Login

u/Clear_Track_9063

I built an open-source Postgres SQL guardrail for AI-generated queries
▲ 1 r/Supabase

I built an open-source Postgres SQL guardrail for AI-generated queries

I just open-sourced a fast static SQL linter built on the real Postgres parser (libpg-query).It catches 36 dangerous patterns before they hit your database:

RCE via COPY ... PROGRAM

SUPERUSER / privilege escalation

Exfiltration (dblink, lo_export)

Unbounded UPDATE/DELETE

And many more levels of gotchas.

Zero network, runs locally in your editor, CI, or AI agent loops

ESLint plugin + CLI + nice playground

Just hit v1.6.0 with the heavy security rules.

GitHub: https://github.com/MuddySheep/vibeguard-local

Playground (test your AI SQL): https://muddysheep.github.io/vibeguard-local/

Would love honest feedback from users running AI agents or coding against Postgres. Stars and issues welcomed!

u/Clear_Track_9063 — 5 days ago
▲ 0 r/coolgithubprojects

Built a SQL Safety Analysis for Agents - feedback wanted

I built a Static SQL safety analysis for AI agents. 15 senior-DBA-level checks. Sub-millisecond. Zero network calls. Runs in your CLI, your editor, or right in the browser.

Paste a SQL query (or pick one of 15 ready-made samples), see what VibeGuard catches in real time. The analyzer runs entirely client-side via WASM — your SQL never leaves the page.

This is V1 of the cloud version. I will OSS as much as I can.

Cloud version is a firewall for Agents and SQL Databases with Human in the loop, with non tamperable chain governance. Right now its Postgres but I am working on MongoDB as well. Still v0 but working on it.

Would love some honest feedback, Maybe DB and/or Security Folks. Its how I can get better.

Background: Systems Engineer
Inspiration: Making Another Layer of AI safer in production Environments

There is a NPM as well as a Playground on the Github Same Engine. Light or Dark Mode.

I would love to see someone break it or find limitations. I can keep iterating.

https://github.com/MuddySheep/vibeguard-local

u/Clear_Track_9063 — 6 days ago
▲ 1 r/replit

I wanted to share what I built and get honest feedback.

Its called Vibe Guard. I am a systems engineer and I used my infrastructure knowledge to make a unpassable gate for Ai agents that work with data. We have all heard the stories about customer data being lost, corrupted, destroyed.

Well one may say, have back ups or have proper prompts or development frameworks. That used to work, development frameworks/change management is great for humans making about 20 to 30 production changes a week. Not when an agent can do 50 in 6 to 9 seconds.

So I built vibe guard it sits between the agent and the database autonomously. It catches dangerous queries before they execute, flags them with reason and a suggest fix right back to the agent, routes ambiguous ones to you. Human in the loop immediately. Everything is tracked and tamper proofed chained. Follows NIST AI RMF.

Built for solo devs and small teams who actually want to ship with AI in the loop and not have a post mortem next week.

During this time I was also able to Open Source the static part of it. Keeping the cloud part under wraps until I figure out a licensing model. Its on GitHub and published to as a NPM package. github.com/MuddySheep/vibeguard-local

Currently working on Multi-Tenancy on the cloud site and MongoDB integration, Postgres family for now but the core flow is solid.

If anyone wants to poke at it, its here: https://vibe-guard-intent--muddysheepz.replit.app/

Open to honest feedback even the brutal kind. I would like to know if anyone knows of DB failures in SQL that I haven't seen yet.

https://preview.redd.it/169dhne3omzg1.png?width=2258&format=png&auto=webp&s=4dd97ab8432bc20271ab45998312fe0f3ace58b5

reddit.com
u/Clear_Track_9063 — 8 days ago