Bump snowflake-connector-python from 3.12.3 to 3.14.1

[dependabot]

Bumps snowflake-connector-python from 3.12.3 to 3.14.1.

Release notes

Sourced from snowflake-connector-python's releases.

3.14.1

• v3.14.1(April 21, 2025)
  • Added support for Python 3.13.
    • NOTE: Windows 64 support is still experimental and should not yet be used for production environments.
  • Dropped support for Python 3.8.
  • Added basic decimal floating-point type support.
  • Added experimental authentication methods.
  • Added support of GCS regional endpoints.
  • Added support of GCS virtual urls. See more: https://cloud.google.com/storage/docs/request-endpoints#xml-api
  • Added client_fetch_threads experimental parameter to better utilize threads for fetching query results.
  • Added check_arrow_conversion_error_on_every_column connection property that can be set to False to restore previous behaviour in which driver will ignore errors until it occurs in the last column. This flag's purpose is to unblock workflows that may be impacted by the bugfix and will be removed in later releases.
  • Lowered log levels from info to debug for some of the messages to make the output easier to follow.
  • Allowed the connector to inherit a UUID4 generated upstream, provided in statement parameters (field: requestId), rather than automatically generate a UUID4 to use for the HTTP Request ID.
  • Improved logging in urllib3, boto3, botocore - assured data masking even after migration to the external owned library in the future.
  • Improved error message for client-side query cancellations due to timeouts.
  • Improved security and robustness for the temporary credentials cache storage.
  • Fixed a bug that caused driver to fail silently on TO_DATE arrow to python conversion when invalid date was followed by the correct one.
  • Fixed expired S3 credentials update and increment retry when expired credentials are found.
  • Deprecated insecure_mode connection property and replaced it with disable_ocsp_checks with the same behavior as the former property.

3.14.0

• v3.14.0(March 03, 2025)
  • Bumped pyOpenSSL dependency upper boundary from <25.0.0 to <26.0.0.
  • Added a <19.0.0 pin to pyarrow as a workaround to a bug affecting Azure Batch.
  • Optimized distribution package lookup to speed up import.
  • Fixed a bug where privatelink OCSP Cache url could not be determined if privatelink account name was specified in uppercase.
  • Added support for iceberg tables to write_pandas.
  • Fixed base64 encoded private key tests.
  • Fixed a bug where file permission check happened on Windows.
  • Added support for File types.
  • Added unsafe_file_write connection parameter that restores the previous behaviour of saving files downloaded with GET with 644 permissions.

3.13.2

• v3.13.2(January 29, 2025)
  • Changed not to use scoped temporary objects.

3.13.1

• v3.13.1(January 29, 2025)
  • Remedied SQL injection vulnerability in snowflake.connector.pandas_tools.write_pandas. See more GHSA-2vpq-fh52-j3wv
  • Remedied vulnerability in deserialization of the OCSP response cache. See more: GHSA-m4f6-vcj4-w5mx
  • Remedied vulnerability connected to cache files permissions. See more: GHSA-r2x6-cjg7-8r43

3.13.0

• v3.13.0(January 23,2025)
  • Added a feature to limit the sizes of IO-bound ThreadPoolExecutors during PUT and GET commands.
  • Updated README.md to include instructions on how to verify package signatures using cosign.
  • Updated the log level for cursor's chunk rowcount from INFO to DEBUG.
  • Added a feature to verify if the connection is still good enough to send queries over.
  • Added support for base64-encoded DER private key strings in the private_key authentication type.

... (truncated)

Commits

• 4d76968 SNOW-1993520 update tested_reqs for 3.14.1 release (#2287)
• 7a207f3 SNOW-1993520 Patch python connector version bump (#2286)
• 6427d69 NO-SNOW Update release date (#2284)
• f560c82 SNOW-2048239 revert zero timeout for oscp cache lock (#2283)
• b32dc8d Accept both v1 and v2 Entra ID issuer formats for WIF (#2281)
• 3b64495 NO-SNOW update 3.14.1 release notes (#2278)
• 23f77a3 NO-SNOW acquiring a lock on local OCSP cache will use a timeout (#2280)
• 27a4a9a NO-SNOW mark OCSP unit tests flaky (#2276)
• 8c744de SNOW-2032699: Use GCS virtual url based on the stage response (#2274)
• c384ce1 NO-SNOW Fetch wiremock in test_darwin.sh and test_windows.bat (#2273)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot]

Superseded by #16.