@opengis/fastify-table/dist/server/plugins/policy/sqlInjection.js

core-plugins

/* eslint-disable no-script-url */
const sqlInjection = [
    '()',
    '^',
    '*',
    'like ',
    '@variable',
    '@@variable',
    'group by ',
    'union ',
    'select ',
    'having ',
    'as injectx',
    'where ',
    'rlike ',
    'if(',
    'sleep(',
    'waitfor delay',
    'benchmark(',
    'pg_sleep(',
    "'\\\"",
    'randomblob(',
    'order by ',
    'union all ',
    '+or',
    'or ',
    'and ',
    "'' ",
    '"""  ',
    '<script',
    'javascript:',
];
export default sqlInjection;