pgspot: PostgreSQL Extension Vulnerability Checker
pgspot is a powerful tool designed to identify security vulnerabilities in PostgreSQL extension scripts, ensuring adherence to best practices. It evaluates potential threats such as search_path-based attacks and unsafe object creation, making it an essential resource for developers aiming to secure their PostgreSQL applications.
Features
Checks PostgreSQL extension scripts for security best practices
Detects vulnerabilities like search_path-based attacks and unsafe object creation
Supports evaluation of SQL-accepting functions with custom arguments
Easy installation via pip with minimal requirements
Comprehensive documentation available for understanding vulnerabilities and mitigations
Repository Details
75
8
Updated: 11/29/2024
Languages
Python
Nix