feat: update SQL query execution to use text() for improved safety and consistency

src/services/_data_extractor.py

@@ -12,7 +12,7 @@ from src.entities import (
 )
 from src.configs import DatabaseConfig
 from src.utils import PydanticAgent, ChromaClient
-from sqlalchemy import inspect
+from sqlalchemy import inspect, text
 
 
 class DataExtractorService:
@@ -61,7 +61,7 @@ class DataExtractorService:
     async def _get_data(self, sql_query: str):
         try:
             async with DatabaseConfig.async_session() as session:
-                result = await session.execute(sql_query)
+                result = await session.execute(text(sql_query))
                 return result.mapping().all()
         except Exception as e:
             raise e

src/utils/_pydantic_agent.py

@@ -7,6 +7,8 @@ from src.configs import DatabaseConfig
 from src.schemas import SQLQueryExtractor, Message
 from src.prompts import SQL_QUERY_EXTRACTOR_PROMPT
 
+from sqlalchemy import text
+
 import os
 
 
@@ -55,7 +57,7 @@ class PydanticAgent:
                     f"SQL query contains a destructive operation: {sql_query}. Only SELECT queries are allowed."
                 )
             async with DatabaseConfig.async_session() as session:
-                await session.execute(sql_query)
+                await session.execute(text(sql_query))
         except Exception as e:
             raise e
         return True