DB-API execute params, am I missing something?
Diez B. Roggisch
deets at nospam.web.de
Wed May 27 05:58:49 EDT 2009
Lawrence D'Oliveiro wrote:
> In message <mailman.766.1243354300.8015.python-list at python.org>, Dennis
> Lee Bieber wrote:
>
>> Notice that db.literal() call? That's part of the mechanism used to
>> escape and quote parameters -- it only returns strings that are safe for
>> insertion into the SQL statement.
>
> Does it deal with "like"-wildcards?
Why shouldn't it?
cursor.execute("select * from table where column like %s", "%name%")
Diez
More information about the Python-list
mailing list