Skip to content

Internal Release

Choose a tag to compare

View all tags
@snowflake-connectors-app snowflake-connectors-app released this 11 Jun 15:40
v2.9.0
e47a8a2
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

New features:

  • Added support for forwarding the Snowpark Container Services session token in the login request. When the SNOWFLAKE_RUNNING_INSIDE_SPCS environment variable is set to true, the driver reads the token from /snowflake/session/spcs_token and attaches it as SPCS_TOKEN on the login payload.
  • Added the SF_SKIP_TOKEN_FILE_PERMISSIONS_VERIFICATION environment variable as the namespaced replacement for SKIP_TOKEN_FILE_PERMISSIONS_VERIFICATION when reading JSON token files. The unprefixed variable still works but is now logged as deprecated.
  • Changed AWS Workload Identity Federation attestation from a base64-encoded signed STS GetCallerIdentity request to a JWT obtained from STS GetWebIdentityToken.
  • Updated curl to v8.20.0.
  • Updated AWS SDK for C++ to v1.11.806.

Bug fixes:

  • Fixed path handling in GET downloads by validating server-provided destination file names before writing locally. Unsafe names (path separators, . / .., NUL bytes, and on Windows \ / :) are now rejected instead of being used as download targets.
  • Fixed an infinite JWT renewal loop during login when renew_timeout elapses repeatedly (for example, behind a bad proxy or slow network). Renewal is now bound by the configured login retry count and overall login timeout.
Assets 2
Loading