[Snyk] Upgrade drizzle-orm from 0.30.10 to 0.38.3 #74

stilt0n · 2025-01-18T06:20:27Z

Snyk has created this PR to upgrade drizzle-orm from 0.30.10 to 0.38.3.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

The recommended version is 218 versions ahead of your current version.
The recommended version was released 24 days ago.

Release notes

Package name: drizzle-orm

0.38.3 - 2024-12-25
- Fix incorrect deprecation detection for table declarations
0.38.3-e6823b4 - 2024-12-31
0.38.3-be0f833 - 2024-12-25
0.38.3-b4f992e - 2025-01-08
0.38.3-8e428d1 - 2025-01-08
0.38.3-86fcd29 - 2025-01-09
0.38.3-7db411e - 2024-12-31
0.38.3-791f459 - 2024-12-30
0.38.3-38fedf0 - 2025-01-07
0.38.3-348fb92 - 2025-01-08
0.38.3-2329e17 - 2025-01-06
0.38.2 - 2024-12-13
New features

USE INDEX, FORCE INDEX and IGNORE INDEX for MySQL

In MySQL, the statements USE INDEX, FORCE INDEX, and IGNORE INDEX are hints used in SQL queries to influence how the query optimizer selects indexes. These hints provide fine-grained control over index usage, helping optimize performance when the default behavior of the optimizer is not ideal.

Use Index

The USE INDEX hint suggests to the optimizer which indexes to consider when processing the query. The optimizer is not forced to use these indexes but will prioritize them if they are suitable.

export const users = mysqlTable('users', {
id: int('id').primaryKey(),
name: varchar('name', { length: 100 }).notNull(),
}, () => [usersTableNameIndex]);

const usersTableNameIndex = index('users_name_index').on(users.name);

await db.select()
.from(users, { useIndex: usersTableNameIndex })
.where(eq(users.name, 'David'));

Ignore Index

The IGNORE INDEX hint tells the optimizer to avoid using specific indexes for the query. MySQL will consider all other indexes (if any) or perform a full table scan if necessary.

export const users = mysqlTable('users', {
id: int('id').primaryKey(),
name: varchar('name', { length: 100 }).notNull(),
}, () => [usersTableNameIndex]);

const usersTableNameIndex = index('users_name_index').on(users.name);

await db.select()
.from(users, { ignoreIndex: usersTableNameIndex })
.where(eq(users.name, 'David'));

Force Index

The FORCE INDEX hint forces the optimizer to use the specified index(es) for the query. If the specified index cannot be used, MySQL will not fall back to other indexes; it might resort to a full table scan instead.

export const users = mysqlTable('users', {
id: int('id').primaryKey(),
name: varchar('name', { length: 100 }).notNull(),
}, () => [usersTableNameIndex]);

const usersTableNameIndex = index('users_name_index').on(users.name);

await db.select()
.from(users, { forceIndex: usersTableNameIndex })
.where(eq(users.name, 'David'));

You can also combine those hints and use multiple indexes in a query if you need
0.38.2-f6eaa62 - 2024-12-16
0.38.2-ec5d35e - 2024-12-20
0.38.2-db33c87 - 2024-12-19
0.38.2-455725c - 2024-12-18
0.38.2-1c8cbad - 2024-12-17
0.38.2-0db3d13 - 2024-12-23
0.38.2-06a9368 - 2024-12-18
0.38.2-05d907b - 2024-12-16
0.38.2-019d9b0 - 2024-12-19
0.38.2-2807200 - 2024-12-23
0.38.1 - 2024-12-11
- Closed [FEATURE]: Add more flexible typing for usage with exactOptionalPropertyTypes
0.38.1-d379dcf - 2024-12-11
0.38.1-7cd9d79 - 2024-12-12
0.38.1-21dab20 - 2024-12-12
0.38.0 - 2024-12-09
Types breaking changes

A few internal types were changed and extra generic types for length of column types were added in this release. It won't affect anyone, unless you are using those internal types for some custom wrappers, logic, etc. Here is a list of all types that were changed, so if you are relying on those, please review them before upgrading
- MySqlCharBuilderInitial
- MySqlVarCharBuilderInitial
- PgCharBuilderInitial
- PgArrayBuilder
- PgArray
- PgVarcharBuilderInitial
- PgBinaryVectorBuilderInitial
- PgBinaryVectorBuilder
- PgBinaryVector
- PgHalfVectorBuilderInitial
- PgHalfVectorBuilder
- PgHalfVector
- PgVectorBuilderInitial
- PgVectorBuilder
- PgVector
- SQLiteTextBuilderInitial
New Features
- Added new function getViewSelectedFields
- Added $inferSelect function to views
- Added InferSelectViewModel type for views
- Added isView function
Validator packages updates
- drizzle-zod has been completely rewritten. You can find detailed information about it here
- drizzle-valibot has been completely rewritten. You can find detailed information about it here
- drizzle-typebox has been completely rewritten. You can find detailed information about it here
Thanks to @ L-Mario564 for making more updates than we expected to be shipped in this release. We'll copy his message from a PR regarding improvements made in this release:
- Output for all packages are now unminified, makes exploring the compiled code easier when published to npm.
- Smaller footprint. Previously, we imported the column types at runtime for each dialect, meaning that for example, if you're just using Postgres then you'd likely only have drizzle-orm and drizzle-orm/pg-core in the build output of your app; however, these packages imported all dialects which could lead to mysql-core and sqlite-core being bundled as well even if they're unused in your app. This is now fixed.
- Slight performance gain. To determine the column data type we used the is function which performs a few checks to ensure the column data type matches. This was slow, as these checks would pile up every quickly when comparing all data types for many fields in a table/view. The easier and faster alternative is to simply go off of the column's columnType property.
- Some changes had to be made at the type level in the ORM package for better compatibility with drizzle-valibot.
And a set of new features
- createSelectSchema function now also accepts views and enums.
- New function: createUpdateSchema, for use in updating queries.
- New function: createSchemaFactory, to provide more advanced options and to avoid bloating the parameters of the other schema functions
Bug fixes
- [FEATURE]: publish packages un-minified
- Don't allow unknown keys in drizzle-zod refinement
- [BUG]:drizzle-zod not working with pgSchema
- Add createUpdateSchema to drizzle-zod
- [BUG]:drizzle-zod produces wrong type
- [BUG]:Drizzle-zod:Boolean and Serial types from Schema are defined as enum when using CreateInsertSchema and CreateSelectSchema
- [BUG]: Drizzle typebox enum array wrong schema and type
- [BUG]:drizzle-zod not working with pgSchema
- [BUG]: drizzle-zod not parsing arrays correctly
- [BUG]: Drizzle typebox not supporting array
- [FEATURE]: Export factory functions from drizzle-zod to allow usage with extended Zod classes
- [FEATURE]: Add support for new pipe syntax for drizzle-valibot
- [BUG]: drizzle-zod's createInsertSchema() can't handle column of type vector
- [BUG]: drizzle-typebox fails to map geometry column to type-box schema
- [BUG]: drizzle-valibot does not provide types for returned schemas
- [BUG]: Drizzle-typebox types SQLite real field to string
- [BUG]: drizzle-zod: documented usage generates type error with exactOptionalPropertyTypes
- [BUG]: drizzle-zod does not respect/count db type range
- [BUG]: drizzle-zod not overriding optional
- [BUG]:drizzle-zod doesn't accept custom id value
- [FEATURE]: Support for Database Views in Drizzle Zod
- [BUG]: drizzle-valibot return type any
- [BUG]: drizzle-zod Type generation results in undefined types
- [BUG]: GeneratedAlwaysAs
- [FEATURE]: $inferSelect on a view
- [BUG]:Can't infer props from view in schema
0.38.0-e14a5a2 - 2024-12-11
0.38.0-74a51ae - 2024-12-09
0.38.0-5dc5b05 - 2024-12-11
0.38.0-1abaaf8 - 2024-12-11
0.38.0-3256029 - 2024-12-09
0.37.0 - 2024-12-03
New Dialects

🎉 SingleStore dialect is now available in Drizzle

Thanks to the SingleStore team for creating a PR with all the necessary changes to support the MySQL-compatible part of SingleStore. You can already start using it with Drizzle. The SingleStore team will also help us iterate through updates and make more SingleStore-specific features available in Drizzle

import { int, singlestoreTable, varchar } from 'drizzle-orm/singlestore-core';
import { drizzle } from 'drizzle-orm/singlestore';

export const usersTable = singlestoreTable('users_table', {
id: int().primaryKey(),
name: varchar({ length: 255 }).notNull(),
age: int().notNull(),
email: varchar({ length: 255 }).notNull().unique(),
});

...

const db = drizzle(process.env.DATABASE_URL!);

db.select()...

You can check out our Getting started guides to try SingleStore!

New Drivers

🎉 SQLite Durable Objects driver is now available in Drizzle

You can now query SQLite Durable Objects in Drizzle!

For the full example, please check our Get Started Section
/// <reference types="@ cloudflare/workers-types" />
import { drizzle, DrizzleSqliteDODatabase } from 'drizzle-orm/durable-sqlite';
import { DurableObject } from 'cloudflare:workers'
import { migrate } from 'drizzle-orm/durable-sqlite/migrator';
import migrations from '../drizzle/migrations';
import { usersTable } from './db/schema';

export class MyDurableObject1 extends DurableObject {
storage: DurableObjectStorage;
db: DrizzleSqliteDODatabase<any>;

constructor(ctx: DurableObjectState, env: Env) {
super(ctx, env);
this.storage = ctx.storage;
this.db = drizzle(this.storage, { logger: false });
}
```
async migrate() {
 migrate(this.db, migrations);
}
```
async insert(user: typeof usersTable.$inferInsert) {
await this.db.insert(usersTable).values(user);
}

async select() {
return this.db.select().from(usersTable);
}
}

export default {
/**
* This is the standard fetch handler for a Cloudflare Worker
*
* @ param request - The request submitted to the Worker from the client
* @ param env - The interface to reference bindings declared in wrangler.toml
* @ param ctx - The execution context of the Worker
* @ returns The response to be sent back to the client
*/
async fetch(request: Request, env: Env): Promise<Response> {
const id: DurableObjectId = env.MY_DURABLE_OBJECT1.idFromName('durable-object');
const stub = env.MY_DURABLE_OBJECT1.get(id);
await stub.migrate();
```
await stub.insert({
 name: 'John',
 age: 30,
 email: '[email protected]',
 })
console.log('New user created!')

const users = await stub.select();
console.log('Getting all users from the database: ', users)

 return new Response();
}
```
}
Bug fixes
- [BUG]: $with is undefined on withReplicas
- [BUG]: Neon serverless driver accepts authToken as a promise, but the $withAuth does not
0.37.0-a44af76 - 2024-12-05
0.37.0-994b9b8 - 2024-12-05
0.37.0-7c72529 - 2024-12-05
0.37.0-7525e49 - 2024-12-06
0.37.0-3f3eb73 - 2024-12-04
0.37.0-0c27176 - 2024-12-06
0.36.4 - 2024-11-22
0.36.4-ddb97ec - 2024-11-26
0.36.4-dbf7383 - 2024-12-16
0.36.4-7fe6033 - 2024-11-21
0.36.4-7f37974 - 2024-12-12
0.36.4-7665ad9 - 2024-12-19
0.36.4-6f7d345 - 2024-11-22
0.36.4-661b6f2 - 2024-12-20
0.36.4-3c69a1f - 2024-12-18
0.36.4-166fb8d - 2024-11-21
0.36.4-14e59f4 - 2024-12-02
0.36.4-0ab568f - 2024-12-20
0.36.4-08d2486 - 2024-11-26
0.36.3 - 2024-11-15
0.36.3-442f74d - 2024-11-15
0.36.2 - 2024-11-14
0.36.2-44b6c8a - 2024-11-15
0.36.1 - 2024-11-06
0.36.1-cc4f208 - 2024-11-13
0.36.1-bc6e8f5 - 2024-11-12
0.36.1-a24b871 - 2024-11-14
0.36.1-8366cca - 2024-11-13
0.36.0 - 2024-10-30
0.36.0-cfa88dd - 2024-11-03
0.36.0-998119e - 2024-11-04
0.36.0-96d338b - 2024-11-06
0.36.0-5ea5a84 - 2024-10-30
0.36.0-4d56096 - 2024-11-04
0.36.0-19f042a - 2024-11-04
0.35.3 - 2024-10-21
0.35.3-d39c24e - 2024-10-28
0.35.3-b2b714a - 2024-10-27
0.35.3-a43c673 - 2024-10-21
0.35.3-a1e0ae9 - 2024-10-29
0.35.3-9f627ed - 2024-10-28
0.35.3-9a8395a - 2024-10-29
0.35.3-6c5580e - 2024-10-21
0.35.3-6a162f5 - 2024-10-24
0.35.3-57d2372 - 2024-10-22
0.35.3-53e089b - 2024-10-28
0.35.3-4cb1bdb - 2024-10-23
0.35.3-1b1151d - 2024-10-21
0.35.3-05e88e4 - 2024-10-24
0.35.2 - 2024-10-18
0.35.2-728dcb3 - 2024-10-21
0.35.1 - 2024-10-16
0.35.1-74d2f4c - 2024-10-16
0.35.0 - 2024-10-15
0.34.1 - 2024-10-07
0.34.1-f9ec555 - 2024-10-11
0.34.1-e7d524d - 2024-10-14
0.34.1-cb4af54 - 2024-10-11
0.34.1-bbca092 - 2024-10-15
0.34.1-a9aca5c - 2024-10-10
0.34.1-a88d6b6 - 2024-10-15
0.34.1-a5ec472 - 2024-10-11
0.34.1-a345cb3 - 2024-10-10
0.34.1-9a563af - 2024-10-15
0.34.1-8c3e1b5 - 2024-10-14
0.34.1-6764bd8 - 2024-10-14
0.34.1-20acc2f - 2024-10-11
0.34.1-1f15bfd - 2024-10-08
0.34.1-1f0b52f - 2024-10-14
0.34.0 - 2024-10-07
0.34.0-ff1e9a5 - 2024-09-16
0.34.0-f5f3e49 - 2024-09-24
0.34.0-f5d46d3 - 2024-10-03
0.34.0-f026b0e - 2024-09-15
0.34.0-d1da3b8 - 2024-09-20
0.34.0-cf39bf5 - 2024-10-08
0.34.0-bab5208 - 2024-10-03
0.34.0-b75016b - 2024-10-01
0.34.0-b1faa33 - 2024-10-07
0.34.0-a5a41e0 - 2024-09-23
0.34.0-8dece56 - 2024-09-16
0.34.0-746aeed - 2024-10-07
0.34.0-680d055 - 2024-09-12
0.34.0-605ef48 - 2024-09-13
0.34.0-5a1c5d3 - 2024-09-13
0.34.0-06c725b - 2024-10-02
0.34.0-05b9e35 - 2024-09-23
0.34.0-178591 - 2024-09-12
0.33.0 - 2024-08-08
0.33.0-ff1dcd9 - 2024-09-03
0.33.0-f7ddd08 - 2024-08-22
0.33.0-f71baf7 - 2024-08-15
0.33.0-efd821d - 2024-09-05
0.33.0-daeed1e - 2024-09-04
0.33.0-d496e6f - 2024-09-06
0.33.0-d11d7bb - 2024-09-11
0.33.0-cd1f68c - 2024-09-07
0.33.0-cd0b1a2 - 2024-09-11
0.33.0-c6528ed - 2024-09-09
0.33.0-c5d1196 - 2024-09-03
0.33.0-bddd952 - 2024-08-16
0.33.0-b921e79 - 2024-08-29
0.33.0-ad58316 - 2024-09-04
0.33.0-ab3b46d - 2024-09-02
0.33.0-8db0aa4 - 2024-08-27
0.33.0-8cf7a61 - 2024-09-05
0.33.0-8948f19 - 2024-08-28
0.33.0-8944ef1 - 2024-09-06
0.33.0-87d7704 - 2024-08-26
0.33.0-86140ad - 2024-09-09
0.33.0-807aa5b - 2024-09-02
0.33.0-7bea25c - 2024-09-06
0.33.0-766f76f - 2024-08-27
0.33.0-7469abe - 2024-09-06
0.33.0-6fbcf46 - 2024-09-14
0.33.0-6386ea9 - 2024-08-14
0.33.0-626cc95 - 2024-08-23
0.33.0-6205f01 - 2024-08-08
0.33.0-5be80aa - 2024-09-02
0.33.0-5b9600e - 2024-09-02
0.33.0-540bab9 - 2024-09-05
0.33.0-50ebd0a - 2024-08-30
0.33.0-4c4912d - 2024-08-23
0.33.0-417b0fa - 2024-08-27
0.33.0-4045fbc - 2024-08-23
0.33.0-3e27645 - 2024-09-03
0.33.0-3c3ccca - 2024-09-04
0.33.0-38d6dab - 2024-08-12
0.33.0-30e7661 - 2024-08-26
0.33.0-277e6de - 2024-09-06
0.33.0-25af8ee - 2024-08-27
0.33.0-1a5913a - 2024-08-26
0.33.0-1321cf9 - 2024-09-04
0.33.0-12ef143 - 2024-08-27
0.33.0-0ced1ab - 2024-08-23
0.32.2 - 2024-08-05
0.32.2-df9e596 - 2024-08-07
0.32.2-d486e9b - 2024-08-07
0.32.2-cd71182 - 2024-08-07
0.32.2-6234cbf - 2024-08-06
0.32.2-22df170 - 2024-08-07
0.32.1 - 2024-07-23
0.32.1-848e136 - 2024-07-25
0.32.1-3d4e79a - 2024-08-01
0.32.0 - 2024-07-10
0.32.0-e7cf338 - 2024-06-25
0.32.0-d0d6436 - 2024-06-27
0.32.0-af7ce99 - 2024-06-17
0.32.0-aaf764c - 2024-07-09
0.32.0-85c8008 - 2024-06-24
0.32.0-857ba54 - 2024-06-11
0.32.0-81cb794 - 2024-06-22
0.32.0-7721c7c - 2024-06-22
0.32.0-7612dda - 2024-07-09
0.32.0-5cc2ae0 - 2024-06-27
0.32.0-4ed01aa - 2024-06-12
0.32.0-0fdaa9e - 2024-06-25
0.32.0-0d48b64 - 2024-06-07
0.32.0-0a6885d - 2024-06-13
0.32.0-55471 - 2024-06-12
0.31.4 - 2024-07-08
0.31.3 - 2024-07-08
0.31.3-a90773c - 2024-07-08
0.31.2 - 2024-06-07
0.31.2-f9f4c2e - 2024-06-09
0.31.2-ee089d9 - 2024-07-06
0.31.2-c59440c - 2024-06-09
0.31.2-bd14b3f - 2024-06-07
0.31.2-b59e0a5 - 2024-06-11
0.31.2-b59b8f5 - 2024-07-08
0.31.2-b1c8d15 - 2024-06-09
0.31.2-aaea9bd - 2024-06-27
0.31.2-86ec973 - 2024-06-07
0.31.2-5b29cb4 - 2024-06-06
0.31.1 - 2024-06-04
0.31.1-7a4cc2d - 2024-06-04
0.31.1-26a7171 - 2024-05-30
0.31.0 - 2024-05-31
0.31.0-ef463e5 - 2024-05-29
0.31.0-e64a96d - 2024-05-22
0.31.0-c7963ca - 2024-05-23
0.31.0-a70b6ea - 2024-05-25
0.31.0-7a05232 - 2024-05-23
0.31.0-6df4b83 - 2024-05-29
0.31.0-61bc749 - 2024-05-30
0.30.10 - 2024-05-01

from drizzle-orm GitHub release notes

Important

Check the changes in this PR to ensure they won't cause issues with your project.
This PR was automatically created by Snyk using the credentials of a real user.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

📜 Customise PR templates

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

Snyk has created this PR to upgrade drizzle-orm from 0.30.10 to 0.38.3. See this package in npm: drizzle-orm See this project in Snyk: https://app.snyk.io/org/stilt0n/project/af3aaf37-addd-4a99-a03f-3e86522939c3?utm_source=github&utm_medium=referral&page=upgrade-pr

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[Snyk] Upgrade drizzle-orm from 0.30.10 to 0.38.3 #74

[Snyk] Upgrade drizzle-orm from 0.30.10 to 0.38.3 #74

stilt0n commented Jan 18, 2025

New features

`USE INDEX`, `FORCE INDEX` and `IGNORE INDEX` for MySQL

Use Index

Ignore Index

Force Index

Types breaking changes

New Features

Validator packages updates

Bug fixes

New Dialects

🎉 `SingleStore` dialect is now available in Drizzle

New Drivers

🎉 `SQLite Durable Objects` driver is now available in Drizzle

Bug fixes

[Snyk] Upgrade drizzle-orm from 0.30.10 to 0.38.3 #74

Are you sure you want to change the base?

[Snyk] Upgrade drizzle-orm from 0.30.10 to 0.38.3 #74

Conversation

stilt0n commented Jan 18, 2025

Snyk has created this PR to upgrade drizzle-orm from 0.30.10 to 0.38.3.

New features

USE INDEX, FORCE INDEX and IGNORE INDEX for MySQL

Use Index

Ignore Index

Force Index

Types breaking changes

New Features

Validator packages updates

Bug fixes

New Dialects

🎉 SingleStore dialect is now available in Drizzle

New Drivers

🎉 SQLite Durable Objects driver is now available in Drizzle

Bug fixes

`USE INDEX`, `FORCE INDEX` and `IGNORE INDEX` for MySQL

🎉 `SingleStore` dialect is now available in Drizzle

🎉 `SQLite Durable Objects` driver is now available in Drizzle