Psalm
Get started
Documentation
Plugins
Articles
GitHub
<?php /** @param literal-string $sql */ function executeSQL(string $sql): void {} $id = 5; $ids = ["5", "6", "7"]; executeSQL("SELECT * FROM `foo`"); executeSQL("SELECT * FROM `foo` WHERE id = $id"); executeSQL('SELECT * FROM `foo` WHERE id = ' . $id); executeSQL('SELECT * FROM `foo` WHERE id IN (' . implode(',', $ids) . ')'); executeSQL('SELECT * FROM `foo` WHERE id = ' . (string) ($_GET["id"] ?? 5));
Snippet created on June 14 2021 at 20:39 UTC
Settings
Get link