SQL safe variable lists should accept both space and comma separators

guillaumeaubert / Perl-Critic-Policy-ValuesAndExpressions-PreventSQLInjection

PerlCritic policy that attempts to detect the most common sources of SQL injection in manually crafted SQL statements, by detecting the use of variables inside interpolated strings that look like SQL statements.

https://metacpan.org/pod/Perl::Critic::Policy::ValuesAndExpressions::PreventSQLInjection

Other

6 stars 8 forks source link

SQL safe variable lists should accept both space and comma separators #9

Closed guillaumeaubert closed 10 years ago

guillaumeaubert commented 10 years ago

The documentation refers to

## SQL safe ($var1, $var2, ...)

But the parser checks for

## SQL safe ($var1 $var2 ...)

Both should be accepted, to prevent confusion, so the documentation needs to be updated to reflect that and the parser needs to support comma separated lists.

guillaumeaubert commented 10 years ago

Released with v1.2.0.