fix: Code cleanup
diff --git a/erpnext/accounts/doctype/sales_invoice/pos.py b/erpnext/accounts/doctype/sales_invoice/pos.py
index 7348e1f..287da08 100755
--- a/erpnext/accounts/doctype/sales_invoice/pos.py
+++ b/erpnext/accounts/doctype/sales_invoice/pos.py
@@ -250,10 +250,12 @@
cond = "1=1"
if pos_profile.get('update_stock') and pos_profile.get('warehouse'):
- cond = "warehouse = '{0}'".format(pos_profile.get('warehouse'))
+ cond = "warehouse = %(warehouse)s"
- serial_nos = frappe.db.sql("""select name, warehouse, item_code from `tabSerial No` where {0}
- and company = %(company)s """.format(cond), {'company': company}, as_dict=1)
+ serial_nos = frappe.db.sql("""select name, warehouse, item_code
+ from `tabSerial No` where {0} and company = %(company)s """.format(cond),{
+ 'company': company, 'warehouse': frappe.db.escape(pos_profile.get('warehouse'))
+ }, as_dict=1)
itemwise_serial_no = {}
for sn in serial_nos: