Y
Hacker News
new
|
ask
|
show
|
jobs
by
ameliaquining
342 days ago
Parameterized statements don't actually abstract over escaping; they entirely obviate the need for it, by moving the untrusted data out of band.
1 comments
jagged-chisel
342 days ago
It’s the safest interface to your database query engine no matter how it does the job. That’s what matters.
link