add escaping in Dialect.QuoteIdentifier implementations

author: Stefan Majewsky <majewsky@gmx.net> 2026-05-12 13:34:58 +0200
committer: Stefan Majewsky <majewsky@gmx.net> 2026-05-12 13:34:58 +0200
commit: b3129b483ed3e1a0294dac9da44d5f56ae4746e2 (patch)
tree: d46c8e0c0c9b28eef921fbf8b9cf18181486b31c /CHANGELOG.md
parent: 80c3fadf24fe9d784d876eec247fd6799af49c8a (diff)
download: go-oblast-b3129b483ed3e1a0294dac9da44d5f56ae4746e2.tar.gz
1 files changed, 4 insertions, 0 deletions
diff --git a/CHANGELOG.md b/CHANGELOG.md
index d1f54cc..79bf0bf 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -14,6 +14,10 @@ API changes:
   (if the user provides the respective custom implementation of the `Handle` interface).
   Preliminary benchmarking has already shown that, for the PostgreSQL case, oblast + jackc/pgx is significantly more efficient than oblast + lib/pq.
 
+Changes:
+
+- Added escaping to `Dialect.QuoteIdentifier` implementations to reduce attack surface for SQL injection.
+
 # v0.6.0 (2026-05-08)
 
 API changes:
author	Stefan Majewsky <majewsky@gmx.net>	2026-05-12 13:34:58 +0200
committer	Stefan Majewsky <majewsky@gmx.net>	2026-05-12 13:34:58 +0200
commit	b3129b483ed3e1a0294dac9da44d5f56ae4746e2 (patch)
tree	d46c8e0c0c9b28eef921fbf8b9cf18181486b31c /CHANGELOG.md
parent	80c3fadf24fe9d784d876eec247fd6799af49c8a (diff)
download	go-oblast-b3129b483ed3e1a0294dac9da44d5f56ae4746e2.tar.gz