The current version of the PostgreSQL driver is affected by a critical vulnerability: SNYK-JAVA-ORGPOSTGRESQL-6252740. It may not affect Debezium itself as it doesn't run queries originated by user requests. However, the vulnerability is still detected by scanning tools.

Fixing it is trivial, a minor version bump is needed. I can create a PR.