--- title: "Aerospike Connect for Pulsar Inbound release notes" description: "Release notes for Aerospike Connect for Pulsar Inbound, detailing version updates, security fixes, and new features." --- # Aerospike Connect for Pulsar Inbound release notes > For the complete documentation index see: [llms.txt](https://aerospike.com/docs/llms.txt) > > All documentation pages available in markdown. ## Connect for Pulsar - Inbound 2.1.5 May 6, 2026  |  [**Download**](https://aerospike.com/download/connector/pulsar_in/) - **Jackson library version incompatibility** - The connector has been upgraded to **Jackson 2.21.2** to remediate critical vulnerabilities found in version 2.18.7. However, this Jackson version is not supported natively by current Pulsar brokers, including v4.2.1. - **Required Action:** To avoid runtime errors caused by class signature mismatches, you must manually upgrade the Jackson libraries in your broker or function runtime classpath to the **2.21 series**. - **This connector requires Java 11 or later.** ### Security - Aerospike Connectors - Security vulnerabilities and dependency upgrades - May 2026: [CVE-2026-22007](https://github.com/advisories/GHSA-rj5j-26xx-hh3v), [CVE-2026-22013](https://github.com/advisories/GHSA-75hh-423h-rvwg), [CVE-2026-22016](https://github.com/advisories/GHSA-9m62-hmpm-rr2m), [CVE-2026-22018](https://github.com/advisories/GHSA-376j-8f52-gp2x), [CVE-2026-22021](https://github.com/advisories/GHSA-9grw-5h83-65p3), [CVE-2026-23865](https://github.com/advisories/GHSA-878v-mxg6-vj8f), [CVE-2026-34268](https://github.com/advisories/GHSA-xvmr-9p7m-jmwv), [CVE-2026-34282](https://github.com/advisories/GHSA-hpm9-74qx-6x32), CWE-770 \[CONNECTOR-1431\] --- ## Connect for Pulsar - Inbound 2.1.4 April 20, 2026  |  [**Download**](https://aerospike.com/download/connector/pulsar_in/) - **This connector requires Java 11 or later.** ### Security - Aerospike Connectors - Security vulnerabilities and dependency upgrades - April 2026: [CVE-2024-6763](https://github.com/advisories/GHSA-qh8g-58pp-2wxh), CVE-2025-8671, [CVE-2025-8916](https://github.com/advisories/GHSA-4cx2-fc23-5wg6), [CVE-2026-3260](https://github.com/advisories/GHSA-3x3v-w654-m28m), [CVE-2026-4111](https://github.com/advisories/GHSA-xrqh-48jh-pjv2), [CVE-2026-4519](https://github.com/advisories/GHSA-rm92-fj5q-mpj5), [CVE-2026-33870](https://github.com/advisories/GHSA-pwqr-wmgm-9rr8) \[CONNECTOR-1379\] --- ## Connect for Pulsar - Inbound 2.1.3 March 12, 2026  |  [**Download**](https://aerospike.com/download/connector/pulsar_in/) - **This connector requires Java 11 or later.** ### Security - Aerospike Connectors - Security vulnerabilities and dependency upgrades - March 2026 - CWE-770, [CVE-2025-33042](https://github.com/advisories/GHSA-rp46-r563-jrc7), [CVE-2026-24308](https://github.com/advisories/GHSA-crhr-qqj8-rpxc). \[CONNECTOR-1359, CONNECTOR-1368\] ### Improvements - Add `min-connections-per-node` configuration item. \[CONNECTOR-923\] - Set user-agent in inbound connectors. \[CONNECTOR-1304\] --- ## Connect for Pulsar - Inbound 2.1.2 February 1, 2026  |  [**Download**](https://aerospike.com/download/connector/pulsar_in/) - **This connector requires Java 11 or later.** ### Security - Aerospike Connectors - Security vulnerabilities and dependency upgrades - February 2026 - [CVE-2025-11187](https://github.com/advisories/GHSA-hpc7-gcqm-58fv), [CVE-2025-15467](https://github.com/advisories/GHSA-wvhq-3h88-rf6g), [CVE-2025-15468](https://github.com/advisories/GHSA-rhx3-fg8p-f9m4), [CVE-2025-15469](https://github.com/advisories/GHSA-v2vr-926q-29fr), CVE-2025-64720, CVE-2025-65018, [CVE-2025-66199](https://github.com/advisories/GHSA-5888-36j9-c92p), [CVE-2025-68160](https://github.com/advisories/GHSA-g78j-46j5-97cr), [CVE-2025-68973](https://github.com/advisories/GHSA-pj23-86ww-f72p), [CVE-2025-69418](https://github.com/advisories/GHSA-78qr-24v5-7q73), [CVE-2025-69419](https://github.com/advisories/GHSA-x77r-97gw-wh89), [CVE-2025-69420](https://github.com/advisories/GHSA-w42r-ph9f-9x66), [CVE-2025-69421](https://github.com/advisories/GHSA-w9rv-xc8m-cmqp), [CVE-2026-21452](https://github.com/advisories/GHSA-cw39-r4h6-8j3x), [CVE-2026-21925](https://github.com/advisories/GHSA-jhg6-g5fp-536p), [CVE-2026-21933](https://github.com/advisories/GHSA-5rm3-299f-6m9v), [CVE-2026-21945](https://github.com/advisories/GHSA-r2mr-x4h2-9chr), [CVE-2026-22795](https://github.com/advisories/GHSA-3vqq-45qg-2xf6), [CVE-2026-22796](https://github.com/advisories/GHSA-r9hf-rxjm-gv2f). \[CONNECTOR-1321\] --- ## Connect for Pulsar - Inbound 2.1.1 December 15, 2025  |  [**Download**](https://aerospike.com/download/connector/pulsar_in/) ::: note The aerospike-pulsar-inbound connector requires Java runtime 11 or later. ::: ### Bug fixes - Honor _total timeout_ and _socket timeout_ at the Aerospike configuration level. \[CONNECTOR-1040\] ### Security - Aerospike Connectors - Security vulnerabilities and dependency upgrades - December 2025 - [CVE-2024-6763](https://github.com/advisories/GHSA-qh8g-58pp-2wxh), [CVE-2025-4598](https://github.com/advisories/GHSA-jx2m-wgq5-5qcj), [CVE-2025-6965](https://github.com/advisories/GHSA-2m69-gcr7-jv3q), [CVE-2025-8916](https://github.com/advisories/GHSA-4cx2-fc23-5wg6), CVE-2025-9230, [CVE-2025-9714](https://github.com/advisories/GHSA-fmj5-rvmp-845r), [CVE-2025-12183](https://github.com/advisories/GHSA-vqf4-7m7x-wgfc), [CVE-2025-58457](https://github.com/advisories/GHSA-2hmj-97jw-28jh), [CVE-2025-59375](https://github.com/advisories/GHSA-vjqp-pjp6-xcxx). \[CONNECTOR-1303\] ### Improvements - Implement Github Action for connector artifact signing and upload to repository. \[CONNECTOR-1309\] --- ## Connect for Pulsar - Inbound 2.1.0 November 11, 2025  |  [**Download**](https://aerospike.com/download/connector/pulsar_in/) ::: note Starting with this release, the aerospike-pulsar-inbound connector requires Java runtime 11 or later. ::: ### New features - Enhanced the connector to reload TLS context on changes to TLS files to connect to destination Aerospike Database. \[CONNECTOR-1275\] ### Improvements - Upgraded the connector and all sub modules to Java 11. \[CONNECTOR-1295\] --- ## Connect for Pulsar - Inbound 2.0.9 September 29, 2025  |  [**Download**](https://aerospike.com/download/connector/pulsar_in/) ### Improvements - Added support for Debian 13 “Trixie” \[CONNECTOR-1215\] ### Security - Fixed - Aerospike Connectors - Security vulnerabilities - [CVE-2025-58056](https://github.com/advisories/GHSA-fghv-69vj-qj49), [CVE-2025-58057](https://github.com/advisories/GHSA-3p8m-j85q-pgmj), CVE-2025-58060, CVE-2025-58364 \[CONNECTOR-1272\] --- ## Connect for Pulsar - Inbound 2.0.8 July 28, 2025  |  [**Download**](https://aerospike.com/download/connector/pulsar_in/) ### Security - Fixed - Aerospike Connectors - Security vulnerabilities - [CVE-2024-12718](https://github.com/advisories/GHSA-2pg8-h2j6-28xm), [CVE-2025-4138](https://github.com/advisories/GHSA-4g4g-fqw4-prp2), [CVE-2025-4330](https://github.com/advisories/GHSA-68pj-xrp5-vccj), [CVE-2025-4435](https://github.com/advisories/GHSA-p72v-37h5-753v), [CVE-2025-4517](https://github.com/advisories/GHSA-6r6c-684h-9j7p), CVE-2025-6020, [CVE-2025-6021](https://github.com/advisories/GHSA-32vr-5hxf-x93f), [CVE-2025-30749](https://github.com/advisories/GHSA-3v8g-f9px-h942), [CVE-2025-47273](https://github.com/advisories/GHSA-5rjg-fvgr-3xxf), [CVE-2025-48924](https://github.com/advisories/GHSA-j288-q9x7-2f5v), [CVE-2025-49794](https://github.com/advisories/GHSA-qg4c-8pj4-qgw2), [CVE-2025-49796](https://github.com/advisories/GHSA-83xx-9f6p-vwfj), [CVE-2025-50106](https://github.com/advisories/GHSA-328q-mjp3-hwmg). \[CONNECTOR-1253\] --- ## Connect for Pulsar - Inbound 2.0.7 June 19, 2025  |  [**Download**](https://aerospike.com/download/connector/pulsar_in/) ### Security - Fixed - Aerospike Connectors - Security vulnerabilities - [CVE-2025-0395](https://github.com/advisories/GHSA-4xpw-6594-8f5m), [CVE-2025-3576](https://github.com/advisories/GHSA-rfh5-gx7w-h7v7), [CVE-2025-4802](https://github.com/advisories/GHSA-8mm9-c4mg-vfjh), [CVE-2024-8176](https://github.com/advisories/GHSA-9hcv-xw76-m4h6), [CVE-2024-12133](https://github.com/advisories/GHSA-j3qr-8f3v-fgjj), [CVE-2024-12243](https://github.com/advisories/GHSA-cqj4-fp95-jqxq), [CVE-2025-32414](https://github.com/advisories/GHSA-mfrm-w63c-3x58), [CVE-2025-48734](https://github.com/advisories/GHSA-wxr5-93ph-8wr9). \[CONNECTOR-1236\] --- ## Connect for Pulsar - Inbound 2.0.6 March 03, 2025  |  [**Download**](https://aerospike.com/download/connector/pulsar_in/) ### New Features - Use sendTimeout as configured without doubling. \[CONNECTOR-1183\] - Converted transaction debug level messages to trace level. \[CONNECTOR-1184\] - Kotlin version upgraded to 2.x. \[CONNECTOR-1185\] ### Security - Updated logback-core to 1.5.15 version to fix [CVE-2024-12798](https://github.com/advisories/GHSA-pr98-23f8-jwxv), [CVE-2024-12801](https://github.com/advisories/GHSA-6v67-2wr5-gvf4). \[CONNECTOR-1175\] - Updated logback-core to 1.5.15 version to fix [CVE-2024-12801](https://github.com/advisories/GHSA-6v67-2wr5-gvf4). \[CONNECTOR-1179\] - Updated logback-classic to 1.5.15 version to fix [CVE-2024-12798](https://github.com/advisories/GHSA-pr98-23f8-jwxv). \[CONNECTOR-1180\] - Updated logback-core to 1.5.15 version to fix [CVE-2024-12798](https://github.com/advisories/GHSA-pr98-23f8-jwxv). \[CONNECTOR-1181\] - Updated io.netty:netty-handler to 4.1.118.Final to fix [CVE-2025-24970](https://github.com/advisories/GHSA-4g8c-wm8x-jfhw), [CVE-2025-25193](https://github.com/advisories/GHSA-389x-839f-4rhx), [CVE-2024-29025](https://github.com/advisories/GHSA-5jpm-x58v-624v), [CVE-2024-47554](https://github.com/advisories/GHSA-78wr-2p64-hpwj), [CVE-2023-46120](https://github.com/advisories/GHSA-mm8h-8587-p46h) (rabbitmq), [CVE-2024-51504](https://github.com/advisories/GHSA-g93m-8x6h-g5gv) (zookeeper). \[CONNECTOR-1188\] --- ## Connect for Pulsar - Inbound 2.0.5 October 23, 2024  |  [**Download**](https://aerospike.com/download/connector/pulsar_in/) ### Security - Fixed Deserialization of Untrusted Data in org.apache.avro:avro:1.11.3. \[CONNECTOR-1149\] - Fixed Denial of Service (DoS) in com.fasterxml.jackson.core:jackson-core. \[CONNECTOR-1149\] - Fixed Race Condition in io.undertow:undertow-core. \[CONNECTOR-1149\] - Fixed Uncontrolled Resource Consumption in commons-io:commons-io. \[CONNECTOR-1149\] --- ## Connect for Pulsar - Inbound 2.0.4 September 20, 2024  |  [**Download**](https://aerospike.com/download/connector/pulsar_in/) ### Security - Fix Arbitrary Code Injection affecting platform-python-setuptools & python3-setuptools-wheel. \[CONNECTOR-1135\] - Upgraded Pulsar version. - Fixed com.google.protobuf:protobuf-java Stack-based Buffer Overflow. --- ## Connect for Pulsar - Inbound 2.0.3 June 09, 2024  |  [**Download**](https://aerospike.com/download/connector/pulsar_in/) ### Security - Fix Improper Input Validation. \[CONNECTOR-985\] - Fix Infinite loop. \[CONNECTOR-986\] - Fix Uncontrolled Resource Consumption. \[CONNECTOR-987\] - Fix Out-of-bounds write vulnerabilities. \[CONNECTOR-1030\] - Fix Out-of-bounds write vulnerabilities. \[CONNECTOR-1031\] - Fix Out-of-bounds write vulnerabilities. \[CONNECTOR-1032\] - Fix Out-of-bounds write vulnerabilities. \[CONNECTOR-1033\] - Fix Out-of-bounds write vulnerabilities. \[CONNECTOR-1034\] - Fix Out-of-bounds write vulnerabilities. \[CONNECTOR-1091\] --- ## Connect for Pulsar - Inbound 2.0.2 March 26, 2024  |  [**Download**](https://aerospike.com/download/connector/pulsar_in/) ### Improvements - Upgraded a few dependencies. --- ## Connect for Pulsar - Inbound 2.0.1 November 28, 2023  |  [**Download**](https://aerospike.com/download/connector/pulsar_in/) ### Security - Address [CVE-2023-33202](https://github.com/advisories/GHSA-wjxj-5m7g-mg7q) in Pulsar inbound. \[CONNECTOR-892\] --- ## Connect for Pulsar - Inbound 2.0.0 August 09, 2023  |  [**Download**](https://aerospike.com/download/connector/pulsar_in/) - **Breaking change - Custom transformers will not be able to write Java runtime serialized objects as bins to target Aerospike cluster.** ### Security - Address [CVE-2023-36480](https://github.com/advisories/GHSA-jj95-55cr-9597) - upgrade to aerospike-java-client version 7.0.0. \[CONNECTOR-775\] --- ## Connect for Pulsar - Inbound 1.2.0 May 20, 2023  |  [**Download**](https://aerospike.com/download/connector/pulsar_in/) ### Improvements - Support invalid record behavior in Pulsar inbound. \[CONNECTOR-640\] - Upgrade vulnerable dependencies. \[CONNECTOR-679\] --- ## Connect for Pulsar - Inbound 1.1.0 November 02, 2021  |  [**Download**](https://aerospike.com/download/connector/pulsar_in/) ### New Features - Add Boolean particle type support introduced in server 5.6. \[CONNECTOR-185\] - Add support for PKI authentication introduced in server 5.7. \[CONNECTOR-281\] --- ## Connect for Pulsar - Inbound 1.0.0 June 22, 2021  |  [**Download**](https://aerospike.com/download/connector/pulsar_in/) - Initial General Availability release. ---