Update SQL call to use params rather than RAW SQL string

warrenbuckley · warrenbuckley · commit d1f71dc86730 · 2026-01-15T13:44:37.000Z
diff --git a/src/Umbraco.Community.Sustainability/Services/PageMetricService.cs b/src/Umbraco.Community.Sustainability/Services/PageMetricService.cs
@@ -64,7 +64,7 @@ public async Task<AveragePageMetrics> GetAverageMetrics()
         public async Task<IEnumerable<PageMetric>> GetPageMetrics(Guid pageKey)
         {
             using var scope = _scopeProvider.CreateScope();
-            var queryResults = await scope.Database.FetchAsync<PageMetric>($"SELECT * FROM {PageMetric.TableName} WHERE NodeKey = {pageKey}");
+            var queryResults = await scope.Database.FetchAsync<PageMetric>("WHERE NodeKey = @0", args: [pageKey]);
             scope.Complete();
 
             return queryResults;

Original file line number	Diff line number	Diff line change
`@@ -64,7 +64,7 @@ public async Task<AveragePageMetrics> GetAverageMetrics()`
`64`	`64`	`public async Task<IEnumerable<PageMetric>> GetPageMetrics(Guid pageKey)`
`65`	`65`	`{`
`66`	`66`	`using var scope = _scopeProvider.CreateScope();`
`67`		`- var queryResults = await scope.Database.FetchAsync<PageMetric>($"SELECT * FROM {PageMetric.TableName} WHERE NodeKey = {pageKey}");`
	`67`	`+ var queryResults = await scope.Database.FetchAsync<PageMetric>("WHERE NodeKey = @0", args: [pageKey]);`
`68`	`68`	`scope.Complete();`
`69`	`69`
`70`	`70`	`return queryResults;`