From f30d43b7a215ce9685ff17a7733349a52569737c Mon Sep 17 00:00:00 2001
From: V1A0 <54343363+V1A0@users.noreply.github.com>
Date: Mon, 31 Jan 2022 12:06:40 +0700
Subject: [PATCH] security issue fixed, CVE-2022-0329
- CVE-2022-0329, Delgan/loguru#563
- Changed dependency version up to loguru v0.6.0
---
README.md | 9 +++++----
requirements.txt | 2 +-
setup.py | 2 +-
sqllex/__init__.py | 2 +-
tests/temp.py | 10 +++++++++-
5 files changed, 17 insertions(+), 8 deletions(-)
diff --git a/README.md b/README.md
index 695fffd..db5a15d 100644
--- a/README.md
+++ b/README.md
@@ -3,7 +3,7 @@
-# SQLLEX ORM v0.2.0.4
+# SQLLEX ORM v0.2.0.5
![python-3-9]
[![lgtm-quality-img]][lgtm-quality-src]
@@ -28,15 +28,16 @@ pip install sqllex
| Version | Status | Tests, and actions |
| :--------: | :----------------------------: | :---: |
-| `0.2.0.4` | ✔️ supported
✔️ stable | [![code-ql-img]][code-ql-src]
[![sqlite3x-test-img]][sqlite3x-test-src]
[![pypi-upload-img]][pypi-upload-img] |
-| `0.1.10.5` | ⚠️ outdated
| ⚠️ Mostly passing |
+| `==0.2.0.5` | ✔️ supported
✔️ stable | [![code-ql-img]][code-ql-src]
[![sqlite3x-test-img]][sqlite3x-test-src]
[![pypi-upload-img]][pypi-upload-img] |
+| `<=0.2.0.4` | ⚠️ outdated
⚠️ Security issue
CVE-2022-0329| ⚠️ Mostly passing |
| `<=0.1.10.4` | ❌️ outdated | ❌ |
| Databases | Support |
| :--- | :-----: |
| SQLite | ✔️|
-| PostgreSQL | ✔️|
+| PostgreSQL | ✔️*|
+* - partially support
## About
Use databases without thinking about SQL.
diff --git a/requirements.txt b/requirements.txt
index b04a77b..0dbc64d 100644
--- a/requirements.txt
+++ b/requirements.txt
@@ -1,2 +1,2 @@
-loguru==0.5.3
+loguru==0.6.0
psycopg2==2.9.1
\ No newline at end of file
diff --git a/setup.py b/setup.py
index 6a0436e..da31bef 100644
--- a/setup.py
+++ b/setup.py
@@ -44,7 +44,7 @@
'easy', 'fast', 'orm', 'ORM',
],
install_requires=[
- 'loguru==0.5.3',
+ 'loguru==0.6.0',
'psycopg2==2.9.1',
],
classifiers=[
diff --git a/sqllex/__init__.py b/sqllex/__init__.py
index 7e2df96..a4a700a 100644
--- a/sqllex/__init__.py
+++ b/sqllex/__init__.py
@@ -17,7 +17,7 @@
# "\033[0m"
# "\n")
-__version__ = '0.2.0.4'
+__version__ = '0.2.0.5'
__all__ = [
# classes
diff --git a/tests/temp.py b/tests/temp.py
index 2650037..c1ba91d 100644
--- a/tests/temp.py
+++ b/tests/temp.py
@@ -15,5 +15,13 @@
}
}
-db = SQLite3x(path=DB_NAME, template=DB_TEMPLATE)
+db = SQLite3x(
+ path='database.db',
+ init_connection=False
+)
+db.connect(check_same_thread=False)
+
+print(db.tables_names)
+
+db.disconnect()