supabase-workflow

This is an operations/workflow document for Supabase tasks that does not contain obvious malware or obfuscated code. The primary security concerns are operational misconfigurations and information exposure: a blanket recommendation to disable JWT verification for edge functions (high-risk), inclusion of a Supabase project ref (information leak), and use of local wrappers whose behavior is not shown (unknown risk). Recommend removing/justifying insecure defaults, auditing local wrappers, and adding cautious guidance for destructive commands and migration repair usage.