Skip to content

Bump org.apache.pulsar:pulsar-client-all from 4.2.0 to 4.2.1#1494

Merged
sobychacko merged 1 commit into
mainfrom
dependabot/gradle/main/org.apache.pulsar-pulsar-client-all-4.2.1
May 8, 2026
Merged

Bump org.apache.pulsar:pulsar-client-all from 4.2.0 to 4.2.1#1494
sobychacko merged 1 commit into
mainfrom
dependabot/gradle/main/org.apache.pulsar-pulsar-client-all-4.2.1

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Apr 29, 2026

Copy link
Copy Markdown
Contributor

Bumps org.apache.pulsar:pulsar-client-all from 4.2.0 to 4.2.1.

Release notes

Sourced from org.apache.pulsar:pulsar-client-all's releases.

v4.2.1

2026-04-27

Library updates

Broker

  • [fix][broker] Change the schema incompatible log from ERROR to WARN level (#25483)
  • [fix][broker] Fix backlog clearing for unloaded namespace bundles (#25272)
  • [fix][broker] Lower log level of DrainingHashesTracker not-found entry to DEBUG (#25558)
  • [fix][broker] Prevent timed-out producer creation from racing with retry (#25460)
  • [fix][broker] pulsar admin stats internal with metadata command (#25557)
  • [fix][broker] Revert "[improve][broker] Enhance advertised address resolution with fallback to localhost (#25238)" (#25523)
  • [fix][broker] Unthrottle producers immediately when publish rate limiting is disabled (#25502)
  • [fix][broker]Namespaces can be created with may empty replication_clusters policy (#25551)
  • [fix][admin] Refactor namespace migration operation to async in rest api (#25478)
  • [improve][broker] Close connection when close consumer write fails (#25520)
  • [improve][broker] Use full bundle name for namespace bundle destination affinity in ModularLoadManagerImpl (#25518)

Client

  • [fix][client] Fix thread-safety and refactor MessageCryptoBc key management (#25400)

Pulsar IO and Pulsar Functions

  • [fix][io] Restore lz4 compression with Kafka IO connector after #25198 exclusion

Others

  • [improve][common] Optimize TopicName.get() to reduce lock contention on cache lookup (#25367)
  • [improve][broker] Improve the performance of TopicName constructor (#24463)

Tests & CI

  • [fix][ci] Ensure discard_max_bytes is set to 0 only for existing block devices (#25510)
  • [fix][test] Extend SameAuthParamsLookupAutoClusterFailoverTest phase timeouts (#25563)
  • [fix][test] Fix flaky BrokerRegistryIntegrationTest port binding race (#25463)
  • [fix][test] Fix flaky ExtensibleLoadManagerImpl client reconnection tests: PulsarClientException$AlreadyClosedException: Client already closed (#25509)
  • [fix][test] Fix flaky ExtensibleLoadManagerTest.startBroker timeout (#25500)
  • [fix][test] Fix flaky OffloadPrefixTest.testPositionOnEdgeOfLedger race with ledger rollover (#25561)
  • [fix][test] Fix flaky ServerCnxTest.testCreateProducerTimeoutThenCreateSameNamedProducerShouldFail (#25497)
  • [fix][test] Fix flaky testLoadBalancerServiceUnitTableViewSyncer (#25427)

... (truncated)

Commits
  • aabd80b Release 4.2.1
  • 1fb3a6b [fix][sec] Upgrade BouncyCastle to 1.84 (CVE-2026-5588, CVE-2026-0636) (#25569)
  • ec45e06 [improve][broker] Use full bundle name for namespace bundle destination affin...
  • 8342786 [fix][test] Flaky SameAuthParamsLookupAutoClusterFailoverTest (#25566)
  • ff7054f [fix][test] Fix flaky OffloadPrefixTest.testPositionOnEdgeOfLedger race with ...
  • 8fbe0f2 [fix][test] Extend SameAuthParamsLookupAutoClusterFailoverTest phase timeouts...
  • 1ee8793 [fix][test] Relax BrokerRegistryIntegrationTest broker-close threshold (#25562)
  • 3504964 [fix][broker] pulsar admin stats internal with metadata command (#25557)
  • 7de4480 [fix][test] Fix flaky BrokerRegistryIntegrationTest port binding race (#25463)
  • 4787e22 [fix][test] Recreate EventLoop in PublishRateLimiterTest setup (#25560)
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [org.apache.pulsar:pulsar-client-all](https://github.com/apache/pulsar) from 4.2.0 to 4.2.1.
- [Release notes](https://github.com/apache/pulsar/releases)
- [Commits](apache/pulsar@v4.2.0...v4.2.1)

---
updated-dependencies:
- dependency-name: org.apache.pulsar:pulsar-client-all
  dependency-version: 4.2.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added the type: dependency-upgrade A dependency upgrade2 label Apr 29, 2026
@sobychacko sobychacko merged commit c31749f into main May 8, 2026
6 of 7 checks passed
@dependabot dependabot Bot deleted the dependabot/gradle/main/org.apache.pulsar-pulsar-client-all-4.2.1 branch May 8, 2026 03:40
@sobychacko sobychacko added this to the 2.0.6 milestone Jun 5, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

type: dependency-upgrade A dependency upgrade2

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant