Are Prisma queries parameterized to prevent SQL injections?
I was just reading about parameterized queries today and I was wondering does Prisma use parameterized queries under the hood to prevent SQL injections?
I tried searching the docs for info about this, but could only find info about writing raw queries that are parameterized (which is not what I am trying to do)
I tried searching the docs for info about this, but could only find info about writing raw queries that are parameterized (which is not what I am trying to do)
Solution
Yes, if you turn logging on you can see the queries, it takes a touch more effort to see the parameter values, but it's doable.
