search

GoogleCloudPlatform / python-docs-samples

Code samples used on cloud.google.com
Apache License 2.0
7.08k stars 6.34k forks source link

chore(deps): update dependency pymysql to v1.1.1 #11971

Closed renovate-bot closed 3 days ago

renovate-bot commented 4 days ago

Mend Renovate

This PR contains the following updates:

Package Change Age Adoption Passing Confidence
PyMySQL ==1.1.0 -> ==1.1.1 age adoption passing confidence

Release Notes

PyMySQL/PyMySQL (PyMySQL) ### [`v1.1.1`](https://togithub.com/PyMySQL/PyMySQL/blob/HEAD/CHANGELOG.md#v111) [Compare Source](https://togithub.com/PyMySQL/PyMySQL/compare/v1.1.0...v1.1.1) Release date: 2024-05-21 > \[!WARNING] > This release fixes a vulnerability (CVE-2024-36039). > All users are recommended to update to this version. > > If you can not update soon, check the input value from > untrusted source has an expected type. Only dict input > from untrusted source can be an attack vector. - Prohibit dict parameter for `Cursor.execute()`. It didn't produce valid SQL and might cause SQL injection. (CVE-2024-36039) - Added ssl_key_password param. [#​1145](https://togithub.com/PyMySQL/PyMySQL/issues/1145)

Configuration

πŸ“… Schedule: Branch creation - "every 3 months on the first day of the month" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

β™» Rebasing: Never, or you tick the rebase/retry checkbox.

πŸ”• Ignore: Close this PR and you won't be reminded about this update again.

This PR has been generated by Mend Renovate. View repository job log here.