mikeizbicki
commented
2 years ago The most correct thing to do is use something like the big list of naught strings in an automated test case. (And later classes will be having you do this.)
For this class, you'll be fine if you don't get any errors when passing in a ' to a sql statement of <script>-like tag to the html.
Hi! Are there any resources or methods anyone would recommend to test if the website is bug-free/injection-safe?