v0.3.41: wand with azure openai, generic mysql and postgres blocks

[waleedlatif1]

• Switch to node (fix(wand): try switching runtime to nodejs #1190)
• Fix/wand (fix(wand): nodejs streaming #1191)
• Use direct fetch (fix(wand): nodejs direct fetch #1193)
• fix(billing-ui): open settings when enterprise sub folks press usage indicator (fix(billing-ui): open settings when enterprise sub folks press usage indicator #1194)
• feat(tools): add parallel ai, postgres, mysql, slight modifications to dark mode styling (feat(tools): add parallel ai, postgres, mysql, slight modifications to dark mode styling #1192)
• imporvement(pg): added wand config for writing sql queries for generic db blocks & supabase postgrest syntax (imporvement(pg): added wand config for writing sql queries for generic db blocks & supabase postgrest syntax #1197)
• feat(kb): add adjustable concurrency and batching to uploads and embeddings (feat(kb): add adjustable concurrency and batching to uploads and embeddings #1198)

[vercel]

The latest updates on your projects. Learn more about Vercel for GitHub.

Project	Deployment	Preview	Comments	Updated (UTC)
sim (staging)	Ready		Comment	Aug 30, 2025 1:56am

1 Skipped Deployment

Project	Deployment	Preview	Comments	Updated (UTC)
docs	Skipped			Aug 30, 2025 1:56am

[greptile-apps]

Greptile Summary

This PR introduces significant functionality expansion and bug fixes across multiple areas of the platform. The most substantial changes include adding comprehensive database connectivity for MySQL and PostgreSQL with full CRUD operations (query, insert, update, delete, execute), integrating Parallel AI for advanced web search capabilities, and several UI improvements.

Database Integration: The PR adds generic MySQL and PostgreSQL blocks that use mysql2 and postgres-js libraries respectively, replacing the previous pg library to avoid peer dependency conflicts. Both database integrations provide identical operation sets with proper connection management, SSL support, and parameter validation. Each database tool includes its own API endpoints, utility functions for connection handling, and comprehensive TypeScript type definitions.

Parallel AI Integration: A new search tool is introduced that provides intelligent web search with content processing and extraction capabilities. The tool supports multiple search queries, configurable result limits, and various processor options for different search scenarios.

UI and UX Improvements: Several styling enhancements were made, particularly for dark mode support, including updates to the slider component, code editor caret visibility, and consistent border styling. The billing UI was improved to better handle enterprise users by directing them to settings when they click the usage indicator.

Infrastructure Changes: The wand generation API was switched from 'edge' to 'nodejs' runtime with direct fetch implementation to resolve streaming issues with Azure OpenAI. The type system was expanded to support 'array' as a primitive value type for better data handling.

All changes follow established architectural patterns in the codebase, with proper separation of concerns between blocks (UI configuration), tools (business logic), and API endpoints (data layer). The database tools implement the parameter visibility system correctly, marking connection credentials as 'user-only' while allowing operational parameters to be 'user-or-llm' accessible.

Confidence score: 2/5

• This PR contains critical security vulnerabilities that make it unsafe to merge without immediate fixes
• Score severely lowered due to SQL injection vulnerabilities in PostgreSQL WHERE clause handling and missing security validations in query endpoints
• Pay close attention to apps/sim/app/api/tools/postgresql/utils.ts, apps/sim/app/api/tools/postgresql/query/route.ts, and apps/sim/app/api/tools/postgresql/delete/route.ts which contain serious security flaws

_{46 files reviewed, 15 comments}

_{Edit Code Review Bot Settings | Greptile}