supabase-win
PassAudited by VirusTotal on May 11, 2026.
Overview
Type: OpenClaw Skill Name: supabase-win Version: 1.0.1 The skill provides a legitimate and well-documented interface for querying a Supabase database via its REST API. The core logic in `scripts/query.py` uses Python's standard library (`urllib`) to perform read-only GET requests, enforces a 200-row limit, and properly handles credentials through a local configuration file. No evidence of malicious intent, data exfiltration, or prompt injection was found.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
The agent can return rows from Supabase tables or views exposed to the anon key, which may include sensitive data if RLS policies allow it.
The script lets the caller choose the Supabase table/path and sends a read-only GET request. This matches the stated query purpose, but it can retrieve data permitted by the configured key.
base_url = f"https://{project_id}.supabase.co/rest/v1/{table}" ... req = urllib.request.Request(url, headers=headers, method="GET")Use strict Supabase RLS policies, query only intended tables, and consider explicit user confirmation before inspecting private data.
Anyone or any agent using this skill with the configured .env file can read whatever the Supabase anon key is allowed to read.
The skill reads a local Supabase anon key and uses it as API/Bearer authorization. This is expected for Supabase access and is disclosed, but it is still delegated database access.
ENV_FILE = SKILL_DIR / "references" / ".env" ... "Authorization": f"Bearer {anon_key}"Store only the Supabase anon/public key, never a service-role key; keep references/.env private and rotate the key if it is exposed.
Setup may fail or require manual configuration, but this does not show hidden execution or malicious behavior.
The supplied manifest does not include references/.env.example or scripts/query.bat, so the setup instructions reference files that are not present.
Copy `references/.env.example` to `references/.env` ... Or on Windows: `scripts\query.bat users --select "*" --limit 10`
Create references/.env manually from the documented variables, use scripts/query.py directly, and ask the maintainer to include or remove the missing referenced files.
A user might assume the credential file cannot be committed to version control when that protection is not shown here.
No .gitignore file is present in the supplied file manifest, so this safety statement is not backed by the provided artifacts.
- The `.env` file is gitignored by default
Verify or add a .gitignore entry for references/.env before placing this skill directory in any version-controlled workspace.