supabase
Pass
Audited by Gen Agent Trust Hub on May 18, 2026
Risk Level: SAFE
Full Analysis
- [COMMAND_EXECUTION]: The skill uses
curlto perform REST API requests against Supabase. These commands are legitimate for the described purpose of database management. - [SAFE]: Credentials and configuration are managed through environment variables (
SUPABASE_URL,SUPABASE_PUBLISHABLE_KEY, andSUPABASE_TOKEN), which is the recommended practice for security. - [SAFE]: External network communication is restricted to the user's Supabase project domain, which is a well-known and trusted service.
- [SAFE]: The skill uses temporary files in
/tmpfor staging JSON request bodies, which is a standard pattern for CLI-based API tools. - [SAFE]: The
zero doctorcommand is used for diagnostic purposes to verify project connectivity and configuration.
Audit Metadata