@bytebase/dbhub 0.20.0 → 0.21.1

package/README.md

@@ -117,4 +117,10 @@ See [Testing](.claude/skills/testing/SKILL.md) and [Debug](https://dbhub.ai/conf
 
 ## Star History
 
-![Star History Chart](https://api.star-history.com/svg?repos=bytebase/dbhub&type=Date)
+<a href="https://www.star-history.com/?repos=bytebase%2Fdbhub&type=date&legend=top-left">
+ <picture>
+   <source media="(prefers-color-scheme: dark)" srcset="https://api.star-history.com/image?repos=bytebase/dbhub&type=date&theme=dark&legend=top-left" />
+   <source media="(prefers-color-scheme: light)" srcset="https://api.star-history.com/image?repos=bytebase/dbhub&type=date&legend=top-left" />
+   <img alt="Star History Chart" src="https://api.star-history.com/image?repos=bytebase/dbhub&type=date&legend=top-left" />
+ </picture>
+</a>

package/dist/{chunk-25VMLRAQ.js → chunk-6JFMPX62.js}

@@ -1,3 +1,6 @@
+import {
+  isDriverNotInstalled
+} from "./chunk-GWPUVYLO.js";
 import {
   ConnectorRegistry,
   SafeURL,
@@ -898,7 +901,7 @@ async function resolveSourceConfigs() {
       source.ssh_keepalive_count_max = sshResult.config.keepaliveCountMax;
     }
     if (dsnResult.isDemo) {
-      const { getSqliteInMemorySetupSql } = await import("./demo-loader-FM5OJVDA.js");
+      const { getSqliteInMemorySetupSql } = await import("./demo-loader-PSMTLZ2T.js");
       source.init_script = getSqliteInMemorySetupSql();
     }
     return {
@@ -1314,8 +1317,18 @@ function buildDSNFromSource(source) {
 }
 
 // src/utils/aws-rds-signer.ts
-import { Signer } from "@aws-sdk/rds-signer";
 async function generateRdsAuthToken(params) {
+  let Signer;
+  try {
+    ({ Signer } = await import("@aws-sdk/rds-signer"));
+  } catch (error) {
+    if (isDriverNotInstalled(error, "@aws-sdk/rds-signer")) {
+      throw new Error(
+        'AWS IAM authentication requires the "@aws-sdk/rds-signer" package. Install it with: pnpm add @aws-sdk/rds-signer'
+      );
+    }
+    throw error;
+  }
   const signer = new Signer({
     hostname: params.hostname,
     port: params.port,

package/dist/chunk-GWPUVYLO.js

@@ -0,0 +1,35 @@
+// src/utils/module-loader.ts
+var MISSING_MODULE_RE = /Cannot find (?:package|module) '([^']+)'/;
+function isDriverNotInstalled(err, driver) {
+  if (!(err instanceof Error) || !("code" in err) || err.code !== "ERR_MODULE_NOT_FOUND") {
+    return false;
+  }
+  const match = err.message.match(MISSING_MODULE_RE);
+  if (!match) {
+    return false;
+  }
+  const missingSpecifier = match[1];
+  return missingSpecifier === driver || missingSpecifier.startsWith(`${driver}/`);
+}
+async function loadConnectors(connectorModules) {
+  await Promise.all(
+    connectorModules.map(async ({ load, name, driver }) => {
+      try {
+        await load();
+      } catch (err) {
+        if (isDriverNotInstalled(err, driver)) {
+          console.error(
+            `Skipping ${name} connector: driver package "${driver}" not installed.`
+          );
+        } else {
+          throw err;
+        }
+      }
+    })
+  );
+}
+
+export {
+  isDriverNotInstalled,
+  loadConnectors
+};

package/dist/chunk-RTB262PR.js

@@ -0,0 +1,60 @@
+// src/utils/multi-statement-result-parser.ts
+function isMetadataObject(element) {
+  if (!element || typeof element !== "object" || Array.isArray(element)) {
+    return false;
+  }
+  return "affectedRows" in element || "insertId" in element || "fieldCount" in element || "warningStatus" in element;
+}
+function isMultiStatementResult(results) {
+  if (!Array.isArray(results) || results.length === 0) {
+    return false;
+  }
+  const firstElement = results[0];
+  return isMetadataObject(firstElement) || Array.isArray(firstElement);
+}
+function extractRowsFromMultiStatement(results) {
+  if (!Array.isArray(results)) {
+    return [];
+  }
+  const allRows = [];
+  for (const result of results) {
+    if (Array.isArray(result)) {
+      allRows.push(...result);
+    }
+  }
+  return allRows;
+}
+function extractAffectedRows(results) {
+  if (isMetadataObject(results)) {
+    return results.affectedRows || 0;
+  }
+  if (!Array.isArray(results)) {
+    return 0;
+  }
+  if (isMultiStatementResult(results)) {
+    let totalAffected = 0;
+    for (const result of results) {
+      if (isMetadataObject(result)) {
+        totalAffected += result.affectedRows || 0;
+      } else if (Array.isArray(result)) {
+        totalAffected += result.length;
+      }
+    }
+    return totalAffected;
+  }
+  return results.length;
+}
+function parseQueryResults(results) {
+  if (!Array.isArray(results)) {
+    return [];
+  }
+  if (isMultiStatementResult(results)) {
+    return extractRowsFromMultiStatement(results);
+  }
+  return results;
+}
+
+export {
+  extractAffectedRows,
+  parseQueryResults
+};

package/dist/{demo-loader-FM5OJVDA.js → demo-loader-PSMTLZ2T.js}

@@ -1,5 +1,3 @@
-import "./chunk-WWAWV7DQ.js";
-
 // src/config/demo-loader.ts
 import fs from "fs";
 import path from "path";

package/dist/index.js

@@ -12,7 +12,10 @@ import {
   resolveSourceConfigs,
   resolveTomlConfigPath,
   resolveTransport
-} from "./chunk-25VMLRAQ.js";
+} from "./chunk-6JFMPX62.js";
+import {
+  loadConnectors
+} from "./chunk-GWPUVYLO.js";
 import {
   quoteQualifiedIdentifier
 } from "./chunk-JFWX35TB.js";
@@ -24,7 +27,6 @@ import {
   splitSQLStatements,
   stripCommentsAndStrings
 } from "./chunk-C7WEAPX4.js";
-import "./chunk-WWAWV7DQ.js";
 
 // src/server.ts
 import { McpServer } from "@modelcontextprotocol/sdk/server/mcp.js";
@@ -91,20 +93,76 @@ function createToolSuccessResponse(data, meta = {}) {
 
 // src/utils/allowed-keywords.ts
 var allowedKeywords = {
-  postgres: ["select", "with", "explain", "analyze", "show"],
-  mysql: ["select", "with", "explain", "analyze", "show", "describe", "desc"],
-  mariadb: ["select", "with", "explain", "analyze", "show", "describe", "desc"],
-  sqlite: ["select", "with", "explain", "analyze", "pragma"],
+  postgres: ["select", "with", "explain", "show"],
+  mysql: ["select", "with", "explain", "show", "describe", "desc"],
+  mariadb: ["select", "with", "explain", "show", "describe", "desc"],
+  sqlite: ["select", "with", "explain", "pragma"],
   sqlserver: ["select", "with", "explain", "showplan"]
 };
+var mutatingKeywords = [
+  "insert",
+  "update",
+  "delete",
+  "drop",
+  "alter",
+  "create",
+  "truncate",
+  "merge",
+  "grant",
+  "revoke",
+  "rename"
+];
+var mutatingPattern = new RegExp(
+  `\\b(?:${mutatingKeywords.join("|")})\\b`,
+  "i"
+);
+var mutatingPatternWithReplace = new RegExp(
+  `\\b(?:${mutatingKeywords.join("|")}|replace\\s+(?:(?:low_priority|delayed)\\s+)?into)\\b`,
+  "i"
+);
+var mutatingPatterns = {
+  postgres: mutatingPattern,
+  mysql: mutatingPatternWithReplace,
+  mariadb: mutatingPatternWithReplace,
+  sqlite: mutatingPatternWithReplace,
+  sqlserver: mutatingPattern
+};
+var selectIntoPattern = /\bselect\b[\s\S]+\binto\b/i;
+var explainAnalyzePattern = /^explain\s+(?:\([^)]*\banalyze\b(?!\s*(?:=\s*)?(?:false|off|0)\b)[^)]*\)|\banalyze\b(?!\s*(?:=\s*)?(?:false|off|0)\b)(?:\s+verbose\b)?)/i;
 function isReadOnlySQL(sql, connectorType) {
-  const cleanedSQL = stripCommentsAndStrings(sql, connectorType).trim().toLowerCase();
+  return checkReadOnly(
+    stripCommentsAndStrings(sql, connectorType).trim().toLowerCase(),
+    connectorType
+  );
+}
+function checkReadOnly(cleanedSQL, connectorType) {
   if (!cleanedSQL) {
     return false;
   }
-  const firstWord = cleanedSQL.split(/\s+/)[0];
+  const firstWord = cleanedSQL.match(/\S+/)?.[0] ?? "";
   const keywordList = allowedKeywords[connectorType] || [];
-  return keywordList.includes(firstWord);
+  if (!keywordList.includes(firstWord)) {
+    return false;
+  }
+  if (firstWord === "with") {
+    const pattern = mutatingPatterns[connectorType] ?? mutatingPattern;
+    if (pattern.test(cleanedSQL)) {
+      return false;
+    }
+  }
+  if ((firstWord === "select" || firstWord === "with") && selectIntoPattern.test(cleanedSQL)) {
+    return false;
+  }
+  if (firstWord === "explain") {
+    const m = explainAnalyzePattern.exec(cleanedSQL);
+    if (m) {
+      const afterExplain = cleanedSQL.slice(m[0].length).trim();
+      if (afterExplain && !checkReadOnly(afterExplain, connectorType)) {
+        return false;
+      }
+    }
+  }
+  return true;
 }
 
 // src/requests/store.ts
@@ -1363,7 +1421,7 @@ See documentation for more details on configuring database connections.
     const sources = sourceConfigsData.sources;
     console.error(`Configuration source: ${sourceConfigsData.source}`);
     await connectorManager.connectWithSources(sources);
-    const { initializeToolRegistry: initializeToolRegistry2 } = await import("./registry-FOASCI6Y.js");
+    const { initializeToolRegistry: initializeToolRegistry2 } = await import("./registry-I2JQWFDX.js");
     initializeToolRegistry2({
       sources: sourceConfigsData.sources,
       tools: sourceConfigsData.tools
@@ -1489,44 +1547,13 @@ See documentation for more details on configuring database connections.
   }
 }
 
-// src/utils/module-loader.ts
-var MISSING_MODULE_RE = /Cannot find (?:package|module) '([^']+)'/;
-function isDriverNotInstalled(err, driver) {
-  if (!(err instanceof Error) || !("code" in err) || err.code !== "ERR_MODULE_NOT_FOUND") {
-    return false;
-  }
-  const match = err.message.match(MISSING_MODULE_RE);
-  if (!match) {
-    return false;
-  }
-  const missingSpecifier = match[1];
-  return missingSpecifier === driver || missingSpecifier.startsWith(`${driver}/`);
-}
-async function loadConnectors(connectorModules2) {
-  await Promise.all(
-    connectorModules2.map(async ({ load, name, driver }) => {
-      try {
-        await load();
-      } catch (err) {
-        if (isDriverNotInstalled(err, driver)) {
-          console.error(
-            `Skipping ${name} connector: driver package "${driver}" not installed.`
-          );
-        } else {
-          throw err;
-        }
-      }
-    })
-  );
-}
-
 // src/index.ts
 var connectorModules = [
-  { load: () => import("./postgres-JB3LPXGR.js"), name: "PostgreSQL", driver: "pg" },
-  { load: () => import("./sqlserver-LGFLHJHL.js"), name: "SQL Server", driver: "mssql" },
-  { load: () => import("./sqlite-5LT56F5B.js"), name: "SQLite", driver: "better-sqlite3" },
-  { load: () => import("./mysql-FOCVUTPX.js"), name: "MySQL", driver: "mysql2" },
-  { load: () => import("./mariadb-L3YMONWJ.js"), name: "MariaDB", driver: "mariadb" }
+  { load: () => import("./postgres-4PCNQDGV.js"), name: "PostgreSQL", driver: "pg" },
+  { load: () => import("./sqlserver-JBR6X37Z.js"), name: "SQL Server", driver: "mssql" },
+  { load: () => import("./sqlite-FSCLCRIH.js"), name: "SQLite", driver: "better-sqlite3" },
+  { load: () => import("./mysql-I35IQ2GH.js"), name: "MySQL", driver: "mysql2" },
+  { load: () => import("./mariadb-VGTS4WXE.js"), name: "MariaDB", driver: "mariadb" }
 ];
 loadConnectors(connectorModules).then(() => main()).catch((error) => {
   console.error("Fatal error:", error);