Skills
skills/kwazema/claude-skills/kw-login-supabase-cli/Gen Agent Trust Hub

kw-login-supabase-cli

Pass

Audited by Gen Agent Trust Hub on May 12, 2026

Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill executes multiple shell commands using the Supabase CLI (npx supabase) to list projects, initialize the directory structure, and link the local environment to a remote project.
  • [INDIRECT_PROMPT_INJECTION]: The skill processes project reference IDs provided by the user or read from configuration files and uses them in shell commands.
  • Ingestion points: supabase/config.toml and direct user input in SKILL.md Step 4.
  • Boundary markers: Absent.
  • Capability inventory: Execution of npx supabase link --project-ref <ref> in SKILL.md.
  • Sanitization: No explicit verification or escaping of the project reference string is performed before execution.
  • [SAFE]: The skill uses official Supabase CLI tools for its operations and includes explicit rules against handling sensitive tokens or secrets within the AI's context.
Audit Metadata
Risk Level
SAFE
Analyzed
May 12, 2026, 11:23 AM