this post was submitted on 21 Jun 2023
728 points (96.9% liked)

Programmer Humor

32000 readers
688 users here now

Post funny things about programming here! (Or just rant about your favourite programming language.)

Rules:

founded 5 years ago
MODERATORS
[email protected]
[email protected]
728
LMAO THEY GOT BUSTED (lemmy.ml)
submitted 1 year ago by [email protected] to c/[email protected]
96 comments fedilink hide all child comments
 
you are viewing a single comment's thread
view the rest of the comments
[โ€“] [email protected] 21 points 1 year ago (1 children)

They should use parameterized queries, not sanitization.

[โ€“] 3rdBlueWizard 2 points 1 year ago

Technically, a parameterized query is just doing sanitization for you. Or does escaping not count as sanitizing?

Although nothing wrong with sanitizing yourself then using parameterized queries. Never know if the API has a bug.