team_fastlane-sequel_base_service 1.0.0 → 1.0.1

Sign up to get free protection for your applications and to get access to all the features.
Files changed (5) hide show
  1. checksums.yaml +4 -4
  2. data/CHANGELOG.adoc +4 -0
  3. data/lib/team_fastlane/sequel_base_service/version.rb +1 -1
  4. data/lib/team_fastlane/sequel_base_service.rb +2 -1
  5. metadata +2 -2
checksums.yaml CHANGED
@@ -1,7 +1,7 @@
1
1
  ---
2
2
  SHA256:
3
- metadata.gz: 6767b25b6ef83e0161e2cad7af91e84fc447bbf3314b0f085c5be03d872063ce
4
- data.tar.gz: eaecbcd7fdb58e511358d0717973930d6f43a9de53adac084d701c245b84f25b
3
+ metadata.gz: d465c92837ec1227b535e84914f53b17f593eb91d8d761273d4a8c63b9909a94
4
+ data.tar.gz: 26b95fddc17d2cf2278d1961d562e85032e66d95fae57458d57b9878c2ed9fc2
5
5
  SHA512:
6
- metadata.gz: b4a54e6529d050852c5e3020eeb0e57c1a7cdc95f43b43d07603d571f0b8facd1fa6d4ede7eb405d1f4b7d19ac8d4a8fe71f1fdbae598b2400699ef5c1e2ce74
7
- data.tar.gz: 1b826be91b18de3d89bbda6ae47dca68a1e560bab640e5604ca9dcd4c0981d45700216eb8a19ba1bac3009134f556020b45fe5ed325a47eaf8fda04e8346e78d
6
+ metadata.gz: 244416afff39ef6c1f5ffeec1e59646e3e166f6975d8968a6d7ecb930e43b25391eceeddc4efcac75f72898e8314b1fcf049072a70c70de36aa80946326612f9
7
+ data.tar.gz: adaa4e362253500ab4a53ac9606bee30a3ed6622cae466aeabeda6a5e3508d656e3874b55abeed805abd5714ba7c6e9a70aaade94d3059c0766cea93eb5cf9f9
data/CHANGELOG.adoc CHANGED
@@ -7,6 +7,10 @@ and this project adheres to https://semver.org[Semantic Versioning].
7
7
 
8
8
  == Unreleased
9
9
 
10
+ == [1.0.1] - 2023-08-08
11
+ === Fixed
12
+ - SECURITY: Fix a possible sql injection while setting the schema
13
+
10
14
  == [1.0.0] - 2023-08-01
11
15
  === Changed
12
16
  Renamed and restructured for release on rubygems
data/lib/team_fastlane/sequel_base_service/version.rb CHANGED
@@ -2,6 +2,6 @@
2
2
 
3
3
  module TeamFastlane
4
4
  module SequelBaseService
5
- VERSION = '1.0.0'
5
+ VERSION = '1.0.1'
6
6
  end
7
7
  end
data/lib/team_fastlane/sequel_base_service.rb CHANGED
@@ -15,7 +15,8 @@ module TeamFastlane
15
15
  # This is a hook for having a different schema than the database user in an oracle database
16
16
  config.sequel.after_connect = -> do
17
17
  if Sequel::Model.db.opts[:schema]
18
- Sequel::Model.db.run("alter session set current_schema = \"#{Sequel::Model.db.opts[:schema]}\"")
18
+ schema = Sequel::Model.db.literal(Sequel::Model.db.opts[:schema])
19
+ Sequel::Model.db.run("alter session set current_schema = \"#{schema}\"")
19
20
  end
20
21
  end
21
22
  end
metadata CHANGED
@@ -1,14 +1,14 @@
1
1
  --- !ruby/object:Gem::Specification
2
2
  name: team_fastlane-sequel_base_service
3
3
  version: !ruby/object:Gem::Version
4
- version: 1.0.0
4
+ version: 1.0.1
5
5
  platform: ruby
6
6
  authors:
7
7
  - Team Fastlane
8
8
  autorequire:
9
9
  bindir: bin
10
10
  cert_chain: []
11
- date: 2023-08-02 00:00:00.000000000 Z
11
+ date: 2023-08-08 00:00:00.000000000 Z
12
12
  dependencies:
13
13
  - !ruby/object:Gem::Dependency
14
14
  name: olive_branch