擅长:python、mysql、java
<p>我只能从文件中提取:</p>
<p><a href="http://www.sqlite.org/cintro.html" rel="nofollow noreferrer">http://www.sqlite.org/cintro.html</a></p>
<blockquote>
<p><strong>3.0 Binding Parameters and Reusing Prepared Statements</strong></p>
<p>In SQLite, wherever it is valid to include a <strong>string literal</strong>, one
can use a parameter in one of the following forms:</p>
</blockquote>
<p><a href="http://www.sqlite.org/c3ref/bind_blob.html" rel="nofollow noreferrer">http://www.sqlite.org/c3ref/bind_blob.html</a></p>
<blockquote>
<p>In the SQL statement text input to sqlite3_prepare_v2() and its
variants, <strong>literals</strong> may be replaced by a parameter that matches one of
following templates:</p>
</blockquote>
<p><a href="http://www.sqlite.org/lang_insert.html" rel="nofollow noreferrer">http://www.sqlite.org/lang_insert.html</a></p>
<p><img src="https://i.stack.imgur.com/RhpCv.gif" alt="SQLite INSERT"/></p>
<p>您可能无法使用参数化的表名,因为<code>[database-name.]table-name</code>不是普通的文本值(这就是为什么不能编写<code>INSERT INTO 'foo'||'bar'||12 VALUES ...</code>之类的语句)。在</p>
<p>或者是完全不同的东西。:)</p>