Does using the insert or update method of an SQLiteDatabase object
offer any protection against SQL injection? Would I need to escape
strings before inserting them with these functions?
--
You received this message because you are subscribed to the Google
Groups Android Developers group.
To
Well,
If you don't have a content provider, you don't have to worry about this at
all. Since, you DB cannot be accessed by other applications.
And, for ContentProviders, there are well defined contracts for implementing
one. If you comply to these, then, it's pretty safe.
Kumar Bibek
2 matches
Mail list logo