Protect against user provided field selector

felixfbecker / node-sql-template-strings

ES6 tagged template strings for prepared SQL statements 📋

ISC License

610 stars 40 forks source link

Protect against user provided field selector #123

Open pke opened 4 years ago

pke commented 4 years ago

Is there plan to support something similar to slonik field selector protection?

absolux commented 2 years ago

I don't think so! Slonik is both, a SQL template string helper as this package, and a layer on top of the pg driver for PostgreSQL databases. The feature you ask for is used for query execution not query construction.