SAS Base OCF Connector Release Notes

Alation Cloud Service Applies to Alation Cloud Service instances of Alation

Customer Managed Applies to customer-managed instances of Alation

August 07, 2024

SAS Base OCF Connector: Version 1.9.5

Enhancements

Support for Authentication Based on AWS Secret Manager Credentials

When installed on an Alation Agent, this connector now supports authenticating with credentials the Agent has fetched from AWS Secrets Manager. For more information, see Integration with AWS Secrets Manager for Data Source Authentication Using OCF Connector. (AL-161111)

Note

Support for authentication based on AWS Secret Manager is available for all installations (on-premise and Alation Cloud Service), however, integrating with AWS Secrets Manager through an Alation Agent applies only to cloud native architecture.

OpenJDK Upgrade to Address CVEs

The JDK is now upgraded to Temurin-11.0.23+9. This upgrade addresses the following Common Vulnerabilities and Exposures (CVEs): CVE-2024-20952 and CVE-2023-20918 (AL-162276)

SDK Upgrade

SAS OCF connector is now upgraded to the latest SDK version 4.8.16. (AL-133409)

This SDK upgrade fixed the following issues:

CVE-2022-25647, CVE-2023-2976, CVE-2020-8908, CVE-2021-22569, CVE-2021-22570, CVE-2022-3509, CVE-2022-3510, CVE-2022-3171, CVE-2021-29425, CVE-2021-37136, CVE-2021-37137, CVE-2019-20444, CVE-2021-21290, CVE-2021-43797, CVE-2022-24823, CVE-2024-29025, CVE-2021-21295, CVE-2021-21409, CVE-2020-11612, CVE-2019-20445, CVE-2023-34462, GHSA-xpw8-rcwv-8f8p.