rspec/rules/S2077/javascript/comments-and-links.adoc

=== On 2018-12-08T15:13:48Z Lars Svensson Wrote:
https://www.npmjs.com/package/mysql

https://www.npmjs.com/package/mysql2

https://www.npmjs.com/package/pg - docs: \https://node-postgres.com/features/queries

https://www.npmjs.com/package/sequelize - docs: \http://docs.sequelizejs.com/


=== On 2018-12-08T19:19:56Z Lars Svensson Wrote:
Sequelize is currently the most popular NodeJS ORM with the module having ~285k downloads/week.


This OWASP project has a good example of an SQLi related with the sequelize module:

https://github.com/appsecco/dvna

sequelize.query() is used with user input concatenated to an SQL command


include::../comments-and-links.adoc[]
Export comments and rspec-to-rspec links from jira 2021-06-02 20:44:38 +02:00			`=== On 2018-12-08T15:13:48Z Lars Svensson Wrote:`
			`https://www.npmjs.com/package/mysql`

			`https://www.npmjs.com/package/mysql2`

			`https://www.npmjs.com/package/pg - docs: \https://node-postgres.com/features/queries`

			`https://www.npmjs.com/package/sequelize - docs: \http://docs.sequelizejs.com/`



			`=== On 2018-12-08T19:19:56Z Lars Svensson Wrote:`
			`Sequelize is currently the most popular NodeJS ORM with the module having ~285k downloads/week.`


			`This OWASP project has a good example of an SQLi related with the sequelize module:`

			`https://github.com/appsecco/dvna`

			`sequelize.query() is used with user input concatenated to an SQL command`



			`include::../comments-and-links.adoc[]`