Snowflake Connector for Python release notes for 2025

This article contains the release notes for the Snowflake Connector for Python, including the following when applicable:

  • Behavior changes

  • New features

  • Customer-facing bug fixes

Snowflake uses semantic versioning for Snowflake Connector for Python updates.

See Snowflake Connector for Python for documentation.

Version 3.14.0 (March 03, 2025)

New features and updates

  • Bumped the pyOpenSSL dependency upper boundary from <25.0.0 to <26.0.0.

  • Optimized distribution package lookup to improve import speed.

  • Added support for iceberg tables to write_pandas.

  • Added support for File types.

Bug fixes

  • Added a <19.0.0 pin to pyarrow as a workaround to a bug affecting Azure Batch.

  • Fixed a bug where the privatelink OCSP Cache url could not be determined if the privatelink account name was specified in uppercase.

  • Fixed base64 encoded private key tests.

  • Fixed a bug with file permission checks on Windows.

  • Added the unsafe_file_write connection parameter that restores the previous behavior of saving files downloaded with GET with 644 permissions.

Version 3.13.2 (January 30, 2025)

New features and updates

  • The connector no longer uses scoped temporary objects.

Bug fixes

  • None.

Version 3.13.1 (January 29, 2025)

New features and updates

  • None.

Bug fixes

  • Hardened the snowflake.connector.pandas_tools module against SQL injection. For more information, see CVE-2025-24793.

  • The local OCSP cache has been updated to use the json module instead of pickle to serialize its contents. For more information, see CVE-2025-24794.

  • The Linux credential cache file permissions have been updated explicitly to be only be owner readable. For more information, see CVE-2025-24795.

  • Updated the file permissions for files downloaded with GET to be readable only by the file owner.

Version 3.13.0 (January 23, 2025)

New features and updates

  • Added the iobound_tpe_limit connection parameter to limit the sizes of IO-bound ThreadPoolExecutors during PUT and GET commands. By default, the size is calculated to the lesser of the number of files and the number of CPU cores.

  • Added the Connection.is_valid() method that verifies whether a connection is stable enough to receive queries.

  • Updated the log level for cursor’s chunk rowcount from INFO to DEBUG.

  • Added support for base64-encoded DER private key strings in the private_key authentication type.

  • Updated README.md to include instructions on how to verify package signatures using cosign.

Bug fixes

  • None.