I agree. It would be nice if most SQL API's were secure by default to prevent SQ... | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

asadeddin 8 months ago | parent | context | favorite | on: We fine-tuned an LLM to triage and fix insecure co...

I agree. It would be nice if most SQL API's were secure by default to prevent SQLI. It's really something that the db connectors in the programming languages should handle with more grace like most ORMs today handle them pretty well.

I believe it largely is due to how SQL is designed to allow multiple queries to be concatenated with each other, and poor logic design when writing such queries.

jeltz 8 months ago [–]

SQL is not designed to allow multiple queries to be concatenated. That is a feature of certain databases, not SQL itself.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact