Message 72725 - Python tracker

➜

This issue tracker has been migrated to GitHub, and is currently read-only.
For more information, see the GitHub FAQs in the Python's Developer Guide.

Author	gregory.p.smith
Recipients	gregburd, gregory.p.smith, jcea, josiahcarlson, pitrou, rhettinger, skip.montanaro
Date	2008-09-07.00:54:45
SpamBayes Score	9.616522e-07
Marked as misclassified	No
Message-id	<[email protected]>
In-reply-to

Content
sq_dict review: have sqlite quote/escape self._mtn before using it with a python %s substitution. or pass it into the sql query function as a positional ? parameter like you do for keys and values. (avoid sql injection) raise a TypeError rather than a ValueError when you don't like the key or value type. also, to test the type, isinstance(val, str) is better than using type(val).

sq_dict review:

have sqlite quote/escape self._mtn before using it with a python %s
substitution.  or pass it into the sql query function as a positional ?
parameter like you do for keys and values.  (avoid sql injection)

raise a TypeError rather than a ValueError when you don't like the key
or value type.

also, to test the type, isinstance(val, str) is better than using type(val).

History
Date	User	Action	Args
2008-09-07 00:54:47	gregory.p.smith	set	recipients: + gregory.p.smith, skip.montanaro, rhettinger, jcea, josiahcarlson, pitrou, gregburd
2008-09-07 00:54:47	gregory.p.smith	set	messageid: <[email protected]>
2008-09-07 00:54:45	gregory.p.smith	link	issue3783 messages
2008-09-07 00:54:45	gregory.p.smith	create