Skip to content

DEV Community

Postgres Security Protocol Series' Articles

Back to Ofri Peretz's Series

Cover image for Your node-postgres Data Layer Fails 4 Ways in Production. SQL Injection Is Only the First.

Dec 31 '25

Your node-postgres Data Layer Fails 4 Ways in Production. SQL Injection Is Only the First.

#security #node #eslint #ai

7 min read

Cover image for node-postgres Will Happily Build a CVSS 9.8 SQL Injection For You. 13 ESLint Rules Say No.

Dec 31 '25

node-postgres Will Happily Build a CVSS 9.8 SQL Injection For You. 13 ESLint Rules Say No.

#eslint #security #node #ai

9 min read

Cover image for A Missing client.release() Exhausted Our Postgres Pool at 3 AM. The ESLint Rule That Catches It.

Dec 31 '25

A Missing client.release() Exhausted Our Postgres Pool at 3 AM. The ESLint Rule That Catches It.

#eslint #node #security #devsecops

9 min read

Cover image for BEGIN on a Postgres Pool Scatters Your Transaction Across Connections. One ESLint Rule Stops It.

Dec 31 '25

BEGIN on a Postgres Pool Scatters Your Transaction Across Connections. One ESLint Rule Stops It.

#eslint #node #ai #javascript

6 min read

Cover image for search_path Hijacking: the PostgreSQL Attack That Turns SELECT * FROM users Into the Attacker's Table

Jan 2

search_path Hijacking: the PostgreSQL Attack That Turns SELECT * FROM users Into the Attacker's Table

#security #node #postgres #ai

7 min read

Cover image for One INSERT Loop Made Our CSV Import 500x Slower. One ESLint Rule Catches It Before It Ships.

Jan 2

One INSERT Loop Made Our CSV Import 500x Slower. One ESLint Rule Catches It Before It Ships.

#node #performance #ai #eslint

7 min read

Cover image for PostgreSQL's COPY FROM Can Read /etc/passwd Into Your Database. One ESLint Rule Blocks It.

Jan 2

PostgreSQL's COPY FROM Can Read /etc/passwd Into Your Database. One ESLint Rule Blocks It.

#security #node #ai #devsecops

7 min read