CreateTableMustHaveIFNOTEXIST is a regex custom policy check that requires every CREATE TABLE statement to use IF NOT EXISTS syntax. All Regex Custom Policy Checks can only run against the changelog, not against the database.

CreateTableMustHaveSystemKeyFile is a custom policy check that requires every CREATE TABLE statement to also have a system_key_file. All Regex Custom Policy Checks can only run against the changelog, not against the database.

The DynamoDeleteDynamoTableCheck changelog check triggers when a XML, YAML, or JSON changeset contains the Dynamo-specific change type.

Alerts when changesets try to remove Global Secondary Indexes from DynamoDB tables, helping verify that deleting these indexes will not negatively impact query performance or break application functionality that depends on these alternative access patterns for retrieving DynamoDB data.

The DynamoChangetypeAttributes changelog check validates whether a specified attribute of a Dynamo changetype is set to an exact value or pattern.

CannotModifyUsersOrRoles is a custom policy check that prevents the following statements from occurring for users and roles:

The PreventLockingColumnOrIndex custom policy check mandates that ADD COLUMN and ADD INDEX execute online, rather than locally. This prevents the database from locking specific objects while other database tasks are in progress.

mongoCrCollectionValidatorChk is a custom policy check that requires every db.createCollection statement to include a validator definition statement.

mongoCreateIdxWarning is a custom policy check that warns every time a db.<collection>.createIndex MongoSH change includes a create index statement.

mongoNoDeleteMany is a custom policy check that does not allow deleteMany() statements.

mongoNoDropCollection is a custom policy check that does not allow drop() statements.

mongoNoDropIndex is a custom policy check that prevents dropIndex() statements from occurring.

mongoNoMergeAggregation is a custom policy check that prevents $merge(aggregation) statements from occurring.

mongoNoRenameCollection is a custom policy check that prevents renameCollection() statements from occurring.

mongoNoUpdateMany is a custom policy check that prevents updateMany() statements from occurring.

CreateTableMustHaveOneGrant is a custom policy check that requires every CREATE TABLE statement to also have at least one GRANT included.

CreateTableMustHaveOnePartition is a custom policy check that requires every CREATE TABLE statement to also have at least one PARTITION included.

CreateTableNoCompressAdvance is a custom policy check that prevents the use of COMPRESS FOR in CREATE TABLE statements and only allows compress or compress basic statements.

CreateTableNoCompressFor is a custom policy check that prevents the use of COMPRESS FOR in CREATE TABLE statements and only allows compress or compress basic statements.

CreateTableWithCertainColumnRequiresSequence is a custom policy check that requires when a CREATE TABLE statement with a certain column such as SQLKEY exists, there must also be a CREATE SEQUENCE included.

CreateTableWithCertainColumnRequiresTrigger is a custom policy check that requires when a CREATE TABLE statement with a certain column such as SQLKEY exists, there must also be a CREATE OR REPLACE TRIGGER included.

ExecuteImmediateWarning is a custom policy check that warns you if any EXECUTE IMMEDIATE statements are detected.

NoAlterUser is a custom policy check that prevents the use of ALTER USER statements.

NoCreateRole is a custom policy check that prevents the use of CREATE ROLE statements.

NoCreateRole is a custom policy check that prevents the use of CREATE USER statements.

NoDBLinks is a custom policy check that prevents the use of database links, or the use of @ in SQL statements.

NoDeleteWithoutWhere is a custom policy check that requires every DELETE statement to also have a WHERE statement.

NoGrantAll is a custom policy check that does not allow ALL or ALL PRIVILEGES grants.

NoGrantsToPublic is a custom policy check that prevents the use of GRANT <Privilege Type> TO PUBLIC statements.

NoGrantsToSystem is a custom policy check that prevents the use of GRANT <Privilege Type> TO SYSTEM statements.

NoSystemSchemaChanges is a custom policy check that prevents changes to the SYSTEM schema.

CRQLabelRequired is a custom policy check that tells Liquibase all changesets must have a CRQ (change request) label assigned.

enumerationListContext is a custom policy check that tells Liquibase that if a context is provided, the context value must match a specified pattern. This is different from UserDefinedContextCheck because context is not required in this check.

MultipleCreateProceduresNotAllowed is a custom policy check that prevents Liquibase from including Multiple CREATE PROCEDURE statements in a changeset. All regex Custom Policy Checks are only scoped for the changelog.

MultipleCreateTablesNotAllowed is a custom policy check that prevents multiple CREATE TABLE statements from occurring in a Liquibase Secure changeset.

MultipleDropsNotAllowed is a custom policy check that tells Liquibase multiple DROP statements are not allowed in a Changeset.

MultipleGrantsNotAllowed is a custom policy check that does not allow Multiple GRANT statements in a Liquibase Secure changeset.

NoDataDmlStatements is a custom policy check that does not allow DATA DML statements.

The NoDbclString custom policy check prevents any uppercase or lowercase variations of the string databasechangelog from appearing outside of comments.

The NoSelect Custom Policy Checks prevents SELECT * statements from appearing in your Liquibase Secure changelog.

The NoSelect Custom Policy Checks prevents SELECT statements from appearing in your Liquibase Secure changelog.

The OnlySpecificSchemasAllowed custom policy check allows you to filter what specific schemas are allowed.

All changesets in the Tables folder must have CREATE TABLE statement only.

TablesMustHavePkOrBeNamedNpk is a custom policy check that finds tables that have a Primary Key AND contain NPK in their name.

UppercaseTableNames is a custom policy check that looks for table names that are uppercase. If Liquibase Secure detects a table that is not uppercase, it will return the code set in step 3.

viewsMustHaveCreateReplaceViewOnly is a custom policy check that requires all changesets in the Views folder to have a CREATE OR REPLACE VIEW statement. regex: (?is)^((?!create\s*or\s*replace\s*view).)*$ path_filter_regex: Views\/.*

The CreateObjectCheck is a custom policy check that requires Create Object statements to either be Create Or Replace Object or Create Object If Not Exists.

CreateTableMustHaveDataRetention is a custom policy check that requires CREATE TABLE statements to include parameters for DATA_RETENTION_TIME_IN_DAYS.

NoUseDatabase is a custom policy check that does not allow USE DATABASE statements.

DoNotUseQaOrProdDatabases is a custom policy check that prevents the use of *_QA or *_PROD databases when deployment is restricted to *_DEV database only.

CreateProcedureMustHaveGrantExecute is a custom policy check that requires every CREATE PROCEDURE statement to follow GRANT EXECUTE statements for the same procedure.

CreateTableMustHavePrimaryKey is a custom policy check that requires every CREATE TABLE statement to also have a PRIMARY KEY.

NoAlterIndex is a custom policy check that requires every ALTER INDEX statement to be flagged.

NoAlterProcedure is a custom policy check that requires every ALTER PROCEDURE statement to be flagged.

NoAlterProcedure is a custom policy check that requires every ALTER TABLE statement to be flagged.

NoBulkInsert is a custom policy check that prevents the use of BULK INSERT statements.

NoCreateTable is a custom policy check that prevents the use of CREATE TABLE statements except when creating temporary tables.

NoCursor is a custom policy check that prevents the use of CURSOR statements.

NoDataDmlStatements is a custom policy check that prevents the use of DELETE FROM statements.

NoDeleteWithoutWhere is a custom policy check that requires every DELETE statement to also have a WHERE statement.

NoExecute is a custom policy check that prevents the use of EXEC or EXECUTE statements.

NoGrantExceptGrantExecute is a custom policy check that only allows GRANT EXECUTE statements and does not allow other GRANT statements.

NoGrantWithGrantOption is a custom policy check that prevents the use of GRANT ... WITH GRANT OPTION statements.

NoOpenDataSource is a custom policy check that prevents the use of OPENDATASOURCE statements.

NoOpenRowSet is a custom policy check that does not allow OPENROWSET statements.

OnlyTempTableDropAllowed is a custom policy check that only allows DROP TABLE statements when dropping temporary tables.