Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Feature: SQL Injection Prevention (Flow Simulation) #23

Merged
merged 3 commits into from
Aug 18, 2022
Merged

Feature: SQL Injection Prevention (Flow Simulation) #23

merged 3 commits into from
Aug 18, 2022

Commits on Aug 15, 2022

  1. feat(core, serve): add sql injection prevention structure and flow. 

    - add prepare parameters method in data source interface.
- inject data source in route generator
- refactor template engine for re-wrap data to context object.
- update req tag runner to get bind paramters from context and send to executor for creating builder.
- add identifier in data query builder
- update test cases for data query builder and template engine.
- update route generator, app, server test cases.
    @kokokuo
    kokokuo committed Aug 15, 2022
    Configuration menu
    Copy the full SHA
    90b3942 View commit details
    Browse the repository at this point in the history

Commits on Aug 17, 2022

  1. fix: move the '_paramBinds' to outer of context and append test cases… 

    … for binding params
    @kokokuo
    kokokuo committed Aug 17, 2022
    Configuration menu
    Copy the full SHA
    90396be View commit details
    Browse the repository at this point in the history

  2. fix: bind the parameters to query string and refactor data builder te… 

    …st cases.
    @kokokuo
    kokokuo committed Aug 17, 2022
    Configuration menu
    Copy the full SHA
    8d9a446 View commit details
    Browse the repository at this point in the history