SQL injections are a serious matter, and one of the top ranking security threats for Web APIs. Magic solves this by automatically wrapping everything inside of SQL parameters for you, as illustrated in this article where I parametrise the [sqlite.select] slot with a [@genre] argument.
The "genre" argument in this article will in fact automatically be considered an SQL parameter, and hence guard you automatically against SQL injections without any extra effort required from your side ^_^
SQL injections are a serious matter, and one of the top ranking security threats for Web APIs. Magic solves this by automatically wrapping everything inside of SQL parameters for you, as illustrated in this article where I parametrise the [sqlite.select] slot with a [@genre] argument.
The "genre" argument in this article will in fact automatically be considered an SQL parameter, and hence guard you automatically against SQL injections without any extra effort required from your side ^_^
Your approach is smart
Thank you Mohsen :)