✨ (CodeQL) Fixed finding: "cs/sql-injection"

[pixeebot[bot]]

✨✨✨

Remediation

This change fixes "cs/sql-injection" (id = cs/sql-injection) identified by CodeQL.

Details

If a SQL query is built using string concatenation, and the components of the concatenation include user input, a user is likely to be able to run malicious database queries.

I have additional improvements ready for this repo! If you want to see them, leave the comment:

@pixeebot next

... and I will open a new PR right away!

🧚🤖 Powered by Pixeebot Enhanced with AI Learn more

Feedback | Community | Docs | Codemod ID: codeql:dotnet/sql-parameterize

[sonarcloud[bot]]

Quality Gate failed

Failed conditions
2 Security Hotspots
B Maintainability Rating on New Code (required ≥ A)

See analysis details on SonarCloud

Catch issues before they fail your Quality Gate with our IDE extension SonarLint