properly escape noemail update to civicrm_stripe_customers table
Don't have a minute to fix it, but wanted to report this failure when upgrading:
{{{
[db_error: message="DB Error: syntax error" code=-2 mode=callback callback=CRM_Core_Error::exceptionHandler prefix="" info="UPDATE civicrm_stripe_customers
SET contact_id=
7811 WHERE email='sd'souza@xxxx.org' [nativecode=1064 ** You have an error in your SQL syntax; check the manual that corresponds to your MariaDB server version for the right syntax to
use near 'souza@indoamerican.org'' at line 1]"]
}}}
Yes, email addresses should not have apostrophes in them but also our code should properly escape to avoid an injection attack.