"A Chinese Language Teacher's API Security Check (2) : SQL Injection, XSS, Prompt Hijacking - All Prevented"
Hello everyone, I'm @xiaoqiangapi, the Chinese teacher who gives apis a "check-up".
[An article on] (HTTP: / /https://xiaoqiangapi.hashnode.dev/a-chinese-language-teacher-s-api-security-checkup-1-pas
xiaoqiangapi.hashnode.dev3 min read
xiaoqiangapi
Chinese teacher → indie maker. Running 3 LLMs. Sharing my build in public journey.
Not a security expert — just Postman and curl. Today's three injection tests (SQL, XSS, prompt hijacking) all passed. Next up: rate limiting, long inputs, and special characters. What's the weirdest injection attempt you've seen hit your own API or app? Curious how other builders handle this.