String sql = "INSERT INTO produtos (nome, preco) VALUES (?, ?)";
try (PreparedStatement stmt = conn.prepareStatement(sql)) {
stmt.setString(1, "Caneta");
stmt.setDouble(2, 1.50);
stmt.executeUpdate();
}
Usar sempre PreparedStatement — evita SQL injection.