Escape input data for postgres

Question

I writing a python script for inserting of data in my postgres db.

Is in postgres a escape function how I can escape the inserted data?

score 5 · Accepted Answer · edited May 23 '17 at 10:31

5

Just pass query parameters as a second argument to execute, like:

>>> cur.execute(
...     """INSERT INTO some_table (an_int, a_date, a_string)
...         VALUES (%s, %s, %s);""",
...     (10, datetime.date(2005, 11, 18), "O'Reilly"))

Then, all of the parameters will be properly escaped.

This is because psycopg2 follows Python Database API Specification v2.0 and supports safe parameterized queries.

Also see:

edited May 23 '17 at 10:31

Community

1
1

answered Aug 17 '13 at 18:29

alecxe

441,113
110
1,021
1,148

Thanks a lot it help me :) – Azd325 Aug 18 '13 at 16:33

Escape input data for postgres

1 Answers1

Linked