Consider replacing parser.parse_values
with generated parser
#548
Labels
api: spanner
Issues related to the googleapis/python-spanner-django API.
priority: p2
Moderately-important priority. Fix may not be included in next release.
security
type: cleanup
An internal cleanup or hygiene concern.
parser.py
includes a small handwritten parser for parsing SQL statements. We should consider replacing this with a formal grammar and generated parser, e.g. using ANTLR.Additionally, we may want to add fuzz testing for this parser -- and other places in the library where we're parsing SQL statements -- to check that we handle malicious statements correctly.
The text was updated successfully, but these errors were encountered: