1717
you are viewing a single comment's thread
view the rest of the comments
[-] Stumblinbear@pawb.social 1 points 1 year ago* (last edited 1 year ago)

I'm currently using SQLx which you write raw queries in and it validates them against a currently-running db, using the description of the tables to build the typing for the return type instead of relying on the user. It makes it pretty hard to write anything that supports injection

[-] hikaru755@feddit.de 2 points 1 year ago

Oh, that sounds really cool! At what time does this validation happen? While you code, or later at build time?

[-] Stumblinbear@pawb.social 3 points 1 year ago

Happens at compile time! It's relatively quick. You can also run a command to write the query results to file for offline type checking which is mostly useful for CI

this post was submitted on 19 Oct 2023
1717 points (98.8% liked)

Programmer Humor

32503 readers
496 users here now

Post funny things about programming here! (Or just rant about your favourite programming language.)

Rules:

founded 5 years ago
MODERATORS