parameterized sql query - asp.net / c#

Question

So I recently learned that I should absolutely be using parametrized query\'s to avoid security issues such as SQL injection. That\'s all fine and all, I got it working.

Answer 1

or other variation you might try like this

command.Parameters.Add(new SqlParameter("Name", dogName));