perl-Perl-Critic-Policy-ValuesAndExpressions-PreventSQLInjection-1.4.0-alt1.noarch.rpm


Advertisement

Description

perl-Perl-Critic-Policy-ValuesAndExpressions-PreventSQLInjection - Prevent SQL injection in interpolated strings

Distribution: ALT Linux Sisyphus
Repository: Autoimports noarch
Package name: perl-Perl-Critic-Policy-ValuesAndExpressions-PreventSQLInjection
Package version: 1.4.0
Package release: alt1
Package architecture: noarch
Package type: rpm
Installed size: 44.90 KB
Download size: 44.90 KB
Official Mirror: ftp.altlinux.org
When building SQL statements manually instead of using an ORM, any input must be quoted or passed using placeholders to prevent the introduction of SQL injection vectors. This policy attempts to detect the most common sources of SQL injection in manually crafted SQL statements, by detecting the use of variables inside interpolated strings that look like SQL statements. In other words, this policy searches for code such as: _my $sql = "SELECT * FROM $table WHERE field = $value"; But would leave alone: _my $string = "Hello $world";

Provides

  • perl(Perl/Critic/Policy/ValuesAndExpressions/PreventSQLInjection.pm) = 1.004
  • perl-Perl-Critic-Policy-ValuesAndExpressions-PreventSQLInjection = 1.4.0-alt1

    Install Howto

    1. Add the following line to /etc/apt/sources.list:
      rpm [Sisyphus] http://ftp.altlinux.org/pub/distributions/ALTLinux/autoimports/Sisyphus noarch autoimports
      rpm [Sisyphus] http://ftp.altlinux.org/pub/distributions/ALTLinux/autoimports/Sisyphus noarch autoimports
      
    2. Update the package index:
      # sudo apt-get update
    3. Install perl-Perl-Critic-Policy-ValuesAndExpressions-PreventSQLInjection rpm package:
      # sudo apt-get install perl-Perl-Critic-Policy-ValuesAndExpressions-PreventSQLInjection

    Files

    • /usr/share/doc/perl-Perl-Critic-Policy-ValuesAndExpressions-PreventSQLInjection-1.4.0/Changes
    • /usr/share/doc/perl-Perl-Critic-Policy-ValuesAndExpressions-PreventSQLInjection-1.4.0/LICENSE
    • /usr/share/doc/perl-Perl-Critic-Policy-ValuesAndExpressions-PreventSQLInjection-1.4.0/README.md
    • /usr/share/doc/perl-Perl-Critic-Policy-ValuesAndExpressions-PreventSQLInjection-1.4.0/ignore.txt
    • /usr/share/doc/perl-Perl-Critic-Policy-ValuesAndExpressions-PreventSQLInjection-1.4.0/examples/examples.txt
    • /usr/share/perl5/Perl/
    • /usr/share/perl5/Perl/Critic/
    • /usr/share/perl5/Perl/Critic/Policy/
    • /usr/share/perl5/Perl/Critic/Policy/ValuesAndExpressions/PreventSQLInjection.pm
    Advertisement
    Advertisement