Skip to content

Escape SQL special characters in convertGlobToSQLPattern #141

@coderabbitai

Description

@coderabbitai

The function convertGlobToSQLPattern currently only escapes % and _, but other SQL wildcard or special characters might also need to be considered to prevent SQL injection risks.

Reference PR: #137
Reference Comment: #137 (comment)

Reported by @naveensrinivasan.

Metadata

Metadata

Labels

No labels
No labels

Type

No type

Projects

No projects

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions