django.git/django/db/models/sql/query.py, branch 5.2b1django
http://cgit.adnoto.dev/django.git/atom?h=5.2b12025-02-11T08:16:44Z[5.2.x] Fixed #36149 -- Allowed subquery values against tuple exact and in lookups.2025-02-11T08:16:44ZSimon Charettecharette.s@gmail.com2025-01-28T04:10:13Zurn:sha1:dc1c9b4ddd3ca64279da7c97b5023fbedf2340e2
Non-tuple exact and in lookups have specialized logic for subqueries that can
be adapted to properly assign select mask if unspecified and ensure the number
of involved members are matching on both side of the operator.
Backport of 41239fe34d64e801212dccaa4585e4802d0fac68 from main.
[5.2.x] Fixed #35677 -- Avoided non-sticky filtering of prefetched many-to-many.2025-02-06T13:31:32ZSimon Charettecharette.s@gmail.com2025-01-14T05:18:30Zurn:sha1:8aea6b802ced18a54f00db71c53e09c643f7514c
The original queryset._next_is_sticky() call never had the intended effect as
no further filtering was applied internally after the pk__in lookup making it
a noop.
In order to be coherent with how related filters are applied when retrieving
objects from a related manager the effects of what calling _next_is_sticky()
prior to applying annotations and filters to the queryset provided for
prefetching are emulated by allowing the reuse of all pre-existing JOINs.
Thanks David Glenck and Thiago Bellini Ribeiro for the detailed reports and
tests.
Backport of 2598b371a93e21d84b7a2a99b2329535c8c0c138 from main.
[5.2.x] Fixed #36109 -- Fixed RecursionError when stacking FilteredRelation joins.2025-01-27T09:34:16ZPeter DeVitamewtwo2643@yahoo.com2025-01-17T18:22:24Zurn:sha1:720ef7a867eab1491f5789fe39b3431a498b2b89
Backport of 8eca4077f60fa0705ecfd9437c9ceaeef7a3808b from main.
Fixed #36029 -- Handled implicit exact lookups in condition depth checks for FilteredRelation.2025-01-03T07:40:13ZJacob Wallsjacobtylerwalls@gmail.com2024-12-29T11:14:41Zurn:sha1:c3a681659c4a982101ffee0d3ef205ac5b310e17Fixed #373 -- Added CompositePrimaryKey.2024-11-29T10:23:04ZBendeguz Csirmazcsirmazbendeguz@gmail.com2024-04-07T02:32:16Zurn:sha1:978aae4334fa71ba78a3e94408f0f3aebde8d07c
Thanks Lily Foote and Simon Charette for reviews and mentoring
this Google Summer of Code 2024 project.
Co-authored-by: Simon Charette <charette.s@gmail.com>
Co-authored-by: Lily Foote <code@lilyf.org>
Fixed #35744 -- Relabelled external aliases of combined queries.2024-10-14T23:21:48ZSimon Charettecharette.s@gmail.com2024-10-14T23:21:48Zurn:sha1:53ea4cce2fd08e84b9cdb6363267ccb9525f7060
Just like normal queries, combined queries' outer references might fully
resolve before their reference is assigned its final alias.
Refs #29338.
Thanks Antony_K for the report and example, and thanks Mariusz Felisiak
for the review.Fixed #35586 -- Added support for set-returning database functions.2024-08-12T13:35:19ZDevin Coxdcox@surefyre.co2024-08-09T20:56:56Zurn:sha1:e03083917db03757e48f8edac4c8491b72c8a3c4
Aggregation optimization didn't account for not referenced set-returning annotations on Postgres.
Co-authored-by: Simon Charette <charette.s@gmail.com>
Fixed CVE-2024-42005 -- Mitigated QuerySet.values() SQL injection attacks against JSON fields.2024-08-06T06:50:08ZSimon Charettecharette.s@gmail.com2024-07-25T16:19:13Zurn:sha1:c87bfaacf8fb84984243b5055dc70f97996cb115
Thanks Eyal (eyalgabay) for the report.
Refs #373 -- Added tuple lookups.2024-08-01T15:26:09ZBendeguz Csirmazcsirmazbendeguz@gmail.com2024-07-23T13:17:34Zurn:sha1:1eac690d25dd49088256954d4046813daa37dc95Fixed #35585 -- Corrected Query.exists() call in Query.has_results().2024-07-23T14:36:26ZFlavio Curella89607+fcurella@users.noreply.github.com2024-07-23T14:36:26Zurn:sha1:f9bf616597d56deac66d9d6bb753b028dd9634cc