🟡 Medium Risk Audited: Feb 5, 2026

supabase-skill

Manage Supabase projects including database migrations, type generation, and edge functions.

View Repository →

📋 Audit Summary

Author kmh0301
Category DevOps
License Not specified
Dependencies supabase CLI
Install Command git clone https://github.com/kmh0301/clawdbot-supabase-skill.git

🔍 Security Analysis

⚠️ Shell Execution

Executes supabase CLI commands via shell scripts. CLI must be installed separately and authenticated.

⚠️ Database Access

Generates TypeScript types from live database schema. Requires valid project reference and authenticated access.

✅ Safe Operations Only

Current implementation focuses on safe read-only operations (type generation). No direct SQL execution or schema modifications.

✅ Minimal Scope

Very focused implementation. Single script for type generation with required project-id parameter.

📦 Capabilities

Type Generation

Generates TypeScript types from Supabase database schema. Outputs to stdout for redirecting to file.

6.5
Trust Score / 10
Medium Risk - Read-only operations

🎯 Permissions

shell network credentials

✅ Best Practices

  • • Read-only operations
  • • Required project-id
  • • Error handling
  • • CLI availability check

⚠️ Requirements

  • • supabase CLI installed
  • • supabase login
  • • Valid project reference