supabase-auth

This skill is a collection of shell examples to interact with Supabase Auth API. It is functionally coherent with its stated purpose and uses expected inputs (env vars, credentials) and network endpoints (the Supabase project URL). There are no indicators of obfuscated or intentionally malicious code, no remote download/execute instructions, and no third-party credential exfiltration endpoints. The primary risks are operational: sourcing a local helper script runs arbitrary local code and should be audited before use; examples that echo or export tokens can lead to accidental credential leakage; admin flows require a service_role key which, if leaked or used in client contexts, can perform destructive actions. Overall this appears benign if used by a knowledgeable operator who keeps the service_role key on trusted servers and audits the sourced helper script; otherwise there is moderate risk stemming from insecure handling of high-privilege credentials.