Skip to content

Add ExplainCypherQueryValidator #494

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
JeroenDeDauw wants to merge 1 commit into
base: master
Choose a base branch
from
Open

Add ExplainCypherQueryValidator #494

JeroenDeDauw wants to merge 1 commit into from

Conversation

@JeroenDeDauw
Copy link
Member

@JeroenDeDauw JeroenDeDauw commented Jan 31, 2026
edited
Loading

For #484. Still need to actually us this new service as a second layer check.

Results from a back-and-forth session with claude. Reviewed fully by me.

Summary

  • Extract a CypherQueryValidator interface in the Application layer with queryIsAllowed(string $cypher): bool
  • Rename CypherQueryFilterKeywordCypherQueryValidator and move to Persistence/Neo4j/
  • Rename ExplainBasedQueryValidatorExplainCypherQueryValidator
  • Add missing read-only operators (Unwind, NodeCountFromCountStore, RelationshipCountFromCountStore) to the EXPLAIN-based validator
  • Add comprehensive integration tests for the EXPLAIN-based validator

Test plan

  • KeywordCypherQueryValidator tests pass (83 tests)
  • ExplainCypherQueryValidator integration tests pass (22 tests)
  • CypherRawParserFunctionTest passes (6 tests)
  • phpcs clean
  • phpstan clean

🤖 Generated with Claude Code

@JeroenDeDauw @claude
Extract CypherQueryValidator interface and rename implementations
0f865bb 
Introduce a CypherQueryValidator interface in the Application layer
with two implementations: KeywordCypherQueryValidator (keyword-based
filtering, formerly CypherQueryFilter) and ExplainCypherQueryValidator
(EXPLAIN plan-based validation, formerly ExplainBasedQueryValidator).

Add missing read-only operators (Unwind, NodeCountFromCountStore,
RelationshipCountFromCountStore) to the EXPLAIN-based validator's
allowlist, and add comprehensive integration tests for it.

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
@JeroenDeDauw JeroenDeDauw changed the title Extract CypherQueryValidator interface and rename implementations Add ExplainCypherQueryValidator Jan 31, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@JeroenDeDauw