Skip to content

set version to 3.14.10-est-1#24142

Closed
stecurran-est wants to merge 425 commits into
apache:mainfrom
Nordix:release/3.14.10-est-1
Closed

set version to 3.14.10-est-1#24142
stecurran-est wants to merge 425 commits into
apache:mainfrom
Nordix:release/3.14.10-est-1

Conversation

@stecurran-est

Copy link
Copy Markdown

Description

set version to 3.14.10-est-1-SNAPSHOT to set version to 3.14.10-est-1

davsclaus and others added 30 commits February 25, 2022 07:03
Add support for providing custom metadata to files when uploading.
Makes use of the CamelAwsS3Metadata -header that is also used with the consumer endpoint.
apache#7040)

* CAMEL-17474: camel-core - set transacted when copying exchange in multicast processor

* CAMEL-17474: camel-core - similar fix with RecipientList and Split EIP

* CAMEL-17474: add a test for Enrich EIP

* CAMEL-17474 add assertions to check the copied exchanges are marked as transactional
apache#7118)

* CAMEL-17751: Extracting Camel-Saga-Compensate & Camel-Saga-Complete from CamelHttpQuery header if not present as individual headers

* CAMEL-17751: Comments addressing - Usage of URISupport.parseQuery for extraction of query params into a Map

Co-authored-by: Vangelis Papanastasatos <papanastasatose@unisystems.gr>
apache#7127)

* CAMEL-17602: camel-aws-sqs - consumer should map headers back to their original type such as boolean, integer etc.
…o when sending to sqs when hitting maximum number of message headers. (apache#7146)
davsclaus and others added 29 commits July 30, 2023 13:24
…uld be limite to capacity size, to avoid growing unlimited and leak memory. (apache#11013)
Co-authored-by: Alan Davila <>
* camel-ftp - Force using synchronous due to thread-safety of ftp client used by the consumer.

* camel-ftp - Force using synchronous due to thread-safety of ftp client used by the consumer.

---------

Co-authored-by: Claus Ibsen <claus.ibsen@gmail.com>
Signed-off-by: GitHub <noreply@github.com>
Co-authored-by: davsclaus <davsclaus@users.noreply.github.com>
Update old JBoss repo link to address build failure due to missing dependencies.
Update GitHub actions for 3.14.10
…ring/logging

  - Set toString() as final in Exchange and event classes to prevent subclass overrides
  - Remove getExchange() from toString() output to avoid leaking message body / header
  - Use getExchangeId() in UnitOfWorkHelper logging instead of full exchange object

Signed-off-by: stecurran-est-tech <stephen.curran@est.tech>
fix(CVE-2024-22371): prevent sensitive exchange data exposure
…case mode (CVE-2025-27636)

Signed-off-by: ivonaest <ivona.cvije@est.tech>
  Builds on the CVE-2025-27636 fix to DefaultHeaderFilterStrategy by
  ensuring all component-level HeaderFilterStrategy implementations
  also apply case-insensitive filtering, preventing mixed-case header
  injection (e.g. "CAmeLExecCommandExecutable") from bypassing filters.

  - Add setLowerCase(true) to JMS, SJMS, Mail, Kafka, RabbitMQ,
    VertxKafka, SNS, and SQS HeaderFilterStrategy classes
  - Block Camel-prefixed headers (Camel*, org.apache.camel.*) from
    being sent or received over JMS/SJMS by default
  - Set caseInsensitive=true default in DefaultHeaderFilterStrategy
  - Create ClassicJmsHeaderFilterStrategy for tests that rely on
    Camel headers passing through JMS (old behavior)
  - Update affected JMS tests to use ClassicJmsHeaderFilterStrategy
  - Add unit tests verifying mixed-case Camel header filtering

Signed-off-by: stecurran-est-tech <stephen.curran@est.tech>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.