﻿id	summary	reporter	owner	description	type	status	component	version	severity	resolution	keywords	cc	stage	has_patch	needs_docs	needs_tests	needs_better_patch	easy	ui_ux
37203	Escaped database metadata in inspectdb generated model code	Mundur		"inspectdb generates Python model source from database metadata. Most generated metadata already uses repr-style escaping, but two paths still interpolate database-provided values directly into generated source text:

     * composite primary-key column names in models.CompositePrimaryKey(...)
     * table names and exception messages emitted in introspection-error comments

This can produce invalid or unintended generated model code for unusual database schemas containing quotes or newlines.

Proposed fix:
     * render CompositePrimaryKey column names with repr()
     * render introspection-error table names/messages with repr-style output
     * add regression tests for both paths

A pull request with tests is available:
https://github.com/django/django/pull/21581"	Bug	new	Core (Management commands)	dev	Normal			Mundur	Unreviewed	1	0	0	0	0	0
