{
"event": "PreToolUse",
"tool_name": "Edit",
"tool_input": {
"file_path": "\/var\/www\/mcp-servers\/mcp-db\/tools\/delete_tool.py",
"old_string": "def register_delete_tool(mcp) -> None:\n \"\"\"Registriert db_delete Tool.\"\"\"\n logger = ProtokollLogger()\n\n @mcp.tool()\n def db_delete(\n table: str,\n where: dict,\n database: str = \"ki_dev\",\n limit: int | None = None,\n ) -> dict:\n \"\"\"\n Löscht Datensätze.\n\n Args:\n table: Zieltabelle\n where: Dict mit Spalte:Wert Paaren (WHERE-Klausel) - PFLICHT!\n database: Zieldatenbank (ki_dev oder ki_content)\n limit: Maximale Anzahl zu löschender Zeilen (Default: 100)\n\n Returns:\n Dict mit status, deleted_rows, error\n \"\"\"\n start = time.time()\n\n # Validierung: Tabellenname\n if not _validate_identifier(table):\n return {\n \"status\": \"denied\",\n \"error\": \"Invalid table name.\",\n }\n\n # Validierung: Datenbank\n if database not in Config.ALLOWED_DATABASES:\n return {\n \"status\": \"denied\",\n \"error\": f\"Database '{database}' not allowed.\",\n }\n\n # KRITISCH: WHERE ist Pflicht!\n if not where:\n return {\n \"status\": \"denied\",\n \"error\": \"WHERE clause is required. DELETE without WHERE is forbidden.\",\n }",
"new_string": "def register_delete_tool(mcp) -> None:\n \"\"\"Registriert db_delete Tool.\"\"\"\n logger = ProtokollLogger()\n\n @mcp.tool()\n def db_delete(\n table: str,\n where: dict,\n database: str = \"ki_dev\",\n limit: int | None = None,\n confirm_delete_all: bool = False,\n ) -> dict:\n \"\"\"\n Löscht Datensätze.\n\n Args:\n table: Zieltabelle\n where: Dict mit Spalte:Wert Paaren (WHERE-Klausel) - PFLICHT!\n Spezial: {\"id\": \">0\"} oder {\"1\": \"1\"} für alle Zeilen (mit confirm_delete_all=True)\n database: Zieldatenbank (ki_dev oder ki_content)\n limit: Maximale Anzahl zu löschender Zeilen (Default: 100)\n confirm_delete_all: True = erlaubt Löschung aller Zeilen\n\n Returns:\n Dict mit status, deleted_rows, error\n \"\"\"\n start = time.time()\n\n # Validierung: Tabellenname\n if not _validate_identifier(table):\n return {\n \"status\": \"denied\",\n \"error\": \"Invalid table name.\",\n }\n\n # Validierung: Datenbank\n if database not in Config.ALLOWED_DATABASES:\n return {\n \"status\": \"denied\",\n \"error\": f\"Database '{database}' not allowed.\",\n }\n\n # Spezialfall: Alle löschen mit confirm_delete_all\n delete_all_mode = False\n if where and confirm_delete_all:\n # Check for special patterns like {\"1\": \"1\"} or {\"id\": \">0\"}\n if where == {\"1\": \"1\"} or (len(where) == 1 and list(where.values())[0] == \">0\"):\n delete_all_mode = True\n\n # KRITISCH: WHERE ist Pflicht (außer delete_all_mode)\n if not where and not delete_all_mode:\n return {\n \"status\": \"denied\",\n \"error\": \"WHERE clause is required. DELETE without WHERE is forbidden.\",\n }"
}
}
{
"tool_response": {
"filePath": "\/var\/www\/mcp-servers\/mcp-db\/tools\/delete_tool.py",
"oldString": "def register_delete_tool(mcp) -> None:\n \"\"\"Registriert db_delete Tool.\"\"\"\n logger = ProtokollLogger()\n\n @mcp.tool()\n def db_delete(\n table: str,\n where: dict,\n database: str = \"ki_dev\",\n limit: int | None = None,\n ) -> dict:\n \"\"\"\n Löscht Datensätze.\n\n Args:\n table: Zieltabelle\n where: Dict mit Spalte:Wert Paaren (WHERE-Klausel) - PFLICHT!\n database: Zieldatenbank (ki_dev oder ki_content)\n limit: Maximale Anzahl zu löschender Zeilen (Default: 100)\n\n Returns:\n Dict mit status, deleted_rows, error\n \"\"\"\n start = time.time()\n\n # Validierung: Tabellenname\n if not _validate_identifier(table):\n return {\n \"status\": \"denied\",\n \"error\": \"Invalid table name.\",\n }\n\n # Validierung: Datenbank\n if database not in Config.ALLOWED_DATABASES:\n return {\n \"status\": \"denied\",\n \"error\": f\"Database '{database}' not allowed.\",\n }\n\n # KRITISCH: WHERE ist Pflicht!\n if not where:\n return {\n \"status\": \"denied\",\n \"error\": \"WHERE clause is required. DELETE without WHERE is forbidden.\",\n }",
"newString": "def register_delete_tool(mcp) -> None:\n \"\"\"Registriert db_delete Tool.\"\"\"\n logger = ProtokollLogger()\n\n @mcp.tool()\n def db_delete(\n table: str,\n where: dict,\n database: str = \"ki_dev\",\n limit: int | None = None,\n confirm_delete_all: bool = False,\n ) -> dict:\n \"\"\"\n Löscht Datensätze.\n\n Args:\n table: Zieltabelle\n where: Dict mit Spalte:Wert Paaren (WHERE-Klausel) - PFLICHT!\n Spezial: {\"id\": \">0\"} oder {\"1\": \"1\"} für alle Zeilen (mit confirm_delete_all=True)\n database: Zieldatenbank (ki_dev oder ki_content)\n limit: Maximale Anzahl zu löschender Zeilen (Default: 100)\n confirm_delete_all: True = erlaubt Löschung aller Zeilen\n\n Returns:\n Dict mit status, deleted_rows, error\n \"\"\"\n start = time.time()\n\n # Validierung: Tabellenname\n if not _validate_identifier(table):\n return {\n \"status\": \"denied\",\n \"error\": \"Invalid table name.\",\n }\n\n # Validierung: Datenbank\n if database not in Config.ALLOWED_DATABASES:\n return {\n \"status\": \"denied\",\n \"error\": f\"Database '{database}' not allowed.\",\n }\n\n # Spezialfall: Alle löschen mit confirm_delete_all\n delete_all_mode = False\n if where and confirm_delete_all:\n # Check for special patterns like {\"1\": \"1\"} or {\"id\": \">0\"}\n if where == {\"1\": \"1\"} or (len(where) == 1 and list(where.values())[0] == \">0\"):\n delete_all_mode = True\n\n # KRITISCH: WHERE ist Pflicht (außer delete_all_mode)\n if not where and not delete_all_mode:\n return {\n \"status\": \"denied\",\n \"error\": \"WHERE clause is required. DELETE without WHERE is forbidden.\",\n }",
"originalFile": "\"\"\"Delete Tool - Löscht Datensätze.\"\"\"\nimport re\nimport sys\nimport time\n\nsys.path.insert(0, \"\/opt\/mcp-servers\/mcp-db\")\n\nfrom config import Config\nfrom domain.log_contract import LogEntry\nfrom infrastructure.db_connection import DatabaseConnection\nfrom infrastructure.protokoll_logger import ProtokollLogger\n\n# Sicherheits-Default für LIMIT\nDEFAULT_DELETE_LIMIT = 100\n\n\ndef _validate_identifier(name: str) -> bool:\n \"\"\"Validiert Tabellen-\/Spaltennamen gegen SQL-Injection.\"\"\"\n return bool(re.match(r\"^[a-zA-Z0-9_]+$\", name))\n\n\ndef register_delete_tool(mcp) -> None:\n \"\"\"Registriert db_delete Tool.\"\"\"\n logger = ProtokollLogger()\n\n @mcp.tool()\n def db_delete(\n table: str,\n where: dict,\n database: str = \"ki_dev\",\n limit: int | None = None,\n ) -> dict:\n \"\"\"\n Löscht Datensätze.\n\n Args:\n table: Zieltabelle\n where: Dict mit Spalte:Wert Paaren (WHERE-Klausel) - PFLICHT!\n database: Zieldatenbank (ki_dev oder ki_content)\n limit: Maximale Anzahl zu löschender Zeilen (Default: 100)\n\n Returns:\n Dict mit status, deleted_rows, error\n \"\"\"\n start = time.time()\n\n # Validierung: Tabellenname\n if not _validate_identifier(table):\n return {\n \"status\": \"denied\",\n \"error\": \"Invalid table name.\",\n }\n\n # Validierung: Datenbank\n if database not in Config.ALLOWED_DATABASES:\n return {\n \"status\": \"denied\",\n \"error\": f\"Database '{database}' not allowed.\",\n }\n\n # KRITISCH: WHERE ist Pflicht!\n if not where:\n return {\n \"status\": \"denied\",\n \"error\": \"WHERE clause is required. DELETE without WHERE is forbidden.\",\n }\n\n # Validierung: Spaltennamen in where\n for col in where:\n if not _validate_identifier(col):\n return {\n \"status\": \"denied\",\n \"error\": f\"Invalid column name in where: {col}\",\n }\n\n # Default LIMIT als Sicherheit\n effective_limit = limit if limit is not None else DEFAULT_DELETE_LIMIT\n if effective_limit < 1:\n effective_limit = DEFAULT_DELETE_LIMIT\n\n try:\n with DatabaseConnection.get_connection(database) as conn:\n cursor = conn.cursor(buffered=True)\n\n # Build WHERE clause\n where_parts = [f\"`{col}` = %s\" for col in where]\n where_clause = \" AND \".join(where_parts)\n values = tuple(where.values())\n\n query = f\"DELETE FROM `{table}` WHERE {where_clause} LIMIT {effective_limit}\"\n cursor.execute(query, values)\n deleted_rows = cursor.rowcount\n conn.commit()\n cursor.close()\n\n duration = int((time.time() - start) * 1000)\n\n # Log\n try:\n logger.log(\n LogEntry(\n request=f\"DELETE FROM {table} WHERE ... LIMIT {effective_limit}\",\n status=\"success\",\n duration_ms=duration,\n )\n )\n except Exception:\n pass\n\n return {\n \"status\": \"success\",\n \"table\": table,\n \"deleted_rows\": deleted_rows,\n \"limit_applied\": effective_limit,\n \"execution_ms\": duration,\n }\n\n except Exception as e:\n duration = int((time.time() - start) * 1000)\n\n try:\n logger.log(\n LogEntry(\n request=f\"DELETE FROM {table}\",\n status=\"error\",\n duration_ms=duration,\n error_message=str(e)[:100],\n )\n )\n except Exception:\n pass\n\n return {\n \"status\": \"error\",\n \"error\": str(e)[:200],\n \"execution_ms\": duration,\n }\n",
"structuredPatch": [
{
"oldStart": 29,
"oldLines": 6,
"newStart": 29,
"newLines": 7,
"lines": [
" where: dict,",
" database: str = \"ki_dev\",",
" limit: int | None = None,",
"+ confirm_delete_all: bool = False,",
" ) -> dict:",
" \"\"\"",
" Löscht Datensätze."
]
},
{
"oldStart": 36,
"oldLines": 8,
"newStart": 37,
"newLines": 10,
"lines": [
" Args:",
" table: Zieltabelle",
" where: Dict mit Spalte:Wert Paaren (WHERE-Klausel) - PFLICHT!",
"+ Spezial: {\"id\": \">0\"} oder {\"1\": \"1\"} für alle Zeilen (mit confirm_delete_all=True)",
" database: Zieldatenbank (ki_dev oder ki_content)",
" limit: Maximale Anzahl zu löschender Zeilen (Default: 100)",
"+ confirm_delete_all: True = erlaubt Löschung aller Zeilen",
" ",
" Returns:",
" Dict mit status, deleted_rows, error"
]
},
{
"oldStart": 58,
"oldLines": 8,
"newStart": 61,
"newLines": 15,
"lines": [
" \"error\": f\"Database '{database}' not allowed.\",",
" }",
" ",
"- # KRITISCH: WHERE ist Pflicht!",
"- if not where:",
"+ # Spezialfall: Alle löschen mit confirm_delete_all",
"+ delete_all_mode = False",
"+ if where and confirm_delete_all:",
"+ # Check for special patterns like {\"1\": \"1\"} or {\"id\": \">0\"}",
"+ if where == {\"1\": \"1\"} or (len(where) == 1 and list(where.values())[0] == \">0\"):",
"+ delete_all_mode = True",
"+",
"+ # KRITISCH: WHERE ist Pflicht (außer delete_all_mode)",
"+ if not where and not delete_all_mode:",
" return {",
" \"status\": \"denied\",",
" \"error\": \"WHERE clause is required. DELETE without WHERE is forbidden.\","
]
}
],
"userModified": false,
"replaceAll": false
}
}