test/

language: node_js

node_js:

- '0.11'

- '0.10'

- '0.8'

script: make test-coveralls

before_install:

- 'make install'

0.0.1 / 2014-02-25

* Initial release

This software is licensed under the MIT License.

Copyright (C) 2014 fengmk2 <fengmk2@gmail.com> and other contributors

Permission is hereby granted, free of charge, to any person obtaining a copy

of this software and associated documentation files (the "Software"), to deal

in the Software without restriction, including without limitation the rights

to use, copy, modify, merge, publish, distribute, sublicense, and/or sell

copies of the Software, and to permit persons to whom the Software is

furnished to do so, subject to the following conditions:

The above copyright notice and this permission notice shall be included in

all copies or substantial portions of the Software.

THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR

IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,

FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE

AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER

LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,

OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN

THE SOFTWARE.

TESTS = test/*.test.js

REPORTER = spec

TIMEOUT = 1000

MOCHA_OPTS =

install:

@npm install --registry=http://registry.cnpmjs.org --cache=${HOME}/.npm/.cache/cnpm

test: install

@NODE_ENV=test ./node_modules/.bin/mocha \

--reporter $(REPORTER) \

--timeout $(TIMEOUT) \

$(MOCHA_OPTS) \

$(TESTS)

test-cov:

@$(MAKE) test -s MOCHA_OPTS='--require blanket' REPORTER=html-cov | ./node_modules/.bin/cov

test-coveralls: test

@echo TRAVIS_JOB_ID $(TRAVIS_JOB_ID)

@-$(MAKE) test MOCHA_OPTS='--require blanket' REPORTER=mocha-lcov-reporter | ./node_modules/coveralls/bin/coveralls.js

test-all: test test-cov

autod: install

@./node_modules/.bin/autod -w

@$(MAKE) install

contributors: install

@./node_modules/.bin/contributors -f plain -o AUTHORS

.PHONY: test

sqlstring

[](http://travis-ci.org/fengmk2/sqlstring) [](https://coveralls.io/r/fengmk2/sqlstring) [](https://gemnasium.com/fengmk2/sqlstring)

[](https://nodei.co/npm/sqlstring/)


SQL escape and format from [mysql/lib/protocol/SqlString.js](https://github.com/felixge/node-mysql/blob/master/lib/protocol/SqlString.js)

$ npm install sqlstring

var sqlstring = require('sqlstring');

sqlstring.format('SELECT * FROM user WHERE age = ? and gender = ?', [18, 'female']);

(The MIT License)

Copyright (c) 2014 fengmk2 &lt;fengmk2@gmail.com&gt; and other contributors

Permission is hereby granted, free of charge, to any person obtaining

a copy of this software and associated documentation files (the

'Software'), to deal in the Software without restriction, including

without limitation the rights to use, copy, modify, merge, publish,

distribute, sublicense, and/or sell copies of the Software, and to

permit persons to whom the Software is furnished to do so, subject to

the following conditions:

The above copyright notice and this permission notice shall be

included in all copies or substantial portions of the Software.

THE SOFTWARE IS PROVIDED 'AS IS', WITHOUT WARRANTY OF ANY KIND,

EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF

MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT.

IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY

CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT,

TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE

SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.

module.exports = require('./lib/sqlstring');

var SqlString = exports;

SqlString.escapeId = function (val, forbidQualified) {

if (Array.isArray(val)) {

return val.map(function(v) {

return SqlString.escapeId(v, forbidQualified);

}).join(', ');

}

if (forbidQualified) {

return '`' + val.replace(/`/g, '``') + '`';

}

return '`' + val.replace(/`/g, '``').replace(/\./g, '`.`') + '`';

SqlString.escape = function(val, stringifyObjects, timeZone) {

if (val === undefined || val === null) {

return 'NULL';

}

switch (typeof val) {

case 'boolean': return (val) ? 'true' : 'false';

case 'number': return val+'';

}

if (val instanceof Date) {

val = SqlString.dateToString(val, timeZone || 'local');

}

if (Buffer.isBuffer(val)) {

return SqlString.bufferToString(val);

}

if (Array.isArray(val)) {

return SqlString.arrayToList(val, timeZone);

}

if (typeof val === 'object') {

if (stringifyObjects) {

val = val.toString();

} else {

return SqlString.objectToValues(val, timeZone);

}

}

val = val.replace(/[\0\n\r\b\t\\\'\"\x1a]/g, function(s) {

switch(s) {

case "\0": return "\\0";

case "\n": return "\\n";

case "\r": return "\\r";

case "\b": return "\\b";

case "\t": return "\\t";

case "\x1a": return "\\Z";

default: return "\\"+s;

}

});

return "'"+val+"'";

SqlString.arrayToList = function(array, timeZone) {

return array.map(function(v) {

if (Array.isArray(v)) return '(' + SqlString.arrayToList(v, timeZone) + ')';

return SqlString.escape(v, true, timeZone);

}).join(', ');

SqlString.format = function(sql, values, stringifyObjects, timeZone) {

values = [].concat(values);

return sql.replace(/\?\??/g, function(match) {

if (!values.length) {

return match;

}

if (match == "??") {

return SqlString.escapeId(values.shift());

}

return SqlString.escape(values.shift(), stringifyObjects, timeZone);

});

SqlString.dateToString = function(date, timeZone) {

var dt = new Date(date);

if (timeZone != 'local') {

var tz = convertTimezone(timeZone);

dt.setTime(dt.getTime() + (dt.getTimezoneOffset() * 60000));

if (tz !== false) {

dt.setTime(dt.getTime() + (tz * 60000));

}

}

var year = dt.getFullYear();

var month = zeroPad(dt.getMonth() + 1, 2);

var day = zeroPad(dt.getDate(), 2);

var hour = zeroPad(dt.getHours(), 2);

var minute = zeroPad(dt.getMinutes(), 2);

var second = zeroPad(dt.getSeconds(), 2);

var millisecond = zeroPad(dt.getMilliseconds(), 3);

return year + '-' + month + '-' + day + ' ' + hour + ':' + minute + ':' + second + '.' + millisecond;

SqlString.bufferToString = function(buffer) {

var hex = '';

try {

hex = buffer.toString('hex');

} catch (err) {

// node v0.4.x does not support hex / throws unknown encoding error

for (var i = 0; i < buffer.length; i++) {

var byte = buffer[i];

hex += zeroPad(byte.toString(16));

}

}

return "X'" + hex+ "'";

SqlString.objectToValues = function(object, timeZone) {

var values = [];

for (var key in object) {

var value = object[key];

if(typeof value === 'function') {

continue;

}

values.push(this.escapeId(key) + ' = ' + SqlString.escape(value, true, timeZone));

}

return values.join(', ');

function zeroPad(number, length) {

number = number.toString();

while (number.length < length) {

number = '0' + number;

}

return number;

function convertTimezone(tz) {

if (tz == "Z") return 0;

var m = tz.match(/([\+\-\s])(\d\d):?(\d\d)?/);

if (m) {

return (m[1] == '-' ? -1 : 1) * (parseInt(m[2], 10) + ((m[3] ? parseInt(m[3], 10) : 0) / 60)) * 60;

}

return false;

{

"name": "sqlstring",

"version": "0.0.1",

"description": "SQL escape and format from mysql/lib/protocol/SqlString.js",

"main": "index.js",

"scripts": {

"test": "make test-all"

},

"config": {

"blanket": {

"pattern": "sqlstring/lib",

"data-cover-flags": {

"debug": false

}

},

"travis-cov": {

"threshold": 20

}

},

"dependencies": {

},

"devDependencies": {

"autod": "*",

"blanket": "*",

"contributors": "*",

"cov": "*",

"coveralls": "*",

"mocha": "*",

"mocha-lcov-reporter": "*",

"should": "3.1.2",

"travis-cov": "*"

},

"homepage": "https://github.com/fengmk2/sqlstring",

"repository": {

"type": "git",

"url": "git://github.com/fengmk2/sqlstring.git",

"web": "https://github.com/fengmk2/sqlstring"

},

"bugs": {

"url": "https://github.com/fengmk2/sqlstring/issues",

"email": "fengmk2@gmail.com"

},

"keywords": [

"sqlstring",

"sql",

"escape",

"sql escape"

],

"engines": {

"node": ">= 0.10.0"

},

"author": "fengmk2 <fengmk2@gmail.com> (http://fengmk2.github.com)",

"license": "MIT"

}

var should = require('should');

var sqlstring = require('../');

describe('sqlstring.test.js', function () {

describe('format()', function () {

it('should format sql with params work', function () {

sqlstring.format('SELECT * FROM user WHERE age = ? and gender = ?', [18, 'female'])

.should.equal('SELECT * FROM user WHERE age = 18 and gender = \'female\'');

});

});