Skip to content

chore(deps): update dependency software.amazon.jdbc:aws-advanced-jdbc-wrapper to v2.3.6 #34

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
wants to merge 2 commits into from
Closed

chore(deps): update dependency software.amazon.jdbc:aws-advanced-jdbc-wrapper to v2.3.6 #34

wants to merge 2 commits into from

Conversation

renovate[bot]
Copy link

@renovate renovate bot commented Apr 19, 2024
edited
Loading

Mend Renovate

This PR contains the following updates:

Package Change Age Adoption Passing Confidence
software.amazon.jdbc:aws-advanced-jdbc-wrapper 2.3.1 -> 2.3.6 age adoption passing confidence

Warning

Some dependencies could not be looked up. Check the Dependency Dashboard for more information.

Release Notes

awslabs/aws-advanced-jdbc-wrapper (software.amazon.jdbc:aws-advanced-jdbc-wrapper)

v2.3.6

Compare Source

🪄 Added
🐛 Fixed
🦀 Changed
  • Log level of Failover.startWriterFailover and Failover.establishedConnection from fine to info for better visibility of failover-related logs (Issue #​890).
  • Telemetry's connection property documentation. See Telemetry.

v2.3.5

Compare Source

🪄 Added
  • Sample code configuring the AWS JDBC Driver with DBCP (PR #​930).
🦀 Changed
  • Fix issue with deadlock while using prepared transactions and PostgreSQL Explicit Locking (PR #​918).
  • Removed ConnectionStringHostListProvider#identifyConnection since it is not used (PR #​920).

v2.3.4

Compare Source

🪄 Added
  • Documentation:
  • Spring Framework application code examples with load balanced access to database cluster reader instances (PR #​852).
  • New configuration preset SF_ optimized for Spring Framework applications (PR #​852).
  • Lightweight alternative for IAM token generator that requires fewer dependencies (PR #​867).
🐛 Fixed
  • Fixes to session state transfer (PR #​852).
  • Enhanced Host Monitoring Plugin (EFM) v2 plugin to use ConcurrentHashMap instead of HashMap to avoid ConcurrentModificationException (Issue #​855).
  • Move lock location and skip executing Statement.getConnection when running Statement.cancel to fix Statement.cancel for MySQL (PR #​851)
  • Remove Telemetry trace associated with a Monitor thread because traces for long-running tasks is an anti-pattern (PR #​875).
🦀 Changed
  • HostSelector implementations to take into account HostAvailability (PR #​856).
  • Reduced the number of Regular Expression checks with Matcher.find to improve performance (PR #​854).
  • HostSpec class to not use a default lastUpdateTime and instead use null (PR 877).
  • Moved Reader Selection Strategies out of the UsingTheReadWriteSplittingPlugin doc and into its own page. See ReaderSelectionStrategies.

v2.3.3

Compare Source

🪄 Added
🐛 Fixed
  • SqlMethodAnalyzer to handle empty SQL query and not throw IndexOutOfBoundsException (PR #​798).
  • Restructure try blocks in dialects for exception handling (PR #​799).
  • Log message to communicate that an RDS Custom Cluster endpoint can't be used as the 'clusterInstanceHostPattern' configuration setting (PR 801).
  • Make a variable volatile in RdsHostListProvider (Issue #​486).
  • Transfer session state during failover (Issue #​812).
  • Release all stopped monitors so that they are not reused (PR #​831).
  • Added update candidates for the MariaDB dialect in order to swap to MySQL dialects in the case of using a MySQL database with the protocol jdbc:aws-wrapper:mariadb://, and fixed the RDS MySQL dialect from incorrectly returning false in isDialect method (Issue #​789).
🦀 Changed
  • Session state tracking and transfer redesign (PR #​821).
  • Improve Multi-AZ cluster detection (PR #​824).
  • Enhanced Host Monitoring Plugin (EFM) v2 plugin is now a default plugin. The original EFM plugin can still be used by specifying efm in the wrapperPlugins parameter (PR #​825).
  • Update China endpoint patterns (PR #​832).

v2.3.2

Compare Source

🪄 Added
🐛 Fixed
  • Use existing entries to update the round-robin cache (PR #​739).
🦀 Changed
  • Updated HikariCP example to include configuring the datasource with a JDBC URL (PR #​749).
  • Replaced the sychronized keyword with reentrant locks in AwsCredentialsManager (PR #​785).
  • Set HostId in HostSpec when connecting using Aurora instance endpoints (PR #​782).

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

  • If you want to rebase/retry this PR, check this box

This PR has been generated by Mend Renovate. View repository job log here.

@renovate
Add renovate.json (#22)
b97c060 
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
jonkoops pushed a commit that referenced this pull request Apr 23, 2024
@mposolda
Secondary factor bypass in step-up authentication
c427e65 
closes #34

Signed-off-by: mposolda <[email protected]>
(cherry picked from commit e632c03ec4dbfbb7c74c65b0627027390b2e605d)
jonkoops pushed a commit that referenced this pull request Apr 30, 2024
@mposolda
Secondary factor bypass in step-up authentication (#143)
77254a2 
closes #34

Signed-off-by: mposolda <[email protected]>
@renovate renovate bot force-pushed the renovate/aws-jdbc-wrapper.version branch from 1d689b9 to 42f9363 Compare May 2, 2024 00:26
@renovate renovate bot changed the title chore(deps): update dependency software.amazon.jdbc:aws-advanced-jdbc-wrapper to v2.3.5 chore(deps): update dependency software.amazon.jdbc:aws-advanced-jdbc-wrapper to v2.3.6 May 2, 2024
jonkoops pushed a commit that referenced this pull request May 21, 2024
@mposolda @pedroigor
CVE-2023-3597 - Secondary factor bypass in step-up authentication (#144)
aa634ae 
* Restrict the token types that can be verified when not using the user info endpoint

Closes #47

Signed-off-by: Pedro Igor <[email protected]>

Conflicts:
	core/src/main/java/org/keycloak/util/TokenUtil.java
	testsuite/integration-arquillian/tests/base/src/test/java/org/keycloak/testsuite/oauth/ClientTokenExchangeTest.java

* Secondary factor bypass in step-up authentication
closes #34

Signed-off-by: mposolda <[email protected]>

---------

Signed-off-by: mposolda <[email protected]>
Co-authored-by: Pedro Igor <[email protected]>
@jonkoops jonkoops force-pushed the main branch 2 times, most recently from f5bde2d to 5849898 Compare May 29, 2024 11:04
@jonkoops jonkoops closed this Nov 29, 2024
@jonkoops jonkoops deleted the renovate/aws-jdbc-wrapper.version branch November 29, 2024 15:31
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@jonkoops