docs: comprehensive documentation update for v1.4+ features

## docs/README.md
- Updated to v1.5.1+ with current date
- Added new documentation sections (Getting Started, CLI Guide, Error Codes)
- Added Testing & Quality section (Fuzz Testing, Performance Regression)
- Added Migration Guides section
- Updated documentation structure to 22 files
- Added Recent Feature Additions section (v1.4+)
- Updated all version references from v1.0.0 to v1.5.1

## docs/SQL_COMPATIBILITY.md
- Added MERGE statement support (SQL:2003 F312)
- Added GROUPING SETS, ROLLUP, CUBE section (SQL-99 T431)
- Added ORDER BY Extensions (NULLS FIRST/LAST - SQL-99 F851)
- Added Expression Operators section (BETWEEN, IN, LIKE, IS NULL)
- Added Materialized Views and Table Partitioning to DDL
- Updated test suite to 600+ test cases, 95% coverage
- Added SQL-99 compliance rating (~80-85%)

## docs/SECURITY.md
- Added Security Package (pkg/sql/security) section
- Added SQL injection detection overview with code example
- Updated security score to 9.0/10
- Added PROACTIVE finding for built-in injection detection
- Updated version to v1.5.1+

## docs/ARCHITECTURE.md
- Added modular parser architecture (11 parser modules)
- Updated method hierarchy with all new parsing methods
- Added new AST statement types (Merge, MaterializedView, etc.)
- Added new expression types (Between, In, Like, IsNull)
- Added Grouping Types section (GroupingSet, Rollup, Cube)

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude <noreply@anthropic.com>

Author: 2 people

docs/ARCHITECTURE.md

@@ -125,27 +125,56 @@ The parser builds Abstract Syntax Trees from token streams.
 └──────────────────────────────────────┘
 ```
 
-**Parser Methods Hierarchy:**
+**Parser Methods Hierarchy (v1.4+ Modular Architecture):**
+
+The parser is organized into logical modules for maintainability:
+
+```
+pkg/sql/parser/
+├── parser.go       # Core parser and entry points
+├── select.go       # SELECT statement parsing
+├── dml.go          # INSERT, UPDATE, DELETE parsing
+├── cte.go          # Common Table Expressions (WITH clause)
+├── expressions.go  # Expression parsing (BETWEEN, IN, LIKE, etc.)
+├── window.go       # Window functions (OVER, PARTITION BY)
+├── grouping.go     # GROUPING SETS, ROLLUP, CUBE
+├── alter.go        # ALTER TABLE statements
+├── create.go       # CREATE statements (TABLE, VIEW, INDEX)
+├── drop.go         # DROP statements
+├── merge.go        # MERGE statements (SQL:2003)
+└── token_converter.go # Token format conversion
+```
+
+**Method Hierarchy:**
 
 ```
 Parse()
 ├── parseStatement()
-│   ├── parseSelectStatement()
+│   ├── parseWithStatement()          # CTEs (cte.go)
+│   ├── parseSelectWithSetOperations() # SELECT + UNION/EXCEPT/INTERSECT (select.go)
 │   │   ├── parseSelectClause()
 │   │   ├── parseFromClause()
 │   │   ├── parseJoinClause()
 │   │   ├── parseWhereClause()
-│   │   ├── parseGroupByClause()
+│   │   ├── parseGroupByClause()       # Includes GROUPING SETS (grouping.go)
 │   │   ├── parseHavingClause()
-│   │   └── parseOrderByClause()
-│   ├── parseInsertStatement()
-│   ├── parseUpdateStatement()
-│   ├── parseDeleteStatement()
-│   └── parseDDLStatement()
-└── parseExpression()
+│   │   └── parseOrderByClause()       # Includes NULLS FIRST/LAST
+│   ├── parseInsertStatement()         # (dml.go)
+│   ├── parseUpdateStatement()         # (dml.go)
+│   ├── parseDeleteStatement()         # (dml.go)
+│   ├── parseMergeStatement()          # (merge.go)
+│   ├── parseCreateStatement()         # (create.go) - TABLE, VIEW, MATERIALIZED VIEW, INDEX
+│   ├── parseAlterStatement()          # (alter.go)
+│   └── parseDropStatement()           # (drop.go)
+└── parseExpression()                   # (expressions.go)
     ├── parsePrimaryExpression()
     ├── parseBinaryExpression()
+    ├── parseBetweenExpression()
+    ├── parseInExpression()
+    ├── parseLikeExpression()
+    ├── parseIsNullExpression()
     ├── parseFunctionCall()
+    │   └── parseWindowSpec()          # (window.go)
     └── parseSubquery()
 ```
 
@@ -167,21 +196,47 @@ The Abstract Syntax Tree represents the structure of SQL statements.
 │  │ ├── Columns: []Expression  │      │
 │  │ ├── From: []Table          │      │
 │  │ ├── Where: Expression      │      │
+│  │ ├── GroupBy: []GroupingElement │  │
 │  │ └── ...                    │      │
 │  └────────────────────────────┘      │
 │  ┌────────────────────────────┐      │
-│  │ InsertStatement            │      │
-│  │ UpdateStatement            │      │
-│  │ DeleteStatement            │      │
-│  │ CreateTableStatement       │      │
+│  │ DML Statements             │      │
+│  │ ├── InsertStatement        │      │
+│  │ ├── UpdateStatement        │      │
+│  │ ├── DeleteStatement        │      │
+│  │ └── MergeStatement (v1.4+) │      │
+│  └────────────────────────────┘      │
+│  ┌────────────────────────────┐      │
+│  │ DDL Statements             │      │
+│  │ ├── CreateTableStatement   │      │
+│  │ ├── CreateViewStatement    │      │
+│  │ ├── CreateMaterializedView │      │
+│  │ ├── CreateIndexStatement   │      │
+│  │ ├── AlterTableStatement    │      │
+│  │ ├── DropTableStatement     │      │
+│  │ └── RefreshMaterializedView│      │
 │  └────────────────────────────┘      │
 ├──────────────────────────────────────┤
 │          Expression Types             │
 │  ┌────────────────────────────┐      │
 │  │ BinaryExpression           │      │
+│  │ UnaryExpression            │      │
 │  │ FunctionCall               │      │
+│  │ WindowFunction (v1.3+)     │      │
 │  │ Identifier                 │      │
 │  │ Literal                    │      │
+│  │ BetweenExpression (v1.4+)  │      │
+│  │ InExpression (v1.4+)       │      │
+│  │ LikeExpression (v1.4+)     │      │
+│  │ IsNullExpression (v1.4+)   │      │
+│  │ Subquery                   │      │
+│  │ CaseExpression             │      │
+│  └────────────────────────────┘      │
+│  ┌────────────────────────────┐      │
+│  │ Grouping Types (v1.4+)     │      │
+│  │ ├── GroupingSet            │      │
+│  │ ├── RollupGrouping         │      │
+│  │ └── CubeGrouping           │      │
 │  └────────────────────────────┘      │
 └──────────────────────────────────────┘
 ```

docs/README.md

@@ -2,30 +2,58 @@
 
 Comprehensive documentation for the GoSQLX SQL parsing SDK.
 
+**Current Version**: v1.5.1+ | **Last Updated**: November 2025
+
 ## 📚 Documentation Index
 
+### Getting Started
+
+| Document | Description | Audience |
+|----------|-------------|----------|
+| [**GETTING_STARTED.md**](GETTING_STARTED.md) | 5-minute quickstart guide for new users | Beginners |
+| [**CLI_GUIDE.md**](CLI_GUIDE.md) | Command-line tool usage and examples | CLI Users |
+
 ### Core Documentation
 
 | Document | Description | Audience |
 |----------|-------------|----------|
-| [**API_REFERENCE.md**](API_REFERENCE.md) | Complete API documentation with method signatures, parameters, and examples | Developers |
+| [**API_REFERENCE.md**](API_REFERENCE.md) | Complete API documentation with 4,400+ lines of examples | Developers |
 | [**USAGE_GUIDE.md**](USAGE_GUIDE.md) | Detailed usage patterns, best practices, and real-world examples | All Users |
 | [**ARCHITECTURE.md**](ARCHITECTURE.md) | System design, component architecture, and internal implementation | Contributors/Advanced |
 | [**TROUBLESHOOTING.md**](TROUBLESHOOTING.md) | Common issues, error messages, debugging techniques, and FAQ | Support/Debug |
 
+### Reference Documentation
+
+| Document | Description | Audience |
+|----------|-------------|----------|
+| [**ERROR_CODES.md**](ERROR_CODES.md) | Comprehensive error code reference (E1xxx-E4xxx) | Developers |
+| [**ERROR_REFERENCE.md**](ERROR_REFERENCE.md) | Error handling patterns and recovery strategies | Developers |
+| [**sql99-compliance-analysis.md**](sql99-compliance-analysis.md) | SQL-99 standard compliance analysis (~80-85%) | Architects |
+
 ### Deployment & Operations
 
 | Document | Description | Audience |
 |----------|-------------|----------|
 | [**PRODUCTION_GUIDE.md**](PRODUCTION_GUIDE.md) | Production deployment, monitoring, and performance optimization | DevOps/SRE |
+| [**PERFORMANCE_TUNING.md**](PERFORMANCE_TUNING.md) | Performance optimization and benchmarking guide | Performance Engineers |
 | [**SQL_COMPATIBILITY.md**](SQL_COMPATIBILITY.md) | SQL dialect support matrix and feature compatibility | Architects |
-| [**SECURITY.md**](SECURITY.md) | Security analysis, vulnerability assessment, and best practices | Security Teams |
+| [**SECURITY.md**](SECURITY.md) | Security analysis, vulnerability assessment, and SQL injection detection | Security Teams |
+
+### Testing & Quality
+
+| Document | Description | Audience |
+|----------|-------------|----------|
+| [**FUZZ_TESTING_GUIDE.md**](FUZZ_TESTING_GUIDE.md) | Fuzz testing methodology and coverage | QA Engineers |
+| [**performance_regression_testing.md**](performance_regression_testing.md) | Performance regression testing guide | QA Engineers |
+| [**COMPARISON.md**](COMPARISON.md) | Comparison with other SQL parsers | Evaluators |
 
-### Release Information
+### Migration Guides
 
-| Document | Description | Version |
-|----------|-------------|---------|
-| [**RELEASE_v1.0.md**](RELEASE_v1.0.md) | v1.0.0 release notes, features, and validation results | v1.0.0 |
+| Document | Description |
+|----------|-------------|
+| [**migration/FROM_JSQLPARSER.md**](migration/FROM_JSQLPARSER.md) | Migrating from JSqlParser |
+| [**migration/FROM_PG_QUERY.md**](migration/FROM_PG_QUERY.md) | Migrating from pg_query |
+| [**migration/FROM_SQLFLUFF.md**](migration/FROM_SQLFLUFF.md) | Migrating from SQLFluff |
 
 ## 🚀 Quick Start Guides
 
@@ -48,15 +76,27 @@ Comprehensive documentation for the GoSQLX SQL parsing SDK.
 
 ```
 docs/
-├── API_REFERENCE.md        # API documentation
+├── README.md               # This documentation index
+├── GETTING_STARTED.md      # 5-minute quickstart guide
+├── CLI_GUIDE.md            # CLI tool documentation
+├── API_REFERENCE.md        # Complete API documentation (4,400+ lines)
 ├── USAGE_GUIDE.md          # Usage patterns and examples
 ├── ARCHITECTURE.md         # System architecture
 ├── TROUBLESHOOTING.md      # Problem solving guide
 ├── PRODUCTION_GUIDE.md     # Production deployment
+├── PERFORMANCE_TUNING.md   # Performance optimization
 ├── SQL_COMPATIBILITY.md    # SQL dialect matrix
-├── SECURITY.md            # Security analysis
-├── RELEASE_v1.0.md        # Release notes
-└── README.md              # This file
+├── SECURITY.md             # Security analysis
+├── ERROR_CODES.md          # Error code reference
+├── ERROR_REFERENCE.md      # Error handling guide
+├── COMPARISON.md           # Parser comparison
+├── FUZZ_TESTING_GUIDE.md   # Fuzz testing guide
+├── sql99-compliance-analysis.md  # SQL-99 compliance
+├── CLEAN_ARCHITECTURE.md   # Architecture principles
+└── migration/              # Migration guides
+    ├── FROM_JSQLPARSER.md
+    ├── FROM_PG_QUERY.md
+    └── FROM_SQLFLUFF.md
 ```
 
 ## 🔍 Finding Information
@@ -161,13 +201,28 @@ If you can't find what you need:
 
 | Document | Last Updated | Version |
 |----------|--------------|---------|
-| API_REFERENCE.md | 2024-08 | v1.0.0 |
-| USAGE_GUIDE.md | 2024-08 | v1.0.0 |
-| ARCHITECTURE.md | 2024-08 | v1.0.0 |
-| TROUBLESHOOTING.md | 2024-08 | v1.0.0 |
-| PRODUCTION_GUIDE.md | 2024-08 | v1.0.0 |
-| SQL_COMPATIBILITY.md | 2024-08 | v1.0.0 |
-| SECURITY.md | 2024-08 | v1.0.0 |
+| API_REFERENCE.md | 2025-11 | v1.5.1 |
+| GETTING_STARTED.md | 2025-11 | v1.5.1 |
+| CLI_GUIDE.md | 2025-11 | v1.5.1 |
+| USAGE_GUIDE.md | 2025-11 | v1.5.1 |
+| ARCHITECTURE.md | 2025-11 | v1.5.1 |
+| TROUBLESHOOTING.md | 2025-11 | v1.5.1 |
+| PRODUCTION_GUIDE.md | 2025-11 | v1.5.1 |
+| SQL_COMPATIBILITY.md | 2025-11 | v1.5.1 |
+| SECURITY.md | 2025-11 | v1.5.1 |
+| ERROR_CODES.md | 2025-11 | v1.5.1 |
+| PERFORMANCE_TUNING.md | 2025-11 | v1.5.1 |
+
+## 🆕 Recent Feature Additions (v1.4+)
+
+- **SQL Injection Detection** - `pkg/sql/security` package for pattern detection
+- **MERGE Statements** - SQL Server/PostgreSQL MERGE support
+- **Grouping Sets** - ROLLUP, CUBE, GROUPING SETS (SQL-99 T431)
+- **Materialized Views** - CREATE/DROP/REFRESH MATERIALIZED VIEW
+- **Table Partitioning** - PARTITION BY RANGE/LIST/HASH
+- **Advanced Operators** - BETWEEN, IN, LIKE, IS NULL with full expression support
+- **Subquery Support** - Scalar, table, correlated, EXISTS subqueries
+- **NULLS FIRST/LAST** - ORDER BY with null ordering (SQL-99 F851)
 
 ---
 

docs/SECURITY.md

@@ -2,22 +2,45 @@
 
 ## 🛡️ Comprehensive Security Assessment
 
-**Analysis Date**: August 2025  
-**Version**: v1.0.0  
-**Security Score**: 8.5/10 ⭐⭐⭐⭐⭐
+**Analysis Date**: November 2025
+**Version**: v1.5.1+
+**Security Score**: 9.0/10 ⭐⭐⭐⭐⭐
 
 ---
 
 ## 📋 Executive Summary
 
 GoSQLX has undergone a comprehensive security analysis across 7 critical security domains. The library demonstrates **strong security characteristics** suitable for production deployment with **minimal security concerns**.
 
+### 🆕 Security Package (v1.4+)
+
+GoSQLX now includes a dedicated **SQL Injection Detection** package (`pkg/sql/security`) that provides:
+
+- **8 Pattern Types**: Tautology, Comment Bypass, Stacked Query, UNION-based, Time-based, Boolean-based, Out-of-Band, Dangerous Functions
+- **4 Severity Levels**: CRITICAL, HIGH, MEDIUM, LOW
+- **Multi-Database Support**: PostgreSQL, MySQL, SQL Server, SQLite system table detection
+- **Thread-Safe**: Safe for concurrent use across goroutines
+- **High Performance**: 100,000+ queries/second scanning throughput
+
+```go
+import "github.com/ajitpratap0/GoSQLX/pkg/sql/security"
+
+scanner := security.NewScanner()
+result := scanner.Scan(ast)
+if result.HasCritical() {
+    // Block potentially malicious query
+}
+```
+
+See [API_REFERENCE.md#security-package](API_REFERENCE.md#security-package) for complete documentation.
+
 ### 🎯 Key Security Findings
 
-✅ **SECURE**: No critical vulnerabilities identified  
-✅ **HARDENED**: Robust input validation and error handling  
-✅ **RESILIENT**: Excellent memory safety and resource management  
-✅ **COMPLIANT**: Safe Unicode handling across international character sets  
+✅ **SECURE**: No critical vulnerabilities identified
+✅ **HARDENED**: Robust input validation and error handling
+✅ **RESILIENT**: Excellent memory safety and resource management
+✅ **COMPLIANT**: Safe Unicode handling across international character sets
+✅ **PROACTIVE**: Built-in SQL injection pattern detection (NEW in v1.4+)
 ⚠️ **MONITOR**: Large input processing requires operational monitoring  
 
 ---