500 on automated security tests with null char in strings

[Amoki]

Some customers run automated tests on our services trying basic SQL injections and known OIDC implementation errors.

A few hundred requests contain null chars (\x00) in client_id, leading to a DatabaseError: PostgreSQL text fields cannot contain NUL (0x00) bytes. It leads to a lot of 500 error responses.

I want to open a PR but I'm asking for your advice first:
Should I sanitize params strings here https://github.com/juanifioren/django-oidc-provider/blob/master/oidc_provider/lib/endpoints/authorize.py#L85 ?

Or do you see it somewhere else?

Thanks!