15:[["$","$La4",null,{"props":{"lessonContent":{"components":[{"type":"MarkdownEditor","content":{"version":"2.0","text":"\nAn **SQL injection** is a security breach, one made famous by the \"Exploits\nof a Mom\" **xkcd** comic episode in which we read about\n*Little Bobby Tables*.","mdHtml":"

An SQL injection is a security breach, one made famous by the “Exploits\nof a Mom” xkcd comic episode in which we read about\nLittle Bobby Tables.

\n","comp_id":"-WVhy8wqbu92NxkKLTFzk","cursorPosition":3},"iteration":0,"hash":0,"saveVersion":27,"children":[{"text":""}],"status":"normal","contentID":"Dd9SOnGrzdjbdmUVPlZz7"},{"type":"LazyLoadPlaceholder","content":{"actualType":"CanvasAnimation","widgetIndex":1,"contentRevision":102,"pageId":"5424990534500352","height":400,"width":470,"slidesCount":4}},{"type":"MarkdownEditor","content":{"version":"2.0","text":"$a5","mdHtml":"

An SQL injection happens when the database server is mistakenly led to consider a dynamic argument of a query as part of the query text. PostgreSQL implements a protocol-level facility to send the static SQL query text separately from its dynamic arguments. Sending those parts as separate entities over the protocol means that ...

","comp_id":"YZIg4FDsSvudCpv6GQuAO","cursorPosition":1313},"iteration":0,"hash":2,"saveVersion":20,"children":[{"text":""}],"contentID":"6YnuBHrwrW0trxFTN3mar","status":"normal"}],"summary":{"titleUpdated":true,"description":"Explore how SQL injection vulnerabilities occur and understand PostgreSQL's protocol-level mechanisms that separate query text from parameters to prevent them. Learn best practices for using application drivers like psycopg to securely handle SQL queries without risking injection.","title":"A Word About SQL Injection"},"content":[{"type":"MarkdownEditor","content":{"version":"2.0","text":"\nAn **SQL injection** is a security breach, one made famous by the \"Exploits\nof a Mom\" **xkcd** comic episode in which we read about\n*Little Bobby Tables*.","mdHtml":"

An SQL injection is a security breach, one made famous by the “Exploits\nof a Mom” xkcd comic episode in which we read about\nLittle Bobby Tables.

","comp_id":"YZIg4FDsSvudCpv6GQuAO","cursorPosition":1313},"iteration":0,"hash":2,"saveVersion":20,"children":[{"text":""}],"contentID":"6YnuBHrwrW0trxFTN3mar","status":"normal"}],"darkModeContent":[{"type":"MarkdownEditor","content":{"version":"2.0","text":"\nAn **SQL injection** is a security breach, one made famous by the \"Exploits\nof a Mom\" **xkcd** comic episode in which we read about\n*Little Bobby Tables*.","mdHtml":"

An SQL injection is a security breach, one made famous by the “Exploits\nof a Mom” xkcd comic episode in which we read about\nLittle Bobby Tables.

","comp_id":"YZIg4FDsSvudCpv6GQuAO","cursorPosition":1313},"iteration":0,"hash":2,"saveVersion":20,"children":[{"text":""}],"contentID":"6YnuBHrwrW0trxFTN3mar","status":"normal"}]},"isPreviewLesson":false,"pageType":"collection_lesson","aiCoachVideoUrl":"https://youtu.be/kgl8y9J3O6c","collectionDetailsSSR":{"title":"The Art of PostgreSQL","summary":"$a8","details":"","clos":["An understanding of PostgreSQL and its applications in managing databases with CRUD operations","Familiarity with the core components of PostgreSQL, such as SQL, REPL, Window functions, and data modeling","Hands-on experience in using SQL queries with PostgreSQL and its extensions","The ability to write and integrate SQL queries into your workflow, enabling efficient data retrieval and manipulation"],"arabic_available":false,"page_tags":{"5003855468691456":"","5786415689891840":"","5371103542771712":"","5424990534500352":"","6458787635920896":"","6425424111861760":"","5125270285058048":"","5270959266725888":"","6365557451915264":"","6174590908235776":"","5881207815929856":"","6635466937335808":"","5915512676024320":"","6294374761103360":"","6120120568512512":"","5114929643782144":"","6667306704306176":"","5400618709024768":"","6298259907149824":"","6079712308232192":"","4830947937091584":"","6362074598342656":"","4687781288214528":"","6126598889144320":"","6311796100562944":"","5653031433011200":"","4588841146515456":"","4838160978149376":"","6245237697019904":"","4619738805698560":"","4980624573595648":"","6353619502235648":"","6654117291753472":"","6400593576329216":"","5545573163204608":"","5524958393925632":"","5038651511144448":"","6460832690470912":"","6498945190068224":"","6511139642408960":"","6550675420348416":"","5598250651877376":"","5770412905988096":"","6667415047372800":"","5854300227502080":"","6316433272733696":"","4681581419036672":"","5997294117191680":"","5530640082010112":"","6340173788348416":"","6366555876622336":"","5724974165262336":"","6368364963823616":"","6149456881254400":"","6421152662028288":"","5980952932646912":"","6638086485704704":"","5714476971589632":"","4928633650544640":"","4593935640428544":"","6199616613122048":"","5753631051087872":"","6646779214299136":"","6160697783746560":"","6424609179566080":"","4704466724454400":"","4649961878192128":"","6138606871117824":"","5618483009683456":"","5420434182373376":"","5007673195495424":"","6081312175161344":"","5923880249589760":"","6710565484888064":"","6154678068314112":"","5563657685041152":"","5940485130027008":"","6021262492565504":"","5835763593248768":"","5228807572684800":"","5446698679140352":"","6658080615432192":"","4525782495395840":"","6382819416211456":"","5911622614253568":"","4775582524506112":"","6158881465565184":"","5365759416467456":"","6497811596312576":"","6105001604939776":"","4783233137115136":"","6633890386542592":"","5098950143246336":"","6716215044603904":"","5887375242952704":"","5415439807283200":"","6431730588450816":"","6134442548789248":"","5992367647883264":"","6015347283197952":"","5386725719539712":"","4506115236954112":"","5929566636081152":"","4999811644522496":"","5533290354442240":"","4741742494744576":"","5513554711281664":"","5037748419559424":"","5414602338992128":"","6143427368714240":"","6733837178765312":"","4869032708931584":"","6431877623971840":"","4951147718901760":"","6152530551898112":"","5958553991118848":"","4986327326261248":"","6667359238750208":"","6694546616614912":"","5832952789598208":"","5471564913180672":"","4869422535933952":"","5929503142707200":"","4781188204199936":"","6187852002230272":"","4727915015307264":"","6155493718622208":"","5917318186270720":"","4575511011655680":"","5399222186934272":"","4930738898337792":"","6281442133016576":"","6367604973502464":"","5557736410710016":"","5689945033539584":"","5867631831941120":"","6384617045360640":"","5783204250517504":"","5092574650171392":"","6253611508301824":"","5126995080118272":"","6509853619257344":"","6730718394974208":"","4539542103392256":"","6157243246706688":"","6630051634479104":"","5378860887834624":"","5005563402649600":"","5831491854794752":"","6364413879910400":"","6443180400836608":"","5560099582246912":"","4978518282993664":"","5977961669066752":"","5487600152608768":"","4584684747227136":"","5292632964333568":"","5153677384089600":"","5011451454685184":"","6451778031976448":"","5216646704922624":"","4880244733640704":"","5607482823278592":"","4594330237140992":"","4887584362987520":"","4806469811961856":"","4748529629396992":"","5790019107422208":"","5154009344376832":"","5336386641330176":"","6200090538803200":"","5342113309130752":"","5302959783280640":"","6308846090059776":"","5721633530839040":"","4794580342145024":"","5527103456149504":"","5931157571239936":"","4908968675901440":"","6393942344204288":"","5544274030755840":"","6358533627183104":"","5131517238181888":"","4803945434447872":"","6469723032387584":"","6057350337396736":"","5426311797669888":"","4760213406351360":"","5780033165852672":"","6572811604983808":"","4556120049057792":"","5150030643331072":"","5596325258461184":"","6124636065759232":"","5264450216263680":"","5864617235709952":"","5846359900160000":"","6349757950984192":"","4754473282174976":"","5638269934239744":"","5021674639720448":"","4937173574090752":"","4987829055913984":"","6679385987088384":"","4825069215023104":""},"collection_toc_is_enabled":true,"page_count":null,"docker":{"container":{"file":{"name":"pga.tar.gz","size":937},"imageName":"author-10370001-collection-5247805802676224-rev-48-container-5921303513268224-pga","buildStatus":"SUCCESS","buildStatusUrl":"https://www.educative.io/api/author/10370001/collection/5247805802676224/containers/5921303513268224/build/status","buildLogUrl":"https://www.educative.io/api/author/10370001/collection/5247805802676224/containers/5921303513268224/build/log","metadata":{"sizeInBytes":937},"id":-1,"tarballDownloadUrl":"https://www.educative.io/api/author/10370001/collection/5247805802676224/containers/5921303513268224/download","rebuildImageUrl":"https://www.educative.io/api/author/10370001/collection/5247805802676224/containers/5921303513268224/rebuild","track":false},"envs":[],"jobs":[{"key":"GBcf7NZQhultJNMjWQryc","name":"pg-2.2.1","inputFileName":"foo","runScript":"ls","ports":"5432","startScript":"service postgresql start && su - postgres -c \"psql root -h 0.0.0.0 -d yesql -f /usercode/factbook.sql\" && clear","jobType":"Live","forceRelaunchOnRun":true,"forceRelaunchOnCompChange":true,"runInLiveContainer":true},{"key":"e1cduXF6IU3UAiJG9qxiD","name":"pgstart","inputFileName":"foo","runScript":"ls","ports":"5432","startScript":"service postgresql start","jobType":"Live","forceRelaunchOnRun":true,"forceRelaunchOnCompChange":true,"runInLiveContainer":true},{"key":"zjv-7lcgQfdIR9-i1h6xw","name":"pg-3.2.2","inputFileName":"foo","runScript":"python3 /usercode/albums.py \"Audioslave\"","ports":"5432","startScript":"service postgresql start && python3 /usercode/albums.py \"Audioslave\"","jobType":"Live","forceRelaunchOnRun":true,"forceRelaunchOnCompChange":true,"runInLiveContainer":true},{"key":"BI154KDSOH6V323ngyIWS","name":"mysqlstart","inputFileName":"foo","runScript":"ls","ports":"5432","startScript":"service mysql start","jobType":"Live","forceRelaunchOnRun":true,"forceRelaunchOnCompChange":true,"runInLiveContainer":true},{"key":"PBHvdFxJG6MhVvI-28jPy","name":"pgstart-utf8","inputFileName":"foo","runScript":"ls","ports":"5432","startScript":"export LC_ALL=C.UTF-8 && service postgresql start","jobType":"Live","forceRelaunchOnRun":true,"forceRelaunchOnCompChange":true,"runInLiveContainer":true},{"key":"aNG121z9SV4rxQIz4HpU3","name":"pg-2.3.1","inputFileName":"foo","runScript":"ls","ports":"5432","startScript":"service postgresql start && su - postgres -c \"psql root -h 0.0.0.0 -d yesql -f /usercode/factbook.sql && python3 /usercode/factbook-month.py 2017 2\"","jobType":"Live","forceRelaunchOnRun":true,"forceRelaunchOnCompChange":true,"runInLiveContainer":true},{"key":"A5qQc47NGvDDF9Vc5MOzU","name":"pg-7.2.2","inputFileName":"foo","runScript":"ls","ports":"8000","startScript":"diff /usercode/diff-a.java /usercode/diff-b.java","jobType":"Live","https":false,"forceRelaunchOnRun":true,"runInLiveContainer":true},{"key":"97AGynOmRuNFudHfjzUlh","name":"pg-tweet","inputFileName":"foo","runScript":"ls\n","ports":"5432","startScript":"service postgresql start && su - postgres -c \"psql postgres -h 0.0.0.0 -d f1db -f /usercode/main.sql\" && clear","jobType":"Live","forceRelaunchOnRun":true,"forceRelaunchOnCompChange":true,"runInLiveContainer":true},{"key":"5w0_yOfGbRRdjoaYPEohv","name":"pg-5.4","inputFileName":"foo","runScript":"ls","ports":"5432","startScript":"cp -r /usercode/*.sql /usercode/reg_test && cd ~/go/bin && mkdir regres && cp -r /usercode/reg_test/* ~/go/bin/regres && service postgresql start && ./regresql init postgresql://postgres@localhost:5432/chinook?password=password123 -C ./regres && cd regres && ../regresql update && cp -r /usercode/y_reg_test/* regresql/plans","jobType":"Live","forceRelaunchOnRun":true,"forceRelaunchOnCompChange":true,"runInLiveContainer":true},{"key":"lS2aCvxRoEJX8U-jCj9HN","name":"pg-7.4.1","inputFileName":"foo","runScript":"ls\n","ports":"5432","startScript":"service postgresql start && su - postgres -c \"psql postgres -h 0.0.0.0 -d f1db -f /usercode/f1db.notfinishers.sql\"","jobType":"Live","forceRelaunchOnRun":true,"forceRelaunchOnCompChange":true,"runInLiveContainer":true},{"key":"L2xAFwwdZEUimIjd-xoTL","name":"pg-8.1.1","inputFileName":"foo","runScript":"ls","ports":"5432","startScript":"service postgresql start && su - postgres -c \"psql postgres -h 0.0.0.0 -d f1db -f /usercode/inquiry.sql\"","jobType":"Live","forceRelaunchOnRun":true,"forceRelaunchOnCompChange":true,"runInLiveContainer":true},{"key":"fVsQgk_lH4VFG5BuDnw0n","name":"pg-8.2.1","inputFileName":"foo","runScript":"ls","ports":"5432","startScript":"service postgresql start && su - postgres -c \"psql postgres -h 0.0.0.0 -d f1db -f /usercode/f1db.decade.top3.sql\"","jobType":"Live","forceRelaunchOnRun":true,"forceRelaunchOnCompChange":true,"runInLiveContainer":true},{"key":"og6FWTBsFwdywsnmTJAtg","name":"pg-8.4.1","inputFileName":"foo","runScript":"ls","ports":"5432","startScript":"service postgresql start && su - postgres -c \"psql postgres -h 0.0.0.0 -d f1db -f /usercode/f1db.races.whynotfinished.sql\"","jobType":"Live","forceRelaunchOnRun":true,"forceRelaunchOnCompChange":true,"runInLiveContainer":true},{"key":"2k50U5zHTto9seFOSUvD7","name":"pg-5.3","inputFileName":"foo","runScript":"cp -r /usercode/*.test.sql /usercode/tests","ports":"5432","startScript":"service postgresql start && cp -r /usercode/*.test.sql /usercode/tests","jobType":"Live","forceRelaunchOnRun":true,"forceRelaunchOnCompChange":true,"runInLiveContainer":true},{"key":"NhKx3rEdFGWeFxF2SvmYI","name":"sbcl-start","inputFileName":"foo","runScript":"ls","ports":"8000","startScript":"sbcl --load /usercode/print-readably.lisp","jobType":"Live","forceRelaunchOnRun":true,"forceRelaunchOnCompChange":true,"runInLiveContainer":true},{"key":"HmCltVAgbptzF-QTOuGJg","name":"pg-13.3","inputFileName":"foo","runScript":"ls","ports":"5432","startScript":"service postgresql start && su - postgres -c \"psql postgres -h 0.0.0.0 -d opendata -f /usercode/archives-de-la-planete.sql\"","jobType":"Live","forceRelaunchOnRun":true,"forceRelaunchOnCompChange":true,"runInLiveContainer":true},{"key":"_9Ldgg3AaaAB7VPOaE-fi","name":"pg-hello.sql","inputFileName":"foo","runScript":"ls\n","ports":"5432","startScript":"service postgresql start && su - postgres -c \"psql postgres -h 0.0.0.0 -d yesql -f /usercode/hello.sql\" && su - postgres -c \"psql postgres -h 0.0.0.0 -d yesql\"","jobType":"Live","forceRelaunchOnRun":true,"forceRelaunchOnCompChange":true,"runInLiveContainer":true},{"key":"--6FvcZ1MlCLP5ECnCbrk","name":"tweets","inputFileName":"foo","runScript":"ls","ports":"5432","startScript":"service postgresql start && cp /usr/local/educative/data/hashtag/tweets.csv /usr/local/educative/data/geonames/admin2Codes.txt /usercode && su - postgres -c \"psql postgres -h 0.0.0.0 -d opendata -f /usercode/main.sql\" && clear","jobType":"Live","forceRelaunchOnRun":true,"forceRelaunchOnCompChange":true,"runInLiveContainer":true},{"key":"iwflwWdUdxZx2yTYlgmah","name":"pg-mydb-main","inputFileName":"foo","runScript":"ls\n","ports":"5432","startScript":"service postgresql start && su - postgres -c \"psql postgres -h 0.0.0.0 -d mydb -f /usercode/main.sql\" && clear","jobType":"Live","forceRelaunchOnRun":true,"forceRelaunchOnCompChange":true,"runInLiveContainer":true},{"key":"cnuBNV9W0VW66SnBd8ksH","name":"pg-opendata-main","inputFileName":"foo","runScript":"ls\n","ports":"5432","startScript":"service postgresql start && su - postgres -c \"psql postgres -h 0.0.0.0 -d opendata -f /usercode/main.sql\" && clear","jobType":"Live","forceRelaunchOnRun":true,"forceRelaunchOnCompChange":true,"runInLiveContainer":true},{"key":"1lDOnXdbiGU_lAxZCt0zr","name":"pg-geonames-main","inputFileName":"foo","runScript":"ls\n","ports":"5432","startScript":"service postgresql start && cp /usr/local/educative/data/hashtag/tweets.csv /usr/local/educative/data/geonames/admin2Codes.txt /usercode && su - postgres -c \"psql postgres -h 0.0.0.0 -d geonames -f /usercode/main.sql\" && clear","jobType":"Live","forceRelaunchOnRun":true,"forceRelaunchOnCompChange":true,"runInLiveContainer":true},{"key":"UxMeCogvIzqDw-qJDbEBH","name":"pg-geonames-country","inputFileName":"foo","runScript":"ls\n","ports":"5432","startScript":"service postgresql start && cp -r /usr/local/educative/data/geonames/allCountries.sample.copy /usercode && su - postgres -c \"psql postgres -h 0.0.0.0 -d geonames\"","jobType":"Live","forceRelaunchOnRun":true,"forceRelaunchOnCompChange":true,"runInLiveContainer":true},{"key":"JVppz2wiyIME_uoh_uZGz","name":"pg-magic","inputFileName":"foo","runScript":"ls\n","ports":"5432","startScript":"service postgresql start && cp -r /usr/local/educative/data/magic/MagicAllSets.json /usercode && clear","jobType":"Live","forceRelaunchOnRun":true,"forceRelaunchOnCompChange":true,"runInLiveContainer":true},{"key":"zAj7WCMRVrhtzMjT7VXP1","name":"pg-tweets","inputFileName":"foo","runScript":"ls\n","ports":"5432","startScript":"service postgresql start && cp /usr/local/educative/data/hashtag/tweets.csv /usercode","jobType":"Live","forceRelaunchOnRun":true,"forceRelaunchOnCompChange":true,"runInLiveContainer":true},{"key":"JpAVR3mywcita9_bsi5Tr","name":"pg-artists","inputFileName":"foo","runScript":"ls\n","ports":"5432","startScript":"service postgresql start && cp -r /usr/local/educative/data/MoMA/artists /usercode","jobType":"Live","forceRelaunchOnRun":true,"forceRelaunchOnCompChange":true,"runInLiveContainer":true},{"key":"CVXfbUetZYkgtI_K8Fk29","name":"pg-artists-main","inputFileName":"foo","runScript":"ls\n","ports":"5432","startScript":"service postgresql start && cp -r /usr/local/educative/data/MoMA/artists /usercode && su - postgres -c \"psql postgres -h 0.0.0.0 -d opendata -f /usercode/main.sql\" && clear\n","jobType":"Live","forceRelaunchOnRun":true,"forceRelaunchOnCompChange":true,"runInLiveContainer":true},{"key":"8uG8HDxHlb3ExkxR3Z9Ml","name":"pg-lastfm","inputFileName":"foo","runScript":"ls\n","ports":"5432","startScript":"service postgresql start && su - postgres -c \"psql postgres -h 0.0.0.0 -d lastfm\"","jobType":"Live","forceRelaunchOnRun":true,"forceRelaunchOnCompChange":true,"runInLiveContainer":true},{"key":"PFxF0oH2udiby8-4P5dpP","name":"pg-lastfm-main","inputFileName":"foo","runScript":"ls\n","ports":"5432","startScript":"service postgresql start && su - postgres -c \"psql postgres -h 0.0.0.0 -d lastfm -f /usercode/main.sql\" && clear","jobType":"Live","forceRelaunchOnRun":true,"forceRelaunchOnCompChange":true,"runInLiveContainer":true},{"key":"LeQoGUTymXp4dBJBePLAM","name":"pg-tweets-main","inputFileName":"foo","runScript":"ls\n","ports":"5432","startScript":"service postgresql start && cp /usr/local/educative/data/hashtag/tweets.csv /usercode && su - postgres -c \"psql postgres -h 0.0.0.0 -d tweets -f /usercode/main.sql\" && clear","jobType":"Live","forceRelaunchOnRun":true,"forceRelaunchOnCompChange":true,"runInLiveContainer":true},{"key":"rcGC3nquLRYpVV50Ky9_l","name":"pg-tweets-main-con","inputFileName":"foo","runScript":"ls\n","ports":"5432","startScript":"service postgresql start && cp /usr/local/educative/data/hashtag/tweets.csv /usercode && su - postgres -c \"psql postgres -h 0.0.0.0 -d tweets -f /usercode/main.sql\" && cp /usr/local/educative/data/Makefile /usercode && clear","jobType":"Live","forceRelaunchOnRun":true,"forceRelaunchOnCompChange":true,"runInLiveContainer":true},{"key":"iSZrcr-H6Af4IUKtI9nZC","name":"pg-yesql-main","inputFileName":"foo","runScript":"ls\n","ports":"5432","startScript":"service postgresql start && su - postgres -c \"psql postgres -h 0.0.0.0 -d yesql -f /usercode/main.sql\" && clear","jobType":"Live","forceRelaunchOnRun":true,"forceRelaunchOnCompChange":true,"runInLiveContainer":true},{"key":"0AFtXDxaxgP370sVM5VQZ","name":"pg-ch2","inputFileName":"foo","runScript":"su - postgres -c \"psql postgres -h 0.0.0.0 -d chinook -f /usercode/album-size.sql\"","ports":"5432","startScript":"service postgresql start && su - postgres -c \"psql postgres -h 0.0.0.0 -d chinook -f /usercode/album-size.sql\"","jobType":"Live","forceRelaunchOnRun":true,"forceRelaunchOnCompChange":true,"runInLiveContainer":true},{"key":"HPyVlgao1ubwK5ewzu5Bu","name":"pg-ch3","inputFileName":"foo","runScript":"su - postgres -c \"psql postgres -h 0.0.0.0 -d mydb -c 'CREATE TABLE Foo (id integer);'\"","ports":"5432","startScript":"service postgresql start && su - postgres -c \"psql postgres -h 0.0.0.0 -d mydb -c 'CREATE TABLE Foo (id integer);'\"","jobType":"Live","forceRelaunchOnRun":true,"forceRelaunchOnCompChange":true,"runInLiveContainer":true},{"key":"kq0_expQBGEUMyKskrQoe","name":"pg-ch-manage-output","inputFileName":"foo","runScript":"su - postgres -c \"psql postgres -h 0.0.0.0 -d chinook -f /usercode/album-size-limit.sql\"","ports":"5432","startScript":"service postgresql start && su - postgres -c \"psql postgres -h 0.0.0.0 -d chinook -f /usercode/album-size-limit.sql\"","jobType":"Live","forceRelaunchOnRun":true,"forceRelaunchOnCompChange":true,"runInLiveContainer":true},{"key":"20puFmTqPfSpJK5znevvJ","name":"pg-ch-wf","inputFileName":"foo","runScript":"su - postgres -c \"psql postgres -h 0.0.0.0 -d f1db -f /usercode/partition.sql\"","ports":"5432","startScript":"service postgresql start && su - postgres -c \"psql postgres -h 0.0.0.0 -d f1db -f /usercode/partition.sql\"","jobType":"Live","forceRelaunchOnRun":true,"forceRelaunchOnCompChange":true,"runInLiveContainer":true},{"key":"DqzI3E9_1Xt_uHEJCOhm4","name":"pgstart-copy","inputFileName":"main.sql","runScript":"service postgresql start 2>&1 >> /dev/null && su - postgres -c \"psql postgres -h 0.0.0.0 -d f1db -f /usercode/main.sql\"","ports":"5432","startScript":"service postgresql start && su - postgres -c \"psql postgres -h 0.0.0.0 -d f1db -f /usercode/main.sql\"","jobType":"Default","forceRelaunchOnRun":true,"forceRelaunchOnCompChange":true,"runInLiveContainer":false},{"key":"TSPKvUuqbBR_hp0Su-LQ0","name":"pgstart-copy-copy","inputFileName":"main.sql","runScript":"service postgresql start 2>&1 >> /dev/null && psql -U postgres -d f1db -qAX --pset=footer off -f /usercode/main.sql","ports":"5432","startScript":"service postgresql start && su - postgres -c \"psql postgres -h 0.0.0.0 -d f1db -f /usercode/main.sql\"","jobType":"Default","forceRelaunchOnRun":true,"forceRelaunchOnCompChange":true,"runInLiveContainer":false},{"key":"RKvZhdQyq6qhxm68nsEKG","name":"pg-view","inputFileName":"foo","runScript":"su - postgres -c \"psql postgres -h 0.0.0.0 -d chinook -f /usercode/view.sql\"","ports":"5432","startScript":"service postgresql start && su - postgres -c \"psql postgres -h 0.0.0.0 -d chinook -f /usercode/view.sql\"","jobType":"Live","forceRelaunchOnRun":true,"forceRelaunchOnCompChange":true,"runInLiveContainer":true},{"key":"2GRly2DbHaXx5TUyJYZ-o","name":"pg-knn","inputFileName":"foo","runScript":"ls\n","ports":"5432","startScript":"service postgresql start && su - postgres -c \"psql postgres -h 0.0.0.0 -d f1db -f /usercode/knn.sql\"","jobType":"Live","forceRelaunchOnRun":true,"forceRelaunchOnCompChange":true,"runInLiveContainer":true},{"key":"Mj9RfoHtN7F3CYJtba2Ux","name":"pgstart-usercoder","inputFileName":"foo","runScript":"ls","ports":"5432","startScript":"service postgresql start && cd usercode","jobType":"Live","forceRelaunchOnRun":true,"forceRelaunchOnCompChange":true,"runInLiveContainer":true}],"testRunners":[],"version":3,"loaded":true},"discounted_price":null,"cover_image_id":5442006116728832,"cover_image_metadata":"{\"width\":1024,\"height\":512,\"sizeInBytes\":56775,\"name\":\"The Art of PostgreSQL.png\"}","cover_image_serving_url":"/v2api/collection/10370001/5247805802676224/image/5442006116728832","tags":["PostgreSQL Extensions","PostgreSQL","Relational databases","SQL Tools","Data Modeling"],"intro_video_url":"","intro_video_thumbnail_url":"","aggregated_widget_stats":{"projects":0,"MarkdownEditor":1087,"codeExerciseCount":0,"codeRunnableCount":186,"codeSnippetCount":885,"illustrations":127,"Columns":0,"MxGraphWidget":118,"Code":692,"WebpackBin":107,"TerminalWidget":14,"assessments":0,"SlateHTML":73,"EditorCode":0,"CanvasAnimation":2,"Quiz":13,"SpoilerEditor":7,"DrawIOWidget":1,"Table":1,"cloudlabs":0},"default_themes":{"code_themes":{"Code":"default","Markdown":"default","RunJS":"default","SPA":"default","isForced":{"Code":false,"Markdown":false,"RunJS":false,"SPA":false}}},"api_keys":{"api_keys":[]},"skills":[],"testimonials":[],"licensing":null,"target_audience":"advanced","author_id":"10370001","collection_id":"5247805802676224","approval_status":3005,"price":29,"is_private":false,"path_type":"regular","organization_id":null,"is_mini":false,"is_priced":true,"brief_summary":"Gain insights into PostgreSQL's robust features and high performance. Learn about SQL integration, data types, and extensions with hands-on code examples for practical application.","approval_update_time":"2023-08-23T07:32:18.275Z","rating_visibility":true,"update_last_published_on_homepage":true,"show_developed_by":true,"udata_files":[],"CodeThemes":{"Code":"default","Markdown":"default","RunJS":"default","SPA":"default","isForced":{"Code":false,"Markdown":false,"RunJS":false,"SPA":false}},"is_marked_for_deletion":false,"transition_page_title":"","is_redirectable":false,"collection_type":"collection","adaptive_learning_mode":false,"HLOs_to_toc":{},"is_guide":false,"read_time":234000,"allow_logged_out_executions":false,"unique_live_widget_urls":false,"metadata_status":101,"palified_version":null},"pageSummarySSR":{"title":"A Word About SQL Injection","description":"Explore how SQL injection vulnerabilities occur and understand PostgreSQL's protocol-level mechanisms that separate query text from parameters to prevent them. Learn best practices for using application drivers like psycopg to securely handle SQL queries without risking injection.","discourse_page_url":"https://discuss.educative.io/tag/a-word-about-sql-injection__part-ii-introduction-to-structured-query-language__the-art-of-postgresql?open=true&ctag=the-art-of-postgresql__dimitri-fontaine&cslug=the-art-of-postgresql&pslug=a-word-about-sql-injection"},"adaptiveLearningConfigConstantSSR":0,"enableLessonPageLockedBannerV2":true,"allowAllLessonPreview":false,"lockedBannerStatsSSR":{"b2cTrialStats":{"is_b2c_trial_active":true,"b2c_trial_active_duration":21,"b2c_trial_categories":"$a9"},"b2cStatus":100,"learnerTags":"$aa","workStats":1640,"interviewWorksStats":104,"inL2cStarterPack":false,"l2cWorkStats":46,"enableL2cStarterPackPaymentWidget":"false"},"pageTocSSR":"

","authorId":"10370001","collectionId":"5247805802676224","pageId":"5424990534500352","isCollectionPageLockedCachingEnabled":true,"aceFeatureFlags":{"enableAceEditor":true,"enableAceEditorForAnswers":true},"serverConfigConstants":{"enable_notepad_prompt_ai":"$undefined"},"codeFeatureFlags":{"enableCodeCodeTabRedesign":"3"},"meta":{"type":["Article","TechArticle"],"title":"Understanding SQL Injection Prevention in PostgreSQL","name":"The Art of PostgreSQL","description":"Learn how PostgreSQL prevents SQL injection attacks using protocol-level features and best practices for safe query parameter handling.","image":"https://educative.io/api/collection/10370001/5247805802676224/image/5442006116728832.png","isAccessibleForFree":false,"keywords":"$aa","provider":"Educative","publisher":"Educative","id":"courses/the-art-of-postgresql/a-word-about-sql-injection","author":"Educative","educationalLevel":"advanced","noIndex":true,"isForcedNoIndex":true,"noFollow":false,"redirectInfo":{"isDeletedCollectionPageRedirectable":false},"page_titles":{"5003855468691456":"Course Overview","5786415689891840":"Utilizing SQL","5371103542771712":"The First Use Case","5424990534500352":"A Word About SQL Injection","6458787635920896":"Back to Discovering SQL","6425424111861760":"Architecture Required","5125270285058048":"Introduction to Writing SQL Queries","5270959266725888":"Business Logic in the Database","6365557451915264":"Stored Procedures: A Data Access API","6174590908235776":"Correctness","6635466937335808":"Loading and Querying the Database","5881207815929856":"Python Application for Chinook Database","5915512676024320":"Getting Started with psql","6294374761103360":"SQL Style Guidelines","6120120568512512":"Query Rewriting and Validating","5114929643782144":"Regression Testing","6667306704306176":"Indexing Strategy","5400618709024768":"Index Access Methods","6298259907149824":"Advanced Indexing","6079712308232192":"Sub-languages of SQL","4830947937091584":"Anatomy of a Select Statement","6362074598342656":"Joins and Restrictions","4687781288214528":"Ordering with the Order By","6126598889144320":"Top-N Sorts: Limit and Pagination","6311796100562944":"Aggregates","5653031433011200":"Restrict Selected Groups: Having","4588841146515456":"Grouping Sets","4838160978149376":"Common Table Expressions","6245237697019904":"Result Sets Operations","4619738805698560":"Some Useful Commands","4980624573595648":"Business Logic in Application Code","6353619502235648":"Processing Function and Data Sources","5545573163204608":"Three-Valued Logic","5524958393925632":"Outer Joins Introduce Nulls","5038651511144448":"Null in Applications","6654117291753472":"PostgreSQL Protocol: Server-Side Prepared Statements","6400593576329216":"Efficiency","6460832690470912":"Windows and Frames","6511139642408960":"Partitioning into Different Frames","6498945190068224":"Using Window Functions","6550675420348416":"Understanding Relations","5598250651877376":"SQL Join Types","5770412905988096":"Serialization in SQL","5854300227502080":"Attribute Values, Data Domains, and Data Types","6316433272733696":"Consistency and Data Type Behavior","6667415047372800":"Some Relational Theory","4681581419036672":"Introduction to PostgreSQL Data Types","5997294117191680":"Boolean","5530640082010112":"Character and Text","6340173788348416":"Server Encoding and Client Encoding","6366555876622336":"Numbers","5724974165262336":"Sequences and the Serial Pseudo Data Type","6368364963823616":"UUID, Bytea, and Bitstring","6149456881254400":"Date/Time and Time Zones","6421152662028288":"Time Intervals","5980952932646912":"Date/Time Processing and Querying","6638086485704704":"Network Address Types","5714476971589632":"Ranges","4928633650544640":"Arrays","6199616613122048":"Composite Types","5753631051087872":"XML","6646779214299136":"JSON","6160697783746560":"Enum","4593935640428544":"GIN Indexing","6424609179566080":"PostgreSQL","4704466724454400":"Introduction to Data Modeling","4649961878192128":"Object Relational Mapping","6138606871117824":"Tooling for Database Modeling","5618483009683456":"Modeling Example","5420434182373376":"Writing a Database Model","5007673195495424":"Data Structures and Algorithms","6081312175161344":"Normal Forms and Anomalies","5923880249589760":"Normalization Example","6710565484888064":"Primary and Surrogate Keys","6154678068314112":"Constraints","5563657685041152":"Entity Attribute Values","5940485130027008":"Multiple Values per Column","6021262492565504":"UUIDs","5835763593248768":"Introduction to Denormalization","5228807572684800":"Premature Optimization and Functional Dependency Trade-Offs","6658080615432192":"Materialized Views","5446698679140352":"Denormalization with PostgreSQL","4525782495395840":"History Tables and Audit Trails","6382819416211456":"More About Denormalization","5911622614253568":"Partitioning","4775582524506112":"Denormalize with Care","6158881465565184":"Introduction to Not Only SQL","5365759416467456":"Loading the GeoNames","6497811596312576":"Features","6105001604939776":"Countries","4783233137115136":"Administrative Zoning","6633890386542592":"Geolocation","5098950143246336":"Indexing and Lookup","6716215044603904":"A Sampling of Countries","5887375242952704":"Schemaless Design in PostgreSQL","6431730588450816":"Durability Trade-Offs","6015347283197952":"Scaling Out","5415439807283200":"Introduction to Data Manipulation and Concurrency Control","5386725719539712":"Data Manipulation and Concurrency Control: Insert","4506115236954112":"Data Manipulation and Concurrency Control: Update","5929566636081152":"Data Manipulation and Concurrency Control: Delete","6134442548789248":"Updating the Data","5992367647883264":"Geolocation Data Loading","4999811644522496":"Introduction to Isolation and Locking","5533290354442240":"Transactions and Isolation","4741742494744576":"Concurrent Updates and Isolation","5513554711281664":"Modeling for Concurrency","5037748419559424":"Putting Concurrency to the Test","5414602338992128":"Introduction to Computing and Caching in SQL","6143427368714240":"Views","6733837178765312":"Materialized Views","4869032708931584":"Introduction to Triggers","6431877623971840":"Transactional Event-Driven Processing","4951147718901760":"Trigger and Counters Anti-Pattern","6152530551898112":"Fixing the Behavior","5958553991118848":"Introduction to Listen and Notify","4986327326261248":"PostgreSQL Event Publication System","6667359238750208":"Notifications and Cache Maintenance","6694546616614912":"Limitations and Support of Listen and Notify","5832952789598208":"Loading the Data","5471564913180672":"Concurrency Patterns and Conflict","4869422535933952":"Introduction to PostgreSQL Extensions","5929503142707200":"PostgreSQL Extensions","4781188204199936":"Inside PostgreSQL Extensions","6187852002230272":"Installing and Using PostgreSQL Extensions","4727915015307264":"The PostgreSQL extension: How to Find It","6155493718622208":"A Short List of Noteworthy Extensions","5917318186270720":"Introduction to hstore","4575511011655680":"Auditing Changes with a Trigger","5399222186934272":"Testing the Audit Trigger","4930738898337792":"From hstore Back to a Regular Record","6281442133016576":"Loading the Data","6367604973502464":"Discover the Data Model","5557736410710016":"The pg_trgm Extension","5689945033539584":"Trigrams, Similarity, and Searches","6384617045360640":"Trigram Indexing","5783204250517504":"Advanced Tag Indexing","5092574650171392":"Searches and User-Defined Tags","6253611508301824":"Loading the Data","5126995080118272":"Geolocating the Nearest Pub","6509853619257344":"Finding the Nearest Pub","6730718394974208":"Pubs and Cities","6157243246706688":"Finding an IP Address in the Ranges","6630051634479104":"Geolocation Metadata","5378860887834624":"Emergency Pub","5005563402649600":"Introduction to HyperLogLog","5831491854794752":"Counting Unique Tweet Visitors","6364413879910400":"Lossy Unique Count with hll","6443180400836608":"Getting the Visits into Unique Counts","5560099582246912":"Scheduling Estimates Computations","5867631831941120":"Complete and Suggest Song Titles","4539542103392256":"The Most Popular Pub Names","4978518282993664":"Quiz: SQL and Business Logic","5977961669066752":"Quiz: Loading Database, REPL, Testing, and Indexing","5487600152608768":"Quiz: Queries, Output of Queries, and Nulls in SQL","4584684747227136":"Quiz: Window Functions, Relations, and Joins","5292632964333568":"Quiz: Data Types and Data Modeling","5153677384089600":"Quiz: Normalization, GeoNames Database, and Anti-Patterns","6451778031976448":"Quiz: Data Manipulation, Concurrency, Isolation, and Caching","5011451454685184":"Quiz: Denormalization and NOSQL","5216646704922624":"Quiz: Triggers, Notifications Feature, and Batch Update","4880244733640704":"Quiz: Extensions and Auditing Changes","5607482823278592":"Quiz: Trigrams and Denormalizing Tags","4594330237140992":"Quiz: Geolocation and HyperLogLog","4887584362987520":"Computing Weekly Changes","4806469811961856":"Introduction to a Small Application ","4748529629396992":"Introduction to SQL Toolbox","5790019107422208":"PostgreSQL: Setup on the Local Machine","5154009344376832":"Introduction to SQL REPL","5336386641330176":"Challenge: Compute Fortnightly Changes","6200090538803200":"Solution Review: Compute Fortnightly Changes","5342113309130752":"Challenge: Implement Business Logic","5302959783280640":"Solution Review: Implement Business Logic","6308846090059776":"Challenge: Top-N Factbook Entries","5721633530839040":"Solution Review: Top-N Factbook Entries","4794580342145024":"Challenge: Testing in PostgreSQL","5527103456149504":"Solution Review: Testing in PostgreSQL","5931157571239936":"Challenge: Generating Series","4908968675901440":"Solution Review: Generating Series","6393942344204288":"Challenge: Managing the Output in SQL","5544274030755840":"Solution Review: Managing the Output in SQL","6358533627183104":"Challenge: Understanding Nulls","5131517238181888":"Solution Review: Understanding Nulls","4803945434447872":"Introduction to the Course","6469723032387584":"Introduction to Data Types","6057350337396736":"Introduction to Data Manipulation","5426311797669888":"Challenge: Generate Specific Numbers","4760213406351360":"Solution Review: Generate Specific Numbers","5780033165852672":"Introduction to Denormalized Data Types","6572811604983808":"Quiz: Introduction to PostgreSQL","4556120049057792":"Introduction to SQL","5150030643331072":"Challenge: Create a Histogram","5596325258461184":"Solution Review: Create a Histogram","6124636065759232":"Challenge: Data Manipulation","5264450216263680":"Solution Review: Data Manipulation","6349757950984192":"Challenge: Creating a View","4754473282174976":"Solution Review: Creating a View","5864617235709952":"Challenge: JSON Data Type","5846359900160000":"Solution Review: JSON Data Type","5638269934239744":"Challenge: Find the Words Similarity Score","5021674639720448":"Solution Review: Find the Words Similarity Score","4937173574090752":"Challenge: Search for the Nearest Circuits","4987829055913984":"Solution Review: Search for the Nearest Circuits","6679385987088384":"Challenge: Regression Testing in PostgreSQL","4825069215023104":"Solution Review: Regression Testing in PostgreSQL"},"is_marked_for_deletion":false,"transition_page_title":"","is_redirectable":false,"deleted_course_lesson_redirect":{"author_id":null,"collection_id":null,"page_id":null,"redirect_url_slug":null},"metadata_status":101,"additional_course_alternatives":[]},"requestUrl":"/courses/the-art-of-postgresql/a-word-about-sql-injection","requestUrlInfo":{"authorId":10370001,"collectionId":5247805802676224,"pageId":5424990534500352,"courseUrlSlug":"the-art-of-postgresql","pageUrlSlug":"a-word-about-sql-injection"},"isExternalContent":false}}],[["$","script",null,{"id":"generate-data","type":"application/ld+json","dangerouslySetInnerHTML":{"__html":"$ab"}}],false,"$undefined"]]