Supabase MCP Server

SUSPICIOUS: the stated purpose is plausible and Supabase-aligned, but the trust chain is inconsistent. The skill claims a Supabase source while distribution occurs through a third-party skill marketplace/repo and a transitive installer, so users may forward Supabase credentials to code not clearly published by Supabase. No direct malicious behavior is shown, but install provenance and credential trust are not fully coherent.