The data types for postgres in Django map to the…

Question

Asked: May 11, 20262026-05-11T15:30:11+00:00 2026-05-11T15:30:11+00:00

I have the following sql (a simplification of the real problem): SELECT * FROM

I have the following sql (a simplification of the real problem):

SELECT * FROM t WHERE myname LIKE '%{$input}%';

How do I escape the $input?
I can’t use the quoteInto (unless I miss something).
As

$sql=$DB->quoteInto('SELECT *                      FROM t                      WHERE myname LIKE '%?%'',$input);

Will give me

SELECT * FROM t WHERE myname LIKE '%'my input'%';

and

$sql=$DB->quoteInto('SELECT *                      FROM t                      WHERE myname LIKE ?','%'.$input.'%');

Will give me something on the lines:

SELECT * FROM t WHERE myname LIKE '\%my input\%';

You must login to add an answer.

Need An Account,

score 0 · Answer 1 · 2026-05-11T15:30:12+00:00

The last option is works out well for me i’ve not experienced it escaping ‘%’. So $db->quote('%'.$_GET['query'].'%') outputs %queryvalue%