MastodonTech.de

jbz💧 Supabase MCP can leak your entire SQL database｢ The cursor assistant operates the Supabase database with elevated access via the service_role, which bypasses all row-level security (RLS) protections. At the same time, it reads customer-submitted messages as part of its input. If one of those messages contains carefully crafted instructions, the assistant may interpret them as commands and execute SQL unintentionally ｣<a href="https://simonwillison.net/2025/Jul/6/supabase-mcp-lethal-trifecta/" rel="nofollow noopener" translate="no" target="_blank">https://simonwillison.net/2025/Jul/6/supabase-mcp-lethal-trifecta/</a><a href="https://indieweb.social/tags/supabase" class="mention hashtag" rel="nofollow noopener" target="_blank">#supabase</a> <a href="https://indieweb.social/tags/databreach" class="mention hashtag" rel="nofollow noopener" target="_blank">#databreach</a> <a href="https://indieweb.social/tags/mcp" class="mention hashtag" rel="nofollow noopener" target="_blank">#mcp</a> <a href="https://indieweb.social/tags/sql" class="mention hashtag" rel="nofollow noopener" target="_blank">#sql</a>

N-gated Hacker News🚨 Breaking news: Supabase's new "Lethal Trifecta" feature ensures entire databases leak faster than a sieve 🏃‍♀️💨! With the innovative combo of LLM blunders, zero <a href="https://mastodon.social/tags/security" class="mention hashtag" rel="nofollow noopener" target="_blank">#security</a>, and an express delivery system for <a href="https://mastodon.social/tags/data" class="mention hashtag" rel="nofollow noopener" target="_blank">#data</a> breaches, it's a hacker's dream come true 😅🔓! <a href="https://simonwillison.net/2025/Jul/6/supabase-mcp-lethal-trifecta/" rel="nofollow noopener" translate="no" target="_blank">https://simonwillison.net/2025/Jul/6/supabase-mcp-lethal-trifecta/</a> <a href="https://mastodon.social/tags/Supabase" class="mention hashtag" rel="nofollow noopener" target="_blank">#Supabase</a> <a href="https://mastodon.social/tags/Lethal" class="mention hashtag" rel="nofollow noopener" target="_blank">#Lethal</a> <a href="https://mastodon.social/tags/Trifecta" class="mention hashtag" rel="nofollow noopener" target="_blank">#Trifecta</a> <a href="https://mastodon.social/tags/breach" class="mention hashtag" rel="nofollow noopener" target="_blank">#breach</a> <a href="https://mastodon.social/tags/database" class="mention hashtag" rel="nofollow noopener" target="_blank">#database</a> <a href="https://mastodon.social/tags/hacker" class="mention hashtag" rel="nofollow noopener" target="_blank">#hacker</a> <a href="https://mastodon.social/tags/news" class="mention hashtag" rel="nofollow noopener" target="_blank">#news</a> <a href="https://mastodon.social/tags/HackerNews" class="mention hashtag" rel="nofollow noopener" target="_blank">#HackerNews</a> <a href="https://mastodon.social/tags/ngated" class="mention hashtag" rel="nofollow noopener" target="_blank">#ngated</a>

Hacker NewsSupabase MCP leaks your entire SQL Database, a lethal trifecta attack<a href="https://simonwillison.net/2025/Jul/6/supabase-mcp-lethal-trifecta/" rel="nofollow noopener" translate="no" target="_blank">https://simonwillison.net/2025/Jul/6/supabase-mcp-lethal-trifecta/</a><a href="https://mastodon.social/tags/HackerNews" class="mention hashtag" rel="nofollow noopener" target="_blank">#HackerNews</a> <a href="https://mastodon.social/tags/Supabase" class="mention hashtag" rel="nofollow noopener" target="_blank">#Supabase</a> <a href="https://mastodon.social/tags/SQL" class="mention hashtag" rel="nofollow noopener" target="_blank">#SQL</a> <a href="https://mastodon.social/tags/Leak" class="mention hashtag" rel="nofollow noopener" target="_blank">#Leak</a> <a href="https://mastodon.social/tags/Cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#Cybersecurity</a> <a href="https://mastodon.social/tags/DataBreach" class="mention hashtag" rel="nofollow noopener" target="_blank">#DataBreach</a> <a href="https://mastodon.social/tags/Trifecta" class="mention hashtag" rel="nofollow noopener" target="_blank">#Trifecta</a>

Jesus Castagnetto 🇵🇪"<a href="https://mastodon.social/tags/Supabase" class="mention hashtag" rel="nofollow noopener" target="_blank">#Supabase</a> <a href="https://mastodon.social/tags/MCP" class="mention hashtag" rel="nofollow noopener" target="_blank">#MCP</a> can leak your entire <a href="https://mastodon.social/tags/SQL" class="mention hashtag" rel="nofollow noopener" target="_blank">#SQL</a> <a href="https://mastodon.social/tags/database" class="mention hashtag" rel="nofollow noopener" target="_blank">#database</a>"<a href="https://mastodon.social/tags/Security" class="mention hashtag" rel="nofollow noopener" target="_blank">#Security</a> <a href="https://mastodon.social/tags/LLM" class="mention hashtag" rel="nofollow noopener" target="_blank">#LLM</a> <a href="https://www.generalanalysis.com/blog/supabase-mcp-blog" rel="nofollow noopener" translate="no" target="_blank">https://www.generalanalysis.com/blog/supabase-mcp-blog</a>

Hacker NewsPoor Man's Back End-as-a-Service (BaaS), Similar to Firebase/Supabase/Pocketbase<a href="https://github.com/zserge/pennybase" rel="nofollow noopener" translate="no" target="_blank">https://github.com/zserge/pennybase</a><a href="https://mastodon.social/tags/HackerNews" class="mention hashtag" rel="nofollow noopener" target="_blank">#HackerNews</a> <a href="https://mastodon.social/tags/PoorManBaaS" class="mention hashtag" rel="nofollow noopener" target="_blank">#PoorManBaaS</a> <a href="https://mastodon.social/tags/Firebase" class="mention hashtag" rel="nofollow noopener" target="_blank">#Firebase</a> <a href="https://mastodon.social/tags/Supabase" class="mention hashtag" rel="nofollow noopener" target="_blank">#Supabase</a> <a href="https://mastodon.social/tags/Pocketbase" class="mention hashtag" rel="nofollow noopener" target="_blank">#Pocketbase</a> <a href="https://mastodon.social/tags/BackendDevelopment" class="mention hashtag" rel="nofollow noopener" target="_blank">#BackendDevelopment</a>

Philip ThomasKI <a href="https://mastodon.social/tags/Chatbot" class="mention hashtag" rel="nofollow noopener" target="_blank">#Chatbot</a> erstellen mit <a href="https://mastodon.social/tags/n8n" class="mention hashtag" rel="nofollow noopener" target="_blank">#n8n</a> und Wissensdatenbank (<a href="https://mastodon.social/tags/RAG" class="mention hashtag" rel="nofollow noopener" target="_blank">#RAG</a>)!<a href="https://www.youtube.com/watch?v=3XRRxUTVszU" rel="nofollow noopener" translate="no" target="_blank">https://www.youtube.com/watch?v=3XRRxUTVszU</a><a href="https://mastodon.social/tags/openai" class="mention hashtag" rel="nofollow noopener" target="_blank">#openai</a> <a href="https://mastodon.social/tags/chatgpt" class="mention hashtag" rel="nofollow noopener" target="_blank">#chatgpt</a> <a href="https://mastodon.social/tags/supabase" class="mention hashtag" rel="nofollow noopener" target="_blank">#supabase</a> <a href="https://mastodon.social/tags/postgres" class="mention hashtag" rel="nofollow noopener" target="_blank">#postgres</a> <a href="https://mastodon.social/tags/kiagent" class="mention hashtag" rel="nofollow noopener" target="_blank">#kiagent</a> <a href="https://mastodon.social/tags/aiagent" class="mention hashtag" rel="nofollow noopener" target="_blank">#aiagent</a> <a href="https://mastodon.social/tags/ragagent" class="mention hashtag" rel="nofollow noopener" target="_blank">#ragagent</a>

⚯ Michel de Cryptadamus ⚯<a href="https://masto.deoan.org/@neurovagrant" class="u-url mention" rel="nofollow noopener" target="_blank">@neurovagrant</a>> "Lovable, for instance, uses AI models to create websites instantly. But for websites to do much of anything, they need to be connected to databases that store things like user accounts and payment information. Lovable doesn’t build those databases itself. It offers users an easy way to connect to a database service run by a startup called <a href="https://universeodon.com/tags/Supabase" class="mention hashtag" rel="nofollow noopener" target="_blank">#Supabase</a>."as someone with what qualifies as a category expert on postgres who dove into building an app w/supabase last year, all i can say is that nothing about this surprises me.<a href="https://universeodon.com/@cryptadamist/114649803259853811" rel="nofollow noopener" translate="no" target="_blank">https://universeodon.com/@cryptadamist/114649803259853811</a>

:rss: Qiita - 人気の記事Reactを学習して、1ヶ月半で名刺アプリを作った話。 <a href="https://qiita.com/Tomoboo_319/items/4484c471744920b26252?utm_campaign=popular_items&utm_medium=feed&utm_source=popular_items" rel="nofollow noopener" translate="no" target="_blank">https://qiita.com/Tomoboo_319/items/4484c471744920b26252?utm_campaign=popular_items&utm_medium=feed&utm_source=popular_items</a><a href="https://rss-mstdn.studiofreesia.com/tags/qiita" class="mention hashtag" rel="nofollow noopener" target="_blank">#qiita</a> <a href="https://rss-mstdn.studiofreesia.com/tags/TypeScript" class="mention hashtag" rel="nofollow noopener" target="_blank">#TypeScript</a> <a href="https://rss-mstdn.studiofreesia.com/tags/Firebase" class="mention hashtag" rel="nofollow noopener" target="_blank">#Firebase</a> <a href="https://rss-mstdn.studiofreesia.com/tags/React" class="mention hashtag" rel="nofollow noopener" target="_blank">#React</a> <a href="https://rss-mstdn.studiofreesia.com/tags/Supabase" class="mention hashtag" rel="nofollow noopener" target="_blank">#Supabase</a> <a href="https://rss-mstdn.studiofreesia.com/tags/chakra_ui" class="mention hashtag" rel="nofollow noopener" target="_blank">#chakra_ui</a>

⚯ Michel de Cryptadamus ⚯<a href="https://mastodon.social/@nixCraft" class="u-url mention" rel="nofollow noopener" target="_blank">@nixCraft</a> <a href="https://universeodon.com/tags/supabase" class="mention hashtag" rel="nofollow noopener" target="_blank">#supabase</a>, even without the AI, is like custom made for security flaws."sure, let's make everyone configure their app's permissions via postgres stored procedures and start out with everything publicly writeable. what could go wrong?"

:rss: Qiita - 人気の記事【Supabase】複数テーブルの関連データを取得したい <a href="https://qiita.com/asa129/items/3eb32549a23398d51df5?utm_campaign=popular_items&utm_medium=feed&utm_source=popular_items" rel="nofollow noopener" translate="no" target="_blank">https://qiita.com/asa129/items/3eb32549a23398d51df5?utm_campaign=popular_items&utm_medium=feed&utm_source=popular_items</a><a href="https://rss-mstdn.studiofreesia.com/tags/qiita" class="mention hashtag" rel="nofollow noopener" target="_blank">#qiita</a> <a href="https://rss-mstdn.studiofreesia.com/tags/JavaScript" class="mention hashtag" rel="nofollow noopener" target="_blank">#JavaScript</a> <a href="https://rss-mstdn.studiofreesia.com/tags/join" class="mention hashtag" rel="nofollow noopener" target="_blank">#join</a> <a href="https://rss-mstdn.studiofreesia.com/tags/Supabase" class="mention hashtag" rel="nofollow noopener" target="_blank">#Supabase</a>

Hacker NewsSupabase raises $200M Series D at $2B valuation<a href="https://finance.yahoo.com/news/exclusive-supabase-raises-200-million-112154867.html" rel="nofollow noopener" translate="no" target="_blank">https://finance.yahoo.com/news/exclusive-supabase-raises-200-million-112154867.html</a><a href="https://mastodon.social/tags/HackerNews" class="mention hashtag" rel="nofollow noopener" target="_blank">#HackerNews</a> <a href="https://mastodon.social/tags/Supabase" class="mention hashtag" rel="nofollow noopener" target="_blank">#Supabase</a> <a href="https://mastodon.social/tags/SeriesD" class="mention hashtag" rel="nofollow noopener" target="_blank">#SeriesD</a> <a href="https://mastodon.social/tags/Funding" class="mention hashtag" rel="nofollow noopener" target="_blank">#Funding</a> <a href="https://mastodon.social/tags/TechNews" class="mention hashtag" rel="nofollow noopener" target="_blank">#TechNews</a> <a href="https://mastodon.social/tags/StartupInvestment" class="mention hashtag" rel="nofollow noopener" target="_blank">#StartupInvestment</a> <a href="https://mastodon.social/tags/BusinessGrowth" class="mention hashtag" rel="nofollow noopener" target="_blank">#BusinessGrowth</a>

Sushil Kumar@supabase client for php. Release version v2.0.0<a href="https://github.com/CodeWithSushil/supabase-client/releases/tag/v2.0.0" rel="nofollow noopener" translate="no" target="_blank">https://github.com/CodeWithSushil/supabase-client/releases/tag/v2.0.0</a>composer require supabase-php/supabase-client<a href="https://mastodon.social/tags/supabase" class="mention hashtag" rel="nofollow noopener" target="_blank">#supabase</a> <a href="https://mastodon.social/tags/php" class="mention hashtag" rel="nofollow noopener" target="_blank">#php</a> <a href="https://mastodon.social/tags/supabaseClient" class="mention hashtag" rel="nofollow noopener" target="_blank">#supabaseClient</a> <a href="https://mastodon.social/tags/supabasePHP" class="mention hashtag" rel="nofollow noopener" target="_blank">#supabasePHP</a>

gil://Fazendo arte :) <a href="https://github.com/gpupo/pythonic-opensource-mds/blob/main/transformation/prefect_core/flows/tutorial_snakesay_flow.py" rel="nofollow noopener" translate="no" target="_blank">https://github.com/gpupo/pythonic-opensource-mds/blob/main/transformation/prefect_core/flows/tutorial_snakesay_flow.py</a> Flow funcionando ! Prefect + Supabase <a href="https://mastodon.social/tags/python" class="mention hashtag" rel="nofollow noopener" target="_blank">#python</a> <a href="https://mastodon.social/tags/softwaredevelopment" class="mention hashtag" rel="nofollow noopener" target="_blank">#softwaredevelopment</a> <a href="https://mastodon.social/tags/supabase" class="mention hashtag" rel="nofollow noopener" target="_blank">#supabase</a> <a href="https://mastodon.social/tags/prefect" class="mention hashtag" rel="nofollow noopener" target="_blank">#prefect</a>

Alex HoyauI just published a new guide in English to connect <a href="https://framapiaf.org/tags/Supabase" class="mention hashtag" rel="nofollow noopener" target="_blank">#Supabase</a> with <a href="https://fosstodon.org/@silex" class="u-url mention" rel="nofollow noopener" target="_blank">@silex</a> –from project setup to publication of a live site, 100% free and open source.Perfect for no-code devs finally able to use real <a href="https://framapiaf.org/tags/foss" class="mention hashtag" rel="nofollow noopener" target="_blank">#foss</a> tools! And for web designers who can now make static websites with dynamic data📖 Read it here: <a href="https://docs.silex.me/en/guides/supabase" rel="nofollow noopener" translate="no" target="_blank">https://docs.silex.me/en/guides/supabase</a> => Start now: <a href="https://v3.silex.me/" rel="nofollow noopener" translate="no" target="_blank">https://v3.silex.me/</a> 💬 Feedback welcome on <a href="https://short.silex.me/chat" rel="nofollow noopener" translate="no" target="_blank">https://short.silex.me/chat</a><a href="https://framapiaf.org/tags/NoCode" class="mention hashtag" rel="nofollow noopener" target="_blank">#NoCode</a> <a href="https://framapiaf.org/tags/Supabase" class="mention hashtag" rel="nofollow noopener" target="_blank">#Supabase</a> <a href="https://framapiaf.org/tags/Silex" class="mention hashtag" rel="nofollow noopener" target="_blank">#Silex</a> <a href="https://framapiaf.org/tags/OpenSource" class="mention hashtag" rel="nofollow noopener" target="_blank">#OpenSource</a> <a href="https://framapiaf.org/tags/JAMStack" class="mention hashtag" rel="nofollow noopener" target="_blank">#JAMStack</a> Possible thanks to <a href="https://fosstodon.org/@eleventy" class="u-url mention" rel="nofollow noopener" target="_blank">@eleventy</a>

Hacker NewsDeclarative Schemas for simpler database management<a href="https://supabase.com/blog/declarative-schemas" rel="nofollow noopener" translate="no" target="_blank">https://supabase.com/blog/declarative-schemas</a><a href="https://mastodon.social/tags/HackerNews" class="mention hashtag" rel="nofollow noopener" target="_blank">#HackerNews</a> <a href="https://mastodon.social/tags/DeclarativeSchemas" class="mention hashtag" rel="nofollow noopener" target="_blank">#DeclarativeSchemas</a> <a href="https://mastodon.social/tags/DatabaseManagement" class="mention hashtag" rel="nofollow noopener" target="_blank">#DatabaseManagement</a> <a href="https://mastodon.social/tags/SimplifiedTech" class="mention hashtag" rel="nofollow noopener" target="_blank">#SimplifiedTech</a> <a href="https://mastodon.social/tags/Supabase" class="mention hashtag" rel="nofollow noopener" target="_blank">#Supabase</a> <a href="https://mastodon.social/tags/HackerNews" class="mention hashtag" rel="nofollow noopener" target="_blank">#HackerNews</a>

Hacker NewsPostgres Language Server: Initial Release<a href="https://github.com/supabase-community/postgres-language-server" rel="nofollow noopener" translate="no" target="_blank">https://github.com/supabase-community/postgres-language-server</a><a href="https://mastodon.social/tags/HackerNews" class="mention hashtag" rel="nofollow noopener" target="_blank">#HackerNews</a> <a href="https://mastodon.social/tags/Postgres" class="mention hashtag" rel="nofollow noopener" target="_blank">#Postgres</a> <a href="https://mastodon.social/tags/Language" class="mention hashtag" rel="nofollow noopener" target="_blank">#Language</a> <a href="https://mastodon.social/tags/Server" class="mention hashtag" rel="nofollow noopener" target="_blank">#Server</a> <a href="https://mastodon.social/tags/Initial" class="mention hashtag" rel="nofollow noopener" target="_blank">#Initial</a> <a href="https://mastodon.social/tags/Release" class="mention hashtag" rel="nofollow noopener" target="_blank">#Release</a> <a href="https://mastodon.social/tags/supabase" class="mention hashtag" rel="nofollow noopener" target="_blank">#supabase</a>-community <a href="https://mastodon.social/tags/postgres" class="mention hashtag" rel="nofollow noopener" target="_blank">#postgres</a>-language-server <a href="https://mastodon.social/tags/tech" class="mention hashtag" rel="nofollow noopener" target="_blank">#tech</a> <a href="https://mastodon.social/tags/news" class="mention hashtag" rel="nofollow noopener" target="_blank">#news</a> <a href="https://mastodon.social/tags/software" class="mention hashtag" rel="nofollow noopener" target="_blank">#software</a> <a href="https://mastodon.social/tags/development" class="mention hashtag" rel="nofollow noopener" target="_blank">#development</a>

michabbbFirst-party integrations from the <a href="https://social.vivaldi.net/tags/Vercel" class="mention hashtag" rel="nofollow noopener" target="_blank">#Vercel</a> <a href="https://social.vivaldi.net/tags/Marketplace" class="mention hashtag" rel="nofollow noopener" target="_blank">#Marketplace</a> are now available in <a href="https://social.vivaldi.net/tags/v0" class="mention hashtag" rel="nofollow noopener" target="_blank">#v0</a> 💻 🚀   Add a persistent data store like <a href="https://social.vivaldi.net/tags/Supabase" class="mention hashtag" rel="nofollow noopener" target="_blank">#Supabase</a>, <a href="https://social.vivaldi.net/tags/Neon" class="mention hashtag" rel="nofollow noopener" target="_blank">#Neon</a>, or <a href="https://social.vivaldi.net/tags/Upstash" class="mention hashtag" rel="nofollow noopener" target="_blank">#Upstash</a> to your v0 generations in just a few clicks<a href="https://vercel.com/changelog/vercel-marketplace-integrations-now-available-in-v0" rel="nofollow noopener" translate="no" target="_blank">https://vercel.com/changelog/vercel-marketplace-integrations-now-available-in-v0</a><a href="https://social.vivaldi.net/tags/ai" class="mention hashtag" rel="nofollow noopener" target="_blank">#ai</a>

Alex HoyauBonjour les francophonesVous avez des blocages ou des questions sur <a href="https://fosstodon.org/@silex" class="u-url mention" rel="nofollow noopener" target="_blank">@silex</a> ? Passez les poser en live pendant l'émission de vendredi: <a href="https://events.silex.me/" rel="nofollow noopener" translate="no" target="_blank">https://events.silex.me/</a>Le thème abordé avant les questions sera "Silex vs Weweb"> <a href="https://framapiaf.org/tags/Silex" class="mention hashtag" rel="nofollow noopener" target="_blank">#Silex</a> pour les sites statiques avec du contenu dynamique > <a href="https://framapiaf.org/tags/Weweb" class="mention hashtag" rel="nofollow noopener" target="_blank">#Weweb</a> pour les webapps en mode IA > Les deux ont des intégrations <a href="https://framapiaf.org/tags/supabase" class="mention hashtag" rel="nofollow noopener" target="_blank">#supabase</a> et <a href="https://framapiaf.org/tags/n8n" class="mention hashtag" rel="nofollow noopener" target="_blank">#n8n</a>A vendredi 14h15 :)<a href="https://framapiaf.org/tags/foss" class="mention hashtag" rel="nofollow noopener" target="_blank">#foss</a> <a href="https://framapiaf.org/tags/OpenSource" class="mention hashtag" rel="nofollow noopener" target="_blank">#OpenSource</a> <a href="https://framapiaf.org/tags/NoCode" class="mention hashtag" rel="nofollow noopener" target="_blank">#NoCode</a> <a href="https://framapiaf.org/tags/JAMStack" class="mention hashtag" rel="nofollow noopener" target="_blank">#JAMStack</a> <a href="https://framapiaf.org/tags/static" class="mention hashtag" rel="nofollow noopener" target="_blank">#static</a>

activenode<a href="https://mastodon.social/tags/supabase" class="mention hashtag" rel="nofollow noopener" target="_blank">#supabase</a> <a href="https://mastodon.social/tags/database" class="mention hashtag" rel="nofollow noopener" target="_blank">#database</a> <a href="https://mastodon.social/tags/postgres" class="mention hashtag" rel="nofollow noopener" target="_blank">#postgres</a> <a href="https://mastodon.social/tags/webdev" class="mention hashtag" rel="nofollow noopener" target="_blank">#webdev</a> <a href="https://mastodon.social/tags/webdevelopment" class="mention hashtag" rel="nofollow noopener" target="_blank">#webdevelopment</a>

Florian van der GaliënNew blog post! Dive into my guide on Self-Hosting Supabase with Docker and Traefik as a reverse proxy. Learn how to manage routing, SSL, and security for your Supabase stack on a VPS. Check it out! 👇 <a href="https://sueden.social/tags/Supabase" class="mention hashtag" rel="nofollow noopener" target="_blank">#Supabase</a> <a href="https://sueden.social/tags/Docker" class="mention hashtag" rel="nofollow noopener" target="_blank">#Docker</a> <a href="https://sueden.social/tags/Traefik" class="mention hashtag" rel="nofollow noopener" target="_blank">#Traefik</a> <a href="https://sueden.social/tags/DevOps" class="mention hashtag" rel="nofollow noopener" target="_blank">#DevOps</a>🔗 <a href="https://flori.dev/reads/supabase-self-host-docker-traefik-reverse-proxy" rel="nofollow noopener" translate="no" target="_blank">https://flori.dev/reads/supabase-self-host-docker-traefik-reverse-proxy</a>

Frühere Suchanfragen

Suchoptionen

Verwaltet von:

Serverstatistik:

#Supabase