QuoteSQL
Duncan Booth
duncan.booth at invalid.invalid
Mon Sep 25 05:51:17 EDT 2006
Lawrence D'Oliveiro <ldo at geek-central.gen.new_zealand> wrote:
>> This could be an argument for having a utility function to escape the
>> wildcards for this sort of situation, but certainly not an argument for
>> his proposed QuoteSQL.
>
> Why not? That is exactly one of the options my QuoteSQL offers.
>
Yes, but your code also quotes non-wildcards, and that is precisely the
behaviour you don't want here as you should be using a parameterised
queries.
More information about the Python-list
mailing list