This seems a good time to mention interpolique: http://recursion.com/interpolique.html

I'm curious what people here think of that idea, ie, preventing string injection attacks at the language level.