copilot-swe-agent[bot] f711bf38d2 fix: Enhanced SQL injection protection in funcspec ...

- Added sanitization for path parameters in mergePathParams
- Added sanitization for query parameters with p- prefix in mergeQueryParams
- Added sanitization for header parameters in mergeHeaderParams
- Fixed IN clause to sanitize all values individually
- Improved ValidSQL function with better escaping and more injection patterns
- Added backslash escaping to colvalue mode
- Extended dangerous keyword list in select mode

Co-authored-by: warkanum <208308+warkanum@users.noreply.github.com>

2025-12-31 07:19:53 +00:00

..

function_api_test.go

Event Broken Concept

2025-12-12 09:23:54 +02:00

function_api.go

fix: Enhanced SQL injection protection in funcspec

2025-12-31 07:19:53 +00:00

hooks_example.go

Added cache, funcspec and implemented total cache

2025-12-01 14:40:54 +02:00

hooks_test.go

Change the SqlQuery functions parameters on Function Spec

2025-12-11 15:42:00 +02:00

hooks.go

Fixed formatting issues

2025-12-01 14:56:30 +02:00

parameters_test.go

Added cache, funcspec and implemented total cache

2025-12-01 14:40:54 +02:00

parameters.go

Fixed formatting issues

2025-12-01 14:56:30 +02:00

security_adapter.go

More generic security solution.

2025-12-02 16:35:08 +02:00