sdk/golang/Standard Library/GoDatabaseSQL

GoDatabaseSQL

Alias reference: database/sql.Stmt. Prepared statement execution methods — safe when using ? placeholders, sink when mixing with string concatenation.

Other Methods

.Exec()Neutral

Signature

Exec(args ...any) (Result, error)

Executes prepared statement. Safe with parameterized args.

.Query()Neutral

Signature

Query(args ...any) (*Rows, error)

Executes parameterized query. Safe with ? placeholders.

.QueryRow()Neutral

Signature

QueryRow(args ...any) *Row

Executes parameterized single-row query. Safe with ? placeholders.

Fully-Qualified Names

FQN	Field
database/sql.Stmt	fqns[0]

Wrong FQN → 0 findings. Verify with: change fqns to garbage → must produce 0 results.

Import

go.mod

// standard library — no go.mod entry required

rule.py

from codepathfinder.go_rule import GoDatabaseSQL

← PreviousGoCryptoX509Pkix

Next →GoDatabaseSqlDriver