luxolus/open-vault
2
0
Fork 0
Code Issues 1 Pull requests Releases Activity
open-vault/plugins/database
History
Lauren Voswinkel 4d98430964
Use parameters when executing prepared statements rather than fmt.Sprintf (#9013) 
* Don't use string formatting to prepare queries.

We should, when possible, use the built-in params and ? format when
preparing and executing a query. This is done to prevent SQL Injection
attacks.

* Revert some changes due to failing tests, update mssql go driver

* Add docker container startup for some MSSQL tests

* Remove acceptance test flagging, add more SQL injection protection

* Refactor MSSQL prepareTestContainer to a test helper

Also, remove all ? references and convert them to @p*
2020-05-21 16:07:18 -07:00
..
cassandra
hana
influxdb
mongodb Enable root user credential rotation in MongoDB (#8540) 2020-05-15 11:24:10 -06:00
mssql Use parameters when executing prepared statements rather than fmt.Sprintf (#9013) 2020-05-21 16:07:18 -07:00
mysql Update Oracle DB secrets docs to reflect support for static roles (#8168) 2020-02-13 15:11:33 -07:00
postgresql Fix: rotate root credentials for database plugins using WAL (#8782) 2020-04-22 16:21:28 -07:00
redshift Fix: rotate root credentials for database plugins using WAL (#8782) 2020-04-22 16:21:28 -07:00