Sequelize Tutorial: Episode 9 - SQL Injection and Raw Queries

In this Sequelize tutorial series we will learn everything there is to learn about Sequelize. In this video we will learn about raw queries and SQL injection. Specifically, we will learn how to defend against SQL injection using replacements and bind parameters.

👩‍💻 Download Code 👨‍💻
https://wittcode.com

🛜 Download My Chrome Extension 🛜
https://chromewebstore.google.com/det...

💻 Compare Laptop Specs 💻
https://laptopspectable.com

🔴 Rare Pokemon Cards ⚪️
https://rarepokemoncards.com

👻 90s Nostalgia 👻
https://goosebumpsforsale.com

⌛Timestamps⌛
0:00 - Introduction
0:09 - Sequelize Query() Function
2:43 - Dialect Affect on Results and Metadata
3:11 - Query() with Type SELECT
4:50 - Query() with Type UPDATE
5:49 - Returning Model Instances with Query()
6:54 - Returning One Model Instance with Plain
7:24 - Creating a Custom Logging Function for Query()
8:12 - What is SQL Injection?
8:56 - SQL Injection Demonstration
11:14 - Stopping SQL Injection with Replacements
12:54 - Other Ways to Pass Replacements to Query()
14:46 - Passing an Array to Replacements
15:37 - WildCard Operator with Replacements
17:00 - Stopping SQL Injection with Bind Parameters
18:45 - Passing Bind Parameters as an Object
19:41 - Some Important Notes on Bind Parameters
20:54 - Outro