From b3129b483ed3e1a0294dac9da44d5f56ae4746e2 Mon Sep 17 00:00:00 2001
From: Stefan Majewsky <majewsky@gmx.net>
Date: Tue, 12 May 2026 13:34:58 +0200
Subject: add escaping in Dialect.QuoteIdentifier implementations

---
 CHANGELOG.md | 4 ++++
 1 file changed, 4 insertions(+)

(limited to 'CHANGELOG.md')

diff --git a/CHANGELOG.md b/CHANGELOG.md
index d1f54cc..79bf0bf 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -14,6 +14,10 @@ API changes:
   (if the user provides the respective custom implementation of the `Handle` interface).
   Preliminary benchmarking has already shown that, for the PostgreSQL case, oblast + jackc/pgx is significantly more efficient than oblast + lib/pq.
 
+Changes:
+
+- Added escaping to `Dialect.QuoteIdentifier` implementations to reduce attack surface for SQL injection.
+
 # v0.6.0 (2026-05-08)
 
 API changes:
-- 
cgit v1.2.3