Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Parameterized Queries #3

Open
jharper-isc opened this issue May 9, 2017 · 3 comments
Open

Parameterized Queries #3

jharper-isc opened this issue May 9, 2017 · 3 comments

Comments

@jharper-isc
Copy link

ExecuteQuery should support parameterized queries to prevent sql injection.
@realityenigma
Copy link
Contributor

The SqlCommand library is where the commands are going to be built. ExecuteQuery is where any generated query is being sent off to the binary api. This is modeled on how ADO.net handles query execution. I might go ahead and add an abstract SqlCommand class that can be passed to the ExecuteQuery; however, one would still use a SqlCommand builder library that implemented the SqlCommand class.

@realityenigma
Copy link
Contributor

FYI, I'm am working on finishing up implementing this feature. Should be ready within a week. :)

@vzwick
Copy link

vzwick commented Oct 27, 2017

@realityenigma What's the status on this?

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@vzwick @realityenigma @jharper-isc