/**
 * Checks if the user input is part of queries that execute JS code on the server.
 * If the user input is part of the query and not safely encapsulated, it's considered an injection.
 * Because strings are always encapsulated in quotes in JS, every non-encapsulated user input is an injection.
 */
export declare function detectDbJsInjection(userInput: string, filterPart: Record<string, unknown>): boolean;