Command injection

Hi there!
How to properly escape a text to be inserted in a new document?
I.e. the value of a key called ‘comment’.
It should be obvious but I’m not that expert and fear the old times of SQL injection…

Can you show us what you have tried? Or at least indicate which language you are using?

Fauna has drivers for C#, Go, Java, JavaScript, Python, and Scala, and you could also be using GraphQL. How you solve the problem depends on how you are expressing your document(s).

Me being dumb… obviously when passing the data object, you can’t inject: no string concatenation here…

This topic was automatically closed 2 days after the last reply. New replies are no longer allowed.