utopia-php
diff --git a/‎src/Database/Adapter/MariaDB.php‎
Lines changed: 18 additions & 16 deletions b/‎src/Database/Adapter/MariaDB.php‎
Lines changed: 18 additions & 16 deletions
diff --git a/‎src/Database/Adapter/Postgres.php‎
Lines changed: 20 additions & 18 deletions b/‎src/Database/Adapter/Postgres.php‎
Lines changed: 20 additions & 18 deletions
diff --git a/‎src/Database/Adapter/SQL.php‎
Lines changed: 15 additions & 14 deletions b/‎src/Database/Adapter/SQL.php‎
Lines changed: 15 additions & 14 deletions
@@ -1112,7 +1112,8 @@ public function updateDocument(Document $collection, string $id, Document $docum
             /**
              * Update Attributes
              */
-            $bindIndex = 0;
+            $keyIndex = 0;
+            $opIndex = 0;
             $operators = [];
 
             // Separate regular attributes from operators
@@ -1127,17 +1128,17 @@ public function updateDocument(Document $collection, string $id, Document $docum
 
                 // Check if this is an operator or regular attribute
                 if (isset($operators[$attribute])) {
-                    $operatorSQL = $this->getOperatorSQL($column, $operators[$attribute], $bindIndex);
+                    $operatorSQL = $this->getOperatorSQL($column, $operators[$attribute], $opIndex);
                     $columns .= $operatorSQL . ',';
                 } else {
-                    $bindKey = 'key_' . $bindIndex;
+                    $bindKey = 'key_' . $keyIndex;
 
                     if (in_array($attribute, $spatialAttributes)) {
                         $columns .= "`{$column}`" . '=' . $this->getSpatialGeomFromText(':' . $bindKey) . ',';
                     } else {
                         $columns .= "`{$column}`" . '=:' . $bindKey . ',';
                     }
-                    $bindIndex++;
+                    $keyIndex++;
                 }
             }
 
@@ -1159,11 +1160,12 @@ public function updateDocument(Document $collection, string $id, Document $docum
                 $stmt->bindValue(':_tenant', $this->tenant);
             }
 
-            $attributeIndex = 0;
+            $keyIndex = 0;
+            $opIndexForBinding = 0;
             foreach ($attributes as $attribute => $value) {
                 // Handle operators separately
                 if (isset($operators[$attribute])) {
-                    $this->bindOperatorParams($stmt, $operators[$attribute], $attributeIndex);
+                    $this->bindOperatorParams($stmt, $operators[$attribute], $opIndexForBinding);
                 } else {
                     // Convert spatial arrays to WKT, json_encode non-spatial arrays
                     if (\in_array($attribute, $spatialAttributes, true)) {
@@ -1174,10 +1176,10 @@ public function updateDocument(Document $collection, string $id, Document $docum
                         $value = json_encode($value);
                     }
 
-                    $bindKey = 'key_' . $attributeIndex;
+                    $bindKey = 'key_' . $keyIndex;
                     $value = (is_bool($value)) ? (int)$value : $value;
                     $stmt->bindValue(':' . $bindKey, $value, $this->getPDOType($value));
-                    $attributeIndex++;
+                    $keyIndex++;
                 }
             }
 
@@ -1234,7 +1236,7 @@ public function getUpsertStatement(
         };
 
         $updateColumns = [];
-        $bindIndex = count($bindValues);
+        $opIndex = 0;
 
         if (!empty($attribute)) {
             // Increment specific column by its new value in place
@@ -1252,7 +1254,7 @@ public function getUpsertStatement(
 
                 // Check if this attribute has an operator
                 if (isset($operators[$attr])) {
-                    $operatorSQL = $this->getOperatorSQL($filteredAttr, $operators[$attr], $bindIndex);
+                    $operatorSQL = $this->getOperatorSQL($filteredAttr, $operators[$attr], $opIndex);
                     if ($operatorSQL !== null) {
                         $updateColumns[] = $operatorSQL;
                     }
@@ -1277,12 +1279,12 @@ public function getUpsertStatement(
             $stmt->bindValue($key, $binding, $this->getPDOType($binding));
         }
 
-        $bindIndex = count($bindValues);
+        $opIndexForBinding = 0;
 
         // Bind operator parameters in the same order used to build SQL
         foreach (array_keys($attributes) as $attr) {
             if (isset($operators[$attr])) {
-                $this->bindOperatorParams($stmt, $operators[$attr], $bindIndex);
+                $this->bindOperatorParams($stmt, $operators[$attr], $opIndexForBinding);
             }
         }
 
@@ -2053,12 +2055,12 @@ protected function getOperatorSQL(string $column, Operator $operator, int &$bind
                     SELECT JSON_ARRAYAGG(value)
                     FROM JSON_TABLE({$quotedColumn}, '\$[*]' COLUMNS(value TEXT PATH '\$')) AS jt
                     WHERE CASE :$conditionKey
-                        WHEN 'equals' THEN value = JSON_UNQUOTE(:$valueKey)
-                        WHEN 'notEquals' THEN value != JSON_UNQUOTE(:$valueKey)
+                        WHEN 'equal' THEN value = JSON_UNQUOTE(:$valueKey)
+                        WHEN 'notEqual' THEN value != JSON_UNQUOTE(:$valueKey)
                         WHEN 'greaterThan' THEN CAST(value AS DECIMAL(65,30)) > CAST(JSON_UNQUOTE(:$valueKey) AS DECIMAL(65,30))
                         WHEN 'lessThan' THEN CAST(value AS DECIMAL(65,30)) < CAST(JSON_UNQUOTE(:$valueKey) AS DECIMAL(65,30))
-                        WHEN 'null' THEN value IS NULL
-                        WHEN 'notNull' THEN value IS NOT NULL
+                        WHEN 'isNull' THEN value IS NULL
+                        WHEN 'isNotNull' THEN value IS NOT NULL
                         ELSE TRUE
                     END
                 ), JSON_ARRAY())";
 
@@ -1240,7 +1240,8 @@ public function updateDocument(Document $collection, string $id, Document $docum
          * Update Attributes
          */
 
-        $bindIndex = 0;
+        $keyIndex = 0;
+        $opIndex = 0;
         $operators = [];
 
         // Separate regular attributes from operators
@@ -1255,16 +1256,16 @@ public function updateDocument(Document $collection, string $id, Document $docum
 
             // Check if this is an operator, spatial attribute, or regular attribute
             if (isset($operators[$attribute])) {
-                $operatorSQL = $this->getOperatorSQL($column, $operators[$attribute], $bindIndex);
+                $operatorSQL = $this->getOperatorSQL($column, $operators[$attribute], $opIndex);
                 $columns .= $operatorSQL . ',';
             } elseif (\in_array($attribute, $spatialAttributes, true)) {
-                $bindKey = 'key_' . $bindIndex;
+                $bindKey = 'key_' . $keyIndex;
                 $columns .= "\"{$column}\" = " . $this->getSpatialGeomFromText(':' . $bindKey) . ',';
-                $bindIndex++;
+                $keyIndex++;
             } else {
-                $bindKey = 'key_' . $bindIndex;
+                $bindKey = 'key_' . $keyIndex;
                 $columns .= "\"{$column}\"" . '=:' . $bindKey . ',';
-                $bindIndex++;
+                $keyIndex++;
             }
         }
 
@@ -1286,11 +1287,12 @@ public function updateDocument(Document $collection, string $id, Document $docum
             $stmt->bindValue(':_tenant', $this->tenant);
         }
 
-        $attributeIndex = 0;
+        $keyIndex = 0;
+        $opIndexForBinding = 0;
         foreach ($attributes as $attribute => $value) {
             // Handle operators separately
             if (isset($operators[$attribute])) {
-                $this->bindOperatorParams($stmt, $operators[$attribute], $attributeIndex);
+                $this->bindOperatorParams($stmt, $operators[$attribute], $opIndexForBinding);
             } else {
                 // Convert spatial arrays to WKT, json_encode non-spatial arrays
                 if (\in_array($attribute, $spatialAttributes, true)) {
@@ -1301,10 +1303,10 @@ public function updateDocument(Document $collection, string $id, Document $docum
                     $value = json_encode($value);
                 }
 
-                $bindKey = 'key_' . $attributeIndex;
+                $bindKey = 'key_' . $keyIndex;
                 $value = (is_bool($value)) ? ($value == true ? "true" : "false") : $value;
                 $stmt->bindValue(':' . $bindKey, $value, $this->getPDOType($value));
-                $attributeIndex++;
+                $keyIndex++;
             }
         }
 
@@ -1357,7 +1359,7 @@ protected function getUpsertStatement(
             return "{$attribute} = {$new}";
         };
 
-        $bindIndex = count($bindValues);
+        $opIndex = 0;
 
         if (!empty($attribute)) {
             // Increment specific column by its new value in place
@@ -1376,7 +1378,7 @@ protected function getUpsertStatement(
 
                 // Check if this attribute has an operator
                 if (isset($operators[$attr])) {
-                    $operatorSQL = $this->getOperatorSQL($filteredAttr, $operators[$attr], $bindIndex, useTargetPrefix: true);
+                    $operatorSQL = $this->getOperatorSQL($filteredAttr, $operators[$attr], $opIndex, useTargetPrefix: true);
                     if ($operatorSQL !== null) {
                         $updateColumns[] = $operatorSQL;
                     }
@@ -1402,12 +1404,12 @@ protected function getUpsertStatement(
             $stmt->bindValue($key, $binding, $this->getPDOType($binding));
         }
 
-        $bindIndex = count($bindValues);
+        $opIndexForBinding = 0;
 
         // Bind operator parameters in the same order used to build SQL
         foreach (array_keys($attributes) as $attr) {
             if (isset($operators[$attr])) {
-                $this->bindOperatorParams($stmt, $operators[$attr], $bindIndex);
+                $this->bindOperatorParams($stmt, $operators[$attr], $opIndexForBinding);
             }
         }
 
@@ -2566,12 +2568,12 @@ protected function getOperatorSQL(string $column, Operator $operator, int &$bind
                     SELECT jsonb_agg(value)
                     FROM jsonb_array_elements({$columnRef}) AS value
                     WHERE CASE :$conditionKey
-                        WHEN 'equals' THEN value = :$valueKey::jsonb
-                        WHEN 'notEquals' THEN value != :$valueKey::jsonb
+                        WHEN 'equal' THEN value = :$valueKey::jsonb
+                        WHEN 'notEqual' THEN value != :$valueKey::jsonb
                         WHEN 'greaterThan' THEN (value::text)::numeric > trim(both '\"' from :$valueKey::text)::numeric
                         WHEN 'lessThan' THEN (value::text)::numeric < trim(both '\"' from :$valueKey::text)::numeric
-                        WHEN 'null' THEN value = 'null'::jsonb
-                        WHEN 'notNull' THEN value != 'null'::jsonb
+                        WHEN 'isNull' THEN value = 'null'::jsonb
+                        WHEN 'isNotNull' THEN value != 'null'::jsonb
                         ELSE TRUE
                     END
                 ), '[]'::jsonb)";
 
@@ -483,7 +483,8 @@ public function updateDocuments(Document $collection, Document $updates, array $
             return 0;
         }
 
-        $bindIndex = 0;
+        $keyIndex = 0;
+        $opIndex = 0;
         $columns = '';
         $operators = [];
 
@@ -499,13 +500,13 @@ public function updateDocuments(Document $collection, Document $updates, array $
 
             // Check if this is an operator, spatial attribute, or regular attribute
             if (isset($operators[$attribute])) {
-                $columns .= $this->getOperatorSQL($column, $operators[$attribute], $bindIndex);
+                $columns .= $this->getOperatorSQL($column, $operators[$attribute], $opIndex);
             } elseif (\in_array($attribute, $spatialAttributes)) {
-                $columns .= "{$this->quote($column)} = " . $this->getSpatialGeomFromText(":key_{$bindIndex}");
-                $bindIndex++;
+                $columns .= "{$this->quote($column)} = " . $this->getSpatialGeomFromText(":key_{$keyIndex}");
+                $keyIndex++;
             } else {
-                $columns .= "{$this->quote($column)} = :key_{$bindIndex}";
-                $bindIndex++;
+                $columns .= "{$this->quote($column)} = :key_{$keyIndex}";
+                $keyIndex++;
             }
 
             if ($attribute !== \array_key_last($attributes)) {
@@ -541,11 +542,12 @@ public function updateDocuments(Document $collection, Document $updates, array $
             $stmt->bindValue(":_id_{$id}", $value);
         }
 
-        $attributeIndex = 0;
+        $keyIndex = 0;
+        $opIndexForBinding = 0;
         foreach ($attributes as $attributeName => $value) {
             // Skip operators as they don't need value binding
             if (isset($operators[$attributeName])) {
-                $this->bindOperatorParams($stmt, $operators[$attributeName], $attributeIndex);
+                $this->bindOperatorParams($stmt, $operators[$attributeName], $opIndexForBinding);
                 continue;
             }
 
@@ -558,13 +560,13 @@ public function updateDocuments(Document $collection, Document $updates, array $
                 $value = \json_encode($value);
             }
 
-            $bindKey = 'key_' . $attributeIndex;
+            $bindKey = 'key_' . $keyIndex;
             // For PostgreSQL, preserve boolean values directly
             if (!($this instanceof \Utopia\Database\Adapter\Postgres && \is_bool($value))) {
                 $value = (\is_bool($value)) ? (int)$value : $value;
             }
             $stmt->bindValue(':' . $bindKey, $value, $this->getPDOType($value));
-            $attributeIndex++;
+            $keyIndex++;
         }
 
         try {
@@ -2183,11 +2185,10 @@ protected function bindOperatorParams(\PDOStatement $stmt, Operator $operator, i
                 $value = $values[1] ?? null;
 
                 // SECURITY: Whitelist validation to prevent SQL injection in CASE statements
-                // Support all variations used across adapters (SQL, MariaDB, Postgres, SQLite)
                 $validConditions = [
-                    'equal', 'notEqual', 'equals', 'notEquals',  // Comparison
-                    'greaterThan', 'greaterThanOrEqual', 'lessThan', 'lessThanOrEqual',  // Numeric
-                    'isNull', 'isNotNull', 'null', 'notNull'  // Null checks
+                    'equal', 'notEqual',  // Comparison
+                    'greaterThan', 'greaterThanEqual', 'lessThan', 'lessThanEqual',  // Numeric
+                    'isNull', 'isNotNull'  // Null checks
                 ];
                 if (!in_array($condition, $validConditions, true)) {
                     throw new DatabaseException("Invalid filter condition: {$condition}. Must be one of: " . implode(', ', $validConditions));