better. The real question is if this prompt is vulnerable to SQL injection, but of course, I'm not