🚀 Big News: Socket Acquires Coana to Bring Reachability Analysis to Every Appsec Team.Learn more
Socket
Sign inDemoInstall
Socket
Sign inDemoInstall

sql-string-qb

Package Overview
Dependencies
Maintainers
1
Versions
14
Alerts
File Explorer

Advanced tools

License
Socket logo

Install Socket

Detect and block malicious and high-risk dependencies

Install

sql-string-qb

A simple JavaScript/TypeScript library for assembling complex SQL queries. Miniscule, type-safe, and dependency-free.

0.2.3
latest
Source
npm
Version published
Weekly downloads
14
-30%
Maintainers
1
Weekly downloads
 
Created
Source

SQL String QB🏈

A simple JavaScript/TypeScript library for assembling complex SQL queries. Miniscule, type-safe, and dependency-free.

Inspired by classNames and several tagged template libraries, this small but powerful SQL query builder allows you to elegantly craft complex SQL statements without compromising code readability or performance. Its output is an object which drops right into popular SQL database clients. The qb.t function automatically breaks out values from template literals and can be used either on its own or as an argument in qb().

WARNING! Variables outside a qb.t function will go directly into the query and should be escaped first.

Installation

Install SQL String QB🏈 from npm

With npm:

npm install --save sql-string-qb

or using yarn:

yarn add sql-string-qb

Usage

import qb from 'sql-string-qb' 

const showPrice = false
const category = 'sporting-goods'
const sortColumn = undefined
const sortOrder = undefined

const query = qb(
    'SELECT `id`, `name`',
    showPrice && ', `price`',
    'FROM `products` WHERE',
    category ? qb.t`\`category\` = ${category}` : '\`category\` IS NULL',
    'ORDER BY',
    sortColumn || '`createdAt`',
    sortOrder || 'DESC',
    'LIMIT 12'
)

typeof query     // => "object"
query.toString() // => "SELECT `id`, `name` FROM `products` WHERE `category` = ? ORDER BY `createdAt` DESC LIMIT 12"
query.sql        // => "SELECT `id`, `name` FROM `products` WHERE `category` = ? ORDER BY `createdAt` DESC LIMIT 12"
query.query      // => "SELECT `id`, `name` FROM `products` WHERE `category` = ? ORDER BY `createdAt` DESC LIMIT 12"
query.text       // => "SELECT `id`, `name` FROM `products` WHERE `category` = $1 ORDER BY `createdAt` DESC LIMIT 12"
query.statement  // => "SELECT `id`, `name` FROM `products` WHERE `category` = :1 ORDER BY `createdAt` DESC LIMIT 12"
query.values     // => ["sporting-goods"]

pg.query(query) // Uses query.text and query.values
mysql.query(query) // Uses query.sql and query.values
mysql2.query(query) // Uses query.sql and query.values
sequelize.query(query) // Uses query.query and query.values
oracledb.execute(query) // Uses query.statement and query.values

// Experimental Helper Functions
qb.set({
    column_1: 'value 1',
    column_2: qb.unescaped('value 2')
}) // => "SET `column_1` = ?, `column_2` = 'value 2'" ["value1"]
qb.values({
    column_1: 'value 1',
    column_2: qb.unescaped('value 2')
}) // => "(`column_1`, `column_2`) VALUES (?, 'value 2')" ["value1"]
qb.in([
    'value 1',
    qb.unescaped('value 2')
]) // => "IN (?, 'value 2')" ["value1"]

License

This project is licensed under the MIT License.

Keywords

qb
sql
mysql
mssql
oracle
postgres

FAQs

Package last updated on 10 Apr 2025

Did you know?

Socket

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Install

Related posts

MCP Community Begins Work on Official MCP Metaregistry

Security News

MCP Community Begins Work on Official MCP Metaregistry

The MCP community is launching an official registry to standardize AI tool discovery and let agents dynamically find and install MCP servers.

By Sarah Gooding  -  May 09, 2025