PublicArchive/postgres
2
0
Fork 0
mirror of https://github.com/postgres/postgres.git synced 2026-06-21 08:01:26 -04:00
Code Issues Packages Projects Releases Wiki Activity
64,445 Commits 38 Branches 685 Tags
1541d91d1ccad2f1ac735574fabbacebf9ecbfa5
T
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
Nathan Bossart 1541d91d1c doc: Expand on proper use of refint. 
The security team has received a couple of reports about potential
SQL injection via refint's trigger arguments.  We discussed this
while preparing CVE-2026-6637 and concluded that forcibly quoting
these arguments is more likely to break working code than to
prevent exploits.  Unlike data values, the table/column names come
from trigger arguments, and there is little reason for a trigger
author to put hostile inputs into those arguments.  So, let's
document it accordingly.

Reported-by: Nikolay Samokhvalov <nik@postgres.ai>
Reported-by: Alex Young <alex000young@gmail.com>
Reported-by: Satyanarayana Narlapuram <satyanarlapuram@gmail.com>
Suggested-by: Noah Misch <noah@leadboat.com>
Reviewed-by: Noah Misch <noah@leadboat.com>
Reviewed-by: Fujii Masao <masao.fujii@oss.nttdata.com>
Reviewed-by: Christoph Berg <myon@debian.org>
Reviewed-by: Satyanarayana Narlapuram <satyanarlapuram@gmail.com>
Discussion: https://postgr.es/m/ahXP7z7nsfGPOZ3T%40nathan
Backpatch-through: 14
2026-06-08 10:33:52 -05:00
.github
ci: Add GitHub Actions based CI
2026-06-04 14:55:57 -04:00
config
contrib
pg_surgery: Fix off-by-one bug with heap offset
2026-06-06 08:16:36 +09:00
doc
doc: Expand on proper use of refint.
2026-06-08 10:33:52 -05:00
src
ecpg: Reject multiple header items in GET/SET DESCRIPTOR
2026-06-08 17:09:46 +09:00
.dir-locals.el
.editorconfig
.git-blame-ignore-revs
Add previous commit to .git-blame-ignore-revs.
2026-06-04 10:16:21 -05:00
.gitattributes
.gitignore
.mailmap
aclocal.m4
configure
Stamp 19beta1.
2026-06-01 16:02:13 -04:00
configure.ac
Stamp 19beta1.
2026-06-01 16:02:13 -04:00
COPYRIGHT
GNUmakefile.in
HISTORY
Makefile
meson_options.txt
Revert "Add built-in fuzzing harnesses for security testing."
2026-04-10 09:53:58 -04:00
meson.build
Stamp 19beta1.
2026-06-01 16:02:13 -04:00
README.md

README.md

PostgreSQL Database Management System

This directory contains the source code distribution of the PostgreSQL database management system.

PostgreSQL is an advanced object-relational database management system that supports an extended subset of the SQL standard, including transactions, foreign keys, subqueries, triggers, user-defined types and functions. This distribution also contains C language bindings.

Copyright and license information can be found in the file COPYRIGHT.

General documentation about this version of PostgreSQL can be found at https://www.postgresql.org/docs/devel/. In particular, information about building PostgreSQL from the source code can be found at https://www.postgresql.org/docs/devel/installation.html.

The latest version of this software, and related software, may be obtained at https://www.postgresql.org/download/. For more information look at our web site located at https://www.postgresql.org/.

Reference in New Issue View Git Blame Copy Permalink
S
Description
Mirror of the official PostgreSQL GIT repository. Note that this is just a *mirror* - we don't work with pull requests on github. To contribute, please see https://wiki.postgresql.org/wiki/Submitting_a_Patch
Readme 850 MiB
Languages
C 84.4%
PLpgSQL 6.2%
Perl 5%
Yacc 1.2%
Meson 0.7%
Other 2.4%