/** * @fileoverview CWE-89: Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) * @module @nahisaho/musubix-security/rules/cwe/cwe-89-sql-injection * @trace TSK-RULE-005 * * Detects: * - String concatenation in SQL queries * - Template literals with user input in SQL * - Raw/unsafe query methods * - ORM bypass patterns * - Stored procedure injection * * CWE-89 is #3 in CWE Top 25 2023. */ import type { SecurityRule } from '../types.js'; /** * CWE-89 - SQL Injection */ export declare const cwe89SQLInjection: SecurityRule; export default cwe89SQLInjection; //# sourceMappingURL=cwe-89-sql-injection.d.ts.map