>> - You should use SQL prepared statements with sqlite-prepare, >> sqlite-bind, etc. That would correctly handle escaping special >> characters in the search string. Currently, searching for >> "transmission-gtk", "libm.so", etc. errors out. > > Thanks for pointing this out, I'll look into it. I've looked into it. Actually the issue is not with the lack of sqlite-bind-arguments, but with "-" and "." triggering an error in FTS. I've fixed it in e08f913d20428a9a925cc46d177c7446f55e6443. The downside is that we can't use any special character like boolean operators. I'm not sure how we can get the best of both worlds. Maybe add a command line flag that would enable "extended search syntax" in which the user can use all of FTS but must make sure to quote "libm.so" for instance. Cheers! -- Pierre Neidhardt https://ambrevar.xyz/