TerribleDev/ente
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Fix: Use parameterized query params

Browse Source
This commit is contained in:
Neeraj Gupta
2025-03-25 12:27:26 +05:30
parent b2766a0d4f
commit bcd6f55376
1 changed files with 4 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
mobile/lib/db/local/db.dart
View File

@@ -145,7 +145,8 @@ class LocalDB with SqlDbBase {
if (ids.isEmpty) return;
final stopwatch = Stopwatch()..start();
await _sqliteDB.execute(
'DELETE FROM assets WHERE id IN (${ids.join(',')})',
'DELETE FROM assets WHERE id IN (${List.filled(ids.length, "?").join(",")})',
ids.toList(),
);
debugPrint(
'$runtimeType deleteEntries complete in ${stopwatch.elapsed.inMilliseconds}ms for ${ids.length} assets entries',
@@ -156,7 +157,8 @@ class LocalDB with SqlDbBase {
if (pathIds.isEmpty) return;
final stopwatch = Stopwatch()..start();
await _sqliteDB.execute(
'DELETE FROM device_path WHERE path_id IN (${pathIds.join(',')})',
'DELETE FROM device_path WHERE path_id IN (${List.filled(pathIds.length, "?").join(",")})',
pathIds.toList(),
);
debugPrint(
'$runtimeType deleteEntries complete in ${stopwatch.elapsed.inMilliseconds}ms for ${pathIds.length} path entries',