Y
Hacker News
new
|
ask
|
show
|
jobs
by
jimmar
2345 days ago
Interesting idea. Are you doing anything to protect against sql injection attacks?
1 comments
mattatkeyboard
2345 days ago
Yeh. It send through the key/values in HTTP POST and then you have the SQL and K/C's on the server, the SQL itself is not sent. Server passes them through as parameters to the Node.JS `pg` module so that takes care of defeating SQL injection.
link