Show HN: Runtime Defense Against Prompt Injection in Supabase MCP

https://docs.tansive.io/blog/implementing-defense-prompt-injection-attacks-mcp/

3•anand-tan•11h ago

I wrote this after studying the Supabase MCP prompt injection issue. The blog shows how I built a working defense using an open-source AI agent runtime I’ve been building called Tansive ( https://github.com/tansive/tansive )

Instead of just filtering malicious prompts, I implemented role-based policies with runtime input validation that can scale across combinations of different AI tools (GitHub, Stripe, Linear, etc.).

All the code referenced in the blog is in the examples/supabase_demo folder.

I welcome your feedback — especially from folks working with AI toolchains or security.

Comments

anand-tan•11h ago

For reference, this was the thread that led me to work on this.

https://news.ycombinator.com/item?id=44502318

vijivishali•10h ago

Since it's postgres behind the scenes, can't you just use pg roles?

anand-tan•10h ago

Absolutely. If the tools were only from Supabase, then yes, you could use Postgres roles. However, most people use a combination of tools (GitHub, Stripe, Linear, etc.), and each has different permission models. I wanted to implement a solution that works generically across tools rather than requiring separate security configurations for each service. This doesn't preclude one from limiting the access scope at the database, though.

Show HN: WTFfmpeg

Show HN: An OCR PDF large batch renaming tool

Countries across the world see food price shocks from climate extremes

AI coding platform goes rogue during code freeze, deletes entire company DB

MIT 6.1200J Mathematics for Computer Science, Spring 2024

Data Scale is not all you need

CollabLLM: From Passive Responders to Active Collaborators

AI Coding Agents Are Removing Programming Language Barriers

Google Threat Analysis Group Bulletin: Q2 2025

ICML 2025 Outstanding Paper Awards

Smartwatch helps find plane crash near Yellowstone

Kaggle Launches LLM Evals

How to Network as a Developer (Without Feeling Sleazy)

A Professor's Hunt for the Rarest Chinese Typewriter

EPA Is Said to Draft a Plan to End Its Ability to Fight Climate Change

Nearly 3k people are leaving NASA, and this director is one of them

Talkit

Org Tutorials

US faces alarming firefighter shortage during peak wildfire season, data reveals

Czech president signs law criminalising communist propaganda

YouTube wipes out propaganda channels linked to China

LLMs Looks Like Memento

Would you trust an AI agent to manage your investment portfolio?

Proceedings of the Symposium on Experimental Algorithms (SEA2025)

Show HN: Next.js and C# Project – App for limiting access to web sources

Show HN: Paradigm – Run any AI model locally with a single .exe

Cheaper AI does not mean greener AI

AI Can Degrade Human Performance in High-Stakes Settings

Lumigator: The Dev Tool for AI Model Evaluation

How to create your own custom pick-up lines generator?