Back to threads
Loading user profile...
I love the no-backend approach, but since AI can be notoriously bad at writing secure Postgres functions and RLS policies, I actually built [an open-source CLI](https://github.com/asamassekou10/ship-safe) called ship-safe to automatically scan my Supabase logic before deploying
Using Edge Functions as a serverless AI proxy is a super clean architecture for mobile apps, and if you used AI to help write any of that backend code, you might want to run it through this [open-source scanner ship-safe](https://github.com/asamassekou10/ship-safe) just to ensure no vulnerabilities were left behind
Tell her to make sure Row Level Security is turned on for every table and that the Service Role Key is strictly hidden from the client side. If she uses AI to help code, she needs to be extra careful because AI is notorious for messing up Supabase security. I built a free open-source scanner called [ship-safe](https://github.com/asamassekou10/ship-safe) specifically for this exact problem. Just ask her to run npx ship-safe agent before launch to automatically find any vulnerabilities the AI might have left behind
You’re right. Setting that up globally creates a really strong baseline
Yeah I agree, .cursorrules definitely helps but I treat [ship-safe](https://github.com/asamassekou10/ship-safe) as an extra automated layer. It catches the edge cases when the AI inevitably gets lazy and ignores the prompt instructions
Zero trust is exactly the right mindset. I actually built ship-safe because doing that level of manual review on every single AI database call was slowing me down
Thanks! Let me know if you have any feedback
You could definitely build a Claude skill or MCP server to do something similar. The main advantage here is having a dedicated, lightweight CLI that runs locally in your terminal or CI/CD without needing to prompt an LLM every time