(#24597) [improve][client] RawReader support pause and resume(#24450) [fix][broker] Fix REST API to produce messages to single-partitioned topics(#24570) [fix][broker] Fix NPE being logged if load manager class name is blank(#24593) [fix][broker] Fix incorrect AuthData passed to AuthorizationService in proxy scenarios(#24489) [improve][io] Add support for the complete KinesisProducerConfiguration in KinesisSinkConfig(#24535) [improve][test] Add test for dead letter topic with max unacked messages blocking(#24532) [fix][misc] Upgrade dependencies to fix critical security vulnerabilities(#24542) [fix][broker]Fix thread safety issues in BucketDelayedDeliveryTracker with StampedLock optimistic reads(#24520) [improve][broker] Extract duplication in AbstractTopic#incrementTopicEpochIfNeeded(#24582) [improve][client] Support load RSA PKCS#8 private key(#24591) [fix][broker] Fix namespace deletion TLS URL selection for geo-replication(#24586) [improve][test] Refactor the way way pulsar-io-debezium-oracle nar file is patched when building the test image(#24590) [fix][broker] Fix flaky testReplicatorsInflightTaskListIsEmptyAfterReplicationFinished(#24542))) Revert “[fix][broker]Fix thread safety issues in BucketDelayedDeliveryTracker with StampedLock optimistic reads(#24554) (#24571) [fix][client][branch-4.0] Partitioned topics are unexpectedly created by client after deletion(#24576) [fix][test] fix flaky GrowableArrayBlockingQueueTest.testPollBlockingThreadsTermination(#24569) [fix][broker] Fix ManagedCursor state management race conditions and lifecycle issues(#24550) [improve][client] Terminate consumer.receive() when consumer is closed(#24560) [fix][broker] Fix maxTopicsPerNamespace might report a false failure(#24505) [fix][test]fix flaky test BrokerServiceAutoTopicCreationTest.testDynamicConfigurationTopicAutoCreationPartitioned(#24551) [fix][broker] Fix Broker OOM due to too many waiting cursors and reuse a recycled OpReadEntry incorrectly(#24511) [fix][broker] Fix deduplication replay might never complete for exceptions(#24522) [fix][ml] Fix the possibility of message loss or disorder when ML PayloadProcessor processing fails
Only publish BlobNotFound exception task to DLQExclude OutOfMemoryError for DLQSupport publish commit failed tasks to DLQFix oxia lock leak when not acquiredOptimize Compaction Service heap memory usagefix[lock]: fixes memory leak on oxia distributed lockIntroduce catalog factory for icebergAdd external table protobuf support for Ursa and Pulsar protocolMake the pulsar compaction worker not record column stats.Using bookkeeperStorageApi when configured pulsar clientAdd compaction leader metric docDelete committed tasks and update oxia indexFix the error handlingRemove unnecessary synchronized lockfix: handle UUID logical type with string base type in AvroToIcebergConverterFix ConcurrentModificationException in CompactionTaskProvider.getTaskCleanup stream when deleting unloaded topicsAdd multi catalog user documentAdd compaction service throguhput rate limiter for reading from BookKeeperSupport multiple catalog in namespace and topic levelRefactor update iceberg table propertiesSeparate managed and external writer for ursaAdd compaction leader metricAdd failure reason for the iceberg external writerOptimize reset cursor
(#24562) [fix][sec] Remove dependency on out-dated commons-configuration 1.x(#24564) [fix][sec] Upgrade Kafka connector and clients version to 3.9.1 to address CVE-2025-27818
