supabase-cli
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- EXTERNAL_DOWNLOADS (SAFE): Installation instructions point to official repositories (GitHub organization 'supabase'), which is a trusted source. This includes the Scoop bucket and NPM packages.
- CREDENTIALS_UNSAFE (SAFE): The skill demonstrates how to manage secrets using environment variables and configuration files. It provides specific advice on using
.gitignoreto protect sensitive files like.env. Displayed keys in examples are truncated placeholders (e.g., 'eyJ...'). - COMMAND_EXECUTION (SAFE): All CLI commands described are standard operations for the Supabase development workflow, such as database migrations, local stack management, and edge function deployment. No arbitrary or hidden command execution patterns were found.
Audit Metadata