Skip to content

chore(deps): bump mysql2 from 3.16.0 to 3.17.0#213

Closed
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/npm_and_yarn/mysql2-3.17.0
Closed

chore(deps): bump mysql2 from 3.16.0 to 3.17.0#213
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/npm_and_yarn/mysql2-3.17.0

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Feb 11, 2026

Bumps mysql2 from 3.16.0 to 3.17.0.

Release notes

Sourced from mysql2's releases.

v3.17.0

3.17.0 (2026-02-10)

Bug Fixes

  • security: resolve a potential SQL injection bypass through objects (#4054) (7f133cc)

v3.16.3

3.16.3 (2026-02-03)

Bug Fixes

  • constants: remove unsupported CLIENT_DEPRECATE_EOF flag from constants (#4033) (46c3f60)

v3.16.2

3.16.2 (2026-01-26)

Bug Fixes

  • types: add missing ConnectionState type to Promise Connection interface (#4034) (2927949)

v3.16.1

3.16.1 (2026-01-15)

Bug Fixes

  • named-placeholders: improve handling of mixed/nested quotes in query parsing (#4011) (3e00cd7)
Changelog

Sourced from mysql2's changelog.

3.17.0 (2026-02-10)

Bug Fixes

  • security: resolve a potential SQL injection bypass through objects (#4054) (7f133cc)

3.16.3 (2026-02-03)

Bug Fixes

  • constants: remove unsupported CLIENT_DEPRECATE_EOF flag from constants (#4033) (46c3f60)

3.16.2 (2026-01-26)

Bug Fixes

  • types: add missing ConnectionState type to Promise Connection interface (#4034) (2927949)

3.16.1 (2026-01-15)

Bug Fixes

  • named-placeholders: improve handling of mixed/nested quotes in query parsing (#4011) (3e00cd7)
Commits
  • f36ecb9 chore(master): release 3.17.0 (#4070)
  • a140424 chore: release 3.17.0
  • 5635710 chore(master): release 3.16.4 (#4068)
  • f636891 build(deps): bump @​easyops-cn/docusaurus-search-local in /website (#4067)
  • cb9965d build(deps-dev): bump @​typescript-eslint/eslint-plugin (#4065)
  • 7f133cc fix(security): resolve a potential SQL injection bypass through objects (#4054)
  • 6df3c17 build(deps-dev): bump @​types/node from 25.2.1 to 25.2.2 in /website (#4064)
  • de2c810 build(deps): bump @​easyops-cn/docusaurus-search-local in /website (#4063)
  • 5930cb1 build(deps-dev): bump @​types/node from 25.2.1 to 25.2.2 (#4061)
  • 67506fe build(deps-dev): bump @​types/node from 25.2.0 to 25.2.1 (#4058)
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
chore(deps): bump mysql2 from 3.16.0 to 3.17.0
f3a5891 
Bumps [mysql2](https://github.com/sidorares/node-mysql2) from 3.16.0 to 3.17.0.
- [Release notes](https://github.com/sidorares/node-mysql2/releases)
- [Changelog](https://github.com/sidorares/node-mysql2/blob/master/Changelog.md)
- [Commits](sidorares/node-mysql2@v3.16.0...v3.17.0)

---
updated-dependencies:
- dependency-name: mysql2
  dependency-version: 3.17.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Feb 11, 2026
@dependabot dependabot bot mentioned this pull request Feb 11, 2026
Closed
@dependabot @github
Copy link
Contributor Author

dependabot bot commented on behalf of github Feb 13, 2026

Superseded by #214.

@dependabot dependabot bot closed this Feb 13, 2026
@dependabot dependabot bot deleted the dependabot/npm_and_yarn/mysql2-3.17.0 branch February 13, 2026 06:52
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

@NerdyTechy NerdyTechy

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@NerdyTechy