[issue3783] dbm.sqlite proof of concept
Gregory P. Smith
report at bugs.python.org
Sun Sep 7 02:54:47 CEST 2008
Gregory P. Smith <greg at krypto.org> added the comment:
sq_dict review:
have sqlite quote/escape self._mtn before using it with a python %s
substitution. or pass it into the sql query function as a positional ?
parameter like you do for keys and values. (avoid sql injection)
raise a TypeError rather than a ValueError when you don't like the key
or value type.
also, to test the type, isinstance(val, str) is better than using type(val).
_______________________________________
Python tracker <report at bugs.python.org>
<http://bugs.python.org/issue3783>
_______________________________________
More information about the Python-bugs-list
mailing list