Supabase Developer
Warn
Audited by Snyk on Feb 15, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).
- Potentially malicious external URL detected (high risk: 1.00). The Edge Function example imports remote modules at runtime (e.g. https://deno.land/std@0.168.0/http/server.ts and https://esm.sh/@supabase/supabase-js@2), which will be fetched and executed by the runtime and are required for that function to run, so they constitute runtime external dependencies that execute remote code.
Audit Metadata