From 19fae645f9b2a888392f822af107c3ef3ab591ea Mon Sep 17 00:00:00 2001 From: Alan Wiss Date: Sat, 2 May 2026 09:40:40 -0700 Subject: [PATCH] chore(release): prepare CHANGELOG for v4.15.1 Signed-off-by: Alan Wiss --- CHANGELOG.md | 60 +++++++++++++++++++++++++--------------------------- 1 file changed, 29 insertions(+), 31 deletions(-) diff --git a/CHANGELOG.md b/CHANGELOG.md index 28499f7..ce31c3b 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -1,48 +1,46 @@ # Changelog +All notable changes to this fork are documented here. The format follows +[Keep a Changelog 1.1.0](https://keepachangelog.com/en/1.1.0/) and the +versioning is [SemVer 2.0](https://semver.org/spec/v2.0.0.html). + ## [Unreleased] +## [4.15.1] — 2026-05-02 + +Maintenance release. No public API changes; behaviour of code using +the `database/sql` interface is unchanged. + +### Verified on + +- Linux x86_64, Linux ARM64, macOS Apple Silicon, Windows x86_64 +- Go `oldstable` and `stable` + +(Previous releases were CI-tested only on Linux x86_64.) + ### Fixed -- All `rowserrcheck` and `sqlclosecheck` lint findings in inherited test - files. `for rows.Next()` loops now check `rows.Err()`; `*sql.Rows` and - `*sql.Stmt` resources are deferred-closed; `DROP TABLE` statements use - `IF EXISTS` so spurious "no such table" errors stop being silently - swallowed. +- Tighter error handling inside the package's own test helpers: + `rows.Err()` is now checked after every iteration, `*sql.Rows` + and `*sql.Stmt` resources are deferred-closed, and `DROP TABLE` + test fixtures use `IF EXISTS` so a real DB fault is no longer + swallowed as a spurious "no such table" error. -### Changed +## [4.15.0] — 2026-04-30 -- `.golangci.yml` adopts Tier 4 silences from the cleanup plan: documented - industry-consensus false positives are scoped per-path so production - code keeps every meaningful check while test code stops drowning in - noise. `--whole-files` is the canonical lint gate via lefthook. -- Bump vendored SQLCipher to 4.15.0 (was 4.4.2). Generated automatically by .github/workflows/upstream-bump.yml on 2026-05-01. +First WissCore release. ### Added - Forked from `mutecomm/go-sqlcipher@25f68ad` (last upstream commit, 2020-12-07). Full git history preserved. -- `CONTRIBUTORS.md` — credits to the original authors and upstream - projects. +- Vendored SQLCipher amalgamation upgraded from 4.4.2 to 4.15.0 + (carries SQLite 3.53.0; libtomcrypt refreshed in lockstep). +- `CONTRIBUTORS.md` — credits to the original authors and upstream projects. - `NOTICE` — formal attribution chain. -- This `CHANGELOG.md`. - -All notable changes to this fork are documented here. The format follows -[Keep a Changelog 1.1.0](https://keepachangelog.com/en/1.1.0/) and the -versioning is [SemVer 2.0](https://semver.org/spec/v2.0.0.html). - -### Planned for v4.15.0 (first WissCore release) - -- Bump vendored SQLCipher amalgamation from 4.4.2 to 4.15.0. -- Bump vendored SQLite amalgamation from 3.34.x to 3.53.0 - (carried by SQLCipher 4.15.0). -- Bump vendored libtomcrypt to current `develop` snapshot. -- Replace upstream CI workflow with the WissCore CI orchestrator - (golangci-lint, gosec, govulncheck, gitleaks, codeql, osv-scanner, - zizmor, smoke matrix, signed releases). -- Add `Makefile` target `update-sqlcipher VERSION=...` to script the - quarterly amalgamation refresh. -- Add `docs/building.md` for the cgo + OpenSSL build matrix. +- WissCore CI orchestrator (`golangci-lint`, `gosec`, `govulncheck`, + `gitleaks`, `codeql`, `osv-scanner`, `zizmor`) and signed releases + (cosign keyless, SBOM, SLSA build provenance). ## Pre-fork history