Skip to content

Advanced SQL Analytics Framework #9

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
everettbu wants to merge 1 commit into
base: data-analysis-features
Choose a base branch
from
Open

Advanced SQL Analytics Framework #9

everettbu wants to merge 1 commit into from

Conversation

@everettbu
Copy link

@everettbu everettbu commented Jul 26, 2025

Test 9

@samjewell @scottlepp
ServerSideExpressions: Disable SQL Expressions to prevent RCE and LFI…
ea71201 
… vulnerability (#94942)

* disable sql expressions

remove duckdb ref

* Run `make update-workspace`

---------

Co-authored-by: Scott Lepper <[email protected]>
@lizard-boy
Copy link

lizard-boy commented Jul 28, 2025

cursor review

cursor[bot]
cursor bot reviewed Jul 28, 2025
View reviewed changes
Copy link

@cursor cursor bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Bugbot free trial expires on August 11, 2025
Learn more in the Cursor dashboard.

pkg/expr/reader.go
return false
}
return false
}
Copy link

@cursor cursor bot Jul 28, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Bug: SQL Expressions Always Disabled

The enableSqlExpressions function contains inverted logic and an unconditional return false, causing it to always return false regardless of the FlagSqlExpressions feature flag state. This prevents SQL expressions from ever being enabled.

Locations (1)
Fix in Cursor Fix in Web

@github-actions
Copy link
Contributor

github-actions bot commented Aug 28, 2025

This pull request has been automatically marked as stale because it has not had activity in the last 30 days. It will be closed in 2 weeks if no further activity occurs. Please feel free to give a status update or ping for review. Thank you for your contributions!

@github-actions github-actions bot added the stale label Aug 28, 2025
@github-actions
Copy link
Contributor

github-actions bot commented Sep 12, 2025

This pull request has been automatically closed because it has not had any further activity in the last 2 weeks. Thank you for your contributions!

@github-actions github-actions bot closed this Sep 12, 2025
@everettbu everettbu reopened this Sep 12, 2025
@github-actions github-actions bot removed the stale label Sep 13, 2025
This was referenced Nov 13, 2025
Closed
Closed
@ShashankFC ShashankFC mentioned this pull request Jan 5, 2026
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@cursor cursor[bot] cursor[bot] left review comments

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@everettbu @lizard-boy @samjewell