Garry's Mod Wiki

sql.SQLStr

  string sql.SQLStr( string string, boolean bNoQuotes = false )

Description

Escapes dangerous characters and symbols from user input used in an SQLite SQL Query.

This function is not meant to be used with external database engines such as MySQL. Escaping strings with inadequate functions is dangerous!

Arguments

1 string string
The string to be escaped.
2 boolean bNoQuotes = false
Set this as true, and the function will not wrap the input string in apostrophes.

Returns

1 string
The escaped input.