Create a SQL identifier (table/column name) that will be escaped by Knex using ??.
identifier('users') // Will be escaped as "users" in PostgreSQLidentifier('my"table') // Will be escaped as "my""table" in PostgreSQLidentifier('column"; DROP TABLE users; --') // Will be safely escaped Copy
identifier('users') // Will be escaped as "users" in PostgreSQLidentifier('my"table') // Will be escaped as "my""table" in PostgreSQLidentifier('column"; DROP TABLE users; --') // Will be safely escaped
Create a SQL identifier (table/column name) that will be escaped by Knex using ??.