Supabase MCP Server
Official MCP server to manage Supabase projects, run SQL, and inspect database schema from an agent.
🛡️ AgentReady threat assessment
MAESTRO 7-layer threat model + OWASP AIVSS risk score for Supabase MCP Server, derived from its capabilities.
AIVSS 7.9 · High
View MAESTRO 7-layer threat model →Overview
Supabase's MCP server exposes Postgres query execution, schema inspection, branch and project management, and edge-function tooling to AI agents. Because it can run arbitrary SQL against a project, an injected prompt reaching the SQL tool is a direct data-exfiltration and destructive-write risk; read-only mode and project scoping are the mitigations.
Key features
- Arbitrary SQL execution
- Schema and table inspection
- Project and branch management
- Read-only mode toggle
Use cases
- Let an agent explore and query an app database
- Scaffold and migrate schema during development