Safety API

SQL query guard service.

class sqldbagent.safety.guard.QueryGuardService(policy, dialect)[source]

Bases: object

Guard SQL through AST inspection and normalization.

Parameters:
__init__(policy, dialect)[source]

Initialize the query guard.

Parameters:

  • policy (SafetySettings) – Safety policy settings.

  • dialect (Dialect) – Datasource dialect.

Return type:

None

lint(sql)[source]

Parse and normalize SQL without applying guard rewrites.

Parameters:

sql (str) – SQL text to lint.

Returns:

Lint result.

Return type:

QueryGuardResult

guard(sql, *, max_rows=None, access_mode='read_only')[source]

Parse, validate, and normalize SQL under the active policy.

Parameters:

  • sql (str) – SQL text to guard.

  • max_rows (int | None, default: None) – Optional row-limit override for this evaluation.

  • access_mode (str, default: "read_only") – Requested execution mode, either read_only or writable.

Returns:

Guard result.

Return type:

QueryGuardResult

Guarded sync and async SQL execution services.

class sqldbagent.safety.execution.SafeQueryService(*, engine, guard, async_engine=None, write_engine=None, write_async_engine=None)[source]

Bases: object

Execute guarded SQL after it passes the safety layer.

Parameters:
__init__(*, engine, guard, async_engine=None, write_engine=None, write_async_engine=None)[source]

Initialize the safe query service.

Parameters:

  • engine (Engine) – Sync SQLAlchemy engine.

  • guard (QueryGuardService) – Shared SQL guard service.

  • async_engine (AsyncEngine | None, default: None) – Optional async SQLAlchemy engine.

  • write_engine (Engine | None, default: None) – Optional writable sync engine used only when writable access is requested explicitly and allowed by policy.

  • write_async_engine (AsyncEngine | None, default: None) – Optional writable async engine used only when writable access is requested explicitly and allowed by policy.

Return type:

None

run(sql, *, max_rows=None, access_mode='read_only')[source]

Guard and execute SQL synchronously.

Parameters:

  • sql (str) – SQL text to execute.

  • max_rows (int | None, default: None) – Optional row-limit override.

  • access_mode (str, default: "read_only") – Requested execution mode, either read_only or writable.

Returns:

Guard and execution result.

Return type:

QueryExecutionResult

async run_async(sql, *, max_rows=None, access_mode='read_only')[source]

Guard and execute SQL asynchronously.

Parameters:

  • sql (str) – SQL text to execute.

  • max_rows (int | None, default: None) – Optional row-limit override.

  • access_mode (str, default: "read_only") – Requested execution mode, either read_only or writable.

Returns:

Guard and execution result.

Return type:

QueryExecutionResult

Raises:

ConfigurationError – If no async engine is configured.

Safety models.

class sqldbagent.safety.models.QueryGuardResult(**data)[source]

Bases: BaseModel

Guard evaluation result.

Variables:

  • allowed – Whether the query passed safety validation.

  • statement_type – Root SQL statement type.

  • dialect – SQL dialect used for parsing and normalization.

  • access_mode – Requested access mode used for evaluation.

  • original_sql – Original SQL text.

  • normalized_sql – Normalized SQL text after linting or guarding.

  • row_limit_applied – Whether the guard injected or reduced a row limit.

  • max_rows – Maximum rows allowed by policy.

  • referenced_schemas – Schemas referenced by the statement.

  • referenced_tables – Tables referenced by the statement.

  • warnings – Non-blocking warnings attached to the evaluation.

  • reasons – Validation failure reasons when not allowed.

  • summary – Generated short summary.

Parameters:

  • data (Any)

  • allowed (bool)

  • statement_type (str | None)

  • dialect (str)

  • access_mode (str)

  • original_sql (str)

  • normalized_sql (str | None)

  • row_limit_applied (bool)

  • max_rows (int | None)

  • referenced_schemas (list[str])

  • referenced_tables (list[str])

  • warnings (list[str])

  • reasons (list[str])

  • summary (str | None)

allowed: bool
statement_type: str | None
dialect: str
access_mode: str
original_sql: str
normalized_sql: str | None
row_limit_applied: bool
max_rows: int | None
referenced_schemas: list[str]
referenced_tables: list[str]
warnings: list[str]
reasons: list[str]
summary: str | None
model_config: ClassVar[ConfigDict] = {}

Configuration for the model, should be a dictionary conforming to [ConfigDict][pydantic.config.ConfigDict].