Use SQLAlchemy with Parameterized Queries

Properties

Category:: database_security
Code example:: session.query(User).filter(User.name == user_input) # Safe
Description:: Always use SQLAlchemy ORM or parameterized queries for database operations
Name:: Use SQLAlchemy with Parameterized Queries
Technology:: Python-SQLite

SQLite

Lightweight embedded SQL database

Parameterized Queries

Use prepared statements to prevent SQL injection

Total Relationships 2

Outgoing 1

Incoming 1

SecurityControl 1

Technology 1