feat(database): add safety check for dangerous SQL operations

- Implement a SQL safety check to detect and prevent potentially harmful operations
- Add a list of dangerous SQL keywords (DELETE, DROP, TRUNCATE, etc.)
- Analyze SQL statements to identify any dangerous operations
- Return an error message if a dangerous operation is detected

Author: phodal

exts/ext-database/src/241/main/kotlin/cc/unitmesh/database/util/SQLExecutor.kt

@@ -25,11 +25,41 @@ import com.intellij.util.Consumer
 import java.util.concurrent.CompletableFuture
 
 object SQLExecutor {
+    private val DANGEROUS_OPERATIONS = setOf(
+        "DELETE",
+        "DROP",
+        "TRUNCATE",
+        "ALTER",
+        "GRANT",
+        "REVOKE"
+    )
+
+    private fun checkSqlSafety(project: Project, psiFile: com.intellij.psi.PsiFile): Pair<Boolean, String> {
+        val sqlFile = psiFile as? com.intellij.sql.psi.SqlFile ?: return Pair(true, "Not a SQL file")
+        val statements = sqlFile.ddl
+
+        for (statement in statements) {
+            val firstChild = statement.firstChild
+            val operation = firstChild?.text?.uppercase() ?: continue
+            
+            if (DANGEROUS_OPERATIONS.any { operation.contains(it) }) {
+                return Pair(true, "Dangerous operation detected: $operation. Please confirm this operation.")
+            }
+        }
+
+        return Pair(false, "")
+    }
+
     fun executeSqlQuery(project: Project, sql: String): String {
         val file = LightVirtualFile("temp.sql", sql)
         val psiFile = runReadAction { PsiManager.getInstance(project).findFile(file) }
             ?: return "ShireError[Database]: Can't find PSI file"
 
+        val (isDangerous, reason) = checkSqlSafety(project, psiFile)
+        if (isDangerous) {
+            return "ShireError[Database]: $reason"
+        }
+
         val dataSource = DatabaseSchemaAssistant.allRawDatasource(project).firstOrNull()
             ?: throw IllegalArgumentException("ShireError[Database]: No database found")