Releases · exasol/bucketfs-java

16 Oct 12:31

4.0.0

09f398d

4.0.0 Post-Exasol 8.29.1 compatibility Latest

Latest

In Exasol versions after 8.29.1, the behavior of the BuckteFS interface changed subtly, causing some integration tests in this project to fail. We updated the tests for compatibility with 8.29.12, which was the latest version 8.x available at this time and additionally with 2025.1.3.

Breaking Changes

We fixed the way the password encoding works in the CreateBucketCommand class for current versions of Exasol 8, since that was changed on the server side. Use the method useBase64EncodedPasswords(boolean) in the builder to control whether (until Exasol 7) or not (Exasol 8 and later) passwords sent via the create command are Base64 encoded on the client side. This is a breaking change for Exasol 7.

We also removed the method ReadEnabledBucket.httpPort which was deprecated in favor of ReadEnabledBucket.port in 2.2.0 (2021).

Bugfix

#80: Updated integration tests to be compatible with Exasol 8.34.0

Dependency Updates

Test Dependency Updates

Updated org.junit.jupiter:junit-jupiter-api:5.13.0 to 5.13.4
Updated org.junit.jupiter:junit-jupiter-params:5.13.0 to 5.13.4
Updated org.mockito:mockito-junit-jupiter:5.18.0 to 5.20.0
Updated org.testcontainers:junit-jupiter:1.21.1 to 1.21.3

Plugin Dependency Updates

Updated com.exasol:error-code-crawler-maven-plugin:2.0.4 to 2.0.5
Updated com.exasol:project-keeper-maven-plugin:5.2.3 to 5.4.2
Updated com.exasol:quality-summarizer-maven-plugin:0.2.0 to 0.2.1
Updated io.github.git-commit-id:git-commit-id-maven-plugin:9.0.1 to 9.0.2
Updated org.apache.maven.plugins:maven-clean-plugin:3.4.1 to 3.5.0
Updated org.apache.maven.plugins:maven-compiler-plugin:3.14.0 to 3.14.1
Updated org.apache.maven.plugins:maven-enforcer-plugin:3.5.0 to 3.6.1
Updated org.apache.maven.plugins:maven-failsafe-plugin:3.5.3 to 3.5.4
Updated org.apache.maven.plugins:maven-gpg-plugin:3.2.7 to 3.2.8
Updated org.apache.maven.plugins:maven-javadoc-plugin:3.11.2 to 3.12.0
Updated org.apache.maven.plugins:maven-surefire-plugin:3.5.3 to 3.5.4
Updated org.codehaus.mojo:flatten-maven-plugin:1.7.0 to 1.7.3
Updated org.codehaus.mojo:versions-maven-plugin:2.18.0 to 2.19.1
Updated org.sonarsource.scanner.maven:sonar-maven-plugin:5.1.0.4751 to 5.2.0.4988
Updated org.sonatype.central:central-publishing-maven-plugin:0.7.0 to 0.8.0

Assets 4

28 Aug 11:08

github-actions

3.2.4

bc033a7

3.2.4 Fixes for vulnerability CVE-2025-48924

This release fixes the following vulnerability:

CVE-2025-48924 (CWE-674) in dependency `org.apache.commons:commons-lang3:jar:3.16.0:test`

Uncontrolled Recursion vulnerability in Apache Commons Lang.

This issue affects Apache Commons Lang: Starting with commons-lang:commons-lang 2.0 to 2.6, and, from org.apache.commons:commons-lang3 3.0 before 3.18.0.

The methods ClassUtils.getClass(...) can throw StackOverflowError on very long inputs. Because an Error is usually not handled by applications and libraries, a
StackOverflowError could cause an application to stop.

Users are recommended to upgrade to version 3.18.0, which fixes the issue.

CVE: CVE-2025-48924
CWE: CWE-674

References

Security

#81: Fixed vulnerability CVE-2025-48924 in dependency org.apache.commons:commons-lang3:jar:3.16.0:test

Dependency Updates

Test Dependency Updates

Updated com.exasol:exasol-testcontainers:7.1.5 to 7.1.7

Plugin Dependency Updates

Updated com.exasol:error-code-crawler-maven-plugin:2.0.3 to 2.0.4
Updated com.exasol:project-keeper-maven-plugin:5.1.0 to 5.2.3
Added org.sonatype.central:central-publishing-maven-plugin:0.7.0
Removed org.sonatype.plugins:nexus-staging-maven-plugin:1.7.0

Assets 4

05 Jun 09:27

github-actions

3.2.3

850d688

3.2.3 Get the UDF bucket path feature

Implemented a method that returns the correct path for a bucket from the UDFs perspective

Features

#77: Get the UDF bucket path

Assets 4

05 Jun 07:48

github-actions

3.2.2

47c6f1e

3.2.2 Dependency updates on top of 3.0.0

This release is a security update. We updated the dependencies of the project to fix transitive security issues.

We also added an exception for the OSSIndex for CVE-2024-55551, which is a false positive in Exasol's JDBC driver.
This issue has been fixed quite a while back now, but the OSSIndex unfortunately does not contain the fix version of 24.2.1 (2024-12-10) set.

Features

#76: Updated dependencies on top of 3.0.0

Dependency Updates

Test Dependency Updates

Updated com.exasol:exasol-testcontainers:7.1.1 to 7.1.5
Added org.junit.jupiter:junit-jupiter-api:5.13.0
Removed org.junit.jupiter:junit-jupiter-engine:5.11.3
Updated org.junit.jupiter:junit-jupiter-params:5.11.3 to 5.13.0
Updated org.mockito:mockito-junit-jupiter:5.14.2 to 5.18.0
Updated org.slf4j:slf4j-jdk14:2.0.16 to 2.0.17
Updated org.testcontainers:junit-jupiter:1.20.3 to 1.21.1

Plugin Dependency Updates

Updated com.exasol:project-keeper-maven-plugin:4.4.0 to 5.1.0
Added io.github.git-commit-id:git-commit-id-maven-plugin:9.0.1
Removed io.github.zlika:reproducible-build-maven-plugin:0.17
Added org.apache.maven.plugins:maven-artifact-plugin:3.6.0
Updated org.apache.maven.plugins:maven-clean-plugin:3.4.0 to 3.4.1
Updated org.apache.maven.plugins:maven-compiler-plugin:3.13.0 to 3.14.0
Updated org.apache.maven.plugins:maven-deploy-plugin:3.1.2 to 3.1.4
Updated org.apache.maven.plugins:maven-failsafe-plugin:3.5.1 to 3.5.3
Updated org.apache.maven.plugins:maven-install-plugin:3.1.3 to 3.1.4
Updated org.apache.maven.plugins:maven-javadoc-plugin:3.10.1 to 3.11.2
Updated org.apache.maven.plugins:maven-site-plugin:3.9.1 to 3.21.0
Updated org.apache.maven.plugins:maven-surefire-plugin:3.5.1 to 3.5.3
Updated org.codehaus.mojo:flatten-maven-plugin:1.6.0 to 1.7.0
Updated org.codehaus.mojo:versions-maven-plugin:2.17.1 to 2.18.0
Updated org.itsallcode:openfasttrace-maven-plugin:1.8.0 to 2.3.0
Updated org.jacoco:jacoco-maven-plugin:0.8.12 to 0.8.13
Updated org.sonarsource.scanner.maven:sonar-maven-plugin:4.0.0.4121 to 5.1.0.4751

Assets 4

18 Nov 14:04

github-actions

3.2.1

0265340

3.2.1 Parameter serviceName should be optional

This release fixes an issue with the parameter serviceName that is no longer required, keeping the behaviour of
versions <= 3.1.2. It also adds tests for Exasol 8.

Features

#71: Added tests with Exasol 8

Bugfixes

#73: Parameter serviceName should be optional

Dependency Updates

Runtime Dependency Updates

Updated org.eclipse:yasson:3.0.3 to 3.0.4

Test Dependency Updates

Updated com.exasol:exasol-testcontainers:7.1.0 to 7.1.1
Updated org.hamcrest:hamcrest:2.2 to 3.0
Updated org.junit.jupiter:junit-jupiter-engine:5.10.3 to 5.11.3
Updated org.junit.jupiter:junit-jupiter-params:5.10.3 to 5.11.3
Updated org.mockito:mockito-junit-jupiter:5.12.0 to 5.14.2
Updated org.slf4j:slf4j-jdk14:2.0.13 to 2.0.16
Updated org.testcontainers:junit-jupiter:1.20.0 to 1.20.3

Plugin Dependency Updates

Updated com.exasol:project-keeper-maven-plugin:4.3.3 to 4.4.0
Added com.exasol:quality-summarizer-maven-plugin:0.2.0
Updated io.github.zlika:reproducible-build-maven-plugin:0.16 to 0.17
Updated org.apache.maven.plugins:maven-clean-plugin:2.5 to 3.4.0
Updated org.apache.maven.plugins:maven-failsafe-plugin:3.2.5 to 3.5.1
Updated org.apache.maven.plugins:maven-gpg-plugin:3.2.4 to 3.2.7
Updated org.apache.maven.plugins:maven-install-plugin:2.4 to 3.1.3
Updated org.apache.maven.plugins:maven-javadoc-plugin:3.7.0 to 3.10.1
Updated org.apache.maven.plugins:maven-resources-plugin:2.6 to 3.3.1
Updated org.apache.maven.plugins:maven-site-plugin:3.3 to 3.9.1
Updated org.apache.maven.plugins:maven-surefire-plugin:3.2.5 to 3.5.1
Updated org.codehaus.mojo:versions-maven-plugin:2.16.2 to 2.17.1

Assets 4

01 Aug 11:16

github-actions

3.2.0

76fc485

3.2.0 Specify additional Subject Alternative Names (SAN) for certificate

This release supports establishing TLS connections to Exasol Docker DB version 8.29.1 and later by allowing users to specify additional Subject Alternative Names (SAN) for the TLS certificate. See the user guide for details.

Features

#69: Allowed specifying Subject Alternative Names (SAN) for certificate

Dependency Updates

Compile Dependency Updates

Updated jakarta.json.bind:jakarta.json.bind-api:3.0.0 to 3.0.1

Runtime Dependency Updates

Updated org.eclipse.parsson:parsson:1.1.5 to 1.1.7

Test Dependency Updates

Updated com.exasol:exasol-testcontainers:7.0.1 to 7.1.0
Updated org.junit.jupiter:junit-jupiter-engine:5.10.2 to 5.10.3
Updated org.junit.jupiter:junit-jupiter-params:5.10.2 to 5.10.3
Updated org.mockito:mockito-junit-jupiter:5.10.0 to 5.12.0
Updated org.slf4j:slf4j-jdk14:2.0.12 to 2.0.13
Updated org.testcontainers:junit-jupiter:1.19.6 to 1.20.0

Plugin Dependency Updates

Updated com.exasol:error-code-crawler-maven-plugin:2.0.0 to 2.0.3
Updated com.exasol:project-keeper-maven-plugin:4.1.0 to 4.3.3
Updated org.apache.maven.plugins:maven-compiler-plugin:3.12.1 to 3.13.0
Updated org.apache.maven.plugins:maven-deploy-plugin:3.1.1 to 3.1.2
Updated org.apache.maven.plugins:maven-enforcer-plugin:3.4.1 to 3.5.0
Updated org.apache.maven.plugins:maven-gpg-plugin:3.1.0 to 3.2.4
Updated org.apache.maven.plugins:maven-javadoc-plugin:3.6.3 to 3.7.0
Updated org.apache.maven.plugins:maven-toolchains-plugin:3.1.0 to 3.2.0
Updated org.jacoco:jacoco-maven-plugin:0.8.11 to 0.8.12
Updated org.sonarsource.scanner.maven:sonar-maven-plugin:3.10.0.2594 to 4.0.0.4121
Updated org.sonatype.plugins:nexus-staging-maven-plugin:1.6.13 to 1.7.0

Assets 4

01 Mar 06:18

kaklakariada

3.1.2

8c92291

3.1.2: Fix CVE-2024-25710 and CVE-2024-26308 in test dependency `org.apache.commons:commons-compress`

Summary

This release fixes vulnerabilities CVE-2024-25710 and CVE-2024-26308 in test dependency org.apache.commons:commons-compress.

Security

#64: Fixed CVE-2024-25710 and CVE-2024-26308 in test dependency org.apache.commons:commons-compress

Dependency Updates

Compile Dependency Updates

Updated jakarta.json:jakarta.json-api:2.1.2 to 2.1.3

Runtime Dependency Updates

Updated org.eclipse.parsson:parsson:1.1.4 to 1.1.5

Test Dependency Updates

Updated com.exasol:exasol-testcontainers:6.6.2 to 7.0.1
Updated org.junit.jupiter:junit-jupiter-engine:5.10.0 to 5.10.2
Updated org.junit.jupiter:junit-jupiter-params:5.10.0 to 5.10.2
Updated org.mockito:mockito-junit-jupiter:5.5.0 to 5.10.0
Updated org.slf4j:slf4j-jdk14:2.0.9 to 2.0.12
Updated org.testcontainers:junit-jupiter:1.19.0 to 1.19.6

Plugin Dependency Updates

Updated com.exasol:error-code-crawler-maven-plugin:1.3.0 to 2.0.0
Updated com.exasol:project-keeper-maven-plugin:2.9.12 to 4.1.0
Updated org.apache.maven.plugins:maven-compiler-plugin:3.11.0 to 3.12.1
Updated org.apache.maven.plugins:maven-enforcer-plugin:3.4.0 to 3.4.1
Updated org.apache.maven.plugins:maven-failsafe-plugin:3.1.2 to 3.2.5
Updated org.apache.maven.plugins:maven-javadoc-plugin:3.5.0 to 3.6.3
Updated org.apache.maven.plugins:maven-surefire-plugin:3.1.2 to 3.2.5
Added org.apache.maven.plugins:maven-toolchains-plugin:3.1.0
Updated org.codehaus.mojo:flatten-maven-plugin:1.5.0 to 1.6.0
Updated org.codehaus.mojo:versions-maven-plugin:2.16.0 to 2.16.2
Updated org.itsallcode:openfasttrace-maven-plugin:1.6.1 to 1.8.0
Updated org.jacoco:jacoco-maven-plugin:0.8.10 to 0.8.11
Updated org.sonarsource.scanner.maven:sonar-maven-plugin:3.9.1.2184 to 3.10.0.2594

Assets 9

26 Sep 08:21

kaklakariada

3.1.1

43d600b

3.1.1: Fix CVE-2023-42503

Summary

This release fixes CVE-2023-42503 in org.apache.commons:commons-compress by upgrading dependencies.

Security

#62: Fixed CVE-2023-42503 in org.apache.commons:commons-compress

Dependency Updates

Compile Dependency Updates

Updated jakarta.json:jakarta.json-api:2.1.1 to 2.1.2

Runtime Dependency Updates

Updated org.eclipse.parsson:parsson:1.1.1 to 1.1.4

Test Dependency Updates

Updated com.exasol:exasol-testcontainers:6.5.1 to 6.6.2
Updated org.junit.jupiter:junit-jupiter-engine:5.9.2 to 5.10.0
Updated org.junit.jupiter:junit-jupiter-params:5.9.2 to 5.10.0
Updated org.mockito:mockito-junit-jupiter:5.2.0 to 5.5.0
Updated org.slf4j:slf4j-jdk14:2.0.7 to 2.0.9
Updated org.testcontainers:junit-jupiter:1.18.0 to 1.19.0

Plugin Dependency Updates

Updated com.exasol:error-code-crawler-maven-plugin:1.2.2 to 1.3.0
Updated com.exasol:project-keeper-maven-plugin:2.9.6 to 2.9.12
Updated org.apache.maven.plugins:maven-compiler-plugin:3.10.1 to 3.11.0
Updated org.apache.maven.plugins:maven-deploy-plugin:3.1.0 to 3.1.1
Updated org.apache.maven.plugins:maven-enforcer-plugin:3.2.1 to 3.4.0
Updated org.apache.maven.plugins:maven-failsafe-plugin:3.0.0-M8 to 3.1.2
Updated org.apache.maven.plugins:maven-gpg-plugin:3.0.1 to 3.1.0
Updated org.apache.maven.plugins:maven-javadoc-plugin:3.4.1 to 3.5.0
Updated org.apache.maven.plugins:maven-surefire-plugin:3.0.0-M8 to 3.1.2
Updated org.basepom.maven:duplicate-finder-maven-plugin:1.5.1 to 2.0.1
Updated org.codehaus.mojo:flatten-maven-plugin:1.3.0 to 1.5.0
Updated org.codehaus.mojo:versions-maven-plugin:2.14.2 to 2.16.0
Updated org.jacoco:jacoco-maven-plugin:0.8.8 to 0.8.10

Assets 9

11 Apr 11:51

kaklakariada

3.1.0

7a69b41

3.1.0: Removed duplicate classes from dependencies

Summary

This release adds a method for recursively listing the content of a bucket. It also removes duplicate classes from dependencies and switched from Jakarta JSON implementation to Eclipse Parsson and Yasson.

Features

#57: Supported recursive listing of bucket contents

Bugfixes

#59: Removed duplicate classes from dependencies

Dependency Updates

Compile Dependency Updates

Updated com.exasol:error-reporting-java:1.0.0 to 1.0.1
Removed org.apache.commons:commons-compress:1.22
Removed org.eclipse:yasson:3.0.2

Runtime Dependency Updates

Added org.eclipse.parsson:parsson:1.1.1
Added org.eclipse:yasson:3.0.3
Removed org.glassfish:jakarta.json:2.0.1

Test Dependency Updates

Updated com.exasol:exasol-testcontainers:6.5.0 to 6.5.1
Updated org.mockito:mockito-junit-jupiter:5.0.0 to 5.2.0
Added org.slf4j:slf4j-jdk14:2.0.7
Updated org.testcontainers:junit-jupiter:1.17.6 to 1.18.0

Plugin Dependency Updates

Updated com.exasol:error-code-crawler-maven-plugin:1.2.1 to 1.2.2
Updated com.exasol:project-keeper-maven-plugin:2.9.1 to 2.9.6
Updated org.apache.maven.plugins:maven-deploy-plugin:3.0.0 to 3.1.0
Updated org.apache.maven.plugins:maven-enforcer-plugin:3.1.0 to 3.2.1
Updated org.apache.maven.plugins:maven-failsafe-plugin:3.0.0-M6 to 3.0.0-M8
Updated org.apache.maven.plugins:maven-surefire-plugin:3.0.0-M7 to 3.0.0-M8
Added org.basepom.maven:duplicate-finder-maven-plugin:1.5.1
Updated org.codehaus.mojo:versions-maven-plugin:2.13.0 to 2.14.2

Assets 9

20 Jan 10:17

redcatbear

3.0.0

5b98825

3.0.0: `BucketFsServiceConfigurationProvider` and `ReadEnabledBucket.Builder.host()`

Summary

Breaking changes were introduced back in version 2.6.0 without updating the major version. With the release of 3.0.0 the old 2.6.0 is deprecated.

Those are the breaking changes compared to the 2.x.x line:

2.x.x	3.0.0
`BucketFsSerivceConfigurationProvider`	`BucketFsServiceConfigurationProvider`
`ReadEnabledBucket.Builder.ipAddress()`	`ReadEnabledBucket.Builder.host()`

We also updated test dependencies and plugins. Functionally 3.0.0 is identical to the deprecated 2.6.0.

Refactoring

3.0.0: Documented breaking changes

Dependency Updates

Test Dependency Updates

Updated com.exasol:exasol-testcontainers:6.4.0 to 6.5.0
Updated org.junit.jupiter:junit-jupiter-engine:5.9.1 to 5.9.2
Updated org.junit.jupiter:junit-jupiter-params:5.9.1 to 5.9.2
Updated org.mockito:mockito-junit-jupiter:4.10.0 to 5.0.0

Plugin Dependency Updates

Updated org.itsallcode:openfasttrace-maven-plugin:1.5.0 to 1.6.1

Assets 9

Releases: exasol/bucketfs-java

4.0.0 Post-Exasol 8.29.1 compatibility

Breaking Changes

Bugfix

Dependency Updates

Test Dependency Updates

Plugin Dependency Updates

Uh oh!

3.2.4 Fixes for vulnerability CVE-2025-48924

CVE-2025-48924 (CWE-674) in dependency org.apache.commons:commons-lang3:jar:3.16.0:test

References

Security

Dependency Updates

Test Dependency Updates

Plugin Dependency Updates

Uh oh!

3.2.3 Get the UDF bucket path feature

Features

Uh oh!

3.2.2 Dependency updates on top of 3.0.0

Features

Dependency Updates

Test Dependency Updates

Plugin Dependency Updates

Uh oh!

3.2.1 Parameter serviceName should be optional

Features

Bugfixes

Dependency Updates

Runtime Dependency Updates

Test Dependency Updates

Plugin Dependency Updates

Uh oh!

3.2.0 Specify additional Subject Alternative Names (SAN) for certificate

Features

Dependency Updates

Compile Dependency Updates

Runtime Dependency Updates

Test Dependency Updates

Plugin Dependency Updates

Uh oh!

3.1.2: Fix CVE-2024-25710 and CVE-2024-26308 in test dependency `org.apache.commons:commons-compress`

Summary

Security

Dependency Updates

Compile Dependency Updates

Runtime Dependency Updates

Test Dependency Updates

Plugin Dependency Updates

Uh oh!

3.1.1: Fix CVE-2023-42503

Summary

Security

Dependency Updates

Compile Dependency Updates

Runtime Dependency Updates

Test Dependency Updates

Plugin Dependency Updates

Uh oh!

3.1.0: Removed duplicate classes from dependencies

Summary

Features

Bugfixes

Dependency Updates

Compile Dependency Updates

Runtime Dependency Updates

Test Dependency Updates

Plugin Dependency Updates

Uh oh!

3.0.0: `BucketFsServiceConfigurationProvider` and `ReadEnabledBucket.Builder.host()`

Summary

Refactoring

Dependency Updates

Test Dependency Updates

Plugin Dependency Updates

Uh oh!

CVE-2025-48924 (CWE-674) in dependency `org.apache.commons:commons-lang3:jar:3.16.0:test`