fn_registry/python/functions/cybersecurity/detect_sql_injection.md

name, kind, lang, domain, version, purity, signature, description, tags, uses_functions, uses_types, returns, returns_optional, error_type, imports, params, output, tested, tests, test_file_path, file_path

name	kind	lang	domain	version	purity	signature	description	tags	uses_functions	uses_types	returns	returns_optional	error_type	imports	params	output	tested	tests	test_file_path	file_path
detect_sql_injection	function	py	cybersecurity	1.0.0	pure	def detect_sql_injection(input_str: str) -> tuple	Detecta patrones de SQL injection en un string. Retorna (is_threat, pattern) con el nombre del patron detectado.	sqli injection detection security python pendiente-usar				false		re	name desc input_str string a analizar en busca de patrones de SQL injection	tupla (is_threat, pattern) indicando si se detectó amenaza y el nombre del patrón	false			python/functions/cybersecurity/cybersecurity.py

Ejemplo

detect_sql_injection("' OR '1'='1")
# (True, "string_tautology")

detect_sql_injection("; DROP TABLE users")
# (True, "stacked_query")

detect_sql_injection("hello world")
# (False, "")

Notas

Detecta 10 patrones: sql_keyword, tautology, stacked_query, comment_injection, string_tautology, union_select, hex_literal, char_function, concat_function, time_based. No reemplaza un WAF pero es util para logging y alertas tempranas.