banUpdateWithoutWhere

Diagnostic Category: lint/safety/banUpdateWithoutWhere

Since: vnext

Note

This rule is recommended. A diagnostic error will appear when linting your code.

Sources: - Inspired from: pgfence/update-in-migration

Description

An UPDATE statement without a WHERE clause will modify all rows in the table.

This is almost always unintentional in a migration context and can cause data corruption. If you truly need to update all rows, add a WHERE true to signal intent.

Examples

Invalid

update my_table set col = 'value';

code-block.sql:1:1 lint/safety/banUpdateWithoutWhere ━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━

  ! An UPDATE without a WHERE clause will modify all rows in the table.

  > 1 │ update my_table set col = 'value';
      │ ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
    2 │ 

  i Add a WHERE clause to limit which rows are updated.

Valid

update my_table set col = 'value' where id = 1;

How to configure


{
  "linter": {
    "rules": {
      "safety": {
        "banUpdateWithoutWhere": "error"
      }
    }
  }
}