home - board list - submit post login or create an account

memes');DROP TABLE posts;--

posted by oats at 1577571004.692345 to comp

that's a nice site you've got there

add a comment
c-x-berger at 1577662109.169299

Nice try, lol. I'm using asyncpg for everything SQL which means no manipulating queries as strings.

(It all gets passed as parameters of a message and the actual SQL server handles the "escaping" automatically.)