Supabase MCP Server
Official MCP server to manage Supabase projects, run SQL, and inspect database schema from an agent.
🛡️ AgentReady threat assessment
MAESTRO 7-layer threat model + OWASP AIVSS risk score for Supabase MCP Server, derived from its capabilities.
These scores are auto-generated from public information (the agent's own listing, docs, and repository) using the canonical OWASP AIVSS formula and the MAESTRO framework — an estimate for guidance, not a penetration test, audit, or certification. See the scoring methodology. Are you the vendor? Factual corrections are free.
Overview
Supabase's MCP server exposes Postgres query execution, schema inspection, branch and project management, and edge-function tooling to AI agents. Because it can run arbitrary SQL against a project, an injected prompt reaching the SQL tool is a direct data-exfiltration and destructive-write risk; read-only mode and project scoping are the mitigations.
Key features
- Arbitrary SQL execution
- Schema and table inspection
- Project and branch management
- Read-only mode toggle
Use cases
- Let an agent explore and query an app database
- Scaffold and migrate schema during development