Research
Security News
Malicious npm Packages Inject SSH Backdoors via Typosquatted Libraries
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
expo-sqlite-wrapper
Advanced tools
This is a wrapper for `expo-sqlite` as it make it very easy to create, update and work with the database file
This is a wrapper for expo-sqlite
as it make it very easy to create,update and work with the database file
npm install expo-sqlite
npm install expo-sqlite-wrapper
Installation for expo-sqlite
read https://docs.expo.dev/versions/latest/sdk/sqlite/
import { IBaseModule, TableStructor, ColumnType, IQueryResultItem } from 'expo-sqlite-wrapper'
export type TableNames = "Parents" | "Childrens";
export class Parent extends IBaseModule<TableNames>{
name: string;
email: string;
// Using IQueryResultItem is optional, you could simple use Child[]
children: IQueryResultItem<Child,TableNames>[];
constructor(name:string, email: string ){
super("Parents");
this.name = name;
this.email = email;
this.children = [];
}
static GetTableStructor() {
return new TableStructor<Parent, TableNames>(
"Parents",
[
{ columnName: x=> x.id, columnType: ColumnType.Number, nullable: false, isPrimary: true, autoIncrement: true },
{ columnName: x=> x.name, columnType: ColumnType.String },
//isUique acts as an Id too as the library will chack if there exist an item with the same field value and will update instead.
{ columnName: x=> x.email, columnType: ColumnType.String, isUique: true }
]
)
}
}
export class Child extends IBaseModule<TableNames>{
someFiel: string;
parentId?: number;
constructor(someFiel:string, parentId?: number ){
super("Childrens");
this.someFiel = someFiel;
this.parentId = parentId;
}
static GetTableStructor() {
return new TableStructor<Child, TableNames>(
"Childrens",
[
{ columnName: x=> x.id, columnType: ColumnType.Number, nullable: false, isPrimary: true, autoIncrement: true },
{ columnName: x=> .name, columnType: ColumnType.String },
{ columnName: x=> x.parentId, columnType: ColumnType.Number, nullable: true },
],
[
{ contraintTableName: "Parents", contraintColumnName: "id", columnName: x=> x.parentId }
]
)
}
}
import createDbContext, { IDatabase, IQueryResultItem, IBaseModule } from 'expo-sqlite-wrapper'
import * as SQLite from 'expo-sqlite';
const tables = [Parent.GetTableStructor(), Child.GetTableStructor()]
export default class DbContext {
databaseName: string = "mydatabase.db";
database: IDatabase<TableNames>;
constructor() {
this.database = createDbContext<TableNames>(tables, async () => SQLite.openDatabase(this.databaseName));
}
}
const dbContext = new DbContext();
const App=()=> {
React.useEffect(()=> {
// When the app start
const firstRun= async()=> {
// this will create the database tables if it not already created
await dbContext.database.setUpDataBase();
}
firstRun();
},[]);
const addItem= async ()=> {
var item = await dbContext.database.save(new Parent("testName", "test@gmail.com"));
var child = await dbContext.database.save(new Child("testName",item.id));
// There is many different way to select
// the basic way
// this will be converted to [SELECT * FROM PARENTS WHERE name = ?] WHERE ? is the arguments
var item = await dbContext.database.where<Parent>("Parents", { name: "testName"})
// and there is a much uniqe way, for IQuery read below to see what you methods it containe
var item = await dbContext.database.query<Parent>("Parents")
.Column(x=> x.name)
.EqualTo("testName")
.firstOrDefault();
item.name= "test"
item.saveChanges();
// You could also load the children when using query
// this will be converted to [Select * from Parents where (name in (?,?)) OR (email like %?%)] WHERE ? is the arguments.
// Also make note that if arguments in IN() is empty or undefined the select Sats will remove the select for the column Name
// and the select will be [Select * from Parents where (email like %?%)] the same for EqualTo etc..
var item = await dbContext.database.query<Parent>("Parents")
.Start().Column(x=> x.name).IN(["name", "testName"]).End()
.OR()
.Start().Column(x=> x.email).Contains("test@").End()
.LoadChildren("Childrens", x=> x.id)
.With<Child>(x=> x.parentId)
.AssignTo(x=> x.children).toList();
// You could also use simple sql
var item= (await dbContext.database.find("Select * from Parents where (name in (?,?)) OR (email like %?%)", ["name", "testName","test@" ])) as Parent[];
// you could also watch the db operation very easy.
useEffect(()=> {
var watcher = dbContext.database.watch<Parent>("Parents");
watcher.onSave = async (item, operation)=> {
// operation = "INSERT" OR "UPDATE"
console.log(item);
}
watcher.onDelete = async (item)=> {
console.log(item);
}
return ()=> watcher.removeWatch();
},[])
}
}
interface IQuery<T, D extends string> {
Column: <B>(item: ((x: T) => B)|string) => IQuery<T, D>;
EqualTo: (value: SingleValue) => IQuery<T, D>;
Contains: (value: StringValue) => IQuery<T, D>;
StartWith: (value: StringValue) => IQuery<T, D>;
EndWith: (value: StringValue) => IQuery<T, D>;
NotEqualTo: (value: SingleValue) => IQuery<T, D>;
EqualAndGreaterThen: <B>(value: NumberValue) => IQuery<T, D>;
EqualAndLessThen: (value: NumberValue) => IQuery<T, D>;
Start: () => IQuery<T, D>;
End: () => IQuery<T, D>;
OR: () => IQuery<T, D>;
AND: () => IQuery<T, D>;
GreaterThan: (value: NumberValue) => IQuery<T, D>;
LessThan: (value: ((x: T) => B) | NumberValue) => IQuery<T, D>;
IN: (value: ArrayValue) => IQuery<T, D>;
NotIn: (value: ArrayValue) => IQuery<T, D>;
Null: () => IQuery<T, D>;
NotNull: () => IQuery<T, D>;
// Load array
LoadChildren: <B>(childTableName: D, parentProperty: ((x: T) => B)|string) => IChildQueryLoader<B, T, D>;
// load object
LoadChild: <B>(childTableName: D, parentProperty: ((x: T) => B)|string) => IChildQueryLoader<B, T, D>
// get the first item or undefined
firstOrDefault: () => Promise<IQueryResultItem<T, D> | undefined>;
// Try to find the Queried item if not found then insert item and return it from the database.
findOrSave: (item: IBaseModule<D>) => Promise<IQueryResultItem<T, D>>;
// return a list
toList: () => Promise<IQueryResultItem<T, D>[]>;
getQueryResult: () => IQuaryResult<D>;
}
export interface IDatabase<D extends string> {
// the columns for the current table
allowedKeys: (tableName: D) => Promise<string[]>;
// convert object to IQueryResultItem
asQueryable: <T>(item: IBaseModule<D>, tableName?: D) => Promise<IQueryResultItem<T, D>>
// add a watcher for the selected table, this is a global watch.
// no matter which dbContext you use it will trigger when a change to the database item for the selected table is chaged
watch: <T>(tableName: D) => IWatcher<T, D>;
// start a Query
query: <T>(tableName: D) => IQuery<T, D>;
find: (query: string, args?: any[], tableName?: D) => Promise<IBaseModule<D>[]>
// insert or update depends on Id or isUique columns
save: <T>(item?: IBaseModule<D> | (IBaseModule<D>[]), insertOnly?: Boolean, tableName?: D) => Promise<T[]>;
where: <T>(tableName: D, query?: any | T) => Promise<T[]>;
// delete an item, there is no check for contraint values, so make sure you do that befor you delete the item
delete: (item: IBaseModule<D> | (IBaseModule<D>[]), tableName?: D) => Promise<void>;
// execute a query
execute: (query: string, args?: any[]) => Promise<boolean>;
// drop all tables in the database
dropTables: () => Promise<void>;
// Check and create table if not exist. this only run once when the app start else set forceCheck= true to check again
setUpDataBase: (forceCheck?: boolean) => Promise<void>;
// check if the modules differ from the database table.
// You will have to apply those changes your selef. You could make an ApplyChanges and get the values then drops all tables and
// recreated it using setUpDataBase(true) then insert it them again.
tableHasChanges: (item: TablaStructor<D>) => Promise<boolean>;
}
If you use obfuscator-io-metro-plugin and use IQuery expression eg Column(x=> x.name)
then you should have those settings below. as the obfuscator will rewite all properties and the library can not read those.
const jsoMetroPlugin = require("obfuscator-io-metro-plugin")(
{
compact: false,
sourceMap: true,
controlFlowFlattening: true,
controlFlowFlatteningThreshold: 0, // Very Importend
numbersToExpressions: true,
simplify: true,
shuffleStringArray: true,
splitStrings: true,
stringArrayThreshold: 0 // Very Importend
},
{
runInDev: false /* optional */,
logObfuscatedFiles: true /* optional generated files will be located at ./.jso */,
sourceMapLocation:
"./index.android.bundle.map" /* optional only works if sourceMap: true in obfuscation option */,
}
);
Otherwise if you still want to use more advanced obfuscator settings then you should use Column("name")
instead of expression x=> x.name
as the library could still read the string and count it as a column.
This Library is new and I am using it for my project and decided too put it on npm, so there may be some issues discovered later. Please report those so I could make sure to fix them.
FAQs
This is an ORM, build around expo-sqlite. It will make operation like UPDATE,SELECT AND INSERT a lot easier to handle
The npm package expo-sqlite-wrapper receives a total of 72 weekly downloads. As such, expo-sqlite-wrapper popularity was classified as not popular.
We found that expo-sqlite-wrapper demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket’s threat research team has detected six malicious npm packages typosquatting popular libraries to insert SSH backdoors.
Security News
MITRE's 2024 CWE Top 25 highlights critical software vulnerabilities like XSS, SQL Injection, and CSRF, reflecting shifts due to a refined ranking methodology.
Security News
In this segment of the Risky Business podcast, Feross Aboukhadijeh and Patrick Gray discuss the challenges of tracking malware discovered in open source softare.