21a6584e8ecdbba6d802ab30f3ec564c08b7dcc3
galt
  Sat Jun 29 02:11:16 2013 -0700
fixing callers of sqlGetField to use sqlSafeFrag
diff --git src/hg/hgGene/ctd.c src/hg/hgGene/ctd.c
index 7b34f5f..f151a56 100644
--- src/hg/hgGene/ctd.c
+++ src/hg/hgGene/ctd.c
@@ -18,38 +18,38 @@
 char condStr[255];
 char *geneSymbol;
 if (isRgdGene(conn))
     {
     if (sqlTableExists(conn, "rgdGene2Xref") == FALSE) return FALSE;
     }
 else
     {
     if (sqlTableExists(conn, "kgXref") == FALSE) return FALSE;
     }
 
 if (sqlTableExists(conn, "hgFixed.ctdSorted") == TRUE)
     {
     if (isRgdGene(conn))
 	{
-    	safef(condStr, sizeof(condStr), 
+    	sqlSafefFrag(condStr, sizeof(condStr), 
 	"x.info=c.GeneSymbol and infoType = 'Name' and rgdGeneId='%s' limit 1", geneId);
     	geneSymbol = sqlGetField(database, "rgdGene2Xref x, hgFixed.ctdSorted c", 
 			"ChemicalId", condStr);
 	}
     else
         {
-    	safef(condStr, sizeof(condStr), "x.geneSymbol=c.GeneSymbol and kgId='%s' limit 1", geneId);
+    	sqlSafefFrag(condStr, sizeof(condStr), "x.geneSymbol=c.GeneSymbol and kgId='%s' limit 1", geneId);
         geneSymbol = sqlGetField(database, "kgXref x, hgFixed.ctdSorted c", "ChemicalId", condStr);
 	}
 
     if (geneSymbol != NULL) return(TRUE);
     }
 return(FALSE);
 }
 
 static void ctdPrint(struct section *section, 
 	struct sqlConnection *conn, char *geneId)
 /* Print out CTD section. */
 {
 char query[256];
 struct sqlResult *sr;
 char **row;