pg-sql-strings
Advanced tools
// create postgres pool
import { Statement } from "pg-sql-strings";
const pool = new Pool({
connectionString: 'postgres://user:pass@localhost:5432/db'
});
// prepare your own query interface
async function query<T>(statement: Statement) {
const { rows, rowCount } = await pool.query<T>(statement);
return [rows, rowCount];
}
// also, we can create handy interface to interact with transactions
export async function transaction() {
const connection = await pool.connect();
return {
begin: () => connection.query('BEGIN'),
commit: () => connection.query('COMMIT'),
rollback: () => connection.query('ROLLBACK'),
release: () => connection.release(),
query: async <T>(statement: Statement) => {
const { rows, rowCount } = await connection.query<T>(statement);
return [rows, rowCount];
},
};
}
import { sql } from "pg-sql-strings";
const number = 99
const statement = sql`SELECT 1 + ${number} AS sum`
const [rows] = await query(statement)
console.log(rows) // returns [ { sum: 100 } ]
import { sql, query } from "pg-sql-strings";
const params = { age: 18 }
const statement = sql`SELECT name, age FROM users`
if (params.age) {
statement.append(sql`WHERE age > ${params.age}`)
}
const [rows] = await query(statement)
console.log(rows) // returns [ { name: 'Mary', age: 39 }, { name: 'Ingvar', age: 27 } ]
import { sql, transaction } from "pg-sql-strings";
const params = { age: 18, name: 'Lo' }
const statement = sql`SELECT name, age FROM users`
const conditions = []
if (params.age) {
conditions.push(sql`age > ${params.age}`)
}
if (params.name) {
conditions.push(sql`name iLike ${params.name + '%'}`)
}
if (conditions.length) {
statement.append(sql`WHERE`)
statement.join(conditions, 'AND')
}
const [rows] = await query(statement)
console.log(rows) // returns [ { name: 'Lotar', age: 19 } ]
import { sql, transaction } from "pg-sql-strings";
const { begin, rollback, release, query } = await transaction()
try {
await begin()
const params = {
id: 1,
age: 30
}
const statement = sql`UPDATE users SET age = ${params.age}`
if (params.id) {
statement.append(sql`WHERE id = ${params.id}`)
}
statement.append(sql`RETURNING *`)
const [rows] = await query(statement)
console.log(rows) // returns [ { id: 1, name: 'John', age: 30 } ]
} catch (error) {
// handle error
await rollback()
} finally {
await release()
}
FAQs
Postgres parametrized query builder
We found that pg-sql-strings demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Axios compromise traced to social engineering, showing how attacks on maintainers can bypass controls and expose the broader software supply chain.
Security News
Node.js has paused its bug bounty program after funding ended, removing payouts for vulnerability reports but keeping its security process unchanged.
Security News
The Axios compromise shows how time-dependent dependency resolution makes exposure harder to detect and contain.