- [ ] Sending mysql error messages to the client can leak info about the server etc... - [ ] Hard-coded credentials in `db/users.sql`, `db/burgerriza.sql`, and `config/connection.php`.
db/users.sql,db/burgerriza.sql, andconfig/connection.php.