feat: load connection string from env var

[eduardoboucas]

When the NETLIFY_DB_URL environment variable is present, the db connect command will use that as the connection string instead of the database.

This makes it possible for agent runners to connect to the database of the corresponding deploy preview.

[github-actions]

📊 Benchmark results

Comparing with 2a8f7c0

• Dependency count: 1,059 (no change)
• Package size: 354 MB ⬇️ 0.00% decrease vs. 2a8f7c0
• Number of ts-expect-error directives: 356 (no change)

[coderabbitai]

No actionable comments were generated in the recent review. 🎉

ℹ️ Recent review info

⚙️ Run configuration

Configuration used: Organization UI

Review profile: CHILL

Plan: Pro

Run ID: 562e1844-1a5a-4792-8ae1-974ee741764e

📥 Commits

Reviewing files that changed from the base of the PR and between 63148a9 and 88a4edb.

📒 Files selected for processing (1)

• src/commands/database/connect.ts

✅ Files skipped from review due to trivial changes (1)

• src/commands/database/connect.ts

---

📝 Walkthrough

Summary by CodeRabbit

• New Features

  • Added environment variable support for database connection configuration, allowing direct specification of connection strings without requiring local development setup.

• Bug Fixes

  • Database connection strings are now automatically redacted in logs and output to prevent accidental exposure of sensitive credentials.

Walkthrough

connectRawClient (src/commands/database/db-connection.ts) now first checks process.env.NETLIFY_DB_URL; if present it constructs a pg Client with that connection string, connects immediately, and returns a RawDBConnection whose cleanup closes the client. If the env var is absent, the previous flow remains: read dbConnectionString from LocalState or start/obtain a NetlifyDev local DB and return a connected client whose cleanup also stops NetlifyDev. Separately, src/commands/database/connect.ts adds a redactConnectionString helper that attempts to parse the input as a URL, clears username and password, and returns the redacted string; if parsing fails it returns the fixed string "database". The non-JSON connection log now prints the redacted value instead of the raw connection string. No public signatures were changed.

Estimated code review effort

🎯 2 (Simple) | ⏱️ ~10 minutes

🚥 Pre-merge checks | ✅ 2 | ❌ 1

❌ Failed checks (1 warning)

Check name	Status	Explanation	Resolution
Docstring Coverage	⚠️ Warning	Docstring coverage is 0.00% which is insufficient. The required threshold is 80.00%.	Write docstrings for the functions missing them to satisfy the coverage threshold.

✅ Passed checks (2 passed)

Check name	Status	Explanation
Title check	✅ Passed	The title accurately describes the primary change: loading a database connection string from an environment variable, which is the core feature introduced in both modified files.
Description check	✅ Passed	The description is directly related to the changeset, explaining the purpose and use case of loading the NETLIFY_DB_URL environment variable for database connections.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

📝 Generate docstrings

• Create stacked PR
• Commit on current branch

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Commit unit tests in branch feat/db-connect-env-var

Warning

Review ran into problems

🔥 Problems

Timed out fetching pipeline failures after 30000ms

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[coderabbitai]

Actionable comments posted: 1

🤖 Prompt for all review comments with AI agents

Verify each finding against the current code and only fix it if needed.

Inline comments:
In `@src/commands/database/db-connection.ts`:
- Around line 32-35: The returned response from connectRawClient currently
includes the raw envConnectionString in the connectionString field which leaks
secrets; add a redactConnectionString helper (e.g., function
redactConnectionString(value: string): string) in this module or a shared util
that masks username/password (or returns '[redacted]' on parse failure) and use
it when building the returned object so connectionString returns the redacted
value instead of envConnectionString; keep the original client and cleanup
behavior unchanged.

🪄 Autofix (Beta)

Fix all unresolved CodeRabbit comments on this PR:

• Push a commit to this branch (recommended)
• Create a new PR with the fixes

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: Organization UI

Review profile: CHILL

Plan: Pro

Run ID: 8d1f1f0f-8815-4444-9b32-a3fbd197c2e9

📥 Commits

Reviewing files that changed from the base of the PR and between 2a8f7c0 and 7cb6234.

📒 Files selected for processing (1)

• src/commands/database/db-connection.ts

[coderabbitai]

⚠️ Potential issue | 🟠 Major

Prevent raw NETLIFY_DB_URL credentials from reaching command output

At Line 34, returning envConnectionString as connectionString leaks secrets downstream because connectRawClient callers print this value (see src/commands/database/connect.ts JSON and log paths). Please avoid exposing the raw DSN in returned display fields.

Proposed direction

 export async function connectRawClient(buildDir: string): Promise<RawDBConnection> {
   const envConnectionString = process.env.NETLIFY_DB_URL
   if (envConnectionString) {
     const client = new Client({ connectionString: envConnectionString })
     await client.connect()
     return {
       client,
-      connectionString: envConnectionString,
+      connectionString: redactConnectionString(envConnectionString),
       cleanup: () => client.end(),
     }
   }

// Add near this module (or shared util)
const redactConnectionString = (value: string): string => {
  try {
    const url = new URL(value)
    if (url.password) url.password = '***'
    if (url.username) url.username = '***'
    return url.toString()
  } catch {
    return '[redacted]'
  }
}

🤖 Prompt for AI Agents

Verify each finding against the current code and only fix it if needed.

In `@src/commands/database/db-connection.ts` around lines 32 - 35, The returned
response from connectRawClient currently includes the raw envConnectionString in
the connectionString field which leaks secrets; add a redactConnectionString
helper (e.g., function redactConnectionString(value: string): string) in this
module or a shared util that masks username/password (or returns '[redacted]' on
parse failure) and use it when building the returned object so connectionString
returns the redacted value instead of envConnectionString; keep the original
client and cleanup behavior unchanged.

[coderabbitai]

Actionable comments posted: 1

🤖 Prompt for all review comments with AI agents

Verify each finding against the current code and only fix it if needed.

Inline comments:
In `@src/commands/database/connect.ts`:
- Around line 14-23: The redactConnectionString helper currently throws on URL
parse failure which can abort later cleanup paths (e.g., the JSON branch that
expects redaction to be non-throwing); change redactConnectionString so it never
throws: wrap the URL parse in a try/catch and on failure return a safe,
non-sensitive fallback (for example the original string with a fixed
“[REDACTED]” or a blank credential mask) instead of throwing, so callers like
the JSON handling path can always proceed to cleanup; keep the function name
redactConnectionString and preserve its string return type.

🪄 Autofix (Beta)

Fix all unresolved CodeRabbit comments on this PR:

• Push a commit to this branch (recommended)
• Create a new PR with the fixes

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: Organization UI

Review profile: CHILL

Plan: Pro

Run ID: 2ae08848-ece2-49e2-9526-56750c6fc8a3

📥 Commits

Reviewing files that changed from the base of the PR and between 7cb6234 and 63148a9.

📒 Files selected for processing (1)

• src/commands/database/connect.ts