Skip to content

chore(deps): bump pymysql from 1.1.2 to 1.2.0#1108

Merged
canihavesomecoffee merged 1 commit into
masterfrom
dependabot/pip/pymysql-1.1.3
May 31, 2026
Merged

chore(deps): bump pymysql from 1.1.2 to 1.2.0#1108
canihavesomecoffee merged 1 commit into
masterfrom
dependabot/pip/pymysql-1.1.3

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github May 1, 2026
edited
Loading

Bumps pymysql from 1.1.2 to 1.2.0.

Release notes

Sourced from pymysql's releases.

v1.2.0

What's Changed

New Contributors

Full Changelog: PyMySQL/PyMySQL@v1.1.3...v1.2.0

v1.1.3

What's Changed

New Contributors

Full Changelog: PyMySQL/PyMySQL@v1.1.2...v1.1.3

Changelog

Sourced from pymysql's changelog.

v1.2.0

Release date: 2026-05-19

Breaking changes

  • Connection.ping() change the default to not reconnect and deprecate reconnect argument. Create a new connection if you want to reconnect. (#1241)

  • Error classes in Cursor class are removed. (#1240)

  • connect() arguments db and passwd now emit DeprecationWarning. Use database and password instead. (#1240)

  • Reorganize TLS connection behavior.

    • PyMySQL uses TLS by default when server supports it. Use ssl_disabled=True to prohibit SSL. (#1213)

    • When ssl_verify_cert=True, ssl_verify_identity=True, an ssl.SSLContext is passed, or when any other SSL option is configured, the connection requires SSL and raises OperationalError (CR_SSL_CONNECTION_ERROR) if the server doesn't support it. (#1234)

Other changes

  • Support MySQL 8 row/column alias syntax in executemany INSERT regex. (#1235)
  • Expose SQLSTATE on MySQL protocol exceptions without changing exception formatting. (#1236)
  • Reject non-finite decimal.Decimal query parameters (NaN, sNaN, ±Infinity). (#1237)
  • Connection.set_charset(charset) now emits DeprecationWarning.

v1.1.3

Release date: 2026-05-01

Security

  • Fix Cursor.callproc() didn't escape procedure name. (#1206) There was a possibility of SQL injection when calling a procedure with a string received from an untrusted source as the procedure name.

    NOTICE: This change may cause backward compatibility issues. If you specified a procedure name like "dbname.funcname", the previous version called CALL dbname.funcname, but from this version, it will call CALL `dbname.funcname` so you cannot specify procedure name with database name anymore.

Commits
  • 0f1c324 use ubuntu-latest for pypi publishing
  • 53b16b2 Release v1.2.0 (#1244)
  • 637fe7e Deprecate Connection.set_charset() at runtime and document warning behavior...
  • 23ca04a add AGENTS.md
  • 7349a44 deprecate reconnect in Connection.ping() (#1241)
  • ad5c50c update CHANGELOG
  • c963edb Deprecation and removals (#1240)
  • af6b9b4 Prepare CHANGELOG for v1.2.0 release from v1.1.3 changes (#1238)
  • c7bf73f docs: update outdated requirements and reference links (#1239)
  • c532b8d Reject non-finite decimal.Decimal query parameters (NaN, sNaN, `±Infini...
  • Additional commits viewable in compare view

@dependabot dependabot Bot added dependencies Pull requests that update a dependency file python Pull requests that update python code labels May 1, 2026
@dependabot dependabot Bot requested a review from canihavesomecoffee as a code owner May 1, 2026 20:22
@dependabot dependabot Bot added the dependencies Pull requests that update a dependency file label May 1, 2026
@dependabot dependabot Bot requested a review from thealphadollar as a code owner May 1, 2026 20:22
@dependabot dependabot Bot added the python Pull requests that update python code label May 1, 2026
@dependabot dependabot Bot changed the title chore(deps): bump pymysql from 1.1.2 to 1.1.3 chore(deps): bump pymysql from 1.1.2 to 1.2.0 May 31, 2026
@dependabot dependabot Bot force-pushed the dependabot/pip/pymysql-1.1.3 branch 5 times, most recently from 1651917 to 21813f6 Compare May 31, 2026 08:26
@dependabot
chore(deps): bump pymysql from 1.1.2 to 1.2.0
49328ed 
Bumps [pymysql](https://github.com/PyMySQL/PyMySQL) from 1.1.2 to 1.2.0.
- [Release notes](https://github.com/PyMySQL/PyMySQL/releases)
- [Changelog](https://github.com/PyMySQL/PyMySQL/blob/main/CHANGELOG.md)
- [Commits](PyMySQL/PyMySQL@v1.1.2...v1.2.0)

---
updated-dependencies:
- dependency-name: pymysql
  dependency-version: 1.1.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/pip/pymysql-1.1.3 branch from 21813f6 to 49328ed Compare May 31, 2026 08:35
@sonarqubecloud
Copy link
Copy Markdown

sonarqubecloud Bot commented May 31, 2026

Quality Gate Passed Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

@canihavesomecoffee canihavesomecoffee merged commit ffb138a into master May 31, 2026
6 checks passed
@dependabot dependabot Bot deleted the dependabot/pip/pymysql-1.1.3 branch May 31, 2026 08:39
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@canihavesomecoffee canihavesomecoffee canihavesomecoffee approved these changes

@thealphadollar thealphadollar Awaiting requested review from thealphadollar thealphadollar is a code owner

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file python Pull requests that update python code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@canihavesomecoffee