File tree Expand file tree Collapse file tree 1 file changed +7
-7
lines changed Expand file tree Collapse file tree 1 file changed +7
-7
lines changed Original file line number Diff line number Diff line change @@ -297,13 +297,6 @@ should be redesigned or plpgsql_check should be disabled for this function.
297297<i >A usage of plpgsql_check adds a small overhead (in enabled passive mode) and you should use
298298it only in develop or preprod environments.</i >
299299
300- <aside class =" warning " >
301- Attention: The SQL injection check can detect only some SQL injection vulnerabilities. This tool
302- cannot be used for security audit! Some issues should not be detected. This check can raise false
303- alarms too - probably when variable is sanitized by other command or when value is of some compose
304- type.
305- </aside >
306-
307300## Dynamic SQL
308301
309302This module doesn't check queries that are assembled in runtime. It is not possible
@@ -312,6 +305,13 @@ variables and cannot to check a dependent SQLs and expressions. Don't use record
312305as target for dynamic queries or disable <i >plpgsql_check</i > for functions that use dynamic
313306queries.
314307
308+ <b >
309+ Attention: The SQL injection check can detect only some SQL injection vulnerabilities. This tool
310+ cannot be used for security audit! Some issues should not be detected. This check can raise false
311+ alarms too - probably when variable is sanitized by other command or when value is of some compose
312+ type.
313+ </b >
314+
315315## Refcursors
316316
317317<i >plpgsql_check</i > should not to detect structure of referenced cursors. A reference on cursor
You can’t perform that action at this time.
0 commit comments