On Tue, Mar 29, 2011 at 7:29 PM, Andrew Hutchings <[email protected]> wrote: >> The syntax is similar, but there's no reason to use (or wait on) >> prepared statements to solve this safety issue. > > I would probably rather this as a separate PHP function personally,
The function name is not the important point. > since drizzle_query is already established and I think intended to be > similar to the MySQL functionality for minimal changes during > conversion. I'm personally not sure in the 3 seconds of thought I have > given it how to implement correctly it without the client side knowing > the data type. But feel free to work on this. PHP knows the type of vars passed. -- Olaf _______________________________________________ Mailing list: https://launchpad.net/~drizzle-discuss Post to : [email protected] Unsubscribe : https://launchpad.net/~drizzle-discuss More help : https://help.launchpad.net/ListHelp
