node-red-contrib-sqlstring 0.1.1

A [Node-RED](http://nodered.org) node for formatting SQL-Queries to avoid SQL-Injections.

npm install node-red-contrib-sqlstring

A Node-RED node for formatting SQL-Queries to avoid SQL-Injections.

screenshot

The commonly used node-red-node-mysql allows SQL-Injections (one of most common security risks for web applications).

SQL-Queries with user provided variables, have to be secured.

The sqlstring-format node creates SQL-Queries and escapes provided variables.

The escaping is performed with: https://github.com/mysqljs/sqlstring (library with 500k downloads per week)

Example

example-flow example-properties

Collection Info

FLOWS-WEBAPP

prev next

Node Info

Version: 0.1.1

Updated 5 years, 5 months ago

License: MIT

Rating: 5.0 4

View on npm

View on GitHub

Actions

Downloads

37 in the last week

Nodes

sqlstring-format

Keywords

sql
mysql
node-red
sqlstring

Maintainers

julius_eckert

Node-RED: Low-code programming for event-driven applications.

Copyright OpenJS Foundation and Node-RED contributors. All rights reserved. The OpenJS Foundation has registered trademarks and uses trademarks. For a list of trademarks of the OpenJS Foundation, please see our Trademark Policy and Trademark List. Trademarks and logos not indicated on the list of OpenJS Foundation trademarks are trademarks™ or registered® trademarks of their respective holders. Use of them does not imply any affiliation with or endorsement by them.