Postgres Weekly Issue 579: November 27, 2024

#579 — November 27, 2024

Together with

pgspot: Spot Vulnerabilities in Postgres Extension Scripts — A security analysis tool for SQL scripts that checks for vulnerabilities and best practices. Created by a Timescale engineer to prevent the reoccurance of vulnerabilities found in TimescaleDB, it’s already resulted in finding an extension-related vulnerability which Postgres core has fixed.

Sven Klemm (Timescale)

Could GROUP BY Clause Reordering Improve Performance? — Could reordering the columns in a GROUP BY significantly enhance query performance? Small changes in query structure can indeed result in serious gains.

Andrei Lepikhov

Building AI Apps on Postgres? Start with pgai — pgai is a PostgreSQL extension that brings more AI workflows to PostgreSQL, like embedding creation and model completion. pgai empowers developers with AI superpowers, making it easier to build search and retrieval-augmented generation (RAG) applications.

Timescale sponsor

Benchmarking Batch Ingest with INSERT vs COPY — Two of the simplest approaches to loading data into Postgres en masse are by using INSERT and COPY. James explains each of their benefits, runs a benchmark of numerous configurations of both, and gives guidance on which approach to use in certain situations.

James Blackwood-Sewell

QUICK BITS:

Hot on the heels of the slightly problematic Postgres releases we mentioned last week, Postgres 17.2, 16.6, 15.10, 14.15, 13.18, and 12.22 have now all been released.
🦋 If you're a user of the Bluesky social network, Craig Kerstiens has put together a 'starter pack' of Postgres people you can follow.
Amazon Aurora Serverless 2 now supports scaling down to zero capacity. Potentially a big saving for low volume or intermittently used databases.

Why Postgres Major Version Upgrades Are Hard — Update the binaries and restart? No, no, no. Tweaks and updates to the underlying data format required a more structured approach – Peter explains why.

Peter Eisentraut

▶ The PGConf.EU 2024 Lightning Talks — A handy roundup of twelve brief talks given at the recent PGConf EU event, along with links to slides and recordings. Topics covered include BM25, an update on the Postgres Performance Farm, pg_duckdb, and WAL-G.

Andreas 'ads' Scherbaum

DELETEs Are Difficult — Conceptually, deleting data from a table is easy to understand. In practice, it involves a lot of work under the hood and performance issues can quickly rear their head.

Radim Marek

📄 Substituting a Variable in a SQL Script – Such as when calling them using psql. Florent Jardin

📄 Testing with Go and Postgres using Ephemeral DBs Michael Stapelberg

📄 Understanding and Reducing Replication Lag Ibrar Ahmed

📄 Talk Fast: The Speed of Various Collations Christophe Pettus

🛠 Code and Tools

Pigsty v3.1: A 'Batteries Included' Postgres Distribution — Pigsty is a packaging up of Postgres along with a variety of extensions and tools to provide a sort of RDS-like experience on your own machines. v3.1 introduces Postgres 17 as the default version and includes a way to quickly spin up a self-hosted Supabase instance.

Ruohang Feng

💎 pg_query 6.0: Ruby Library to Parse, Deparse and Normalize SQL Queries with Postgres' Own Parser — Uses the actual Postgres server source to parse SQL queries and return their internal Postgres parse tree. v6.0 upgrades to using the Postgres 17 parser and the new features it supports (e.g. new JSON functions).

pganalyze

Bytebase 3.1 – Database CI/CD and ops tool for teams.

pg_partman 5.2 – Partition management extension.