swaroop wrote
> Hello all
>
> I am using cm instead of preparedstmts for faster inserts . But have a
> question on inserting
> values which have quotes in them (maybe single or double). Using
> preparedstmts, we know
> its safe to do so by calling setString. Is it possible to do the same here
> as i do not want
> to blindly single quote a string value in copyin.
>
> Basically i am looking for the same robustness of preparedstmt@setString
>
> Can i use functions like quote_literal ? Any help is very much
> appreciated.
>
> thanks
Copy data is literal. Since there is no interpretation of the data there is
no opportunity for injection.
You might want to provide an example as I'm not fully clear on exactly what
your need is.
David J.
--
View this message in context: http://postgresql.1045698.n5.nabble.com/copymanager-question-tp5817197p5817227.html
Sent from the PostgreSQL - general mailing list archive at Nabble.com.
