sql-injection

library 0.0.7 ·javascript deprecated

✓ verified Jun 5, 2026

Express middleware that detects SQL injection attempts in query strings, route parameters, and request bodies, responding with a 403 status code. Currently at version 0.0.7 (last updated in 2016). No recent updates; relies on simple regex patterns, which may have bypass vectors. Not recommended for production. No TypeScript types, ESM, or CJS dual support. Last commit 2017.