Is kysely sanitizing sql injection when using raw sql ?

Suppose I have a piece of code that does sql${myString} where myString contains sql injection, will kysely sanitize it or is it something that I need to take care of ?

Solution:

Of course it is.

Jump to solution

2 Replies

Solution

koskimas•5mo ago

Of course it is.

Unknown User•5mo ago

Message Not Public

Kysely Join

1.4KMembers

View on Discord

Want results from more Discord servers?

Add your server

Support for D1 batchingHi. I'm wondering about support for batching statements with Cloudflare's D1 batching, similar to li Omit/filter out columns from queryHey, is there an easy or convenient way with Kysely to filter out data from a query? Lets say I hav How to create a typed array of columns for select?Hello, I am trying to create some helpers that contain the list of columns used by multiple queries,Return `null` by default if no record foundHey, I am looking to have my queries return `null` instead of `undefined` if no records match my que cmpr as eb call SqlBool return typeHello, missed a couple of updates and now I'm back updating to latest. Found out `eb.cmpr` has been Argument of type 'RawBuilder<unknown>' is not assignable to...I have a query that looks like this: countQuery.where( 'activityId', 'in', Generic function to stream a tableI am trying to write a generic function that will take a kysely connection, a table name, a column n Type errors after 0.27.1 upgradeAfter upgrading to the lastest verision, I've got a couple of type errors that I'm not sure how to r "Correct" way to create a unique index with some raw SQLI'm attempting to create a new unique index on a `username` column, but I want it to be unique on `L TS2345: Argument of type "id" is not assignable to parameter of type ReferenceExpression<DatabaseCode: ```ts const newToken = await db .selectFrom("tokens") .selectAll()

Gaming

Programming

Is kysely sanitizing sql injection when using raw sql ?