Introduce wp db users command for user management

[Copilot]

Implementation Plan

• Analyze repository structure and existing commands
• Create DB_Users_Command class with create subcommand
• Add MySQL user creation with privileges
• Update db-command.php to register the new command
• Update composer.json with new command
• Create Behat feature tests
• Fix code style and static analysis issues
• Refactor to extend DB_Command for better code reuse
• Improve SQL escaping to prevent injection vulnerabilities
• Simplify code by removing unnecessary wrapper methods
• Pass all linting, code style, and static analysis checks
• Perform code review and security checks
• Make esc_sql_ident protected in parent class and use static calls
• Remove assert calls per review feedback
• Enhance SQL string escaping to handle all MySQL special characters

Summary

Implemented wp db users create command that allows database administrators to easily create MySQL user accounts with optional privileges on the WordPress database. The implementation extends DB_Command for consistency, follows WP-CLI patterns, and includes comprehensive tests. Latest changes remove assert() calls and improve SQL string escaping to follow MySQL's documented string literal escaping rules, handling special characters like null bytes, newlines, carriage returns, quotes, and control characters.

Original prompt

---

This section details on the original issue you should resolve

<issue_title>Introduce wp db users</issue_title>
<issue_description>One of the most common tasks database administrators need to do is create user accounts for applications with full privileges to the application's database. I propose that we make that super simple in wp-cli using syntax similar to:

wp db users create --user --host --pass --privilegeduser --privilegedpass

Name of the database user to create.
Hosts that are permitted to connect as .
New user's password.
Database user with sufficient privileges to execute the command.
Privileged user's password.

This create command could be augmented by including list, delete, etc.</issue_description>

Comments on the Issue (you are @copilot in this section)

@danielbachhuber I'm open to considering something like this, if someone would like to open a pull request for it.

• Fixes Introduce wp db users #138

---

💬 We'd love your input! Share your thoughts on Copilot coding agent in our 2 minute survey.

[codecov]

Codecov Report

❌ Patch coverage is 96.55172% with 1 line in your changes missing coverage. Please review.

Files with missing lines	Patch %	Lines
db-command.php	0.00%	1 Missing ⚠️

📢 Thoughts on this report? Let us know!

[Copilot]

Pull request overview

This PR introduces a new wp db users command to simplify database user management tasks, specifically adding the ability to create MySQL user accounts with optional privileges on the WordPress database.

Changes:

• Added DB_Users_Command class extending DB_Command with a create subcommand for creating MySQL users
• Modified DB_Command to make esc_sql_ident method protected for reuse in child classes
• Added comprehensive Behat feature tests covering various user creation scenarios

Reviewed changes

Copilot reviewed 6 out of 6 changed files in this pull request and generated 4 comments.

Show a summary per file

File	Description
src/DB_Users_Command.php	Implements the new DB_Users_Command class with create subcommand, SQL escaping methods, and user/privilege management
src/DB_Command.php	Changes visibility of esc_sql_ident from private to protected to allow child class access
phpcs.xml.dist	Excludes DB_Users_Command from WordPress prefix naming rule for consistency with DB_Command
features/db-users.feature	Adds comprehensive test scenarios for user creation with/without privileges and various configurations
db-command.php	Registers the new 'db users' command with WP-CLI
composer.json	Adds 'db users' and 'db users create' to the list of available commands

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

[swissspidy]

/gemini review

[gemini-code-assist]

Code Review

This pull request introduces a new wp db users create command for managing MySQL users, which is a valuable addition to WP-CLI's database management capabilities. The implementation is well-structured, extending the existing DB_Command and reusing its functionality where appropriate. Security has been carefully considered, with proper SQL escaping for user-provided identifiers and passwords. The new command is also well-tested with Behat scenarios covering various use cases. My review includes a couple of minor suggestions to improve code clarity by removing redundant PHPDoc comments. Overall, this is a high-quality contribution.

[gemini-code-assist]

These @var annotations are redundant. The self::esc_sql_ident() method's PHPDoc already specifies that it returns a string when a string is passed as an argument. Modern static analysis tools can infer the types of $username_escaped and $host_escaped correctly without these comments. Removing them will make the code cleaner.

[gemini-code-assist]

This @var annotation is redundant. The self::esc_sql_ident() method's PHPDoc already specifies that it returns a string when a string is passed as an argument. Static analysis tools can infer the type of $database_escaped correctly. Removing this comment will improve code clarity.