plugins/InspectionGadgets/src/inspectionDescriptions/JDBCPrepareStatementWithNonConstantString.html - platform/tools/idea - Git at Google

 <html>
 <body>
 Reports the calls to <b>java.sql.Connection.prepareStatement()</b>,
 <b>java.sql.Connection.prepareCall()</b>or any
 of their variants which take a dynamically-constructed string as the statement to prepare.
 Constructed SQL statements are a common source of security breaches.
 <!-- tooltip end -->
 <p>

 </body>
 </html>
	<html>
	<body>
	Reports the calls to <b>java.sql.Connection.prepareStatement()</b>,
	<b>java.sql.Connection.prepareCall()</b>or any
	of their variants which take a dynamically-constructed string as the statement to prepare.
	Constructed SQL statements are a common source of security breaches.
	<!-- tooltip end -->
	<p>

	</body>
	</html>