Block the executeRaw, queryRawUnsafe and executeRawUnsafe in readonly-client. (#37)

* Block executeRaw,queryRawUnsafe and executeRawUnsafe in readonly-client.

* Applied suggestion, replaced `any` with `unknown`.

* Mark `$runCommandRaw` as unsafe.

* Also mark createManyAndReturn as writeable.

Author: RubenNL

readonly-client/script.ts

@@ -6,10 +6,18 @@ const WRITE_METHODS = [
   "upsert",
   "delete",
   "createMany",
+  "createManyAndReturn",
   "updateMany",
   "deleteMany",
 ] as const;
 
+const GLOBAL_WRITE_METHODS = [
+    '$executeRaw',
+    '$queryRawUnsafe',
+    '$executeRawUnsafe',
+    '$runCommandRaw',
+] as const;
+
 const ReadonlyClient = Prisma.defineExtension({
   name: "ReadonlyClient",
   model: {
@@ -28,6 +36,15 @@ const ReadonlyClient = Prisma.defineExtension({
       ) => never;
     },
   },
+  query: Object.fromEntries(
+    GLOBAL_WRITE_METHODS.map((method) => [
+        method,
+        function (args: never) {
+          throw new Error(`Calling the \`${method}\` method on a readonly client is not allowed`);
+        }
+    ])) as {
+        [K in typeof GLOBAL_WRITE_METHODS[number]]: (args: `Calling the \`${K}\` method on a readonly client is not allowed`) => never;
+    }
 });
 
 const prisma = new PrismaClient();
@@ -44,6 +61,8 @@ async function main() {
   await readonlyPrisma.post.create({
     data: { title: "New post", published: false },
   });
+
+  await readonlyPrisma.$executeRaw`INSERT INTO post(id,title, published) VALUES(12345,'New post', false)`
 }
 
 main()