Talend Remote Engine v2.13.7

Talend Remote Engine v2.13.7 is generally available.

New features

Feature	Description
Engine logs	To enhance engine logs, execution logs from data integration Jobs and Routes have been excluded. This change results in cleaner logs focused solely on engine-specific information. To restore the duplication of execution logs to engine logs, see Restoring log duplication.
New metrics service	A new engine-specific service has been created to facilitate Job component metrics migration. Ensure to add its URL to your allowlist to avoid potential issues: https://vault-gateway.{data-center}.cloud.talend.com. For further information about all the URLs to be added to the allowlist, see Adding URLs to your proxy and firewall allowlist.

Feature

Description

Engine logs

To enhance engine logs, execution logs from data integration Jobs and Routes have been excluded. This change results in cleaner logs focused solely on engine-specific information.

To restore the duplication of execution logs to engine logs, see Restoring log duplication.

New metrics service

A new engine-specific service has been created to facilitate Job component metrics migration.

Ensure to add its URL to your allowlist to avoid potential issues: https://vault-gateway.{data-center}.cloud.talend.com.

For further information about all the URLs to be added to the allowlist, see Adding URLs to your proxy and firewall allowlist.

Security enhancements

Feature	Description
Engine dependencies	The following engine dependencies have been upgraded: Apache CXF: 3.6.3 to 3.6.4. This resolves the following vulnerabilities: CVE-2024-29736 - SSRF vulnerability in the WADL stylesheet parameter CVE-2024-32007 - Denial of Service vulnerability in JOSE CVE-2024-41172 - Unrestricted memory consumption in CXF HTTP clients ActiveMQ: 5.18.4 to 5.18.5 Jackson: 2.17.1 to 2.17.2 Spring: 6.1.8 to 6.1.12 Spring Vault: 3.1.1 to 3.1.2 OSHI: 6.6.1 to 6.6.3 commons-lang3: 3.14.0 to 3.17.0 commons-codec: 1.17.0 to 1.17.1 commons-compress: 1.26.2 to 1.27.1 commons-configuration2: 2.10.1 to 2.11.0 guava: 33.2.1-jre to 33.3.0-jre aws-sdk: 1.12.655 to 1.12.766

Feature

Description

Engine dependencies

The following engine dependencies have been upgraded:

Apache CXF: 3.6.3 to 3.6.4. This resolves the following vulnerabilities:
- CVE-2024-29736 - SSRF vulnerability in the WADL stylesheet parameter
- CVE-2024-32007 - Denial of Service vulnerability in JOSE
- CVE-2024-41172 - Unrestricted memory consumption in CXF HTTP clients
ActiveMQ: 5.18.4 to 5.18.5
Jackson: 2.17.1 to 2.17.2
Spring: 6.1.8 to 6.1.12
Spring Vault: 3.1.1 to 3.1.2
OSHI: 6.6.1 to 6.6.3
commons-lang3: 3.14.0 to 3.17.0
commons-codec: 1.17.0 to 1.17.1
commons-compress: 1.26.2 to 1.27.1
commons-configuration2: 2.10.1 to 2.11.0
guava: 33.2.1-jre to 33.3.0-jre
aws-sdk: 1.12.655 to 1.12.766

Notable fixes and known issues

Issues	Description
TMC-29763	This ticket fixes garbled Japanese custom component names in Job component metrics.

Did this page help you?

If you find any issues with this page or its content – a typo, a missing step, or a technical error – please let us know!

Leave your feedback here