Skip to content

0.4.5 - Security fixes

Latest
Latest

Choose a tag to compare

View all tags
@julien040 julien040 released this 09 Jun 20:47
· 23 commits to main since this release
0.4.5
66d5e68
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Warning

Vulnerabilities Patch

This release addresses the vulnerabilities CVE-2026-50006 and CVE-2026-47253
Related to security advisories GHSA-j9rx-rppg-6hh4, GHSA-mf78-3rpf-r784, GHSA-hwrq-8wxh-q4xv and GHSA-xrcf-6jh3-ggvx

Please update Anyquery as soon as possible

What is Anyquery?

Anyquery is a query engine that allows you to query anything over SQL.
Whether it's a local CSV, a Google Sheet, your Apple notes, or your GitHub stars, you can query it with Anyquery.

It's built on top of SQLite, and you can use alternative languages like PRQL and PQL to query your data.

Get started at anyquery.dev

Anyquery

Changelog

  • d4a3bb2 Add Arch Linux installation instructions via AUR
  • 27f84fc Add sandboxing to remediate CVE-2026-47253 and CVE-2026-50006
  • 32b6ee9 Merge branch 'security/server-sandboxing' into 0.4.5-release
  • 74b7c9d Merge pull request #66 from ngtrnhao/add-arch-installation (AUR package installation docs)
  • 66d5e68 Merge pull request #67 from rickalee/fix/mysql-reserved-keyword-escaping
  • cdcd194 Merge pull request #68 from bryankthompson/feat/add-tool-annotations
  • 62820b6 feat: Add tool annotations for improved LLM tool understanding
  • e8ab4f9 fix(mysql): Escape column names with backticks to handle reserved keywords
  • 00e8da3 ✨ Add Asana plugin
  • cff1afc ✨ Enhance run command capabilities Arguments can now be passed directly at the end of the command Users can supply a limit clause
  • e726a18 ⬆️ Update SQLean to 0.28.0
  • 5a8fa1f ⬆️ Update dependencies for the system plugin
  • 0ebe896 ⬆️ Update plugins dependency for vulnerability patch
  • 75cae35 💄 Fix website issue with hub
  • da45016 💄 Update website css to show alert banner on CVE plugins
  • 81c1d25 📝 Add AUR installation instructions to website documentation
  • f9ff8bd 📦️ Remove "replace" directive in go/mod to enable go install
  • 5cd7d7c 🔀 Merge branch '0.4.5-release' (not final release)
  • 33769e0 🔒️ Fix AppleScript/JXA code injection in macOS browser & reminders plugins
  • 6685702 🔖 Change versions of plugins subjected to CVE-2026-47252
  • 03afef0 🥅 Add more meaningful error message
Assets 16
Loading