It can be, but it is hardly the only solution to that problem. I've also seen it... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		bunderbunder on May 7, 2019 \| parent \| context \| favorite \| on: To ORM or Not to ORM It can be, but it is hardly the only solution to that problem. I've also seen it solved, for example, with a git commit hook that just bounced any non-parameterized queries.

d4mi3n on May 7, 2019 [–]

Oh certainly. Any good security is done in layers. A way to sanitize SQL, however you do it, is one of them.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact