Protecting against SQL Injection Attacks

If I create a query like:
await client.QueryMultiSeriesAsync ("_internal", "select field from measurement where something");

If "something" is generated from user input is there something in the library that can parameterize that input to guard against SQL injection attacks?

I would want something like:
query = "select field from measurement where {something}";
params = { "something", "value" };
await client.QueryMultiSeriesAsync ("_internal", query, params);

And QueryMultiSeriesAsync would automatically scrub/escape params to guard against SQL injection. Also see: [InfluxDB Python Bind Parameters](https://medium.com/sekoia-io-blog/avoiding-injections-with-influxdb-bind-parameters-50f67e379abb)

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Protecting against SQL Injection Attacks #86

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Protecting against SQL Injection Attacks #86

Description

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions