Well,
If you don't have a content provider, you don't have to worry about this at
all. Since, you DB cannot be accessed by other applications.
And, for ContentProviders, there are well defined contracts for implementing
one. If you comply to these, then, it's pretty safe.
Kumar Bibek
http://techdroid.kbeanie.com
http://www.kbeanie.com
On Tue, Nov 23, 2010 at 11:03 AM, Kevin wrote:
> Does using the insert or update method of an SQLiteDatabase object
> offer any protection against SQL injection? Would I need to escape
> strings before inserting them with these functions?
>
> --
> You received this message because you are subscribed to the Google
> Groups "Android Developers" group.
> To post to this group, send email to android-developers@googlegroups.com
> To unsubscribe from this group, send email to
> android-developers+unsubscr...@googlegroups.com
> For more options, visit this group at
> http://groups.google.com/group/android-developers?hl=en
--
You received this message because you are subscribed to the Google
Groups "Android Developers" group.
To post to this group, send email to android-developers@googlegroups.com
To unsubscribe from this group, send email to
android-developers+unsubscr...@googlegroups.com
For more options, visit this group at
http://groups.google.com/group/android-developers?hl=en
