Lack of input sanitization or validation in SQL statement constructors

[Imran-imtiaz48]

The helper functions like create_table, insert_into, delete_from, and select_from accept any type that implements ToString and directly pass the resulting string to the underlying constructors (e.g., CreateTable::new(name)). However, there is no validation or sanitization of the input to ensure it conforms to SQL naming conventions or to prevent issues such as SQL injection (if later used in dynamic query construction). This could lead to runtime errors or security vulnerabilities if untrusted or malformed inputs are provided. Adding validation logic to enforce proper table or column name formats would enhance the robustness and safety of this API.