the reason? people don't read docs. deal with it. yeah, you can say later "it was your fault, read the docs", but you don't fix the problem.
I propose APIs that do not accept value literals anywhere in the query string, only as parameters.
-
-
So e.g. in https://docs.djangoproject.com/en/1.11/topics/db/sql/#executing-custom-sql-directly … the "foo = 1" would raise exception, you have to pass the 1 in the args? I agree, that is a good idea.
-
keep set of hashes of checked SQL strings, to not parse same string again, the parsing only happens once per custom SQL string per process.
End of conversation
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.