Debian Package Tracker
Register | Log in
Subscribe

sqlfluff

SQL linter tool

Choose email to subscribe with

general
  • source: sqlfluff (main)
  • version: 3.3.1-1
  • maintainer: Debian Python Team (DMD)
  • uploaders: Joseph Nahmias [DMD]
  • arch: all
  • std-ver: 4.7.0
  • VCS: Git (Browse, QA)
versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]
[pool directory]
  • stable: 1.4.5-2
  • testing: 3.3.1-1
  • unstable: 3.3.1-1
versioned links
  • 1.4.5-2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
  • 3.3.1-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
binaries
  • sqlfluff
  • sqlfluff-doc
action needed
Debci reports failed tests high
  • unstable: pass (log)
    The tests ran in 0:19:12
    Last run: 2025-05-15T00:01:06.000Z
    Previous status: unknown

  • testing: pass (log)
    The tests ran in 0:18:17
    Last run: 2025-05-17T04:28:53.000Z
    Previous status: unknown

  • stable: fail (log)
    The tests ran in 0:00:20
    Last run: 2025-03-25T20:12:55.000Z
    Previous status: unknown

Created: 2025-02-27 Last update: 2025-05-21 06:34
A new upstream version is available: 3.4.0 high
A new upstream version 3.4.0 is available, you should consider packaging it.
Created: 2025-04-18 Last update: 2025-05-21 04:01
lintian reports 11 warnings normal
Lintian reports 11 warnings about this package. You should make the package lintian clean getting rid of them.
Created: 2025-02-10 Last update: 2025-02-10 03:01
Standards version of the package is outdated. wishlist
The package should be updated to follow the last version of Debian Policy (Standards-Version 4.7.2 instead of 4.7.0).
Created: 2025-02-21 Last update: 2025-02-27 13:24
No known security issue in bookworm wishlist

There is 1 open security issue in bookworm.

1 ignored issue:
  • CVE-2023-36830: SQLFluff is a SQL linter. Prior to version 2.1.2, in environments where untrusted users have access to the config files, there is a potential security vulnerability where those users could use the `library_path` config value to allow arbitrary python code to be executed via macros. For many users who use SQLFluff in the context of an environment where all users already have fairly escalated privileges, this may not be an issue - however in larger user bases, or where SQLFluff is bundled into another tool where developers still wish to give users access to supply their on rule configuration, this may be an issue. The 2.1.2 release offers the ability for the `library_path` argument to be overwritten on the command line by using the `--library-path` option. This overrides any values provided in the config files and effectively prevents this route of attack for users which have access to the config file, but not to the scripts which call the SQLFluff CLI directly. A similar option is provided for the Python API, where users also have a greater ability to further customise or override configuration as necessary. Unless `library_path` is explicitly required, SQLFluff maintainers recommend using the option `--library-path none` when invoking SQLFluff which will disable the `library-path` option entirely regardless of the options set in the configuration file or via inline config directives. As a workaround, limiting access to - or otherwise validating configuration files before they are ingested by SQLFluff will provides a similar effect and does not require upgrade.
Created: 2023-07-07 Last update: 2025-02-27 05:02
news
[rss feed]
  • [2025-02-12] sqlfluff 3.3.1-1 MIGRATED to testing (Debian testing watch)
  • [2025-02-09] Accepted sqlfluff 3.3.1-1 (source) into unstable (Colin Watson)
  • [2025-01-21] sqlfluff 3.3.0-1 MIGRATED to testing (Debian testing watch)
  • [2025-01-16] Accepted sqlfluff 3.3.0-1 (source) into unstable (Colin Watson)
  • [2025-01-09] sqlfluff 3.2.5-2 MIGRATED to testing (Debian testing watch)
  • [2025-01-03] Accepted sqlfluff 3.2.5-2 (source) into unstable (Colin Watson)
  • [2024-11-21] sqlfluff 3.2.5-1 MIGRATED to testing (Debian testing watch)
  • [2024-11-18] Accepted sqlfluff 3.2.5-1 (source) into unstable (Alexandre Detiste)
  • [2024-10-09] sqlfluff REMOVED from testing (Debian testing watch)
  • [2024-02-24] sqlfluff 2.3.5-1 MIGRATED to testing (Debian testing watch)
  • [2024-02-24] sqlfluff 2.3.5-1 MIGRATED to testing (Debian testing watch)
  • [2024-02-22] Accepted sqlfluff 2.3.5-1 (source) into unstable (Andreas Tille)
  • [2024-01-03] sqlfluff REMOVED from testing (Debian testing watch)
  • [2023-02-05] sqlfluff 1.4.5-2 MIGRATED to testing (Debian testing watch)
  • [2023-02-03] Accepted sqlfluff 1.4.5-2 (source) into unstable (Joseph Nahmias) (signed by: Joe Nahmias)
  • [2023-02-03] Accepted sqlfluff 1.4.5-1 (source all) into experimental (Debian FTP Masters) (signed by: Joe Nahmias)
bugs [bug history graph]
  • all: 0
links
  • homepage
  • lintian (0, 11)
  • buildd: logs, reproducibility
  • popcon
  • browse source code
  • edit tags
  • other distros
  • security tracker
  • screenshots
  • debian patches
  • debci
ubuntu Ubuntu logo [Information about Ubuntu for Debian Developers]
  • version: 3.3.1-1
  • 1 bug

Debian Package Tracker — Copyright 2013-2025 The Distro Tracker Developers
Report problems to the tracker.debian.org pseudo-package in the Debian BTS.
Documentation — Bugs — Git Repository — Contributing