--- - branch: MAIN date: Thu Sep 7 15:46:23 UTC 2023 files: - new: '1.22' old: '1.21' path: pkgsrc/databases/py-sqlparse/Makefile pathrev: pkgsrc/databases/py-sqlparse/Makefile@1.22 type: modified - new: '1.3' old: '1.2' path: pkgsrc/databases/py-sqlparse/PLIST pathrev: pkgsrc/databases/py-sqlparse/PLIST@1.3 type: modified - new: '1.18' old: '1.17' path: pkgsrc/databases/py-sqlparse/distinfo pathrev: pkgsrc/databases/py-sqlparse/distinfo@1.18 type: modified id: 20230907T154623Z.02e68b1b25bcc953acf5761ede20fc2885d9bc00 log: | py-sqlparse: updated to 0.4.4 Release 0.4.4 (Apr 18, 2023) ---------------------------- Notable Changes * IMPORTANT: This release fixes a security vulnerability in the parser where a regular expression vulnerable to ReDOS (Regular Expression Denial of Service) was used. See the security advisory for details: https://github.com/andialbrecht/sqlparse/security/advisories/GHSA-rrm6-wvj7-cwh2 The vulnerability was discovered by @erik-krogh from GitHub Security Lab (GHSL). Thanks for reporting! Bug Fixes * Revert a change from 0.4.0 that changed IN to be a comparison (issue694). The primary expectation is that IN is treated as a keyword and not as a comparison operator. That also follows the definition of reserved keywords for the major SQL syntax definitions. * Fix regular expressions for string parsing. Other * sqlparse now uses pyproject.toml instead of setup.cfg (issue685). Release 0.4.3 (Sep 23, 2022) ---------------------------- Enhancements * Add support for DIV operator (pr664, by chezou). * Add support for additional SPARK keywords (pr643, by mrmasterplan). * Avoid tokens copy (pr622, by living180). * Add REGEXP as a comparision (pr647, by PeterSandwich). * Add DISTINCTROW keyword for MS Access (issue677). * Improve parsing of CREATE TABLE AS SELECT (pr662, by chezou). Bug Fixes * Fix spelling of INDICATOR keyword (pr653, by ptld). * Fix formatting error in EXTRACT function (issue562, issue670, pr676, by ecederstrand). * Fix bad parsing of create table statements that use lower case (issue217, pr642, by mrmasterplan). * Handle backtick as valid quote char (issue628, pr629, by codenamelxl). * Allow any unicode character as valid identifier name (issue641). Other * Update github actions to test on Python 3.10 as well (pr661, by cclaus). Release 0.4.2 (Sep 10, 2021) ---------------------------- Notable Changes * IMPORTANT: This release fixes a security vulnerability in the strip comments filter. In this filter a regular expression that was vulnerable to ReDOS (Regular Expression Denial of Service) was used. See the security advisory for details: https://github.com/andialbrecht/sqlparse/security/advisories/GHSA-p5w8-wqhj-9hhf The vulnerability was discovered by @erik-krogh and @yoff from GitHub Security Lab (GHSL). Thanks for reporting! Enhancements * Add ELSIF as keyword (issue584). * Add CONFLICT and ON_ERROR_STOP keywords (pr595, by j-martin). Bug Fixes * Fix parsing of backticks (issue588). * Fix parsing of scientific number (issue399). Release 0.4.1 (Oct 08, 2020) ---------------------------- Bug Fixes * Just removed a debug print statement, sorry... Release 0.4.0 (Oct 07, 2020) ---------------------------- Notable Changes * Remove support for end-of-life Python 2.7 and 3.4. Python 3.5+ is now required. * Remaining strings that only consist of whitespaces are not treated as statements anymore. Code that ignored the last element from sqlparse.split() should be updated accordingly since that function now doesn't return an empty string as the last element in some cases (issue496). Enhancements * Add WINDOW keyword (pr579 by ali-tny). * Add RLIKE keyword (pr582 by wjones1). Bug Fixes * Improved parsing of IN(...) statements (issue566, pr567 by hurcy). * Preserve line breaks when removing comments (issue484). * Fix parsing error when using square bracket notation (issue583). * Fix splitting when using DECLARE ... HANDLER (issue581). * Fix splitting of statements using CASE ... WHEN (issue580). * Improve formatting of type casts in parentheses. * Stabilize formatting of invalid SQL statements. module: pkgsrc subject: 'CVS commit: pkgsrc/databases/py-sqlparse' unixtime: '1694101583' user: adam