Executing a query is very easy. Each DB methods for query allows you to bind the parameters you are using in the query with ? or :param_name, than you can assign them with an array. In this way all the parameters are safely sanitized.
db::query("SELECT * FROM user WHERE user_id=?", array( 1 ) );
Query method results in a boolean value ( true|false ).