re: Prevent SQL Injections VIEW POST

VIEW FULL DISCUSSION
 

No! Never sanatize your input! You will forget edge cases. Use prepared statements and nothing else (ORMs like ActiveRecords use prepared statements under the hood)

 

Thanks for the feedback! Could be a good note to add the pros and cons of sanitized strings.

code of conduct - report abuse