mrlan
/
EnglishPal
4
0
Fork 11
Code Issues Pull Requests 22 Projects Releases Wiki Activity

Use named style for sqlite3 execute() #22

Merged
mrlan merged 1 commits from Hui-SaferSQL into master 2022-01-27 17:09:29 +08:00
Conversation 0 Commits 1 Files Changed 6
mrlan commented 2022-01-27 17:08:40 +08:00
Owner

  • 使用 named style 避免SQL注入。

  • 表单数据先用 flask 里面的 escape 函数进行转义。

-Hui

- 使用 [named style](https://docs.python.org/3/library/sqlite3.html) 避免SQL注入。 - 表单数据先用 flask 里面的 [escape](https://snyk.io/blog/python-security-best-practices-cheat-sheet/) 函数进行转义。 -Hui
mrlan added 1 commit 2022-01-27 17:08:40 +08:00
mrlan merged commit c43e4c3f7c into master 2022-01-27 17:09:29 +08:00
Sign in to join this conversation.
Reviewers
No reviewers
Labels
Clear labels
No items
No Label
Milestone
Clear milestone
No items
No Milestone
Projects
Clear projects
No project
Assignees
Clear assignees
No Assignees
1 Participants
Notifications
Due Date
The due date is invalid or out of range. Please use the format 'yyyy-mm-dd'.

No due date set.

Dependencies

No dependencies set.

Reference: mrlan/EnglishPal#22
There is no content yet.
Delete Branch "Hui-SaferSQL"

Deleting a branch is permanent. Although the deleted branch may exist for a short time before cleaning up, in most cases it CANNOT be undone. Continue?