Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

That's right! Under the hood we're doing the same thing when a UDF function is created so its still language agnostic, but for python it offers much nicer and needed wrapper - designed for actual users and not for showcase. If this will translate just as well to other chdb bindings (go, rust, node, bun, etc) allowing them to attach native functions, UDF might become a major force for chdb adoption.


The embedded db is cool, but what's the security boundary around UDFs?

I figure running "standard" SQL is safe, because it's just some functions implemented in the database (SPJ). It's not malware (maybe only slow ;-)). But UDFs that could be python or worse risk a binary are more of an open ended danger.


I think in this case as it's an embedded database the security of the DB equals the security of the app, so no issues here.

In stabdalone ClickHouse users can't define UDFs themselves, they need to be installed on the server.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: