You Keep Writing That Code. I Do Not Think It Does What You Think It Does.

Concatenating SQL is the bigger sin here, but this misuse of StringBuilder is mind-boggling.

Dear unknown previous programmer,

Good for you that you used a StringBuilder. But you completely missed the point of using a StringBuilder. Even worse that you’re concatenating SQL like this:

StringBuilder SomeRecord = new StringBuilder("Insert into [SomeData] (SomeNumber, SomeName, SomeAttribute1, SomeAttribute2, SomeAttribute3, SomeAttribute4, SomeAttribute5, SomeAttribute6, SomeAttribute7, SomeAttribute8, SomeAttribute9, SomeFlag) " +
    " values ( " 
    + "'" + lsSomeNumber + "' , " 
    + "'" + lsSomeName + "', "
    + "'" + lsSomeAttribute1 + "', " 
    + "'" + lsSomeAttribute2 + "', " 
    + "'" + lsSomeAttribute3 + "', "
    + "'" + lsSomeAttribute4 + "', "
    + "'" + lsSomeAttribute5 + "', "
    + "'" + lsSomeAttribute6 + "', " 
    + "'" + lsSomeAttribute7 + "', " 
    + "'" + lsSomeAttribute8 + "', "
    + "'" + lsSomeAttribute9 + "', " 
    + "'" + lsSomeFlag +"' )" );

You Keep Writing That Code. I Do Not Think It Does What You Think It Does.

14-Oct-2013

Archive

13-Apr-2019

08-May-2018

07-May-2018

07-May-2018

27-Apr-2018

13-May-2017

29-Jul-2016

19-Jul-2016

15-Feb-2016

06-Jan-2016

28-Jan-2015

26-Jan-2015

25-Jan-2015

19-Jan-2015

14-Jan-2015

08-May-2014

30-Oct-2013

14-Oct-2013

29-Jul-2013

28-Jul-2013

14-Aug-2012

12-Aug-2012

07-Apr-2012

Subscribe