mcp-server-db2i 1.0.0 → 1.2.0

package/README.md

@@ -20,9 +20,11 @@ A [Model Context Protocol (MCP)](https://modelcontextprotocol.io/) server for IB
 | `list_tables` | List tables in a schema (with optional filter) |
 | `describe_table` | Get detailed column information |
 | `list_views` | List views in a schema (with optional filter) |
-| `list_indexes` | List indexes for a table |
+| `list_indexes` | List SQL indexes for a table |
 | `get_table_constraints` | Get primary keys, foreign keys, unique constraints |
 
+> **Note:** `list_indexes` and `get_table_constraints` query the `QSYS2` SQL catalog views and only return SQL-defined objects. Legacy DDS Logical Files and Physical File constraints are not included. This is standard DB2 for i behavior.
+
 ### Filter Syntax
 
 The list tools support pattern matching:
@@ -70,11 +72,26 @@ DB2I_HOSTNAME=your-ibm-i-host.com
 DB2I_USERNAME=your-username
 DB2I_PASSWORD=your-password
 
-# Optional
+# Optional - Database
 DB2I_PORT=446                              # Default: 446
 DB2I_DATABASE=*LOCAL                       # Default: *LOCAL
 DB2I_SCHEMA=your-default-schema            # Default schema for all tools (can be overridden per-call)
 DB2I_JDBC_OPTIONS=naming=system;date format=iso
+
+# Optional - Logging
+LOG_LEVEL=info                             # debug, info, warn, error, fatal (default: info)
+NODE_ENV=production                        # production = JSON logs, development = pretty logs
+LOG_PRETTY=true                            # Override: force pretty (true) or JSON (false) logs
+LOG_COLORS=true                            # Override: force colors on/off (auto-detected by default)
+
+# Optional - Rate Limiting
+RATE_LIMIT_WINDOW_MS=900000                # Time window in ms (default: 900000 = 15 minutes)
+RATE_LIMIT_MAX_REQUESTS=100                # Max requests per window (default: 100)
+RATE_LIMIT_ENABLED=true                    # Set to 'false' to disable (default: true)
+
+# Optional - Query Limits
+QUERY_DEFAULT_LIMIT=1000                   # Default rows returned (default: 1000)
+QUERY_MAX_LIMIT=10000                      # Maximum rows allowed (default: 10000)
 ```
 
 ### Environment Variables
@@ -82,12 +99,25 @@ DB2I_JDBC_OPTIONS=naming=system;date format=iso
 | Variable | Required | Default | Description |
 |----------|----------|---------|-------------|
 | `DB2I_HOSTNAME` | Yes | - | IBM i hostname or IP address |
-| `DB2I_USERNAME` | Yes | - | IBM i user profile |
-| `DB2I_PASSWORD` | Yes | - | User password |
+| `DB2I_USERNAME` | Yes* | - | IBM i user profile |
+| `DB2I_PASSWORD` | Yes* | - | User password |
+| `DB2I_USERNAME_FILE` | No | - | Path to file containing username (overrides `DB2I_USERNAME`) |
+| `DB2I_PASSWORD_FILE` | No | - | Path to file containing password (overrides `DB2I_PASSWORD`) |
 | `DB2I_PORT` | No | `446` | JDBC port (446 is standard for IBM i) |
 | `DB2I_DATABASE` | No | `*LOCAL` | Database name |
 | `DB2I_SCHEMA` | No | - | Default schema/library for tools. If set, you don't need to specify schema in each tool call. |
 | `DB2I_JDBC_OPTIONS` | No | - | Additional JDBC options (semicolon-separated) |
+| `LOG_LEVEL` | No | `info` | Log level: `debug`, `info`, `warn`, `error`, `fatal` |
+| `NODE_ENV` | No | - | Set to `production` for JSON logs, otherwise pretty-printed |
+| `LOG_PRETTY` | No | - | Override log format: `true` = pretty, `false` = JSON |
+| `LOG_COLORS` | No | auto | Override colors: `true`/`false` (auto-detects TTY by default) |
+| `RATE_LIMIT_WINDOW_MS` | No | `900000` | Rate limit time window in milliseconds (15 min) |
+| `RATE_LIMIT_MAX_REQUESTS` | No | `100` | Maximum requests allowed per window |
+| `RATE_LIMIT_ENABLED` | No | `true` | Set to `false` or `0` to disable rate limiting |
+| `QUERY_DEFAULT_LIMIT` | No | `1000` | Default number of rows returned by queries |
+| `QUERY_MAX_LIMIT` | No | `10000` | Maximum rows allowed (caps user-provided limits) |
+
+*Either the environment variable or the corresponding `*_FILE` variable must be set. File-based secrets take priority when both are provided.
 
 ### JDBC Options
 
@@ -223,20 +253,124 @@ npm run build
 
 # Run production build
 npm start
+
+# Run tests
+npm test
+
+# Run tests in watch mode
+npm run test:watch
+
+# Lint code
+npm run lint
+
+# Lint and fix
+npm run lint:fix
+
+# Type check
+npm run typecheck
 ```
 
 ## Security
 
 - **Read-only access**: Only SELECT statements are permitted
-- **No credentials in code**: All sensitive data via environment variables
-- **Query validation**: Dangerous SQL keywords are blocked
-- **Result limiting**: Default limit of 1000 rows prevents large result sets
+- **No credentials in code**: All sensitive data via environment variables or file-based secrets
+- **Query validation**: AST-based SQL parsing plus regex validation blocks dangerous operations
+- **Result limiting**: Default limit of 1000 rows, configurable max limit (default: 10000)
+- **Rate limiting**: Configurable request throttling to prevent abuse (100 req/15 min default)
+- **Structured logging**: Automatic redaction of sensitive fields like passwords
+
+### Rate Limiting
+
+The server includes built-in rate limiting to protect the IBM i database from excessive queries:
+
+- **Default**: 100 requests per 15-minute window
+- **Scope**: Per server instance (for stdio transport, this effectively means per-client since each MCP client spawns its own server process)
+- **Configurable**: Adjust via `RATE_LIMIT_*` environment variables or disable entirely
+
+When the rate limit is exceeded, queries return an error with `waitTimeSeconds` indicating when to retry.
+
+### Credential Management
+
+The server supports multiple methods for providing credentials, listed from most to least secure:
+
+#### Option 1: Docker Secrets (Recommended for Production)
+
+Docker secrets provide the most secure credential management. Secrets are mounted as files and never exposed in environment variables or process listings.
+
+1. Create secret files:
+
+```bash
+mkdir -p ./secrets
+echo "your-username" > ./secrets/db2i_username.txt
+echo "your-password" > ./secrets/db2i_password.txt
+chmod 600 ./secrets/*.txt
+```
+
+2. Configure docker-compose.yml to use secrets:
+
+```yaml
+services:
+  mcp-server-db2i:
+    # ... other config ...
+    environment:
+      - DB2I_HOSTNAME=${DB2I_HOSTNAME}
+      - DB2I_USERNAME_FILE=/run/secrets/db2i_username
+      - DB2I_PASSWORD_FILE=/run/secrets/db2i_password
+    secrets:
+      - db2i_username
+      - db2i_password
+
+secrets:
+  db2i_username:
+    file: ./secrets/db2i_username.txt
+  db2i_password:
+    file: ./secrets/db2i_password.txt
+```
+
+For Docker Swarm or Kubernetes, use their native secret management instead of file-based secrets.
+
+#### Option 2: External Secret Management
+
+For enterprise deployments, integrate with secret management systems:
+
+- **HashiCorp Vault**: Inject secrets at runtime
+- **AWS Secrets Manager**: Use IAM roles for access
+- **Azure Key Vault**: Integrate with managed identities
+
+These systems can populate the `*_FILE` environment variables or inject secrets directly.
+
+#### Option 3: Environment Variables (Development Only)
+
+Plain environment variables are convenient for development but expose credentials through:
+- `docker inspect` output
+- Process listings (`ps aux`)
+- Shell history
+- Log files
+
+```bash
+# .env file (ensure it's in .gitignore)
+DB2I_USERNAME=your-username
+DB2I_PASSWORD=your-password
+```
+
+**Warning**: Never commit `.env` files or credentials to version control.
+
+### File-Based Secret Variables
+
+| Variable | Description |
+|----------|-------------|
+| `DB2I_USERNAME_FILE` | Path to file containing username (takes priority over `DB2I_USERNAME`) |
+| `DB2I_PASSWORD_FILE` | Path to file containing password (takes priority over `DB2I_PASSWORD`) |
 
 ## Compatibility
 
 - IBM i V7R3 and later (V7R5 recommended)
 - Works with any IBM i system accessible via JDBC over TCP/IP
 
+## Related Projects
+
+- **[IBM ibmi-mcp-server](https://github.com/IBM/ibmi-mcp-server)** - IBM's official MCP server for IBM i systems. Offers YAML-based SQL tool definitions, AI agent frameworks, and production deployment options. Requires [Mapepire](https://mapepire-ibmi.github.io/) to be installed on your IBM i system, but if you can manage that prerequisite, it's worth checking out for more advanced use cases.
+
 ## Contributing
 
 Contributions are welcome! Please feel free to submit a Pull Request.
@@ -250,3 +384,4 @@ MIT License - see [LICENSE](LICENSE) for details.
 - [node-jt400](https://www.npmjs.com/package/node-jt400) - JT400 JDBC driver wrapper for Node.js
 - [Model Context Protocol](https://modelcontextprotocol.io/) - The protocol specification
 - [@modelcontextprotocol/sdk](https://github.com/modelcontextprotocol/typescript-sdk) - Official TypeScript SDK
+- [IBM ibmi-mcp-server](https://github.com/IBM/ibmi-mcp-server) - SQL security validation patterns inspired by their approach to AST-based query validation

package/dist/config.d.ts

@@ -1,6 +1,9 @@
 /**
  * Configuration module for IBM DB2i MCP Server
  * Handles environment variables and JDBC connection options
+ *
+ * Supports file-based secrets (e.g., Docker secrets) via *_FILE environment variables.
+ * File-based secrets take priority over plain environment variables.
  */
 export interface DB2iConfig {
     hostname: string;
@@ -12,7 +15,48 @@ export interface DB2iConfig {
     jdbcOptions: Record<string, string>;
 }
 /**
- * Load configuration from environment variables
+ * Valid log levels for the application
+ */
+export type LogLevel = 'debug' | 'info' | 'warn' | 'error' | 'fatal';
+/**
+ * Get the configured log level from environment
+ * Defaults to 'info' if not set or invalid
+ */
+export declare function getLogLevel(): LogLevel;
+/**
+ * Read a secret value from a file.
+ * Docker secrets are typically mounted at /run/secrets/<secret_name>
+ *
+ * @param filePath - Path to the file containing the secret
+ * @returns The secret value with leading/trailing whitespace trimmed
+ * @throws Error if file cannot be read
+ */
+export declare function readSecretFromFile(filePath: string): string;
+/**
+ * Get a secret value from either a file or environment variable.
+ * File-based secrets take priority (more secure).
+ *
+ * @param envVar - Name of the environment variable containing the value
+ * @param fileEnvVar - Name of the environment variable containing the file path
+ * @returns The secret value, or undefined if neither is set
+ */
+export declare function getSecret(envVar: string, fileEnvVar: string): string | undefined;
+/**
+ * Validate hostname format.
+ * Accepts valid hostnames (RFC 1123) and IPv4 addresses.
+ *
+ * @param hostname - The hostname or IP address to validate
+ * @returns true if the hostname format is valid, false otherwise
+ */
+export declare function validateHostname(hostname: string): boolean;
+/**
+ * Load configuration from environment variables.
+ *
+ * Supports file-based secrets for sensitive values (recommended for production):
+ * - DB2I_PASSWORD_FILE: Path to file containing password (e.g., Docker secret)
+ * - DB2I_USERNAME_FILE: Path to file containing username (optional)
+ *
+ * File-based secrets take priority over plain environment variables.
  */
 export declare function loadConfig(): DB2iConfig;
 /**
@@ -28,4 +72,54 @@ export declare function buildConnectionConfig(config: DB2iConfig): {
  * Get the default schema from config
  */
 export declare function getDefaultSchema(config: DB2iConfig): string | undefined;
+/**
+ * Rate limit configuration interface
+ */
+export interface RateLimitConfig {
+    /** Time window in milliseconds (default: 900000 = 15 minutes) */
+    windowMs: number;
+    /** Maximum requests allowed per window (default: 100) */
+    maxRequests: number;
+    /** Whether rate limiting is enabled (default: true) */
+    enabled: boolean;
+}
+/**
+ * Default rate limit configuration values
+ *
+ * Environment variables:
+ * - RATE_LIMIT_WINDOW_MS: Time window in milliseconds (default: 900000)
+ * - RATE_LIMIT_MAX_REQUESTS: Max requests per window (default: 100)
+ * - RATE_LIMIT_ENABLED: Set to 'false' or '0' to disable (default: true)
+ */
+export declare const DEFAULT_RATE_LIMIT: RateLimitConfig;
+/**
+ * Query limit configuration interface
+ */
+export interface QueryLimitConfig {
+    /** Default number of rows to return (default: 1000) */
+    defaultLimit: number;
+    /** Maximum number of rows allowed (default: 10000) */
+    maxLimit: number;
+}
+/**
+ * Default query limit configuration values
+ *
+ * Environment variables:
+ * - QUERY_DEFAULT_LIMIT: Default rows to return (default: 1000)
+ * - QUERY_MAX_LIMIT: Maximum rows allowed, caps user-provided limits (default: 10000)
+ */
+export declare const DEFAULT_QUERY_LIMIT: QueryLimitConfig;
+/**
+ * Get query limit configuration from environment variables
+ */
+export declare function getQueryLimitConfig(): QueryLimitConfig;
+/**
+ * Apply query limit constraints.
+ * Returns the effective limit, capped to maxLimit.
+ *
+ * @param requestedLimit - The limit requested by the user (or undefined for default)
+ * @param config - Query limit configuration
+ * @returns The effective limit to use
+ */
+export declare function applyQueryLimit(requestedLimit: number | undefined, config?: QueryLimitConfig): number;
 //# sourceMappingURL=config.d.ts.map

package/dist/config.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"config.d.ts","sourceRoot":"","sources":["../src/config.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,MAAM,WAAW,UAAU;IACzB,QAAQ,EAAE,MAAM,CAAC;IACjB,IAAI,EAAE,MAAM,CAAC;IACb,QAAQ,EAAE,MAAM,CAAC;IACjB,QAAQ,EAAE,MAAM,CAAC;IACjB,QAAQ,EAAE,MAAM,CAAC;IACjB,MAAM,EAAE,MAAM,CAAC;IACf,WAAW,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;CACrC;AA6BD;;GAEG;AACH,wBAAgB,UAAU,IAAI,UAAU,CAwBvC;AAED;;GAEG;AACH,wBAAgB,qBAAqB,CAAC,MAAM,EAAE,UAAU,GAAG;IACzD,IAAI,EAAE,MAAM,CAAC;IACb,IAAI,EAAE,MAAM,CAAC;IACb,QAAQ,EAAE,MAAM,CAAC;IACjB,CAAC,GAAG,EAAE,MAAM,GAAG,MAAM,CAAC;CACvB,CA4BA;AAED;;GAEG;AACH,wBAAgB,gBAAgB,CAAC,MAAM,EAAE,UAAU,GAAG,MAAM,GAAG,SAAS,CAEvE"}
+{"version":3,"file":"config.d.ts","sourceRoot":"","sources":["../src/config.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAIH,MAAM,WAAW,UAAU;IACzB,QAAQ,EAAE,MAAM,CAAC;IACjB,IAAI,EAAE,MAAM,CAAC;IACb,QAAQ,EAAE,MAAM,CAAC;IACjB,QAAQ,EAAE,MAAM,CAAC;IACjB,QAAQ,EAAE,MAAM,CAAC;IACjB,MAAM,EAAE,MAAM,CAAC;IACf,WAAW,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;CACrC;AAED;;GAEG;AACH,MAAM,MAAM,QAAQ,GAAG,OAAO,GAAG,MAAM,GAAG,MAAM,GAAG,OAAO,GAAG,OAAO,CAAC;AAErE;;;GAGG;AACH,wBAAgB,WAAW,IAAI,QAAQ,CAStC;AAED;;;;;;;GAOG;AACH,wBAAgB,kBAAkB,CAAC,QAAQ,EAAE,MAAM,GAAG,MAAM,CAK3D;AAED;;;;;;;GAOG;AACH,wBAAgB,SAAS,CAAC,MAAM,EAAE,MAAM,EAAE,UAAU,EAAE,MAAM,GAAG,MAAM,GAAG,SAAS,CAMhF;AAED;;;;;;GAMG;AACH,wBAAgB,gBAAgB,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO,CAwB1D;AA6BD;;;;;;;;GAQG;AACH,wBAAgB,UAAU,IAAI,UAAU,CAiCvC;AAED;;GAEG;AACH,wBAAgB,qBAAqB,CAAC,MAAM,EAAE,UAAU,GAAG;IACzD,IAAI,EAAE,MAAM,CAAC;IACb,IAAI,EAAE,MAAM,CAAC;IACb,QAAQ,EAAE,MAAM,CAAC;IACjB,CAAC,GAAG,EAAE,MAAM,GAAG,MAAM,CAAC;CACvB,CA4BA;AAED;;GAEG;AACH,wBAAgB,gBAAgB,CAAC,MAAM,EAAE,UAAU,GAAG,MAAM,GAAG,SAAS,CAEvE;AAED;;GAEG;AACH,MAAM,WAAW,eAAe;IAC9B,iEAAiE;IACjE,QAAQ,EAAE,MAAM,CAAC;IACjB,yDAAyD;IACzD,WAAW,EAAE,MAAM,CAAC;IACpB,uDAAuD;IACvD,OAAO,EAAE,OAAO,CAAC;CAClB;AAED;;;;;;;GAOG;AACH,eAAO,MAAM,kBAAkB,EAAE,eAIhC,CAAC;AAEF;;GAEG;AACH,MAAM,WAAW,gBAAgB;IAC/B,uDAAuD;IACvD,YAAY,EAAE,MAAM,CAAC;IACrB,sDAAsD;IACtD,QAAQ,EAAE,MAAM,CAAC;CAClB;AAED;;;;;;GAMG;AACH,eAAO,MAAM,mBAAmB,EAAE,gBAGjC,CAAC;AAEF;;GAEG;AACH,wBAAgB,mBAAmB,IAAI,gBAAgB,CAQtD;AAED;;;;;;;GAOG;AACH,wBAAgB,eAAe,CAC7B,cAAc,EAAE,MAAM,GAAG,SAAS,EAClC,MAAM,GAAE,gBAAwC,GAC/C,MAAM,CAGR"}

package/dist/config.js

@@ -1,7 +1,82 @@
 /**
  * Configuration module for IBM DB2i MCP Server
  * Handles environment variables and JDBC connection options
+ *
+ * Supports file-based secrets (e.g., Docker secrets) via *_FILE environment variables.
+ * File-based secrets take priority over plain environment variables.
  */
+import { readFileSync, existsSync } from 'node:fs';
+/**
+ * Get the configured log level from environment
+ * Defaults to 'info' if not set or invalid
+ */
+export function getLogLevel() {
+    const level = process.env.LOG_LEVEL?.toLowerCase();
+    const validLevels = ['debug', 'info', 'warn', 'error', 'fatal'];
+    if (level && validLevels.includes(level)) {
+        return level;
+    }
+    return 'info';
+}
+/**
+ * Read a secret value from a file.
+ * Docker secrets are typically mounted at /run/secrets/<secret_name>
+ *
+ * @param filePath - Path to the file containing the secret
+ * @returns The secret value with leading/trailing whitespace trimmed
+ * @throws Error if file cannot be read
+ */
+export function readSecretFromFile(filePath) {
+    if (!existsSync(filePath)) {
+        throw new Error(`Secret file not found: ${filePath}`);
+    }
+    return readFileSync(filePath, 'utf8').trim();
+}
+/**
+ * Get a secret value from either a file or environment variable.
+ * File-based secrets take priority (more secure).
+ *
+ * @param envVar - Name of the environment variable containing the value
+ * @param fileEnvVar - Name of the environment variable containing the file path
+ * @returns The secret value, or undefined if neither is set
+ */
+export function getSecret(envVar, fileEnvVar) {
+    const filePath = process.env[fileEnvVar];
+    if (filePath) {
+        return readSecretFromFile(filePath);
+    }
+    return process.env[envVar];
+}
+/**
+ * Validate hostname format.
+ * Accepts valid hostnames (RFC 1123) and IPv4 addresses.
+ *
+ * @param hostname - The hostname or IP address to validate
+ * @returns true if the hostname format is valid, false otherwise
+ */
+export function validateHostname(hostname) {
+    const trimmed = hostname.trim();
+    if (!trimmed)
+        return false;
+    // IPv4 pattern: four octets separated by dots
+    const ipv4Pattern = /^(\d{1,3})\.(\d{1,3})\.(\d{1,3})\.(\d{1,3})$/;
+    const ipv4Match = trimmed.match(ipv4Pattern);
+    if (ipv4Match) {
+        // Validate each octet is 0-255
+        return ipv4Match.slice(1).every((octet) => {
+            const num = parseInt(octet, 10);
+            return num >= 0 && num <= 255;
+        });
+    }
+    // Hostname pattern (RFC 1123):
+    // - Labels separated by dots
+    // - Each label: 1-63 chars, alphanumeric or hyphen, cannot start/end with hyphen
+    // - Total length up to 253 chars
+    if (trimmed.length > 253)
+        return false;
+    const hostnamePattern = /^[a-zA-Z0-9]([a-zA-Z0-9-]{0,61}[a-zA-Z0-9])?(\.[a-zA-Z0-9]([a-zA-Z0-9-]{0,61}[a-zA-Z0-9])?)*$/;
+    return hostnamePattern.test(trimmed);
+}
 /**
  * Parse JDBC options from a semicolon-separated string
  * Format: "key1=value1;key2=value2"
@@ -26,20 +101,29 @@ function parseJdbcOptions(optionsString) {
     return options;
 }
 /**
- * Load configuration from environment variables
+ * Load configuration from environment variables.
+ *
+ * Supports file-based secrets for sensitive values (recommended for production):
+ * - DB2I_PASSWORD_FILE: Path to file containing password (e.g., Docker secret)
+ * - DB2I_USERNAME_FILE: Path to file containing username (optional)
+ *
+ * File-based secrets take priority over plain environment variables.
  */
 export function loadConfig() {
     const hostname = process.env.DB2I_HOSTNAME;
-    const username = process.env.DB2I_USERNAME;
-    const password = process.env.DB2I_PASSWORD;
+    const username = getSecret('DB2I_USERNAME', 'DB2I_USERNAME_FILE');
+    const password = getSecret('DB2I_PASSWORD', 'DB2I_PASSWORD_FILE');
     if (!hostname) {
         throw new Error('DB2I_HOSTNAME environment variable is required');
     }
+    if (!validateHostname(hostname)) {
+        throw new Error(`Invalid DB2I_HOSTNAME format: "${hostname}". Must be a valid hostname or IPv4 address.`);
+    }
     if (!username) {
-        throw new Error('DB2I_USERNAME environment variable is required');
+        throw new Error('DB2I_USERNAME environment variable is required (or DB2I_USERNAME_FILE for file-based secret)');
     }
     if (!password) {
-        throw new Error('DB2I_PASSWORD environment variable is required');
+        throw new Error('DB2I_PASSWORD environment variable is required (or DB2I_PASSWORD_FILE for file-based secret)');
     }
     return {
         hostname,
@@ -80,4 +164,51 @@ export function buildConnectionConfig(config) {
 export function getDefaultSchema(config) {
     return config.schema || undefined;
 }
+/**
+ * Default rate limit configuration values
+ *
+ * Environment variables:
+ * - RATE_LIMIT_WINDOW_MS: Time window in milliseconds (default: 900000)
+ * - RATE_LIMIT_MAX_REQUESTS: Max requests per window (default: 100)
+ * - RATE_LIMIT_ENABLED: Set to 'false' or '0' to disable (default: true)
+ */
+export const DEFAULT_RATE_LIMIT = {
+    windowMs: 15 * 60 * 1000, // 15 minutes
+    maxRequests: 100,
+    enabled: true,
+};
+/**
+ * Default query limit configuration values
+ *
+ * Environment variables:
+ * - QUERY_DEFAULT_LIMIT: Default rows to return (default: 1000)
+ * - QUERY_MAX_LIMIT: Maximum rows allowed, caps user-provided limits (default: 10000)
+ */
+export const DEFAULT_QUERY_LIMIT = {
+    defaultLimit: 1000,
+    maxLimit: 10000,
+};
+/**
+ * Get query limit configuration from environment variables
+ */
+export function getQueryLimitConfig() {
+    const defaultLimit = parseInt(process.env.QUERY_DEFAULT_LIMIT || '1000', 10);
+    const maxLimit = parseInt(process.env.QUERY_MAX_LIMIT || '10000', 10);
+    return {
+        defaultLimit: Math.max(1, defaultLimit),
+        maxLimit: Math.max(1, maxLimit),
+    };
+}
+/**
+ * Apply query limit constraints.
+ * Returns the effective limit, capped to maxLimit.
+ *
+ * @param requestedLimit - The limit requested by the user (or undefined for default)
+ * @param config - Query limit configuration
+ * @returns The effective limit to use
+ */
+export function applyQueryLimit(requestedLimit, config = getQueryLimitConfig()) {
+    const limit = requestedLimit ?? config.defaultLimit;
+    return Math.min(Math.max(1, limit), config.maxLimit);
+}
 //# sourceMappingURL=config.js.map

package/dist/config.js.map

@@ -1 +1 @@
-{"version":3,"file":"config.js","sourceRoot":"","sources":["../src/config.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAYH;;;GAGG;AACH,SAAS,gBAAgB,CAAC,aAAiC;IACzD,IAAI,CAAC,aAAa,EAAE,CAAC;QACnB,OAAO,EAAE,CAAC;IACZ,CAAC;IAED,MAAM,OAAO,GAA2B,EAAE,CAAC;IAC3C,MAAM,KAAK,GAAG,aAAa,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;IAEvC,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE,CAAC;QACzB,MAAM,OAAO,GAAG,IAAI,CAAC,IAAI,EAAE,CAAC;QAC5B,IAAI,CAAC,OAAO;YAAE,SAAS;QAEvB,MAAM,OAAO,GAAG,OAAO,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC;QACrC,IAAI,OAAO,GAAG,CAAC,EAAE,CAAC;YAChB,MAAM,GAAG,GAAG,OAAO,CAAC,SAAS,CAAC,CAAC,EAAE,OAAO,CAAC,CAAC,IAAI,EAAE,CAAC;YACjD,MAAM,KAAK,GAAG,OAAO,CAAC,SAAS,CAAC,OAAO,GAAG,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC;YACpD,OAAO,CAAC,GAAG,CAAC,GAAG,KAAK,CAAC;QACvB,CAAC;IACH,CAAC;IAED,OAAO,OAAO,CAAC;AACjB,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,UAAU;IACxB,MAAM,QAAQ,GAAG,OAAO,CAAC,GAAG,CAAC,aAAa,CAAC;IAC3C,MAAM,QAAQ,GAAG,OAAO,CAAC,GAAG,CAAC,aAAa,CAAC;IAC3C,MAAM,QAAQ,GAAG,OAAO,CAAC,GAAG,CAAC,aAAa,CAAC;IAE3C,IAAI,CAAC,QAAQ,EAAE,CAAC;QACd,MAAM,IAAI,KAAK,CAAC,gDAAgD,CAAC,CAAC;IACpE,CAAC;IACD,IAAI,CAAC,QAAQ,EAAE,CAAC;QACd,MAAM,IAAI,KAAK,CAAC,gDAAgD,CAAC,CAAC;IACpE,CAAC;IACD,IAAI,CAAC,QAAQ,EAAE,CAAC;QACd,MAAM,IAAI,KAAK,CAAC,gDAAgD,CAAC,CAAC;IACpE,CAAC;IAED,OAAO;QACL,QAAQ;QACR,IAAI,EAAE,QAAQ,CAAC,OAAO,CAAC,GAAG,CAAC,SAAS,IAAI,KAAK,EAAE,EAAE,CAAC;QAClD,QAAQ;QACR,QAAQ;QACR,QAAQ,EAAE,OAAO,CAAC,GAAG,CAAC,aAAa,IAAI,QAAQ;QAC/C,MAAM,EAAE,OAAO,CAAC,GAAG,CAAC,WAAW,IAAI,EAAE;QACrC,WAAW,EAAE,gBAAgB,CAAC,OAAO,CAAC,GAAG,CAAC,iBAAiB,CAAC;KAC7D,CAAC;AACJ,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,qBAAqB,CAAC,MAAkB;IAMtD,MAAM,gBAAgB,GAKlB;QACF,IAAI,EAAE,MAAM,CAAC,QAAQ;QACrB,IAAI,EAAE,MAAM,CAAC,QAAQ;QACrB,QAAQ,EAAE,MAAM,CAAC,QAAQ;KAC1B,CAAC;IAEF,6EAA6E;IAC7E,IAAI,CAAC,MAAM,CAAC,WAAW,CAAC,QAAQ,CAAC,EAAE,CAAC;QAClC,gBAAgB,CAAC,QAAQ,CAAC,GAAG,QAAQ,CAAC;IACxC,CAAC;IAED,mCAAmC;IACnC,IAAI,CAAC,MAAM,CAAC,WAAW,CAAC,aAAa,CAAC,EAAE,CAAC;QACvC,gBAAgB,CAAC,aAAa,CAAC,GAAG,KAAK,CAAC;IAC1C,CAAC;IAED,gCAAgC;IAChC,KAAK,MAAM,CAAC,GAAG,EAAE,KAAK,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,WAAW,CAAC,EAAE,CAAC;QAC9D,gBAAgB,CAAC,GAAG,CAAC,GAAG,KAAK,CAAC;IAChC,CAAC;IAED,OAAO,gBAAgB,CAAC;AAC1B,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,gBAAgB,CAAC,MAAkB;IACjD,OAAO,MAAM,CAAC,MAAM,IAAI,SAAS,CAAC;AACpC,CAAC"}
+{"version":3,"file":"config.js","sourceRoot":"","sources":["../src/config.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAEH,OAAO,EAAE,YAAY,EAAE,UAAU,EAAE,MAAM,SAAS,CAAC;AAiBnD;;;GAGG;AACH,MAAM,UAAU,WAAW;IACzB,MAAM,KAAK,GAAG,OAAO,CAAC,GAAG,CAAC,SAAS,EAAE,WAAW,EAAE,CAAC;IACnD,MAAM,WAAW,GAAe,CAAC,OAAO,EAAE,MAAM,EAAE,MAAM,EAAE,OAAO,EAAE,OAAO,CAAC,CAAC;IAE5E,IAAI,KAAK,IAAI,WAAW,CAAC,QAAQ,CAAC,KAAiB,CAAC,EAAE,CAAC;QACrD,OAAO,KAAiB,CAAC;IAC3B,CAAC;IAED,OAAO,MAAM,CAAC;AAChB,CAAC;AAED;;;;;;;GAOG;AACH,MAAM,UAAU,kBAAkB,CAAC,QAAgB;IACjD,IAAI,CAAC,UAAU,CAAC,QAAQ,CAAC,EAAE,CAAC;QAC1B,MAAM,IAAI,KAAK,CAAC,0BAA0B,QAAQ,EAAE,CAAC,CAAC;IACxD,CAAC;IACD,OAAO,YAAY,CAAC,QAAQ,EAAE,MAAM,CAAC,CAAC,IAAI,EAAE,CAAC;AAC/C,CAAC;AAED;;;;;;;GAOG;AACH,MAAM,UAAU,SAAS,CAAC,MAAc,EAAE,UAAkB;IAC1D,MAAM,QAAQ,GAAG,OAAO,CAAC,GAAG,CAAC,UAAU,CAAC,CAAC;IACzC,IAAI,QAAQ,EAAE,CAAC;QACb,OAAO,kBAAkB,CAAC,QAAQ,CAAC,CAAC;IACtC,CAAC;IACD,OAAO,OAAO,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC;AAC7B,CAAC;AAED;;;;;;GAMG;AACH,MAAM,UAAU,gBAAgB,CAAC,QAAgB;IAC/C,MAAM,OAAO,GAAG,QAAQ,CAAC,IAAI,EAAE,CAAC;IAChC,IAAI,CAAC,OAAO;QAAE,OAAO,KAAK,CAAC;IAE3B,8CAA8C;IAC9C,MAAM,WAAW,GAAG,8CAA8C,CAAC;IACnE,MAAM,SAAS,GAAG,OAAO,CAAC,KAAK,CAAC,WAAW,CAAC,CAAC;IAC7C,IAAI,SAAS,EAAE,CAAC;QACd,+BAA+B;QAC/B,OAAO,SAAS,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,KAAK,EAAE,EAAE;YACxC,MAAM,GAAG,GAAG,QAAQ,CAAC,KAAK,EAAE,EAAE,CAAC,CAAC;YAChC,OAAO,GAAG,IAAI,CAAC,IAAI,GAAG,IAAI,GAAG,CAAC;QAChC,CAAC,CAAC,CAAC;IACL,CAAC;IAED,+BAA+B;IAC/B,6BAA6B;IAC7B,iFAAiF;IACjF,iCAAiC;IACjC,IAAI,OAAO,CAAC,MAAM,GAAG,GAAG;QAAE,OAAO,KAAK,CAAC;IAEvC,MAAM,eAAe,GACnB,+FAA+F,CAAC;IAClG,OAAO,eAAe,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;AACvC,CAAC;AAED;;;GAGG;AACH,SAAS,gBAAgB,CAAC,aAAiC;IACzD,IAAI,CAAC,aAAa,EAAE,CAAC;QACnB,OAAO,EAAE,CAAC;IACZ,CAAC;IAED,MAAM,OAAO,GAA2B,EAAE,CAAC;IAC3C,MAAM,KAAK,GAAG,aAAa,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;IAEvC,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE,CAAC;QACzB,MAAM,OAAO,GAAG,IAAI,CAAC,IAAI,EAAE,CAAC;QAC5B,IAAI,CAAC,OAAO;YAAE,SAAS;QAEvB,MAAM,OAAO,GAAG,OAAO,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC;QACrC,IAAI,OAAO,GAAG,CAAC,EAAE,CAAC;YAChB,MAAM,GAAG,GAAG,OAAO,CAAC,SAAS,CAAC,CAAC,EAAE,OAAO,CAAC,CAAC,IAAI,EAAE,CAAC;YACjD,MAAM,KAAK,GAAG,OAAO,CAAC,SAAS,CAAC,OAAO,GAAG,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC;YACpD,OAAO,CAAC,GAAG,CAAC,GAAG,KAAK,CAAC;QACvB,CAAC;IACH,CAAC;IAED,OAAO,OAAO,CAAC;AACjB,CAAC;AAED;;;;;;;;GAQG;AACH,MAAM,UAAU,UAAU;IACxB,MAAM,QAAQ,GAAG,OAAO,CAAC,GAAG,CAAC,aAAa,CAAC;IAC3C,MAAM,QAAQ,GAAG,SAAS,CAAC,eAAe,EAAE,oBAAoB,CAAC,CAAC;IAClE,MAAM,QAAQ,GAAG,SAAS,CAAC,eAAe,EAAE,oBAAoB,CAAC,CAAC;IAElE,IAAI,CAAC,QAAQ,EAAE,CAAC;QACd,MAAM,IAAI,KAAK,CAAC,gDAAgD,CAAC,CAAC;IACpE,CAAC;IACD,IAAI,CAAC,gBAAgB,CAAC,QAAQ,CAAC,EAAE,CAAC;QAChC,MAAM,IAAI,KAAK,CACb,kCAAkC,QAAQ,8CAA8C,CACzF,CAAC;IACJ,CAAC;IACD,IAAI,CAAC,QAAQ,EAAE,CAAC;QACd,MAAM,IAAI,KAAK,CACb,8FAA8F,CAC/F,CAAC;IACJ,CAAC;IACD,IAAI,CAAC,QAAQ,EAAE,CAAC;QACd,MAAM,IAAI,KAAK,CACb,8FAA8F,CAC/F,CAAC;IACJ,CAAC;IAED,OAAO;QACL,QAAQ;QACR,IAAI,EAAE,QAAQ,CAAC,OAAO,CAAC,GAAG,CAAC,SAAS,IAAI,KAAK,EAAE,EAAE,CAAC;QAClD,QAAQ;QACR,QAAQ;QACR,QAAQ,EAAE,OAAO,CAAC,GAAG,CAAC,aAAa,IAAI,QAAQ;QAC/C,MAAM,EAAE,OAAO,CAAC,GAAG,CAAC,WAAW,IAAI,EAAE;QACrC,WAAW,EAAE,gBAAgB,CAAC,OAAO,CAAC,GAAG,CAAC,iBAAiB,CAAC;KAC7D,CAAC;AACJ,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,qBAAqB,CAAC,MAAkB;IAMtD,MAAM,gBAAgB,GAKlB;QACF,IAAI,EAAE,MAAM,CAAC,QAAQ;QACrB,IAAI,EAAE,MAAM,CAAC,QAAQ;QACrB,QAAQ,EAAE,MAAM,CAAC,QAAQ;KAC1B,CAAC;IAEF,6EAA6E;IAC7E,IAAI,CAAC,MAAM,CAAC,WAAW,CAAC,QAAQ,CAAC,EAAE,CAAC;QAClC,gBAAgB,CAAC,QAAQ,CAAC,GAAG,QAAQ,CAAC;IACxC,CAAC;IAED,mCAAmC;IACnC,IAAI,CAAC,MAAM,CAAC,WAAW,CAAC,aAAa,CAAC,EAAE,CAAC;QACvC,gBAAgB,CAAC,aAAa,CAAC,GAAG,KAAK,CAAC;IAC1C,CAAC;IAED,gCAAgC;IAChC,KAAK,MAAM,CAAC,GAAG,EAAE,KAAK,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,WAAW,CAAC,EAAE,CAAC;QAC9D,gBAAgB,CAAC,GAAG,CAAC,GAAG,KAAK,CAAC;IAChC,CAAC;IAED,OAAO,gBAAgB,CAAC;AAC1B,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,gBAAgB,CAAC,MAAkB;IACjD,OAAO,MAAM,CAAC,MAAM,IAAI,SAAS,CAAC;AACpC,CAAC;AAcD;;;;;;;GAOG;AACH,MAAM,CAAC,MAAM,kBAAkB,GAAoB;IACjD,QAAQ,EAAE,EAAE,GAAG,EAAE,GAAG,IAAI,EAAE,aAAa;IACvC,WAAW,EAAE,GAAG;IAChB,OAAO,EAAE,IAAI;CACd,CAAC;AAYF;;;;;;GAMG;AACH,MAAM,CAAC,MAAM,mBAAmB,GAAqB;IACnD,YAAY,EAAE,IAAI;IAClB,QAAQ,EAAE,KAAK;CAChB,CAAC;AAEF;;GAEG;AACH,MAAM,UAAU,mBAAmB;IACjC,MAAM,YAAY,GAAG,QAAQ,CAAC,OAAO,CAAC,GAAG,CAAC,mBAAmB,IAAI,MAAM,EAAE,EAAE,CAAC,CAAC;IAC7E,MAAM,QAAQ,GAAG,QAAQ,CAAC,OAAO,CAAC,GAAG,CAAC,eAAe,IAAI,OAAO,EAAE,EAAE,CAAC,CAAC;IAEtE,OAAO;QACL,YAAY,EAAE,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,YAAY,CAAC;QACvC,QAAQ,EAAE,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,QAAQ,CAAC;KAChC,CAAC;AACJ,CAAC;AAED;;;;;;;GAOG;AACH,MAAM,UAAU,eAAe,CAC7B,cAAkC,EAClC,SAA2B,mBAAmB,EAAE;IAEhD,MAAM,KAAK,GAAG,cAAc,IAAI,MAAM,CAAC,YAAY,CAAC;IACpD,OAAO,IAAI,CAAC,GAAG,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,KAAK,CAAC,EAAE,MAAM,CAAC,QAAQ,CAAC,CAAC;AACvD,CAAC"}

package/dist/db/connection.d.ts

@@ -1,7 +1,6 @@
 /**
  * JDBC Connection Manager for IBM DB2i using node-jt400
  */
-import { pool } from 'node-jt400';
 import type { DB2iConfig } from '../config.js';
 export interface QueryResult {
     rows: Record<string, unknown>[];
@@ -19,24 +18,12 @@ export interface QueryResult {
  * Initialize the connection pool
  */
 export declare function initializePool(config: DB2iConfig): void;
-/**
- * Get the connection pool instance
- */
-export declare function getPool(): ReturnType<typeof pool>;
 /**
  * Execute a query and return results
  */
 export declare function executeQuery(sql: string, params?: unknown[]): Promise<QueryResult>;
-/**
- * Execute a query with metadata about columns
- */
-export declare function executeQueryWithMetadata(sql: string, params?: unknown[]): Promise<QueryResult>;
 /**
  * Test the database connection
  */
 export declare function testConnection(): Promise<boolean>;
-/**
- * Close the connection pool
- */
-export declare function closePool(): Promise<void>;
 //# sourceMappingURL=connection.d.ts.map

package/dist/db/connection.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"connection.d.ts","sourceRoot":"","sources":["../../src/db/connection.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,OAAO,EAAE,IAAI,EAAE,MAAM,YAAY,CAAC;AAElC,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,cAAc,CAAC;AAG/C,MAAM,WAAW,WAAW;IAC1B,IAAI,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,EAAE,CAAC;IAChC,QAAQ,CAAC,EAAE;QACT,WAAW,EAAE,MAAM,CAAC;QACpB,OAAO,EAAE,KAAK,CAAC;YACb,IAAI,EAAE,MAAM,CAAC;YACb,IAAI,EAAE,MAAM,CAAC;YACb,SAAS,EAAE,MAAM,CAAC;YAClB,KAAK,EAAE,MAAM,CAAC;SACf,CAAC,CAAC;KACJ,CAAC;CACH;AAID;;GAEG;AACH,wBAAgB,cAAc,CAAC,MAAM,EAAE,UAAU,GAAG,IAAI,CAGvD;AAED;;GAEG;AACH,wBAAgB,OAAO,IAAI,UAAU,CAAC,OAAO,IAAI,CAAC,CAKjD;AAkBD;;GAEG;AACH,wBAAsB,YAAY,CAChC,GAAG,EAAE,MAAM,EACX,MAAM,GAAE,OAAO,EAAO,GACrB,OAAO,CAAC,WAAW,CAAC,CActB;AAED;;GAEG;AACH,wBAAsB,wBAAwB,CAC5C,GAAG,EAAE,MAAM,EACX,MAAM,GAAE,OAAO,EAAO,GACrB,OAAO,CAAC,WAAW,CAAC,CActB;AAED;;GAEG;AACH,wBAAsB,cAAc,IAAI,OAAO,CAAC,OAAO,CAAC,CAOvD;AAED;;GAEG;AACH,wBAAsB,SAAS,IAAI,OAAO,CAAC,IAAI,CAAC,CAK/C"}
+{"version":3,"file":"connection.d.ts","sourceRoot":"","sources":["../../src/db/connection.ts"],"names":[],"mappings":"AAAA;;GAEG;AAIH,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,cAAc,CAAC;AAM/C,MAAM,WAAW,WAAW;IAC1B,IAAI,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,EAAE,CAAC;IAChC,QAAQ,CAAC,EAAE;QACT,WAAW,EAAE,MAAM,CAAC;QACpB,OAAO,EAAE,KAAK,CAAC;YACb,IAAI,EAAE,MAAM,CAAC;YACb,IAAI,EAAE,MAAM,CAAC;YACb,SAAS,EAAE,MAAM,CAAC;YAClB,KAAK,EAAE,MAAM,CAAC;SACf,CAAC,CAAC;KACJ,CAAC;CACH;AAID;;GAEG;AACH,wBAAgB,cAAc,CAAC,MAAM,EAAE,UAAU,GAAG,IAAI,CAKvD;AA4BD;;GAEG;AACH,wBAAsB,YAAY,CAChC,GAAG,EAAE,MAAM,EACX,MAAM,GAAE,OAAO,EAAO,GACrB,OAAO,CAAC,WAAW,CAAC,CAgBtB;AAED;;GAEG;AACH,wBAAsB,cAAc,IAAI,OAAO,CAAC,OAAO,CAAC,CAUvD"}

package/dist/db/connection.js

@@ -3,18 +3,22 @@
  */
 import { pool } from 'node-jt400';
 import { buildConnectionConfig } from '../config.js';
+import { createChildLogger } from '../utils/logger.js';
+const log = createChildLogger({ component: 'database' });
 let connectionPool = null;
 /**
  * Initialize the connection pool
  */
 export function initializePool(config) {
+    log.debug({ hostname: config.hostname, port: config.port }, 'Initializing connection pool');
     const connectionConfig = buildConnectionConfig(config);
     connectionPool = pool(connectionConfig);
+    log.info({ hostname: config.hostname }, 'Connection pool created');
 }
 /**
- * Get the connection pool instance
+ * Get the connection pool instance (internal use only)
  */
-export function getPool() {
+function getPool() {
     if (!connectionPool) {
         throw new Error('Connection pool not initialized. Call initializePool first.');
     }
@@ -45,31 +49,16 @@ function toParams(params) {
 export async function executeQuery(sql, params = []) {
     const db = getPool();
     try {
+        log.debug({ sql: sql.substring(0, 200), paramCount: params.length }, 'Executing query');
         const typedParams = toParams(params);
         const results = await db.query(sql, typedParams);
-        return {
-            rows: results,
-        };
-    }
-    catch (error) {
-        const message = error instanceof Error ? error.message : 'Unknown database error';
-        throw new Error(`Database query failed: ${message}`);
-    }
-}
-/**
- * Execute a query with metadata about columns
- */
-export async function executeQueryWithMetadata(sql, params = []) {
-    const db = getPool();
-    try {
-        const typedParams = toParams(params);
-        const results = await db.query(sql, typedParams);
-        return {
-            rows: results,
-        };
+        const rows = results;
+        log.debug({ rowCount: rows.length }, 'Query completed');
+        return { rows };
     }
     catch (error) {
         const message = error instanceof Error ? error.message : 'Unknown database error';
+        log.debug({ err: error, sql: sql.substring(0, 200) }, 'Database query failed');
         throw new Error(`Database query failed: ${message}`);
     }
 }
@@ -78,20 +67,14 @@ export async function executeQueryWithMetadata(sql, params = []) {
  */
 export async function testConnection() {
     try {
+        log.debug('Testing database connection');
         await executeQuery('SELECT 1 FROM SYSIBM.SYSDUMMY1');
+        log.debug('Connection test successful');
         return true;
     }
-    catch {
+    catch (error) {
+        log.warn({ err: error }, 'Connection test failed');
         return false;
     }
 }
-/**
- * Close the connection pool
- */
-export async function closePool() {
-    if (connectionPool) {
-        // node-jt400 pool doesn't have explicit close, but we can clear the reference
-        connectionPool = null;
-    }
-}
 //# sourceMappingURL=connection.js.map

package/dist/db/connection.js.map

@@ -1 +1 @@
-{"version":3,"file":"connection.js","sourceRoot":"","sources":["../../src/db/connection.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,OAAO,EAAE,IAAI,EAAE,MAAM,YAAY,CAAC;AAGlC,OAAO,EAAE,qBAAqB,EAAE,MAAM,cAAc,CAAC;AAerD,IAAI,cAAc,GAAmC,IAAI,CAAC;AAE1D;;GAEG;AACH,MAAM,UAAU,cAAc,CAAC,MAAkB;IAC/C,MAAM,gBAAgB,GAAG,qBAAqB,CAAC,MAAM,CAAC,CAAC;IACvD,cAAc,GAAG,IAAI,CAAC,gBAAgB,CAAC,CAAC;AAC1C,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,OAAO;IACrB,IAAI,CAAC,cAAc,EAAE,CAAC;QACpB,MAAM,IAAI,KAAK,CAAC,6DAA6D,CAAC,CAAC;IACjF,CAAC;IACD,OAAO,cAAc,CAAC;AACxB,CAAC;AAED;;GAEG;AACH,SAAS,QAAQ,CAAC,MAAiB;IACjC,OAAO,MAAM;SACV,MAAM,CAAC,CAAC,CAAC,EAAsC,EAAE,CAAC,CAAC,KAAK,SAAS,CAAC;SAClE,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE;QACT,IAAI,CAAC,KAAK,IAAI;YAAE,OAAO,IAAI,CAAC;QAC5B,IAAI,OAAO,CAAC,KAAK,QAAQ;YAAE,OAAO,CAAC,CAAC;QACpC,IAAI,OAAO,CAAC,KAAK,QAAQ;YAAE,OAAO,CAAC,CAAC;QACpC,IAAI,CAAC,YAAY,IAAI;YAAE,OAAO,CAAC,CAAC;QAChC,gCAAgC;QAChC,OAAO,MAAM,CAAC,CAAC,CAAC,CAAC;IACnB,CAAC,CAAC,CAAC;AACP,CAAC;AAED;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,YAAY,CAChC,GAAW,EACX,SAAoB,EAAE;IAEtB,MAAM,EAAE,GAAG,OAAO,EAAE,CAAC;IAErB,IAAI,CAAC;QACH,MAAM,WAAW,GAAG,QAAQ,CAAC,MAAM,CAAC,CAAC;QACrC,MAAM,OAAO,GAAG,MAAM,EAAE,CAAC,KAAK,CAAC,GAAG,EAAE,WAAW,CAAC,CAAC;QAEjD,OAAO;YACL,IAAI,EAAE,OAAoC;SAC3C,CAAC;IACJ,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,MAAM,OAAO,GAAG,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,wBAAwB,CAAC;QAClF,MAAM,IAAI,KAAK,CAAC,0BAA0B,OAAO,EAAE,CAAC,CAAC;IACvD,CAAC;AACH,CAAC;AAED;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,wBAAwB,CAC5C,GAAW,EACX,SAAoB,EAAE;IAEtB,MAAM,EAAE,GAAG,OAAO,EAAE,CAAC;IAErB,IAAI,CAAC;QACH,MAAM,WAAW,GAAG,QAAQ,CAAC,MAAM,CAAC,CAAC;QACrC,MAAM,OAAO,GAAG,MAAM,EAAE,CAAC,KAAK,CAAC,GAAG,EAAE,WAAW,CAAC,CAAC;QAEjD,OAAO;YACL,IAAI,EAAE,OAAoC;SAC3C,CAAC;IACJ,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,MAAM,OAAO,GAAG,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,wBAAwB,CAAC;QAClF,MAAM,IAAI,KAAK,CAAC,0BAA0B,OAAO,EAAE,CAAC,CAAC;IACvD,CAAC;AACH,CAAC;AAED;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,cAAc;IAClC,IAAI,CAAC;QACH,MAAM,YAAY,CAAC,gCAAgC,CAAC,CAAC;QACrD,OAAO,IAAI,CAAC;IACd,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,KAAK,CAAC;IACf,CAAC;AACH,CAAC;AAED;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,SAAS;IAC7B,IAAI,cAAc,EAAE,CAAC;QACnB,8EAA8E;QAC9E,cAAc,GAAG,IAAI,CAAC;IACxB,CAAC;AACH,CAAC"}
+{"version":3,"file":"connection.js","sourceRoot":"","sources":["../../src/db/connection.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,OAAO,EAAE,IAAI,EAAE,MAAM,YAAY,CAAC;AAGlC,OAAO,EAAE,qBAAqB,EAAE,MAAM,cAAc,CAAC;AACrD,OAAO,EAAE,iBAAiB,EAAE,MAAM,oBAAoB,CAAC;AAEvD,MAAM,GAAG,GAAG,iBAAiB,CAAC,EAAE,SAAS,EAAE,UAAU,EAAE,CAAC,CAAC;AAezD,IAAI,cAAc,GAAmC,IAAI,CAAC;AAE1D;;GAEG;AACH,MAAM,UAAU,cAAc,CAAC,MAAkB;IAC/C,GAAG,CAAC,KAAK,CAAC,EAAE,QAAQ,EAAE,MAAM,CAAC,QAAQ,EAAE,IAAI,EAAE,MAAM,CAAC,IAAI,EAAE,EAAE,8BAA8B,CAAC,CAAC;IAC5F,MAAM,gBAAgB,GAAG,qBAAqB,CAAC,MAAM,CAAC,CAAC;IACvD,cAAc,GAAG,IAAI,CAAC,gBAAgB,CAAC,CAAC;IACxC,GAAG,CAAC,IAAI,CAAC,EAAE,QAAQ,EAAE,MAAM,CAAC,QAAQ,EAAE,EAAE,yBAAyB,CAAC,CAAC;AACrE,CAAC;AAED;;GAEG;AACH,SAAS,OAAO;IACd,IAAI,CAAC,cAAc,EAAE,CAAC;QACpB,MAAM,IAAI,KAAK,CAAC,6DAA6D,CAAC,CAAC;IACjF,CAAC;IACD,OAAO,cAAc,CAAC;AACxB,CAAC;AAED;;GAEG;AACH,SAAS,QAAQ,CAAC,MAAiB;IACjC,OAAO,MAAM;SACV,MAAM,CAAC,CAAC,CAAC,EAAsC,EAAE,CAAC,CAAC,KAAK,SAAS,CAAC;SAClE,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE;QACT,IAAI,CAAC,KAAK,IAAI;YAAE,OAAO,IAAI,CAAC;QAC5B,IAAI,OAAO,CAAC,KAAK,QAAQ;YAAE,OAAO,CAAC,CAAC;QACpC,IAAI,OAAO,CAAC,KAAK,QAAQ;YAAE,OAAO,CAAC,CAAC;QACpC,IAAI,CAAC,YAAY,IAAI;YAAE,OAAO,CAAC,CAAC;QAChC,gCAAgC;QAChC,OAAO,MAAM,CAAC,CAAC,CAAC,CAAC;IACnB,CAAC,CAAC,CAAC;AACP,CAAC;AAED;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,YAAY,CAChC,GAAW,EACX,SAAoB,EAAE;IAEtB,MAAM,EAAE,GAAG,OAAO,EAAE,CAAC;IAErB,IAAI,CAAC;QACH,GAAG,CAAC,KAAK,CAAC,EAAE,GAAG,EAAE,GAAG,CAAC,SAAS,CAAC,CAAC,EAAE,GAAG,CAAC,EAAE,UAAU,EAAE,MAAM,CAAC,MAAM,EAAE,EAAE,iBAAiB,CAAC,CAAC;QACxF,MAAM,WAAW,GAAG,QAAQ,CAAC,MAAM,CAAC,CAAC;QACrC,MAAM,OAAO,GAAG,MAAM,EAAE,CAAC,KAAK,CAAC,GAAG,EAAE,WAAW,CAAC,CAAC;QACjD,MAAM,IAAI,GAAG,OAAoC,CAAC;QAClD,GAAG,CAAC,KAAK,CAAC,EAAE,QAAQ,EAAE,IAAI,CAAC,MAAM,EAAE,EAAE,iBAAiB,CAAC,CAAC;QAExD,OAAO,EAAE,IAAI,EAAE,CAAC;IAClB,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,MAAM,OAAO,GAAG,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,wBAAwB,CAAC;QAClF,GAAG,CAAC,KAAK,CAAC,EAAE,GAAG,EAAE,KAAK,EAAE,GAAG,EAAE,GAAG,CAAC,SAAS,CAAC,CAAC,EAAE,GAAG,CAAC,EAAE,EAAE,uBAAuB,CAAC,CAAC;QAC/E,MAAM,IAAI,KAAK,CAAC,0BAA0B,OAAO,EAAE,CAAC,CAAC;IACvD,CAAC;AACH,CAAC;AAED;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,cAAc;IAClC,IAAI,CAAC;QACH,GAAG,CAAC,KAAK,CAAC,6BAA6B,CAAC,CAAC;QACzC,MAAM,YAAY,CAAC,gCAAgC,CAAC,CAAC;QACrD,GAAG,CAAC,KAAK,CAAC,4BAA4B,CAAC,CAAC;QACxC,OAAO,IAAI,CAAC;IACd,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,GAAG,CAAC,IAAI,CAAC,EAAE,GAAG,EAAE,KAAK,EAAE,EAAE,wBAAwB,CAAC,CAAC;QACnD,OAAO,KAAK,CAAC;IACf,CAAC;AACH,CAAC"}