James W. Walker wrote:
Since SQL statements are passed to SQLite as C strings, it is also necessary to escape NUL characters. The sqlite_encode_binary function escapes single quotes and NULs.
Fair enough, though I'm not really sure if that's quite the same thing.
