Datasette Apps: Host custom HTML applications inside Datasette

Developer Tools
Data
Open Source
Security
AI

The post introduces a new Datasette feature that lets developers store and serve custom HTML applications inside Datasette itself. Datasette is an open source tool for publishing and exploring structured data, usually backed by SQLite, with a built-in web UI and API. The new idea is to let people attach lightweight interactive apps directly to that data layer, instead of standing up a separate frontend. Those apps run in a sandboxed iframe and talk to the underlying database through Datasette’s existing saved-query system, including a split between ordinary queries that respect the current viewer’s permissions and admin-defined “trusted” queries that can expose broader capabilities.

If you build data-heavy products, this points to a useful middle ground between static dashboards and full custom SaaS apps: ship small task-specific interfaces directly on top of a database. The thing to watch is governance, especially who can define write-capable queries and how much you trust browser sandboxing for user-authored app code.

June 19, 2026
simonwillison.net
Discuss on HN

Discussion mood

Positive and curious. People liked the idea of lightweight custom apps living next to data, saw it as aligned with a broader shift toward generated or bring-your-own interfaces, and appreciated that it fits self-hosted small-data use cases. The caution was mostly about security boundaries, write permissions, and whether storing app code inside the platform will be convenient enough without better Git and filesystem workflows.

Key insights

Custom UI on top of data is becoming table stakes

What stands out is not the specific implementation but the convergence. MotherDuck, Snowflake plus Streamlit, and agent-driven app builders are all circling the same product shape: users do not want a fixed dashboard anymore, they want a thin custom interface that can be generated fast and wrapped around existing data services. The important split is between rigid app builders and lower-level platforms that give you more freedom, because that choice will define whether these systems become real products or just polished demos.

If you sell a data product, assume customers will expect task-specific interfaces, not just charts and tables. Decide early whether you are building a tightly controlled app builder or a flexible substrate that other tools and agents can extend.

Attribution:

lmeyerov #1
rileyphone #1
skeeter2020 #1

Trusted queries are the real permission boundary

The saved-query model only works because there is a hard distinction between viewer-scoped queries and admin-configured trusted queries. Without that, any app author who can define writes can punch straight through the permission system. That makes query governance the core security control, not the HTML app wrapper.

Treat stored queries like privileged API endpoints. Put review, ownership, and audit around who can create trusted queries before you let non-engineers or agents build apps on top of them.

Attribution:

simonw #1

Sandboxing is practical but still defense in depth

The iframe plus srcdoc pattern is a workaround for a real deployment constraint. Datasette wants strong browser isolation without forcing every self-hosting user to provision a separate domain. That is sensible, but it also means the safety story depends on getting several browser mechanisms right at once. The sharpest pushback was that Content Security Policy is not a sandbox and becomes dangerous when people treat it like one. The useful framing is that the iframe sandbox does the heavy lifting and CSP is there to narrow the blast radius further.

If you copy this pattern, document your threat model and test direct-navigation and same-origin edge cases, not just the happy path inside the iframe. Do not market CSP as your main containment layer.

Attribution:

simonw #1 #2
cxr #1

App storage needs to meet normal developer workflows

Keeping app code beside the data is appealing until it collides with revision control. People immediately asked for filesystem-backed apps and Git-friendly editing because storing HTML only inside the running system feels awkward for teams that need code review, rollback, and reproducible deploys. The callback to CouchApps shows this is an old dream, and the same operational issue still decides whether the pattern sticks.

If you adopt embedded app models, make export, sync, and Git-backed workflows first-class from the start. Teams will reject a clever hosting model if it breaks their normal review and deployment habits.

Attribution:

anitil #1
simonw #1
ramses0 #1

Small data is a distinct product category

The strongest product framing was that many companies do not need enterprise BI at all. They need a narrow app over a manageable dataset, often small enough to fit on a phone or laptop, with curated views and simple filters. That sounds obvious, but it cuts against a lot of default buying behavior where teams reach for PowerBI-class tooling long before the problem requires it.

For internal tools and customer-facing analytics, check the actual data size and workflow complexity before committing to a heavyweight stack. A compact SQLite-centered app may be faster to ship and easier to maintain than a full BI deployment.

Attribution:

iLoveOncall #1
mpeg #1 #2
simonw #1

Against the grain

Basic table views are not enough

The harshest dissent was that simple HTML over SQLite has little value because users rarely want raw rows with sorting and filtering. In that view, serious analytics work quickly pulls you toward PowerBI, QuickSight, and the complexity that comes with them. It is a useful check on the enthusiasm because a lot of lightweight data tooling stalls out when it meets messy real reporting demands.

Be explicit about the use case before betting on a lightweight data-app approach. If stakeholders need cross-source modeling, governed metrics, or deep dashboarding, this pattern may be too small.

Attribution:

iLoveOncall #1

Agent-era app ideas may be converging too much

One skeptical read was that many people using large language models now build the same agent-wrapped HTML app concepts, which can flatten originality. The rebuttal was practical: shared constraints produce similar designs. Even so, the criticism lands as a reminder that “everyone is building this” can signal a genuine new category or just a temporary local optimum shaped by current tooling.

Do not confuse pattern convergence with product validation. Test whether your users truly need an agent-built custom UI or whether you are reproducing the current builder zeitgeist.

Attribution:

ai_fry_ur_brain #1
hankbond #1

In plain english

API ↩

Application Programming Interface, a defined way for software to request data or actions from another system.

BI ↩

Behavior Identity, a branding concept for how a company and its people act and provide service.

Content Security Policy ↩

A browser security feature that lets a site restrict what scripts, styles, and other resources a page is allowed to load or execute.

CouchApps ↩

An older CouchDB pattern where application code and data were stored together in the database and served directly from it.

CSP ↩

Content Security Policy, a browser mechanism for limiting which resources a page can use.

Datasette ↩

An open source tool for publishing, exploring, and serving structured data, often from SQLite databases, through a website and API.

Git ↩

A version control system used to track code changes, review work, and manage collaboration.

iframe ↩

An HTML element that embeds one web page or document inside another page.

PowerBI ↩

Microsoft’s business intelligence platform for building dashboards, reports, and data models.

QuickSight ↩

Amazon’s cloud business intelligence service for dashboards, reporting, and analytics.

SQLite ↩

A lightweight relational database engine that stores its data in a single file and runs without a separate database server.

srcdoc ↩

An iframe feature that lets a page provide the embedded HTML content directly as a string instead of loading it from a separate URL.

Streamlit ↩

A Python-based framework for quickly building interactive data apps and dashboards.

Reference links

Comparable products and patterns

MotherDuck Duck Dive and Answer
Referenced as another product moving toward custom interfaces on top of data.
Observable Framework
Mentioned as an alternative people have used for similar data-driven app work.
Pihka demo
Shared as a similar project for custom HTML around SQLite databases.
Pihka GitHub repository
Source for the similar SQLite publishing tool discussed in the comments.
Evidence
Pointed to as an existing framework in the same general space of data apps and dashboards.

Security and implementation details

Trusted saved queries in Datasette docs
Explains the privileged query mechanism that underpins write-capable apps.
Datasette apps issue #30
Tracks the request for filesystem-backed apps that work better with Git.
SQLite fileio fsdir extension source
Cited while discussing reading app files from disk via SQLite extensions.
sqlite-vtfunc
Mentioned as another way to expose custom virtual table style functionality.

Demos and prototypes

Datasette Lite
Browser-only Datasette demo used to show that the platform can run entirely client-side.
Pyodide ASGI browser Datasette prototype
A smaller experimental browser-based Datasette build mentioned in the comments.
Trusted-query app demo
Demonstrates an app running against trusted stored queries.
Stored app source gist
Shows how the demo app calls trusted stored queries from its HTML code.

Background and historical references

CouchApp getting started
Shared as an older precedent for storing app code with the database.
List of CouchApps
Additional historical reference for the CouchApps pattern.
CouchDB and CouchApp article
Another reference showing that database-hosted apps are an old idea resurfacing.