Skip to content

chore(deps): bump pymysql from 1.1.2 to 1.2.0#113

Open
dependabot[bot] wants to merge 1 commit into
masterfrom
dependabot/uv/pymysql-1.1.3
Open

chore(deps): bump pymysql from 1.1.2 to 1.2.0#113
dependabot[bot] wants to merge 1 commit into
masterfrom
dependabot/uv/pymysql-1.1.3

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github May 18, 2026
edited
Loading

Copy link
Copy Markdown
Contributor

Bumps pymysql from 1.1.2 to 1.2.0.

Release notes

Sourced from pymysql's releases.

v1.2.0

What's Changed

New Contributors

Full Changelog: PyMySQL/PyMySQL@v1.1.3...v1.2.0

v1.1.3

What's Changed

New Contributors

Full Changelog: PyMySQL/PyMySQL@v1.1.2...v1.1.3

Changelog

Sourced from pymysql's changelog.

v1.2.0

Release date: 2026-05-19

Breaking changes

  • Connection.ping() change the default to not reconnect and deprecate reconnect argument. Create a new connection if you want to reconnect. (#1241)

  • Error classes in Cursor class are removed. (#1240)

  • connect() arguments db and passwd now emit DeprecationWarning. Use database and password instead. (#1240)

  • Reorganize TLS connection behavior.

    • PyMySQL uses TLS by default when server supports it. Use ssl_disabled=True to prohibit SSL. (#1213)

    • When ssl_verify_cert=True, ssl_verify_identity=True, an ssl.SSLContext is passed, or when any other SSL option is configured, the connection requires SSL and raises OperationalError (CR_SSL_CONNECTION_ERROR) if the server doesn't support it. (#1234)

Other changes

  • Support MySQL 8 row/column alias syntax in executemany INSERT regex. (#1235)
  • Expose SQLSTATE on MySQL protocol exceptions without changing exception formatting. (#1236)
  • Reject non-finite decimal.Decimal query parameters (NaN, sNaN, ±Infinity). (#1237)
  • Connection.set_charset(charset) now emits DeprecationWarning.

v1.1.3

Release date: 2026-05-01

Security

  • Fix Cursor.callproc() didn't escape procedure name. (#1206) There was a possibility of SQL injection when calling a procedure with a string received from an untrusted source as the procedure name.

    NOTICE: This change may cause backward compatibility issues. If you specified a procedure name like "dbname.funcname", the previous version called CALL dbname.funcname, but from this version, it will call CALL `dbname.funcname` so you cannot specify procedure name with database name anymore.

Commits
  • 0f1c324 use ubuntu-latest for pypi publishing
  • 53b16b2 Release v1.2.0 (#1244)
  • 637fe7e Deprecate Connection.set_charset() at runtime and document warning behavior...
  • 23ca04a add AGENTS.md
  • 7349a44 deprecate reconnect in Connection.ping() (#1241)
  • ad5c50c update CHANGELOG
  • c963edb Deprecation and removals (#1240)
  • af6b9b4 Prepare CHANGELOG for v1.2.0 release from v1.1.3 changes (#1238)
  • c7bf73f docs: update outdated requirements and reference links (#1239)
  • c532b8d Reject non-finite decimal.Decimal query parameters (NaN, sNaN, `±Infini...
  • Additional commits viewable in compare view

@dependabot dependabot Bot added dependencies Pull requests that update a dependency file python:uv Pull requests that update python:uv code labels May 18, 2026
@dependabot dependabot Bot requested a review from BugMaker-Boyan as a code owner May 18, 2026 03:56
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file python:uv Pull requests that update python:uv code labels May 18, 2026
@dependabot
chore(deps): bump pymysql from 1.1.2 to 1.2.0
768fcdf 
Bumps [pymysql](https://github.com/PyMySQL/PyMySQL) from 1.1.2 to 1.2.0.
- [Release notes](https://github.com/PyMySQL/PyMySQL/releases)
- [Changelog](https://github.com/PyMySQL/PyMySQL/blob/main/CHANGELOG.md)
- [Commits](PyMySQL/PyMySQL@v1.1.2...v1.2.0)

---
updated-dependencies:
- dependency-name: pymysql
  dependency-version: 1.1.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot changed the title chore(deps): bump pymysql from 1.1.2 to 1.1.3 chore(deps): bump pymysql from 1.1.2 to 1.2.0 Jun 15, 2026
@dependabot dependabot Bot force-pushed the dependabot/uv/pymysql-1.1.3 branch from 0cca347 to 768fcdf Compare June 15, 2026 06:34
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@BugMaker-Boyan BugMaker-Boyan Awaiting requested review from BugMaker-Boyan BugMaker-Boyan is a code owner

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file python:uv Pull requests that update python:uv code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants