Closed
Description
This library is by default insecure. By default you can select/filter on any column and the only way now to prevent that is by using the JSONB settings (which makes all column match in the selected JSONB column).
We should switch to default allowlist where the developer using the library sets allowed columns (with an option to select all).
Metadata
Metadata
Assignees
Labels
No labels