Skills libsql
install
source · Clone the upstream repo
git clone https://github.com/TerminalSkills/skills
Claude Code · Install into ~/.claude/skills/
T=$(mktemp -d) && git clone --depth=1 https://github.com/TerminalSkills/skills "$T" && mkdir -p ~/.claude/skills && cp -r "$T/skills/libsql" ~/.claude/skills/terminalskills-skills-libsql && rm -rf "$T"
manifest:
skills/libsql/SKILL.mdsafety · automated scan (medium risk)
This is a pattern-based risk scan, not a security review. Our crawler flagged:
- curl piped into shell
- makes HTTP requests (curl)
- references .env files
Always read a skill's source content before installing. Patterns alone don't mean the skill is malicious — but they warrant attention.
source content
libSQL
Overview
libSQL is a fork of SQLite that adds replication, HTTP API access, and embedded replicas. It is the database engine behind Turso. Use the
@libsql/clientInstallation
npm install @libsql/client # or bun add @libsql/client
Connection Modes
Local SQLite File
import { createClient } from "@libsql/client"; const db = createClient({ url: "file:local.db", });
In-Memory (testing)
const db = createClient({ url: ":memory:", });
Turso Cloud
const db = createClient({ url: process.env.TURSO_DATABASE_URL!, // libsql://your-db.turso.io authToken: process.env.TURSO_AUTH_TOKEN!, // Generated from Turso CLI });
Embedded Replica
Local SQLite file that syncs from a remote Turso database. Reads hit the local file (fast), writes go to the remote and sync back:
const db = createClient({ url: "file:local-replica.db", // Local replica path syncUrl: process.env.TURSO_DATABASE_URL!, // Remote Turso URL authToken: process.env.TURSO_AUTH_TOKEN!, syncInterval: 60, // Auto-sync every 60 seconds }); // Manual sync await db.sync();
HTTP Mode (Edge)
For edge environments where native SQLite bindings are not available:
const db = createClient({ url: process.env.TURSO_DATABASE_URL!, // Use https:// URL for HTTP mode authToken: process.env.TURSO_AUTH_TOKEN!, }); // @libsql/client automatically uses HTTP when a remote URL is provided
Basic Queries
import { createClient } from "@libsql/client"; const db = createClient({ url: "file:app.db" }); // Execute DDL await db.execute(` CREATE TABLE IF NOT EXISTS posts ( id INTEGER PRIMARY KEY AUTOINCREMENT, title TEXT NOT NULL, body TEXT, slug TEXT UNIQUE NOT NULL, created_at INTEGER DEFAULT (unixepoch()) ) `); // Insert await db.execute({ sql: "INSERT INTO posts (title, body, slug) VALUES (?, ?, ?)", args: ["Hello World", "First post content", "hello-world"], }); // Select all const result = await db.execute("SELECT * FROM posts ORDER BY created_at DESC"); console.log(result.rows); // Row[] console.log(result.columns); // string[] // Select with parameters const post = await db.execute({ sql: "SELECT * FROM posts WHERE slug = ?", args: ["hello-world"], }); console.log(post.rows[0]); // First row // Update await db.execute({ sql: "UPDATE posts SET title = ? WHERE id = ?", args: ["Updated Title", 1], }); // Delete await db.execute({ sql: "DELETE FROM posts WHERE id = ?", args: [1], });
Batch Queries
Execute multiple statements in a single round trip:
// All statements in a batch run atomically (like a transaction) const results = await db.batch([ { sql: "INSERT INTO posts (title, slug) VALUES (?, ?)", args: ["Post 1", "post-1"], }, { sql: "INSERT INTO posts (title, slug) VALUES (?, ?)", args: ["Post 2", "post-2"], }, "SELECT COUNT(*) as total FROM posts", ]); console.log(results[2].rows[0]); // { total: 2 }
Transactions
import { createClient } from "@libsql/client"; const db = createClient({ url: "file:app.db" }); // Interactive transaction const tx = await db.transaction("write"); try { await tx.execute({ sql: "INSERT INTO accounts (user_id, balance) VALUES (?, ?)", args: [1, 1000], }); await tx.execute({ sql: "INSERT INTO accounts (user_id, balance) VALUES (?, ?)", args: [2, 500], }); // Transfer await tx.execute({ sql: "UPDATE accounts SET balance = balance - ? WHERE user_id = ?", args: [100, 1], }); await tx.execute({ sql: "UPDATE accounts SET balance = balance + ? WHERE user_id = ?", args: [100, 2], }); await tx.commit(); console.log("Transfer complete"); } catch (err) { await tx.rollback(); console.error("Transfer failed:", err); }
Transaction modes:
— read-write transaction"write"
— read-only transaction (faster on replicas)"read"
— SQLite deferred transaction"deferred"
Result Row Access
const result = await db.execute("SELECT id, title, created_at FROM posts"); // Access by column name for (const row of result.rows) { console.log(row.id, row.title, row.created_at); } // Column metadata console.log(result.columns); // ["id", "title", "created_at"] // Last insert ID const insert = await db.execute({ sql: "INSERT INTO posts (title, slug) VALUES (?, ?)", args: ["New Post", "new-post"], }); console.log(insert.lastInsertRowid); // bigint console.log(insert.rowsAffected); // number
Setting Up Turso
# Install Turso CLI curl -sSfL https://get.tur.so/install.sh | bash # Login turso auth login # Create database turso db create my-app-db # Get connection URL turso db show my-app-db --url # → libsql://my-app-db-yourname.turso.io # Create auth token turso db tokens create my-app-db # → eyJhbGciOi... # List databases turso db list # Open shell turso db shell my-app-db
Environment Setup
# .env TURSO_DATABASE_URL=libsql://my-app-db-yourname.turso.io TURSO_AUTH_TOKEN=eyJhbGciOiJFZERTQSIsInR5cCI6IkpXVCJ9...
// src/db.ts — singleton client import { createClient } from "@libsql/client"; if (!process.env.TURSO_DATABASE_URL) { throw new Error("TURSO_DATABASE_URL is required"); } export const db = createClient({ url: process.env.TURSO_DATABASE_URL, authToken: process.env.TURSO_AUTH_TOKEN, });
Full Example: Blog API
import { createClient } from "@libsql/client"; const db = createClient({ url: process.env.TURSO_DATABASE_URL!, authToken: process.env.TURSO_AUTH_TOKEN!, }); // Initialize schema await db.execute(` CREATE TABLE IF NOT EXISTS posts ( id INTEGER PRIMARY KEY AUTOINCREMENT, title TEXT NOT NULL, slug TEXT UNIQUE NOT NULL, body TEXT NOT NULL DEFAULT '', published INTEGER NOT NULL DEFAULT 0, created_at INTEGER NOT NULL DEFAULT (unixepoch()) ) `); // Create async function createPost(title: string, slug: string, body: string) { const result = await db.execute({ sql: "INSERT INTO posts (title, slug, body) VALUES (?, ?, ?) RETURNING *", args: [title, slug, body], }); return result.rows[0]; } // Read async function getPosts(publishedOnly = true) { const sql = publishedOnly ? "SELECT * FROM posts WHERE published = 1 ORDER BY created_at DESC" : "SELECT * FROM posts ORDER BY created_at DESC"; const result = await db.execute(sql); return result.rows; } // Update async function publishPost(id: number) { await db.execute({ sql: "UPDATE posts SET published = 1 WHERE id = ?", args: [id], }); } // Delete async function deletePost(id: number) { await db.execute({ sql: "DELETE FROM posts WHERE id = ?", args: [id], }); }
Guidelines
- Always use parameterized queries with
— never string-concatenate SQL.args - Use
for multiple related inserts/updates to reduce round trips.batch() - Prefer
for operations that must be atomic.transaction("write") - Use embedded replicas when you need fast reads and can tolerate eventual consistency.
- Call
manually after writes when using embedded replicas for immediate read consistency.db.sync() - Use
for tests — fast and isolated.":memory:" - Store
andTURSO_DATABASE_URL
in environment variables, never in code.TURSO_AUTH_TOKEN
is alastInsertRowid
— convert withbigint
when needed.Number()