Remove sequelize (#3012)

* First commit

Signed-off-by: Prabhu Subramanian <[email protected]>

* Better compatibility with existing database

Signed-off-by: Prabhu Subramanian <[email protected]>

* db unit tests

Signed-off-by: Prabhu Subramanian <[email protected]>

* fix binary builds

Signed-off-by: Prabhu Subramanian <[email protected]>

---------

Signed-off-by: Prabhu Subramanian <[email protected]>

Author: prabhu

.github/workflows/binary-builds.yml

@@ -57,7 +57,7 @@ jobs:
           # Set all the runners
           - os: darwin
             arch: amd64
-            runner: macos-14-large
+            runner: macos-15-intel
           - os: darwin
             arch: arm64
             runner: macos-14

lib/evinser/evinser.js

@@ -3,7 +3,6 @@ import path, { basename, join, resolve } from "node:path";
 import process from "node:process";
 
 import { PackageURL } from "packageurl-js";
-import { Op } from "sequelize";
 
 import { findCryptoAlgos } from "../helpers/cbomutils.js";
 import * as db from "../helpers/db.js";
@@ -908,7 +907,7 @@ export async function parseSliceUsages(
           attributes: ["purl"],
           where: {
             data: {
-              [Op.like]: `%${atype}%`,
+              like: `%${atype}%`,
             },
           },
         });
@@ -1654,7 +1653,7 @@ export async function collectDataFlowFrames(
               attributes: ["purl"],
               where: {
                 data: {
-                  [Op.like]: `%${typeFullName}%`,
+                  like: `%${typeFullName}%`,
                 },
               },
             });

lib/helpers/db.js

@@ -1,79 +1,160 @@
 import path from "node:path";
 
-import { DataTypes, Model, Sequelize } from "sequelize";
-import SQLite from "sqlite3";
+import sqlite3 from "sqlite3";
 
-class Namespaces extends Model {}
-class Usages extends Model {}
-class DataFlows extends Model {}
+const {
+  Database,
+  OPEN_READWRITE,
+  OPEN_CREATE,
+  OPEN_NOMUTEX,
+  OPEN_SHAREDCACHE,
+} = sqlite3;
+
+/**
+ * A lightweight Model wrapper to mimic Sequelize behavior using raw sqlite3
+ */
+class Model {
+  constructor(db, tableName) {
+    this.db = db;
+    this.tableName = tableName;
+  }
+
+  /**
+   * Initialize table
+   */
+  async init() {
+    const sql = `CREATE TABLE IF NOT EXISTS ${this.tableName} (
+      purl TEXT PRIMARY KEY, 
+      data JSON NOT NULL,
+      createdAt DATETIME NOT NULL,
+      updatedAt DATETIME NOT NULL
+    )`;
+    return new Promise((resolve, reject) => {
+      this.db.run(sql, (err) => {
+        if (err) reject(err);
+        else resolve();
+      });
+    });
+  }
+
+  /**
+   * findByPk
+   * Returns null if not found, or an object { purl, data (parsed object) }
+   */
+  async findByPk(purl) {
+    const sql = `SELECT * FROM ${this.tableName} WHERE purl = ?`;
+    return new Promise((resolve, reject) => {
+      this.db.get(sql, [purl], (err, row) => {
+        if (err) {
+          reject(err);
+        } else if (!row) {
+          resolve(null);
+        } else {
+          try {
+            row.data = JSON.parse(row.data);
+          } catch (_e) {
+            // ignore
+          }
+          resolve(row);
+        }
+      });
+    });
+  }
+
+  /**
+   * findOrCreate
+   * @param {Object} options { where: { purl }, defaults: { purl, data } }
+   */
+  async findOrCreate(options) {
+    const { where, defaults } = options;
+    const existing = await this.findByPk(where.purl);
+
+    if (existing) {
+      return [existing, false];
+    }
+
+    const insertSql = `INSERT INTO ${this.tableName} (purl, data, createdAt, updatedAt) VALUES (?, ?, ?, ?)`;
+    const dataStr =
+      typeof defaults.data === "string"
+        ? defaults.data
+        : JSON.stringify(defaults.data);
+    const now = new Date().toISOString();
+    return new Promise((resolve, reject) => {
+      this.db.run(insertSql, [defaults.purl, dataStr, now, now], (err) => {
+        if (err) reject(err);
+        else {
+          const instance = {
+            purl: defaults.purl,
+            data: defaults.data,
+            createdAt: now,
+            updatedAt: now,
+          };
+          resolve([instance, true]);
+        }
+      });
+    });
+  }
+
+  /**
+   * findAll to handle the specific LIKE query from evinser.js
+   * @param {Object} options
+   */
+  async findAll(options) {
+    let sql = `SELECT * FROM ${this.tableName}`;
+    const params = [];
+
+    if (options?.where?.data) {
+      if (options.where.data.like) {
+        sql += " WHERE data LIKE ?";
+        params.push(options.where.data.like);
+      }
+    }
+
+    return new Promise((resolve, reject) => {
+      this.db.all(sql, params, (err, rows) => {
+        if (err) {
+          reject(err);
+        } else {
+          const results = rows.map((r) => {
+            try {
+              r.data = JSON.parse(r.data);
+            } catch (_e) {
+              // ignore
+            }
+            return r;
+          });
+          resolve(results);
+        }
+      });
+    });
+  }
+}
 
 export const createOrLoad = async (dbName, dbPath, logging = false) => {
-  const sequelize = new Sequelize({
-    define: {
-      freezeTableName: true,
-    },
-    dialect: "sqlite",
-    dialectOptions: {
-      mode:
-        SQLite.OPEN_READWRITE |
-        SQLite.OPEN_CREATE |
-        SQLite.OPEN_NOMUTEX |
-        SQLite.OPEN_SHAREDCACHE,
-    },
-    storage: dbPath.includes("memory") ? dbPath : path.join(dbPath, dbName),
-    logging,
-    pool: {
-      max: 5,
-      min: 0,
-      acquire: 30000,
-      idle: 10000,
-    },
+  const fullPath = dbPath.includes("memory")
+    ? dbPath
+    : path.join(dbPath, dbName);
+
+  const mode = OPEN_READWRITE | OPEN_CREATE | OPEN_NOMUTEX | OPEN_SHAREDCACHE;
+
+  const db = new Database(fullPath, mode, (err) => {
+    if (err && logging) console.error(err.message);
   });
-  Namespaces.init(
-    {
-      purl: {
-        type: DataTypes.STRING,
-        allowNull: false,
-        primaryKey: true,
-      },
-      data: {
-        type: DataTypes.JSON,
-        allowNull: false,
-      },
-    },
-    { sequelize, modelName: "Namespaces" },
-  );
-  Usages.init(
-    {
-      purl: {
-        type: DataTypes.STRING,
-        allowNull: false,
-        primaryKey: true,
-      },
-      data: {
-        type: DataTypes.JSON,
-        allowNull: false,
-      },
-    },
-    { sequelize, modelName: "Usages" },
-  );
-  DataFlows.init(
-    {
-      purl: {
-        type: DataTypes.STRING,
-        allowNull: false,
-        primaryKey: true,
-      },
-      data: {
-        type: DataTypes.JSON,
-        allowNull: false,
-      },
-    },
-    { sequelize, modelName: "DataFlows" },
-  );
-  await sequelize.sync();
+
+  if (logging) {
+    db.on("trace", (sql) => console.log(`[sqlite] ${sql}`));
+  }
+
+  const Namespaces = new Model(db, "Namespaces");
+  const Usages = new Model(db, "Usages");
+  const DataFlows = new Model(db, "DataFlows");
+
+  await Namespaces.init();
+  await Usages.init();
+  await DataFlows.init();
+
   return {
-    sequelize,
+    sequelize: db,
     Namespaces,
     Usages,
     DataFlows,

lib/helpers/db.poku.js

@@ -0,0 +1,123 @@
+import { assert, describe, test } from "poku";
+
+import { createOrLoad } from "./db.js";
+
+describe("SQLite3 Helper Tests", async () => {
+  const { sequelize, Namespaces } = await createOrLoad(
+    "test.db",
+    ":memory:",
+    false,
+  );
+
+  await test("Model Initialization", () => {
+    assert.ok(sequelize, "Database instance should exist");
+    assert.ok(Namespaces, "Namespaces model should be initialized");
+  });
+
+  await test("Namespaces: findOrCreate (New Record)", async () => {
+    const purl = "pkg:npm/[email protected]";
+    const data = {
+      description: "Promise based HTTP client",
+      versions: ["1.0.0"],
+    };
+
+    const [instance, created] = await Namespaces.findOrCreate({
+      where: { purl },
+      defaults: { purl, data },
+    });
+
+    assert.strictEqual(created, true, "Should indicate record was created");
+    assert.strictEqual(instance.purl, purl, "PURL should match");
+    assert.deepStrictEqual(instance.data, data, "Data object should match");
+    assert.ok(instance.createdAt, "createdAt should exist");
+    assert.ok(instance.updatedAt, "updatedAt should exist");
+  });
+
+  await test("Namespaces: findOrCreate (Existing Record)", async () => {
+    const purl = "pkg:npm/[email protected]";
+    const data = { ignored: "data" };
+
+    const [instance, created] = await Namespaces.findOrCreate({
+      where: { purl },
+      defaults: { purl, data },
+    });
+
+    assert.strictEqual(
+      created,
+      false,
+      "Should indicate record was NOT created",
+    );
+    assert.strictEqual(instance.purl, purl, "PURL should match existing");
+    assert.notDeepStrictEqual(
+      instance.data,
+      data,
+      "Should return existing data from DB, not new defaults",
+    );
+    assert.strictEqual(
+      instance.data.description,
+      "Promise based HTTP client",
+      "Data integrity check",
+    );
+  });
+
+  await test("Namespaces: findByPk", async () => {
+    const purl = "pkg:npm/[email protected]";
+    const record = await Namespaces.findByPk(purl);
+
+    assert.ok(record, "Record should be found");
+    assert.strictEqual(record.purl, purl);
+    assert.strictEqual(
+      typeof record.data,
+      "object",
+      "Data string should be parsed back to JSON object",
+    );
+    assert.strictEqual(
+      record.data.versions[0],
+      "1.0.0",
+      "Nested JSON data should be accessible",
+    );
+  });
+
+  await test("Namespaces: findByPk (Not Found)", async () => {
+    const record = await Namespaces.findByPk("pkg:npm/non-existent");
+    assert.strictEqual(
+      record,
+      null,
+      "Should return null for non-existent records",
+    );
+  });
+
+  await test("Namespaces: findAll (with LIKE filter)", async () => {
+    await Namespaces.findOrCreate({
+      where: { purl: "pkg:npm/react" },
+      defaults: {
+        purl: "pkg:npm/react",
+        data: { description: "UI Library", author: "Meta" },
+      },
+    });
+
+    const results = await Namespaces.findAll({
+      where: {
+        data: { like: "%HTTP%" },
+      },
+    });
+
+    assert.strictEqual(
+      results.length,
+      1,
+      "Should find exactly one record matching 'HTTP'",
+    );
+    assert.strictEqual(results[0].purl, "pkg:npm/[email protected]");
+  });
+
+  await test("Namespaces: findAll (No Filter)", async () => {
+    const results = await Namespaces.findAll({});
+    assert.strictEqual(
+      results.length,
+      2,
+      "Should return all records in the table",
+    );
+  });
+
+  sequelize.close();
+});