发表新帖
发表新帖

rawQuery Vs. database.query

后端 未结
关注
2 588
一整个雨季
一整个雨季 2020-12-11 01:47

Are their any advantages in using rawQuery over the Query Builder (or vice versa)?

Does the Query Builder, for example, protect again SQL Injection attacks (While no

相关标签:
2条回答
  • 醉酒成梦
    2020-12-11 02:21

    Readability is an advantage of the rawQuery. At least for me.

    As you know, according to the Pareto principle developer spend 80% of its time reading the code. Therefore the readability is a very strong argument.

    Though QueryBuilder also provides the way to use placeholders (protect from SQL injections).

    Hope that helps.

    0 讨论(0)
  • -上瘾入骨i
    2020-12-11 02:32

    It's definitely preferred to build a query through the methods provided. Not only does it protect you from SQL injections, it also builds the query for you so you can avoid having a whole bunch of string concatenations that will make the query string less readable and more error prone. Performance-wise I don't think it makes much difference.

    0 讨论(0)
 看不清?
提交回复
热议问题