This repository has been archived by the owner on Nov 9, 2021. It is now read-only.
-
Notifications
You must be signed in to change notification settings - Fork 231
Add support for parameterized queries #32
Comments
I just added pull request #34 for this functionality (initially compatible with node-postgres). |
Squel does support parameterized queries, using the I think I need to add a top-level section to the docs for parameterized queries to make this clearer to people. |
Well sure, you can do this:
But using my pull request you can do
which is much easier to read and maintain. |
👍 |
Version 2.0.0 now has the |
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
No amount of escaping will safe you from SQL injection attacks. Queries must be parameterized.
http://www.codinghorror.com/blog/2005/04/give-me-parameterized-sql-or-give-me-death.html
The text was updated successfully, but these errors were encountered: