deploy-supabase
Pass
Audited by Gen Agent Trust Hub on Feb 28, 2026
Risk Level: SAFECREDENTIALS_UNSAFECOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [CREDENTIALS_UNSAFE]: The skill manages sensitive Supabase authentication data, including database passwords, Personal Access Tokens, and Service Role keys. It specifically guides the agent to read and set secrets from local environment files such as .env and .env.production.\n- [COMMAND_EXECUTION]: The instructions direct the agent to execute several system commands via the supabase CLI, including link, db push, config push, and functions deploy, to manage remote project infrastructure.\n- [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection because it processes untrusted local data that could contain malicious instructions.\n
- Ingestion points: Reads contents from supabase/migrations/*, supabase/config.toml, and .env files.\n
- Boundary markers: Absent; there are no instructions to the agent to treat the contents of these files as data rather than instructions.\n
- Capability inventory: The agent can perform significant infrastructure changes via the supabase CLI, including database schema updates and secret management.\n
- Sanitization: No validation or escaping of the file contents is performed before the agent processes them.
Audit Metadata