This issue was moved to a discussion.
You can continue the conversation there. Go to discussion →
How safe is helpers concat against SQL injections #886
Labels
You can continue the conversation there. Go to discussion →
Hello,
I am currently using pgp.helpers.concat to batch up mutation queries (insert, update, delete) to reduce roundtrips, however since the string is concated into 1 single query without paramaters I wonder how safe it is against SQL injections?
The text was updated successfully, but these errors were encountered: