id	summary	reporter	owner	description	type	status	component	version	severity	resolution	keywords	cc	stage	has_patch	needs_docs	needs_tests	needs_better_patch	easy	ui_ux
10160	F expression literals should use bind parameters	Erin Kelly	nobody	To prevent SQL injection attacks, Python values used within F() expressions should be processed as bind parameters rather than be inserted directly into the SQL.		closed	Database layer (models, ORM)	dev		fixed			Unreviewed	1	0	0	0	0	0