Changelog
### 1.1.1
```
Release date: 2024-05-21
> [!WARNING]
> This release fixes a vulnerability (CVE-2024-36039).
> All users are recommended to update to this version.
>
> If you can not update soon, check the input value from
> untrusted source has an expected type. Only dict input
> from untrusted source can be an attack vector.
* Prohibit dict parameter for `Cursor.execute()`. It didn't produce valid SQL
and might cause SQL injection. (CVE-2024-36039)
* Added ssl_key_password param. 1145
```
Links
- PyPI: https://pypi.org/project/pymysql
- Changelog: https://data.safetycli.com/changelogs/pymysql/
This PR updates pymysql from 1.1.0 to 1.1.1.
Changelog
### 1.1.1 ``` Release date: 2024-05-21 > [!WARNING] > This release fixes a vulnerability (CVE-2024-36039). > All users are recommended to update to this version. > > If you can not update soon, check the input value from > untrusted source has an expected type. Only dict input > from untrusted source can be an attack vector. * Prohibit dict parameter for `Cursor.execute()`. It didn't produce valid SQL and might cause SQL injection. (CVE-2024-36039) * Added ssl_key_password param. 1145 ```Links
- PyPI: https://pypi.org/project/pymysql - Changelog: https://data.safetycli.com/changelogs/pymysql/