supabase-mcp-integration
Fail
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: CRITICALDATA_EXFILTRATIONEXTERNAL_DOWNLOADS
Full Analysis
- DATA_EXFILTRATION (CRITICAL): A confirmed malicious URL
supabase.auth.rewas found by automated scanners. This domain mimics the legitimate Supabase authentication infrastructure to trick the agent into sending sensitive credentials or environment data to an attacker-controlled server. Typosquatting of a trusted service provider is a high-confidence indicator of malicious intent. - EXTERNAL_DOWNLOADS (HIGH): The skill references a blacklisted domain which could be used to fetch malicious configuration or scripts. Given the lack of code in the provided snippet, any external network reference to a known malicious host is considered a critical risk.
Recommendations
- AI detected serious security threats
- Contains 1 malicious URL(s) - DO NOT USE
Audit Metadata