Hacker News new | ask | show | jobs
by aligajani 1101 days ago
How do you prevent SQL injections or bad queries?
1 comments
mritchie712 1101 days ago
we only execute SELECT statements and the user we connect with has readonly access.

On "bad queries", we rely heavily on the users past SQL history to understand correct JOIN's and how they normally define metrics / use the database in general.

link