This module is designed to give you a simple yes/no answer as to whether a particular string contains SQL commands. That you do with that information is up to you.
NOTE: This module is still under development! Use in production at your own risk!
// coming soon
code example:
var hasSql = require('./lib/index.js');
console.log(hasSql('hi there'));
// false
console.log(hasSql("SELECT EMP_ID, LAST_NAME FROM EMPLOYEE_TBL WHERE CITY = 'DETROIT'"));
// true
Please add to this module to help make it more robust! Pull requests welcome
This is a fork of https://github.com/ghafran/sql-injection
Base checks are extracted from this article