• expr@programming.dev
    link
    fedilink
    arrow-up
    38
    arrow-down
    2
    ·
    11 months ago

    Not only is this really gross, it’s also straight up wrong. It’s missing a from clause, and it makes no sense for a where clause to be nested under the select. The select list selects columns from rows that have already been filtered by the where clause. Same for the limit.

    Also just gonna go ahead and assume the JSX parser will happily allow SQL injection attacks…