Microsoft SQL Server: Using Placeholders
Placeholders are used to safely format values into an SQL query.
These values may come from the user running the task, an external system, or an API call.
Each placeholder value is automatically escaped to prevent SQL injection.
To put placeholders in a query use the ? character (you can supply as many as you need to).
Each value is supplied via the placeholders input.
This example formats the first_name & last_name variables into a select query before running it.
1 2 3 4 5 6 7 8 9
The SQL query run by PPA would look like: