rusty-donkey/heave
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

chore: add a TODO reminder for possible SQL injection!

Browse Source
This commit is contained in:
davidemazzocchi
2026-02-27 16:37:39 +01:00
parent b3ee2da12c
commit 32cf95a837
1 changed files with 2 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
01.workspace/heave/src/fun/sqlite_build_statement.rs
View File

@@ -1,5 +1,7 @@
use crate::*; use crate::*;
// TODO: possible sql injection for attribute_id!!!
const BASE_SELECT: &str = r#"SELECT * FROM entity"#; const BASE_SELECT: &str = r#"SELECT * FROM entity"#;
const INNER_JOIN_FRAGMENT: &str = r#" const INNER_JOIN_FRAGMENT: &str = r#"
INNER JOIN attribute as attribute_{index} INNER JOIN attribute as attribute_{index}