TODO allow any sql operations, maybe other serializer class for non select?
15 params = SqlParamsSerializers(required=False)
16
17 def validate_query(self, value):
18 # TODO allow any sql operations, maybe other serializer class for non select?19 # forbidden = ['insert', 'update', 'delete', 'grant', 'show']
20 # for i in range(len(forbidden)):
21 # forbidden.append('({}'.format(forbidden[i]))
Description
You have marked this block as FIXME
/XXX
/TODO
. Please make sure this is addressed, or remove this comment as this could be misleading.