django.git/django/db/models/query_utils.py, branch fix-31295 django http://cgit.adnoto.dev/django.git/atom?h=fix-31295 2026-04-28T10:42:49Z Fixed #36912 -- Added connector validation to Q.create(). 2026-04-28T10:42:49Z Anna Makarudze amakarudze@gmail.com 2026-03-21T18:49:02Z urn:sha1:fb292a549371a7c011c25b1a10fe5d25c579814a Co-authored-by: Jacob Walls <jacobtylerwalls@gmail.com> Fixed #37057 -- Adjusted UniqueConstraint handling of UNKNOWN condition. 2026-04-22T21:28:35Z Simon Charette charette.s@gmail.com 2026-04-22T15:46:49Z urn:sha1:61a62be313e395ce1265132bfc99f51476fb3c95 When we adjusted UNKNOWN handling for CheckConstraint in refs #33996 we assumed that all usage of Q.check would benefit from this approach. However while CHECK constraints enforcement do ignore conditions involving NULL that resolve to UNKNOWN it's not the case for other type of constraints such as UNIQUE ones. Given how UNKNOWN should be treated depends on the callers context it appears that a better strategy for COALESCE wrapping is to force them to apply it if necessary. Thanks Drew Shapiro for the report. Fixed #37036 -- Added missing flat=True arg in DeferredAttribute.fetch_many(). 2026-04-18T13:39:50Z garybadwal gurpreet071999@gmail.com 2026-04-16T06:16:13Z urn:sha1:820c7d3248af6afbdf3390c97b29e41ba126a421 Fixed #37016 -- Avoided propagating invalid arguments from When() to Q(). 2026-04-03T13:37:32Z varunkasyap varunkasyap@hotmail.com 2026-04-02T09:26:45Z urn:sha1:3b161e60964aff99eddcd2627a486d81c1836b3a Fixed CVE-2025-64459 -- Prevented SQL injections in Q/QuerySet via the _connector kwarg. 2025-11-05T12:20:57Z Jacob Walls jacobtylerwalls@gmail.com 2025-09-24T19:54:51Z urn:sha1:98e642c69181c942d60a10ca0085d48c6b3068bb Thanks cyberstan for the report, Sarah Boyce, Adam Johnson, Simon Charette, and Jake Howard for the reviews. Fixed #28586 -- Added model field fetch modes. 2025-10-16T18:52:22Z Adam Johnson me@adamj.eu 2023-11-29T09:35:34Z urn:sha1:e097e8a12f21a4e92594830f1ad1942b31916d0f May your database queries be much reduced with minimal effort. co-authored-by: Andreas Pelme <andreas@pelme.se> co-authored-by: Simon Charette <charette.s@gmail.com> co-authored-by: Jacob Walls <jacobtylerwalls@gmail.com> Fixed #34871, #36518 -- Implemented unresolved lookups expression replacement. 2025-08-04T07:22:53Z Simon Charette charette.s@gmail.com 2025-02-19T08:04:16Z urn:sha1:079d31e698fa08dd92e2bc4f3fe9b4817a214419 This allows the proper resolving of lookups when performing constraint validation involving Q and Case objects. Thanks Andrew Roberts for the report and Sarah for the tests and review. Refs #36500 -- Rewrapped long docstrings and block comments via a script. 2025-07-23T23:17:55Z django-bot ops@djangoproject.com 2025-07-23T03:41:41Z urn:sha1:69a93a88edb56ba47f624dac7a21aacc47ea474f Rewrapped long docstrings and block comments to 79 characters + newline using script from https://github.com/medmunds/autofix-w505. Fixed #33312 -- Raised explicit exception when copying deferred model instances. 2025-05-16T06:13:57Z Simon Charette charette.s@gmail.com 2025-05-06T17:57:20Z urn:sha1:e03e5c751c56db5f4cb99e142c92d7d8db3a5463 Previously save() would crash with an attempted forced update message, and both save(force_insert=True) and bulk_create() would crash with DoesNotExist errors trying to retrieve rows with an empty primary key (id IS NULL). Implementing deferred field model instance copying might be doable in certain cases (e.g. when all the deferred fields are db generated) but that's not trivial to implement in a backward compatible way. Thanks Adam Sołtysik for the report and test and Clifford for the review. Refs #373 -- Added Model._is_pk_set() abstraction to check if a Model's PK is set. 2024-09-09T20:46:50Z Csirmaz Bendegúz csirmazbendeguz@gmail.com 2024-09-09T20:46:50Z urn:sha1:5865ff5adcf64da03d306dc32b36e87ae6927c85