Loading...
Loading...
Found 174 Skills
CRITICAL - Detect exposed PostgreSQL database connection strings in client-side code. Direct DB access is a P0 issue.
Analyze Supabase authentication configuration for security weaknesses and misconfigurations.
Test for user enumeration vulnerabilities through various authentication endpoints.
Generate a comprehensive Markdown security audit report with executive summary, findings, and remediation guidance.
Discover and test Supabase Edge Functions for security vulnerabilities and misconfigurations.
Orchestrate a complete Supabase security audit with guided step-by-step execution and ownership confirmation.
List all tables exposed via the Supabase PostgREST API to identify the attack surface.
Attempt to read data from exposed tables to verify actual data exposure and RLS effectiveness.
Expert integration of Supabase Auth with Next.js App Router Use when: supabase auth next, authentication next.js, login supabase, auth middleware, protected route.
Core Supabase CLI, migrations, RLS, Edge Functions
CRITICAL - Detect if the Supabase service_role key is leaked in client-side code. This is a P0 severity issue.
Subscribe to realtime changes in Supabase using WebSocket connections. Use for listening to database changes, presence tracking, and broadcast messaging.