Implement IDOR protection for better-sqlite3#936

Merged

hansott merged 4 commits intomainfrom

Feb 16, 2026

Member

timokoessler commented Feb 13, 2026 •

edited by aikido-pr-checks bot

Loading

Summary by Aikido

Security Issues: 0	🔍 Quality Issues: 5	Resolved Issues: 0

⚡ Enhancements

Added IDOR detection to better-sqlite3 wrapper and statement inspection.
Instrumented prepared statements to wrap statement methods for inspection.
Resolved SQL placeholders to pass parameter values into IDOR checks.
Updated ESM test transformer to map notMatch assertions to helpers.
Added notMatch helper to ESM test helpers for negative regex assertions.


          Implement IDOR protection for better-sqlite3

ed4e795

aikido-pr-checks bot reviewed

View reviewed changes

library/sinks/BetterSQLite3.ts Show resolved Hide resolved

aikido-pr-checks bot reviewed

View reviewed changes

library/sinks/BetterSQLite3.ts Show resolved Hide resolved

codecov bot commented Feb 13, 2026 •

edited

Loading

Codecov Report

✅ All modified and coverable lines are covered by tests.

📢 Thoughts on this report? Let us know!


          Fix ESM instrumentation

113c791

aikido-pr-checks bot reviewed

View reviewed changes

library/sinks/BetterSQLite3.ts Show resolved Hide resolved


          Add notMatch to ESM test helpers

dfe7b6d

aikido-pr-checks bot reviewed

View reviewed changes

scripts/helpers/test-helpers.mjs Show resolved Hide resolved

aikido-pr-checks bot reviewed

View reviewed changes

scripts/helpers/test-helpers.mjs Show resolved Hide resolved


          Add test for DDL

9d8fa67

hansott approved these changes

View reviewed changes

hansott merged commit cef4b35 into main

31 checks passed

hansott deleted the sqlite-idor branch

February 16, 2026 10:57

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet