HackerTrans
トップ新着トレンドコメント過去質問紹介求人

oeskeide

no profile record

コメント

oeskeide
·5 年前·議論
> We need a restrictive SQL parser to run server-side to restrict what can be run and prevent SQL injection. Maybe we need a query-builder/ORM to generate a safe intermediary SQL language in JSON so that we can validate it. Maybe taking some inspiration from Prisma’s type-safe data-mapper client could be used to help people write safe queries that won’t fail server-side validation unexpectedly.

What you are describing here is an API.