commit f2fb96398614b8935fc42a9029e5c0eed6201433
author racitup <richard@casesolved.co.uk> Thu Jan 30 14:48:42 2020 +0000
committer Deepesh Garg <deepeshgarg6@gmail.com> Tue Feb 18 17:52:07 2020 +0530
tree 5d0f5a66e377a98f8f0ce415cd6846f04043296e
parent 805c3efa59a6444d801e530f813606a51c72ebbf

Ignore codacy SQL injection warning (internal code only) and add copyright notice

erpnext/patches/v12_0/rename_bank_reconciliation_fields.py

diff --git a/erpnext/patches/v12_0/rename_bank_reconciliation_fields.py b/erpnext/patches/v12_0/rename_bank_reconciliation_fields.py
index 8918b9d..01b1dde 100644
--- a/erpnext/patches/v12_0/rename_bank_reconciliation_fields.py
+++ b/erpnext/patches/v12_0/rename_bank_reconciliation_fields.py
@@ -1,9 +1,12 @@
+# Copyright (c) 2020, Frappe and Contributors
+# License: GNU General Public License v3. See license.txt
+
 import frappe
 
 def _rename_single_field(**kwargs):
-	count = frappe.db.sql("SELECT COUNT(*) FROM tabSingles WHERE doctype='{doctype}' AND field='{new_name}';".format(**kwargs))[0][0]
+	count = frappe.db.sql("SELECT COUNT(*) FROM tabSingles WHERE doctype='{doctype}' AND field='{new_name}';".format(**kwargs))[0][0] #nosec
 	if count == 0:
-		frappe.db.sql("UPDATE tabSingles SET field='{new_name}' WHERE doctype='{doctype}' AND field='{old_name}';".format(**kwargs))
+		frappe.db.sql("UPDATE tabSingles SET field='{new_name}' WHERE doctype='{doctype}' AND field='{old_name}';".format(**kwargs)) #nosec
 
 def execute():
 	BR  = "Bank Reconciliation"