Skip to content

[FLINK-39148] [Build] Update flink-connector-kafka & flink-sql-connector-kafka to 4.0.1-2.0#27479

Open
eschcam wants to merge 3 commits intoapache:masterfrom
Nordix:bump-flink-connector-kafka
Open

[FLINK-39148] [Build] Update flink-connector-kafka & flink-sql-connector-kafka to 4.0.1-2.0#27479
eschcam wants to merge 3 commits intoapache:masterfrom
Nordix:bump-flink-connector-kafka

Conversation

@eschcam
Copy link
Copy Markdown
Contributor

@eschcam eschcam commented Jan 27, 2026
edited
Loading

What is the purpose of the change

flink-connector-kafka 3.0.0-1.17 contains the following CVEs:

Upgrading to 4.0.1-2.0 resolves all above CVEs

Brief change log

  • Update flink-connector-kafka to 4.0.1-2.0
  • Update flink-sql-connector-kafka to 4.0.1-2.0
  • Use a variable for flink-connector-kafka version

Verifying this change

Passes CI tests

Does this pull request potentially affect one of the following parts:

  • Dependencies (does it add or upgrade a dependency): yes
  • The public API, i.e., is any changed class annotated with @Public(Evolving): no
  • The serializers: no
  • The runtime per-record code paths (performance sensitive): no
  • Anything that affects deployment or recovery: JobManager (and its components), Checkpointing, Kubernetes/Yarn, ZooKeeper: no
  • The S3 file system connector: no

Documentation

  • Does this pull request introduce a new feature? no
  • If yes, how is the feature documented? not applicable

@flinkbot
Copy link
Copy Markdown
Collaborator

flinkbot commented Jan 27, 2026
edited
Loading

CI report:

Bot commands The @flinkbot bot supports the following commands:
  • @flinkbot run azure re-run the last Azure build

davidradl
davidradl reviewed Jan 27, 2026
View reviewed changes
Comment thread flink-end-to-end-tests/flink-confluent-schema-registry/pom.xml Outdated
@eschcam eschcam changed the title [Hotfix] [Build] Update flink-connector-kafka to 4.0.1-2.0 [Hotfix] [Build] Update flink-connector-kafka & flink-sql-connector-kafka to 4.0.1-2.0 Jan 27, 2026
@eschcam eschcam requested a review from davidradl January 27, 2026 14:48
@github-actions github-actions Bot added the community-reviewed PR has been reviewed by the community. label Jan 27, 2026
@eschcam eschcam changed the title [Hotfix] [Build] Update flink-connector-kafka & flink-sql-connector-kafka to 4.0.1-2.0 [FLINK-39148] [Build] Update flink-connector-kafka & flink-sql-connector-kafka to 4.0.1-2.0 Feb 24, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@davidradl davidradl davidradl approved these changes

Assignees

No one assigned

Labels

community-reviewed PR has been reviewed by the community.

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@eschcam @flinkbot @davidradl