fix: sanitize name of dataset in pai.load

[scaliseraoul]

• All code checks passed.

---

Important

Sanitize dataset name in _load_schema() in loader.py to prevent SQL injection or invalid table names.

• Behavior:
  • Sanitize dataset name in _load_schema() in loader.py using sanitize_sql_table_name to prevent SQL injection or invalid table names.

^{This description was created by for 059533d. It will automatically update as commits are pushed.}

[ellipsis-dev]

❌ Changes requested. Reviewed everything up to 059533d in 37 seconds

More details

• Looked at 20 lines of code in 1 files
• Skipped 0 files when reviewing.
• Skipped posting 1 drafted comments based on config settings.

1. pandasai/data_loader/loader.py:82

• Draft comment:
  Ensure that sanitize_sql_table_name is robust and covers all potential SQL injection vectors. This is crucial for security when dealing with SQL-related operations.
• Reason this comment was not posted:
  Confidence changes required: 50%
  The PR introduces a sanitization step for the dataset name in the schema. This is a good security measure to prevent SQL injection or other issues related to unsanitized inputs. However, it's important to ensure that the sanitize_sql_table_name function is correctly implemented and covers all necessary cases.

Workflow ID: wflow_DGzktg6fVeOs9ma9

---

Want Ellipsis to fix these issues? Tag @ellipsis-dev in a comment. You can customize Ellipsis with 👍 / 👎 feedback, review rules, user-specific overrides, quiet mode, and more.

[ellipsis-dev]

Ensure that there is a corresponding unit test for the sanitize_sql_table_name function to verify that the dataset name is correctly sanitized in the schema.

[scaliseraoul]

Tests already defined in tests/unit_tests/helpers/test_sql_sanitizer.py

[gventuri]

@scaliseraoul maybe we could also add a test to enforce the name of the schema loaded from the loader is sanitized (like in this case)?