Name of the Vulnerable Software and Affected Versions dbt-core versions 1.6.0 through 1.6.12 dbt-core versions 1.7.0 through 1.7.12

Description The issue is related to a recursion error in the sqlparse library used by dbt-core. This error can be triggered by parsing a specific SQL query, such as the one provided in the proof of concept, which contains a large number of nested brackets. The estimated impact of this issue is classified as high.

Recommendations For dbt-core versions 1.6.0 through 1.6.12, update to version 1.6.13. For dbt-core versions 1.7.0 through 1.7.12, update to version 1.7.13.