AWS Glue OCF Connector Release Notes

Alation Cloud Service Applies to Alation Cloud Service instances of Alation

Customer Managed Applies to customer-managed instances of Alation

September 18, 2024

AWS Glue OCF Connector: Version 1.3.0

Enhancements

FIPS Compliance

The JDK is now upgraded to Temurin-11.0.24+8. This upgrade addresses the following Common Vulnerabilities and Exposures (CVEs): CVE-2024-45490, CVE-2024-45491, CVE-2024-45492, CVE-2024-6119 (AL-136319)

August 28, 2024

AWS Glue OCF Connector: Version 1.2.0

Enhancements

SDK Upgrade

The AWS Glue OCF connector is now upgraded to the latest SDK version 4.8.16. (AL-165682)

This upgrade addresses the following Common Vulnerabilities and Exposures (CVEs):

CVE-2022-25647, CVE-2023-2976, CVE-2020-8908, CVE-2021-22569, CVE-2021-22570, CVE-2022-3509, CVE-2022-3510, CVE-2022-3171, CVE-2021-29425, CVE-2021-37136, CVE-2021-37137, CVE-2019-20444, CVE-2021-21290, CVE-2021-43797, CVE-2022-24823, CVE-2024-29025, CVE-2021-21295, CVE-2021-21409, CVE-2020-11612, CVE-2019-20445, CVE-2023-34462

OpenJDK Upgrade

The JDK is now upgraded to Temurin-11.0.23+9. This upgrade addresses the following Common Vulnerabilities and Exposures (CVEs): CVE-2024-20952 and CVE-2023-20918. (AL-165682)

Support for Authentication Based on AWS Secret Manager Credentials

When installed on an Alation Agent, the AWS Glue OCF connector supports authentication using credentials the Agent has fetched from AWS Secrets Manager. For more information, see Integration with AWS Secrets Manager for Data Source Authentication Using OCF Connector. (AL-165682)

Note

This feature applies only to Alation Cloud Service on the cloud native architecture.

Docker CIS Benchmark Compliance

AWS Glue OCF connector versions 1.2.0 and newer are now compliant with the following Docker CIS benchmarks (AL-165682):

  • Docker 4.1 Ensure that a user for the container has been created

  • Docker 4.6 Ensure that HEALTHCHECK instructions have been added to container images

  • Docker 4.7 Ensure update instructions are not used alone in Dockerfiles

Fixed Issues

The Get List of Schemas Fails to Display Results for Restricted IAM Policy

If there is a restricting IAM policy over resources (databases), selecting the Get List of Schemas option did not show any results. (AL-163533)