/atdatabases

TypeScript clients for databases that prevent SQL Injection

Primary LanguageTypeScriptMIT LicenseMIT

@databases - SQL Libraries for Node.js that protect you from SQL Injection with support for Postgres, MySQL, SQLite and Expo/WebSQL

Safe From HTML Injection

Using tagged template literals for queries, e.g.

db.query(sql`SELECT * FROM users WHERE id=${userID}`);

makes it virtually impossible for SQL Injection attacks to slip in un-noticed. All the @databases libraries enforce the use of the sql tagged template literals, so you can't accidentally miss them.

The query is then passed to your database engine as a separate string and values:

{text: 'SELECT * FROM users WHERE id=?', values: [userID]}

Promises

All the @databases APIs are designed with promises in mind from the get go.

TypeScript

Written in TypeScript, so every module has type safety and type definitions built in.

Modular

Each database driver is published to npm as a separate module, so you don't need to install the ones you don't need.

Package Name Version Docs
@databases/expo NPM version https://www.atdatabases.org/docs/websql
@databases/mysql NPM version https://www.atdatabases.org/docs/mysql
@databases/mysql-test NPM version https://www.atdatabases.org/docs/mysql-test
@databases/pg NPM version https://www.atdatabases.org/docs/pg
@databases/pg-migrations NPM version https://www.atdatabases.org/docs/pg-migrations
@databases/pg-test NPM version https://www.atdatabases.org/docs/pg-test
@databases/sql NPM version https://www.atdatabases.org/docs/sql
@databases/sqlite NPM version https://www.atdatabases.org/docs/sqlite
@databases/websql NPM version https://www.atdatabases.org/docs/websql
@databases/escape-identifier NPM version Not documented yet
@databases/migrations-base NPM version Not documented yet
@databases/mysql-config NPM version Not documented yet
@databases/pg-config NPM version Not documented yet
@databases/pg-connection-string NPM version Not documented yet
@databases/pg-create NPM version Not documented yet
@databases/pg-data-type-id NPM version Not documented yet
@databases/pg-errors NPM version Not documented yet
@databases/pg-schema-cli NPM version Not documented yet
@databases/pg-schema-introspect NPM version Not documented yet
@databases/pg-schema-print-types NPM version Not documented yet
@databases/pg-typed NPM version Not documented yet
@databases/push-to-async-iterable NPM version Not documented yet
@databases/split-sql-query NPM version Not documented yet
@databases/validate-unicode NPM version Not documented yet
@databases/websql-core NPM version Not documented yet
@databases/with-container NPM version Not documented yet

Check out the website to learn more: https://www.atdatabases.org/