DEV Community: zintrust Zin

Migrate MySQL, Postgres, SQLite, or SQL Server to Cloudflare D1 — with checkpoints and integrity checks

zintrust Zin — Tue, 17 Mar 2026 07:40:34 +0000

Moving an existing database to Cloudflare D1 sounds simple until you hit type mismatches, partial failures halfway through a million-row import, or find out afterwards that 3,000 rows silently didn't land.

We built @zintrust/d1-migrator to solve exactly that.

What it does

Migrates MySQL, PostgreSQL, SQLite, or SQL Server → Cloudflare D1
Resumable — checkpoints every N rows so a failure doesn't mean starting from zero
Data integrity verified — row counts + checksums validated after every batch
Dry-run mode — preview the full migration without touching D1
Interactive mode — guided prompts for tables with D1 compatibility warnings
Zero downtime — runs against your live database
TypeScript-first — full types, works with @zintrust/core

Install

npm install @zintrust/d1-migrator

Quickest possible migration (1-line CLI)

DB_CONNECTION=mysql DB_READ_HOSTS=127.0.0.1 DB_PORT=3306 DB_DATABASE=mydb DB_USERNAME=root DB_PASSWORD=secret D1_TARGET_DB=my-d1-db zin migrate-to-d1

All values can also be passed as explicit CLI flags. The order of precedence is: CLI flag → env var → default.

TypeScript API

import { D1Migrator } from '@zintrust/d1-migrator';

const progress = await D1Migrator.DataMigrator.migrateData({
  sourceConnection: 'mysql://user:password@localhost:3306/mydb',
  sourceDriver: 'mysql',
  targetDatabase: 'my-d1-db',
  targetType: 'd1',
  batchSize: 1000,
  checkpointInterval: 10000,
});

console.log(`Migrated: ${progress.processedRows} rows`);

Type conversions handled automatically

Source	D1 / SQLite	Notes
DATETIME	TEXT (ISO 8601)	Auto-converted
BIGINT	TEXT	Precision preserved
DECIMAL	TEXT	Precision preserved
JSON	TEXT	Serialized JSON string
BLOB	BLOB	Binary preserved

Resuming after a failure

zin migrate-to-d1 --resume --migration-id <id>

Checkpoints are stored in .wrangler/state/v3/migrations/ — only unprocessed rows are re-migrated.

D1 Remote Modes: How Cloudflare D1 Balances Security and DX

zintrust Zin — Mon, 02 Mar 2026 15:49:38 +0000

Ever wondered how to connect securely to Cloudflare D1 while maintaining a good developer experience? The D1RemoteAdapter implements a clever dual-mode approach that automatically adapts to your environment.

🛡️ Registry Mode: Production Security

In production, the adapter uses registry mode - a security-first approach:

// No raw SQL ever leaves your application
const result = await d1.query('SELECT * FROM users');
// Becomes: POST /zin/d1/statement { statementId: "abc123...", params: [] }

The system hashes your SQL and looks it up in a pre-approved allowlist. This means:

✅ Zero SQL Injection Risk at the network level
✅ Maximum Security even with compromised credentials
❌ Higher friction for query changes

🔧 SQL Mode: Developer Experience

In development, you get SQL mode for maximum flexibility:

// Raw SQL sent directly
const result = await d1.query('SELECT * FROM users WHERE id = ?', [userId]);
// Becomes: POST /zin/d1/query "SELECT * FROM users WHERE id = ?"

Benefits:

✅ Zero friction - write code, run immediately
✅ Migration friendly - dynamic SQL works perfectly
✅ Rapid iteration - no configuration needed

🎯 Smart Auto-Detection

The adapter automatically chooses the right mode:

Environment	Mode	Why
Production	Registry	Security first
Development	SQL	DX first
Test	SQL	Flexibility first

🚀 Why This Design Matters

This dual-mode approach solves a real problem: production apps need security, dev apps need flexibility. Instead of forcing you to choose one or the other, you get both automatically.

The registry mode's allowlist system is particularly clever - it prevents network-level SQL injection while still allowing your application to work normally. Even if attackers steal your API keys, they're limited to queries you've explicitly approved.

For anyone building production apps with D1, this pattern provides enterprise-grade security without sacrificing developer productivity.

Cloudflare #D1 #DatabaseSecurity #NodeJS #TypeScript #WebDev

ZinTrust: a TypeScript backend framework for structure without decorators

zintrust Zin — Wed, 07 Jan 2026 08:22:44 +0000

ZinTrust: structure without the ceremony (and without decorators)

If you’ve built TypeScript APIs for a while, you’ve probably felt the pull in two directions:

Super flexible stacks where structure can drift over time.
Highly opinionated frameworks where decorators/DI patterns can feel heavy (depending on your team).

I wanted a middle ground—clear structure, explicit wiring, and a minimal core.

So I’ve been building ZinTrust: a production-grade TypeScript backend framework with no Express/Fastify as the core, plus adapters you add when you need them.

Docs: https://zintrust.com
Repo: https://github.com/ZinTrust/ZinTrust
X: https://x.com/zintrustjs

What “minimal core” means (in practice)

For me it’s about:

Explicit wiring you can trace when debugging.
Composability (add what you need; avoid pulling in the world by default).
Type-first ergonomics without leaning on magic.

A tiny routing example

Here’s the style of routing / grouping:

import { Router, type IRouter } from '@zintrust/core';

export function registerRoutes(router: IRouter): void {
  Router.group(router, '/api/v1', (r) => {
    Router.resource(r, '/users', { index, show, store, update, destroy });
  });
}

Quickstart

If you want to kick the tires quickly:

npm i -g @zintrust/core
zin new my-app
cd my-app
zin start

The feedback I want (seriously)

This is the phase where docs and onboarding matter more than “features”. If you try it, I’d love blunt feedback on:

Where do you get stuck in the quickstart?
Which concepts feel unclear (routing, structure, ORM, config, etc.)?
What would make you confident this is production-ready?

Reply here, open an issue, or join the community:

If you only look at one thing

If you only have 2 minutes, check the docs and tell me what’s confusing:

https://zintrust.com

Thanks for reading—and if you try it, thank you even more for the critique.