django.git/django/db/backends/mysql/client.py, branch stable/6.0.x

Fixed #33715 -- Allowed keyboard interrupt to abort queries in MySQL dbshell.

2022-05-20T05:11:51Z

Refs #33476 -- Reformatted code with Black.

2022-02-07T19:37:05Z

Fixed #32732 -- Removed usage of deprecated 'db' and 'passwd' connection options in MySQL backend.

2021-05-12T10:21:57Z

The 'db' and 'passwd' connection options have been deprecated, use 'database' and 'password' instead (available since mysqlclient >= 1.3.8). This also allows the 'database' option in DATABASES['OPTIONS'] on MySQL.

Refs #32061 -- Prevented password leak on MySQL dbshell crash.

2020-10-30T09:12:52Z

The usage of the --password flag when invoking the mysql CLI has the potential of exposing the password in plain text if the command happens to crash due to the inclusion of args provided to subprocess.run(check=True) in the string representation of the subprocess.CalledProcessError exception raised on non-zero return code. Since this has the potential of leaking the password to logging facilities configured to capture crashes (e.g. sys.excepthook, Sentry) it's safer to rely on the MYSQL_PWD environment variable instead even if its usage is discouraged due to potential leak through the ps command on old flavors of Unix. Thanks Charlie Denton for reporting the issue to the security team. Refs #24999.

Refs #32061 -- Unified DatabaseClient.runshell() in db backends.

2020-10-29T21:22:58Z

Fixed #6517 -- Made dbshell use charset option on MySQL.

2020-10-17T10:24:36Z

Co-Authored-By: Mariusz Felisiak

Fixed #31491 -- Allowed 'password' option in DATABASES['OPTIONS'] on MySQL.

2020-06-12T10:07:43Z

Fixed #29501 -- Allowed dbshell to pass options to underlying tool.

2020-04-14T13:02:51Z

Replaced subprocess commands by run() wherever possible.

2019-08-23T08:53:36Z

Fixed #28322 -- Added dbshell support for MySQL client TLS certs.

2017-06-19T22:11:25Z