SQL injection possible in create_hypertable/3
Closed this issue · 2 comments
davydog187 commented
The risk here is so minimal because I doubt there's anyone creating tables from user input :) However, i do think we should be properly escaping any data into queries.
https://github.com/bitfo/timescale/blob/main/lib/timescale/migration.ex#L35
akoutmos commented
Leaving this issue open until we address the enable_hypertable_compression
migration
- enabled_hypertable_compression
- add_compression_policy
- create_hypertable