Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

[Snyk] Upgrade drizzle-orm from 0.27.2 to 0.32.1 #35

Open
wants to merge 1 commit into
base: main
Choose a base branch
from

Conversation

simplyzetax
Copy link
Contributor

snyk-top-banner

Snyk has created this PR to upgrade drizzle-orm from 0.27.2 to 0.32.1.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.


  • The recommended version is 231 versions ahead of your current version.

  • The recommended version was released on 23 days ago.

Release notes
Package name: drizzle-orm
  • 0.32.1 - 2024-07-23
    • Fix typings for indexes and allow creating indexes on 3+ columns mixing columns and expressions - thanks @ lbguilherme!
    • Added support for "limit 0" in all dialects - closes #2011 - thanks @ sillvva!
    • Make inArray and notInArray accept empty list, closes #1295 - thanks @ RemiPeruto!
    • fix typo in lt typedoc - thanks @ dalechyn!
    • fix wrong example in README.md - thanks @ 7flash!
  • 0.32.1-848e136 - 2024-07-25
  • 0.32.1-3d4e79a - 2024-08-01
  • 0.32.0 - 2024-07-10

    Release notes for drizzle-orm@0.32.0 and drizzle-kit@0.23.0

    It's not mandatory to upgrade both packages, but if you want to use the new features in both queries and migrations, you will need to upgrade both packages

    New Features

    🎉 MySQL $returningId() function

    MySQL itself doesn't have native support for RETURNING after using INSERT. There is only one way to do it for primary keys with autoincrement (or serial) types, where you can access insertId and affectedRows fields. We've prepared an automatic way for you to handle such cases with Drizzle and automatically receive all inserted IDs as separate objects

    import { boolean, int, text, mysqlTable } from 'drizzle-orm/mysql-core';

    const usersTable = mysqlTable('users', {
    id: int('id').primaryKey(),
    name: text('name').notNull(),
    verified: boolean('verified').notNull().default(false),
    });

    const result = await db.insert(usersTable).values([{ name: 'John' }, { name: 'John1' }]).$returningId();
    // ^? { id: number }[]

    Also with Drizzle, you can specify a primary key with $default function that will generate custom primary keys at runtime. We will also return those generated keys for you in the $returningId() call

    import { varchar, text, mysqlTable } from 'drizzle-orm/mysql-core';
    import { createId } from '@ paralleldrive/cuid2';

    const usersTableDefFn = mysqlTable('users_default_fn', {
    customId: varchar('id', { length: 256 }).primaryKey().$defaultFn(createId),
    name: text('name').notNull(),
    });

    const result = await db.insert(usersTableDefFn).values([{ name: 'John' }, { name: 'John1' }]).$returningId();
    // ^? { customId: string }[]

    If there is no primary keys -> type will be {}[] for such queries

    🎉 PostgreSQL Sequences

    You can now specify sequences in Postgres within any schema you need and define all the available properties

    Example
    import { pgSchema, pgSequence } from "drizzle-orm/pg-core";

    // No params specified
    export const customSequence = pgSequence("name");

    // Sequence with params
    export const customSequence = pgSequence("name", {
    startWith: 100,
    maxValue: 10000,
    minValue: 100,
    cycle: true,
    cache: 10,
    increment: 2
    });

    // Sequence in custom schema
    export const customSchema = pgSchema('custom_schema');

    export const customSequence = customSchema.sequence("name");

    🎉 PostgreSQL Identity Columns

    Source: As mentioned, the serial type in Postgres is outdated and should be deprecated. Ideally, you should not use it. Identity columns are the recommended way to specify sequences in your schema, which is why we are introducing the identity columns feature

    Example
    import { pgTable, integer, text } from 'drizzle-orm/pg-core'

    export const ingredients = pgTable("ingredients", {
    id: integer("id").primaryKey().generatedAlwaysAsIdentity({ startWith: 1000 }),
    name: text("name").notNull(),
    description: text("description"),
    });

    You can specify all properties available for sequences in the .generatedAlwaysAsIdentity() function. Additionally, you can specify custom names for these sequences

    PostgreSQL docs reference.

    🎉 PostgreSQL Generated Columns

    You can now specify generated columns on any column supported by PostgreSQL to use with generated columns

    Example with generated column for tsvector

    Note: we will add tsVector column type before latest release

    import { SQL, sql } from "drizzle-orm";
    import { customType, index, integer, pgTable, text } from "drizzle-orm/pg-core";

    const tsVector = customType<{ data: string }>({
    dataType() {
    return "tsvector";
    },
    });

    export const test = pgTable(
    "test",
    {
    id: integer("id").primaryKey().generatedAlwaysAsIdentity(),
    content: text("content"),
    contentSearch: tsVector("content_search", {
    dimensions: 3,
    }).generatedAlwaysAs(
    (): SQL => sqlto_tsvector('english', <span class="pl-s1"><span class="pl-kos">${</span><span class="pl-s1">test</span><span class="pl-kos">.</span><span class="pl-c1">content</span><span class="pl-kos">}</span></span>)
    ),
    },
    (t) => ({
    idx: index("idx_content_search").using("gin", t.contentSearch),
    })
    );

    In case you don't need to reference any columns from your table, you can use just sql template or a string

    export const users = pgTable("users", {
      id: integer("id"),
      name: text("name"),
      generatedName: text("gen_name").generatedAlwaysAs(sql`hello world!`),
      generatedName1: text("gen_name1").generatedAlwaysAs("hello world!"),
    }),

    🎉 MySQL Generated Columns

    You can now specify generated columns on any column supported by MySQL to use with generated columns

    You can specify both stored and virtual options, for more info you can check MySQL docs

    Also MySQL has a few limitation for such columns usage, which is described here

    Drizzle Kit will also have limitations for push command:

    1. You can't change the generated constraint expression and type using push. Drizzle-kit will ignore this change. To make it work, you would need to drop the column, push, and then add a column with a new expression. This was done due to the complex mapping from the database side, where the schema expression will be modified on the database side and, on introspection, we will get a different string. We can't be sure if you changed this expression or if it was changed and formatted by the database. As long as these are generated columns and push is mostly used for prototyping on a local database, it should be fast to drop and create generated columns. Since these columns are generated, all the data will be restored

    2. generate should have no limitations

    Example
    export const users = mysqlTable("users", {
      id: int("id"),
      id2: int("id2"),
      name: text("name"),
      generatedName: text("gen_name").generatedAlwaysAs(
        (): SQL => sql`${schema2.users.name} || 'hello'`,
        { mode: "stored" }
      ),
      generatedName1: text("gen_name1").generatedAlwaysAs(
        (): SQL => sql`${schema2.users.name} || 'hello'`,
        { mode: "virtual" }
      ),
    }),

    In case you don't need to reference any columns from your table, you can use just sql template or a string in .generatedAlwaysAs()

    🎉 SQLite Generated Columns

    You can now specify generated columns on any column supported by SQLite to use with generated columns

    You can specify both stored and virtual options, for more info you can check SQLite docs

    Also SQLite has a few limitation for such columns usage, which is described here

    Drizzle Kit will also have limitations for push and generate command:

    1. You can't change the generated constraint expression with the stored type in an existing table. You would need to delete this table and create it again. This is due to SQLite limitations for such actions. We will handle this case in future releases (it will involve the creation of a new table with data migration).

    2. You can't add a stored generated expression to an existing column for the same reason as above. However, you can add a virtual expression to an existing column.

    3. You can't change a stored generated expression in an existing column for the same reason as above. However, you can change a virtual expression.

    4. You can't change the generated constraint type from virtual to stored for the same reason as above. However, you can change from stored to virtual.

    New Drizzle Kit features

    🎉 Migrations support for all the new orm features

    PostgreSQL sequences, identity columns and generated columns for all dialects

    🎉 New flag --force for drizzle-kit push

    You can auto-accept all data-loss statements using the push command. It's only available in CLI parameters. Make sure you always use it if you are fine with running data-loss statements on your database

    🎉 New migrations flag prefix

    You can now customize migration file prefixes to make the format suitable for your migration tools:

    • index is the default type and will result in 0001_name.sql file names;
    • supabase and timestamp are equal and will result in 20240627123900_name.sql file names;
    • unix will result in unix seconds prefixes 1719481298_name.sql file names;
    • none will omit the prefix completely;
    Example: Supabase migrations format
    import { defineConfig } from "drizzle-kit";

    export default defineConfig({
    dialect: "postgresql",
    migrations: {
    prefix: 'supabase'
    }
    });




  • 0.32.0-e7cf338 - 2024-06-25


  • 0.32.0-d0d6436 - 2024-06-27


  • 0.32.0-af7ce99 - 2024-06-17


  • 0.32.0-aaf764c - 2024-07-09


  • 0.32.0-85c8008 - 2024-06-24


  • 0.32.0-857ba54 - 2024-06-11


  • 0.32.0-81cb794 - 2024-06-22


  • 0.32.0-7721c7c - 2024-06-22


  • 0.32.0-7612dda - 2024-07-09


  • 0.32.0-5cc2ae0 - 2024-06-27


  • 0.32.0-4ed01aa - 2024-06-12


  • 0.32.0-0fdaa9e - 2024-06-25


  • 0.32.0-0d48b64 - 2024-06-07


  • 0.32.0-0a6885d - 2024-06-13


  • 0.32.0-55471 - 2024-06-12


  • 0.31.4 - 2024-07-08

    • Mark prisma clients package as optional - thanks @ Cherry
  • 0.31.3 - 2024-07-08

    Bug fixed

    • 🛠️ Fixed RQB behavior for tables with same names in different schemas
    • 🛠️ Fixed [BUG]: Mismatched type hints when using RDS Data API - #2097

    New Prisma-Drizzle extension

    import { PrismaClient } from '@ prisma/client';
    import { drizzle } from 'drizzle-orm/prisma/pg';
    import { User } from './drizzle';

    const prisma = new PrismaClient().$extends(drizzle());
    const users = await prisma.$drizzle.select().from(User);

    For more info, check docs: https://orm.drizzle.team/docs/prisma

  • 0.31.3-a90773c - 2024-07-08
  • 0.31.2 - 2024-06-07
    • 🎉 Added support for TiDB Cloud Serverless driver:

      import { connect } from '@ tidbcloud/serverless';
      import { drizzle } from 'drizzle-orm/tidb-serverless';

      const client = connect({ url: '...' });
      const db = drizzle(client);
      await db.select().from(...);

  • 0.31.2-f9f4c2e - 2024-06-09
  • 0.31.2-ee089d9 - 2024-07-06
  • 0.31.2-c59440c - 2024-06-09
  • 0.31.2-bd14b3f - 2024-06-07
  • 0.31.2-b59e0a5 - 2024-06-11
  • 0.31.2-b59b8f5 - 2024-07-08
  • 0.31.2-b1c8d15 - 2024-06-09
  • 0.31.2-aaea9bd - 2024-06-27
  • 0.31.2-86ec973 - 2024-06-07
  • 0.31.2-5b29cb4 - 2024-06-06
  • 0.31.1 - 2024-06-04
  • 0.31.1-7a4cc2d - 2024-06-04
  • 0.31.1-26a7171 - 2024-05-30
  • 0.31.0 - 2024-05-31
  • 0.31.0-ef463e5 - 2024-05-29
  • 0.31.0-e64a96d - 2024-05-22
  • 0.31.0-c7963ca - 2024-05-23
  • 0.31.0-a70b6ea - 2024-05-25
  • 0.31.0-7a05232 - 2024-05-23
  • 0.31.0-6df4b83 - 2024-05-29
  • 0.31.0-61bc749 - 2024-05-30
  • 0.30.10 - 2024-05-01
  • 0.30.10-9929654 - 2024-05-01
  • 0.30.9 - 2024-04-21
  • 0.30.9-fc4ded5 - 2024-05-16
  • 0.30.9-f9be0ab - 2024-05-01
  • 0.30.9-d939ec2 - 2024-04-21
  • 0.30.9-b473fa9 - 2024-05-21
  • 0.30.9-a420907 - 2024-05-10
  • 0.30.9-88f271b - 2024-05-21
  • 0.30.9-8680b6d - 2024-04-26
  • 0.30.9-825932f - 2024-04-26
  • 0.30.9-68815d1 - 2024-04-29
  • 0.30.9-33a34e3 - 2024-05-21
  • 0.30.9-30dc2ee - 2024-04-30
  • 0.30.9-14c6fe3 - 2024-05-15
  • 0.30.9-0a473f4 - 2024-04-30
  • 0.30.8 - 2024-04-11
  • 0.30.8-a1accd7 - 2024-04-16
  • 0.30.8-3d06cf2 - 2024-04-20
  • 0.30.8-1a48cee - 2024-04-10
  • 0.30.8-4428354 - 2024-04-16
  • 0.30.7 - 2024-04-03
  • 0.30.7-df2bd77 - 2024-04-06
  • 0.30.7-ddf43d6 - 2024-04-03
  • 0.30.7-be05767 - 2024-04-09
  • 0.30.7-bb0f096 - 2024-04-03
  • 0.30.7-a7c90b8 - 2024-04-07
  • 0.30.7-9b8a94f - 2024-04-07
  • 0.30.7-94e7af5 - 2024-04-04
  • 0.30.7-59f2958 - 2024-04-10
  • 0.30.7-400d69e - 2024-04-08
  • 0.30.7-2c9b73b - 2024-04-09
  • 0.30.7-9185563 - 2024-04-10
  • 0.30.6 - 2024-03-28
  • 0.30.6-dfa923a - 2024-03-28
  • 0.30.6-d5cc3ce - 2024-03-29
  • 0.30.6-cb0c553 - 2024-04-02
  • 0.30.6-169dab4 - 2024-04-01
  • 0.30.5 - 2024-03-27
  • 0.30.5-bb96a77 - 2024-03-22
  • 0.30.5-ab9feb7 - 2024-03-25
  • 0.30.5-9e6a6ee - 2024-03-20
  • 0.30.5-35c8b2b - 2024-03-22
  • 0.30.5-139135c - 2024-03-20
  • 0.30.4 - 2024-03-19
  • 0.30.3 - 2024-03-18
  • 0.30.3-bf39e45 - 2024-03-18
  • 0.30.3-788f251 - 2024-03-18
  • 0.30.3-722a662 - 2024-03-18
  • 0.30.2 - 2024-03-14
  • 0.30.2-e4bc89e - 2024-03-18
  • 0.30.2-be1fd1a - 2024-03-16
  • 0.30.2-34d3108 - 2024-03-18
  • 0.30.2-29e6b46 - 2024-03-14
  • 0.30.1 - 2024-03-08
  • 0.30.1-e14d6ca - 2024-03-14
  • 0.30.1-e01313e - 2024-03-11
  • 0.30.1-d9db4a3 - 2024-03-08
  • 0.30.1-bfc757f - 2024-03-11
  • 0.30.1-97e97e1 - 2024-03-12
  • 0.30.0 - 2024-03-07
  • 0.30.0-373aad0 - 2024-03-08
  • 0.29.5 - 2024-03-06
  • 0.29.5-e0ead65 - 2024-03-07
  • 0.29.5-dac6269 - 2024-03-07
  • 0.29.5-b80ab5d - 2024-03-05
  • 0.29.5-90d8b4b - 2024-03-08
  • 0.29.5-86f28a9 - 2024-03-06
  • 0.29.5-859260e - 2024-03-05
  • 0.29.5-7888ad6 - 2024-03-05
  • 0.29.4 - 2024-02-22
  • 0.29.4-d783960 - 2024-02-22
  • 0.29.4-b475b53 - 2024-02-22
  • 0.29.4-0a94f2e - 2024-02-22
  • 0.29.3 - 2024-01-02
  • 0.29.3-ea73cc1 - 2024-02-22
  • 0.29.3-be57893 - 2024-01-02
  • 0.29.3-8c0788a - 2024-01-09
  • 0.29.3-4bdea4c - 2024-01-02
  • 0.29.2 - 2023-12-25
  • 0.29.2-e905a71 - 2024-01-02
  • 0.29.2-e254575 - 2023-12-28
  • 0.29.2-d5c45a6 - 2023-12-22
  • 0.29.2-d535e0b - 2023-12-28
  • 0.29.2-d062fba - 2024-01-02
  • 0.29.2-bcd8e38 - 2023-12-22
  • 0.29.2-aa669c4 - 2024-01-03
  • 0.29.2-7ba7903 - 2024-04-27
  • 0.29.2-76177ff - 2024-01-03
  • 0.29.2-6d706c1 - 2023-12-27
  • 0.29.2-6388b4b - 2024-01-02
  • 0.29.2-39c9e73 - 2024-01-02
  • 0.29.2-217975e - 2024-01-02
  • 0.29.2-1d1e96d - 2024-01-02
  • 0.29.2-1737ba1 - 2024-01-03
  • 0.29.2-0fd9727 - 2024-01-03
  • 0.29.1 - 2023-11-29
  • 0.29.1-fef5d1e - 2023-12-20
  • 0.29.1-e78b53e - 2023-11-29
  • 0.29.1-d55aea4 - 2023-11-30
  • 0.29.1-d09fb96 - 2023-12-06
  • 0.29.1-ac1dd05 - 2023-12-13
  • 0.29.1-a4d758d - 2023-12-17
  • 0.29.1-758723b - 2023-11-29
  • 0.29.1-47754fb - 2023-12-07
  • 0.29.1-3efe430 - 2023-12-13
  • 0.29.0 - 2023-11-09
  • 0.29.0-f0b7352 - 2023-10-13
  • 0.29.0-e4ad266 - 2023-11-27
  • 0.29.0-d615df5 - 2023-11-27
  • 0.29.0-d3b1c58 - 2023-11-09
  • 0.29.0-cf6274f - 2023-10-15
  • 0.29.0-aad4fe0 - 2023-11-27
  • 0.29.0-a6dc062 - 2023-11-09
  • 0.29.0-9b4304f - 2023-10-13
  • 0.29.0-99ce577 - 2023-11-05
  • 0.29.0-9091d23 - 2023-10-13
  • 0.29.0-89a2300 - 2023-11-28
  • 0.29.0-501e283 - 2023-11-27
  • 0.29.0-44e2467 - 2023-11-28
  • 0.29.0-3822b1c - 2023-11-05
  • 0.29.0-35f2645 - 2023-10-13
  • 0.29.0-32f3f47 - 2023-11-27
  • 0.29.0-255a7c8 - 2023-11-27
  • 0.29.0-23cf493 - 2023-10-16
  • 0.29.0-1a482ce - 2023-11-02
  • 0.29.0-165f99e - 2023-11-19
  • 0.29.0-142bc1f - 2023-11-27
  • 0.29.0-0e0af59 - 2023-10-16
  • 0.29.0-0a8127c - 2023-11-05
  • 0.29.0-08e3043 - 2023-10-19
  • 0.28.7-d3fbe4a - 2023-09-13
  • 0.28.7-6c67975 - 2023-09-13
  • 0.28.7-4e094f0 - 2023-09-28
  • 0.28.7-092355c - 2023-09-13
  • 0.28.6 - 2023-09-06
  • 0.28.6-cb76384 - 2023-09-05
  • 0.28.6-6c516c3 - 2023-09-06
  • 0.28.6-163b068 - 2023-09-05
  • 0.28.6-01ea041 - 2023-09-06
  • 0.28.5 - 2023-08-24
  • 0.28.5-fef8c04 - 2023-08-24
  • 0.28.5-ae49232 - 2023-09-05
  • 0.28.5-a613c36 - 2023-08-26
  • 0.28.5-7be0c68 - 2023-09-05
  • 0.28.5-7641a81 - 2023-09-05
  • 0.28.5-455d10e - 2023-08-24
  • 0.28.5-2bf43a5 - 2023-08-25
  • 0.28.5-1b07a0f - 2023-08-24
  • 0.28.4 - 2023-08-23
  • 0.28.4-b0f0ac9 - 2023-08-24
  • 0.28.4-4047ba9 - 2023-08-24
  • 0.28.4-0f1c5b4 - 2023-08-23
  • 0.28.3 - 2023-08-22
  • 0.28.3-a702909 - 2023-08-20
  • 0.28.3-a1dc88f - 2023-08-21
  • 0.28.3-0d6a8b6 - 2023-08-22
  • 0.28.2 - 2023-08-10
  • 0.28.2-c063144 - 2023-08-12
  • 0.28.2-acf0b91 - 2023-08-15
  • 0.28.2-8c31aee - 2023-08-10
  • 0.28.2-09d699f - 2023-08-12
  • 0.28.2-07400cc - 2023-08-13
  • 0.28.2-02b522c - 2023-08-10
  • 0.28.1 - 2023-08-07
  • 0.28.1-ae63c6e - 2023-08-08
  • 0.28.1-976c154 - 2023-08-09
  • 0.28.1-28dcc4a - 2023-08-09
  • 0.28.1-1b5c6c1 - 2023-08-07
  • 0.28.0 - 2023-08-06
  • 0.28.0-ddb1408 - 2023-08-06
  • 0.28.0-c091982 - 2023-08-07
  • 0.28.0-aae371a - 2023-08-06
  • 0.28.0-5dd9190 - 2023-08-06
  • 0.28.0-1f79521 - 2023-07-24
  • 0.27.3-e080bed - 2023-07-26
  • 0.27.3-cd1b6be - 2023-08-04
  • 0.27.3-c015788 - 2023-07-27
  • 0.27.3-aaeaa6e - 2023-07-24
  • 0.27.3-7f23895 - 2023-07-27
  • 0.27.3-6f67e3f - 2023-07-26
  • 0.27.3-4f9270a - 2023-07-24
  • 0.27.3-4768d12 - 2023-08-06
  • 0.27.3-4071c67 - 2023-07-27
  • 0.27.3-2a86a33 - 2023-08-04
  • 0.27.3-223694a - 2023-07-24
  • 0.27.3-0ea6f8c - 2023-07-27
  • 0.27.2 - 2023-07-11
from drizzle-orm GitHub release notes

Important

  • Check the changes in this PR to ensure they won't cause issues with your project.
  • This PR was automatically created by Snyk using the credentials of a real user.
  • Snyk has automatically assigned this pull request, set who gets assigned.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

Snyk has created this PR to upgrade drizzle-orm from 0.27.2 to 0.32.1.

See this package in npm:
drizzle-orm

See this project in Snyk:
https://app.snyk.io/org/finninn/project/48b774f1-6064-475e-b215-23e09deaed2f?utm_source=github&utm_medium=referral&page=upgrade-pr
@simplyzetax simplyzetax self-assigned this Aug 15, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

[FEATURE]: Add support for LIMIT 0 [FEATURE]: Allow to pass empty values to inArray
2 participants