Using bind parameters in Active Record for SQL security and performance
31-Oct-2019 1563
Bind parameters are a way to pass values into the SQL statement without embedding the values into the SQL as literals. The values are provided to the SQL statement through parametrization or using a separate API call.There are two benefits of using bind parameters:Security - Preventing injection attacks by quotingPerformance - Improving performance using prepared statements.
Using bind parameters in Active Record for SQL security and performance #ruby #rubydeveloper #rubyonrails #Using #parameters #Active #Record #security #performance #active #parameters #performance #record #security #sql https://www.rubyonrails.ba/link/using-bind-parameters-in-active-record-for-sql-security-and-performance