fix: escape % in MySQL StrWrapper to prevent conflict with %s parameter placeholders

When LIKE filter functions (contains, startswith, endswith, etc.) are used
in update() operations, the % wildcards in the LIKE pattern conflict with
MySQL driver's %s parameter substitution, causing 'not enough arguments
for format string' errors.

Fix by doubling % to %% in StrWrapper.get_value_sql() so that after the
MySQL driver's parameter formatting, the %% becomes the correct single %.

Fixes #1225

Author: Br1an67

tests/test_sql.py

@@ -2,7 +2,7 @@
 
 import pytest
 
-from tests.testmodels import CharPkModel, Drink, Event, IntFields
+from tests.testmodels import CharPkModel, Drink, Event, IntFields, Tournament
 from tortoise import connections
 from tortoise.backends.psycopg.client import PsycopgClient
 from tortoise.expressions import F
@@ -287,3 +287,27 @@ def test_m2m_filter_two_relations_same_target_produces_aliased_joins(sql_context
         assert '"drink_topping"' in sql
         assert '"drink__flavors"' in sql
         assert '"drink__toppings"' in sql
+
+
+def test_update_with_like_filter(sql_context):
+    """LIKE wildcards (%) in update queries must not conflict with %s parameter placeholders."""
+    db, dialect, is_psycopg = sql_context
+    sql = Tournament.filter(name__contains="test").update(desc="updated").sql()
+    if dialect == "mysql":
+        expected = "UPDATE `tournament` SET `desc`=%s WHERE CAST(`name` AS CHAR) LIKE '%%test%%'"
+    elif dialect == "postgres":
+        if is_psycopg:
+            expected = (
+                'UPDATE "tournament" SET "desc"=%s'
+                " WHERE CAST(\"name\" AS VARCHAR) LIKE '%test%' ESCAPE '\\'"
+            )
+        else:
+            expected = (
+                'UPDATE "tournament" SET "desc"=$1'
+                " WHERE CAST(\"name\" AS VARCHAR) LIKE '%test%' ESCAPE '\\'"
+            )
+    else:
+        expected = (
+            'UPDATE "tournament" SET "desc"=? WHERE CAST("name" AS VARCHAR) LIKE ? ESCAPE \'\\\''
+        )
+    assert sql == expected

tortoise/backends/mysql/executor.py

@@ -46,6 +46,8 @@ class StrWrapper(ValueWrapper):
     def get_value_sql(self, ctx: SqlContext) -> str:
         quote_char = ctx.secondary_quote_char or ""
         value = self.value.replace(quote_char, quote_char * 2)
+        # Escape % as %% so it survives MySQL driver's %s parameter substitution
+        value = value.replace("%", "%%")
         return format_quotes(value, quote_char)