Currently the SQL Integration does not support parameterized queries. This can make your queries vulnerable to SQL injection.