Enable sql injection in execute functions in python

2026-06-05 19:45:58 +00:00 · 2025-05-09 20:25:27 +02:00
parent 32e96de43f
commit 2de747bef4
1 changed files with 5 additions and 0 deletions
@@ -0,0 +1,5 @@
+;extends
+(call
+  function: (attribute attribute: (identifier) @id (#match? @id "execute|read_sql"))
+  arguments: (argument_list
+    (string (string_content) @injection.content (#set! injection.language "sql"))))