npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

rqlink

v1.0.8

Published

A lightweight, intuitive, Prisma-style client for rqlite.

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

manwilmanwil

Keywords

rqlitesqlitedatabaseclientprisma-styleprismaormrqlite-connectorrqlite-clientdistributed-databasesqlquery-buildernodebun

Readme

Rqlink

A lightweight, Prisma-style ORM for rqlite, designed for distributed Node.js applications.

Rqlink Logo

Features

  • Prisma-like API: Familiar create, findMany, findUnique, update, delete syntax
  • Safe Migrations: initDB() automatically creates tables and adds missing columns without data loss
  • Distributed & Resilient: Supports multiple rqlite nodes with automatic failover and load balancing
  • Multi-Database Support: Manage tables across different rqlite clusters (ports) in a single schema
  • Type Safety: Validates schema definitions and ensures correct data types
  • Batch Operations: Support for atomic batch inserts/updates
  • SQL Injection Protection: Parameterized queries and strict math expression validation
  • Schema Cache: TTL-based caching for improved performance

Installation

npm install rqlink

Quick Start

1. Define your Schema

// schema.js
export const schema = {
  users: {
    config: {
      port: 4001,
      base: ["http://localhost", "http://192.168.1.5"], // List of rqlite nodes
      username: "admin", // Optional Basic Auth
      password: "secret_password"
    },
    fields: {
      id: { type: "INTEGER", pk: true, autoIncrement: true },
      email: { type: "TEXT" },
      name: { type: "TEXT" },
      created_at: { type: "TEXT", default: "CURRENT_TIMESTAMP" }
    },
    indexes: [
      { columns: ["email"], unique: true }
    ]
  }
};

2. Initialize Client

import { createClient } from 'rqlink';
import { schema } from './schema.js';

const { db, initDB, dropDB } = createClient(schema);

// Initialize tables (create/migrate)
await initDB({ verbose: true });

3. CRUD Operations

// Create
const user = await db.users.create({
  data: { email: "[email protected]", name: "Alice" }
});

// Find Many
const users = await db.users.findMany({
  where: { name: { contains: "Ali" } },
  orderBy: { id: "desc" },
  limit: 10
});

// Update with math expression
const updated = await db.users.update({
  where: { id: user.id },
  data: { 
    balance: { math: '"balance" * 2 + :bonus', args: { bonus: 50 } }
  }
});

// Delete
await db.users.delete({ where: { id: user.id } });

4. Batch Operations

const batch = db.batch.start();

batch.users.create({ data: { name: "Bob", email: "[email protected]" } });
batch.users.update({ 
  where: { name: "Alice" }, 
  data: { balance: { increment: 100 } } 
});

const results = await batch.execute();

Configuration

import { configure } from 'rqlink';

configure({
  timeout: 5000,         // Request timeout in ms (default: 5000)
  verbose: true,         // Log SQL queries in development
  freshness: "0.1s",     // Freshness for read consistency
  freshness_strict: true,// Strict freshness checking
  retryDelay: 50,        // Base delay between retries in ms
  maxRequestSize: 1024 * 1024, // Max request payload (1MB)
  requireTLS: false      // Require HTTPS (set true for PHI/EMR)
});

Security Features

Rqlink includes multiple layers of protection against SQL injection and other attacks:

Parameterized Queries

All user values are passed as named parameters, never interpolated into SQL strings.

Math Expression Validation

The math update operator validates expressions against:

  • Character whitelist (alphanumeric, arithmetic operators, parentheses)
  • SQL keyword blocklist (DROP, SELECT, UNION, INSERT, DELETE, etc.)
  • Comment pattern detection (--, /*, */)
// ✅ Safe - uses parameterized arguments
await db.users.update({
  where: { id: 1 },
  data: { balance: { math: '"balance" * :mult + :bonus', args: { mult: 2, bonus: 50 } } }
});

// ❌ Blocked - contains SQL keyword
await db.users.update({
  where: { id: 1 },
  data: { balance: { math: 'SELECT * FROM users' } } // Throws error
});

Schema Validation

  • Table and column names restricted to [a-zA-Z0-9_]+
  • Column types validated against SQLite types
  • Default values sanitized

Request Size Limits

Configurable maxRequestSize prevents DoS via large payloads (default: 1MB).

TLS Enforcement

Enable requireTLS: true for PHI/EMR environments to block non-HTTPS connections.

Query Operators

| Operator | Description | Example | |---------------|--------------------------------|--------------------------------------| | equals | Exact match | { id: { equals: 1 } } | | not | Not equal | { status: { not: "deleted" } } | | gt | Greater than | { age: { gt: 18 } } | | gte | Greater than or equal | { age: { gte: 18 } } | | lt | Less than | { price: { lt: 100 } } | | lte | Less than or equal | { price: { lte: 100 } } | | contains | LIKE %value% | { name: { contains: "john" } } | | startsWith | LIKE value% | { email: { startsWith: "admin" } } | | endsWith | LIKE %value | { email: { endsWith: ".com" } } | | in | IN (values) | { status: { in: ["a", "b"] } } | | OR | Logical OR | { OR: [{ a: 1 }, { b: 2 }] } | | NOT | Logical NOT | { NOT: { status: "deleted" } } |

Update Operators

| Operator | Description | Example | |---------------|--------------------------------|--------------------------------------| | increment | Add to current value | { balance: { increment: 50 } } | | math | Custom math expression | { balance: { math: '"balance" * :x', args: { x: 2 } } } |

Consistency Levels

Use level parameter for read operations:

// Strong consistency (reads from leader)
await db.users.findMany({ level: "strong" });

// Default: freshness-based consistency
await db.users.findMany(); // Uses configured freshness

Schema Cache

Rqlink caches table schema information for 5 minutes (configurable) to reduce PRAGMA calls. The cache:

  • Automatically expires after TTL
  • Is invalidated on schema changes (ALTER TABLE)
  • Has a size limit of 100 entries to prevent memory leaks

License

MIT