DEV Community: ABU SUFIAN The latest articles on DEV Community by ABU SUFIAN (@sufian-abu). https://dev.to/sufian-abu https://media2.dev.to/dynamic/image/width=90,height=90,fit=cover,gravity=auto,format=auto/https:%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F3683960%2F97cd138b-a28f-4667-a15e-796fda726c7f.jpg DEV Community: ABU SUFIAN https://dev.to/sufian-abu en Building an AI-Powered Natural Language SQL Interface: An MVP Journey ABU SUFIAN Sun, 22 Feb 2026 19:17:42 +0000 https://dev.to/sufian-abu/building-an-ai-powered-natural-language-sql-interface-an-mvp-journey-5gh7 https://dev.to/sufian-abu/building-an-ai-powered-natural-language-sql-interface-an-mvp-journey-5gh7 <p>Have you ever wished you could just ask your database a question in plain English and get an answer? That's exactly what we built—an experimental AI-powered chat interface that translates natural language into safe, read-only SQL queries.</p> <p>In this post, I'll walk you through how we built it, the security challenges we faced, and the performance optimizations that make it production-ready.</p> <h2> The Problem We're Solving </h2> <p>Most business users and even developers struggle with SQL. They know what data they want, but crafting the right query is time-consuming. Traditional BI tools require learning complex interfaces, and even SQL experts waste time on repetitive queries.</p> <p><strong>Our solution:</strong> A conversational interface where users ask questions like:</p> <ul> <li>"Monthly revenue last 12 months"</li> <li>"Top reps by revenue"</li> <li>"Campaign ROI: budget vs revenue"</li> <li>"Unpaid commissions per rep"</li> </ul> <p>The system handles the SQL generation, execution, and visualization automatically.</p> <h2> What It's Capable Of </h2> <h3> Core Features </h3> <ul> <li> <strong>Natural Language Processing</strong>: Accepts text or voice input</li> <li> <strong>Intelligent SQL Generation</strong>: Uses LLM (Groq/Llama 3.1) to generate queries</li> <li> <strong>Read-Only Safety</strong>: Only executes SELECT/WITH queries</li> <li> <strong>Rich Visualizations</strong>: Tables, line charts, and bar charts</li> <li> <strong>Conversational Context</strong>: Maintains conversation history</li> <li> <strong>Clarification Flow</strong>: Asks follow-up questions when needed</li> <li> <strong>Server-Side Execution</strong>: All database access is server-side (LLM never touches DB)</li> </ul> <h3> What It Doesn't Do (By Design) </h3> <ul> <li>No write operations (INSERT/UPDATE/DELETE)</li> <li>No authentication or multi-tenant support</li> <li>No dashboard builder or saved reports</li> <li>No attempt to replace full BI tools </li> </ul> <p>This is intentionally minimal—built for fast data exploration, not enterprise analytics.</p> <h2> Architecture Overview </h2> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>┌─────────────┐ │ Frontend │ Next.js + React + Recharts │ (Chat UI) │ └──────┬──────┘ │ HTTP POST /api/chat ▼ ┌─────────────────────────────────────┐ │ Next.js API Route │ │ /api/chat (route.ts) │ └──────┬──────────────────────────────┘ │ ▼ ┌─────────────────────────────────────┐ │ Chat Service Layer │ │ - Schema introspection (cached) │ │ - Schema shortlisting │ │ - Prompt building │ │ - LLM call │ │ - JSON parsing &amp; validation │ └──────┬──────────────────────────────┘ │ ├──► SQL Guard (safety validation) │ └──► PostgreSQL (read-only) </code></pre> </div> <h3> Key Components </h3> <p><strong>Frontend (<code>src/components/Chat/</code>):</strong></p> <ul> <li> <code>ChatShell.tsx</code> - Main chat interface</li> <li> <code>MessageBubble.tsx</code> - Message rendering with SQL preview</li> <li> <code>ResultChart.tsx</code> - Recharts-based visualizations</li> <li> <code>VoiceButton.tsx</code> - Web Speech API integration</li> </ul> <p><strong>Backend (<code>src/Server/</code>):</strong></p> <ul> <li> <code>chat/service.ts</code> - Core orchestration logic</li> <li> <code>chat/prompts.ts</code> - LLM prompt engineering</li> <li> <code>db/introspect.ts</code> - Schema introspection</li> <li> <code>db/schemaCache.ts</code> - TTL-based caching</li> <li> <code>safety/sqlGuard.ts</code> - SQL validation (247 lines of security)</li> <li> <code>llm/groq.ts</code> - Groq API client</li> </ul> <h2> Security: The MVP Guardrails </h2> <p>This was our biggest challenge. How do you safely execute LLM-generated SQL without a full SQL parser?</p> <h3> Our Security Model </h3> <p>We built a <strong>defense-in-depth</strong> approach with multiple layers:</p> <h4> 1. Statement Validation </h4> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="c1">// Only single statements allowed</span> <span class="kd">const</span> <span class="nx">parts</span> <span class="o">=</span> <span class="nx">sql</span><span class="p">.</span><span class="nf">split</span><span class="p">(</span><span class="dl">"</span><span class="s2">;</span><span class="dl">"</span><span class="p">).</span><span class="nf">filter</span><span class="p">(</span><span class="nb">Boolean</span><span class="p">);</span> <span class="k">if </span><span class="p">(</span><span class="nx">parts</span><span class="p">.</span><span class="nx">length</span> <span class="o">!==</span> <span class="mi">1</span><span class="p">)</span> <span class="p">{</span> <span class="k">throw</span> <span class="k">new</span> <span class="nc">Error</span><span class="p">(</span><span class="dl">"</span><span class="s2">Only single-statement SQL is allowed.</span><span class="dl">"</span><span class="p">);</span> <span class="p">}</span> </code></pre> </div> <h4> 2. Query Type Enforcement </h4> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="c1">// Only SELECT/WITH queries</span> <span class="k">if </span><span class="p">(</span><span class="o">!</span><span class="p">(</span><span class="nx">sql</span><span class="p">.</span><span class="nf">toLowerCase</span><span class="p">().</span><span class="nf">startsWith</span><span class="p">(</span><span class="dl">"</span><span class="s2">select</span><span class="dl">"</span><span class="p">)</span> <span class="o">||</span> <span class="nx">sql</span><span class="p">.</span><span class="nf">toLowerCase</span><span class="p">().</span><span class="nf">startsWith</span><span class="p">(</span><span class="dl">"</span><span class="s2">with</span><span class="dl">"</span><span class="p">)))</span> <span class="p">{</span> <span class="k">throw</span> <span class="k">new</span> <span class="nc">Error</span><span class="p">(</span><span class="dl">"</span><span class="s2">Only SELECT/WITH queries are allowed.</span><span class="dl">"</span><span class="p">);</span> <span class="p">}</span> </code></pre> </div> <h4> 3. Keyword Blocking </h4> <p>We block dangerous keywords using word-boundary regex:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="kd">const</span> <span class="nx">blockedKeywords</span> <span class="o">=</span> <span class="p">[</span> <span class="dl">"</span><span class="s2">insert</span><span class="dl">"</span><span class="p">,</span> <span class="dl">"</span><span class="s2">update</span><span class="dl">"</span><span class="p">,</span> <span class="dl">"</span><span class="s2">delete</span><span class="dl">"</span><span class="p">,</span> <span class="dl">"</span><span class="s2">drop</span><span class="dl">"</span><span class="p">,</span> <span class="dl">"</span><span class="s2">alter</span><span class="dl">"</span><span class="p">,</span> <span class="dl">"</span><span class="s2">truncate</span><span class="dl">"</span><span class="p">,</span> <span class="dl">"</span><span class="s2">create</span><span class="dl">"</span><span class="p">,</span> <span class="dl">"</span><span class="s2">grant</span><span class="dl">"</span><span class="p">,</span> <span class="dl">"</span><span class="s2">revoke</span><span class="dl">"</span><span class="p">,</span> <span class="dl">"</span><span class="s2">copy</span><span class="dl">"</span><span class="p">,</span> <span class="dl">"</span><span class="s2">call</span><span class="dl">"</span><span class="p">,</span> <span class="dl">"</span><span class="s2">execute</span><span class="dl">"</span><span class="p">,</span> <span class="dl">"</span><span class="s2">prepare</span><span class="dl">"</span><span class="p">,</span> <span class="dl">"</span><span class="s2">begin</span><span class="dl">"</span><span class="p">,</span> <span class="dl">"</span><span class="s2">commit</span><span class="dl">"</span><span class="p">,</span> <span class="dl">"</span><span class="s2">rollback</span><span class="dl">"</span><span class="p">,</span> <span class="dl">"</span><span class="s2">set</span><span class="dl">"</span><span class="p">,</span> <span class="c1">// ... and more</span> <span class="p">];</span> <span class="k">for </span><span class="p">(</span><span class="kd">const</span> <span class="nx">kw</span> <span class="k">of</span> <span class="nx">blockedKeywords</span><span class="p">)</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">re</span> <span class="o">=</span> <span class="k">new</span> <span class="nc">RegExp</span><span class="p">(</span><span class="s2">`</span><span class="se">\\</span><span class="s2">b</span><span class="p">${</span><span class="nf">escapeRegExp</span><span class="p">(</span><span class="nx">kw</span><span class="p">)}</span><span class="se">\\</span><span class="s2">b`</span><span class="p">,</span> <span class="dl">"</span><span class="s2">i</span><span class="dl">"</span><span class="p">);</span> <span class="k">if </span><span class="p">(</span><span class="nx">re</span><span class="p">.</span><span class="nf">test</span><span class="p">(</span><span class="nx">sql</span><span class="p">))</span> <span class="p">{</span> <span class="k">throw</span> <span class="k">new</span> <span class="nc">Error</span><span class="p">(</span><span class="dl">"</span><span class="s2">Write/admin operations are not allowed.</span><span class="dl">"</span><span class="p">);</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <h4> 4. Dangerous Function Blocking </h4> <p>We block Postgres functions that could be used for exfiltration:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="kd">const</span> <span class="nx">blockedFunctions</span> <span class="o">=</span> <span class="p">[</span> <span class="dl">"</span><span class="s2">pg_read_file</span><span class="dl">"</span><span class="p">,</span> <span class="dl">"</span><span class="s2">pg_read_binary_file</span><span class="dl">"</span><span class="p">,</span> <span class="dl">"</span><span class="s2">pg_ls_dir</span><span class="dl">"</span><span class="p">,</span> <span class="dl">"</span><span class="s2">dblink</span><span class="dl">"</span><span class="p">,</span> <span class="dl">"</span><span class="s2">postgres_fdw</span><span class="dl">"</span><span class="p">,</span> <span class="c1">// ...</span> <span class="p">];</span> </code></pre> </div> <h4> 5. SELECT * Prevention </h4> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="c1">// Blocks accidental data dumps</span> <span class="k">if </span><span class="p">(</span><span class="sr">/</span><span class="se">\b</span><span class="sr">select</span><span class="se">\s</span><span class="sr">+</span><span class="se">\*\b</span><span class="sr">/i</span><span class="p">.</span><span class="nf">test</span><span class="p">(</span><span class="nx">sql</span><span class="p">))</span> <span class="p">{</span> <span class="k">throw</span> <span class="k">new</span> <span class="nc">Error</span><span class="p">(</span><span class="dl">"</span><span class="s2">SELECT * is not allowed. Please select specific columns.</span><span class="dl">"</span><span class="p">);</span> <span class="p">}</span> </code></pre> </div> <h4> 6. PII Column Blocking (Optional) </h4> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="kd">const</span> <span class="nx">piiTokens</span> <span class="o">=</span> <span class="p">[</span><span class="dl">"</span><span class="s2">email</span><span class="dl">"</span><span class="p">,</span> <span class="dl">"</span><span class="s2">phone</span><span class="dl">"</span><span class="p">,</span> <span class="dl">"</span><span class="s2">mobile</span><span class="dl">"</span><span class="p">,</span> <span class="dl">"</span><span class="s2">ssn</span><span class="dl">"</span><span class="p">,</span> <span class="dl">"</span><span class="s2">passport</span><span class="dl">"</span><span class="p">,</span> <span class="dl">"</span><span class="s2">address</span><span class="dl">"</span><span class="p">];</span> <span class="k">for </span><span class="p">(</span><span class="kd">const</span> <span class="nx">tok</span> <span class="k">of</span> <span class="nx">piiTokens</span><span class="p">)</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">re</span> <span class="o">=</span> <span class="k">new</span> <span class="nc">RegExp</span><span class="p">(</span><span class="s2">`</span><span class="se">\\</span><span class="s2">b</span><span class="p">${</span><span class="nf">escapeRegExp</span><span class="p">(</span><span class="nx">tok</span><span class="p">)}</span><span class="se">\\</span><span class="s2">b`</span><span class="p">,</span> <span class="dl">"</span><span class="s2">i</span><span class="dl">"</span><span class="p">);</span> <span class="k">if </span><span class="p">(</span><span class="nx">re</span><span class="p">.</span><span class="nf">test</span><span class="p">(</span><span class="nx">sql</span><span class="p">))</span> <span class="p">{</span> <span class="k">throw</span> <span class="k">new</span> <span class="nc">Error</span><span class="p">(</span><span class="s2">`Query references sensitive field '</span><span class="p">${</span><span class="nx">tok</span><span class="p">}</span><span class="s2">'. Not allowed.`</span><span class="p">);</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <h4> 7. LIMIT Enforcement </h4> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="c1">// Adds default LIMIT if missing, clamps if too high</span> <span class="kd">const</span> <span class="nx">limitMatch</span> <span class="o">=</span> <span class="nx">sql</span><span class="p">.</span><span class="nf">match</span><span class="p">(</span><span class="sr">/</span><span class="se">\b</span><span class="sr">limit</span><span class="se">\s</span><span class="sr">+</span><span class="se">(\d</span><span class="sr">+</span><span class="se">)\b</span><span class="sr">/i</span><span class="p">);</span> <span class="k">if </span><span class="p">(</span><span class="o">!</span><span class="nx">limitMatch</span><span class="p">)</span> <span class="p">{</span> <span class="nx">sql</span> <span class="o">=</span> <span class="s2">`</span><span class="p">${</span><span class="nx">sql</span><span class="p">}</span><span class="s2"> LIMIT </span><span class="p">${</span><span class="nx">defaultLimit</span><span class="p">}</span><span class="s2">`</span><span class="p">;</span> <span class="p">}</span> <span class="k">else</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">requested</span> <span class="o">=</span> <span class="nf">parseInt</span><span class="p">(</span><span class="nx">limitMatch</span><span class="p">[</span><span class="mi">1</span><span class="p">],</span> <span class="mi">10</span><span class="p">);</span> <span class="k">if </span><span class="p">(</span><span class="nx">requested</span> <span class="o">&gt;</span> <span class="nx">maxLimit</span><span class="p">)</span> <span class="p">{</span> <span class="nx">sql</span> <span class="o">=</span> <span class="nx">sql</span><span class="p">.</span><span class="nf">replace</span><span class="p">(</span><span class="sr">/</span><span class="se">\b</span><span class="sr">limit</span><span class="se">\s</span><span class="sr">+</span><span class="se">\d</span><span class="sr">+</span><span class="se">\b</span><span class="sr">/i</span><span class="p">,</span> <span class="s2">`LIMIT </span><span class="p">${</span><span class="nx">maxLimit</span><span class="p">}</span><span class="s2">`</span><span class="p">);</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <h4> 8. Comment Stripping </h4> <p>We remove SQL comments to prevent bypass attempts:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="c1">// Remove -- line comments</span> <span class="nx">sql</span> <span class="o">=</span> <span class="nx">sql</span><span class="p">.</span><span class="nf">replace</span><span class="p">(</span><span class="sr">/--.*$/gm</span><span class="p">,</span> <span class="dl">""</span><span class="p">);</span> <span class="c1">// Remove /* block comments */</span> <span class="nx">sql</span> <span class="o">=</span> <span class="nx">sql</span><span class="p">.</span><span class="nf">replace</span><span class="p">(</span><span class="sr">/</span><span class="se">\/\*[\s\S]</span><span class="sr">*</span><span class="se">?\*\/</span><span class="sr">/g</span><span class="p">,</span> <span class="dl">""</span><span class="p">);</span> </code></pre> </div> <h3> Security Limitations </h3> <p><strong>⚠️ Important</strong>: This is MVP-level safety. For production systems, you should:</p> <ul> <li>Use a proper SQL parser (like <code>node-sql-parser</code> or <code>pg-query-parser</code>)</li> <li>Implement allow-listing of tables/columns</li> <li>Add query timeout enforcement</li> <li>Use read-only database users</li> <li>Implement rate limiting</li> <li>Add audit logging</li> </ul> <p>Our approach is <strong>best-effort accident prevention</strong>, not a security guarantee.</p> <h2> Performance Optimizations </h2> <p>LLM calls are expensive (time and money). Here's how we optimized:</p> <h3> 1. Schema Caching </h3> <p>Schema introspection runs once and caches for 10 minutes:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="kd">const</span> <span class="nx">CACHE</span> <span class="o">=</span> <span class="k">new</span> <span class="nb">Map</span><span class="o">&lt;</span><span class="kr">string</span><span class="p">,</span> <span class="nx">Cached</span><span class="o">&lt;</span><span class="kr">any</span><span class="o">&gt;&gt;</span><span class="p">();</span> <span class="k">export</span> <span class="k">async</span> <span class="kd">function</span> <span class="nf">getSchemaSummaryCached</span><span class="p">(</span><span class="nx">ttlMs</span> <span class="o">=</span> <span class="mi">10</span> <span class="o">*</span> <span class="mi">60</span> <span class="o">*</span> <span class="mi">1000</span><span class="p">)</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">hit</span> <span class="o">=</span> <span class="nx">CACHE</span><span class="p">.</span><span class="nf">get</span><span class="p">(</span><span class="nx">key</span><span class="p">);</span> <span class="k">if </span><span class="p">(</span><span class="nx">hit</span> <span class="o">&amp;&amp;</span> <span class="nx">hit</span><span class="p">.</span><span class="nx">expiresAt</span> <span class="o">&gt;</span> <span class="nb">Date</span><span class="p">.</span><span class="nf">now</span><span class="p">())</span> <span class="k">return</span> <span class="nx">hit</span><span class="p">.</span><span class="nx">value</span><span class="p">;</span> <span class="kd">const</span> <span class="nx">schema</span> <span class="o">=</span> <span class="k">await</span> <span class="nf">introspectSchema</span><span class="p">();</span> <span class="nx">CACHE</span><span class="p">.</span><span class="nf">set</span><span class="p">(</span><span class="nx">key</span><span class="p">,</span> <span class="p">{</span> <span class="na">value</span><span class="p">:</span> <span class="nx">schema</span><span class="p">,</span> <span class="na">expiresAt</span><span class="p">:</span> <span class="nb">Date</span><span class="p">.</span><span class="nf">now</span><span class="p">()</span> <span class="o">+</span> <span class="nx">ttlMs</span> <span class="p">});</span> <span class="k">return</span> <span class="nx">schema</span><span class="p">;</span> <span class="p">}</span> </code></pre> </div> <h3> 2. Schema Shortlisting </h3> <p>Instead of sending the entire schema, we shortlist only relevant tables:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="kd">function</span> <span class="nf">shortlistSchema</span><span class="p">(</span><span class="nx">schemaSummary</span><span class="p">:</span> <span class="kr">any</span><span class="p">,</span> <span class="nx">question</span><span class="p">:</span> <span class="kr">string</span><span class="p">,</span> <span class="nx">maxTables</span> <span class="o">=</span> <span class="mi">8</span><span class="p">)</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">q</span> <span class="o">=</span> <span class="nx">question</span><span class="p">.</span><span class="nf">toLowerCase</span><span class="p">();</span> <span class="kd">const</span> <span class="nx">tokens</span> <span class="o">=</span> <span class="nx">q</span><span class="p">.</span><span class="nf">split</span><span class="p">(</span><span class="sr">/</span><span class="se">[^</span><span class="sr">a-z0-9_</span><span class="se">]</span><span class="sr">+/</span><span class="p">).</span><span class="nf">filter</span><span class="p">(</span><span class="nx">w</span> <span class="o">=&gt;</span> <span class="nx">w</span><span class="p">.</span><span class="nx">length</span> <span class="o">&gt;=</span> <span class="mi">3</span><span class="p">);</span> <span class="c1">// Score tables by relevance</span> <span class="kd">const</span> <span class="nx">scored</span> <span class="o">=</span> <span class="nx">schemaSummary</span><span class="p">.</span><span class="nx">tables</span><span class="p">.</span><span class="nf">map</span><span class="p">((</span><span class="nx">t</span><span class="p">:</span> <span class="kr">any</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="kd">let</span> <span class="nx">score</span> <span class="o">=</span> <span class="mi">0</span><span class="p">;</span> <span class="k">for </span><span class="p">(</span><span class="kd">const</span> <span class="nx">tok</span> <span class="k">of</span> <span class="nx">tokens</span><span class="p">)</span> <span class="p">{</span> <span class="k">if </span><span class="p">(</span><span class="nx">t</span><span class="p">.</span><span class="nx">name</span><span class="p">.</span><span class="nf">toLowerCase</span><span class="p">().</span><span class="nf">includes</span><span class="p">(</span><span class="nx">tok</span><span class="p">))</span> <span class="nx">score</span> <span class="o">+=</span> <span class="mi">5</span><span class="p">;</span> <span class="k">for </span><span class="p">(</span><span class="kd">const</span> <span class="nx">col</span> <span class="k">of</span> <span class="nx">t</span><span class="p">.</span><span class="nx">columns</span><span class="p">)</span> <span class="p">{</span> <span class="k">if </span><span class="p">(</span><span class="nx">col</span><span class="p">.</span><span class="nx">name</span><span class="p">.</span><span class="nf">toLowerCase</span><span class="p">().</span><span class="nf">includes</span><span class="p">(</span><span class="nx">tok</span><span class="p">))</span> <span class="nx">score</span> <span class="o">+=</span> <span class="mi">1</span><span class="p">;</span> <span class="p">}</span> <span class="p">}</span> <span class="k">return</span> <span class="p">{</span> <span class="nx">t</span><span class="p">,</span> <span class="nx">score</span> <span class="p">};</span> <span class="p">});</span> <span class="c1">// Return top N tables</span> <span class="k">return</span> <span class="nx">scored</span> <span class="p">.</span><span class="nf">sort</span><span class="p">((</span><span class="nx">a</span><span class="p">,</span> <span class="nx">b</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="nx">b</span><span class="p">.</span><span class="nx">score</span> <span class="o">-</span> <span class="nx">a</span><span class="p">.</span><span class="nx">score</span><span class="p">)</span> <span class="p">.</span><span class="nf">slice</span><span class="p">(</span><span class="mi">0</span><span class="p">,</span> <span class="nx">maxTables</span><span class="p">)</span> <span class="p">.</span><span class="nf">map</span><span class="p">(</span><span class="nx">x</span> <span class="o">=&gt;</span> <span class="nx">x</span><span class="p">.</span><span class="nx">t</span><span class="p">);</span> <span class="p">}</span> </code></pre> </div> <h3> 3. Compact Schema Format </h3> <p>We convert schema to a compact text format instead of JSON:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="kd">function</span> <span class="nf">schemaToText</span><span class="p">(</span><span class="nx">shortlisted</span><span class="p">:</span> <span class="kr">any</span><span class="p">)</span> <span class="p">{</span> <span class="k">return</span> <span class="nx">shortlisted</span><span class="p">.</span><span class="nx">tables</span><span class="p">.</span><span class="nf">map</span><span class="p">((</span><span class="nx">t</span><span class="p">:</span> <span class="kr">any</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">cols</span> <span class="o">=</span> <span class="nx">t</span><span class="p">.</span><span class="nx">columns</span> <span class="p">.</span><span class="nf">slice</span><span class="p">(</span><span class="mi">0</span><span class="p">,</span> <span class="mi">50</span><span class="p">)</span> <span class="p">.</span><span class="nf">map</span><span class="p">((</span><span class="na">c</span><span class="p">:</span> <span class="kr">any</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="s2">`</span><span class="p">${</span><span class="nx">c</span><span class="p">.</span><span class="nx">name</span><span class="p">}</span><span class="s2">:</span><span class="p">${</span><span class="nx">c</span><span class="p">.</span><span class="kd">type</span><span class="p">}</span><span class="s2">`</span><span class="p">)</span> <span class="p">.</span><span class="nf">join</span><span class="p">(</span><span class="dl">"</span><span class="s2">, </span><span class="dl">"</span><span class="p">);</span> <span class="k">return</span> <span class="s2">`</span><span class="p">${</span><span class="nx">t</span><span class="p">.</span><span class="nx">name</span><span class="p">}</span><span class="s2">(</span><span class="p">${</span><span class="nx">cols</span><span class="p">}</span><span class="s2">)`</span><span class="p">;</span> <span class="p">}).</span><span class="nf">join</span><span class="p">(</span><span class="dl">"</span><span class="se">\n</span><span class="dl">"</span><span class="p">);</span> <span class="p">}</span> </code></pre> </div> <p><strong>Before (JSON):</strong> ~5000 tokens<br><br> <strong>After (text):</strong> ~500 tokens<br><br> <strong>Savings:</strong> 90% reduction</p> <h3> 4. Bounded History </h3> <p>Only the last 6 conversation turns are included in the prompt:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="kd">const</span> <span class="nx">historyForPrompt</span> <span class="o">=</span> <span class="p">(</span><span class="nx">history</span> <span class="o">||</span> <span class="p">[]).</span><span class="nf">slice</span><span class="p">(</span><span class="o">-</span><span class="mi">6</span><span class="p">);</span> </code></pre> </div> <h3> 5. Connection Pooling </h3> <p>We use PostgreSQL connection pooling with read-only transactions:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="kd">const</span> <span class="nx">client</span> <span class="o">=</span> <span class="k">new</span> <span class="nc">Client</span><span class="p">({</span> <span class="nx">connectionString</span> <span class="p">});</span> <span class="k">await</span> <span class="nx">client</span><span class="p">.</span><span class="nf">connect</span><span class="p">();</span> <span class="k">try</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">result</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">client</span><span class="p">.</span><span class="nf">query</span><span class="p">(</span><span class="nx">sql</span><span class="p">);</span> <span class="k">return</span> <span class="nx">result</span><span class="p">;</span> <span class="p">}</span> <span class="k">finally</span> <span class="p">{</span> <span class="k">await</span> <span class="nx">client</span><span class="p">.</span><span class="nf">end</span><span class="p">();</span> <span class="p">}</span> </code></pre> </div> <h2> Technology Stack </h2> <ul> <li> <strong>Frontend</strong>: Next.js 16 (App Router), React 19, TypeScript</li> <li> <strong>Backend</strong>: Next.js API Routes, Node.js</li> <li> <strong>Database</strong>: PostgreSQL (pg library)</li> <li> <strong>LLM</strong>: Groq SDK (Llama 3.1 8B Instant)</li> <li> <strong>Visualization</strong>: Recharts</li> <li> <strong>Validation</strong>: Zod schemas</li> </ul> <h2> Code Example: The Full Flow </h2> <p>Here's how a request flows through the system:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="c1">// 1. API Route receives request</span> <span class="k">export</span> <span class="k">async</span> <span class="kd">function</span> <span class="nf">POST</span><span class="p">(</span><span class="nx">req</span><span class="p">:</span> <span class="nx">Request</span><span class="p">)</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">body</span> <span class="o">=</span> <span class="nx">BodySchema</span><span class="p">.</span><span class="nf">parse</span><span class="p">(</span><span class="k">await</span> <span class="nx">req</span><span class="p">.</span><span class="nf">json</span><span class="p">());</span> <span class="kd">const</span> <span class="nx">out</span> <span class="o">=</span> <span class="k">await</span> <span class="nf">chatService</span><span class="p">(</span><span class="nx">body</span><span class="p">);</span> <span class="k">return</span> <span class="nx">NextResponse</span><span class="p">.</span><span class="nf">json</span><span class="p">(</span><span class="nx">out</span><span class="p">);</span> <span class="p">}</span> <span class="c1">// 2. Service orchestrates the flow</span> <span class="k">export</span> <span class="k">async</span> <span class="kd">function</span> <span class="nf">chatService</span><span class="p">(</span><span class="nx">body</span><span class="p">:</span> <span class="nx">ChatBody</span><span class="p">)</span> <span class="p">{</span> <span class="c1">// Get cached schema</span> <span class="kd">const</span> <span class="nx">schemaSummary</span> <span class="o">=</span> <span class="k">await</span> <span class="nf">getSchemaSummaryCached</span><span class="p">();</span> <span class="c1">// Shortlist relevant tables</span> <span class="kd">const</span> <span class="nx">shortlisted</span> <span class="o">=</span> <span class="nf">shortlistSchema</span><span class="p">(</span><span class="nx">schemaSummary</span><span class="p">,</span> <span class="nx">body</span><span class="p">.</span><span class="nx">message</span><span class="p">,</span> <span class="mi">8</span><span class="p">);</span> <span class="kd">const</span> <span class="nx">schemaText</span> <span class="o">=</span> <span class="nf">schemaToText</span><span class="p">(</span><span class="nx">shortlisted</span><span class="p">);</span> <span class="c1">// Build prompts</span> <span class="kd">const</span> <span class="nx">sys</span> <span class="o">=</span> <span class="nf">systemPrompt</span><span class="p">();</span> <span class="kd">const</span> <span class="nx">prompt</span> <span class="o">=</span> <span class="nf">userPrompt</span><span class="p">({</span> <span class="nx">schemaText</span><span class="p">,</span> <span class="na">resolved</span><span class="p">:</span> <span class="p">{</span> <span class="na">time_range</span><span class="p">:</span> <span class="dl">"</span><span class="s2">all_time</span><span class="dl">"</span> <span class="p">},</span> <span class="na">history</span><span class="p">:</span> <span class="nx">body</span><span class="p">.</span><span class="nx">history</span><span class="p">.</span><span class="nf">slice</span><span class="p">(</span><span class="o">-</span><span class="mi">6</span><span class="p">),</span> <span class="na">message</span><span class="p">:</span> <span class="nx">body</span><span class="p">.</span><span class="nx">message</span> <span class="p">});</span> <span class="c1">// Call LLM</span> <span class="kd">let</span> <span class="nx">raw</span> <span class="o">=</span> <span class="k">await</span> <span class="nf">llmCall</span><span class="p">([</span> <span class="p">{</span> <span class="na">role</span><span class="p">:</span> <span class="dl">"</span><span class="s2">system</span><span class="dl">"</span><span class="p">,</span> <span class="na">content</span><span class="p">:</span> <span class="nx">sys</span> <span class="p">},</span> <span class="p">{</span> <span class="na">role</span><span class="p">:</span> <span class="dl">"</span><span class="s2">user</span><span class="dl">"</span><span class="p">,</span> <span class="na">content</span><span class="p">:</span> <span class="nx">prompt</span> <span class="p">}</span> <span class="p">]);</span> <span class="c1">// Parse and validate JSON</span> <span class="kd">let</span> <span class="nx">out</span> <span class="o">=</span> <span class="nx">ModelOutSchema</span><span class="p">.</span><span class="nf">parse</span><span class="p">(</span><span class="nf">parseJsonRobust</span><span class="p">(</span><span class="nx">raw</span><span class="p">));</span> <span class="c1">// If clarification needed, return early</span> <span class="k">if </span><span class="p">(</span><span class="nx">out</span><span class="p">.</span><span class="kd">type</span> <span class="o">===</span> <span class="dl">"</span><span class="s2">clarify</span><span class="dl">"</span><span class="p">)</span> <span class="p">{</span> <span class="k">return</span> <span class="p">{</span> <span class="na">ok</span><span class="p">:</span> <span class="kc">true</span><span class="p">,</span> <span class="p">...</span><span class="nx">out</span> <span class="p">};</span> <span class="p">}</span> <span class="c1">// Validate SQL safety</span> <span class="kd">const</span> <span class="nx">safeSql</span> <span class="o">=</span> <span class="nf">assertSafeReadOnlySQL</span><span class="p">(</span><span class="nx">out</span><span class="p">.</span><span class="nx">sql</span><span class="p">);</span> <span class="c1">// Execute query</span> <span class="kd">const</span> <span class="nx">result</span> <span class="o">=</span> <span class="k">await</span> <span class="nf">runQuery</span><span class="p">(</span><span class="nx">safeSql</span><span class="p">);</span> <span class="c1">// Return formatted response</span> <span class="k">return</span> <span class="p">{</span> <span class="na">ok</span><span class="p">:</span> <span class="kc">true</span><span class="p">,</span> <span class="na">type</span><span class="p">:</span> <span class="dl">"</span><span class="s2">answer</span><span class="dl">"</span><span class="p">,</span> <span class="na">sql</span><span class="p">:</span> <span class="nx">safeSql</span><span class="p">,</span> <span class="na">answer</span><span class="p">:</span> <span class="nx">out</span><span class="p">.</span><span class="nx">answer</span><span class="p">,</span> <span class="na">insights</span><span class="p">:</span> <span class="nx">out</span><span class="p">.</span><span class="nx">insights</span> <span class="o">??</span> <span class="p">[],</span> <span class="na">followups</span><span class="p">:</span> <span class="nx">out</span><span class="p">.</span><span class="nx">followups</span> <span class="o">??</span> <span class="p">[],</span> <span class="na">visualization</span><span class="p">:</span> <span class="nx">out</span><span class="p">.</span><span class="nx">visualization</span> <span class="o">??</span> <span class="p">{</span> <span class="na">type</span><span class="p">:</span> <span class="dl">"</span><span class="s2">table</span><span class="dl">"</span> <span class="p">},</span> <span class="nx">result</span><span class="p">,</span> <span class="p">};</span> <span class="p">}</span> </code></pre> </div> <h2> Lessons Learned </h2> <h3> 1. LLMs Are Not Deterministic </h3> <p>We had to build a "repair" mechanism for when the LLM returns invalid JSON:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="k">try</span> <span class="p">{</span> <span class="nx">out</span> <span class="o">=</span> <span class="nx">ModelOutSchema</span><span class="p">.</span><span class="nf">parse</span><span class="p">(</span><span class="nf">parseJsonRobust</span><span class="p">(</span><span class="nx">raw</span><span class="p">));</span> <span class="p">}</span> <span class="k">catch</span> <span class="p">{</span> <span class="c1">// Retry with repair prompt</span> <span class="kd">const</span> <span class="nx">repaired</span> <span class="o">=</span> <span class="k">await</span> <span class="nf">llmCall</span><span class="p">([</span> <span class="p">{</span> <span class="na">role</span><span class="p">:</span> <span class="dl">"</span><span class="s2">system</span><span class="dl">"</span><span class="p">,</span> <span class="na">content</span><span class="p">:</span> <span class="nx">sys</span> <span class="p">},</span> <span class="p">{</span> <span class="na">role</span><span class="p">:</span> <span class="dl">"</span><span class="s2">user</span><span class="dl">"</span><span class="p">,</span> <span class="na">content</span><span class="p">:</span> <span class="nf">repairPrompt</span><span class="p">(</span><span class="nx">raw</span><span class="p">)</span> <span class="p">}</span> <span class="p">]);</span> <span class="nx">out</span> <span class="o">=</span> <span class="nx">ModelOutSchema</span><span class="p">.</span><span class="nf">parse</span><span class="p">(</span><span class="nf">parseJsonRobust</span><span class="p">(</span><span class="nx">repaired</span><span class="p">));</span> <span class="p">}</span> </code></pre> </div> <h3> 2. Token Costs Add Up Fast </h3> <p>Our optimizations reduced token usage by ~90%, which translates to:</p> <ul> <li> <strong>Faster responses</strong> (less data to process)</li> <li> <strong>Lower costs</strong> (fewer tokens = lower API bills)</li> <li> <strong>Better reliability</strong> (shorter prompts = more consistent outputs)</li> </ul> <h3> 3. Security Requires Multiple Layers </h3> <p>A single validation layer isn't enough. We use:</p> <ul> <li>Keyword blocking</li> <li>Function blocking</li> <li>PII detection</li> <li>LIMIT enforcement</li> <li>Comment stripping</li> <li>Statement validation</li> </ul> <h3> 4. Schema Shortlisting Is Critical </h3> <p>Sending the entire schema (100+ tables) results in:</p> <ul> <li>Higher token costs</li> <li>Slower responses</li> <li>More hallucination (LLM gets confused)</li> </ul> <p>Shortlisting to 8 relevant tables dramatically improves quality.</p> <h2> Limitations &amp; Future Work </h2> <h3> Current Limitations </h3> <ul> <li>MVP-level security (not production-grade)</li> <li>No authentication</li> <li>No query history/saved reports</li> <li>Limited to PostgreSQL</li> <li>No support for complex joins across many tables</li> </ul> <h3> Potential Improvements </h3> <ul> <li>[ ] SQL parser-based validation (proper AST parsing)</li> <li>[ ] Allow-listing system (configurable table/column access)</li> <li>[ ] Query timeout enforcement</li> <li>[ ] Rate limiting per user</li> <li>[ ] Audit logging</li> <li>[ ] Multi-database support</li> <li>[ ] Query explanation (why this SQL was generated)</li> </ul> <h2> Conclusion </h2> <p>Building an AI-powered SQL interface is challenging but rewarding. The key is balancing:</p> <ul> <li> <strong>Safety</strong>: Multiple validation layers</li> <li> <strong>Performance</strong>: Aggressive caching and token optimization</li> <li> <strong>User Experience</strong>: Fast, conversational, helpful</li> </ul> <p>This project demonstrates that with the right guardrails, LLMs can safely generate and execute SQL queries. It's not production-ready for sensitive data, but it's a solid foundation for internal tools and data exploration.</p> <p><strong>Want to try it?</strong> Check out the <a href="https://github.com/Sufian-Abu/ai-data-chat" rel="noopener noreferrer">GitHub repository</a></p> <p><strong>What do you think?</strong> Have you built similar systems? What security measures did you implement? Let me know in the comments below!</p> ai nextjs llm sql Rule-Based Decisions + Optional LLM Explanations: Building event-intel-engine ABU SUFIAN Sun, 22 Feb 2026 17:14:23 +0000 https://dev.to/sufian-abu/rule-based-decisions-optional-llm-explanations-building-event-intel-engine-5gg5 https://dev.to/sufian-abu/rule-based-decisions-optional-llm-explanations-building-event-intel-engine-5gg5 <h2> The problem we're solving </h2> <p>You have a stream of events—payment failures, API errors, timeouts. You might already have dashboards and counts. What's often missing is:</p> <ol> <li> <strong>A clear, repeatable rule</strong> that turns those numbers into an action: <em>allow</em>, <em>review</em>, or <em>block</em>. Without it, "what should we do?" stays a manual or ad-hoc call.</li> <li> <strong>A single place</strong> that both applies that rule and can optionally answer <em>why</em> in plain language. Often you either get a decision with no narrative, or you bolt on an LLM and risk using it for the decision itself—which makes behavior harder to reason about and audit.</li> </ol> <p><strong>So the problem is:</strong> deterministic decisions from event counts, plus optional human-readable explanation, without the LLM driving the outcome.</p> <h2> Existing solutions and our angle </h2> <p>Plenty of systems already do rule-based decisions and policy engines—feature flags, circuit breakers, fraud rules, and so on. We're not claiming to replace those. We wanted a <strong>small, self-contained service</strong> that:</p> <ul> <li>Ingests events and keeps rolling counters (e.g. 5m / 30m).</li> <li>Exposes a simple allow/review/block decision from those counters, with no external AI in that path.</li> <li>Optionally adds a <strong>short explanation</strong> of that decision. That's where we brought in an LLM—<strong>for fun</strong>. We wanted to see if we could get a readable "why" and "what to do next" without ever letting the model change the decision. So the core value is the rule engine and the API; the LLM is an extra layer we tried on top.</li> </ul> <h2> How we keep the LLM out of the decision </h2> <p>We split the system into two layers:</p> <ul> <li> <strong>Decision layer:</strong> Counts (e.g. failures in the last 5m and 30m) go into a fixed rule function. Same counts → same result. No LLM, no non-determinism. This is the part that actually "solves" the problem.</li> <li> <strong>Explanation layer:</strong> After the decision is fixed, we <em>optionally</em> send that decision plus the same evidence to an LLM and ask it only to explain it in plain language and suggest next steps. If the LLM is down, slow, or returns invalid data, we fall back to a simple rule-based explanation. The decision never changes because of the LLM.</li> </ul> <p><strong>So:</strong> rules solve the problem; the LLM is there for fun and readability.</p> <h2> Architecture in a nutshell </h2> <ul> <li> <strong>Events</strong> → stored in SQLite (<code>subject</code>, <code>event_type</code>, <code>fingerprint</code>, <code>status_code</code>, <code>latency_ms</code>, <code>meta_json</code>, <code>at</code>).</li> <li> <strong>Counters</strong> → for each subject we query the last 5m and 30m and aggregate by <code>event_type</code> (failure/success/latency).</li> <li> <strong>Decision</strong> → pure function of <code>(failures_5m</code>, <code>failures_30m</code>, <code>successes_5m)</code> → allow | review | block.</li> <li> <strong>Explain</strong> → we build an evidence payload (counters + recent events), hash it, and check the cache. On miss we call the LLM with (decision + evidence), validate the response with Zod, then cache. On LLM failure we return a rule-based fallback.</li> </ul> <h2> Stack and layout </h2> <p><strong>Node</strong> 20+, <strong>Fastify</strong> (helmet, rate-limit, API-key auth), <strong>SQLite</strong> (better-sqlite3, WAL). Tables: <code>events</code>, <code>subject_state</code>, <code>idempotency_keys</code>, <code>subject_explanations</code>. <strong>Zod</strong> for request/response validation. The LLM is any OpenAI-compatible API (e.g. Groq); the app runs fine without it—explain just uses the fallback then.</p> <p><strong>Routes:</strong> <code>GET /v1/events</code> (list), <code>POST /v1/events</code> (ingest), <code>GET /v1/subjects/:subject/decision</code> (public), <code>GET /v1/subjects/:subject/explain</code> (cached, LLM or fallback), plus profile and ask. Auth via Bearer or <code>x-api-key</code>; health and decision are public by default.</p> <h2> How decisions are computed </h2> <p>Counters come from queries like:</p> <p><code>SELECT event_type, COUNT(*) as c<br> FROM events<br> WHERE subject = @subject AND at &gt;= @since<br> GROUP BY event_type</code></p> <p>We sum failure/success (and optionally latency) per window. The rule is something like: <br> <code>failures_5m &gt;= 5 or failures_30m &gt;= 5 → block; failures_30m &gt;= 3 → review; else → allow.</code></p> <p>Thresholds live in code so you can tune or replace them.</p> <h2> How explain works (and why the API never depends on the LLM) </h2> <p>We build evidence (counters + last N events + a small breakdown), hash it with the decision, and look up the cache. On hit we return the stored explanation and set X-Explain-Cache: HIT. On miss we call the LLM with (decision + evidence), validate the JSON with Zod, then cache. If the LLM is unconfigured, times out, or fails validation, we return a rule-based explanation instead. So the API always returns 200 with some explanation; the LLM is best-effort and "for fun."</p> <h2> How to run and use it </h2> <h1> Setup: </h1> <p><code>git clone https://github.com/Sufian-Abu/event-intel-engine<br> cd event-intel-engine<br> npm install<br> cp .env.example .env</code></p> <p>Set at least API_KEYS=your-key. Optionally: HOST, PORT, SQLITE_PATH, RATE_LIMIT_MAX. For the LLM explain path: LLM_PROVIDER, LLM_API_KEY, LLM_BASE_URL, LLM_MODEL. Without <code>LLM</code> config, explain uses the fallback.</p> <p><code>npm run dev</code></p> <p>Or with Docker: docker compose up --build.</p> <h1> Ingest an event: </h1> <p><code>curl -X POST http://localhost:8080/v1/events \<br> -H "Authorization: Bearer YOUR_KEY" \<br> -H "Content-Type: application/json" \<br> -d '{"subject":"user-42","event_type":"failure","fingerprint":"charge.failed","status_code":402}'</code></p> <p>Get decision (no auth):<br> <code>curl http://localhost:8080/v1/subjects/user-42/decision</code></p> <p>Get explanation (LLM or fallback):<br> <code>curl "http://localhost:8080/v1/subjects/user-42/explain?window=50" \<br> -H "Authorization: Bearer YOUR_KEY"</code></p> <h2> In short </h2> <p>We wanted a small service that does rule-based allow/review/block from event counts and exposes it over a simple API. Existing solutions do that; our twist was adding an optional LLM explainer for fun—so we get a readable "why" without ever letting the model decide.</p> <p><strong>GitHub:</strong> <a href="//github.com/Sufian-Abu/event-intel-engine">github.com/Sufian-Abu/event-intel-engine</a><br> The README has full setup, env vars, and API details.</p> llm fastify backend opensource