Skip to content

[Snyk] Upgrade mariadb from 3.0.2 to 3.4.1 #147

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
WilliamPscheidt wants to merge 1 commit into
base: master
Choose a base branch
from
Open

[Snyk] Upgrade mariadb from 3.0.2 to 3.4.1 #147

WilliamPscheidt wants to merge 1 commit into from

Conversation

@WilliamPscheidt
Copy link
Owner

@WilliamPscheidt WilliamPscheidt commented May 16, 2025

snyk-top-banner

Snyk has created this PR to upgrade mariadb from 3.0.2 to 3.4.1.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

  • The recommended version is 12 versions ahead of your current version.

  • The recommended version was released a month ago.

Release notes
Package name: mariadb
  • 3.4.1 - 2025-04-02

    3.4.1 (Mar 2025)

    Full Changelog

    Issues Fixed

    • CONJS-306: Support "zero configuration ssl" for parsec authentication
    • CONJS-315: Fixed issue with incorrect data for result-set rows of exactly 16M of data
    • CONJS-312: Improved pool error messages when failing to create connections
    • CONJS-313: Now allows using question mark parameters even when using namedPlaceholders option (mysql compatibility)
    • CONJS-305: Added Connection close alias for end function in TypeScript definition
    • CONJS-314: Fixed Bulk operations potentially returning unexpected error "Cannot read properties of undefined (reading '0')"
    • CONJS-275: Added capability to return all Bulk insert IDs for MariaDB server 11.5.1+
    • CONJS-304: Fixed bulk operations ending with "Got a packet bigger than 'max_allowed_packet' bytes" error
    • CONJS-316: Enhanced handling of non-bulk batched operations to avoid out-of-memory errors for batches not using bulk
  • 3.4.0 - 2024-10-24

    3.4.0 (Oct 2024)

    Full Changelog

    Notable changes

    • CONJS-299 Parsec authentication implementation
    • CONJS-295 add new option jsonStrings to ensure to return JSON field as string

    Issues Fixed

    • CONJS-296 Add option enableKeepAlive / keepAliveInitialDelay alias for keepAliveDelay for mysql2 compatibility
    • CONJS-303 DMLs are not returning an output while streaming
  • 3.3.2 - 2024-09-18

    3.3.2 (Sept 2024)

    Full Changelog

    Issues Fixed

    • CONJS-301 temporary disabling TLS identity validation until certificate automatic resolution
    • CONJS-302 TypeScript type definition file for SqlError constructor does not match actual constructor
    • CONJS-297 Typescript connection option timeout in place of queryTimeout
    • CONJS-298 Typescript wrong named longlong in place of bigint
  • 3.3.1 - 2024-06-05

    3.3.1 (May 2024)

    Full Changelog

    Issues Fixed

    • CONJS-288 ensure pool timeout error give details #268
    • CONJS-289 connection possibly staying in hanging state after batch execution #281
    • CONJS-290 possible ECONRESET when executing batch #281
    • CONJS-292 ensure String object parameter
    • CONJS-286 exchanges stop when closing prepare and prepareCacheLength is set to 0
    • CONJS-287 typescript missing queryoption for prepare command
  • 3.3.0 - 2024-03-21

    3.3.0 (Mar 2024)

    Full Changelog

    Notable changes

    • CONJS-284 pipeline PREPARE and EXECUTE
    • CONJS-264 TLS ephemeral certificate automatic implementation
    • CONJS-279 Improve text encoding decoding

    Issues Fixed

    • CONJS-281 cannot connect to 11.3+ server with character-set-collations = utf8mb4=uca1400_ai_ci
    • CONJS-277 using connection.importFile when connection is not connected to database result in error
    • CONJS-278 Possible buffer overwrite when sending query bigger than 16M
    • CONJS-282 error when using mysql_clear_test password authentication plugin
    • CONJS-283 wrong decoding of binary unsigned MEDIUMINT
    • CONJS-285 DECIMAL field wrong decoding with deprecated option 'supportBigNumbers' set
  • 3.2.3 - 2023-12-19

    3.2.3 (Dec 2023)

    Full Changelog

    • CONJS-207 Add support for connection redirection
    • CONJS-271 wrong binary decoding of 00:00:00 TIME values
    • CONJS-272 Error doesn't always have parameters according to option
    • CONJS-273 Bulk insert error when last bunch of parameters is reaching max_allowed_packet
    • CONJS-274 permit disabling BULK insert for one batch
    • CONJS-207 Add support for connection redirection
  • 3.2.2 - 2023-10-16

    3.2.2 (Oct 2023)

    Full Changelog

    Issues Fixed

    • CONJS-270 Always send connection attributes, even when connectAttributes is not set
    • CONJS-269 avoid useless "set names utf8mb4" on connection creation if not needed
    • CONJS-268 importFile method doesn't always throw error when imported commands fails #253
    • CONJS-267 Ensure that option collation with id > 255 are respected
  • 3.2.1 - 2023-09-14

    3.2.1 (Sep 2023)

    Full Changelog

    Notable changes

    • CONJS-262 Binary result-set parsing performance improvement, avoiding to chromium slow issue https://bugs.chromium.org/p/v8/issues/detail?id=7161
    • CONJS-265 permit configuration of console warning message to be exported
    • CONJS-266 Option infileStreamFactory addition for compatibility

    Issues Fixed

    • CONJS-261 TypeScript missing logParam connection option
    • CONJS-263 ensure respecting server collation
  • 3.2.0 - 2023-06-19

    3.2.0 (Jun 2023)

    Full Changelog

    Notable changes

    • CONJS-250 'undefined' parameters are now permitted, for compatibility with mysql/mysql2 behavior
    • CONJS-257 permit to import sql file directly

    new APIs:

    importFile(options) → Promise
    connection.importFile({file:'...', 'database': '...'}) → Promise
    pool.importFile({file:'...', 'database': '...'}) → Promise

    example:

        await conn.importFile({
        file: '/tmp/someFile.sql', 
        database: 'myDb'
    });

    Issues Fixed

    • CONSJ-252 missing deprecated option supportBigNumbers and bigNumberStrings in Typescript
    • CONJS-254 ensuring option connectTimeout is respected : timeout is removed when socket is successfully established, in place of returning connection object. Wasn't set when using pipe/unix socket
    • CONJS-255 In some case, pipelining was use even option explicitly disable it
    • CONJS-256 method changeUser can lead to error when using multi-authentication and pipelining
    • CONJS-258 All eventEmitters methods are not available on connections
  • 3.1.2 - 2023-05-03
  • 3.1.1 - 2023-03-17
  • 3.1.0 - 2023-02-15
  • 3.0.2 - 2022-10-27
from mariadb GitHub release notes

Important

  • Check the changes in this PR to ensure they won't cause issues with your project.
  • This PR was automatically created by Snyk using the credentials of a real user.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

@snyk-bot
fix: upgrade mariadb from 3.0.2 to 3.4.1
c315a60 
Snyk has created this PR to upgrade mariadb from 3.0.2 to 3.4.1.

See this package in npm:
mariadb

See this project in Snyk:
https://app.snyk.io/org/williampscheidt/project/803ae7ed-f22d-4aa7-b0da-14741b2adcc0?utm_source=github&utm_medium=referral&page=upgrade-pr
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@WilliamPscheidt @snyk-bot