http://code.google.com/apis/gears/security.html Database Security Best Practice:: Avoid SQL injection attacks. Never insert user input directly into a SQL statement. Instead, use substitution parameters in Database.execute(). ユーザの入力…