lidavidm commented on PR #1738: URL: https://github.com/apache/arrow-adbc/pull/1738#issuecomment-2071256515
> There's also the case that blindly adding quotes like we were doing isn't sufficient to prevent sql injection anyways and only served to create failure cases for the ingestion rather than potentially reasonable results (see [here](https://github.com/apache/arrow-adbc/issues/1721#issuecomment-2059353483)). I think this is purely because we were not actually applying the right quoting rules, and just assuming the Go quoting rules applied here (they do not) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
