Reviewed isn't
fixed.
Without Hyrax
this looks fine to me
LGTM
minor nit: rename this variable
Hyrax
CRITICAL
SQL injection in search query
src/api/search.ts:38
- "SELECT * FROM users WHERE name = '" + name + "'"
+ "SELECT * FROM users WHERE name = $1", [name]
▸ Fix shipped as a PR. Tests passing.
HYRAX
Find. Fix. Ship. Close.
hyrax.dev
HYRAX