no login • remote - provides public interface - with login • documentation - link to doc • website - link to project website • standalone - whether or not it’s a standalone app
template ! • never ever use echo, print, whatsoever • use p() • or print_unescaped() if you are 100% sure that the string can not be affected by XSS attacks
= null) ! Don’t put variables into $query, use the ? placeholder and hand over the variable in $params! This will protect you from SQL Injections. ! • insertid ($table=null)