fix(bind): add escsape of null character for postgres bind parameters

[holm]

Pull Request check-list

Please make sure to review and check all of these items:

• Does npm run test or npm run test-DIALECT pass with this change (including linting)?
• Does the description below contain a link to an existing issue (Closes #[issue]) or a description of the issue you are solving?
• Have you added new tests to prevent regressions?
• Is a documentation update included (if this change modifies existing APIs, or introduces new ones)?
• Did you follow the commit message conventions explained in CONTRIBUTING.md?

Description of change

Postgres doesn't support null characters in strings. This has generally been handled via https://github.com/sequelize/sequelize/blob/master/lib/sql-string.js#L75. However with Sequelize 5 using bind parameters for insert and update, the replacement of null characters no longer happens. This PR adds replacement of null characters in case of bind parameters being used.

I have added tests, but have not been able to run them across the other database. I think it should pass though, otherwise I would appreciate help getting them fixed.

[codecov]

Codecov Report

Merging #10716 into master will increase coverage by <.01%.
The diff coverage is 100%.

@@            Coverage Diff             @@
##           master   #10716      +/-   ##
==========================================
+ Coverage    96.3%    96.3%   +<.01%     
==========================================
  Files          93       93              
  Lines        8976     8980       +4     
==========================================
+ Hits         8644     8648       +4     
  Misses        332      332

Impacted Files	Coverage Δ
lib/dialects/postgres/query.js	97.72% <100%> (+0.05%)	⬆️

---

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update b6c9117...b30431f. Read the comment docs.

[SimonSchick]

Nit: You can make this value => typeof value === 'string' ? value.replace(...) : value

[holm]

I thought that wasn’t a complete check due to the issues explained at https://stackoverflow.com/questions/4059147/check-if-a-variable-is-a-string-in-javascript

[SimonSchick]

Most of the codebase already uses typeof checks, https://stackoverflow.com/questions/5750656/whats-the-point-of-new-stringx-in-javascript explains the debacle pretty well.

In the end, sequelize doesn't really support these boxed types and I don't think it should as it would increase complexity in hundreds of places.

[eseliger]

other than the comment of @SimonSchick lgtm

[holm]

I addressed the comment now. The build failure doesn't seem related to my changes.

[sushantdhiman]

🎉 This PR is included in version 5.2.13 🎉

The release is available on:

• npm package (@latest dist-tag)
• GitHub release

Your semantic-release bot 📦🚀

[holm]

Thanks for the quick merge and release