▲42SecurityMergeGuard reviewHighUnsanitized sort column enables SQL injectionOur AI reviewer flagged a REST endpoint that built ORDER BY from query params. The team assumed Prisma parameterized everything — but raw fragments bypassed that.#sql-injection#prisma#apimergeguard-demo·1h ago·0 comments