airbytehq · theyueli · Apr 24, 2025 · Apr 17, 2025 · Apr 17, 2025 · Apr 17, 2025
@@ -15,6 +15,7 @@ dependencies {
     }
     api 'io.github.oshai:kotlin-logging-jvm:7.0.0'
     api 'io.micronaut:micronaut-runtime'
+    api 'org.apache.mina:mina-core:2.0.27' // for fixing vulnerability of sshd-mina
     api 'org.apache.sshd:sshd-mina:2.13.2'
     api 'org.jetbrains.kotlinx:kotlinx-coroutines-core'
 

@@ -174,6 +174,7 @@ corresponds to that version.
 
 | Version    | Date       | Pull Request                                                | Subject                                                                                                                                                        |
 |:-----------|:-----------|:------------------------------------------------------------|:---------------------------------------------------------------------------------------------------------------------------------------------------------------|
+| 0.48.9     | 2025-04-17 | [\#58132] (https://github.com/airbytehq/airbyte/pull/58132) | Fix vulnerability in dependencies. | 
 | 0.48.8     | 2025-03-11 | [\#55709](https://github.com/airbytehq/airbyte/pull/55709)  | Filter unwanted tables in discover to prevent null table issues                                                                                               |
 | 0.48.7     | 2025-01-26 | [\#51596](https://github.com/airbytehq/airbyte/pull/51596)  | Make efficient table discovery during read                                                                                                                     |
 | 0.48.6     | 2025-01-26 | [\#51596](https://github.com/airbytehq/airbyte/pull/51596)  | Fix flaky source mssql tests                                                                                                                                   |

@@ -34,6 +34,7 @@ dependencies {
     api 'com.zaxxer:HikariCP:5.1.0'
     api 'org.jooq:jooq:3.19.11'
     api 'org.apache.commons:commons-csv:1.11.0'
+    api 'org.apache.mina:mina-core:2.0.27' // for fixing vulnerability of sshd-mina
 
     implementation project(':airbyte-cdk:java:airbyte-cdk:airbyte-cdk-dependencies')
 

@@ -1 +1 @@
-version=0.48.8
+version=0.48.9
@@ -30,7 +30,7 @@ dependencies {
     api 'org.slf4j:slf4j-api:2.0.16'
     api 'io.github.oshai:kotlin-logging-jvm:7.0.0'
     api 'org.jetbrains.kotlinx:kotlinx-coroutines-core:1.8.1'
-
+    api 'net.minidev:json-smart:2.5.2'
 
     implementation 'com.jayway.jsonpath:json-path:2.9.0'
     implementation 'com.networknt:json-schema-validator:1.5.1'

@@ -3,7 +3,7 @@ plugins {
 }
 
 airbyteJavaConnector {
-    cdkVersionRequired = '0.45.1'
+    cdkVersionRequired = '0.48.9'
     features = ['db-sources', 'datastore-mongo']
     useLocalCdk = false
 }

@@ -36,7 +36,7 @@ data:
             type: GSM
   connectorType: source
   definitionId: b2e713cd-cc36-4c0a-b5bd-b47cb8a0561e
-  dockerImageTag: 1.5.17
+  dockerImageTag: 1.5.18
   dockerRepository: airbyte/source-mongodb-v2
   documentationUrl: https://docs.airbyte.com/integrations/sources/mongodb-v2
   githubIssueLabel: source-mongodb-v2

@@ -13,6 +13,7 @@ airbyteBulkConnector {
 }
 
 dependencies {
+    api "com.google.protobuf:protobuf-java:4.27.5" // for fixing vulnerability of protobuf-java used by Debezium
     implementation 'com.mysql:mysql-connector-j:9.1.0'
     implementation 'io.debezium:debezium-connector-mysql'
 

@@ -9,7 +9,7 @@ data:
   connectorSubtype: database
   connectorType: source
   definitionId: 435bb9a5-7887-4809-aa58-28c27df0d7ad
-  dockerImageTag: 3.11.11
+  dockerImageTag: 3.11.12
   dockerRepository: airbyte/source-mysql
   documentationUrl: https://docs.airbyte.com/integrations/sources/mysql
   githubIssueLabel: source-mysql

@@ -12,7 +12,7 @@ java {
 }
 
 airbyteJavaConnector {
-    cdkVersionRequired = '0.48.4'
+    cdkVersionRequired = '0.48.9'
     features = ['db-sources', 'datastore-postgres']
     useLocalCdk = false
 }
@@ -23,6 +23,7 @@ application {
 }
 
 dependencies {
+    api "com.google.protobuf:protobuf-java:3.25.5" // for fixing vulnerability of protobuf-java used by Debezium
     implementation 'commons-codec:commons-codec:1.16.0'
     implementation 'io.debezium:debezium-embedded:3.0.1.Final'
     implementation 'io.debezium:debezium-connector-postgres:3.0.1.Final'

@@ -9,7 +9,7 @@ data:
   connectorSubtype: database
   connectorType: source
   definitionId: decd338e-5647-4c0b-adf4-da0e75f5a750
-  dockerImageTag: 3.6.30
+  dockerImageTag: 3.6.31
   dockerRepository: airbyte/source-postgres
   documentationUrl: https://docs.airbyte.com/integrations/sources/postgres
   githubIssueLabel: source-postgres

@@ -293,13 +293,8 @@ void testUserDoesntHasPrivilegesToSelectTable() throws Exception {
       return null;
     });
     final JsonNode anotherUserConfig = getConfig("test_user_3", "132");
-    final Set<AirbyteMessage> actualMessages =
-        MoreIterators.toSet(source().read(anotherUserConfig, CONFIGURED_CATALOG, null));
-    setEmittedAtToNull(actualMessages);
-    // expect 6 records, 4 state messages and 4 stream status messages.
-    assertEquals(14, actualMessages.size());
-    final var actualRecordMessages = filterRecords(actualMessages);
-    assertEquals(PRIVILEGE_TEST_CASE_EXPECTED_MESSAGES, actualRecordMessages);
+    final Throwable thrown = assertThrows(Exception.class, () -> MoreIterators.toSet(source().read(anotherUserConfig, CONFIGURED_CATALOG, null)));
+    assertNotNull(thrown.getMessage());
   }
 
   @Test