Skip to content

refactor: clean up transaction semantics for entity mutation hooks #206

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 3 commits into from
Aug 26, 2025
Merged

refactor: clean up transaction semantics for entity mutation hooks #206

merged 3 commits into from
Aug 26, 2025

Conversation

@ymc9
Copy link
Member

@ymc9 ymc9 commented Aug 26, 2025
edited by coderabbitai bot
Loading

Summary by CodeRabbit

  • New Features
    • Plugin hooks now receive a client for in-transaction operations.
    • Optional run-after-mutation-within-transaction behavior for plugins.
    • Added a method to force running within a transaction.
  • Bug Fixes
    • Commit callbacks failing no longer abort overall transaction commit.
  • Refactor
    • Unified interceptor-driven query execution with improved alias/table handling and clearer errors.
  • Tests
    • Expanded suite across SQLite and PostgreSQL, covering ORM and SQL-builder paths.
  • Documentation
    • Terminology updates (Extensibility, plugin naming), ZModel additions, and filtering roadmap adjustments.

Copilot AI review requested due to automatic review settings August 26, 2025 02:42
@coderabbitai
Copy link

coderabbitai bot commented Aug 26, 2025
edited
Loading

Note

Other AI code review bot(s) detected

CodeRabbit has detected other AI code review bot(s) in this pull request and will avoid duplicating their findings in the review comments. This may lead to a less comprehensive review.

Important

Review skipped

Auto reviews are disabled on base/target branches other than the default branch.

Please check the settings in the CodeRabbit UI or the .coderabbit.yaml file in this repository. To trigger a single review, invoke the @coderabbitai review command.

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

Walkthrough

Refactors query execution to introduce interceptor-based flow and enhanced mutation hooks with transactional controls. Adds a shared Kysely alias utility, a forceTransaction client helper, safer commit callbacks, and multi-provider test coverage. Updates plugin APIs to pass a client to hooks and support in-transaction after-mutation execution. Minor TODO doc edits.

Changes

Cohort / File(s) Summary of Changes
Docs
TODO.md		 Renames/organizes sections; updates plugin terminology; adjusts ZModel items and filtering status.
Client Core
packages/runtime/src/client/client-impl.ts		 Adds public forceTransaction() to ensure operations run within a transaction.
Executor Utilities & Mapping
packages/runtime/src/client/executor/kysely-utils.ts, packages/runtime/src/client/executor/name-mapper.ts		 Introduces shared stripAlias utility; removes class-local version; updates all alias handling to use shared function; adds guards for missing table in update transform.
Driver
packages/runtime/src/client/executor/zenstack-driver.ts		 Wraps commit callbacks in try/catch; logs errors without failing commit.
Query Executor
packages/runtime/src/client/executor/zenstack-query-executor.ts		 Adds interceptor pipeline (onKyselyQuery), restructures mutation hook lifecycle, supports optional suppression of hooks, ensures returning for entity loading, strengthens alias/table extraction, updates constructor with suppressMutationHooks flag.
Plugin API
packages/runtime/src/client/plugin.ts		 Extends MutationInterceptionFilterResult with runAfterMutationWithinTransaction; adds client to before/after mutation args.
Tests: Name Mapping
packages/runtime/test/client-api/name-mapping.test.ts		 Converts to multi-provider (sqlite, postgresql); expands ORM and SQL-builder coverage for create/find/update/delete.
Tests: Entity Mutation Hooks
packages/runtime/test/plugin/entity-mutation-hooks.test.ts		 Rewrites to multi-provider; broadens scenarios for interception, loading, transactions, rollbacks, and hook sequencing.

Estimated code review effort

🎯 4 (Complex) | ⏱️ ~60–90 minutes

Possibly related PRs

Poem

A rabbit taps the query stream, hop-hop through hooks and wheels,
Aliases shed like winter coats, the Kysely engine feels.
Transactions snug and warm, commits that never dread,
Plugins sip their carrot juice, in-transaction fed.
Two databases, one warren—tests dance, whiskers spread. 🥕🐇

✨ Finishing Touches
🧪 Generate unit tests
  • Create PR with unit tests
  • Post copyable unit tests in a comment
  • Commit unit tests in branch refactor/mutation-hooks

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share
🪧 Tips

Chat

There are 3 ways to chat with CodeRabbit:

  • Review comments: Directly reply to a review comment made by CodeRabbit. Example:
    • I pushed a fix in commit <commit_id>, please review it.
    • Open a follow-up GitHub issue for this discussion.
  • Files and specific lines of code (under the "Files changed" tab): Tag @coderabbitai in a new review comment at the desired location with your query.
  • PR comments: Tag @coderabbitai in a new PR comment to ask questions about the PR branch. For the best results, please provide a very specific query, as very limited context is provided in this mode. Examples:
    • @coderabbitai gather interesting stats about this repository and render them as a table. Additionally, render a pie chart showing the language distribution in the codebase.
    • @coderabbitai read the files in the src/scheduler package and generate a class diagram using mermaid and a README in the markdown format.

Support

Need help? Create a ticket on our support page for assistance with any issues or questions.

CodeRabbit Commands (Invoked using PR/Issue comments)

Type @coderabbitai help to get the list of available commands.

Other keywords and placeholders

  • Add @coderabbitai ignore anywhere in the PR description to prevent this PR from being reviewed.
  • Add @coderabbitai summary to generate the high-level summary at a specific location in the PR description.
  • Add @coderabbitai anywhere in the PR title to generate the title automatically.

Status, Documentation and Community

  • Visit our Status Page to check the current availability of CodeRabbit.
  • Visit our Documentation for detailed information on how to use CodeRabbit.
  • Join our Discord Community to get help, request features, and share feedback.
  • Follow us on X/Twitter for updates and announcements.

@claude
Copy link

claude bot commented Aug 26, 2025
edited
Loading

Claude finished @ymc9's task —— View job

PR Review: Transaction Semantics for Entity Mutation Hooks

I've completed a thorough analysis of this PR that refactors transaction semantics for entity mutation hooks. Here's my comprehensive review:

Todo List:

  • Read and analyze all changed files
  • Review code quality and best practices
  • Check for potential bugs or issues
  • Evaluate performance considerations
  • Assess security concerns
  • Review test coverage

Strengths

1. Excellent Transaction Architecture

  • ZenStackDriver (zenstack-driver.ts:68-95): The commit callback mechanism is well-designed, properly handling callback registration and execution after successful commits
  • Error Handling: Solid error handling in transaction callbacks with logging (lines 84-87) rather than failing the commit
  • Cleanup: Proper cleanup of transaction state on both commit and rollback

2. Sophisticated Hook Execution Logic

  • ZenStackQueryExecutor (zenstack-query-executor.ts:170-248): The logic for handling runAfterMutationWithinTransaction is sophisticated and correct
  • On-the-fly Transactions: Creating transactions when hooks require them but none exists is well-implemented
  • Client Context: Properly creating connection-aware clients (createClientForConnection) ensures hooks see the correct transaction state

3. Comprehensive Test Coverage

  • Extensive Testing: The test file has grown from 358 to 790 lines, with excellent coverage of transaction scenarios
  • Edge Cases: Tests cover within-tx vs out-of-tx execution, rollback scenarios, and error handling
  • Integration Tests: Real transaction behavior is properly tested

4. Clean Plugin Architecture

  • Plugin Interface (plugin.ts:154-166): The runAfterMutationWithinTransaction flag provides clear control over hook execution timing
  • Type Safety: Strong TypeScript typing throughout the plugin system

⚠️ Areas for Improvement

1. Performance Considerations

Issue: zenstack-query-executor.ts:215-231

await this.driver.beginTransaction(connection, { isolationLevel: 'repeatable read' });
  • Hardcoded Isolation Level: Using repeatable read by default may be overkill and could impact performance
  • Recommendation: Consider making isolation level configurable or using a lighter default

2. Error Handling Edge Cases

Issue: zenstack-driver.ts:85-86

console.error(`Error executing transaction commit callback: ${err}`);
  • Problem: Using console.error instead of the logger system
  • Recommendation: Use this.#log.error() for consistency

Issue: zenstack-query-executor.ts:250-253

const message = `Failed to execute query: ${err}, sql: ${compiled?.sql}`;
throw new QueryError(message, err);
  • Security Risk: SQL queries in error messages could expose sensitive information
  • Recommendation: Only include SQL in development/debug mode

3. Memory Management

Issue: zenstack-driver.ts:14-15

#connections = new WeakSet<DatabaseConnection>();
#txConnections = new WeakMap<DatabaseConnection, Array<() => Promise<unknown>>>();
  • Potential Issue: Callback arrays could accumulate if connections are reused extensively
  • Recommendation: Consider cleanup mechanisms for long-lived connections

🔧 Minor Issues

1. Code Quality

  • zenstack-query-executor.ts:167: The beforeMutation hook call could be moved closer to the actual mutation for better code organization
  • name-mapper.ts:200: The toReversed() method may not be available in all Node.js versions - consider using [...array].reverse() for better compatibility

2. Type Safety

  • zenstack-query-executor.ts:339: Mutation of newExecutor.client after construction could be avoided with better constructor design

🔒 Security Assessment

Good:

  • No SQL injection risks introduced
  • Proper transaction isolation
  • Hook clients have mutation hooks suppressed to prevent infinite loops

⚠️ Consideration: Error messages containing SQL (mentioned above)

📊 Performance Impact

  • Positive: Efficient use of WeakMap/WeakSet for connection tracking
  • Neutral: Additional complexity in query executor may have slight overhead
  • Watch: On-the-fly transaction creation could impact performance for hook-heavy workloads

🎯 Overall Assessment

This is a high-quality refactoring that significantly improves the transaction semantics of entity mutation hooks. The architecture is sound, test coverage is excellent, and the implementation handles complex transaction scenarios correctly.

Recommendation: ✅ Approve with the minor improvements suggested above.

The refactoring successfully addresses the core requirement of proper transaction boundaries for mutation hooks while maintaining backward compatibility and adding new capabilities.

Copilot AI reviewed Aug 26, 2025
View reviewed changes
Copy link
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull Request Overview

This PR refactors entity mutation hooks to improve transaction semantics by providing better control over when hooks execute and access to a database client within hooks.

Key changes include:

  • Enhanced hook transaction control through a new runAfterMutationWithinTransaction option
  • Added database client access to hook callbacks for performing additional operations
  • Expanded test coverage to validate transaction behavior across different scenarios

Reviewed Changes

Copilot reviewed 9 out of 9 changed files in this pull request and generated 3 comments.

Show a summary per file
File Description
packages/runtime/test/plugin/entity-mutation-hooks.test.ts Adds comprehensive tests for new transaction semantics with both SQLite and PostgreSQL
packages/runtime/test/client-api/name-mapping.test.ts Updates to use multi-provider test setup and fixes concat function usage
packages/runtime/src/client/plugin.ts Adds new transaction control option and client parameter to hook interfaces
packages/runtime/src/client/executor/zenstack-query-executor.ts Major refactor implementing new transaction semantics and client provisioning for hooks
packages/runtime/src/client/executor/zenstack-driver.ts Adds error handling for transaction commit callbacks
packages/runtime/src/client/executor/name-mapper.ts Refactors to use shared alias stripping utility
packages/runtime/src/client/executor/kysely-utils.ts Introduces utility function for stripping aliases from query nodes
packages/runtime/src/client/client-impl.ts Adds transaction forcing capability
TODO.md Minor documentation updates and reorganization

Tip: Customize your code reviews with copilot-instructions.md. Create the file or learn how to get started.

@ymc9
Copy link
Member Author

ymc9 commented Aug 26, 2025

@coderabbitai review

@coderabbitai
Copy link

coderabbitai bot commented Aug 26, 2025

✅ Actions performed

Review triggered.

Note: CodeRabbit is an incremental review system and does not re-review already reviewed commits. This command is applicable only when automatic reviews are paused.

@ymc9
Copy link
Member Author

ymc9 commented Aug 26, 2025

@coderabbitai why don't you automatically review PR sent to the dev branch?

@coderabbitai
Copy link

coderabbitai bot commented Aug 26, 2025

Tip

For best results, initiate chat on the files or code changes.

🧩 Analysis chain

@ymc9 Let me check your current CodeRabbit configuration to understand why automatic reviews aren't happening for PRs to the dev branch.

🛠️ Debug Information Gathered

@ymc9 Based on your current CodeRabbit configuration, automatic reviews are only enabled for PRs targeting the default branch (typically main or master).

Looking at your configuration, I can see that auto_review.base_branches is currently an empty array:

auto_review:
  enabled: true
  auto_incremental_review: true
  # ... other settings
  base_branches: []  # This is why dev branch PRs aren't automatically reviewed

To enable automatic reviews for PRs targeting the dev branch, you need to add it to the base_branches configuration. Here are your options:

Option 1: Review only dev branch PRs (in addition to default branch)

reviews:
  auto_review:
    base_branches: ["dev"]

Option 2: Review all branches

reviews:
  auto_review:
    base_branches: [".*"]

Option 3: Review specific branches

reviews:
  auto_review:
    base_branches: ["dev", "staging", "release.*"]

You can update your .coderabbit.yaml file with one of these configurations. The base_branches field accepts regex patterns, so you can be quite flexible with branch matching.

Once you update the configuration, CodeRabbit will automatically review PRs targeting the specified branches in addition to your default branch.

coderabbitai[bot]
coderabbitai bot reviewed Aug 26, 2025
View reviewed changes
Copy link

@coderabbitai coderabbitai bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Actionable comments posted: 3

Caution

Some comments are outside the diff and can’t be posted inline due to platform limitations.

⚠️ Outside diff range comments (1)
packages/runtime/src/client/plugin.ts (1)

96-110: Docs use singular “entity” while the API exposes plural “entities”

The JSDoc for both hooks refers to args.entity, args.beforeMutationEntity, and args.afterMutationEntity, but the actual types define entities, beforeMutationEntities, and afterMutationEntities (arrays). This will confuse plugin authors.

-    /**
-     * Called before an entity is mutated.
-     * @param args.entity Only available if `loadBeforeMutationEntities` is set to true in the
-     * return value of {@link RuntimePlugin.mutationInterceptionFilter}.
-     */
+    /**
+     * Called before entities are mutated.
+     * @param args.entities Only available if `loadBeforeMutationEntities` is set to true in the
+     * return value of {@link RuntimePlugin.mutationInterceptionFilter}.
+     */
     beforeEntityMutation?: BeforeEntityMutationCallback<Schema>;
 
-    /**
-     * Called after an entity is mutated.
-     * @param args.beforeMutationEntity Only available if `loadBeforeMutationEntities` is set to true in the
-     * return value of {@link RuntimePlugin.mutationInterceptionFilter}.
-     * @param args.afterMutationEntity Only available if `loadAfterMutationEntities` is set to true in the
-     * return value of {@link RuntimePlugin.mutationInterceptionFilter}.
-     */
+    /**
+     * Called after entities are mutated.
+     * @param args.beforeMutationEntities Only available if `loadBeforeMutationEntities` is set to true in the
+     * return value of {@link RuntimePlugin.mutationInterceptionFilter}.
+     * @param args.afterMutationEntities Only available if `loadAfterMutationEntities` is set to true in the
+     * return value of {@link RuntimePlugin.mutationInterceptionFilter}.
+     */
     afterEntityMutation?: AfterEntityMutationCallback<Schema>;
♻️ Duplicate comments (2)
packages/runtime/src/client/executor/zenstack-query-executor.ts (2)

216-216: Hard-coded isolation level

This repeats a previous concern: the 'repeatable read' isolation level is hard-coded. Consider making this configurable (e.g., via client options) or using the driver’s default.

256-264: Avoid mutating executor internals from outside the constructor

innerExecutor.suppressMutationHooks = true is a direct field mutation. Prefer a constructor parameter or a dedicated withSuppressedMutationHooks() factory to keep the executor immutable and prevent accidental misuse.

Would you like me to propose a minimal refactor that threads this through the constructor and with* methods?

🧹 Nitpick comments (15)
packages/runtime/src/client/executor/zenstack-driver.ts (2)

82-87: Prefer structured logging over console.error and preserve error objects

Swallowing callback errors is fine, but logging with console.error interpolates the error and loses stack/metadata. Use the existing Log instance for consistency and pass the error object directly.

-                    } catch (err) {
-                        // errors in commit callbacks are logged but do not fail the commit
-                        console.error(`Error executing transaction commit callback: ${err}`);
-                    }
+                    } catch (err) {
+                        // errors in commit callbacks are logged but do not fail the commit
+                        await this.#log.error(() => ({
+                            level: 'error',
+                            error: err,
+                            message: 'Error executing transaction commit callback',
+                        }));
+                    }

78-81: Commit-callback execution ordering and failure policy: document intent

Callbacks currently run sequentially and independently; a failure is logged and does not short-circuit. If ordering doesn’t matter, Promise.allSettled could reduce tail latency. If ordering matters, keep as-is but document the guarantee.

Possible concurrent alternative:

-            if (callbacks) {
-                for (const callback of callbacks) {
-                    try {
-                        await callback();
-                    } catch (err) {
-                        await this.#log.error(() => ({ level: 'error', error: err, message: 'Error executing transaction commit callback' }));
-                    }
-                }
-            }
+            if (callbacks?.length) {
+                const results = await Promise.allSettled(callbacks.map(cb => cb()));
+                for (const r of results) {
+                    if (r.status === 'rejected') {
+                        await this.#log.error(() => ({ level: 'error', error: r.reason, message: 'Error executing transaction commit callback' }));
+                    }
+                }
+            }

Also applies to: 90-95

TODO.md (2)

12-12: Fix list indentation to satisfy markdownlint MD007

The linter flags inconsistent indentation for nested bullets. Normalize indentation per repo rules (expected vs actual in hints). Consider running markdownlint --fix or updating the MD007 config if intentional.

Minimal adjustments (illustrative; apply consistently across the file):

-        - [x] typescript
+    - [x] typescript
@@
-        - [ ] Filtering
+    - [ ] Filtering
-            - [x] Unique fields
-            - [x] Scalar fields
-            - [x] Relation fields
-            - [ ] JSON filtering
-            - [ ] Full-text search
+        - [x] Unique fields
+        - [x] Scalar fields
+        - [x] Relation fields
+        - [ ] JSON filtering
+        - [ ] Full-text search
@@
-    - [ ] Extensibility
+  - [ ] Extensibility
-        - [x] Plugin
+    - [x] Plugin

Alternatively:

#!/usr/bin/env bash
npx markdownlint-cli2 --fix TODO.md

Also applies to: 35-41, 68-71

90-91: Clarify post-mutation hook semantics now that in-transaction execution is supported

The TODO states “Post-mutation hooks should be called after transaction is committed” as done, but this PR introduces an option to run after-mutation within the transaction. Add a note reflecting the new toggle (default vs. opt-in) to avoid confusion.

Example:

-- [x] Post-mutation hooks should be called after transaction is committed
+- [x] Post-mutation hooks called after transaction commit (default).
+      Option: runAfterMutationWithinTransaction to execute inside the transaction when needed.
packages/runtime/src/client/executor/kysely-utils.ts (1)

7-14: Add an explicit return type for stripAlias

Make the utility’s contract clear and improve IDE/helpfulness.

-export function stripAlias(node: OperationNode) {
+export function stripAlias(
+    node: OperationNode,
+): { alias: string | undefined; node: OperationNode } {
     if (AliasNode.is(node)) {
         invariant(IdentifierNode.is(node.alias), 'Expected identifier as alias');
         return { alias: node.alias.name, node: node.node };
     } else {
         return { alias: undefined, node };
     }
 }
packages/runtime/src/client/executor/name-mapper.ts (2)

98-107: Avoid non-null assertion when checking innerNode

The non-null assertion operator is unnecessary; tighten the guard to eliminate potential undefined access and improve readability.

-        const { alias, node: innerNode } = stripAlias(node.table);
-        if (TableNode.is(innerNode!)) {
+        const { alias, node: innerNode } = stripAlias(node.table);
+        if (innerNode && TableNode.is(innerNode)) {
             const modelName = innerNode.table.identifier.name;
             if (this.hasMappedColumns(modelName)) {
                 // create a nested query with all fields selected and names mapped
                 const select = this.createSelectAll(modelName);
                 return { ...super.transformJoin(node), table: this.wrapAlias(select, alias ?? modelName) };
             }
         }

176-185: Same non-null assertion nit as above in DeleteQuery transform

Minor readability fix; align with the Join change.

-            const { alias, node: innerNode } = stripAlias(from);
-            if (TableNode.is(innerNode!)) {
+            const { alias, node: innerNode } = stripAlias(from);
+            if (innerNode && TableNode.is(innerNode)) {
                 // map table name
                 return this.wrapAlias(this.processTableRef(innerNode), alias);
             } else {
                 return super.transformNode(from);
             }
packages/runtime/src/client/plugin.ts (2)

176-191: Client passthrough on hook args

Exposing a client that automatically shares the mutation’s transaction context (and suppresses hooks) is a solid design. Consider explicitly stating that read queries also observe uncommitted changes when inside a transaction, subject to the isolation level.

Also applies to: 206-213

227-231: Tighten ProceedKyselyQueryFunction return type

ProceedKyselyQueryFunction returns Promise<QueryResult<any>> while OnKyselyQueryCallback returns Promise<QueryResult<UnknownRow>>. Consider aligning these to UnknownRow for consistency and to avoid unnecessary any.

-export type ProceedKyselyQueryFunction = (query: RootOperationNode) => Promise<QueryResult<any>>;
+export type ProceedKyselyQueryFunction = (query: RootOperationNode) => Promise<QueryResult<UnknownRow>>;
packages/runtime/test/client-api/name-mapping.test.ts (3)

7-7: Avoid cross-provider DB name collisions

TEST_DB is the same for sqlite and postgresql runs. While your harness likely isolates per provider, suffixing with the provider makes parallel runs and debugging safer.

-const TEST_DB = 'client-api-name-mapper-test';
+const TEST_DB = (provider: 'sqlite' | 'postgresql') => `client-api-name-mapper-test-${provider}`;

And pass dbName: TEST_DB(provider) in createTestClient.

Also applies to: 9-13

146-158: Expectation couples Post.id with User.id

This assertion relies on both sequences starting at 1; it’s true in a fresh DB but can be brittle. Prefer asserting on authorId (or select it) to validate the join, or assert only on title/email.

-            ).resolves.toMatchObject({
-                id: user.id,
-                title: 'Post1',
-                email: 'u1@test.com',
-            });
+            ).resolves.toMatchObject({
+                title: 'Post1',
+                email: 'u1@test.com',
+            });

221-226: Same brittleness on delete RETURNING

The assertion compares Post.id to user.id. Since you set Post.id = 1 earlier, it currently works, but coupling across tables is accidental. Consider asserting only on stable fields (e.g., title) or add authorId to RETURNING and match that.

packages/runtime/test/plugin/entity-mutation-hooks.test.ts (3)

7-8: Per-provider DB naming for parallelism and clarity

Same suggestion as other test: include provider in TEST_DB to avoid any accidental cross-provider interference and to ease test debugging.

Also applies to: 9-13

436-454: Comment contradicts the assertion (nitpick)

The comment says “mutation is persisted” but the assertion expects zero rows. Fix the comment to avoid confusion for future readers.

-                // mutation is persisted
+                // mutation is NOT persisted

317-367: Duplicate test case: “triggers multiple afterEntityMutation hooks for multiple mutations”

This scenario appears twice with effectively the same assertions. Consider keeping one to reduce test time and maintenance overhead.

Also applies to: 792-843

📜 Review details

Configuration used: Path: .coderabbit.yaml

Review profile: CHILL

Plan: Pro

💡 Knowledge Base configuration:

  • MCP integration is disabled by default for public repositories
  • Jira integration is disabled by default for public repositories
  • Linear integration is disabled by default for public repositories

You can enable these sources in your CodeRabbit configuration.

📥 Commits

Reviewing files that changed from the base of the PR and between 43e4f16 and 0fd9153.

📒 Files selected for processing (9)
  • TODO.md (3 hunks)
  • packages/runtime/src/client/client-impl.ts (2 hunks)
  • packages/runtime/src/client/executor/kysely-utils.ts (1 hunks)
  • packages/runtime/src/client/executor/name-mapper.ts (6 hunks)
  • packages/runtime/src/client/executor/zenstack-driver.ts (1 hunks)
  • packages/runtime/src/client/executor/zenstack-query-executor.ts (15 hunks)
  • packages/runtime/src/client/plugin.ts (3 hunks)
  • packages/runtime/test/client-api/name-mapping.test.ts (2 hunks)
  • packages/runtime/test/plugin/entity-mutation-hooks.test.ts (1 hunks)
🧰 Additional context used
🧠 Learnings (4)
📓 Common learnings 
Learnt from: CR
PR: zenstackhq/zenstack-v3#0
File: CLAUDE.md:0-0
Timestamp: 2025-08-04T08:43:33.161Z
Learning: Plugin Architecture: Runtime plugins for query interception and entity mutation hooks
📚 Learning: 2025-08-04T08:43:33.161Z 
Learnt from: CR
PR: zenstackhq/zenstack-v3#0
File: CLAUDE.md:0-0
Timestamp: 2025-08-04T08:43:33.161Z
Learning: Kysely-Based ORM: V3 uses Kysely as query builder instead of Prisma runtime dependency

Applied to files:

  • packages/runtime/src/client/client-impl.ts
📚 Learning: 2025-08-04T08:43:33.161Z 
Learnt from: CR
PR: zenstackhq/zenstack-v3#0
File: CLAUDE.md:0-0
Timestamp: 2025-08-04T08:43:33.161Z
Learning: Plugin Architecture: Runtime plugins for query interception and entity mutation hooks

Applied to files:

  • packages/runtime/src/client/plugin.ts
  • packages/runtime/src/client/executor/zenstack-query-executor.ts
📚 Learning: 2025-08-04T08:43:33.161Z 
Learnt from: CR
PR: zenstackhq/zenstack-v3#0
File: CLAUDE.md:0-0
Timestamp: 2025-08-04T08:43:33.161Z
Learning: Language-First Design: ZModel DSL compiles to TypeScript, not runtime code generation

Applied to files:

  • TODO.md
🪛 markdownlint-cli2 (0.17.2)
TODO.md

12-12: Unordered list indentation
Expected: 4; Actual: 8

(MD007, ul-indent)

35-35: Unordered list indentation
Expected: 4; Actual: 8

(MD007, ul-indent)

36-36: Unordered list indentation
Expected: 6; Actual: 12

(MD007, ul-indent)

37-37: Unordered list indentation
Expected: 6; Actual: 12

(MD007, ul-indent)

38-38: Unordered list indentation
Expected: 6; Actual: 12

(MD007, ul-indent)

39-39: Unordered list indentation
Expected: 6; Actual: 12

(MD007, ul-indent)

40-40: Unordered list indentation
Expected: 6; Actual: 12

(MD007, ul-indent)

68-68: Unordered list indentation
Expected: 2; Actual: 4

(MD007, ul-indent)

69-69: Unordered list indentation
Expected: 4; Actual: 8

(MD007, ul-indent)

70-70: Unordered list indentation
Expected: 4; Actual: 8

(MD007, ul-indent)

71-71: Unordered list indentation
Expected: 4; Actual: 8

(MD007, ul-indent)

⏰ Context from checks skipped due to timeout of 90000ms. You can increase the timeout in your CodeRabbit configuration to a maximum of 15 minutes (900000ms). (1)
  • GitHub Check: build-test (20.x)
🔇 Additional comments (10)
packages/runtime/src/client/executor/zenstack-driver.ts (1)

78-80: Good: delete callbacks before invocation to avoid re-triggering

Deleting the WeakMap entry before iterating prevents re-entrancy from re-registering and firing the same callbacks. Nice touch.

packages/runtime/src/client/executor/kysely-utils.ts (1)

8-11: LGTM: Centralized, type-safe alias unwrapping

Using Kysely’s node guards with invariant keeps failures explicit and reduces duplication across transformers.

packages/runtime/src/client/executor/name-mapper.ts (2)

154-169: Good defensive guard for UpdateQueryNode without table

Early-returning when node.table is absent avoids unnecessary work and potential crashes before alias stripping.

307-315: Consistent alias handling via stripAlias looks solid

Centralizing alias unwrapping reduces duplication and keeps the transformer lean. The scopes built from FromNode now reflect aliases accurately.

Also applies to: 322-337

packages/runtime/src/client/executor/zenstack-query-executor.ts (4)

78-85: Raw-query parameter propagation relies on non-typed $raw; verify robustness across Kysely versions

(compiledQuery as any).$raw is a fragile check and may break when Kysely changes internals. If this is an established convention in your codebase, fine; otherwise, consider a more principled detection (e.g., node-kind check) or add a small utility wrapper for tagging raw queries at creation time so you don’t reach into any. At minimum, please verify this is intentional and covered by tests.

Would you like me to draft a small utility (e.g., markRaw(compiledQuery)) and refactor call sites?

523-539: Potential alias mismatch when loading “before” entities

loadEntities merges the mutation’s where (which can contain aliased refs like u.id) with a selectFrom(model) that has no alias. This can produce invalid SQL when updates/deletes used table aliases (e.g., update "User as u"). Consider normalizing/remapping the WhereNode to unaliased identifiers before merging, or building the selectFrom with a matching alias.

I can add a focused test that performs updateTable('User as u') with a plugin requesting loadBeforeMutationEntities and verify the behavior across providers. Want me to draft it?

251-253: Better error message with compiled SQL

Including compiled?.sql in the thrown QueryError is great for diagnosability. LGTM.

343-360: Robust model extraction with alias stripping

The use of stripAlias and invariant checks across Insert/Update/Delete improves correctness when tables are aliased. Nicely done.

packages/runtime/src/client/plugin.ts (1)

153-166: Transaction semantics flag is clear and useful

The runAfterMutationWithinTransaction addition is well documented and matches the executor behavior. LGTM.

packages/runtime/test/plugin/entity-mutation-hooks.test.ts (1)

369-571: Great coverage of transactional semantics and hook timing

The matrix of with/without outer transaction and with/without in-tx after-hooks is thorough and aligns with the documented behavior. Nicely done.

Also applies to: 574-789

@claude
Copy link

claude bot commented Aug 26, 2025
edited
Loading

Claude finished @ymc9's task —— View job

PR Review: Transaction Semantics for Entity Mutation Hooks

I've completed a thorough analysis of this PR that refactors transaction semantics for entity mutation hooks. Here's my comprehensive review:

Todo List:

  • Read and analyze all changed files
  • Review code quality and best practices
  • Check for potential bugs or issues
  • Evaluate performance considerations
  • Assess security concerns
  • Review test coverage
  • Provide comprehensive feedback summary

Strengths

1. Excellent Transaction Architecture

  • ZenStackDriver (zenstack-driver.ts:68-95): The commit callback mechanism is well-designed, properly handling callback registration and execution after successful commits
  • Error Handling: Solid error handling in transaction callbacks with logging (lines 84-87) rather than failing the commit
  • Cleanup: Proper cleanup of transaction state on both commit and rollback

2. Sophisticated Hook Execution Logic

  • ZenStackQueryExecutor (zenstack-query-executor.ts:170-248): The logic for handling runAfterMutationWithinTransaction is sophisticated and correct
  • On-the-fly Transactions: Creating transactions when hooks require them but none exists is well-implemented
  • Client Context: Properly creating connection-aware clients (createClientForConnection) ensures hooks see the correct transaction state

3. Comprehensive Test Coverage

  • Extensive Testing: The test file has grown from 358 to 790 lines, with excellent coverage of transaction scenarios
  • Edge Cases: Tests cover within-tx vs out-of-tx execution, rollback scenarios, and error handling
  • Integration Tests: Real transaction behavior is properly tested

4. Clean Plugin Architecture

  • Plugin Interface (plugin.ts:154-166): The runAfterMutationWithinTransaction flag provides clear control over hook execution timing
  • Type Safety: Strong TypeScript typing throughout the plugin system

⚠️ Areas for Improvement

1. Critical Bug in Client Implementation

Issue: client-impl.ts:159-164

forceTransaction() {
    if (!this.kysely.isTransaction) {
        this.kysely = new Transaction(this.kyselyProps);
    }
}
  • Problem: This creates a fake transaction that doesn't actually begin a database transaction
  • Impact: Code will think it's in a transaction while queries run outside one
  • Recommendation: Replace with proper Kysely transaction API or remove this method

2. Performance Considerations

Issue: zenstack-query-executor.ts:216-217

await this.driver.beginTransaction(connection, {
    isolationLevel: TransactionIsolationLevel.ReadCommitted,
});
  • Hardcoded Isolation Level: Should be configurable or use database defaults
  • Recommendation: Make isolation level configurable through client options

3. Error Handling Edge Cases

Issue: zenstack-driver.ts:85-86

console.error(`Error executing transaction commit callback: ${err}`);
  • Problem: Using console.error instead of the structured logging system
  • Recommendation: Use this.#log.error() for consistency

Issue: zenstack-query-executor.ts:253

const message = `Failed to execute query: ${err}, sql: ${compiled?.sql}`;
  • Security Risk: SQL queries in error messages could expose sensitive information
  • Recommendation: Only include SQL in development/debug mode

4. Memory Management

Issue: zenstack-driver.ts:14

#txConnections = new WeakMap<DatabaseConnection, Array<() => Promise<unknown>>>();
  • Potential Issue: Callback arrays could accumulate if connections are reused extensively
  • Recommendation: Consider cleanup mechanisms for long-lived connections

🔧 Minor Issues

1. Code Quality

  • zenstack-query-executor.ts:149-153: The RETURNING clause override could preserve existing custom returning clauses
  • zenstack-query-executor.ts:260: Mutation of innerExecutor.suppressMutationHooks after construction could be avoided with better constructor design
  • plugin.ts:96-110: JSDoc comments refer to singular "entity" while API uses plural "entities"

2. Type Safety

  • kysely-utils.ts:7: Add explicit return type annotation for better IDE support
  • plugin.ts:227: ProceedKyselyQueryFunction return type inconsistency with OnKyselyQueryCallback

🔒 Security Assessment

Good:

  • No SQL injection risks introduced
  • Proper transaction isolation
  • Hook clients have mutation hooks suppressed to prevent infinite loops

⚠️ Consideration: Error messages containing SQL (mentioned above)

📊 Performance Impact

  • Positive: Efficient use of WeakMap/WeakSet for connection tracking
  • Neutral: Additional complexity in query executor may have slight overhead
  • Watch: On-the-fly transaction creation could impact performance for hook-heavy workloads

🧪 Test Coverage Analysis

Excellent Coverage:

  • Multi-provider testing (SQLite + PostgreSQL)
  • Transaction boundary testing
  • Hook execution timing scenarios
  • Error handling and rollback scenarios
  • Integration with existing ORM operations

🎯 Overall Assessment

This is a high-quality refactoring that significantly improves the transaction semantics of entity mutation hooks. The architecture is sound, test coverage is excellent, and the implementation handles complex transaction scenarios correctly.

Critical Issue: The forceTransaction() method in client-impl.ts creates a fake transaction and should be fixed before merging.

Recommendation: ⚠️ Needs Minor Fix - Address the forceTransaction() implementation, then this will be ready for approval.

The refactoring successfully addresses the core requirement of proper transaction boundaries for mutation hooks while maintaining backward compatibility and adding new capabilities.

@claude
Copy link

claude bot commented Aug 26, 2025
edited
Loading

Claude finished @ymc9's task —— View job

PR Review: Transaction Semantics for Entity Mutation Hooks

I've completed a thorough analysis of this PR that refactors transaction semantics for entity mutation hooks. Here's my comprehensive review:

Todo List:

  • Read and analyze all changed files
  • Review code quality and best practices
  • Check for potential bugs or issues
  • Evaluate performance considerations
  • Assess security concerns
  • Review test coverage

Strengths

1. Excellent Transaction Architecture

  • ZenStackDriver (zenstack-driver.ts:68-95): The commit callback mechanism is well-designed, properly handling callback registration and execution after successful commits
  • Error Handling: Solid error handling in transaction callbacks with logging (lines 84-87) rather than failing the commit
  • Cleanup: Proper cleanup of transaction state on both commit and rollback

2. Sophisticated Hook Execution Logic

  • ZenStackQueryExecutor (zenstack-query-executor.ts:170-248): The logic for handling runAfterMutationWithinTransaction is sophisticated and correct
  • On-the-fly Transactions: Creating transactions when hooks require them but none exists is well-implemented
  • Client Context: Properly creating connection-aware clients (createClientForConnection) ensures hooks see the correct transaction state

3. Comprehensive Test Coverage

  • Extensive Testing: The test file has grown from 358 to 790 lines, with excellent coverage of transaction scenarios
  • Edge Cases: Tests cover within-tx vs out-of-tx execution, rollback scenarios, and error handling
  • Integration Tests: Real transaction behavior is properly tested

4. Clean Plugin Architecture

  • Plugin Interface (plugin.ts:154-166): The runAfterMutationWithinTransaction flag provides clear control over hook execution timing
  • Type Safety: Strong TypeScript typing throughout the plugin system

⚠️ Areas for Improvement

1. Performance Considerations

Issue: zenstack-query-executor.ts:215-231

await this.driver.beginTransaction(connection, { isolationLevel: 'repeatable read' });
  • Hardcoded Isolation Level: Using repeatable read by default may be overkill and could impact performance
  • Recommendation: Consider making isolation level configurable or using a lighter default

2. Error Handling Edge Cases

Issue: zenstack-driver.ts:85-86

console.error(`Error executing transaction commit callback: ${err}`);
  • Problem: Using console.error instead of the logger system
  • Recommendation: Use this.#log.error() for consistency

Issue: zenstack-query-executor.ts:250-253

const message = `Failed to execute query: ${err}, sql: ${compiled?.sql}`;
throw new QueryError(message, err);
  • Security Risk: SQL queries in error messages could expose sensitive information
  • Recommendation: Only include SQL in development/debug mode

3. Memory Management

Issue: zenstack-driver.ts:14-15

#connections = new WeakSet<DatabaseConnection>();
#txConnections = new WeakMap<DatabaseConnection, Array<() => Promise<unknown>>>();
  • Potential Issue: Callback arrays could accumulate if connections are reused extensively
  • Recommendation: Consider cleanup mechanisms for long-lived connections

🔧 Minor Issues

1. Code Quality

  • zenstack-query-executor.ts:167: The beforeMutation hook call could be moved closer to the actual mutation for better code organization
  • name-mapper.ts:200: The toReversed() method may not be available in all Node.js versions - consider using [...array].reverse() for better compatibility

2. Type Safety

  • zenstack-query-executor.ts:339: Mutation of newExecutor.client after construction could be avoided with better constructor design

🔒 Security Assessment

Good:

  • No SQL injection risks introduced
  • Proper transaction isolation
  • Hook clients have mutation hooks suppressed to prevent infinite loops

⚠️ Consideration: Error messages containing SQL (mentioned above)

📊 Performance Impact

  • Positive: Efficient use of WeakMap/WeakSet for connection tracking
  • Neutral: Additional complexity in query executor may have slight overhead
  • Watch: On-the-fly transaction creation could impact performance for hook-heavy workloads

🎯 Overall Assessment

This is a high-quality refactoring that significantly improves the transaction semantics of entity mutation hooks. The architecture is sound, test coverage is excellent, and the implementation handles complex transaction scenarios correctly.

Recommendation: ✅ Approve with the minor improvements suggested above.

The refactoring successfully addresses the core requirement of proper transaction boundaries for mutation hooks while maintaining backward compatibility and adding new capabilities.

@ymc9 ymc9 merged commit b234fb2 into dev Aug 26, 2025
4 checks passed
This was referenced Aug 26, 2025
Merged
Merged
Merged
This was referenced Sep 30, 2025
Merged
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@coderabbitai coderabbitai[bot] coderabbitai[bot] left review comments

Copilot code review Copilot Copilot left review comments

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@ymc9