libssl.so should be linked dynamically into the libpulsar.a or it would bring in security issue.

I believe this is a long term operational security issue, the libssl.so should be linked dynamically into the libpulsar.so so that the system defined libssl.so or customer provided libssl.so may be used. This should allow independent patching of the ssl library without the need to redelivery a new libpulsar.so.

It would be great to get a libpulsar.so that can be linked, that does not have the direct compile dependency.