The FBI and CISA have jointly issued a Secure By Design Alert urging technology manufacturers to address SQL injection vulnerabilities in software products. Despite two decades of awareness, manufacturers are still developing products with this defect, posing risks to customers. The guidance calls for a formal code review to identify and eliminate SQLi vulnerabilities.