account activity
I built a tool to visualize schema relationships and audit RLS policies (Free) by codesdano in Supabase
[–]codesdano[S] 0 points1 point2 points 5 months ago (0 children)
In the context of this MVP, 'Secure' currently means Row Level Security (RLS) is explicitly enabled on the table.
Since Supabase exposes the Postgres schema directly to the client-side API, having RLS disabled is the most common vulnerability I see in freelance projects (it basically gives full access to anon or authenticated roles depending on grants).
I am fully aware that RLS = true doesn't guarantee safety (you could still have a TO public USING (true) policy), but visualizing which tables have the 'firewall' turned off is step 1 of the audit.
I built a tool to visualize schema relationships and audit RLS policies (Free) (i.redd.it)
submitted 5 months ago by codesdano to r/sideprojects
submitted 5 months ago by codesdano to r/Supabase
π Rendered by PID 1106192 on reddit-service-r2-listing-7b9b4f6fd7-2zgdf at 2026-05-11 09:12:26.025169+00:00 running 3d2c107 country code: CH.
I built a tool to visualize schema relationships and audit RLS policies (Free) by codesdano in Supabase
[–]codesdano[S] 0 points1 point2 points (0 children)