I want to pull data from a server at work. The security team will not allow me to query the database because they said doing so would expose the database to the risk of SQL Injection attack. The database is internal and behind firewalls. My authentication would be through active directory. My database access would be read only. I would use Power Query to import data into PowerPivot for further analysis. I would refresh the query every month to add data.
Is there really a risk of SQL Injection with read only access via Power Query? I am out of my depth.
Thanks,
Chuck