Shiny provides no special protection from SQL injection attacks. Although many applications are designed to query and store data from a database, the Shiny framework does not provide direct connectivity to the database. It is the statistical programmer’s responsibility to ensure that they do not pass any text blocks into calls that can be sent to the database.
Have more questions? Submit a request