Does libmysqlclient have an equivalent to libpq's PQexecParams
which allows you to send params separately from the query string, making SQL injection impossible and escaping special characters unnecessary?
I couldn't find anything except the prepared statement API which seems to be rather complicated/overkill for such a simple thing. However, if someone could provide me a link to an example of the usage of libmysqlclient with the prepared-statement api, I'd appreciate it.