String sanitizeForSQL(String input) { // Simple example. Consider using prepared statements or a library instead. return input.replaceAll("'", "''"); }
