Notices by Vik Fearing (xocolatl@mastodon.social)

@lanodan @emacsen
I criticize #SQL all the time—and there is much to be critical about—but the “problems” you are describing are purely user-error.

@lanodan @emacsen
Sorry. Blaming your tools just because you don’t know how to use them is not a design failure with the tools.

@lanodan @emacsen
This is an example of not knowing SQL.

The constant stream of injections for decades is because people are not using parameterized queries and once again trying to do the DB’s job in their own code.

This is not SQL’s fault, it’s the developers’ fault for not learning SQL.

@lanodan @emacsen
I am not sure exactly what you mean by separating code and data. Data is the result of the code.

Unless you mean when you provide data, like input from a user or something. That has existed for over 30 years now.

@lanodan @emacsen
I don’t know how to put “you don’t know what you are talking about and should read a book or something” more delicately.

@emacsen @lanodan
I don’t mean for this to come across as condescending, so please don’t take it that way.

You are both talking about a language that you do not understand and don’t know how to use. In particular, you seem to want to tell the database how to do its job instead of just declaring the results you want. There are hundreds if not thousands of person-hours put in to optimizing queries, and your “I’ll do it in my own code” is no match for that.