Restricted database query action to admins by girishpanchal30 · Pull Request #1313 · Codeinwp/visualizer

girishpanchal30 · 2026-05-07T12:34:00Z

Summary

Only administrators and super admins can perform database query actions.

Check before Pull Request is ready:

I have written a test and included it in this PR
I have run all tests and they pass
The code passes when running the PHP CodeSniffer
Code meets WordPress Coding Standards for PHP, HTML, CSS and JS
Security and Sanitization requirements have been followed
I have assigned a reviewer or two to review this PR

Closes https://github.com/Codeinwp/visualizer-pro/issues/587

pirate-bot · 2026-05-07T12:36:55Z

Plugin build for f681d3c is ready 🛎️!

Download build

Copilot

Pull request overview

Restricts the AI Builder “database query” upload action to privileged users to reduce exposure of sensitive DB access functionality.

Changes:

Added permission checks for the db_query source type within AIBuilder::uploadData() to prevent unauthorized users from submitting DB queries.

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

pirate-bot · 2026-05-19T07:13:27Z

🎉 This PR is included in version 4.0.2 🎉

The release is available on GitHub release

Your semantic-release bot 📦🚀

fix: restrict database query action to admins

7ccd6fe

girishpanchal30 requested a review from Copilot May 7, 2026 12:34

girishpanchal30 added the pr-checklist-skip Allow this Pull Request to skip checklist. label May 7, 2026

pirate-bot added the pr-checklist-complete The Pull Request checklist is complete. (automatic label) label May 7, 2026

Copilot started reviewing on behalf of girishpanchal30 May 7, 2026 12:34 View session

Copilot AI reviewed May 7, 2026

View reviewed changes

Comment thread classes/Visualizer/Module/AIBuilder.php Outdated

girishpanchal30 force-pushed the bugfix/pro/587 branch from a9776af to 033303e Compare May 7, 2026 12:44

girishpanchal30 requested a review from Soare-Robert-Daniel May 7, 2026 12:45

refactor: restrict database query action to admins

f681d3c

girishpanchal30 force-pushed the bugfix/pro/587 branch from 033303e to f681d3c Compare May 7, 2026 13:14

Soare-Robert-Daniel approved these changes May 7, 2026

View reviewed changes

vytisbulkevicius merged commit 09ed3f9 into development May 19, 2026
10 checks passed

vytisbulkevicius deleted the bugfix/pro/587 branch May 19, 2026 06:47

pirate-bot added the released Indicate that an issue has been resolved and released in a particular version of the product. label May 19, 2026

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Restricted database query action to admins#1313

Restricted database query action to admins#1313
vytisbulkevicius merged 2 commits into
developmentfrom
bugfix/pro/587

girishpanchal30 commented May 7, 2026

Uh oh!

pirate-bot commented May 7, 2026 •

edited

Loading

Uh oh!

Copilot AI left a comment

Uh oh!

Uh oh!

Uh oh!

pirate-bot commented May 19, 2026

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

5 participants

Conversation

girishpanchal30 commented May 7, 2026

Summary

Check before Pull Request is ready:

Uh oh!

pirate-bot commented May 7, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

Copilot AI left a comment

Choose a reason for hiding this comment

Pull request overview

Uh oh!

Uh oh!

Uh oh!

pirate-bot commented May 19, 2026

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

5 participants

pirate-bot commented May 7, 2026 •

edited

Loading