supabase-audit-tables-list

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). This skill directly fetches and parses the Supabase PostgREST OpenAPI schema from arbitrary project URLs (https://[project-ref].supabase.co/rest/v1/?apikey=[anon-key]), meaning it ingests untrusted, user-controlled third‑party content that the agent reads and interprets.