pp-supabase

Pass

Audited by Gen Agent Trust Hub on Jun 23, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONDATA_EXFILTRATION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill provides instructions to install the supabase-pp-cli tool using npx from the @mvanhorn/printing-press-library package and go install from the github.com/mvanhorn/printing-press-library repository. These sources are associated with the recognized vendor context.
  • [COMMAND_EXECUTION]: The skill facilitates the execution of various CLI commands via Bash to interact with Supabase Management APIs and local data stores for tasks such as secret auditing, project rollups, and user lookups.
  • [DATA_EXFILTRATION]: The tool includes a documented --deliver webhook:<url> feature that allows command results (which may contain sensitive data such as user emails or secret names) to be routed to a remote URL. While a functional feature, users should ensure the destination URL is trusted.
  • [INDIRECT_PROMPT_INJECTION]: The skill processes data from external sources (Supabase API responses).
  • Ingestion points: Data retrieved from Supabase endpoints such as projects list-all, auth-admin lookup, and pgrst schema.
  • Boundary markers: Encourages use of --json and --agent flags for structured output.
  • Capability inventory: Execution of Bash commands via the supabase-pp-cli tool.
  • Sanitization: The instructions do not specify sanitization or validation of the content retrieved from the API before it is processed by the agent.
Audit Metadata
Risk Level
SAFE
Analyzed
Jun 23, 2026, 05:10 AM
Security Audit — agent-trust-hub — pp-supabase