Function sanitize_sql

Source

pub fn sanitize_sql(input: &str) -> String

Expand description

Sanitize SQL input to prevent SQL injection

This function escapes SQL special characters. However, parameterized queries should always be preferred over manual sanitization.

§Warning

This is a last-resort defense. Always use parameterized queries when possible.

§Example

use mockforge_core::validation::sanitize_sql;

let input = "admin' OR '1'='1";
let safe = sanitize_sql(input);
assert_eq!(safe, "admin'' OR ''1''=''1");

sanitize_sql

Function sanitize_sql Copy item path

§Warning

§Example

Function sanitize_sql