larongbingo
commented
5 years ago @team-noob-noob/team-noob-noob
Open larongbingo opened 5 years ago
larongbingo
commented
5 years ago @team-noob-noob/team-noob-noob
joshybara
commented
5 years ago Since were not that worrying about deadlines, sticking with SQL statements must be a better choice
BernabePosadas
commented
5 years ago never used ORM yet but if it already has some anti-SQL injection we can use them so we wont need to make a module for cleaning SQL statements
larongbingo
commented
5 years ago never used ORM yet but if it already has some anti-SQL injection we can use them so we wont need to make a module for cleaning SQL statements
Yeah, that's one of the bonus feats of some ORM is that they add some protection to SQL injection.
joshybara
commented
5 years ago we can do both if you want
larongbingo
commented
5 years ago We can only do that if the ORM allows for custom queries like Sequelize.
Are we going to use an ORM or just straight SQL statements?