supabase-ops
Pass
Audited by Gen Agent Trust Hub on Mar 4, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSCREDENTIALS_UNSAFE
Full Analysis
- [REMOTE_CODE_EXECUTION]: The skill uses
npx supabaseandgitcommands. It also defines Deno-based edge functions that import libraries from well-known and trusted services likedeno.landandesm.shduring development and deployment. - [DATA_EXPOSURE_AND_EXFILTRATION]: Accesses the
SUPABASE_SERVICE_ROLE_KEYenvironment variable. This high-privilege administrative credential is required for managing Supabase resources and is accessed via the environment provided by the platform. - [INDIRECT_PROMPT_INJECTION]:
- Ingestion points: The skill reads local database migration files in
supabase/migrations/and inspects the live database schema to plan changes. - Boundary markers: No specific delimiters or markers are used to distinguish ingested migration data from instructions.
- Capability inventory: Possesses capabilities to modify database schemas, execute commands via the Supabase CLI, and perform network requests to Supabase APIs.
- Sanitization: Relies on a mandatory manual 'Planning Protocol' instead of programmatic input validation or sanitization.
- [DYNAMIC_EXECUTION]: Generates and writes TypeScript code for Deno-based edge functions to the local filesystem before deploying them via the CLI tool.
Audit Metadata