claude-database-tools

DeleteData.test.ts•4.99 kB

import { describe, it, expect } from 'vitest'; describe('DeleteData', () => { describe('Confirmation Requirement', () => { it('should reject delete without confirmation', () => { const confirmDelete = false; if (!confirmDelete || confirmDelete !== true) { const result = { success: false, message: 'Physical DELETE operations require confirmDelete: true. Consider using update_data tool to set __deleted = 1 instead (soft delete).', warning: 'This database uses soft delete patterns. Physical deletes should be rare.', }; expect(result.success).toBe(false); expect(result.message).toContain('confirmDelete: true'); expect(result.warning).toBeDefined(); } }); it('should reject delete with undefined confirmation', () => { const confirmDelete = undefined; const requiresConfirmation = !confirmDelete || confirmDelete !== true; expect(requiresConfirmation).toBe(true); }); it('should accept delete with explicit confirmation', () => { const confirmDelete = true; const requiresConfirmation = !confirmDelete || confirmDelete !== true; expect(requiresConfirmation).toBe(false); }); it('should reject delete with string "true" (not boolean)', () => { const confirmDelete = 'true' as any; const requiresConfirmation = !confirmDelete || confirmDelete !== true; expect(requiresConfirmation).toBe(true); }); }); describe('WHERE Clause Validation', () => { it('should require WHERE clause', () => { const whereClause = ''; const isValid = Boolean(whereClause && whereClause.trim() !== ''); expect(isValid).toBe(false); }); it('should reject whitespace-only WHERE clause', () => { const whereClause = ' \t\n '; const isValid = Boolean(whereClause && whereClause.trim() !== ''); expect(isValid).toBe(false); }); it('should accept valid WHERE clause', () => { const whereClause = 'id = 1'; const isValid = Boolean(whereClause && whereClause.trim() !== ''); expect(isValid).toBe(true); }); }); describe('Table Name Validation', () => { const tableNameRegex = /^[\w\d_\.]+$/; it('should accept simple table name', () => { expect(tableNameRegex.test('users')).toBe(true); }); it('should accept schema-qualified table name', () => { expect(tableNameRegex.test('dbo.users')).toBe(true); }); it('should accept table name with underscore', () => { expect(tableNameRegex.test('user_accounts')).toBe(true); }); it('should accept table name with numbers', () => { expect(tableNameRegex.test('users2024')).toBe(true); }); it('should reject table name with spaces', () => { expect(tableNameRegex.test('user accounts')).toBe(false); }); it('should reject table name with special characters', () => { expect(tableNameRegex.test('users;DROP')).toBe(false); expect(tableNameRegex.test('users--')).toBe(false); expect(tableNameRegex.test("users'")).toBe(false); }); it('should reject table name with SQL keywords embedded', () => { // Note: the regex only validates format, not SQL keywords // But special characters used in injection are blocked expect(tableNameRegex.test('users;DELETE')).toBe(false); }); }); describe('Query Construction', () => { it('should build correct DELETE query', () => { const tableName = 'users'; const whereClause = 'id = 1'; const query = `DELETE FROM ${tableName} WHERE ${whereClause}`; expect(query).toBe('DELETE FROM users WHERE id = 1'); }); it('should handle schema-qualified table name', () => { const tableName = 'dbo.users'; const whereClause = 'status = 0'; const query = `DELETE FROM ${tableName} WHERE ${whereClause}`; expect(query).toBe('DELETE FROM dbo.users WHERE status = 0'); }); }); describe('Readonly Mode', () => { it('should block operations in readonly mode', () => { const isReadonlyMode = true; if (isReadonlyMode) { const result = { success: false, message: 'Operation denied: Database is in READONLY mode', error: 'READONLY_MODE', }; expect(result.success).toBe(false); expect(result.error).toBe('READONLY_MODE'); } }); }); describe('Response Format', () => { it('should return rows deleted count and warning', () => { const rowsAffected = 3; const result = { success: true, message: `DELETE completed. ${rowsAffected} row(s) deleted`, rowsAffected: rowsAffected, warning: 'Physical delete performed. This database uses soft delete patterns (__deleted = 1).', }; expect(result.success).toBe(true); expect(result.rowsAffected).toBe(3); expect(result.warning).toContain('soft delete'); }); }); });

Loading blob content...

Latest Blog Posts

Don't Use Large Strings as Cache Keys
By punkpeye on January 11, 2026.
markdown
node-js
cache
What are Claude Skills?
By punkpeye on January 10, 2026.
mcp
skills
How to Test MCP Streamable HTTP Endpoints Using cURL
By punkpeye on January 2, 2026.
tutorial
bash

MCP directory API

We provide all the information about MCP servers via our MCP API.

curl -X GET 'https://glama.ai/api/mcp/v1/servers/Cyronius/claude-database-tools'

If you have feedback or need assistance with the MCP directory API, please join our Discord server

DeleteData.test.ts•4.99 kB