Version 2.2.9

Changelog

• Bump amazon-kinesis-client to 1.15.1
• Add sts module to lzo Docker image

Version 2.2.8

A patch release that bumps dependencies for potential security vulnerabilities.

Changelog

Bump pureconfig to 0.15.0 (#286)
Bump reload4j to 1.2.22 (#286)
Bump snappy-java to 1.1.10.4 (#286)
Scan Docker images in Snyk Github action (#285)

Version 2.2.7

A patch release that bumps dependencies for potential security vulnerabilities.

Changelog

• Bump sbt-snowplow-release to 0.3.1 (#282)

Version 2.2.6

A maintenance release to bump dependencies to newer versions

Changelog

• Update copyright notice to 2023 (#279)
• Use sbt-snowplow-release to build docker images (#278)
• Bump protobuf-java to 3.21.12 (#277)
• Bump jackson to 2.14.1 (#276)

Version 2.2.5

This release makes it easier to authenticate on an EKS cluster (e.g. with a service account).

CHANGELOG

• Add STS to runtime dependencies (#275)

Version 2.2.4

A maintenance release to bump the docker base image to a newer version.

Version 2.2.3

This patch release bumps Scala version since current version has known security vulnerability. Also, it fixes a bug that crashes application when AT_TIMESTAMP is used as InitialPosition.

• Fix: loader cannot start with InitialPosition = AT_TIMESTAMP (#267)
• Bump scala version to 2.13.9 (#270)

Version 2.2.2

This patch release is simply to generate new docker images that bring in sufficiently recent version of libfreetype6, see here.

Changelog

• Ensure docker image has latest libfreetype6 version (#265)

Version 2.2.1

This patch release bumps Hadoop to version 3.3.3, which removes many security vulnerabilities associated with the older version of Hadoop. This change only affects the "lzo" docker image; the standard docker image does not have Hadoop present in the build.

Changelog

• Bump hadoop to 3.3.3 (#263)

Version 2.2.0

Starting from this release we are publishing three different flavours of the docker image.

• Pull the :2.2.0 tag if you only need GZip output format
• Pull the :2.2.0-lzo tag if you also need LZO output format
• Pull the :2.2.0-distroless tag for an lightweight alternative to :2.2.0

docker pull snowplow/snowplow-s3-loader:2.2.0
docker pull snowplow/snowplow-s3-loader:2.2.0-lzo
docker pull snowplow/snowplow-s3-loader:2.2.0-distroless

We removed LZO support from the standard image, because it means we can more easily eliminate security vulnerabilities that are brought in from a dependency on hadoop version 2.

The "distroless" docker image is built from a more lightweight base image. It provides some security advantages, because it carries only the minimal files and executables needed for the loader to run.

Changelog

• Publish distroless docker image (#258)
• Bump jackson-databind to 2.12.6.1 (#260)
• Bump amazon-kinesis-client to 1.14.8 (#259)
• Split lzo serializers into a separate sbt project (#261)