fix(deps): update dependencies by renovate[bot] · Pull Request #252 · aicore/libmysql

renovate · 2026-02-28T21:04:40Z

This PR contains the following updates:

Package	Change	Age	Confidence
eslint (source)	`9.39.2` → `9.39.4`
mysql2 (source)	`3.16.0` → `3.22.1`

Release Notes

eslint/eslint (eslint)

`v9.39.4`

Compare Source

Bug Fixes

f18f6c8 fix: update dependency minimatch to ^3.1.5 (#20564) (Milos Djermanovic)
a3c868f fix: update dependency @eslint/eslintrc to ^3.3.4 (#20554) (Milos Djermanovic)
234d005 fix: minimatch security vulnerability patch for v9.x (#20549) (Andrej Beles)
b1b37ee fix: update ajv to 6.14.0 to address security vulnerabilities (#20538) (루밀LuMir)

Documentation

4675152 docs: add deprecation notice partial (#20520) (Milos Djermanovic)

Chores

b8b4eb1 chore: update dependencies for ESLint v9.39.4 (#20596) (Francesco Trotta)
71b2f6b chore: package.json update for @eslint/js release (Jenkins)
1d16c2f ci: pin Node.js 25.6.1 (#20563) (Milos Djermanovic)

`v9.39.3`

Compare Source

Bug Fixes

791bf8d fix: restore TypeScript 4.0 compatibility in types (#20504) (sethamus)

Chores

8594a43 chore: upgrade @eslint/js@9.39.3 (#20529) (Milos Djermanovic)
9ceef92 chore: package.json update for @eslint/js release (Jenkins)
af498c6 chore: ignore /docs/v9.x in link checker (#20453) (Milos Djermanovic)

sidorares/node-mysql2 (mysql2)

`v3.22.1`

Compare Source

Bug Fixes

async stack traces not pointing to correct source, regression introduced by #4257 (#4265) (5b6206c)
packet: return INVALID_DATE for zero dates with numeric timezone offset (#1019) (#4258) (cb5adcc)

`v3.22.0`

Compare Source

Features

disable mysql_clear_password plugin by default (#4236) (884bec5), closes #1617
implement COM_RESET_CONNECTION with pool integration (#4148) (49a64cc)

Performance Improvements

defer Error object creation to error handlers in promise wrappers (#4257) (ab131de)

`v3.21.1`

Compare Source

Bug Fixes

limit client flags to server capabilities (#4227) (e1930b8)
use Number.isSafeInteger for supportBigNumbers boundary check (#4225) (295264b)

`v3.21.0`

Compare Source

Features

add support for query attributes (#4223) (d732f78)
types: export ExecuteValues and QueryValues from entry point (9fafd6f)

`v3.20.0`

Compare Source

Features

add TracingChannel support for native APM instrumentation (#4178) (c06afc2)

Bug Fixes

explicitly specify in auth plugins (#4175) (#4187) (5ac5563)
prevent double release from corrupting the connection pool (#4186) (7e57db6)
restore PoolConnection as subclass of Connection (#4183) (97855a6)

`v3.19.1`

Compare Source

Bug Fixes

bound null-terminated string read to packet end (fixes a potential OOB read reported by Doruk Tan Ozturk (peaktwilight)) (#4161) (91c5229)
handle malformed geometry payloads (fixes a potential DoS vulnerability reported by Doruk Tan Ozturk (peaktwilight)) (#4164) (1869215)
prevent query param override of URL-defined connection options (fixes a potential config injection vulnerability reported by Doruk Tan Ozturk (peaktwilight)) (#4162) (3123b4e)
validate buffer bounds in geometry parser (fixes a potential DoS vulnerability reported by Doruk Tan Ozturk (peaktwilight)) (#4159) (7c2ae00)

`v3.19.0`

Compare Source

Features

use server's preferred auth method to eliminate auth switch roundtrip (#4140) (b57c671)

Bug Fixes

fix precision loss for large decimal values (#4135) (099beea)

`v3.18.2`

Compare Source

Bug Fixes

types: add supportBigNumbers, bigNumberStrings, dateStrings, and timezone options to QueryOptions (#4127) (b274e72)
types: extend QueryValues to callback-based methods (#4129) (2ad5f0b)
types: improve ExecuteValues "nested" params (#4133) (3f94950)
types: support Raw and Uint8Array params (#4132) (bde9aec)

`v3.18.1`

Compare Source

Bug Fixes

types: ensure optional params in query and execute methods (#4123) (3f4bbca)

`v3.18.0`

Compare Source

Features

add Symbol.dispose and Symbol.asyncDispose support for Connections, Pools, and Pool Clusters (#4112) (1e612dc)

`v3.17.5`

Compare Source

Bug Fixes

add missing charset encoding for UTF8MB4_0900_BIN (#3855) (c9a0dcd)
deps: include @types/node as a peer dependency (#4108) (5f8ac97)
fix wrong length number write to packet (#3177) (0e06e02)
pool: resolve potential memory leak (#4111) (8aa2052)

`v3.17.4`

Compare Source

Bug Fixes

types for query values (#3985) (a9c8d09)

`v3.17.3`

Compare Source

Bug Fixes

fix PoolConnection.end callback and promise resolution (#3937) (18ff2c6)

`v3.17.2`

Compare Source

Bug Fixes

distinguish delimiters in queries from SQL comments (#4084) (454ba10)
pool: discard connection on error 1290 (Aurora read-only failure) (#4075) (9188963)
pool: handle all read-only errors during Aurora failover (#4082) (ce98d8e)

`v3.17.1`

Compare Source

Bug Fixes

expand object params after ON DUPLICATE KEY UPDATE preceded by SET (#4076) (4d2b930)

`v3.17.0`

Compare Source

Bug Fixes

security: resolve a potential SQL injection bypass through objects (#4054) (7f133cc)

`v3.16.3`

Compare Source

Bug Fixes

constants: remove unsupported CLIENT_DEPRECATE_EOF flag from constants (#4033) (46c3f60)

`v3.16.2`

Compare Source

Bug Fixes

types: add missing ConnectionState type to Promise Connection interface (#4034) (2927949)

`v3.16.1`

Compare Source

Bug Fixes

named-placeholders: improve handling of mixed/nested quotes in query parsing (#4011) (3e00cd7)

Configuration

📅 Schedule: (in timezone Asia/Calcutta)

Branch creation
- "before 3am on the first day of the month"
Automerge
- At any time (no schedule defined)

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

sonarqubecloud · 2026-04-17T01:54:29Z

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

renovate bot force-pushed the renovate/dependencies branch 3 times, most recently from bdd0a92 to 157da9d Compare March 9, 2026 19:33

renovate bot force-pushed the renovate/dependencies branch from 157da9d to 18be6b1 Compare March 16, 2026 00:41

renovate bot force-pushed the renovate/dependencies branch from 18be6b1 to 45e02bd Compare April 1, 2026 17:22

renovate bot force-pushed the renovate/dependencies branch 3 times, most recently from fee4cee to a62796f Compare April 10, 2026 17:01

fix(deps): update dependencies

f46576b

renovate bot force-pushed the renovate/dependencies branch from a62796f to f46576b Compare April 17, 2026 01:54

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

fix(deps): update dependencies#252

fix(deps): update dependencies#252
renovate[bot] wants to merge 1 commit intomainfrom
renovate/dependencies

renovate bot commented Feb 28, 2026 •

edited

Loading

Uh oh!

sonarqubecloud bot commented Apr 17, 2026

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

Conversation

renovate bot commented Feb 28, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Release Notes

Bug Fixes

Documentation

Chores

Bug Fixes

Chores

Bug Fixes

Features

Performance Improvements

Bug Fixes

Features

Features

Bug Fixes

Bug Fixes

Features

Bug Fixes

Bug Fixes

Bug Fixes

Features

Bug Fixes

Bug Fixes

Bug Fixes

Bug Fixes

Bug Fixes

Bug Fixes

Bug Fixes

Bug Fixes

Bug Fixes

Configuration

Uh oh!

sonarqubecloud bot commented Apr 17, 2026

Quality Gate passed

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

renovate bot commented Feb 28, 2026 •

edited

Loading