← Back to Payloads
Security2026-04-29

Preventing SQL Injection: Parameterized Queries as a First-Class Skill

Stop SQL injection at the source — this skill gives AI agents the patterns to use $queryRaw and parameterized queries correctly, making injection a design-time impossibility, not a runtime detection problem.
Quick Access
Install command
$ mrt install security
Browse related skills
View in Registry
Preventing SQL Injection: Parameterized Queries as a First-Class Skill

TL;DR

SQL injection remains the #1 web vulnerability because AI agents (like humans) still write string-concatenated queries. This skill enforces parameterized query patterns — $queryRaw in Prisma, prepared statements in raw SQL — making injection structurally impossible, not just detectable.

Bottom line: Inject this skill into your agent's defaults and watch SQL injection vulnerabilities drop to zero. No runtime scanners needed when the pattern itself is safe.

10-Second Pitch

  • Pattern enforcement — Teaches $queryRaw tagged templates, not raw string concat
  • Prisma-native — Works with Prisma ORM's safe query builder
  • Auto-fix suggestions — When an agent writes a dangerous query, it gets corrected
  • Audit output — Shows which queries were verified safe vs. flagged
  • Framework-agnostic core — Safe patterns apply to any SQL database

Setup Directions

Step 1 — Configure Prisma Safe Query Rules

```javascript // prisma.safe.js — Add to your Prisma client config import { PrismaClient } from '@prisma/client';

const prisma = new PrismaClient({ log: ['query', 'error'], });

// Extend client with safe query helpers prisma.$safeQuery = (template, ...params) => { // Enforce parameterized queries only if (template.includes('\${')) { throw new Error('Unsafe: Use $queryRaw with tagged template only'); } return prisma.$queryRaw(template, ...params); }; ```

Step 2 — Configure the Skill

json { "enforce_parameterized": true, "allowed_engines": ["prisma", "postgres", "mysql"], "denylist_patterns": [ "string concatenation with +", "template literals with user input in \${", "f-string style injection" ] }

Pros / Cons

ProsCons
Makes injection structurally impossibleDeveloper education still needed for edge cases
Zero runtime overhead vs. runtime WAF approachesSome legitimate dynamic queries need extra care
Works with existing codebasesRequires ongoing monitoring for new query patterns
AI-native — agents get it right by defaultFramework-specific patterns may not transfer

Verdict & Sign-Off

SQL injection is a solved problem — the solution is parameterized queries. The issue is enforcement. This skill makes safe queries the default path for your AI agents, not the exception after a security review.

#security#sql-injection#database#prisma#backend
Related Dispatches
security
MS Open Source Tools Hacked , Cursor Sandbox Escape , Dashla
Read dispatch →
security
WANs Under Pressure , Security Plays Catch-Up , Least Privil
Read dispatch →
security
Buns Rust Rewrite , Remote Cache CDC , AWS Security Agent
Read dispatch →
Security
Obscura: The Rust-Powered Secret Manager Built for Agents Who Can't Afford to Leak Anything
Read dispatch →