the puzzling point is what supports the security of eloquent. For example, we can use preprocessing commands to insert some information into the database, but I don"t find preprocessing statement commands in eloquent
.the puzzling point is what supports the security of eloquent. For example, we can use preprocessing commands to insert some information into the database, but I don"t find preprocessing statement commands in eloquent
.call toSql () or use Laravel debugger
laravel to print sql running records
whether it's safe or not is also related to you, you need to use model + where (array form) to be safe. It may not be safe for you to write native sql + where strings in it.
eloquent is encapsulated on the PDO extension ORM, preprocessing is done by Pdo_mysql