potoooooooo 🥔@lemmy.worldcake to Programmer Humor@programming.devEnglish · 26 days ago#NULL!lemmy.worldimagemessage-square93linkfedilinkarrow-up11.37Karrow-down111
arrow-up11.36Karrow-down1image#NULL!lemmy.worldpotoooooooo 🥔@lemmy.worldcake to Programmer Humor@programming.devEnglish · 26 days agomessage-square93linkfedilink
minus-squarejaybone@lemmy.ziplinkfedilinkEnglisharrow-up3·26 days agoI mean a prepared statement is still created with a string. But you definitely want to be using bind parameters with your prepared statements. Not only for security but also potentially performance improvements.
I mean a prepared statement is still created with a string.
But you definitely want to be using bind parameters with your prepared statements. Not only for security but also potentially performance improvements.