Loading...
Loading...
Found 54 Skills
Identify storage buckets that are publicly accessible and may contain sensitive data.
List and test exposed PostgreSQL RPC functions for security issues and potential RLS bypass.
Analyze Supabase authentication configuration for security weaknesses and misconfigurations.
CRITICAL - Detect exposed PostgreSQL database connection strings in client-side code. Direct DB access is a P0 issue.
Discover and test Supabase Edge Functions for security vulnerabilities and misconfigurations.
Test for user enumeration vulnerabilities through various authentication endpoints.
Orchestrate a complete Supabase security audit with guided step-by-step execution and ownership confirmation.
Generate a comprehensive Markdown security audit report with executive summary, findings, and remediation guidance.
Attempt to read data from exposed tables to verify actual data exposure and RLS effectiveness.
Everything to do with tests on HelpMeTest. Use when: writing tests for a new feature, generating tests for an existing feature, fixing a broken test, debugging a failing test, tests broke after a UI change, tests are out of date after a refactor. Triggers on: 'write tests', 'generate tests', 'test is failing', 'fix tests', 'tests broke', 'implement X', 'add feature', 'fix bug', 'why does this test fail', 'tests are out of date'. If it involves HelpMeTest tests in any way, this is the skill.
List all tables exposed via the Supabase PostgREST API to identify the attack surface.
Extract the Supabase project URL from client-side JavaScript code, environment variables, and configuration files.