Nov-01-2021, 12:59 PM
(Nov-01-2021, 12:45 PM)ndc85430 Wrote: You also shouldn't be concatenating strings to build SQL statements, as that's vulnerable to SQL injection. Bobby Tables can educate you on this.
Hi there,
I understand. My workaround (on flask) is to pull the data from sql, use that to build an html string, close the connection and then return the html string.
That way nothing on the user's end relates directly to the db.
while dad_has_cigs == True: happiness = True if dad_has_cigs == False: print("Dad come home!") happiness = not happiness break