HN Showcase
Back to browse
GitHub Repository

The Supabase deploy-gate that runs where you vibe-code. Static OSS scanner for the RLS/secret holes that leak vibe-coded apps — CLI + Claude Code skill + GitHub Action.

0 starsPython

Rlsgate – Block the Supabase RLS leak before you deploy (CLI)

by gerardordz96·Jun 21, 2026·4 points·0 comments
Visit ProjectView on HN

AI Analysis

●●SolidNiche GemSolve My Problem

Static RLS scanner blocks deploys before Supabase leaks hit production.

Strengths
  • Parses SQL migrations directly without needing database credentials or live access.
  • Integrates as Claude Code skill for AI-assisted fixing workflows.
  • Finite high-precision checks reduce noise compared to broad SAST tools.
Weaknesses
  • Supabase-specific scope limits appeal outside that specific ecosystem.
  • Future-dated CVE references in copy might undermine credibility slightly.
Category
Security
Target Audience

Supabase developers

Similar To

Semgrep · TruffleHog · Supabase CLI

Similar Projects

Security●●Solid

I audited my own back ends on 5 BaaS – leak in every one

Active anon-key probing confirms leaks live instead of just inferring them from config.

Solve My ProblemNiche Gem
renzom13
421mo ago
Security●●●Banger

Mcpaudit – static security scanner for MCP servers

First static analyzer for MCP servers catching command injection before you plug it in.

Zero to OneSolve My Problem
allenwu06
3029d ago
Security●●Solid

PromptSonar – Static analysis for LLM prompt security

Static scanner catches prompt injections in code before runtime, unlike runtime guards.

Solve My ProblemShip It
meghal86
103mo ago