SQL parameterization support

The rest SQL execution api doesn’t appear to support parameterization of the SQL. This may be security vulnerability as it allows for SQL injection attacks. Are there any plans to support parameterization of SQL?

Hey @swarren, this is on our radar, thanks for the +1. We’ll reach out once we have more info around timing.

1 Like

Does Dremio support parameterized SQL query, to avoid basic SQL injection vulnerability?

Best regards,