This project enables developers and analysts to audit Supabase databases with precision. It focuses on identifying potential security risks such as RLS-disabled tables, public buckets, and exposed functions. The tool runs an active anonymous probe, ensuring each detected issue is verified with the built-in probe key. With a clean JavaScript implementation, it offers a reliable way to assess database hygiene without external dependencies. The repository is written in JavaScript and maintains an active development presence, currently holding 17 stars on GitHub. For those seeking a practical solution, this tool serves as a solid complement to manual reviews. The official site provides more details at https://perufitlife.github.io/supabase-security-skill/.

Setting up this utility is straightforward. You’ll need to install the required dependencies via a standard package manager. The process typically involves running a CLI command that initializes the project and populates configuration files. No complex dependencies are required, making it accessible for developers on different platforms. If you’re looking for a lightweight option, this project offers a direct path to security validation.

One notable feature is its active testing framework, which confirms leaks with an anonymous probe. This adds a layer of reliability to the findings. The code structure is minimal yet effective, designed for quick integration into workflows. While the tool is built for developers, it doesn’t rely on external services, which simplifies deployment.

Advanced users will appreciate the flexibility in extending the probe logic or integrating it with CI pipelines. The project remains a practical choice for teams needing consistent security checks. More information can be found on the project page at https://github.com/Perufitlife/supabase-security-skill. This resource is worth exploring if you're looking to strengthen your database security posture.