--- a/heuristics/historyHeuristics.php
+++ b/heuristics/historyHeuristics.php
@@ -22,8 +22,9 @@
 {
 	global $agencyTransactions,$conn;
 	if (!$agencyTransactions[$agencyName]) {
-		$query = 'select count(*) from contractnotice where "agencyName" = \'' . $agencyName . '"\'';
+		$query = 'select count(*) from contractnotice where "agencyName" = \'' . pg_escape_string ($agencyName) . '"\'';
     $result = $conn->query($query);
+    //echo $query;
     $r = $result->fetch(PDO::FETCH_BOTH);
 		$agencyTransactions[$agencyName] = $r[0];
 	}