Ecosyste.ms: Timeline
Browse the timeline of events for every public repo on GitHub. Data updated hourly from GH Archive.
JelteF created a comment on an issue on duckdb/pg_duckdb
We've done this. Some stuff is very fast, some stuff roughly as fast we expected, some stuff is slower than we expected and will require some investigation in 0.2.0. I'll close this for now.
JelteF closed an issue on duckdb/pg_duckdb
Performance sanity check
- [ ] Duckdb execution engine on PG data - [ ] Duckdb as a datalake engine - [ ] Duckdb connecting to motherduck - Ingestion performance - Simple joins between motherduck data and post...
JelteF opened an issue on duckdb/pg_duckdb
Run pgspot in CI
### Description Let's keep our extension scripts secure by listening to `pgspot`. It seems easier to do that if CI complains when we add insecure things, than after the fact during each release. I...
JelteF pushed 1 commit to pgspot-fixes duckdb/pg_duckdb
- Force schema to public in extension control file for now This gives us the freedom to support more schemas in the fu... afbbb5a
JelteF created a review comment on a pull request on duckdb/pg_duckdb
To be clear, I think we can probably get these functions SQL injection safe fairly easily. I just didn't want to batch even more into this already fairly big and complex PR.
JelteF created a comment on a pull request on duckdb/pg_duckdb
> so > > ``` > duckdb.postgres_role = 'duckdb'; > ``` > > then I can > > ``` > GRANT duckdb TO some_users_or_other_roles; > ``` > > to enable usage. Correct. Although that's assu...
JelteF created a comment on a pull request on duckdb/pg_duckdb
> A nice idea is standard Postgres permissions to duckdb.secrets could be enforced, ideally with RLS allowed, based on who is running the query. But this probably messes with the idea that secrets ...
JelteF created a review comment on a pull request on duckdb/pg_duckdb
Yeah. This definitely doesn't seem safe: ``` auto cache_object_query = duckdb::StringUtil::Format("SELECT 1 FROM %s('%s');", object_type_fun, object_path.c_str()); ```
wuputah created a comment on a pull request on duckdb/pg_duckdb
A nice idea is standard Postgres permissions to `duckdb.secrets` could be enforced, ideally with RLS allowed, based on who is running the query. But this probably messes with the idea that secrets ...
wuputah created a review comment on a pull request on duckdb/pg_duckdb
is this being blocked because its parameters do not get escaped?
JelteF opened a pull request on duckdb/pg_duckdb
Correctly set missing_ok to false in the GRANT trigger
We expect this RangeVarGetRelid call to actually find the relid, since the event trigger only fires when the grant was successfully done by Postgres. But we were passing it `missing_ok = false` as ...
JelteF created a branch on duckdb/pg_duckdb
set-missing_ok-correctly - DuckDB-powered Postgres for high performance apps & analytics.
wuputah created a comment on a pull request on duckdb/pg_duckdb
so ``` duckdb.postgres_role = 'duckdb'; ``` then I can ``` GRANT duckdb TO some_users_or_groups; ``` to enable usage.
JelteF pushed 1 commit to pgspot-fixes duckdb/pg_duckdb
- Resolve security issues reported by pgspot It's really easy to make critical security mistakes in the SQL scripts of... c519e04
JelteF opened a pull request on duckdb/pg_duckdb
Resolve security issues reported by pgspot
It's really easy to make critical security mistakes in the SQL scripts of an extension. Luckily [pgspot][1] can help finding those. There were a few false positives because the tool did not realize...
JelteF created a branch on duckdb/pg_duckdb
pgspot-fixes - DuckDB-powered Postgres for high performance apps & analytics.
JelteF pushed 1 commit to non-superuser duckdb/pg_duckdb
- Support non-superuser usage of pg_duckdb DuckDB is not really designed for use in a multi-user system, and Postgres ... a47a1af
JelteF pushed 1 commit to non-superuser duckdb/pg_duckdb
- Support non-superuser usage of pg_duckdb DuckDB is not really designed for use in a multi-user system, and Postgres ... e188a01
JelteF created a review comment on a pull request on duckdb/pg_duckdb
This should not be necessary. If we need to do this in tests it means this is a bad default (at the moment). Having a default that breaks half of pg_duckdb half of the functionality completely, ev...
JelteF opened a pull request on duckdb/pg_duckdb
Support non-superuser usage of pg_duckdb
DuckDB is not really designed for use in a multi-user system, and Postgres is a multi-user system. This is visible through at least two ways: 1. An important security concern here is that secrets ...
JelteF pushed 3 commits to non-superuser duckdb/pg_duckdb
- Rename duckdb.max_threads_per_query to duckdb.max_threads_per_postgres_scan (#337) The name didn't reflect what it w... f887dbe
- README edits and Docker docs (#335) * add docker and pgxman * add a Docker-specific readme intended for Dockerhub ... 24cfddc
- Support non-superuser usage of pg_duckdb DuckDB is not really designed for use in a multi-user system, and Postgres ... 8a4d010
JelteF created a branch on duckdb/pg_duckdb
guc-hook-support - DuckDB-powered Postgres for high performance apps & analytics.