A Word About SQL Injection
Learn about SQL injection and how to write server-side prepared statements.
We'll cover the following...
An SQL injection is a security breach, one made famous by the “Exploits of a Mom” xkcd comic episode in which we read about Little Bobby Tables.
An SQL injection happens when the database server is mistakenly led to consider a dynamic argument of a query as part of the query text. PostgreSQL implements a protocol-level facility to send the static SQL query text separately from its dynamic arguments. Sending those parts as separate entities over the protocol means that ...