Skip to content

Sanitize HTML input characters to prevent note insert error#2

Open
dolczykk wants to merge 1 commit intolysrt:masterfrom
dolczykk:fix/sanitize-html-input
Open

Sanitize HTML input characters to prevent note insert error#2
dolczykk wants to merge 1 commit intolysrt:masterfrom
dolczykk:fix/sanitize-html-input

Conversation

@dolczykk
Copy link

@dolczykk dolczykk commented Jan 26, 2024
edited
Loading

When I'm trying to insert a string with quotes or apostrophes like this <b>Invariant in Hoare's method</b> the SQL insert query crashes on these. So I wrote an HTML sanitizer to fix SQL query to be executed correctly and keep the original message format

@jonnydee
Copy link

jonnydee commented Oct 31, 2024

I also fixed this issue in #3.

However, the fix I implemented uses SQL parameters which makes sanitizing the values inserted into the database obsolete and is the recommended approach anyway.

@somegenericdev somegenericdev mentioned this pull request Jan 24, 2025
Open
@somegenericdev
Copy link

somegenericdev commented Mar 2, 2025
edited
Loading

Since the maintainers don't seem to be very active at the moment I've uploaded a package containing @MRmlik12 's fix to NuGet Gallery for ease of use.

This way anyone looking for a quick way to script something with Anki.NET can get up and running easily without having to pull an entire project into their solution.

https://www.nuget.org/packages/SomeGenericDev.Anki.NET/2.0.1

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@dolczykk @jonnydee @somegenericdev