Updated dockerfile and changelog

Author: benborla

CHANGELOG.md

@@ -34,6 +34,43 @@
   - Foreign key constraints
   - Table statistics
 
+## [1.0.13] - 2024-05-26
+
+### Added
+- Complete write operations support through Smithery configuration
+- Added environment variables for database write operations (`ALLOW_INSERT_OPERATION`, `ALLOW_UPDATE_OPERATION`, `ALLOW_DELETE_OPERATION`)
+- New configuration options in Smithery schema for controlling write permissions
+- Improved documentation for write operations configuration
+- Support for enabling/disabling specific SQL operations via environment variables
+- Enhanced error handling for unauthorized write operations
+
+### Changed
+- Updated Smithery configuration to include write operation settings
+- Improved Smithery integration with clear security defaults
+- Enhanced documentation with detailed configuration examples
+- Restructured README with clearer installation instructions
+- Better error reporting for database connection issues
+- Improved transaction handling for write operations
+
+### Fixed
+- Fixed error handling for database connection failures
+- Improved error messages for unauthorized operations
+- Better handling of MySQL 8.0+ authentication methods
+- Fixed SSL/TLS configuration options in Smithery
+
+### Security
+- All write operations (INSERT, UPDATE, DELETE) disabled by default
+- Added clear documentation about security implications of enabling write operations
+- Improved transaction isolation for write operations
+- Enhanced error reporting that doesn't expose sensitive information
+
+### Documentation
+- Updated README with comprehensive Smithery configuration instructions
+- Added detailed examples for enabling specific write operations
+- Improved troubleshooting section with common issues and solutions
+- Better explanation of required MySQL permissions for different operation types
+- Added clear security recommendations for production deployments
+
 ## [1.0.10] - 2024-03-13
 
 ### Changed

Dockerfile

@@ -2,42 +2,51 @@
 # Use a Node.js Alpine image as the base
 FROM node:22-alpine AS builder
 
+# Install pnpm
+RUN npm install -g pnpm
+
 # Set the working directory
 WORKDIR /app
 
-# Copy the package.json and package-lock.json if present
-COPY package.json /app/
-COPY pnpm-lock.yaml /app/
+# Copy the package.json and pnpm-lock.yaml if present
+COPY package.json pnpm-lock.yaml* /app/
 
 # Install the dependencies
-RUN --mount=type=cache,target=/root/.npm npm install --ignore-scripts
+RUN pnpm install --frozen-lockfile --ignore-scripts
 
 # Copy the rest of the application code
 COPY . /app
 
 # Build the application
-RUN npm run build
+RUN pnpm run build
 
 # Use a new, clean image for the release
 FROM node:22-alpine
 
+# Install pnpm
+RUN npm install -g pnpm
+
 # Set the working directory
 WORKDIR /app
 
 # Copy the built files from the builder
 COPY --from=builder /app/dist /app/dist
-COPY --from=builder /app/package.json /app/package.json
-COPY --from=builder /app/package-lock.json /app/package-lock.json
+COPY --from=builder /app/package.json /app/
+COPY --from=builder /app/pnpm-lock.yaml* /app/
 
 # Set environment variables
 ENV MYSQL_HOST=127.0.0.1
 ENV MYSQL_PORT=3306
 ENV MYSQL_USER=root
 ENV MYSQL_PASS=
 ENV MYSQL_DB=db_name
+ENV ALLOW_INSERT_OPERATION=true
+ENV ALLOW_UPDATE_OPERATION=true
+ENV ALLOW_DELETE_OPERATION=false
 
 # Install production dependencies only
-RUN npm ci --omit=dev
+# Add --no-optional flag to skip lifecycle scripts like prepare
+RUN pnpm install --prod --frozen-lockfile --ignore-scripts
 
 # Expose any ports if necessary (e.g., 8080)
 # EXPOSE 8080