8.2.x database.inc db_escape_table($table)
8.0.x database.inc db_escape_table($table)
8.1.x database.inc db_escape_table($table)
4.7.x database.inc db_escape_table($string)
5.x database.inc db_escape_table($string)
6.x database.inc db_escape_table($string)
7.x database.inc db_escape_table($table)

Restricts a dynamic table name to safe characters.

Only keeps alphanumeric and underscores.


$table: The table name to escape.

Return value

string The escaped table name as a string.


as of Drupal 8.0.x, will be removed in Drupal 9.0.0. Instead, get a database connection injected into your service from the container and call escapeTable() on it. For example, $injected_database->escapeTable($table);

See also


Related topics


core/includes/database.inc, line 359
Core systems for the database layer.


function db_escape_table($table) {
  return Database::getConnection()->escapeTable($table);