Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Crud app v2 #15

Closed
wants to merge 52 commits into from
Closed

Crud app v2 #15

wants to merge 52 commits into from

Conversation

Amits64
Copy link
Owner

@Amits64 Amits64 commented Aug 22, 2024

No description provided.

Amits64 and others added 30 commits July 20, 2024 09:10
@Amits64
Delete node_modules directory
dad962c
@Amits64
Update Dockerfile
c42abb5
@Amits64
Update index.js
79e425d
@Amits64
Create script.js
3f2bd6b
@Amits64
updated HTML files
ac50efa
@Amits64
updated HTML files
91a39d3
@Amits64
workflow added
5aea800
@Amits64
Update README.md
f6f76f6
@Amits64
Update README.md
f8e7a99
@Amits64
Update index.js
05f7473
@Amits64
Update docker.yml
93dc9ab
@Amits64
Update docker.yml
86d138d
@Amits64
Update docker.yml
0a1cf95
@Amits64
Update docker.yml
8b21770
@Amits64
Update docker.yml
c3013db
@Amits64
Update docker.yml
b124383
@Amits64
Update docker.yml
b15b83d
@Amits64
Update docker.yml
320099f
@Amits64
Update docker.yml
36db0ee
@Amits64
Update docker.yml
e11a99e
@Amits64
Update sonar-project.properties
76d54e3
@Amits64
Update sonar-project.properties
4a00193
@Amits64
Update sonar-project.properties
aa75485
@Amits64
Update sonar-project.properties
7e9a2f4
@Amits64
Update README.md
90d98ba
@Amits64
Update README.md
a2be908
@Amits64
Update README.md
363e8e7
@Amits64
Merge branch 'main' of github.com:Amits64/crud-app into crud-app-v2
a1efe05
@Amits64
Update README.md
43ebbeb
@Amits64
Update README.md
9dcc3d0
Amits64 and others added 22 commits July 26, 2024 22:19
github-advanced-security[bot]
github-advanced-security bot found potential problems Aug 22, 2024
View reviewed changes
index.js
app.get('/table/:dbName/:tableName', async (req, res) => {
const { dbName, tableName } = req.params;
try {
const [rows] = await mysqlConnection.query(`SELECT * FROM ${dbName}.${tableName}`);

Check failure

Code scanning / SonarCloud

Database queries should not be vulnerable to injection attacks High

Change this code to not construct SQL queries directly from user-controlled data. See more on SonarCloud
index.js
const placeholders = values.map(() => '?').join(', ');

try {
const [result] = await mysqlConnection.query(`INSERT INTO ${dbName}.${tableName} (${columns}) VALUES (${placeholders})`, values);

Check failure

Code scanning / SonarCloud

Database queries should not be vulnerable to injection attacks High

Change this code to not construct SQL queries directly from user-controlled data. See more on SonarCloud
index.js
const values = [...Object.values(data), id];

try {
const [result] = await mysqlConnection.query(`UPDATE ${dbName}.${tableName} SET ${updates} WHERE id = ?`, values);

Check failure

Code scanning / SonarCloud

Database queries should not be vulnerable to injection attacks High

Change this code to not construct SQL queries directly from user-controlled data. See more on SonarCloud
index.js
const { dbName, tableName, id } = req.params;

try {
const [result] = await mysqlConnection.query(`DELETE FROM ${dbName}.${tableName} WHERE id = ?`, [id]);

Check failure

Code scanning / SonarCloud

Database queries should not be vulnerable to injection attacks High

Change this code to not construct SQL queries directly from user-controlled data. See more on SonarCloud
@Amits64 Amits64 closed this Aug 22, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@Amits64