Y
Hacker News
new
|
ask
|
show
|
jobs
by
skottk
879 days ago
Parameterized SQL is your friend here.
1 comments
mysterydip
879 days ago
Yeah, that's what's mapped in my head to "sanitizing input" in these cases, as it's the correct way to handle them. I should've unrolled my brain shortcut for the discussion.
link
dylan604
879 days ago
Before Parameterized SQL was a thing, sanitizing was the thing. There’s a lot of escape_string() type of methods out there.
link