How does it handle administrative access?

It implements standardized patterns for service_role bypass and custom super-admin functions to ensure backend operations and admin tools maintain unrestricted access.

How does this skill prevent infinite recursion in RLS?

The skill suggests safe patterns such as denormalized arrays, service_role bypasses, or direct column checks instead of circular joins that trigger recursive policy evaluations.

Does it support multi-tenant account systems?

Yes, it includes specific logic for MakerKit-style architectures, handling both personal user accounts and team-based memberships within a single policy framework.

Can I use this for Supabase Storage?

Absolutely. The skill provides specific templates for securing storage buckets and objects based on folder paths and account ownership hierarchies.

Supabase RLS Policy Generator

Name: Supabase RLS Policy Generator
Author: antoineschaller

byantoineschaller

•

数据库管理

Generates secure, production-ready Row Level Security policies for Supabase tables with support for complex account architectures and admin bypass.

关于

This skill simplifies the creation and management of Supabase Row Level Security (RLS) policies by providing standardized patterns for complex data access scenarios. It specifically addresses common pitfalls like infinite recursion and the MakerKit dual-account architecture, ensuring that data isolation remains robust across both production and staging environments. Users can quickly generate boilerplate for table security, storage bucket access, and administrative bypasses while following industry best practices for PostgreSQL security and multi-tenant isolation.

主要功能

Built-in patterns to prevent infinite recursion in complex policy joins
Specialized support for dual-account architectures (Personal vs. Team accounts)
1 GitHub stars
Automated generation of USING and WITH CHECK clauses for granular table security
Tools for auditing security vulnerabilities and syncing policies across environments
Storage bucket templates for securing file uploads and downloads via path-based access

使用场景

Securing a new Supabase table with multi-tenant account isolation and admin bypass
Debugging and fixing infinite recursion errors in existing PostgreSQL RLS policies
Implementing comprehensive storage bucket security for user-generated content and file uploads

关于

主要功能

Built-in patterns to prevent infinite recursion in complex policy joins
Specialized support for dual-account architectures (Personal vs. Team accounts)
1 GitHub stars
Automated generation of USING and WITH CHECK clauses for granular table security
Tools for auditing security vulnerabilities and syncing policies across environments
Storage bucket templates for securing file uploads and downloads via path-based access

使用场景

Securing a new Supabase table with multi-tenant account isolation and admin bypass
Debugging and fixing infinite recursion errors in existing PostgreSQL RLS policies
Implementing comprehensive storage bucket security for user-generated content and file uploads