Probably not, because as far as I'm aware, that's sanitised
I thought it was on write();?
Well, this code:
$this->$key = $value is executed well before it gets to write ... by executed I do not mean send to the DB.
But, like I said, don't blindly trust me 😄
I am wondering if you could end up with code being executed like this:
$this->nothing; do something bad here; where $key = 'nothing; do something bad here;'
something bad: print_r(file_get_contents('../../../.env'));
Anyone finding that invalid
@return types in doc blocks are breaking the PHP language server in VScode? I think the PHP documentor crashes on return types such as
I don't think I've noticed that, but I have noticed that the phpstan plugin gets very very very upset about things like that.
eg. return null <- phpstan: NULL IS NOT A STRING! 😠