[go: up one dir, main page]
Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

The article refers to that as escaping output rather than sanitising input:

> And of course use your SQL engine’s parameterized query features so it properly escapes variables when building SQL:



Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: