Best practices to sanitize/format input for sqlite?

BagTagBreakdown · December 9, 2021, 8:12pm

Hello, I am using expo-sqlite for all the data storage on my app. I am running into the problem where certain strings are breaking the database. While the orm on the server side does most of the formatting, when that same data gets to the expo-sqlite db, it breaks with “Error: unrecognized token” in response to common symbols like the apostrophe. So I am making this post to ask what are the best practices to move data in and out of the database? Are there any libraries that can do this and protect against certain attacks as well?

Thank you, John

BagTagBreakdown · December 9, 2021, 9:32pm

Unless I find a better way in the future, I’ve found that sqlstring-sqlite - npm works well if I apply it to whatever value I am to write.

system · December 29, 2021, 9:33pm

This topic was automatically closed 20 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Sqlite huge bug? Expo SDK	1	430	September 7, 2017
expo-sqlite not replacing placeholders. getting Error: near "?": syntax error Expo SDK sqlite	4	386	September 16, 2022
wrong character encoding sqlite Expo SDK	1	298	September 22, 2019
Having issues with expo-sqlite application when running on older android phones Expo SDK sqlite	1	219	March 19, 2023
SQLite gets resetted with Expo version upgrade Expo SDK	4	681	February 12, 2020

Best practices to sanitize/format input for sqlite?

Related Topics