vault

scottk/vault

Fork 0

mirror of https://github.com/optim-enterprises-bv/vault.git synced 2025-11-02 11:38:02 +00:00

Commit Graph

Author	SHA1	Message	Date
ncabatoff	2b3aef242b	Run CI tests in docker instead of a machine. (#8948 )	2020-09-15 10:01:26 -04:00
Lauren Voswinkel	1a322e2026	Use parameters when executing prepared statements rather than fmt.Sprintf (#9013 ) * Don't use string formatting to prepare queries. We should, when possible, use the built-in params and ? format when preparing and executing a query. This is done to prevent SQL Injection attacks. * Revert some changes due to failing tests, update mssql go driver * Add docker container startup for some MSSQL tests * Remove acceptance test flagging, add more SQL injection protection * Refactor MSSQL prepareTestContainer to a test helper Also, remove all ? references and convert them to @p*	2020-05-21 16:07:18 -07:00

Author

SHA1

Message

Date

ncabatoff

2b3aef242b

Run CI tests in docker instead of a machine. (#8948 )

2020-09-15 10:01:26 -04:00

Lauren Voswinkel

1a322e2026

Use parameters when executing prepared statements rather than fmt.Sprintf (#9013 )

* Don't use string formatting to prepare queries.

We should, when possible, use the built-in params and ? format when
preparing and executing a query. This is done to prevent SQL Injection
attacks.

* Revert some changes due to failing tests, update mssql go driver

* Add docker container startup for some MSSQL tests

* Remove acceptance test flagging, add more SQL injection protection

* Refactor MSSQL prepareTestContainer to a test helper

Also, remove all ? references and convert them to @p*

2020-05-21 16:07:18 -07:00

2 Commits