{"skill":{"slug":"supabase-security-auditor","displayName":"Supabase Security Auditor","summary":"Audit Supabase projects for security — check Row Level Security policies, auth configuration, API exposure, storage rules, and edge function security.","tags":{"latest":"1.0.0"},"stats":{"comments":0,"downloads":33,"installsAllTime":0,"installsCurrent":0,"stars":0,"versions":1},"createdAt":1777646880812,"updatedAt":1777647709578},"latestVersion":{"version":"1.0.0","createdAt":1777646880812,"changelog":"Initial release: audit Supabase projects for security vulnerabilities.\n\n- Checks Row Level Security (RLS) policies, highlights missing or weak controls.\n- Reviews authentication setup, including email confirmation, password strength, and auth provider configuration.\n- Detects API key exposure in code and environment files, especially service_role key misuse.\n- Assesses storage bucket configuration and storage policy security.\n- Examines edge function security: CORS, input validation, rate limiting, and secret handling.\n- Includes database-wide checks: triggers, SECURITY DEFINER functions, and view permissions.\n- Provides clear, actionable security findings in summary and detailed output.","license":"MIT-0"},"metadata":null,"owner":{"handle":"charlie-morrison","userId":"s17cttbdxry5kkyafjw983mq8s83p4y3","displayName":"charlie-morrison","image":"https://avatars.githubusercontent.com/u/271589886?v=4"},"moderation":null}