Maybe you've already answered this somewhere in the manual but I couldn't find it right now: I was wondering if RDM has protection against SQL injection or if I have to check the input before giving it to RDM?
(Not really important for the application I tested/am using it in, but if I consider using it in any other projects that'll play a part in my decision)