Closed pixeebot[bot] closed 3 weeks ago
Failed conditions
2 Security Hotspots
B Maintainability Rating on New Code (required ≥ A)
See analysis details on SonarCloud
Catch issues before they fail your Quality Gate with our IDE extension SonarLint
✨✨✨
Remediation
This change fixes "cs/sql-injection" (id = cs/sql-injection) identified by CodeQL.
Details
If a SQL query is built using string concatenation, and the components of the concatenation include user input, a user is likely to be able to run malicious database queries.
I have additional improvements ready for this repo! If you want to see them, leave the comment:
... and I will open a new PR right away!
🧚🤖 Powered by Pixeebot
Enhanced with AI
Learn moreFeedback | Community | Docs | Codemod ID: codeql:dotnet/sql-parameterize