Remove all usage of f string or other direct string manipulation when creating SQL functions. This is important both for SQL injection prevention, but it also allows asyncpg to better prepare/cache statements for performance. This is at least needed for layer/Function, but should do a review of the code base to check of other instances as well.
vincentsarago
commented
2 years ago
Remove all usage of f string or other direct string manipulation when creating SQL functions. This is important both for SQL injection prevention, but it also allows asyncpg to better prepare/cache statements for performance. This is at least needed for layer/Function, but should do a review of the code base to check of other instances as well.