/assembly/all-dependencies.xml linguist-generated=true
Expand Down
2 changes: 1 addition & 1 deletion .github/workflows/ci-build.yml
View file

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

32 changes: 29 additions & 3 deletions .github/workflows/dependencies_check.yml
View file

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

169 changes: 169 additions & 0 deletions .github/workflows/dependencies_update.yml
View file

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

2 changes: 1 addition & 1 deletion .github/workflows/release_droid_prepare_original_checksum.yml
View file

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

2 changes: 0 additions & 2 deletions .github/workflows/release_droid_upload_github_release_assets.yml
View file
Original file line number Diff line number Diff line change
@@ -1,5 +1,3 @@
# Generated by Project Keeper
# https://github.com/exasol/project-keeper/blob/main/project-keeper/src/main/resources/templates/.github/workflows/release_droid_upload_github_release_assets.yml
name: Release Droid - Upload GitHub Release Assets
on:
workflow_dispatch:
Expand Down
1 change: 1 addition & 0 deletions .project-keeper.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -17,3 +17,4 @@ build:
excludes:
# Uploads extension to GitHub release
- "E-PK-CORE-18: Outdated content: '.github/workflows/release_droid_upload_github_release_assets.yml'"
- "W-PK-CORE-153: Project-keeper version 4.1.0 is outdated. Please update project-keeper to latest version 4.2.0."
3 changes: 2 additions & 1 deletion .vscode/settings.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -10,7 +10,8 @@
"java.sources.organizeImports.staticStarThreshold": 3,
"java.test.config": {
"vmArgs": [
"-Djava.util.logging.config.file=src/test/resources/logging.properties"
"-Djava.util.logging.config.file=src/test/resources/logging.properties",
"-Dcom.exasol.dockerdb.image=8.24.0"
]
},
"[java]": {
Expand Down
1 change: 1 addition & 0 deletions doc/changes/changelog.md
View file

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

50 changes: 50 additions & 0 deletions doc/changes/changes_1.1.5.md
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,50 @@
# Kinesis Connector Extension 1.1.5, released 2024-03-15

Code name: Fix CVE-2024-25710 and CVE-2024-26308 in test dependency

## Summary

This release fixes CVE-2024-25710 and CVE-2024-26308 in test dependency `org.apache.commons:commons-compress:1.24.0`.

## Security

* #50: Fixed CVE-2024-25710 in `org.apache.commons:commons-compress:jar:1.24.0:test`
* #51: Fixed CVE-2024-26308 in `org.apache.commons:commons-compress:jar:1.24.0:test`

## Dependency Updates

### Exasol Kinesis Connector Extension

#### Compile Dependency Updates

* Updated `com.amazonaws:aws-java-sdk-kinesis:1.12.646` to `1.12.680`

#### Test Dependency Updates

* Updated `com.exasol:exasol-testcontainers:7.0.0` to `7.0.1`
* Updated `com.exasol:extension-manager-integration-test-java:0.5.7` to `0.5.8`
* Updated `com.exasol:hamcrest-resultset-matcher:1.6.4` to `1.6.5`
* Updated `com.exasol:test-db-builder-java:3.5.3` to `3.5.4`
* Updated `org.mockito:mockito-core:5.10.0` to `5.11.0`
* Updated `org.testcontainers:localstack:1.19.4` to `1.19.7`

#### Plugin Dependency Updates

* Updated `com.exasol:error-code-crawler-maven-plugin:1.3.1` to `2.0.0`
* Updated `com.exasol:project-keeper-maven-plugin:3.0.1` to `4.1.0`
* Updated `org.apache.maven.plugins:maven-compiler-plugin:3.11.0` to `3.12.1`
* Updated `org.apache.maven.plugins:maven-failsafe-plugin:3.2.3` to `3.2.5`
* Updated `org.apache.maven.plugins:maven-surefire-plugin:3.2.3` to `3.2.5`
* Updated `org.codehaus.mojo:flatten-maven-plugin:1.5.0` to `1.6.0`

### Extension

#### Development Dependency Updates

* Updated `eslint:^8.56.0` to `^8.57.0`
* Updated `@types/node:^20.11.5` to `^20.11.28`
* Updated `@typescript-eslint/parser:^6.19.0` to `^7.2.0`
* Updated `ts-jest:^29.1.1` to `^29.1.2`
* Updated `typescript:^5.3.3` to `^5.4.2`
* Updated `@typescript-eslint/eslint-plugin:^6.19.0` to `^7.2.0`
* Updated `esbuild:^0.19.11` to `^0.20.2`
10 changes: 5 additions & 5 deletions doc/user_guide/user_guide.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -45,8 +45,8 @@ the port number `2580` for http.
Upload the jar file using curl:

```bash
curl -X PUT -T exasol-kinesis-connector-extension-1.1.4.jar \
http://w:[email protected]:2580/kinesis/exasol-kinesis-connector-extension-1.1.4.jar
curl -X PUT -T exasol-kinesis-connector-extension-1.1.5.jar \
http://w:[email protected]:2580/kinesis/exasol-kinesis-connector-extension-1.1.5.jar
```

> Please also check out Exasol [BucketFS Client][bucketfs-client] as an
Expand Down Expand Up @@ -111,21 +111,21 @@ Create the following UDF scripts. Please do not change the names of the scripts.
CREATE OR REPLACE JAVA SET SCRIPT KINESIS_METADATA (...)
EMITS (KINESIS_SHARD_ID VARCHAR(130), SHARD_SEQUENCE_NUMBER VARCHAR(2000)) AS
%scriptclass com.exasol.cloudetl.kinesis.KinesisShardsMetadataReader;
%jar /buckets/bfsdefault/kinesis/exasol-kinesis-connector-extension-1.1.4.jar;
%jar /buckets/bfsdefault/kinesis/exasol-kinesis-connector-extension-1.1.5.jar;
/
;

--/
CREATE OR REPLACE JAVA SET SCRIPT KINESIS_IMPORT (...) EMITS (...) AS
%scriptclass com.exasol.cloudetl.kinesis.KinesisShardDataImporter;
%jar /buckets/bfsdefault/kinesis/exasol-kinesis-connector-extension-1.1.4.jar;
%jar /buckets/bfsdefault/kinesis/exasol-kinesis-connector-extension-1.1.5.jar;
/
;

--/
CREATE OR REPLACE JAVA SET SCRIPT KINESIS_CONSUMER (...) EMITS (...) AS
%scriptclass com.exasol.cloudetl.kinesis.KinesisImportQueryGenerator;
%jar /buckets/bfsdefault/kinesis/exasol-kinesis-connector-extension-1.1.4.jar;
%jar /buckets/bfsdefault/kinesis/exasol-kinesis-connector-extension-1.1.5.jar;
/
;
```
Expand Down
Loading

0 comments on commit f4d8682

Please sign in to comment.