From a79ca96d01785476bcf8313f77c07c32ea4885b7 Mon Sep 17 00:00:00 2001 From: "cloudquery-ci[bot]" <271027272+cloudquery-ci[bot]@users.noreply.github.com> Date: Mon, 27 Apr 2026 08:59:01 +0000 Subject: [PATCH 01/10] fix(deps): Update dependency pytest to v9.0.3 [SECURITY] (#22746) MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit This PR contains the following updates: | Package | Change | [Age](https://docs.renovatebot.com/merge-confidence/) | [Confidence](https://docs.renovatebot.com/merge-confidence/) | |---|---|---|---| | [pytest](https://redirect.github.com/pytest-dev/pytest) ([changelog](https://docs.pytest.org/en/stable/changelog.html)) | `9.0.2` → `9.0.3` | ![age](https://developer.mend.io/api/mc/badges/age/pypi/pytest/9.0.3?slim=true) | ![confidence](https://developer.mend.io/api/mc/badges/confidence/pypi/pytest/9.0.2/9.0.3?slim=true) | --- > [!WARNING] > Some dependencies could not be looked up. Check the [Dependency Dashboard](../issues/22356) for more information. ### GitHub Vulnerability Alerts #### [CVE-2025-71176](https://nvd.nist.gov/vuln/detail/CVE-2025-71176) pytest through 9.0.2 on UNIX relies on directories with the `/tmp/pytest-of-{user}` name pattern, which allows local users to cause a denial of service or possibly gain privileges. --- ### Release Notes
pytest-dev/pytest (pytest) ### [`v9.0.3`](https://redirect.github.com/pytest-dev/pytest/releases/tag/9.0.3) [Compare Source](https://redirect.github.com/pytest-dev/pytest/compare/9.0.2...9.0.3) ##### pytest 9.0.3 (2026-04-07) ##### Bug fixes - [#​12444](https://redirect.github.com/pytest-dev/pytest/issues/12444): Fixed `pytest.approx` which now correctly takes into account `~collections.abc.Mapping` keys order to compare them. - [#​13634](https://redirect.github.com/pytest-dev/pytest/issues/13634): Blocking a `conftest.py` file using the `-p no:` option is now explicitly disallowed. Previously this resulted in an internal assertion failure during plugin loading. Pytest now raises a clear `UsageError` explaining that conftest files are not plugins and cannot be disabled via `-p`. - [#​13734](https://redirect.github.com/pytest-dev/pytest/issues/13734): Fixed crash when a test raises an exceptiongroup with `__tracebackhide__ = True`. - [#​14195](https://redirect.github.com/pytest-dev/pytest/issues/14195): Fixed an issue where non-string messages passed to unittest.TestCase.subTest() were not printed. - [#​14343](https://redirect.github.com/pytest-dev/pytest/issues/14343): Fixed use of insecure temporary directory (CVE-2025-71176). ##### Improved documentation - [#​13388](https://redirect.github.com/pytest-dev/pytest/issues/13388): Clarified documentation for `-p` vs `PYTEST_PLUGINS` plugin loading and fixed an incorrect `-p` example. - [#​13731](https://redirect.github.com/pytest-dev/pytest/issues/13731): Clarified that capture fixtures (e.g. `capsys` and `capfd`) take precedence over the `-s` / `--capture=no` command-line options in `Accessing captured output from a test function `. - [#​14088](https://redirect.github.com/pytest-dev/pytest/issues/14088): Clarified that the default `pytest_collection` hook sets `session.items` before it calls `pytest_collection_finish`, not after. - [#​14255](https://redirect.github.com/pytest-dev/pytest/issues/14255): TOML integer log levels must be quoted: Updating reference documentation. ##### Contributor-facing changes - [#​12689](https://redirect.github.com/pytest-dev/pytest/issues/12689): The test reports are now published to Codecov from GitHub Actions. The test statistics is visible [on the web interface](https://app.codecov.io/gh/pytest-dev/pytest/tests). \-- by `aleguy02`
--- ### Configuration 📅 **Schedule**: (UTC) - Branch creation - At any time (no schedule defined) - Automerge - At any time (no schedule defined) 🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about these updates again. --- - [ ] If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://redirect.github.com/renovatebot/renovate). --- plugins/destination/sqlite-python/uv.lock | 2 +- plugins/source/square/uv.lock | 2 +- plugins/source/typeform/uv.lock | 2 +- 3 files changed, 3 insertions(+), 3 deletions(-) diff --git a/plugins/destination/sqlite-python/uv.lock b/plugins/destination/sqlite-python/uv.lock index e35b85ca972d20..3c859af3e19f5a 100644 --- a/plugins/destination/sqlite-python/uv.lock +++ b/plugins/destination/sqlite-python/uv.lock @@ -11,7 +11,7 @@ resolution-markers = [ ] [options] -exclude-newer = "2026-04-20T06:57:19.127694904Z" +exclude-newer = "2026-04-20T08:56:14.971780071Z" exclude-newer-span = "P1W" [[package]] diff --git a/plugins/source/square/uv.lock b/plugins/source/square/uv.lock index 93ee8c82360680..46b55d1d5998f3 100644 --- a/plugins/source/square/uv.lock +++ b/plugins/source/square/uv.lock @@ -11,7 +11,7 @@ resolution-markers = [ ] [options] -exclude-newer = "2026-04-20T06:57:21.160705458Z" +exclude-newer = "2026-04-20T08:56:16.792344304Z" exclude-newer-span = "P1W" [[package]] diff --git a/plugins/source/typeform/uv.lock b/plugins/source/typeform/uv.lock index f452dfa48f7c65..57276b8051db57 100644 --- a/plugins/source/typeform/uv.lock +++ b/plugins/source/typeform/uv.lock @@ -11,7 +11,7 @@ resolution-markers = [ ] [options] -exclude-newer = "2026-04-20T06:57:23.053453994Z" +exclude-newer = "2026-04-20T08:56:18.717884519Z" exclude-newer-span = "P1W" [[package]] From 2c27e8793c5c8d7ef4008403fdb55f0fc02c9ef4 Mon Sep 17 00:00:00 2001 From: "cloudquery-ci[bot]" <271027272+cloudquery-ci[bot]@users.noreply.github.com> Date: Mon, 27 Apr 2026 10:47:49 +0000 Subject: [PATCH 02/10] fix(deps): Update dependency pytest to v9.0.3 [SECURITY] (#22747) MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit This PR contains the following updates: | Package | Change | [Age](https://docs.renovatebot.com/merge-confidence/) | [Confidence](https://docs.renovatebot.com/merge-confidence/) | |---|---|---|---| | [pytest](https://redirect.github.com/pytest-dev/pytest) ([changelog](https://docs.pytest.org/en/stable/changelog.html)) | `9.0.2` → `9.0.3` | ![age](https://developer.mend.io/api/mc/badges/age/pypi/pytest/9.0.3?slim=true) | ![confidence](https://developer.mend.io/api/mc/badges/confidence/pypi/pytest/9.0.2/9.0.3?slim=true) | --- > [!WARNING] > Some dependencies could not be looked up. Check the [Dependency Dashboard](../issues/22356) for more information. ### GitHub Vulnerability Alerts #### [CVE-2025-71176](https://nvd.nist.gov/vuln/detail/CVE-2025-71176) pytest through 9.0.2 on UNIX relies on directories with the `/tmp/pytest-of-{user}` name pattern, which allows local users to cause a denial of service or possibly gain privileges. --- ### Release Notes
pytest-dev/pytest (pytest) ### [`v9.0.3`](https://redirect.github.com/pytest-dev/pytest/releases/tag/9.0.3) [Compare Source](https://redirect.github.com/pytest-dev/pytest/compare/9.0.2...9.0.3) ##### pytest 9.0.3 (2026-04-07) ##### Bug fixes - [#​12444](https://redirect.github.com/pytest-dev/pytest/issues/12444): Fixed `pytest.approx` which now correctly takes into account `~collections.abc.Mapping` keys order to compare them. - [#​13634](https://redirect.github.com/pytest-dev/pytest/issues/13634): Blocking a `conftest.py` file using the `-p no:` option is now explicitly disallowed. Previously this resulted in an internal assertion failure during plugin loading. Pytest now raises a clear `UsageError` explaining that conftest files are not plugins and cannot be disabled via `-p`. - [#​13734](https://redirect.github.com/pytest-dev/pytest/issues/13734): Fixed crash when a test raises an exceptiongroup with `__tracebackhide__ = True`. - [#​14195](https://redirect.github.com/pytest-dev/pytest/issues/14195): Fixed an issue where non-string messages passed to unittest.TestCase.subTest() were not printed. - [#​14343](https://redirect.github.com/pytest-dev/pytest/issues/14343): Fixed use of insecure temporary directory (CVE-2025-71176). ##### Improved documentation - [#​13388](https://redirect.github.com/pytest-dev/pytest/issues/13388): Clarified documentation for `-p` vs `PYTEST_PLUGINS` plugin loading and fixed an incorrect `-p` example. - [#​13731](https://redirect.github.com/pytest-dev/pytest/issues/13731): Clarified that capture fixtures (e.g. `capsys` and `capfd`) take precedence over the `-s` / `--capture=no` command-line options in `Accessing captured output from a test function `. - [#​14088](https://redirect.github.com/pytest-dev/pytest/issues/14088): Clarified that the default `pytest_collection` hook sets `session.items` before it calls `pytest_collection_finish`, not after. - [#​14255](https://redirect.github.com/pytest-dev/pytest/issues/14255): TOML integer log levels must be quoted: Updating reference documentation. ##### Contributor-facing changes - [#​12689](https://redirect.github.com/pytest-dev/pytest/issues/12689): The test reports are now published to Codecov from GitHub Actions. The test statistics is visible [on the web interface](https://app.codecov.io/gh/pytest-dev/pytest/tests). \-- by `aleguy02`
--- ### Configuration 📅 **Schedule**: (UTC) - Branch creation - At any time (no schedule defined) - Automerge - At any time (no schedule defined) 🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about these updates again. --- - [ ] If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://redirect.github.com/renovatebot/renovate). --- plugins/destination/sqlite-python/uv.lock | 2 +- plugins/source/square/uv.lock | 2 +- plugins/source/typeform/uv.lock | 2 +- 3 files changed, 3 insertions(+), 3 deletions(-) diff --git a/plugins/destination/sqlite-python/uv.lock b/plugins/destination/sqlite-python/uv.lock index 3c859af3e19f5a..43a0b01b76c0cc 100644 --- a/plugins/destination/sqlite-python/uv.lock +++ b/plugins/destination/sqlite-python/uv.lock @@ -11,7 +11,7 @@ resolution-markers = [ ] [options] -exclude-newer = "2026-04-20T08:56:14.971780071Z" +exclude-newer = "2026-04-20T10:45:06.865252845Z" exclude-newer-span = "P1W" [[package]] diff --git a/plugins/source/square/uv.lock b/plugins/source/square/uv.lock index 46b55d1d5998f3..152163e4263638 100644 --- a/plugins/source/square/uv.lock +++ b/plugins/source/square/uv.lock @@ -11,7 +11,7 @@ resolution-markers = [ ] [options] -exclude-newer = "2026-04-20T08:56:16.792344304Z" +exclude-newer = "2026-04-20T10:45:09.157505114Z" exclude-newer-span = "P1W" [[package]] diff --git a/plugins/source/typeform/uv.lock b/plugins/source/typeform/uv.lock index 57276b8051db57..8a65ecaa1c60a2 100644 --- a/plugins/source/typeform/uv.lock +++ b/plugins/source/typeform/uv.lock @@ -11,7 +11,7 @@ resolution-markers = [ ] [options] -exclude-newer = "2026-04-20T08:56:18.717884519Z" +exclude-newer = "2026-04-20T10:45:10.903486346Z" exclude-newer-span = "P1W" [[package]] From b6003f2eef230340ddca215ba6d33b631bdcdcaa Mon Sep 17 00:00:00 2001 From: "cloudquery-ci[bot]" <271027272+cloudquery-ci[bot]@users.noreply.github.com> Date: Mon, 27 Apr 2026 10:53:36 +0000 Subject: [PATCH 03/10] fix(deps): Update module github.com/aws/smithy-go to v1.25.1 (#22715) MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit This PR contains the following updates: | Package | Change | [Age](https://docs.renovatebot.com/merge-confidence/) | [Confidence](https://docs.renovatebot.com/merge-confidence/) | |---|---|---|---| | [github.com/aws/smithy-go](https://redirect.github.com/aws/smithy-go) | `v1.25.0` → `v1.25.1` | ![age](https://developer.mend.io/api/mc/badges/age/go/github.com%2faws%2fsmithy-go/v1.25.1?slim=true) | ![confidence](https://developer.mend.io/api/mc/badges/confidence/go/github.com%2faws%2fsmithy-go/v1.25.0/v1.25.1?slim=true) | --- > [!WARNING] > Some dependencies could not be looked up. Check the [Dependency Dashboard](../issues/22356) for more information. --- ### Release Notes
aws/smithy-go (github.com/aws/smithy-go) ### [`v1.25.1`](https://redirect.github.com/aws/smithy-go/blob/HEAD/CHANGELOG.md#Release-2026-04-23) [Compare Source](https://redirect.github.com/aws/smithy-go/compare/v1.25.0...v1.25.1) #### General Highlights - **Dependency Update**: Updated to the latest SDK module versions #### Module Highlights - `github.com/aws/smithy-go`: v1.25.1 - **Bug Fix**: Fixed a memory leak in the LRU cache implementation used by some AWS services.
--- ### Configuration 📅 **Schedule**: (UTC) - Branch creation - "before 3am on Saturday" - Automerge - At any time (no schedule defined) 🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://redirect.github.com/renovatebot/renovate). --- plugins/destination/s3/go.mod | 2 +- plugins/destination/s3/go.sum | 4 ++-- 2 files changed, 3 insertions(+), 3 deletions(-) diff --git a/plugins/destination/s3/go.mod b/plugins/destination/s3/go.mod index cef4f748f55e10..41ae44f1ab2bc4 100644 --- a/plugins/destination/s3/go.mod +++ b/plugins/destination/s3/go.mod @@ -11,7 +11,7 @@ require ( github.com/aws/aws-sdk-go-v2/feature/s3/transfermanager v0.1.17 github.com/aws/aws-sdk-go-v2/service/s3 v1.99.1 github.com/aws/aws-sdk-go-v2/service/sts v1.42.0 - github.com/aws/smithy-go v1.25.0 + github.com/aws/smithy-go v1.25.1 github.com/cloudquery/codegen v0.4.1 github.com/cloudquery/filetypes/v4 v4.7.0 github.com/cloudquery/plugin-sdk/v4 v4.95.1 diff --git a/plugins/destination/s3/go.sum b/plugins/destination/s3/go.sum index 0aa714e45bd290..96b57ab255022a 100644 --- a/plugins/destination/s3/go.sum +++ b/plugins/destination/s3/go.sum @@ -53,8 +53,8 @@ github.com/aws/aws-sdk-go-v2/service/ssooidc v1.35.20 h1:oK/njaL8GtyEihkWMD4k3Vg github.com/aws/aws-sdk-go-v2/service/ssooidc v1.35.20/go.mod h1:JHs8/y1f3zY7U5WcuzoJ/yAYGYtNIVPKLIbp61euvmg= github.com/aws/aws-sdk-go-v2/service/sts v1.42.0 h1:ks8KBcZPh3PYISr5dAiXCM5/Thcuxk8l+PG4+A0exds= github.com/aws/aws-sdk-go-v2/service/sts v1.42.0/go.mod h1:pFw33T0WLvXU3rw1WBkpMlkgIn54eCB5FYLhjDc9Foo= -github.com/aws/smithy-go v1.25.0 h1:Sz/XJ64rwuiKtB6j98nDIPyYrV1nVNJ4YU74gttcl5U= -github.com/aws/smithy-go v1.25.0/go.mod h1:YE2RhdIuDbA5E5bTdciG9KrW3+TiEONeUWCqxX9i1Fc= +github.com/aws/smithy-go v1.25.1 h1:J8ERsGSU7d+aCmdQur5Txg6bVoYelvQJgtZehD12GkI= +github.com/aws/smithy-go v1.25.1/go.mod h1:YE2RhdIuDbA5E5bTdciG9KrW3+TiEONeUWCqxX9i1Fc= github.com/bahlo/generic-list-go v0.2.0 h1:5sz/EEAK+ls5wF+NeqDpk5+iNdMDXrh3z3nPnH1Wvgk= github.com/bahlo/generic-list-go v0.2.0/go.mod h1:2KvAjgMlE5NNynlg/5iLrrCCZ2+5xWbdbCW3pNTGyYg= github.com/bmatcuk/doublestar v1.1.1/go.mod h1:UD6OnuiIn0yFxxA2le/rnRU1G4RaI4UvFv1sNto9p6w= From a4c9d691dbe119921cc3194f4885d703b1a68531 Mon Sep 17 00:00:00 2001 From: "cloudquery-ci[bot]" <271027272+cloudquery-ci[bot]@users.noreply.github.com> Date: Mon, 27 Apr 2026 11:00:16 +0000 Subject: [PATCH 04/10] fix(deps): Update dependency pytest to v9.0.3 [SECURITY] (#22748) MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit This PR contains the following updates: | Package | Change | [Age](https://docs.renovatebot.com/merge-confidence/) | [Confidence](https://docs.renovatebot.com/merge-confidence/) | |---|---|---|---| | [pytest](https://redirect.github.com/pytest-dev/pytest) ([changelog](https://docs.pytest.org/en/stable/changelog.html)) | `9.0.2` → `9.0.3` | ![age](https://developer.mend.io/api/mc/badges/age/pypi/pytest/9.0.3?slim=true) | ![confidence](https://developer.mend.io/api/mc/badges/confidence/pypi/pytest/9.0.2/9.0.3?slim=true) | --- > [!WARNING] > Some dependencies could not be looked up. Check the [Dependency Dashboard](../issues/22356) for more information. ### GitHub Vulnerability Alerts #### [CVE-2025-71176](https://nvd.nist.gov/vuln/detail/CVE-2025-71176) pytest through 9.0.2 on UNIX relies on directories with the `/tmp/pytest-of-{user}` name pattern, which allows local users to cause a denial of service or possibly gain privileges. --- ### Release Notes
pytest-dev/pytest (pytest) ### [`v9.0.3`](https://redirect.github.com/pytest-dev/pytest/releases/tag/9.0.3) [Compare Source](https://redirect.github.com/pytest-dev/pytest/compare/9.0.2...9.0.3) ##### pytest 9.0.3 (2026-04-07) ##### Bug fixes - [#​12444](https://redirect.github.com/pytest-dev/pytest/issues/12444): Fixed `pytest.approx` which now correctly takes into account `~collections.abc.Mapping` keys order to compare them. - [#​13634](https://redirect.github.com/pytest-dev/pytest/issues/13634): Blocking a `conftest.py` file using the `-p no:` option is now explicitly disallowed. Previously this resulted in an internal assertion failure during plugin loading. Pytest now raises a clear `UsageError` explaining that conftest files are not plugins and cannot be disabled via `-p`. - [#​13734](https://redirect.github.com/pytest-dev/pytest/issues/13734): Fixed crash when a test raises an exceptiongroup with `__tracebackhide__ = True`. - [#​14195](https://redirect.github.com/pytest-dev/pytest/issues/14195): Fixed an issue where non-string messages passed to unittest.TestCase.subTest() were not printed. - [#​14343](https://redirect.github.com/pytest-dev/pytest/issues/14343): Fixed use of insecure temporary directory (CVE-2025-71176). ##### Improved documentation - [#​13388](https://redirect.github.com/pytest-dev/pytest/issues/13388): Clarified documentation for `-p` vs `PYTEST_PLUGINS` plugin loading and fixed an incorrect `-p` example. - [#​13731](https://redirect.github.com/pytest-dev/pytest/issues/13731): Clarified that capture fixtures (e.g. `capsys` and `capfd`) take precedence over the `-s` / `--capture=no` command-line options in `Accessing captured output from a test function `. - [#​14088](https://redirect.github.com/pytest-dev/pytest/issues/14088): Clarified that the default `pytest_collection` hook sets `session.items` before it calls `pytest_collection_finish`, not after. - [#​14255](https://redirect.github.com/pytest-dev/pytest/issues/14255): TOML integer log levels must be quoted: Updating reference documentation. ##### Contributor-facing changes - [#​12689](https://redirect.github.com/pytest-dev/pytest/issues/12689): The test reports are now published to Codecov from GitHub Actions. The test statistics is visible [on the web interface](https://app.codecov.io/gh/pytest-dev/pytest/tests). \-- by `aleguy02`
--- ### Configuration 📅 **Schedule**: (UTC) - Branch creation - At any time (no schedule defined) - Automerge - At any time (no schedule defined) 🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about these updates again. --- - [ ] If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://redirect.github.com/renovatebot/renovate). --- plugins/destination/sqlite-python/uv.lock | 2 +- plugins/source/square/uv.lock | 2 +- plugins/source/typeform/uv.lock | 2 +- 3 files changed, 3 insertions(+), 3 deletions(-) diff --git a/plugins/destination/sqlite-python/uv.lock b/plugins/destination/sqlite-python/uv.lock index 43a0b01b76c0cc..32edd97d26cd1e 100644 --- a/plugins/destination/sqlite-python/uv.lock +++ b/plugins/destination/sqlite-python/uv.lock @@ -11,7 +11,7 @@ resolution-markers = [ ] [options] -exclude-newer = "2026-04-20T10:45:06.865252845Z" +exclude-newer = "2026-04-20T10:55:35.880533262Z" exclude-newer-span = "P1W" [[package]] diff --git a/plugins/source/square/uv.lock b/plugins/source/square/uv.lock index 152163e4263638..6b6a19aa0fa29d 100644 --- a/plugins/source/square/uv.lock +++ b/plugins/source/square/uv.lock @@ -11,7 +11,7 @@ resolution-markers = [ ] [options] -exclude-newer = "2026-04-20T10:45:09.157505114Z" +exclude-newer = "2026-04-20T10:55:37.671883507Z" exclude-newer-span = "P1W" [[package]] diff --git a/plugins/source/typeform/uv.lock b/plugins/source/typeform/uv.lock index 8a65ecaa1c60a2..04f6322a249779 100644 --- a/plugins/source/typeform/uv.lock +++ b/plugins/source/typeform/uv.lock @@ -11,7 +11,7 @@ resolution-markers = [ ] [options] -exclude-newer = "2026-04-20T10:45:10.903486346Z" +exclude-newer = "2026-04-20T10:55:39.439285546Z" exclude-newer-span = "P1W" [[package]] From bb50b5713355080f1cdbf9fd6a7887b83473be2b Mon Sep 17 00:00:00 2001 From: "cloudquery-ci[bot]" <271027272+cloudquery-ci[bot]@users.noreply.github.com> Date: Mon, 27 Apr 2026 12:40:50 +0000 Subject: [PATCH 05/10] fix(deps): Update dependency pytest to v9.0.3 [SECURITY] (#22749) MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit This PR contains the following updates: | Package | Change | [Age](https://docs.renovatebot.com/merge-confidence/) | [Confidence](https://docs.renovatebot.com/merge-confidence/) | |---|---|---|---| | [pytest](https://redirect.github.com/pytest-dev/pytest) ([changelog](https://docs.pytest.org/en/stable/changelog.html)) | `9.0.2` → `9.0.3` | ![age](https://developer.mend.io/api/mc/badges/age/pypi/pytest/9.0.3?slim=true) | ![confidence](https://developer.mend.io/api/mc/badges/confidence/pypi/pytest/9.0.2/9.0.3?slim=true) | --- > [!WARNING] > Some dependencies could not be looked up. Check the [Dependency Dashboard](../issues/22356) for more information. ### GitHub Vulnerability Alerts #### [CVE-2025-71176](https://nvd.nist.gov/vuln/detail/CVE-2025-71176) pytest through 9.0.2 on UNIX relies on directories with the `/tmp/pytest-of-{user}` name pattern, which allows local users to cause a denial of service or possibly gain privileges. --- ### Release Notes
pytest-dev/pytest (pytest) ### [`v9.0.3`](https://redirect.github.com/pytest-dev/pytest/releases/tag/9.0.3) [Compare Source](https://redirect.github.com/pytest-dev/pytest/compare/9.0.2...9.0.3) ##### pytest 9.0.3 (2026-04-07) ##### Bug fixes - [#​12444](https://redirect.github.com/pytest-dev/pytest/issues/12444): Fixed `pytest.approx` which now correctly takes into account `~collections.abc.Mapping` keys order to compare them. - [#​13634](https://redirect.github.com/pytest-dev/pytest/issues/13634): Blocking a `conftest.py` file using the `-p no:` option is now explicitly disallowed. Previously this resulted in an internal assertion failure during plugin loading. Pytest now raises a clear `UsageError` explaining that conftest files are not plugins and cannot be disabled via `-p`. - [#​13734](https://redirect.github.com/pytest-dev/pytest/issues/13734): Fixed crash when a test raises an exceptiongroup with `__tracebackhide__ = True`. - [#​14195](https://redirect.github.com/pytest-dev/pytest/issues/14195): Fixed an issue where non-string messages passed to unittest.TestCase.subTest() were not printed. - [#​14343](https://redirect.github.com/pytest-dev/pytest/issues/14343): Fixed use of insecure temporary directory (CVE-2025-71176). ##### Improved documentation - [#​13388](https://redirect.github.com/pytest-dev/pytest/issues/13388): Clarified documentation for `-p` vs `PYTEST_PLUGINS` plugin loading and fixed an incorrect `-p` example. - [#​13731](https://redirect.github.com/pytest-dev/pytest/issues/13731): Clarified that capture fixtures (e.g. `capsys` and `capfd`) take precedence over the `-s` / `--capture=no` command-line options in `Accessing captured output from a test function `. - [#​14088](https://redirect.github.com/pytest-dev/pytest/issues/14088): Clarified that the default `pytest_collection` hook sets `session.items` before it calls `pytest_collection_finish`, not after. - [#​14255](https://redirect.github.com/pytest-dev/pytest/issues/14255): TOML integer log levels must be quoted: Updating reference documentation. ##### Contributor-facing changes - [#​12689](https://redirect.github.com/pytest-dev/pytest/issues/12689): The test reports are now published to Codecov from GitHub Actions. The test statistics is visible [on the web interface](https://app.codecov.io/gh/pytest-dev/pytest/tests). \-- by `aleguy02`
--- ### Configuration 📅 **Schedule**: (UTC) - Branch creation - At any time (no schedule defined) - Automerge - At any time (no schedule defined) 🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about these updates again. --- - [ ] If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://redirect.github.com/renovatebot/renovate). --- plugins/destination/sqlite-python/uv.lock | 2 +- plugins/source/square/uv.lock | 2 +- plugins/source/typeform/uv.lock | 2 +- 3 files changed, 3 insertions(+), 3 deletions(-) diff --git a/plugins/destination/sqlite-python/uv.lock b/plugins/destination/sqlite-python/uv.lock index 32edd97d26cd1e..2c68323a2ff59c 100644 --- a/plugins/destination/sqlite-python/uv.lock +++ b/plugins/destination/sqlite-python/uv.lock @@ -11,7 +11,7 @@ resolution-markers = [ ] [options] -exclude-newer = "2026-04-20T10:55:35.880533262Z" +exclude-newer = "2026-04-20T12:38:00.557325958Z" exclude-newer-span = "P1W" [[package]] diff --git a/plugins/source/square/uv.lock b/plugins/source/square/uv.lock index 6b6a19aa0fa29d..dad9e0693843d5 100644 --- a/plugins/source/square/uv.lock +++ b/plugins/source/square/uv.lock @@ -11,7 +11,7 @@ resolution-markers = [ ] [options] -exclude-newer = "2026-04-20T10:55:37.671883507Z" +exclude-newer = "2026-04-20T12:38:03.493992415Z" exclude-newer-span = "P1W" [[package]] diff --git a/plugins/source/typeform/uv.lock b/plugins/source/typeform/uv.lock index 04f6322a249779..1432afc543e7a0 100644 --- a/plugins/source/typeform/uv.lock +++ b/plugins/source/typeform/uv.lock @@ -11,7 +11,7 @@ resolution-markers = [ ] [options] -exclude-newer = "2026-04-20T10:55:39.439285546Z" +exclude-newer = "2026-04-20T12:38:05.444842323Z" exclude-newer-span = "P1W" [[package]] From 0a69663925dea35e45178a34dbd69e00ff657e52 Mon Sep 17 00:00:00 2001 From: Ben Bernays Date: Mon, 27 Apr 2026 14:17:50 -0500 Subject: [PATCH 06/10] fix: Avoid panic during an empty write (#22750) This happens when a single row is larger than 5 mb and the batch is empty ``` panic: runtime error: index out of range [0] with length 0 goroutine 221 [running]: github.com/cloudquery/cloudquery/plugins/destination/snowflake/v4/client.(*Client).WriteTableBatch(0x2ddcc206270, {0x2375a20, 0x3904660}, {0x2ddccaa6a50, 0x25}, {0x2ddcd1d2000, 0x0, 0x2ddcc6ecdb0?}) github.com/cloudquery/cloudquery/plugins/destination/snowflake/v4/client/write.go:76 +0x84a github.com/cloudquery/plugin-sdk/v4/writers/batchwriter.(*BatchWriter).flushTable(0x2ddcc22c500, {0x2375a20, 0x3904660}, {0x2ddccaa6a50, 0x25}, {0x2ddcd1d2000, 0x0, 0x1388}, 0x0?) github.com/cloudquery/plugin-sdk/v4@v4.95.0/writers/batchwriter/batchwriter.go:201 +0xc4 github.com/cloudquery/plugin-sdk/v4/writers/batchwriter.(*BatchWriter).worker.func1(...) github.com/cloudquery/plugin-sdk/v4@v4.95.0/writers/batchwriter/batchwriter.go:137 github.com/cloudquery/plugin-sdk/v4/writers/batchwriter.(*BatchWriter).worker(0x2ddcc22c500, {0x2375a20, 0x3904660}, {0x2ddccaa6a50, 0x25}, 0x2ddcbeda3f0, 0x2ddcbeda460) github.com/cloudquery/plugin-sdk/v4@v4.95.0/writers/batchwriter/batchwriter.go:165 +0x5b1 github.com/cloudquery/plugin-sdk/v4/writers/batchwriter.(*BatchWriter).startWorker.func1() github.com/cloudquery/plugin-sdk/v4@v4.95.0/writers/batchwriter/batchwriter.go:375 +0x6b created by github.com/cloudquery/plugin-sdk/v4/writers/batchwriter.(*BatchWriter).startWorker in goroutine 136 github.com/cloudquery/plugin-sdk/v4@v4.95.0/writers/batchwriter/batchwriter.go:371 +0x3e8 ``` --- plugins/destination/snowflake/client/write.go | 6 ++++++ 1 file changed, 6 insertions(+) diff --git a/plugins/destination/snowflake/client/write.go b/plugins/destination/snowflake/client/write.go index 4b1900e34511cb..1eff50595c82ed 100644 --- a/plugins/destination/snowflake/client/write.go +++ b/plugins/destination/snowflake/client/write.go @@ -32,6 +32,12 @@ func (c *Client) Write(ctx context.Context, msgs <-chan message.WriteMessage) er } func (c *Client) WriteTableBatch(ctx context.Context, name string, msgs message.WriteInserts) error { + // if there are no messages, we can skip the write. Ideally this should be handled in the BatchWriter, but this is a good safeguard until the fix can be implemented + // upstream + if len(msgs) == 0 { + return nil + } + if err := c.setupWrite(ctx); err != nil { return err } From bbd9c95030b893dbbd1682b840266becf642409e Mon Sep 17 00:00:00 2001 From: "cloudquery-ci[bot]" <271027272+cloudquery-ci[bot]@users.noreply.github.com> Date: Mon, 27 Apr 2026 19:54:10 +0000 Subject: [PATCH 07/10] chore(main): Release plugins-destination-snowflake v5.2.8 (#22610) :robot: I have created a release *beep* *boop* --- ## [5.2.8](https://github.com/cloudquery/cloudquery/compare/plugins-destination-snowflake-v5.2.7...plugins-destination-snowflake-v5.2.8) (2026-04-27) ### Bug Fixes * Avoid panic during an empty write ([#22750](https://github.com/cloudquery/cloudquery/issues/22750)) ([0a69663](https://github.com/cloudquery/cloudquery/commit/0a69663925dea35e45178a34dbd69e00ff657e52)) * **deps:** Update module google.golang.org/api to v0.275.0 ([#22590](https://github.com/cloudquery/cloudquery/issues/22590)) ([0e4cedc](https://github.com/cloudquery/cloudquery/commit/0e4cedc995e977a7dded30b2abeaf916c95abb90)) --- This PR was generated with [Release Please](https://github.com/googleapis/release-please). See [documentation](https://github.com/googleapis/release-please#release-please). --- .release-please-manifest.json | 2 +- plugins/destination/snowflake/CHANGELOG.md | 8 ++++++++ 2 files changed, 9 insertions(+), 1 deletion(-) diff --git a/.release-please-manifest.json b/.release-please-manifest.json index 4cc3f7d6560371..ca052a88419e15 100644 --- a/.release-please-manifest.json +++ b/.release-please-manifest.json @@ -25,7 +25,7 @@ "plugins/destination/test+FILLER": "0.0.0", "plugins/destination/sqlite": "2.14.7", "plugins/destination/sqlite+FILLER": "0.0.0", - "plugins/destination/snowflake": "5.2.7", + "plugins/destination/snowflake": "5.2.8", "plugins/destination/snowflake+FILLER": "0.0.0", "plugins/source/datadog": "4.3.10", "plugins/source/datadog+FILLER": "0.0.0", diff --git a/plugins/destination/snowflake/CHANGELOG.md b/plugins/destination/snowflake/CHANGELOG.md index 4d21a3a3d95c1c..3c09743a1809df 100644 --- a/plugins/destination/snowflake/CHANGELOG.md +++ b/plugins/destination/snowflake/CHANGELOG.md @@ -1,5 +1,13 @@ # Changelog +## [5.2.8](https://github.com/cloudquery/cloudquery/compare/plugins-destination-snowflake-v5.2.7...plugins-destination-snowflake-v5.2.8) (2026-04-27) + + +### Bug Fixes + +* Avoid panic during an empty write ([#22750](https://github.com/cloudquery/cloudquery/issues/22750)) ([0a69663](https://github.com/cloudquery/cloudquery/commit/0a69663925dea35e45178a34dbd69e00ff657e52)) +* **deps:** Update module google.golang.org/api to v0.275.0 ([#22590](https://github.com/cloudquery/cloudquery/issues/22590)) ([0e4cedc](https://github.com/cloudquery/cloudquery/commit/0e4cedc995e977a7dded30b2abeaf916c95abb90)) + ## [5.2.7](https://github.com/cloudquery/cloudquery/compare/plugins-destination-snowflake-v5.2.6...plugins-destination-snowflake-v5.2.7) (2026-04-15) From 8a2cf113783499b08916b83ee957bb011fbfd746 Mon Sep 17 00:00:00 2001 From: Ben Bernays Date: Mon, 27 Apr 2026 15:11:00 -0500 Subject: [PATCH 08/10] fix: Use latest available for `ghcr.io/gythialy/golang-cross` (#22751) Reverts the changes made in https://github.com/cloudquery/cloudquery/pull/22396 --- .github/workflows/publish_plugin_to_hub_duckdb.yml | 2 +- .github/workflows/publish_plugin_to_hub_snowflake.yml | 2 +- .github/workflows/publish_plugin_to_hub_sqlite.yml | 2 +- 3 files changed, 3 insertions(+), 3 deletions(-) diff --git a/.github/workflows/publish_plugin_to_hub_duckdb.yml b/.github/workflows/publish_plugin_to_hub_duckdb.yml index 39daa8ee0715a8..1f57fb0b388874 100644 --- a/.github/workflows/publish_plugin_to_hub_duckdb.yml +++ b/.github/workflows/publish_plugin_to_hub_duckdb.yml @@ -88,7 +88,7 @@ jobs: contents: write runs-on: ubuntu-latest container: - image: ghcr.io/gythialy/golang-cross:1.26.1 + image: ghcr.io/gythialy/golang-cross:1.26.0 needs: - prepare - build-config-ui diff --git a/.github/workflows/publish_plugin_to_hub_snowflake.yml b/.github/workflows/publish_plugin_to_hub_snowflake.yml index 24b1fdddb2d03c..003aa55f1aeabe 100644 --- a/.github/workflows/publish_plugin_to_hub_snowflake.yml +++ b/.github/workflows/publish_plugin_to_hub_snowflake.yml @@ -88,7 +88,7 @@ jobs: contents: write runs-on: ubuntu-latest container: - image: ghcr.io/gythialy/golang-cross:1.26.1 + image: ghcr.io/gythialy/golang-cross:1.26.0 env: GOAMD64: v1 needs: diff --git a/.github/workflows/publish_plugin_to_hub_sqlite.yml b/.github/workflows/publish_plugin_to_hub_sqlite.yml index ddc6b25365a18b..f4f5ff42806334 100644 --- a/.github/workflows/publish_plugin_to_hub_sqlite.yml +++ b/.github/workflows/publish_plugin_to_hub_sqlite.yml @@ -88,7 +88,7 @@ jobs: contents: write runs-on: ubuntu-latest container: - image: ghcr.io/gythialy/golang-cross:1.26.1 + image: ghcr.io/gythialy/golang-cross:1.26.0 needs: - prepare - build-config-ui From a85e5679347fd4654f784c0f54e620d1d7aef83e Mon Sep 17 00:00:00 2001 From: "cloudquery-ci[bot]" <271027272+cloudquery-ci[bot]@users.noreply.github.com> Date: Mon, 27 Apr 2026 20:33:20 +0000 Subject: [PATCH 09/10] fix(deps): Update module github.com/snowflakedb/gosnowflake/v2 to v2.0.1 (#22753) MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit This PR contains the following updates: | Package | Change | [Age](https://docs.renovatebot.com/merge-confidence/) | [Confidence](https://docs.renovatebot.com/merge-confidence/) | |---|---|---|---| | [github.com/snowflakedb/gosnowflake/v2](https://redirect.github.com/snowflakedb/gosnowflake) | `v2.0.0` → `v2.0.1` | ![age](https://developer.mend.io/api/mc/badges/age/go/github.com%2fsnowflakedb%2fgosnowflake%2fv2/v2.0.1?slim=true) | ![confidence](https://developer.mend.io/api/mc/badges/confidence/go/github.com%2fsnowflakedb%2fgosnowflake%2fv2/v2.0.0/v2.0.1?slim=true) | --- > [!WARNING] > Some dependencies could not be looked up. Check the [Dependency Dashboard](../issues/22356) for more information. --- ### Release Notes
snowflakedb/gosnowflake (github.com/snowflakedb/gosnowflake/v2) ### [`v2.0.1`](https://redirect.github.com/snowflakedb/gosnowflake/releases/tag/v2.0.1): Release [Compare Source](https://redirect.github.com/snowflakedb/gosnowflake/compare/v2.0.0...v2.0.1) - Please check Snowflake [Go Snowflake for release notes](https://docs.snowflake.com/en/release-notes/clients-drivers/golang).
--- ### Configuration 📅 **Schedule**: (UTC) - Branch creation - Between 12:00 AM and 03:59 AM, on day 1 of the month (`* 0-3 1 * *`) - Automerge - At any time (no schedule defined) 🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://redirect.github.com/renovatebot/renovate). --- plugins/destination/snowflake/go.mod | 2 +- plugins/destination/snowflake/go.sum | 4 ++-- 2 files changed, 3 insertions(+), 3 deletions(-) diff --git a/plugins/destination/snowflake/go.mod b/plugins/destination/snowflake/go.mod index 2e448951a6906c..cd840b7b2a3dbe 100644 --- a/plugins/destination/snowflake/go.mod +++ b/plugins/destination/snowflake/go.mod @@ -8,7 +8,7 @@ require ( github.com/cloudquery/plugin-sdk/v4 v4.95.1 github.com/goccy/go-json v0.10.6 github.com/rs/zerolog v1.34.0 - github.com/snowflakedb/gosnowflake/v2 v2.0.0 + github.com/snowflakedb/gosnowflake/v2 v2.0.1 github.com/stretchr/testify v1.11.1 golang.org/x/sync v0.20.0 ) diff --git a/plugins/destination/snowflake/go.sum b/plugins/destination/snowflake/go.sum index d6a3c6657dad59..8a9042ec5f73b8 100644 --- a/plugins/destination/snowflake/go.sum +++ b/plugins/destination/snowflake/go.sum @@ -210,8 +210,8 @@ github.com/samber/lo v1.53.0 h1:t975lj2py4kJPQ6haz1QMgtId2gtmfktACxIXArw3HM= github.com/samber/lo v1.53.0/go.mod h1:4+MXEGsJzbKGaUEQFKBq2xtfuznW9oz/WrgyzMzRoM0= github.com/santhosh-tekuri/jsonschema/v6 v6.0.2 h1:KRzFb2m7YtdldCEkzs6KqmJw4nqEVZGK7IN2kJkjTuQ= github.com/santhosh-tekuri/jsonschema/v6 v6.0.2/go.mod h1:JXeL+ps8p7/KNMjDQk3TCwPpBy0wYklyWTfbkIzdIFU= -github.com/snowflakedb/gosnowflake/v2 v2.0.0 h1:oxTCOjOsJIPMG1a3cSc4s53nExst+wkgvqinBSwpeFo= -github.com/snowflakedb/gosnowflake/v2 v2.0.0/go.mod h1:B+dGQsCHnpwet3hgbdh2t/vqKBG7HpEO2o3jWt3KHeo= +github.com/snowflakedb/gosnowflake/v2 v2.0.1 h1:zRHCluGtwFLpc1wzN/T3U2GdWd11dx4/LeLgZBjxHvU= +github.com/snowflakedb/gosnowflake/v2 v2.0.1/go.mod h1:c0hIqJ/dxgaMl7g1o8n4Ca3Mf5YCiiVx9igio/PNqC8= github.com/spf13/cobra v1.10.2 h1:DMTTonx5m65Ic0GOoRY2c16WCbHxOOw6xxezuLaBpcU= github.com/spf13/cobra v1.10.2/go.mod h1:7C1pvHqHw5A4vrJfjNwvOdzYu0Gml16OCs2GRiTUUS4= github.com/spf13/pflag v1.0.9 h1:9exaQaMOCwffKiiiYk6/BndUBv+iRViNW+4lEMi0PvY= From 7f1cc54283398744f3eb735d4d0e89aa88225fd4 Mon Sep 17 00:00:00 2001 From: "cloudquery-ci[bot]" <271027272+cloudquery-ci[bot]@users.noreply.github.com> Date: Mon, 27 Apr 2026 20:42:14 +0000 Subject: [PATCH 10/10] chore(main): Release plugins-destination-snowflake v5.2.9 (#22754) :robot: I have created a release *beep* *boop* --- ## [5.2.9](https://github.com/cloudquery/cloudquery/compare/plugins-destination-snowflake-v5.2.8...plugins-destination-snowflake-v5.2.9) (2026-04-27) ### Bug Fixes * **deps:** Update module github.com/snowflakedb/gosnowflake/v2 to v2.0.1 ([#22753](https://github.com/cloudquery/cloudquery/issues/22753)) ([a85e567](https://github.com/cloudquery/cloudquery/commit/a85e5679347fd4654f784c0f54e620d1d7aef83e)) --- This PR was generated with [Release Please](https://github.com/googleapis/release-please). See [documentation](https://github.com/googleapis/release-please#release-please). --- .release-please-manifest.json | 2 +- plugins/destination/snowflake/CHANGELOG.md | 7 +++++++ 2 files changed, 8 insertions(+), 1 deletion(-) diff --git a/.release-please-manifest.json b/.release-please-manifest.json index ca052a88419e15..0a54ace15b79b5 100644 --- a/.release-please-manifest.json +++ b/.release-please-manifest.json @@ -25,7 +25,7 @@ "plugins/destination/test+FILLER": "0.0.0", "plugins/destination/sqlite": "2.14.7", "plugins/destination/sqlite+FILLER": "0.0.0", - "plugins/destination/snowflake": "5.2.8", + "plugins/destination/snowflake": "5.2.9", "plugins/destination/snowflake+FILLER": "0.0.0", "plugins/source/datadog": "4.3.10", "plugins/source/datadog+FILLER": "0.0.0", diff --git a/plugins/destination/snowflake/CHANGELOG.md b/plugins/destination/snowflake/CHANGELOG.md index 3c09743a1809df..aa5de947596226 100644 --- a/plugins/destination/snowflake/CHANGELOG.md +++ b/plugins/destination/snowflake/CHANGELOG.md @@ -1,5 +1,12 @@ # Changelog +## [5.2.9](https://github.com/cloudquery/cloudquery/compare/plugins-destination-snowflake-v5.2.8...plugins-destination-snowflake-v5.2.9) (2026-04-27) + + +### Bug Fixes + +* **deps:** Update module github.com/snowflakedb/gosnowflake/v2 to v2.0.1 ([#22753](https://github.com/cloudquery/cloudquery/issues/22753)) ([a85e567](https://github.com/cloudquery/cloudquery/commit/a85e5679347fd4654f784c0f54e620d1d7aef83e)) + ## [5.2.8](https://github.com/cloudquery/cloudquery/compare/plugins-destination-snowflake-v5.2.7...plugins-destination-snowflake-v5.2.8) (2026-04-27)