chore: add a TODO reminder for possible SQL injection!

2026-02-27 16:37:39 +01:00
parent b3ee2da12c
commit 32cf95a837
1 changed files with 2 additions and 0 deletions
--- a/01.workspace/heave/src/fun/sqlite_build_statement.rs
+++ b/01.workspace/heave/src/fun/sqlite_build_statement.rs
@@ -1,5 +1,7 @@
 use crate::*;

+// TODO: possible sql injection for attribute_id!!!
+
 const BASE_SELECT: &str = r#"SELECT * FROM entity"#;
 const INNER_JOIN_FRAGMENT: &str = r#"
    INNER JOIN attribute as attribute_{index}