Hacker News new | ask | show | jobs
by Sean1708 2307 days ago
The article refers to that as escaping output rather than sanitising input:

> And of course use your SQL engine’s parameterized query features so it properly escapes variables when building SQL: