Y
Hacker News
new
|
ask
|
show
|
jobs
by
aeronautic
3323 days ago
That is right. The key point is to reduce exposure to SQL injection by not formatting queries. Prepared statements help solve a whole class of bugs at a lower level.