@joshcgrossman.com on Bluesky

JavaScript RequiredThis is a heavily interactive web application, and JavaScript is required. Simple HTML interfaces are possible, but that is not what this is. Learn more about Bluesky at bsky.social and atproto.com.

Post

Josh Grossman (tghosth 👻)

joshcgrossman.com

did:plc:mwf4lbaq37mpllu3ifq2gqzd

I posted a poll last week about SQLi in typescript/Prisma. I've now written a blog post which explains why the code is not vulnerable, why so many people don't understand if it is vulnerable or not, and also why this "safe" mechanism might not help you anyway: https://www.bouncesecurity.com/blog/2024/02/20/when-the-safe-is-bad-and-the-unsafe-is-safe

2024-02-22T18:00:10.000Z