@memberjunction/global 5.0.0 → 5.2.0

package/dist/__tests__/SQLExpressionValidator.security.test.js

@@ -0,0 +1,328 @@
+import { describe, it, expect, beforeEach } from 'vitest';
+import { SQLExpressionValidator } from '../SQLExpressionValidator.js';
+/**
+ * Adversarial security tests for SQLExpressionValidator.
+ * These tests simulate real-world SQL injection attempts that an attacker
+ * (or a misguided LLM) might produce.
+ */
+describe('SQLExpressionValidator - Security', () => {
+    let validator;
+    beforeEach(() => {
+        validator = SQLExpressionValidator.Instance;
+    });
+    // ---------------------------------------------------------------
+    // Classic SQL injection patterns (full_query context)
+    // ---------------------------------------------------------------
+    describe('SQL injection attempts (full_query)', () => {
+        const ctx = { context: 'full_query' };
+        it('should block tautology + stacked DROP', () => {
+            const r = validator.validateFullQuery("SELECT * FROM Users WHERE 1=1; DROP TABLE Users");
+            expect(r.valid).toBe(false);
+            // DROP is detected before semicolon in the keyword scan
+            expect(r.trigger).toBe('DROP');
+        });
+        it('should block UNION-based data exfiltration', () => {
+            // This is valid in full_query because UNION is allowed—
+            // BUT it must still start with SELECT. The attack vector here
+            // is actually fine for full_query (UNION is legitimate).
+            // The real guard is that only SELECT queries can be submitted.
+            const r = validator.validateFullQuery("SELECT 1 UNION SELECT password FROM sys.sql_logins");
+            // UNION is allowed in full_query, so this is valid from a syntax perspective.
+            // The protection is that ad-hoc queries run on a read-only connection.
+            expect(r.valid).toBe(true);
+        });
+        it('should block stacked DELETE after SELECT', () => {
+            const r = validator.validateFullQuery("SELECT 1; DELETE FROM Users");
+            expect(r.valid).toBe(false);
+            // DELETE is detected before semicolon in the keyword scan
+            expect(r.trigger).toBe('DELETE');
+        });
+        it('should block INSERT disguised after comment', () => {
+            const r = validator.validateFullQuery("SELECT 1 -- \nINSERT INTO Users (Name) VALUES ('hacked')");
+            // After stripping comments, "INSERT INTO Users..." is detected
+            expect(r.valid).toBe(false);
+            expect(r.trigger).toBe('INSERT');
+        });
+        it('should block EXEC sp_executesql', () => {
+            const r = validator.validateFullQuery("EXEC sp_executesql N'SELECT 1'");
+            expect(r.valid).toBe(false);
+            expect(r.trigger).toBe('EXEC');
+        });
+        it('should block EXECUTE xp_cmdshell', () => {
+            const r = validator.validateFullQuery("EXECUTE xp_cmdshell 'dir'");
+            expect(r.valid).toBe(false);
+            expect(r.trigger).toBe('EXECUTE');
+        });
+        it('should block WAITFOR DELAY (time-based blind injection)', () => {
+            const r = validator.validateFullQuery("SELECT 1 WHERE 1=1 WAITFOR DELAY '00:00:10'");
+            expect(r.valid).toBe(false);
+            expect(r.trigger).toBe('WAITFOR');
+        });
+        it('should block xp_cmdshell via keyword detection', () => {
+            const r = validator.validateFullQuery("SELECT 1; EXEC xp_cmdshell 'whoami'");
+            expect(r.valid).toBe(false);
+            // EXEC is detected before semicolon in the keyword scan
+            expect(r.trigger).toBe('EXEC');
+        });
+        it('should block OPENROWSET file access', () => {
+            const r = validator.validateFullQuery("SELECT * FROM OPENROWSET('SQLNCLI', 'Server=evil;', 'SELECT 1')");
+            expect(r.valid).toBe(false);
+            expect(r.trigger).toBe('OPENROWSET');
+        });
+        it('should block OPENDATASOURCE', () => {
+            const r = validator.validateFullQuery("SELECT * FROM OPENDATASOURCE('SQLNCLI', 'Data Source=evil;').db.dbo.Users");
+            expect(r.valid).toBe(false);
+            expect(r.trigger).toBe('OPENDATASOURCE');
+        });
+        it('should block BULK INSERT', () => {
+            const r = validator.validateFullQuery("BULK INSERT Users FROM '\\\\evil\\share\\data.csv'");
+            expect(r.valid).toBe(false);
+            // INSERT comes before BULK in the keyword scan order
+            expect(r.trigger).toBe('INSERT');
+        });
+        it('should block CREATE TABLE', () => {
+            const r = validator.validateFullQuery("CREATE TABLE Evil (ID INT)");
+            expect(r.valid).toBe(false);
+        });
+        it('should block ALTER TABLE', () => {
+            const r = validator.validateFullQuery("ALTER TABLE Users ADD HackedColumn NVARCHAR(100)");
+            expect(r.valid).toBe(false);
+            expect(r.trigger).toBe('ALTER');
+        });
+        it('should block GRANT privilege escalation', () => {
+            const r = validator.validateFullQuery("GRANT CONTROL ON DATABASE::mydb TO public");
+            expect(r.valid).toBe(false);
+            expect(r.trigger).toBe('GRANT');
+        });
+        it('should block REVOKE', () => {
+            const r = validator.validateFullQuery("REVOKE SELECT ON Users FROM someuser");
+            expect(r.valid).toBe(false);
+            expect(r.trigger).toBe('REVOKE');
+        });
+        it('should block DENY', () => {
+            const r = validator.validateFullQuery("DENY SELECT ON Users TO someuser");
+            expect(r.valid).toBe(false);
+            expect(r.trigger).toBe('DENY');
+        });
+        it('should block SHUTDOWN', () => {
+            const r = validator.validateFullQuery("SHUTDOWN WITH NOWAIT");
+            expect(r.valid).toBe(false);
+            expect(r.trigger).toBe('SHUTDOWN');
+        });
+        it('should block RECONFIGURE', () => {
+            const r = validator.validateFullQuery("RECONFIGURE WITH OVERRIDE");
+            expect(r.valid).toBe(false);
+            expect(r.trigger).toBe('RECONFIGURE');
+        });
+        it('should block statement not starting with SELECT/WITH', () => {
+            const r = validator.validateFullQuery("UPDATE Users SET IsAdmin = 1");
+            expect(r.valid).toBe(false);
+            expect(r.trigger).toBe('UPDATE');
+        });
+        it('should block MERGE statement', () => {
+            const r = validator.validateFullQuery("MERGE INTO Users AS t USING (SELECT 1 AS ID) AS s ON t.ID = s.ID WHEN MATCHED THEN DELETE");
+            expect(r.valid).toBe(false);
+            // DELETE comes before MERGE in the keyword scan order
+            expect(r.trigger).toBe('DELETE');
+        });
+        it('should block TRUNCATE TABLE', () => {
+            const r = validator.validateFullQuery("TRUNCATE TABLE Users");
+            expect(r.valid).toBe(false);
+            expect(r.trigger).toBe('TRUNCATE');
+        });
+    });
+    // ---------------------------------------------------------------
+    // Obfuscation and bypass attempts
+    // ---------------------------------------------------------------
+    describe('obfuscation and bypass attempts', () => {
+        it('should block keyword in mixed case (DrOp)', () => {
+            const r = validator.validateFullQuery("DrOp TaBlE Users");
+            expect(r.valid).toBe(false);
+        });
+        it('should block with extra whitespace around dangerous keyword', () => {
+            const r = validator.validateFullQuery("  DELETE   FROM   Users  ");
+            expect(r.valid).toBe(false);
+            expect(r.trigger).toBe('DELETE');
+        });
+        it('should block multi-statement via semicolon with whitespace', () => {
+            const r = validator.validateFullQuery("SELECT 1 ;  DROP TABLE Users");
+            expect(r.valid).toBe(false);
+            // DROP is detected before semicolon in the keyword scan
+            expect(r.trigger).toBe('DROP');
+        });
+        it('should block newline-separated stacked statements', () => {
+            const r = validator.validateFullQuery("SELECT 1;\nDROP TABLE Users");
+            expect(r.valid).toBe(false);
+            // DROP is detected before semicolon in the keyword scan
+            expect(r.trigger).toBe('DROP');
+        });
+        it('should not be fooled by tab characters in keywords', () => {
+            const r = validator.validateFullQuery("SELECT 1;\tDELETE FROM Users");
+            expect(r.valid).toBe(false);
+            // DELETE is detected before semicolon in the keyword scan
+            expect(r.trigger).toBe('DELETE');
+        });
+    });
+    // ---------------------------------------------------------------
+    // String literal false-positive prevention
+    // ---------------------------------------------------------------
+    describe('string literal false-positive prevention', () => {
+        it('should allow DROP inside a string literal', () => {
+            const r = validator.validateFullQuery("SELECT * FROM __mj.vwLogs WHERE Message = 'We need to DROP the old approach'");
+            expect(r.valid).toBe(true);
+        });
+        it('should allow INSERT inside a string literal', () => {
+            const r = validator.validateFullQuery("SELECT * FROM __mj.vwAuditLog WHERE Action = 'INSERT completed'");
+            expect(r.valid).toBe(true);
+        });
+        it('should allow DELETE inside a string literal', () => {
+            const r = validator.validateFullQuery("SELECT * FROM __mj.vwUsers WHERE Bio LIKE '%DELETE old records%'");
+            expect(r.valid).toBe(true);
+        });
+        it('should allow EXEC inside a string literal', () => {
+            const r = validator.validateFullQuery("SELECT * FROM __mj.vwJobs WHERE Description = 'EXEC the plan'");
+            expect(r.valid).toBe(true);
+        });
+        it('should still block REAL DROP outside string context', () => {
+            const r = validator.validateFullQuery("SELECT 'safe text' FROM Users; DROP TABLE Users");
+            expect(r.valid).toBe(false);
+            // DROP is detected before semicolon in the keyword scan
+            expect(r.trigger).toBe('DROP');
+        });
+    });
+    // ---------------------------------------------------------------
+    // Expression-level injection (where_clause context)
+    // ---------------------------------------------------------------
+    describe('expression-level injection (where_clause)', () => {
+        const ctx = { context: 'where_clause' };
+        it('should block subquery without allowSubqueries', () => {
+            const r = validator.validate("ID IN (SELECT ID FROM Users WHERE IsAdmin = 1)", ctx);
+            expect(r.valid).toBe(false);
+            expect(r.trigger).toBe('SELECT');
+        });
+        it('should block UNION injection in WHERE clause', () => {
+            const r = validator.validate("1=1 UNION SELECT password FROM sys.sql_logins", ctx);
+            expect(r.valid).toBe(false);
+            expect(r.trigger).toBe('UNION');
+        });
+        it('should block comment injection in WHERE clause', () => {
+            const r = validator.validate("Status = 'Active' -- OR 1=1", ctx);
+            expect(r.valid).toBe(false);
+            expect(r.trigger).toBe('comment');
+        });
+        it('should block block comment injection in WHERE clause', () => {
+            const r = validator.validate("Status = 'Active' /* OR 1=1 */", ctx);
+            expect(r.valid).toBe(false);
+            expect(r.trigger).toBe('comment');
+        });
+        it('should block semicolon injection in WHERE clause', () => {
+            const r = validator.validate("1=1; DROP TABLE Users --", ctx);
+            expect(r.valid).toBe(false);
+            // Either semicolon or comment should trigger
+        });
+        it('should block EXEC in WHERE clause', () => {
+            const r = validator.validate("1=1 AND EXEC sp_help", ctx);
+            expect(r.valid).toBe(false);
+            expect(r.trigger).toBe('EXEC');
+        });
+        it('should block WAITFOR in WHERE clause', () => {
+            const r = validator.validate("1=1 WAITFOR DELAY '00:00:05'", ctx);
+            expect(r.valid).toBe(false);
+            expect(r.trigger).toBe('WAITFOR');
+        });
+        it('should block CREATE in WHERE clause', () => {
+            const r = validator.validate("1=1 CREATE TABLE Evil (ID INT)", ctx);
+            expect(r.valid).toBe(false);
+            expect(r.trigger).toBe('CREATE');
+        });
+    });
+    // ---------------------------------------------------------------
+    // Edge cases
+    // ---------------------------------------------------------------
+    describe('edge cases', () => {
+        it('should reject empty string', () => {
+            const r = validator.validateFullQuery('');
+            expect(r.valid).toBe(false);
+        });
+        it('should reject whitespace-only string', () => {
+            const r = validator.validateFullQuery('   \n\t  ');
+            expect(r.valid).toBe(false);
+        });
+        it('should handle very long SELECT query', () => {
+            // Build a long but valid query
+            const conditions = Array.from({ length: 100 }, (_, i) => `Field${i} = ${i}`).join(' AND ');
+            const sql = `SELECT * FROM __mj.vwUsers WHERE ${conditions}`;
+            const r = validator.validateFullQuery(sql);
+            expect(r.valid).toBe(true);
+        });
+        it('should handle deeply nested subqueries', () => {
+            const sql = `
+        SELECT * FROM __mj.vwUsers
+        WHERE ID IN (
+          SELECT UserID FROM __mj.vwUserRoles
+          WHERE RoleID IN (
+            SELECT RoleID FROM __mj.vwRoles
+            WHERE Name IN (
+              SELECT RoleName FROM __mj.vwDefaultRoles
+            )
+          )
+        )
+      `;
+            const r = validator.validateFullQuery(sql);
+            expect(r.valid).toBe(true);
+        });
+        it('should handle query with only comments (no actual SQL)', () => {
+            const sql = `
+        -- This is just a comment
+        /* Another comment */
+      `;
+            const r = validator.validateFullQuery(sql);
+            // After stripping comments, there's no SELECT/WITH
+            expect(r.valid).toBe(false);
+        });
+        it('should handle query with unicode characters in string literals', () => {
+            const sql = "SELECT * FROM __mj.vwUsers WHERE Name = N'Ünïcödé Tëst'";
+            const r = validator.validateFullQuery(sql);
+            expect(r.valid).toBe(true);
+        });
+        it('should handle query with escaped single quotes', () => {
+            const sql = "SELECT * FROM __mj.vwUsers WHERE Name = 'O''Brien'";
+            const r = validator.validateFullQuery(sql);
+            expect(r.valid).toBe(true);
+        });
+        it('should handle query with numeric literals', () => {
+            const sql = "SELECT * FROM __mj.vwOrders WHERE Total > 1000.50 AND Quantity < 100";
+            const r = validator.validateFullQuery(sql);
+            expect(r.valid).toBe(true);
+        });
+        it('should handle query with multiple CTEs', () => {
+            const sql = `
+        WITH CTE1 AS (SELECT ID FROM __mj.vwUsers),
+             CTE2 AS (SELECT UserID FROM __mj.vwUserRoles)
+        SELECT * FROM CTE1 INNER JOIN CTE2 ON CTE1.ID = CTE2.UserID
+      `;
+            const r = validator.validateFullQuery(sql);
+            expect(r.valid).toBe(true);
+        });
+        it('should handle CROSS APPLY and OUTER APPLY', () => {
+            const sql = `
+        SELECT u.Name, r.RoleName
+        FROM __mj.vwUsers u
+        CROSS APPLY (SELECT TOP 1 RoleName FROM __mj.vwUserRoles WHERE UserID = u.ID) r
+      `;
+            const r = validator.validateFullQuery(sql);
+            expect(r.valid).toBe(true);
+        });
+        it('should handle window functions', () => {
+            const sql = `
+        SELECT Name,
+          ROW_NUMBER() OVER (PARTITION BY Department ORDER BY HireDate) AS RowNum,
+          RANK() OVER (ORDER BY Salary DESC) AS SalaryRank
+        FROM __mj.vwEmployees
+      `;
+            const r = validator.validateFullQuery(sql);
+            expect(r.valid).toBe(true);
+        });
+    });
+});
+//# sourceMappingURL=SQLExpressionValidator.security.test.js.map

package/dist/__tests__/SQLExpressionValidator.security.test.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"SQLExpressionValidator.security.test.js","sourceRoot":"","sources":["../../src/__tests__/SQLExpressionValidator.security.test.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,QAAQ,EAAE,EAAE,EAAE,MAAM,EAAE,UAAU,EAAE,MAAM,QAAQ,CAAC;AAC1D,OAAO,EAAE,sBAAsB,EAAE,MAAM,2BAA2B,CAAC;AAEnE;;;;GAIG;AACH,QAAQ,CAAC,mCAAmC,EAAE,GAAG,EAAE;IACjD,IAAI,SAAiC,CAAC;IAEtC,UAAU,CAAC,GAAG,EAAE;QACd,SAAS,GAAG,sBAAsB,CAAC,QAAQ,CAAC;IAC9C,CAAC,CAAC,CAAC;IAEH,kEAAkE;IAClE,sDAAsD;IACtD,kEAAkE;IAClE,QAAQ,CAAC,qCAAqC,EAAE,GAAG,EAAE;QACnD,MAAM,GAAG,GAAG,EAAE,OAAO,EAAE,YAAqB,EAAE,CAAC;QAE/C,EAAE,CAAC,uCAAuC,EAAE,GAAG,EAAE;YAC/C,MAAM,CAAC,GAAG,SAAS,CAAC,iBAAiB,CAAC,iDAAiD,CAAC,CAAC;YACzF,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;YAC5B,wDAAwD;YACxD,MAAM,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;QACjC,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,4CAA4C,EAAE,GAAG,EAAE;YACpD,wDAAwD;YACxD,8DAA8D;YAC9D,yDAAyD;YACzD,+DAA+D;YAC/D,MAAM,CAAC,GAAG,SAAS,CAAC,iBAAiB,CACnC,oDAAoD,CACrD,CAAC;YACF,8EAA8E;YAC9E,uEAAuE;YACvE,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QAC7B,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,0CAA0C,EAAE,GAAG,EAAE;YAClD,MAAM,CAAC,GAAG,SAAS,CAAC,iBAAiB,CAAC,6BAA6B,CAAC,CAAC;YACrE,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;YAC5B,0DAA0D;YAC1D,MAAM,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QACnC,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,6CAA6C,EAAE,GAAG,EAAE;YACrD,MAAM,CAAC,GAAG,SAAS,CAAC,iBAAiB,CACnC,0DAA0D,CAC3D,CAAC;YACF,+DAA+D;YAC/D,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;YAC5B,MAAM,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QACnC,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,iCAAiC,EAAE,GAAG,EAAE;YACzC,MAAM,CAAC,GAAG,SAAS,CAAC,iBAAiB,CAAC,gCAAgC,CAAC,CAAC;YACxE,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;YAC5B,MAAM,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;QACjC,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,kCAAkC,EAAE,GAAG,EAAE;YAC1C,MAAM,CAAC,GAAG,SAAS,CAAC,iBAAiB,CAAC,2BAA2B,CAAC,CAAC;YACnE,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;YAC5B,MAAM,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;QACpC,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,yDAAyD,EAAE,GAAG,EAAE;YACjE,MAAM,CAAC,GAAG,SAAS,CAAC,iBAAiB,CAAC,6CAA6C,CAAC,CAAC;YACrF,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;YAC5B,MAAM,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;QACpC,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,gDAAgD,EAAE,GAAG,EAAE;YACxD,MAAM,CAAC,GAAG,SAAS,CAAC,iBAAiB,CAAC,qCAAqC,CAAC,CAAC;YAC7E,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;YAC5B,wDAAwD;YACxD,MAAM,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;QACjC,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,qCAAqC,EAAE,GAAG,EAAE;YAC7C,MAAM,CAAC,GAAG,SAAS,CAAC,iBAAiB,CACnC,iEAAiE,CAClE,CAAC;YACF,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;YAC5B,MAAM,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC;QACvC,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,6BAA6B,EAAE,GAAG,EAAE;YACrC,MAAM,CAAC,GAAG,SAAS,CAAC,iBAAiB,CACnC,2EAA2E,CAC5E,CAAC;YACF,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;YAC5B,MAAM,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,IAAI,CAAC,gBAAgB,CAAC,CAAC;QAC3C,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,0BAA0B,EAAE,GAAG,EAAE;YAClC,MAAM,CAAC,GAAG,SAAS,CAAC,iBAAiB,CAAC,oDAAoD,CAAC,CAAC;YAC5F,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;YAC5B,qDAAqD;YACrD,MAAM,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QACnC,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,2BAA2B,EAAE,GAAG,EAAE;YACnC,MAAM,CAAC,GAAG,SAAS,CAAC,iBAAiB,CAAC,4BAA4B,CAAC,CAAC;YACpE,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;QAC9B,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,0BAA0B,EAAE,GAAG,EAAE;YAClC,MAAM,CAAC,GAAG,SAAS,CAAC,iBAAiB,CAAC,kDAAkD,CAAC,CAAC;YAC1F,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;YAC5B,MAAM,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;QAClC,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,yCAAyC,EAAE,GAAG,EAAE;YACjD,MAAM,CAAC,GAAG,SAAS,CAAC,iBAAiB,CAAC,2CAA2C,CAAC,CAAC;YACnF,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;YAC5B,MAAM,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;QAClC,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,qBAAqB,EAAE,GAAG,EAAE;YAC7B,MAAM,CAAC,GAAG,SAAS,CAAC,iBAAiB,CAAC,sCAAsC,CAAC,CAAC;YAC9E,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;YAC5B,MAAM,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QACnC,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,mBAAmB,EAAE,GAAG,EAAE;YAC3B,MAAM,CAAC,GAAG,SAAS,CAAC,iBAAiB,CAAC,kCAAkC,CAAC,CAAC;YAC1E,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;YAC5B,MAAM,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;QACjC,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,uBAAuB,EAAE,GAAG,EAAE;YAC/B,MAAM,CAAC,GAAG,SAAS,CAAC,iBAAiB,CAAC,sBAAsB,CAAC,CAAC;YAC9D,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;YAC5B,MAAM,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC;QACrC,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,0BAA0B,EAAE,GAAG,EAAE;YAClC,MAAM,CAAC,GAAG,SAAS,CAAC,iBAAiB,CAAC,2BAA2B,CAAC,CAAC;YACnE,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;YAC5B,MAAM,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,IAAI,CAAC,aAAa,CAAC,CAAC;QACxC,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,sDAAsD,EAAE,GAAG,EAAE;YAC9D,MAAM,CAAC,GAAG,SAAS,CAAC,iBAAiB,CAAC,8BAA8B,CAAC,CAAC;YACtE,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;YAC5B,MAAM,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QACnC,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,8BAA8B,EAAE,GAAG,EAAE;YACtC,MAAM,CAAC,GAAG,SAAS,CAAC,iBAAiB,CACnC,2FAA2F,CAC5F,CAAC;YACF,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;YAC5B,sDAAsD;YACtD,MAAM,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QACnC,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,6BAA6B,EAAE,GAAG,EAAE;YACrC,MAAM,CAAC,GAAG,SAAS,CAAC,iBAAiB,CAAC,sBAAsB,CAAC,CAAC;YAC9D,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;YAC5B,MAAM,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC;QACrC,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;IAEH,kEAAkE;IAClE,kCAAkC;IAClC,kEAAkE;IAClE,QAAQ,CAAC,iCAAiC,EAAE,GAAG,EAAE;QAC/C,EAAE,CAAC,2CAA2C,EAAE,GAAG,EAAE;YACnD,MAAM,CAAC,GAAG,SAAS,CAAC,iBAAiB,CAAC,kBAAkB,CAAC,CAAC;YAC1D,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;QAC9B,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,6DAA6D,EAAE,GAAG,EAAE;YACrE,MAAM,CAAC,GAAG,SAAS,CAAC,iBAAiB,CAAC,2BAA2B,CAAC,CAAC;YACnE,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;YAC5B,MAAM,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QACnC,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,4DAA4D,EAAE,GAAG,EAAE;YACpE,MAAM,CAAC,GAAG,SAAS,CAAC,iBAAiB,CAAC,8BAA8B,CAAC,CAAC;YACtE,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;YAC5B,wDAAwD;YACxD,MAAM,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;QACjC,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,mDAAmD,EAAE,GAAG,EAAE;YAC3D,MAAM,CAAC,GAAG,SAAS,CAAC,iBAAiB,CAAC,6BAA6B,CAAC,CAAC;YACrE,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;YAC5B,wDAAwD;YACxD,MAAM,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;QACjC,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,oDAAoD,EAAE,GAAG,EAAE;YAC5D,MAAM,CAAC,GAAG,SAAS,CAAC,iBAAiB,CAAC,8BAA8B,CAAC,CAAC;YACtE,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;YAC5B,0DAA0D;YAC1D,MAAM,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QACnC,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;IAEH,kEAAkE;IAClE,2CAA2C;IAC3C,kEAAkE;IAClE,QAAQ,CAAC,0CAA0C,EAAE,GAAG,EAAE;QACxD,EAAE,CAAC,2CAA2C,EAAE,GAAG,EAAE;YACnD,MAAM,CAAC,GAAG,SAAS,CAAC,iBAAiB,CACnC,8EAA8E,CAC/E,CAAC;YACF,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QAC7B,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,6CAA6C,EAAE,GAAG,EAAE;YACrD,MAAM,CAAC,GAAG,SAAS,CAAC,iBAAiB,CACnC,iEAAiE,CAClE,CAAC;YACF,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QAC7B,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,6CAA6C,EAAE,GAAG,EAAE;YACrD,MAAM,CAAC,GAAG,SAAS,CAAC,iBAAiB,CACnC,kEAAkE,CACnE,CAAC;YACF,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QAC7B,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,2CAA2C,EAAE,GAAG,EAAE;YACnD,MAAM,CAAC,GAAG,SAAS,CAAC,iBAAiB,CACnC,+DAA+D,CAChE,CAAC;YACF,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QAC7B,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,qDAAqD,EAAE,GAAG,EAAE;YAC7D,MAAM,CAAC,GAAG,SAAS,CAAC,iBAAiB,CACnC,iDAAiD,CAClD,CAAC;YACF,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;YAC5B,wDAAwD;YACxD,MAAM,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;QACjC,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;IAEH,kEAAkE;IAClE,oDAAoD;IACpD,kEAAkE;IAClE,QAAQ,CAAC,2CAA2C,EAAE,GAAG,EAAE;QACzD,MAAM,GAAG,GAAG,EAAE,OAAO,EAAE,cAAuB,EAAE,CAAC;QAEjD,EAAE,CAAC,+CAA+C,EAAE,GAAG,EAAE;YACvD,MAAM,CAAC,GAAG,SAAS,CAAC,QAAQ,CAC1B,gDAAgD,EAChD,GAAG,CACJ,CAAC;YACF,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;YAC5B,MAAM,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QACnC,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,8CAA8C,EAAE,GAAG,EAAE;YACtD,MAAM,CAAC,GAAG,SAAS,CAAC,QAAQ,CAAC,+CAA+C,EAAE,GAAG,CAAC,CAAC;YACnF,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;YAC5B,MAAM,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;QAClC,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,gDAAgD,EAAE,GAAG,EAAE;YACxD,MAAM,CAAC,GAAG,SAAS,CAAC,QAAQ,CAAC,6BAA6B,EAAE,GAAG,CAAC,CAAC;YACjE,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;YAC5B,MAAM,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;QACpC,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,sDAAsD,EAAE,GAAG,EAAE;YAC9D,MAAM,CAAC,GAAG,SAAS,CAAC,QAAQ,CAAC,gCAAgC,EAAE,GAAG,CAAC,CAAC;YACpE,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;YAC5B,MAAM,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;QACpC,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,kDAAkD,EAAE,GAAG,EAAE;YAC1D,MAAM,CAAC,GAAG,SAAS,CAAC,QAAQ,CAAC,0BAA0B,EAAE,GAAG,CAAC,CAAC;YAC9D,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;YAC5B,6CAA6C;QAC/C,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,mCAAmC,EAAE,GAAG,EAAE;YAC3C,MAAM,CAAC,GAAG,SAAS,CAAC,QAAQ,CAAC,sBAAsB,EAAE,GAAG,CAAC,CAAC;YAC1D,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;YAC5B,MAAM,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;QACjC,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,sCAAsC,EAAE,GAAG,EAAE;YAC9C,MAAM,CAAC,GAAG,SAAS,CAAC,QAAQ,CAAC,8BAA8B,EAAE,GAAG,CAAC,CAAC;YAClE,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;YAC5B,MAAM,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;QACpC,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,qCAAqC,EAAE,GAAG,EAAE;YAC7C,MAAM,CAAC,GAAG,SAAS,CAAC,QAAQ,CAAC,gCAAgC,EAAE,GAAG,CAAC,CAAC;YACpE,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;YAC5B,MAAM,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QACnC,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;IAEH,kEAAkE;IAClE,aAAa;IACb,kEAAkE;IAClE,QAAQ,CAAC,YAAY,EAAE,GAAG,EAAE;QAC1B,EAAE,CAAC,4BAA4B,EAAE,GAAG,EAAE;YACpC,MAAM,CAAC,GAAG,SAAS,CAAC,iBAAiB,CAAC,EAAE,CAAC,CAAC;YAC1C,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;QAC9B,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,sCAAsC,EAAE,GAAG,EAAE;YAC9C,MAAM,CAAC,GAAG,SAAS,CAAC,iBAAiB,CAAC,WAAW,CAAC,CAAC;YACnD,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;QAC9B,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,sCAAsC,EAAE,GAAG,EAAE;YAC9C,+BAA+B;YAC/B,MAAM,UAAU,GAAG,KAAK,CAAC,IAAI,CAAC,EAAE,MAAM,EAAE,GAAG,EAAE,EAAE,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,QAAQ,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;YAC3F,MAAM,GAAG,GAAG,oCAAoC,UAAU,EAAE,CAAC;YAC7D,MAAM,CAAC,GAAG,SAAS,CAAC,iBAAiB,CAAC,GAAG,CAAC,CAAC;YAC3C,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QAC7B,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,wCAAwC,EAAE,GAAG,EAAE;YAChD,MAAM,GAAG,GAAG;;;;;;;;;;;OAWX,CAAC;YACF,MAAM,CAAC,GAAG,SAAS,CAAC,iBAAiB,CAAC,GAAG,CAAC,CAAC;YAC3C,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QAC7B,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,wDAAwD,EAAE,GAAG,EAAE;YAChE,MAAM,GAAG,GAAG;;;OAGX,CAAC;YACF,MAAM,CAAC,GAAG,SAAS,CAAC,iBAAiB,CAAC,GAAG,CAAC,CAAC;YAC3C,mDAAmD;YACnD,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;QAC9B,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,gEAAgE,EAAE,GAAG,EAAE;YACxE,MAAM,GAAG,GAAG,yDAAyD,CAAC;YACtE,MAAM,CAAC,GAAG,SAAS,CAAC,iBAAiB,CAAC,GAAG,CAAC,CAAC;YAC3C,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QAC7B,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,gDAAgD,EAAE,GAAG,EAAE;YACxD,MAAM,GAAG,GAAG,oDAAoD,CAAC;YACjE,MAAM,CAAC,GAAG,SAAS,CAAC,iBAAiB,CAAC,GAAG,CAAC,CAAC;YAC3C,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QAC7B,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,2CAA2C,EAAE,GAAG,EAAE;YACnD,MAAM,GAAG,GAAG,sEAAsE,CAAC;YACnF,MAAM,CAAC,GAAG,SAAS,CAAC,iBAAiB,CAAC,GAAG,CAAC,CAAC;YAC3C,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QAC7B,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,wCAAwC,EAAE,GAAG,EAAE;YAChD,MAAM,GAAG,GAAG;;;;OAIX,CAAC;YACF,MAAM,CAAC,GAAG,SAAS,CAAC,iBAAiB,CAAC,GAAG,CAAC,CAAC;YAC3C,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QAC7B,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,2CAA2C,EAAE,GAAG,EAAE;YACnD,MAAM,GAAG,GAAG;;;;OAIX,CAAC;YACF,MAAM,CAAC,GAAG,SAAS,CAAC,iBAAiB,CAAC,GAAG,CAAC,CAAC;YAC3C,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QAC7B,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,gCAAgC,EAAE,GAAG,EAAE;YACxC,MAAM,GAAG,GAAG;;;;;OAKX,CAAC;YACF,MAAM,CAAC,GAAG,SAAS,CAAC,iBAAiB,CAAC,GAAG,CAAC,CAAC;YAC3C,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QAC7B,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;AACL,CAAC,CAAC,CAAC"}

package/dist/__tests__/SQLExpressionValidator.test.d.ts

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=SQLExpressionValidator.test.d.ts.map

package/dist/__tests__/SQLExpressionValidator.test.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"SQLExpressionValidator.test.d.ts","sourceRoot":"","sources":["../../src/__tests__/SQLExpressionValidator.test.ts"],"names":[],"mappings":""}