lib/pghero/methods/users.rb in pghero-2.5.1 vs lib/pghero/methods/users.rb in pghero-2.6.0

@@ -1,8 +1,10 @@
 module PgHero
   module Methods
     module Users
+      # documented as unsafe to pass user input
+      # TODO quote in 3.0, but still not officially supported
       def create_user(user, password: nil, schema: "public", database: nil, readonly: false, tables: nil)
         password ||= random_password
         database ||= connection_model.connection_config[:database]
 
         commands =
@@ -37,9 +39,11 @@
         end
 
         {password: password}
       end
 
+      # documented as unsafe to pass user input
+      # TODO quote in 3.0, but still not officially supported
       def drop_user(user, schema: "public", database: nil)
         database ||= connection_model.connection_config[:database]
 
         # thanks shiftb
         commands =