npm - @replayio-app-building/netlify-recorder - Versions diffs - 0.19.0 → 0.21.0 - Mend

@replayio-app-building/netlify-recorder 0.19.0 → 0.21.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (4) hide show

package/README.md CHANGED Viewed

@@ -464,13 +464,14 @@ Creates the `audit_log` table, its indexes, and a reusable PL/pgSQL trigger func
 **Parameters:**
 - `sql` — A Neon SQL tagged-template function
-### `databaseAuditMonitorTable(sql, tableName): Promise<void>`
+### `databaseAuditMonitorTable(sql, tableName, primaryKeyColumn?): Promise<void>`
 Attaches a trigger to the specified table that logs INSERT, UPDATE, and DELETE operations to the `audit_log` table. Throws if `tableName` is `'audit_log'`.
 **Parameters:**
 - `sql` — A Neon SQL tagged-template function
 - `tableName` — Name of the table to monitor (must match `^[a-zA-Z_][a-zA-Z0-9_]*$`)
+- `primaryKeyColumn` — Name of the primary key column (default: `"id"`, must match `^[a-zA-Z_][a-zA-Z0-9_]*$`)
 ### `databaseAuditDumpLogTable(sql): Promise<Record<string, unknown>[]>`

package/dist/index.d.ts CHANGED Viewed

@@ -332,7 +332,7 @@ declare function databaseAuditEnsureLogTable(sql: SqlFunction): Promise<void>;
  *
  * Throws if `tableName` is `'audit_log'` (cannot monitor itself).
  */
-declare function databaseAuditMonitorTable(sql: SqlFunction, tableName: string): Promise<void>;
+declare function databaseAuditMonitorTable(sql: SqlFunction, tableName: string, primaryKeyColumn?: string): Promise<void>;
 /**
  * Returns all rows from the `audit_log` table, ordered by `performed_at` DESC.
  */

package/dist/index.js CHANGED Viewed

@@ -423,13 +423,21 @@ function replaceAll(text, searchValue, mask) {
 function buildMask(value) {
   return "*".repeat(value.length);
 }
+function buildPlaceholder(key) {
+  if (key === "DATABASE_URL" || key.endsWith("_DATABASE_URL")) {
+    return "postgresql://replay:replay@localhost:5432/replay";
+  }
+  return `placeholder_${key.toLowerCase()}`;
+}
 function redactBlobData(blobData) {
   const redactions = /* @__PURE__ */ new Map();
+  const placeholders = /* @__PURE__ */ new Map();
   const redactedEnvReads = blobData.capturedData.envReads.map(
     (read) => {
       if (shouldRedact(read.key, read.value) && read.value !== void 0) {
         const mask = buildMask(read.value);
         redactions.set(read.value, mask);
+        placeholders.set(read.value, buildPlaceholder(read.key));
         return { ...read, value: mask };
       }
       return { ...read };
@@ -462,11 +470,29 @@ function redactBlobData(blobData) {
     }
     return out;
   }
+  const sortedPlaceholders = [...placeholders.entries()].sort(
+    (a, b) => b[0].length - a[0].length
+  );
+  function scrubForRequest(text) {
+    if (text === void 0) return void 0;
+    let result = text;
+    for (const [original, placeholder] of sortedPlaceholders) {
+      result = replaceAll(result, original, placeholder);
+    }
+    return result;
+  }
+  function scrubHeadersForRequest(headers) {
+    const out = {};
+    for (const [k, v] of Object.entries(headers)) {
+      out[k] = scrubForRequest(v) ?? v;
+    }
+    return out;
+  }
   const redactedRequestInfo = {
     ...blobData.requestInfo,
-    url: scrub(blobData.requestInfo.url) ?? blobData.requestInfo.url,
-    headers: scrubHeaders(blobData.requestInfo.headers),
-    body: scrub(blobData.requestInfo.body)
+    url: scrubForRequest(blobData.requestInfo.url) ?? blobData.requestInfo.url,
+    headers: scrubHeadersForRequest(blobData.requestInfo.headers),
+    body: scrubForRequest(blobData.requestInfo.body)
   };
   const redactedNetworkCalls = blobData.capturedData.networkCalls.map(
     (call) => ({
@@ -1095,7 +1121,12 @@ async function databaseAuditEnsureLogTable(sql) {
       changed_cols TEXT[];
       req_id TEXT;
       call_idx INTEGER;
+      pk_col TEXT;
+      pk_val TEXT;
     BEGIN
+      -- Primary key column name passed as trigger argument; default to 'id'
+      pk_col := COALESCE(TG_ARGV[0], 'id');
       -- Read application context injected by the network interceptor
       req_id := COALESCE(current_setting('app.replay_request_id', true), '');
       IF req_id = '' THEN req_id := NULL; END IF;
@@ -1107,21 +1138,24 @@ async function databaseAuditEnsureLogTable(sql) {
       END;
       IF TG_OP = 'INSERT' THEN
+        EXECUTE format('SELECT ($1).%I::TEXT', pk_col) USING NEW INTO pk_val;
         INSERT INTO audit_log (table_name, record_id, action, new_data, replay_request_id, replay_request_call_index)
-        VALUES (TG_TABLE_NAME, NEW.id::TEXT, 'INSERT', to_jsonb(NEW), req_id, call_idx);
+        VALUES (TG_TABLE_NAME, pk_val, 'INSERT', to_jsonb(NEW), req_id, call_idx);
         RETURN NEW;
       ELSIF TG_OP = 'UPDATE' THEN
+        EXECUTE format('SELECT ($1).%I::TEXT', pk_col) USING NEW INTO pk_val;
         SELECT ARRAY_AGG(n.key) INTO changed_cols
         FROM jsonb_each_text(to_jsonb(NEW)) n
         LEFT JOIN jsonb_each_text(to_jsonb(OLD)) o ON n.key = o.key
         WHERE o.value IS DISTINCT FROM n.value;
         INSERT INTO audit_log (table_name, record_id, action, old_data, new_data, changed_fields, replay_request_id, replay_request_call_index)
-        VALUES (TG_TABLE_NAME, NEW.id::TEXT, 'UPDATE', to_jsonb(OLD), to_jsonb(NEW), COALESCE(changed_cols, ARRAY[]::TEXT[]), req_id, call_idx);
+        VALUES (TG_TABLE_NAME, pk_val, 'UPDATE', to_jsonb(OLD), to_jsonb(NEW), COALESCE(changed_cols, ARRAY[]::TEXT[]), req_id, call_idx);
         RETURN NEW;
       ELSIF TG_OP = 'DELETE' THEN
+        EXECUTE format('SELECT ($1).%I::TEXT', pk_col) USING OLD INTO pk_val;
         INSERT INTO audit_log (table_name, record_id, action, old_data, replay_request_id, replay_request_call_index)
-        VALUES (TG_TABLE_NAME, OLD.id::TEXT, 'DELETE', to_jsonb(OLD), req_id, call_idx);
+        VALUES (TG_TABLE_NAME, pk_val, 'DELETE', to_jsonb(OLD), req_id, call_idx);
         RETURN OLD;
       END IF;
       RETURN NULL;
@@ -1129,19 +1163,22 @@ async function databaseAuditEnsureLogTable(sql) {
     $$ LANGUAGE plpgsql
   `;
 }
-async function databaseAuditMonitorTable(sql, tableName) {
+async function databaseAuditMonitorTable(sql, tableName, primaryKeyColumn = "id") {
   if (tableName === "audit_log") {
     throw new Error("Cannot monitor the audit_log table itself");
   }
   if (!/^[a-zA-Z_][a-zA-Z0-9_]*$/.test(tableName)) {
     throw new Error(`Invalid table name: ${tableName}`);
   }
+  if (!/^[a-zA-Z_][a-zA-Z0-9_]*$/.test(primaryKeyColumn)) {
+    throw new Error(`Invalid primary key column name: ${primaryKeyColumn}`);
+  }
   const triggerName = `audit_trigger_${tableName}`;
   await sql(
     `DROP TRIGGER IF EXISTS ${triggerName} ON "${tableName}"`
   );
   await sql(
-    `CREATE TRIGGER ${triggerName} AFTER INSERT OR UPDATE OR DELETE ON "${tableName}" FOR EACH ROW EXECUTE FUNCTION audit_trigger_function()`
+    `CREATE TRIGGER ${triggerName} AFTER INSERT OR UPDATE OR DELETE ON "${tableName}" FOR EACH ROW EXECUTE FUNCTION audit_trigger_function('${primaryKeyColumn}')`
   );
 }
 async function databaseAuditDumpLogTable(sql) {

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@replayio-app-building/netlify-recorder",
-  "version": "0.19.0",
+  "version": "0.21.0",
   "description": "Capture and replay Netlify function executions as Replay recordings",
   "type": "module",
   "exports": {