Introducing Duck-UI 0.0.32: A Streamlined Web Interface for DuckDB

Caio Ricciuti — Sat, 28 Feb 2026 12:47:00 +0000

In the evolving landscape of data analytics, the ability to efficiently interact with databases is paramount. Enter Duck-UI, a powerful web-based interface designed specifically for DuckDB, a high-performance analytical database system. With the recent release of version 0.0.32, Duck-UI introduces a suite of enhancements that streamline user experience while bolstering security and performance. Let's dive into what's new and how it can transform your data interaction processes.

What is Duck-UI?

Duck-UI is a sophisticated user interface that leverages DuckDB's WebAssembly (WASM) capabilities, allowing users to execute complex SQL queries directly from the web browser. Whether you're a data scientist, developer, or business analyst, Duck-UI sets out to make data manipulation accessible and user-friendly.

Key Features of Duck-UI

The updated Duck-UI retains its core features while adding new functionalities:

SQL Editor: An intuitive environment to write and execute SQL queries with syntax highlighting and auto-completion for enhanced productivity.
Data Import/Export: Seamlessly import data from various formats like CSV, JSON, Parquet, and Arrow files.
Data Explorer: A robust node structure to navigate through databases and tables.
Query History: Easy access to execute and manage your previous SQL queries.
Theme Toggle and Keyboard Shortcuts: Personalized usability that caters to your workflow.

Major Updates in Version 0.0.32

Code Refactor and Readability: A significant refactoring has improved the codebase's readability by fine-tuning the handling of multi-line queries and string formatting. Clearer code not only aids maintainability but also sets the stage for future enhancements.
Enhanced SQL Sanitization: Security is paramount, especially when it comes to database interactions. The introduction of two key functions, sqlEscapeString and sqlEscapeIdentifier, fortifies SQL queries against injection attacks. This enhancement ensures that inputs are sanitized effectively, making your database interactions safer.

For instance:

   const safeString = sqlEscapeString(userInput);
   const safeIdentifier = sqlEscapeIdentifier(userTable);

The new schemaFetcher and wasmConnection implementations also utilize these sanitization functions, further reinforcing security throughout the application.

Refactoring Persistence Repositories: The persistence repositories including aiConfig, connection, profile, and others, now utilize sqlQuote for constructing safer SQL statements.
Improved Error Handling: Error management has been enhanced in crypto.ts concerning IndexedDB transactions, providing more robust feedback when issues arise during data handling.
Auto-save Functionality: The auto-save feature has been optimized to prevent duplicate subscriptions, ensuring a smoother user experience and reducing the chances of data loss while working on queries.
Transaction Management: The addition of transaction management in profileRepository allows for cascading deletes, ensuring data integrity and control over complex operations.
Updated Vite Configuration: Enhancements in the Vite configuration restrict the exposure of environment variables, minimizing security risks during application deployment.

Getting Started with Duck-UI

Getting started with Duck-UI is simple, thanks to the dockerized deployment method. Here’s how you can run Duck-UI in your local environment:

Installing via Docker

docker run -p 5522:5522 ghcr.io/caioricciuti/duck-ui:latest

Just navigate to http://localhost:5522 in your web browser, and you're all set! For those needing external connections, the setup can be customized with environment variables as shown below:

docker run -p 5522:5522 \
  -e DUCK_UI_EXTERNAL_CONNECTION_NAME="My DuckDB Server" \
  -e DUCK_UI_EXTERNAL_HOST="http://duckdb-server" \
  -e DUCK_UI_EXTERNAL_PORT="8000" \
  -e DUCK_UI_EXTERNAL_USER="username" \
  -e DUCK_UI_EXTERNAL_PASS="password" \
  -e DUCK_UI_EXTERNAL_DATABASE_NAME="my_database" \
  -e DUCK_UI_ALLOW_UNSIGNED_EXTENSIONS="true" \
  ghcr.io/caioricciuti/duck-ui:latest

These options make Duck-UI highly adaptable, allowing users to work with their specific database environments effectively.

Conclusion

With version 0.0.32, Duck-UI has taken significant strides to enhance usability, security, and performance. For developers and analysts alike, it presents an invaluable tool for interacting with DuckDB. If you're intrigued by the features or want to see them in action, check out the official documentation or explore the live demo. Join the community and take control of your data analytics with Duck-UI!