Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

As some other replies noted, Postgres does not support that. Some drivers or ORMs do their own pre-processing on query text, and add their own support for that. E.g., in ActiveRecord, you can do:

    User.where("status = ?", "active").all
ActiveRecord itself sanitizes the input here and the query that's sent to Postgres does not use parameter markers at all.


Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: