The query builder is pretty simple at this point, every method in that class returns this, so that you can chain multiple methods like where, first, and select to get the result that you want.
Security is one of my concerns too, but it's a bit challenging. For now, I'm trying to implement the minimum requirement for preventing SQL injection by escaping user inputs on my query builder.
If you know anything to improve security on an ORM, I would love to know!
For further actions, you may consider blocking this person and/or reporting abuse
We're a place where coders share, stay up-to-date and grow their careers.
Cool.
One thing that comes to mind is -- how do build the SQL builder? How do you make identifier always valid? What about protection against SQL injection?
Another thing is JSON querying support. Aren't the syntaxes different across SQL providers?
This was my experience, github.com/patarapolw/liteorm
What a nice project!
The query builder is pretty simple at this point, every method in that class returns
this
, so that you can chain multiple methods likewhere
,first
, andselect
to get the result that you want.Security is one of my concerns too, but it's a bit challenging. For now, I'm trying to implement the minimum requirement for preventing SQL injection by escaping user inputs on my query builder.
If you know anything to improve security on an ORM, I would love to know!