Ling0925
/
buster
mirror of https://github.com/buster-so/buster.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
buster/apps
History
Devin AI b38940939b feat: implement TypeScript wildcard validation for SQL security (BUS-1487) 
- Add validateWildcardUsage function to sql-parser-helpers.ts
- Block SELECT * and qualified wildcards on physical database tables
- Allow wildcards on CTEs and derived tables
- Integrate wildcard validation into permission-validator.ts
- Add comprehensive tests for all wildcard validation scenarios
- Revert Rust SQL analyzer changes to focus on TypeScript implementation
- Fix CTE alias handling for qualified wildcards (e.g., SELECT cte_alias.*)

This prevents bypassing column-level permissions through wildcard queries
while maintaining backward compatibility with legitimate query patterns.

Co-Authored-By: Dallin Bentley <dallinbentley98@gmail.com>
 		2025-07-23 13:43:26 +00:00
..
api feat: implement TypeScript wildcard validation for SQL security (BUS-1487) 2025-07-23 13:43:26 +00:00
cli Mastra braintrust (#391) 2025-07-02 14:33:40 -07:00
electric-server tsx is a workspace package 2025-07-18 14:18:06 -06:00
server here we go agian 2025-07-21 16:38:58 -06:00
trigger force the y on package 2025-07-22 09:45:46 -06:00
web Import type only 2025-07-22 13:45:59 -06:00
tsconfig.json Create tsconfig.json 2025-07-02 21:04:44 -06:00