pgvector-setup

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.90). The skill ingests and stores arbitrary user-provided documents (see the Supabase Edge Function supabase/functions/process-document/index.ts and templates/embedding-table-schema.sql which save document chunks), and the examples (examples/document-search-pattern.md and vector-search-examples.md) show the agent retrieving those chunks and concatenating them into prompts for LLMs, so untrusted third‑party content is read and used at runtime.

MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).

• Potentially malicious external URL detected (high risk: 0.90). The Supabase Edge Function imports remote executable modules at runtime (e.g. https://deno.land/std@0.168.0/http/server.ts, https://deno.land/x/openai@v4.20.1/mod.ts, and https://esm.sh/@supabase/supabase-js@2), which are fetched and executed as required dependencies rather than mere data/APIs.