search

Checkmarx / capital

A built-to-be-vulnerable API application based on the OWASP top 10 API vulnerabilities. Use c{api}tal to learn, train and exploit API Security vulnerabilities within your own API Security CTF.
GNU Affero General Public License v3.0
274 stars 67 forks source link

Bump alembic from 1.8.1 to 1.9.4 #32

Closed dependabot[bot] closed 1 year ago

dependabot[bot] commented 1 year ago

Bumps alembic from 1.8.1 to 1.9.4.

Release notes

Sourced from alembic's releases.

1.9.4

Released: February 16, 2023

bug

  • [bug] [mssql] Ongoing fixes for SQL Server server default comparisons under autogenerate, adjusting for SQL Server's collapsing of whitespace between SQL function arguments when reporting on a function-based server default, as well as its arbitrary addition of parenthesis within arguments; the approach has now been made more aggressive by stripping the two default strings to compare of all whitespace, parenthesis, and quoting characters.

    References: #1177

  • [bug] [postgresql] Fixed PostgreSQL server default comparison to handle SQL expressions sent as text() constructs, such as text("substring('name', 1, 3)"), which previously would raise errors when attempting to run a server-based comparison.

  • [bug] [autogenerate] Removed a mis-use of the EnvironmentContext.configure.render_item callable where the "server_default" renderer would be erroneously used within the server default comparison process, which is working against SQL expressions, not Python code.

    References: #1180

  • [bug] [commands] Fixed regression introduced in 1.7.0 where the "config" object passed to the template context when running the merge() command programmatically failed to be correctly populated. Pull request courtesy Brendan Gann.

1.9.3

Released: February 7, 2023

bug

  • [bug] [autogenerate] Fixed issue where rendering of user-defined types that then went onto use the .with_variant() method would fail to render, if using SQLAlchemy 2.0's version of variants.

    References: #1167

1.9.2

... (truncated)

Commits


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
dependabot[bot] commented 1 year ago

Superseded by #41.