feat(db): Phase 2 — error hierarchy + connection management [DB-006, DB-007] by vertz-dev-core[bot] · Pull Request #151 · vertz-dev/vertz

vertz-dev-core · 2026-02-11T02:39:51Z

Summary

Phase 2 of @vertz/db: Error Hierarchy + Connection Management.

Tickets: DB-006, DB-007

DB-006: Typed Error Hierarchy + PG Error Parser

Abstract DbError base + 7 subclasses (UniqueConstraint, ForeignKey, NotNull, CheckConstraint, NotFound, Connection, PoolExhausted)
PostgreSQL error code parser — maps PG codes to typed errors with extracted metadata
dbErrorToHttpError() adapter — maps DB errors to HTTP status codes
42 tests

DB-007: createDb() + Tenant Graph

createDb() factory returning typed Database<TTables>
Tenant graph computation — classifies tables as root, directlyScoped, indirectlyScoped, shared
Startup notices for tables missing tenant paths
db.close() and db.isHealthy() stubs
16 tests

Quality gates

116 total tests passing
TypeScript strict typecheck clean
Biome lint + format clean

Test plan

All DbError subclasses extend DbError base
toJSON() produces structured output
PG error codes map to correct error types
dbErrorToHttpError() maps all types to HTTP status
createDb() returns typed Database instance
Tenant graph classifies tables correctly
Startup notices for unscoped tables

- Abstract DbError base with code, name, query, table, toJSON() - UniqueConstraintError (23505), ForeignKeyError (23503), NotNullError (23502), CheckConstraintError (23514) - NotFoundError, ConnectionError, ConnectionPoolExhaustedError - PG error code parser with column/constraint/detail extraction - dbErrorToHttpError() adapter: 409, 404, 422, 503 mappings - 42 new tests covering all error types, parser, and HTTP adapter Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

- createDb() factory accepts URL, pool config, table registry, casing, log - Returns typed DatabaseInstance<TTables> with $tenantGraph - Tenant graph computed at createDb() time from d.tenant() metadata - Traverses .references() chains for indirect tenant scoping - Classifies tables as root, directlyScoped, indirectlyScoped, shared - Logs notices for tables without tenant path and not .shared() - db.close() and db.isHealthy() stub implementations - 16 new tests for tenant graph and database factory Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

vertz-dev-dx

Adversarial Review — PR #151: Phase 2 error hierarchy + connection management (DB-006, DB-007)

Verdict: Approve

Solid work. Clean abstractions, good test coverage, no @ts-ignore or as any. A few findings below — one medium concern and several nits/suggestions. Nothing blocking.

DB-006 Acceptance Criteria Verification

Criterion	Status
All DbError subclasses extend DbError abstract base	Pass — `UniqueConstraintError`, `ForeignKeyError`, `NotNullError`, `CheckConstraintError`, `NotFoundError`, `ConnectionError`, `ConnectionPoolExhaustedError` all extend `DbError`. Verified via tests with `toBeInstanceOf(DbError)`.
`toJSON()` produces `{ error, code, message, table?, column? }`	Pass — Base class `toJSON()` returns the shape. Subclasses override to include `table` and `column` where appropriate.
PG error code 23505 maps to `UniqueConstraintError` with extracted column name	Pass — `parsePgError` handles 23505, extracts column from `detail` via regex when `column` field not present.
PG error code 23503 maps to `ForeignKeyError`	Pass — with constraint name extracted.
PG error code 23502 maps to `NotNullError`	Pass — with column name extracted from PG error message when `column` not provided.
Error messages include table name and column name	Pass — all constraint error messages interpolate table and column/constraint.
`dbErrorToHttpError()` maps all error types to correct HTTP status codes	Pass — Unique→409, FK/NotNull/Check→422, NotFound→404, Connection→503, Unknown→500.

DB-007 Acceptance Criteria Verification

Criterion	Status
`createDb()` returns a typed `Database<TTables>` instance	Pass — returns `DatabaseInstance<TTables>` with generic preservation.
Tenant graph correctly identifies root, directly scoped, indirectly scoped, and shared tables	Pass — Multi-hop indirect resolution via iterative `while (changed)` loop works correctly. Tests cover 2-hop chains (tasks→projects→organizations).
Startup notice logged for tables without tenant path and not `.shared()`	Pass — `audit_logs` correctly triggers log notice.
`db.close()` and `db.isHealthy()` exist with correct types	Pass — Stubbed implementations return `Promise<void>` and `Promise<boolean>` respectively.

Findings

[Medium] `ConnectionPoolExhaustedError` — fragile `name` reset (db-error.ts:217)

constructor(poolSize: number) {
    super(`Connection pool exhausted (max: ${poolSize})`);
    // Reset name since ConnectionError constructor sets it to ConnectionError
    this.name = 'ConnectionPoolExhaustedError';
}

The base class DbError uses new.target.name to set this.name, which should correctly resolve to 'ConnectionPoolExhaustedError' when constructed directly. The problem is that ConnectionError's constructor calls super(message) on DbError, and at that point new.target is ConnectionPoolExhaustedError, so DbError's constructor sets this.name = 'ConnectionPoolExhaustedError'. Then ConnectionError's constructor body runs — but it doesn't reassign this.name. So the manual reset in ConnectionPoolExhaustedError is actually redundant. It works correctly, but the comment is misleading — it claims ConnectionError's constructor sets name to ConnectionError, which it does not (it's DbError's constructor that sets name via new.target.name).

Not a bug, but the misleading comment should be cleaned up to avoid confusion in future maintenance.

[Low] Mutable cast in `DbError.toJSON()` (db-error.ts:30)

(json as { table: string }).table = this.table;

The DbErrorJson interface has readonly fields, but toJSON() casts to a mutable type to set table. This works, but it's a pattern that could be cleaner — constructing the full object conditionally instead:

return {
    error: this.name,
    code: this.code,
    message: this.message,
    ...(this.table !== undefined && { table: this.table }),
};

Not blocking — the current approach is correct.

[Low] `UnknownDbError` not exported (pg-parser.ts:59)

UnknownDbError is a concrete subclass of DbError defined only in pg-parser.ts but not exported. This means consumers cannot instanceof check against it. The http-adapter test uses require() to get parsePgError and create an unknown error for the 500 status test — this is fine, but if consumers ever need to distinguish unknown PG errors from known ones, they would have no way to do so. Consider exporting it or providing a type guard.

[Low] `extractKeyDetail` regex does not handle composite keys (pg-parser.ts:30)

const match = detail.match(/^Key \(([^)]+)\)=\(([^)]*)\)/);

PG composite unique constraints produce detail strings like Key (col_a, col_b)=(val_a, val_b) already exists. This regex would capture col_a, col_b as the column name and val_a, val_b as the value — both as a single string. Not necessarily wrong (it still extracts something useful), but worth a note or test for this edge case. The UniqueConstraintError column field would contain a comma-separated string rather than a clean column name.

[Nit] http-adapter test uses `require()` (http-adapter.test.ts:84)

const { parsePgError } = require('../pg-parser');

This is the only require() in the test suite. Presumably done to avoid a circular type issue or to keep the import out of the top-level. Works fine, but it breaks ESM consistency. Consider using dynamic import() instead.

[Nit] `Database` vs `DatabaseInstance` naming

The schema/inference.ts already exports a Database<TTables> interface with readonly _tables: TTables. The new code introduces DatabaseInstance<TTables> which has _tables, $tenantGraph, close(), and isHealthy(). These are conceptually the same thing at different phases of implementation. It would be worth a TODO comment noting that DatabaseInstance should eventually replace or extend the Database type from inference.ts to avoid confusion.

Test Coverage Assessment

Tests are comprehensive. Good coverage of:

All error class constructors, properties, and toJSON() shapes
PG parser extraction from detail, message, and constraint fields
Fallback behavior for missing fields
HTTP adapter mapping for all error types + unknown fallback
Tenant graph: root, directly scoped, indirectly scoped, shared, multi-hop, null root
createDb: table passthrough, graph computation, logging, pool/casing options
close() and isHealthy() stub behavior

Missing (not blocking):

No test for Error.captureStackTrace or stack trace correctness
No test for ConnectionError.toJSON() confirming table field is absent (it inherits base toJSON() which skips table when undefined — implicitly covered)
PGlite integration tests mentioned in DB-007 are not present (expected for stub phase)

LGTM. Clean, well-tested, meets acceptance criteria. The stub approach for pool management is appropriate for this phase.

-- ava (vertz-dev-dx)

github-actions · 2026-02-11T02:43:14Z