Mairbek Khadikov
Reputation: 8089
Programmatically building SQL query
I’d like to automatically build up a SQL query based on some strings passed in by my users. Are there any helper methods for doing that in the Cloud Spanner APIs?
Upvotes: 0
Views: 154
Answers (1)
Mairbek Khadikov
Reputation: 8089
We strongly recommend that you not generate textual SQL based on untrusted user input. It’s much easier and safer to use bound parameters, which help you avoid SQL injection attacks.
Upvotes: 1
Related Questions
- GCP SPANNER: How to take count of records from multiple tables with single select statement
- How to use a sh variable in a gcp sql query command
- Google Cloud Spanner scripting similar to PL/SQL or T-SQL?
- Dynamic Query in Spanner
- Dynamic Query Builder in GCP Spanner
- Avoiding hash-join with IN clause and sub-query in Spanner
- Interpolating Query with Cloud Spanner in Node.js
- How to use spatial queries in google spanner
- Google Spanner multiple queries in one round trip
- Query a Array in google cloud spanner