supabase_patterns
Pass
Audited by Gen Agent Trust Hub on Feb 27, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill is purely instructional and provides code snippets for common development patterns using Next.js and Supabase.
- [EXTERNAL_DOWNLOADS]: The skill references official documentation from well-known services (Supabase and Next.js) for educational purposes. No external scripts or binaries are downloaded or executed.
- [PROMPT_INJECTION]: No attempts to override system instructions or bypass safety filters were detected in the skill body or metadata.
- [DATA_EXFILTRATION]: The skill does not access sensitive local files or perform unauthorized network operations. It correctly advises developers to keep sensitive keys (like Service Role Keys) out of client-side code.
- [CREDENTIALS_UNSAFE]: No hardcoded secrets, API keys, or credentials were found. References to Supabase clients use local library paths (e.g., '@/lib/supabase/client').
- [COMMAND_EXECUTION]: There are no shell commands, subprocess spawns, or system-level modifications present in the skill.
Audit Metadata