data.csv

Support CSV Injection Escape Mechanisms

Details

  • Type: Enhancement Enhancement
  • Status: Open Open
  • Priority: Major Major
  • Resolution: Unresolved
  • Affects Version/s: None
  • Fix Version/s: None
  • Component/s: None
  • Labels:

Description

CSVs generated using clojure.csv is succeptible to injection attacks. It'd be a nice enhancement to have an option to apply this transformation on behalf of users.

For example:

(with-open [writer (io/writer "out-file.csv")]
(csv/write-csv writer
[["abc" "def"]
["ghi" "=jkl"]]))

See https://www.owasp.org/index.php/CSV_Injection

Activity

There are no comments yet on this issue.

People

Vote (0)
Watch (0)

Dates

  • Created:
    Updated: