bug: SQL semicolon check rejects semicolons inside string literals

## Summary

The `validateSQL` semicolon check uses a naive `strings.Contains(content, ";")` after stripping the trailing semicolon. This rejects valid queries containing semicolons inside string literals, e.g., `SELECT * FROM t WHERE name = 'foo;bar'`.

## Location

`validator/validator.go:377-378`

```go
content := strings.TrimSuffix(stripped, ";")
if strings.Contains(content, ";") {
```

## Impact

False positive — valid read-only queries with semicolons in string values are rejected. This is safe (fails closed) but overly conservative.

## Suggested Fix

Track quote state when scanning for internal semicolons, or reuse the `isInsideQuote` helper from the CTE validation logic.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

bug: SQL semicolon check rejects semicolons inside string literals #66

Summary

Location

Impact

Suggested Fix

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

bug: SQL semicolon check rejects semicolons inside string literals #66

Description

Summary

Location

Impact

Suggested Fix

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions