fix(examples): skip URI safety check for system imports

[dpgaspar]

SUMMARY

PR #36538 modernized example loading to use the import/export framework, routing through import_database(). This function checks PREVENT_UNSAFE_DB_CONNECTIONS, which blocks SQLite URIs. In CI/showtime environments where this flag is enabled and SQLALCHEMY_EXAMPLES_URI is SQLite, example loading now fails with:

SupersetSecurityException: SQLiteDialect_pysqlite cannot be used as a data source for security reasons.

The fix skips the URI safety check when ignore_permissions=True, since system imports (like examples) use URIs from server config (SQLALCHEMY_EXAMPLES_URI), not untrusted user input.

TESTING INSTRUCTIONS

1. Set PREVENT_UNSAFE_DB_CONNECTIONS = True and SQLALCHEMY_EXAMPLES_URI to a SQLite URI
2. Run superset load-examples
3. Confirm examples load without the SupersetSecurityException

ADDITIONAL INFORMATION

• Has associated issue:
• Required feature flags:
• Changes UI
• Includes DB Migration
• Introduces new feature or API
• Removes existing feature or API

🤖 Generated with Claude Code

[bito-code-review]

Code Review Agent Run #e86607

Actionable Suggestions - 0

Review Details

• Files reviewed - 1 · Commit Range: eb1573c..eb1573c

  • superset/commands/database/importers/v1/utils.py
• Files skipped - 0
• Tools

  • Whispers (Secret Scanner) - ✔︎ Successful
  • Detect-secrets (Secret Scanner) - ✔︎ Successful
  • MyPy (Static Code Analysis) - ✔︎ Successful
  • Astral Ruff (Static Code Analysis) - ✔︎ Successful

---

Bito Usage Guide

Commands

Type the following command in the pull request comment and save the comment.

• /review - Manually triggers a full AI review.

• /pause - Pauses automatic reviews on this pull request.

• /resume - Resumes automatic reviews.

• /resolve - Marks all Bito-posted review comments as resolved.

• /abort - Cancels all in-progress reviews.

Refer to the documentation for additional commands.

Configuration

This repository uses Superset You can customize the agent settings here or contact your Bito workspace admin at evan@preset.io.

Documentation & Help

• Customize agent settings
• Review rules
• General documentation
• FAQ

AI Code Review powered by

[codecov]

Codecov Report

❌ Patch coverage is 0% with 5 lines in your changes missing coverage. Please review.
✅ Project coverage is 66.58%. Comparing base (76d897e) to head (6162bf4).
⚠️ Report is 3572 commits behind head on master.

Files with missing lines	Patch %	Lines
superset/examples/data_loading.py	0.00%	2 Missing ⚠️
superset/examples/generic_loader.py	0.00%	2 Missing ⚠️
superset/commands/database/importers/v1/utils.py	0.00%	0 Missing and 1 partial ⚠️

Additional details and impacted files

@@            Coverage Diff             @@
##           master   #37577      +/-   ##
==========================================
+ Coverage   60.48%   66.58%   +6.09%     
==========================================
  Files        1931      643    -1288     
  Lines       76236    49054   -27182     
  Branches     8568     5502    -3066     
==========================================
- Hits        46114    32662   -13452     
+ Misses      28017    15097   -12920     
+ Partials     2105     1295     -810     

Flag	Coverage Δ
hive	41.91% <0.00%> (-7.24%)	⬇️
javascript	?
mysql	64.64% <0.00%> (?)
postgres	64.72% <0.00%> (?)
presto	41.93% <0.00%> (-11.87%)	⬇️
python	66.55% <0.00%> (+3.04%)	⬆️
sqlite	64.41% <0.00%> (?)
unit	100.00% <ø> (+42.36%)	⬆️

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
• 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

[github-actions]

🎪 Showtime is building environment on GHA for eb1573c

[github-actions]

🎪 Showtime is building environment on GHA for 6162bf4