lance-format/lance

Parametrize SQL strings

Open

#2,160 opened on Apr 6, 2024

View on GitHub
 (2 comments) (0 reactions) (1 assignee)Rust (695 forks)github user discovery
enhancementgood first issuerust

Repository metrics

Stars
 (6,582 stars)
PR merge metrics
 (Avg merge 6d 1h) (219 merged PRs in 30d)

Description

So users can support potentially untrustworthy inputs, support something like:

.where("id = :id", id = potentially_untrustworthy_string)

Can use placeholders: https://docs.rs/sqlparser/latest/sqlparser/ast/enum.Value.html#variant.Placeholder

And then fill in from there.

Contributor guide