safeupdate

Require criteria for UPDATE and DELETE

Overview

Package	Version	Category	License	Language
`safeupdate`	`1.5`	ADMIN	ISC	C

ID	Extension	Bin	Lib	Load	Create	Trust	Reloc	Schema
5820	`safeupdate`	No	Yes	Yes	No	No	No	-

Related	`pg_readonly` `pg_upless` `pg_savior` `pg_permissions` `pgaudit` `set_user` `login_hook` `noset`

Version

Type	Repo	Version	PG Ver	Package	Deps
EXT	PGDG	`1.5`	1817161514	`safeupdate`	-
RPM	PGDG	`1.5`	1817161514	`safeupdate_$v`	-
DEB	PIGSTY	`1.5`	1817161514	`postgresql-$v-pg-safeupdate`	-

OS / PG	PG18	PG17	PG16	PG15	PG14
el8.x86_64	PGDG 1.5 el8.x86_64.pg18 : safeupdate_18 safeupdate_18-1.5-2PGDG.rhel8.x86_64.rpm PGDG · 1.5 · 13.4KiB	PGDG 1.5 el8.x86_64.pg17 : safeupdate_17 safeupdate_17-1.5-1PGDG.rhel8.x86_64.rpm PGDG · 1.5 · 13.3KiB	PGDG 1.5 el8.x86_64.pg16 : safeupdate_16 safeupdate_16-1.5-1PGDG.rhel8.x86_64.rpm PGDG · 1.5 · 13.3KiB safeupdate_16-1.4.2-2PGDG.rhel8.x86_64.rpm PGDG · 1.4.2 · 13.4KiB	PGDG 1.5 el8.x86_64.pg15 : safeupdate_15 safeupdate_15-1.5-1PGDG.rhel8.x86_64.rpm PGDG · 1.5 · 13.3KiB safeupdate_15-1.4-1.rhel8.x86_64.rpm PGDG · 1.4 · 17.8KiB	PGDG 1.5 el8.x86_64.pg14 : safeupdate_14 safeupdate_14-1.5-1PGDG.rhel8.x86_64.rpm PGDG · 1.5 · 13.3KiB safeupdate_14-1.4-1.rhel8.x86_64.rpm PGDG · 1.4 · 18.3KiB
el8.aarch64	PGDG 1.5 el8.aarch64.pg18 : safeupdate_18 safeupdate_18-1.5-2PGDG.rhel8.aarch64.rpm PGDG · 1.5 · 13.4KiB	PGDG 1.5 el8.aarch64.pg17 : safeupdate_17 safeupdate_17-1.5-1PGDG.rhel8.aarch64.rpm PGDG · 1.5 · 13.3KiB	PGDG 1.5 el8.aarch64.pg16 : safeupdate_16 safeupdate_16-1.5-1PGDG.rhel8.aarch64.rpm PGDG · 1.5 · 13.3KiB safeupdate_16-1.4.2-2PGDG.rhel8.aarch64.rpm PGDG · 1.4.2 · 13.4KiB	PGDG 1.5 el8.aarch64.pg15 : safeupdate_15 safeupdate_15-1.5-1PGDG.rhel8.aarch64.rpm PGDG · 1.5 · 13.3KiB safeupdate_15-1.4.2-1.rhel8.aarch64.rpm PGDG · 1.4.2 · 13.3KiB safeupdate_15-1.4-1.rhel8.aarch64.rpm PGDG · 1.4 · 17.8KiB	PGDG 1.5 el8.aarch64.pg14 : safeupdate_14 safeupdate_14-1.5-1PGDG.rhel8.aarch64.rpm PGDG · 1.5 · 13.3KiB safeupdate_14-1.4.2-1.rhel8.aarch64.rpm PGDG · 1.4.2 · 13.2KiB safeupdate_14-1.4-1.rhel8.aarch64.rpm PGDG · 1.4 · 17.7KiB
el9.x86_64	PGDG 1.5 el9.x86_64.pg18 : safeupdate_18 safeupdate_18-1.5-2PGDG.rhel9.x86_64.rpm PGDG · 1.5 · 12.8KiB	PGDG 1.5 el9.x86_64.pg17 : safeupdate_17 safeupdate_17-1.5-1PGDG.rhel9.x86_64.rpm PGDG · 1.5 · 12.9KiB	PGDG 1.5 el9.x86_64.pg16 : safeupdate_16 safeupdate_16-1.5-1PGDG.rhel9.x86_64.rpm PGDG · 1.5 · 12.9KiB safeupdate_16-1.4.2-2PGDG.rhel9.x86_64.rpm PGDG · 1.4.2 · 12.9KiB	PGDG 1.5 el9.x86_64.pg15 : safeupdate_15 safeupdate_15-1.5-1PGDG.rhel9.x86_64.rpm PGDG · 1.5 · 12.9KiB safeupdate_15-1.4.2-1.rhel9.x86_64.rpm PGDG · 1.4.2 · 12.9KiB safeupdate_15-1.4-1.rhel9.x86_64.rpm PGDG · 1.4 · 17.9KiB	PGDG 1.5 el9.x86_64.pg14 : safeupdate_14 safeupdate_14-1.5-1PGDG.rhel9.x86_64.rpm PGDG · 1.5 · 12.9KiB safeupdate_14-1.4.2-1.rhel9.x86_64.rpm PGDG · 1.4.2 · 12.8KiB
el9.aarch64	PGDG 1.5 el9.aarch64.pg18 : safeupdate_18 safeupdate_18-1.5-2PGDG.rhel9.aarch64.rpm PGDG · 1.5 · 12.6KiB	PGDG 1.5 el9.aarch64.pg17 : safeupdate_17 safeupdate_17-1.5-1PGDG.rhel9.aarch64.rpm PGDG · 1.5 · 12.8KiB	PGDG 1.5 el9.aarch64.pg16 : safeupdate_16 safeupdate_16-1.5-1PGDG.rhel9.aarch64.rpm PGDG · 1.5 · 12.8KiB safeupdate_16-1.4.2-2PGDG.rhel9.aarch64.rpm PGDG · 1.4.2 · 12.6KiB	PGDG 1.5 el9.aarch64.pg15 : safeupdate_15 safeupdate_15-1.5-1PGDG.rhel9.aarch64.rpm PGDG · 1.5 · 12.8KiB safeupdate_15-1.4.2-1.rhel9.aarch64.rpm PGDG · 1.4.2 · 12.6KiB safeupdate_15-1.4-1.rhel9.aarch64.rpm PGDG · 1.4 · 17.7KiB	PGDG 1.5 el9.aarch64.pg14 : safeupdate_14 safeupdate_14-1.5-1PGDG.rhel9.aarch64.rpm PGDG · 1.5 · 12.8KiB safeupdate_14-1.4.2-1.rhel9.aarch64.rpm PGDG · 1.4.2 · 12.6KiB safeupdate_14-1.4-1.rhel9.aarch64.rpm PGDG · 1.4 · 17.6KiB
el10.x86_64	PGDG 1.5 el10.x86_64.pg18 : safeupdate_18 safeupdate_18-1.5-2PGDG.rhel10.x86_64.rpm PGDG · 1.5 · 13.2KiB	PGDG 1.5 el10.x86_64.pg17 : safeupdate_17 safeupdate_17-1.5-2PGDG.rhel10.x86_64.rpm PGDG · 1.5 · 13.2KiB	PGDG 1.5 el10.x86_64.pg16 : safeupdate_16 safeupdate_16-1.5-2PGDG.rhel10.x86_64.rpm PGDG · 1.5 · 13.2KiB	PGDG 1.5 el10.x86_64.pg15 : safeupdate_15 safeupdate_15-1.5-2PGDG.rhel10.x86_64.rpm PGDG · 1.5 · 13.3KiB	PGDG 1.5 el10.x86_64.pg14 : safeupdate_14 safeupdate_14-1.5-2PGDG.rhel10.x86_64.rpm PGDG · 1.5 · 13.3KiB
el10.aarch64	PGDG 1.5 el10.aarch64.pg18 : safeupdate_18 safeupdate_18-1.5-2PGDG.rhel10.aarch64.rpm PGDG · 1.5 · 13.2KiB	PGDG 1.5 el10.aarch64.pg17 : safeupdate_17 safeupdate_17-1.5-2PGDG.rhel10.aarch64.rpm PGDG · 1.5 · 13.2KiB	PGDG 1.5 el10.aarch64.pg16 : safeupdate_16 safeupdate_16-1.5-2PGDG.rhel10.aarch64.rpm PGDG · 1.5 · 13.2KiB	PGDG 1.5 el10.aarch64.pg15 : safeupdate_15 safeupdate_15-1.5-2PGDG.rhel10.aarch64.rpm PGDG · 1.5 · 13.3KiB	PGDG 1.5 el10.aarch64.pg14 : safeupdate_14 safeupdate_14-1.5-2PGDG.rhel10.aarch64.rpm PGDG · 1.5 · 13.3KiB
d12.x86_64	PIGSTY 1.5 d12.x86_64.pg18 : postgresql-18-pg-safeupdate postgresql-18-pg-safeupdate_1.5-2PIGSTY~bookworm_amd64.deb PIGSTY · 1.5 · 8.7KiB	PIGSTY 1.5 d12.x86_64.pg17 : postgresql-17-pg-safeupdate postgresql-17-pg-safeupdate_1.5-2PIGSTY~bookworm_amd64.deb PIGSTY · 1.5 · 8.7KiB	PIGSTY 1.5 d12.x86_64.pg16 : postgresql-16-pg-safeupdate postgresql-16-pg-safeupdate_1.5-2PIGSTY~bookworm_amd64.deb PIGSTY · 1.5 · 8.7KiB	PIGSTY 1.5 d12.x86_64.pg15 : postgresql-15-pg-safeupdate postgresql-15-pg-safeupdate_1.5-2PIGSTY~bookworm_amd64.deb PIGSTY · 1.5 · 8.7KiB	PIGSTY 1.5 d12.x86_64.pg14 : postgresql-14-pg-safeupdate postgresql-14-pg-safeupdate_1.5-2PIGSTY~bookworm_amd64.deb PIGSTY · 1.5 · 8.7KiB
d12.aarch64	PIGSTY 1.5 d12.aarch64.pg18 : postgresql-18-pg-safeupdate postgresql-18-pg-safeupdate_1.5-2PIGSTY~bookworm_arm64.deb PIGSTY · 1.5 · 8.8KiB	PIGSTY 1.5 d12.aarch64.pg17 : postgresql-17-pg-safeupdate postgresql-17-pg-safeupdate_1.5-2PIGSTY~bookworm_arm64.deb PIGSTY · 1.5 · 8.7KiB	PIGSTY 1.5 d12.aarch64.pg16 : postgresql-16-pg-safeupdate postgresql-16-pg-safeupdate_1.5-2PIGSTY~bookworm_arm64.deb PIGSTY · 1.5 · 8.7KiB	PIGSTY 1.5 d12.aarch64.pg15 : postgresql-15-pg-safeupdate postgresql-15-pg-safeupdate_1.5-2PIGSTY~bookworm_arm64.deb PIGSTY · 1.5 · 8.7KiB	PIGSTY 1.5 d12.aarch64.pg14 : postgresql-14-pg-safeupdate postgresql-14-pg-safeupdate_1.5-2PIGSTY~bookworm_arm64.deb PIGSTY · 1.5 · 8.7KiB
d13.x86_64	PIGSTY 1.5 d13.x86_64.pg18 : postgresql-18-pg-safeupdate postgresql-18-pg-safeupdate_1.5-2PIGSTY~trixie_amd64.deb PIGSTY · 1.5 · 8.7KiB	PIGSTY 1.5 d13.x86_64.pg17 : postgresql-17-pg-safeupdate postgresql-17-pg-safeupdate_1.5-2PIGSTY~trixie_amd64.deb PIGSTY · 1.5 · 8.7KiB	PIGSTY 1.5 d13.x86_64.pg16 : postgresql-16-pg-safeupdate postgresql-16-pg-safeupdate_1.5-2PIGSTY~trixie_amd64.deb PIGSTY · 1.5 · 8.7KiB	PIGSTY 1.5 d13.x86_64.pg15 : postgresql-15-pg-safeupdate postgresql-15-pg-safeupdate_1.5-2PIGSTY~trixie_amd64.deb PIGSTY · 1.5 · 8.7KiB	PIGSTY 1.5 d13.x86_64.pg14 : postgresql-14-pg-safeupdate postgresql-14-pg-safeupdate_1.5-2PIGSTY~trixie_amd64.deb PIGSTY · 1.5 · 8.7KiB
d13.aarch64	PIGSTY 1.5 d13.aarch64.pg18 : postgresql-18-pg-safeupdate postgresql-18-pg-safeupdate_1.5-2PIGSTY~trixie_arm64.deb PIGSTY · 1.5 · 8.8KiB	PIGSTY 1.5 d13.aarch64.pg17 : postgresql-17-pg-safeupdate postgresql-17-pg-safeupdate_1.5-2PIGSTY~trixie_arm64.deb PIGSTY · 1.5 · 8.8KiB	PIGSTY 1.5 d13.aarch64.pg16 : postgresql-16-pg-safeupdate postgresql-16-pg-safeupdate_1.5-2PIGSTY~trixie_arm64.deb PIGSTY · 1.5 · 8.8KiB	PIGSTY 1.5 d13.aarch64.pg15 : postgresql-15-pg-safeupdate postgresql-15-pg-safeupdate_1.5-2PIGSTY~trixie_arm64.deb PIGSTY · 1.5 · 8.8KiB	PIGSTY 1.5 d13.aarch64.pg14 : postgresql-14-pg-safeupdate postgresql-14-pg-safeupdate_1.5-2PIGSTY~trixie_arm64.deb PIGSTY · 1.5 · 8.8KiB
u22.x86_64	PIGSTY 1.5 u22.x86_64.pg18 : postgresql-18-pg-safeupdate postgresql-18-pg-safeupdate_1.5-2PIGSTY~jammy_amd64.deb PIGSTY · 1.5 · 8.8KiB	PIGSTY 1.5 u22.x86_64.pg17 : postgresql-17-pg-safeupdate postgresql-17-pg-safeupdate_1.5-2PIGSTY~jammy_amd64.deb PIGSTY · 1.5 · 9.4KiB	PIGSTY 1.5 u22.x86_64.pg16 : postgresql-16-pg-safeupdate postgresql-16-pg-safeupdate_1.5-2PIGSTY~jammy_amd64.deb PIGSTY · 1.5 · 9.4KiB	PIGSTY 1.5 u22.x86_64.pg15 : postgresql-15-pg-safeupdate postgresql-15-pg-safeupdate_1.5-2PIGSTY~jammy_amd64.deb PIGSTY · 1.5 · 9.4KiB	PIGSTY 1.5 u22.x86_64.pg14 : postgresql-14-pg-safeupdate postgresql-14-pg-safeupdate_1.5-2PIGSTY~jammy_amd64.deb PIGSTY · 1.5 · 9.3KiB
u22.aarch64	PIGSTY 1.5 u22.aarch64.pg18 : postgresql-18-pg-safeupdate postgresql-18-pg-safeupdate_1.5-2PIGSTY~jammy_arm64.deb PIGSTY · 1.5 · 8.9KiB	PIGSTY 1.5 u22.aarch64.pg17 : postgresql-17-pg-safeupdate postgresql-17-pg-safeupdate_1.5-2PIGSTY~jammy_arm64.deb PIGSTY · 1.5 · 9.5KiB	PIGSTY 1.5 u22.aarch64.pg16 : postgresql-16-pg-safeupdate postgresql-16-pg-safeupdate_1.5-2PIGSTY~jammy_arm64.deb PIGSTY · 1.5 · 9.5KiB	PIGSTY 1.5 u22.aarch64.pg15 : postgresql-15-pg-safeupdate postgresql-15-pg-safeupdate_1.5-2PIGSTY~jammy_arm64.deb PIGSTY · 1.5 · 9.5KiB	PIGSTY 1.5 u22.aarch64.pg14 : postgresql-14-pg-safeupdate postgresql-14-pg-safeupdate_1.5-2PIGSTY~jammy_arm64.deb PIGSTY · 1.5 · 9.5KiB
u24.x86_64	PIGSTY 1.5 u24.x86_64.pg18 : postgresql-18-pg-safeupdate postgresql-18-pg-safeupdate_1.5-2PIGSTY~noble_amd64.deb PIGSTY · 1.5 · 9.0KiB	PIGSTY 1.5 u24.x86_64.pg17 : postgresql-17-pg-safeupdate postgresql-17-pg-safeupdate_1.5-2PIGSTY~noble_amd64.deb PIGSTY · 1.5 · 8.9KiB	PIGSTY 1.5 u24.x86_64.pg16 : postgresql-16-pg-safeupdate postgresql-16-pg-safeupdate_1.5-2PIGSTY~noble_amd64.deb PIGSTY · 1.5 · 8.9KiB	PIGSTY 1.5 u24.x86_64.pg15 : postgresql-15-pg-safeupdate postgresql-15-pg-safeupdate_1.5-2PIGSTY~noble_amd64.deb PIGSTY · 1.5 · 8.9KiB	PIGSTY 1.5 u24.x86_64.pg14 : postgresql-14-pg-safeupdate postgresql-14-pg-safeupdate_1.5-2PIGSTY~noble_amd64.deb PIGSTY · 1.5 · 8.9KiB
u24.aarch64	PIGSTY 1.5 u24.aarch64.pg18 : postgresql-18-pg-safeupdate postgresql-18-pg-safeupdate_1.5-2PIGSTY~noble_arm64.deb PIGSTY · 1.5 · 9.0KiB	PIGSTY 1.5 u24.aarch64.pg17 : postgresql-17-pg-safeupdate postgresql-17-pg-safeupdate_1.5-2PIGSTY~noble_arm64.deb PIGSTY · 1.5 · 9.0KiB	PIGSTY 1.5 u24.aarch64.pg16 : postgresql-16-pg-safeupdate postgresql-16-pg-safeupdate_1.5-2PIGSTY~noble_arm64.deb PIGSTY · 1.5 · 8.9KiB	PIGSTY 1.5 u24.aarch64.pg15 : postgresql-15-pg-safeupdate postgresql-15-pg-safeupdate_1.5-2PIGSTY~noble_arm64.deb PIGSTY · 1.5 · 8.9KiB	PIGSTY 1.5 u24.aarch64.pg14 : postgresql-14-pg-safeupdate postgresql-14-pg-safeupdate_1.5-2PIGSTY~noble_arm64.deb PIGSTY · 1.5 · 8.9KiB

Build

You can build the DEB packages for safeupdate using pig build:

pig build pkg safeupdate         # build DEB packages

Install

You can install safeupdate directly. First, make sure the PGDG repository is added and enabled:

pig repo add pgdg -u          # Add PGDG repo and update cache

Install the extension using pig or apt/yum/dnf:

pig install safeupdate;          # Install for current active PG version

pig ext install -y safeupdate -v 18  # PG 18
pig ext install -y safeupdate -v 17  # PG 17
pig ext install -y safeupdate -v 16  # PG 16
pig ext install -y safeupdate -v 15  # PG 15
pig ext install -y safeupdate -v 14  # PG 14

dnf install -y safeupdate_18       # PG 18
dnf install -y safeupdate_17       # PG 17
dnf install -y safeupdate_16       # PG 16
dnf install -y safeupdate_15       # PG 15
dnf install -y safeupdate_14       # PG 14

apt install -y postgresql-18-pg-safeupdate   # PG 18
apt install -y postgresql-17-pg-safeupdate   # PG 17
apt install -y postgresql-16-pg-safeupdate   # PG 16
apt install -y postgresql-15-pg-safeupdate   # PG 15
apt install -y postgresql-14-pg-safeupdate   # PG 14

Preload:

shared_preload_libraries = 'safeupdate';

Usage

safeupdate: Require criteria for UPDATE and DELETE

The safeupdate extension prevents accidental mass data changes by raising an error whenever UPDATE or DELETE statements are executed without a WHERE clause.

Activation

-- Per-session
LOAD 'safeupdate';

-- Per-database (persistent)
ALTER DATABASE mydb SET session_preload_libraries = 'safeupdate';

-- Global (all databases, requires restart)
-- shared_preload_libraries = 'safeupdate'   -- in postgresql.conf

Behavior

-- Blocked: UPDATE without WHERE
UPDATE rack SET fan_speed = 70;
-- ERROR: UPDATE requires a WHERE clause

-- Blocked: DELETE without WHERE
DELETE FROM rack;
-- ERROR: DELETE requires a WHERE clause

-- Allowed: with WHERE clause
UPDATE rack SET fan_speed = 90 WHERE fan_speed = 70;

-- Workaround: explicit always-true condition
UPDATE rack SET fan_speed = 90 WHERE 1 = 1;

Administrative Override

-- Temporarily disable protection in current session
SET safeupdate.enabled = 0;

CTE-based modifications without WHERE conditions are also blocked. The extension is particularly useful with PostgREST or other systems that provide direct write access to the database.

Feedback

Was this page helpful?

Thanks for the feedback! Please let us know how we can improve.

Sorry to hear that. Please let us know how we can improve.

Last Modified 2026-03-12: add pg extension catalog (95749bf)