Can you elaborate. IN JPA you only have SQL and JP-QL, and in all those cases it takes a
String to create the corresponding objects, so building a dynamic String to hold the query is really easy, the only thing to lookout in that case is the hacker that enters Strings in the UI that would hurt your database. That is what ":" variables are good for, to help protect you.
So how in depth is the dynamic query going to be?
Mark