zcdsj
/
factory
5
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

feat: 增加check_sql_safe 稳定性

This commit is contained in:
caoqianming 2025-06-10 08:48:13 +08:00
parent 84690e7b54
commit 438d06af2f
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
apps/bi/services.py
View File

@ -5,7 +5,7 @@ from apps.bi.models import Dataset
import concurrent import concurrent
from apps.utils.sql import execute_raw_sql, format_sqldata from apps.utils.sql import execute_raw_sql, format_sqldata
forbidden_keywords = ["UPDATE", "DELETE", "DROP", "TRUNCATE"] forbidden_keywords = ["UPDATE", "DELETE", "DROP", "TRUNCATE", "INSERT", "CREATE", "ALTER", "GRANT", "REVOKE", "EXEC", "EXECUTE"]
def check_sql_safe(sql: str): def check_sql_safe(sql: str):