frontpage.
newsnewestaskshowjobs

Made with ♥ by @iamnishanth

Open Source @Github

fp.

Open in hackernews

Show HN: CLI to Test Supabase RLS Policies

https://github.com/Rodrigotari1/supashield
3•rodrigotarca•2h ago
I'm seeing how many vibe-coded apps using Supabase there are nowadays that don't even test their RLS policies and that's a pretty terrifying thought.

Half these apps could have their entire DB exposed to public and nobody would know until it's too late. Recently an app leaked 13k users' data because of broken RLS.

So I built a CLI to test RLS policies before prod:

- Introspects your DB schema - Simulates different roles (anon, authenticated, custom JWT claims) - Tries CRUD operations on every RLS-enabled table - Wraps everything in transactions with ROLLBACK (no actual data changes) - Generates snapshots you can diff in CI

It's not a substitute for proper security reviews (attackers will always find crafty exploits). But it catches the obvious messups before they leak user data.

https://github.com/Rodrigotari1/supashield

What's your RLS testing workflow? What edge cases am I missing?

Comments

BandButcher•2h ago
Very cool, I've been in need of something like this even though I only have a few RLS polices (better start now then later right)

Kudos

Edit: does this also allow checking for the storage (buckets) RLS as well or just the DB tables? Thx

rodrigotarca•1h ago
Thanks! Right now it only tests DB table RLS policies not storage buckets. Storage RLS is a good idea though, I'll add it to the roadmap

Dyerlingo

https://github.com/Sippiairborne/DyerLingo
1•dyertech•2m ago•1 comments

Play abstract strategy board games online with friends or against bots

https://abstractboardgames.com/
1•abstractbg•3m ago•1 comments

PostHog just turned their Homepage UX into a Computer

https://posthog.com/
1•michael-sumner•9m ago•1 comments

Gezira: A Deep Dive

https://djtaylor.me/post/2025-10-11-gezira/
1•bee_keeper•11m ago•0 comments

Collabora and MediaTek: Pushing boundaries on latest IoT boards and Chromebooks

https://www.collabora.com/news-and-blog/news-and-events/collabora-mediatek-pushing-boundaries-on-...
1•losgehts•11m ago•0 comments

The Art of Scaling Reinforcement Learning Compute for LLMs

https://arxiv.org/abs/2510.13786
1•sonabinu•13m ago•0 comments

Python as a Configuration Language Using Starlark

https://openrun.dev/blog/starlark/
2•ajayvk•13m ago•1 comments

Counsel Health Grabs $25M for AI-Augmented Healthcare Service

https://www.wsj.com/articles/counsel-health-grabs-25-million-for-ai-augmented-healthcare-service-...
1•brandonb•15m ago•0 comments

Deel raises $300M Series E at $17.3B valuation

https://www.reuters.com/business/payroll-platform-deel-valued-173-billion-latest-funding-round-20...
2•fitzn•17m ago•0 comments

Fantastic (Small) Retrievers and How to Train Them

https://www.mixedbread.com/blog/edge-v0
1•breadislove•17m ago•0 comments

M5 MacBook Pro Does Not Include a Charger in the Box in Europe

https://www.macrumors.com/2025/10/15/new-macbook-pro-lacks-charger-in-europe/
3•Bogdanp•17m ago•0 comments

Google's AI Cracks a New Cancer Code

https://decrypt.co/344454/google-ai-cracks-new-cancer-code
1•sh_tomer•21m ago•1 comments

Making roads safer with a new centre line road marking policy

https://news.bristol.gov.uk/press-releases/3d8a68f3-eb68-4f9a-aa25-c8045ce07480/making-roads-safe...
2•edward•21m ago•0 comments

Making Context-Aware Components: How CSS Inherit() Could Simplify Design Systems

https://www.alwaystwisted.com/articles/making-context-aware-components
1•ulrischa•21m ago•0 comments

Apple M4 Series Feature Support

https://asahilinux.org/docs/platform/feature-support/m4/
2•walterbell•22m ago•0 comments

Mecabricks – create and display 3D Lego models

https://www.mecabricks.com/
1•esher•23m ago•0 comments

Pop star laments missed SF tech investment that would've made him $5B

https://www.sfgate.com/tech/article/will-i-am-sf-tech-investment-dreamforce-21102894.php
1•mooreds•23m ago•0 comments

Apple Readies High-End MacBook Pro with Touch Hole-Punch Screen

https://www.bloomberg.com/news/articles/2025-10-16/apple-readies-high-end-macbook-pro-with-touch-...
2•aquir•24m ago•1 comments

Thoguhts on AI Compliance

1•pkayy7458•25m ago•0 comments

Private Credit on the Defensive Again over 'Mark-to-Myth' Study

https://www.bloomberg.com/news/articles/2025-10-16/private-credit-on-the-defensive-again-over-mar...
1•zerosizedweasle•26m ago•1 comments

FTX Was Never Insolvent? A Prison Interview with Sam Bankman-Fried

https://amuseonx.substack.com/p/ftx-was-never-insolvent-a-prison
2•walterbell•27m ago•0 comments

Rebuilding Uber's Apache Pinot Query Architecture

https://www.uber.com/en-NL/blog/rebuilding-ubers-apache-pinot-query-architecture/
2•shikharbhardwaj•28m ago•0 comments

Porting a Segmented List from C to Rust

https://xnacly.me/posts/2025/porting-a-segmented-list-from-c-to-rust/
2•xnacly•29m ago•0 comments

Timely Arrival: Great British Railways Clock Launches at London Bridge

https://www.theguardian.com/uk-news/2025/oct/16/great-british-railways-clock-launches-london-bridge
2•edward•30m ago•0 comments

Show HN: AI Chat Terminal – Private data stays local, rest goes to cloud

https://github.com/martinschenk/ai-chat-terminal
1•ma8nk•32m ago•1 comments

Modeling Developer Burnout with GenAI Adoption

https://arxiv.org/abs/2510.07435
1•PaulHoule•32m ago•0 comments

Chamber of Commerce Sues over Trump's New $100k H-1B Visa Fee

https://www.wsj.com/politics/policy/trump-h1b-visa-fee-lawsuit-chamber-of-commerce-2c55f183
2•jmsflknr•33m ago•0 comments

Tesla brings back 'Mad Max' 'Full Self-Driving' mode that ignores speed limits

https://electrek.co/2025/10/16/tesla-mad-max-full-self-driving-mode-ignores-speed-limits/
1•TheAlchemist•33m ago•0 comments

Show HN: Gen AI for fonts, 1M free fonts organized by "vibe"

https://fonthero.com/
3•jacobn•37m ago•0 comments

Which Collatz numbers do Busy Beavers simulate (if any)?

https://gbragafibra.github.io/2025/10/16/collatz_ant11.html
1•Fibra•37m ago•0 comments