Does this method protect us against SQL injection?
Asked
Active
Viewed 27 times
1
-
Yes it did: https://api.rubyonrails.org/classes/ActiveRecord/ConnectionAdapters/Quoting.html#method-i-quote – Henry Yang Jul 29 '19 at 06:50
-
1Yes, it's prevent but make sure your query prevent SQL injection as well for reference please check http://gavinmiller.io/2015/fixing-sql-injection-vulnerabilities/ – Piyush Awasthi Jul 29 '19 at 06:56
1 Answers
0
Yes, it did. We can see the documentation for evidence: https://api.rubyonrails.org/classes/ActiveRecord/ConnectionAdapters/Quoting.html#method-i-quote
Henry Yang
- 2,283
- 3
- 21
- 38