zcdsj
/
factory
5
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

feat: sql查询有风险提示更完善

This commit is contained in:
caoqianming 2025-06-25 11:23:59 +08:00
parent 43e9642917
commit 31f4e2869d
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
apps/bi/services.py
View File

@ -14,7 +14,7 @@ def check_sql_safe(sql: str):
sql_upper = sql.upper() sql_upper = sql.upper()
for kw in forbidden_keywords: for kw in forbidden_keywords:
if kw in sql_upper: if kw in sql_upper:
raise ParseError('sql查询有风险') raise ParseError(f'sql查询有风险-{kw}')
return sql return sql
def format_json_with_placeholders(json_str, **kwargs): def format_json_with_placeholders(json_str, **kwargs):