kodev-org
/
vikunja
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
vikunja/pkg/db
History
kolaente 13f1a13367 fix(db): interpolate table identifiers in truncate instead of binding them 
MySQL/MariaDB/Postgres cannot bind a table name as a ? placeholder, so the non-SQLite branch failed with a syntax error. Interpolate the already-validated identifier with x.Quote (per-dialect quoting) instead. validateTableName restricts to registered table names, so this is injection-safe — the same trust model the SQLite branch already relies on. Latent bug surfaced by the new cross-engine testing webtest, which is the first to exercise this path on MySQL/MariaDB.
 		2026-06-17 12:13:50 +00:00
..
fixtures feat(api/v2): add user webhooks on /api/v2 2026-06-10 19:12:41 +00:00
db.go feat(time-tracking): add the time_entries model 2026-06-08 13:54:09 +00:00
db_path_test.go refactor(db): extract testable ResolveDatabasePath function (#2193) 2026-02-08 10:47:57 +00:00
dump.go fix(db): interpolate table identifiers in truncate instead of binding them 2026-06-17 12:13:50 +00:00
helpers.go fix: use ParadeDB v2 fuzzy prefix matching for search (#2346) 2026-03-05 13:57:05 +01:00
helpers_test.go test: call real MultiFieldSearch function and branch on db engine 2026-03-05 13:57:05 +01:00
test.go refactor: remove environment variable requirements for go test 2026-02-17 18:01:05 +01:00
test_fixtures.go refactor: remove environment variable requirements for go test 2026-02-17 18:01:05 +01:00