Fix example for S611 (#16316)

## Summary * Existing example did not include RawSQL() call like it should * Also clarify the example a bit to make it clearer that the code is not secure ## Test Plan N/A, only documentation updated
astral-sh · Feb 22, 2025 · aa88f2d · aa88f2d
1 parent 64effa4
commit aa88f2d
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/crates/ruff_linter/src/rules/flake8_bandit/rules/django_raw_sql.rs b/crates/ruff_linter/src/rules/flake8_bandit/rules/django_raw_sql.rs
@@ -18,7 +18,7 @@ use crate::checkers::ast::Checker;
 /// from django.db.models.expressions import RawSQL
 /// from django.contrib.auth.models import User
 ///
-/// User.objects.annotate(val=("%secure" % "nos", []))
+/// User.objects.annotate(val=RawSQL("%s" % input_param, []))
 /// ```
 ///
 /// ## References