← run

sec-sql-injection

1.000
2/2 tests· security

Proposed solution

```python
import sqlite3

def get_user(conn, username):
    cursor = conn.cursor()
    cursor.execute("SELECT * FROM users WHERE username=?", (username,))
    row = cursor.fetchone()
    return row
```