Free Supabase Security Tools

Browse any website and instantly detect exposed Supabase keys, vulnerable tables, and insecure endpoints in real-time.

Result: Spot which files expose your keys as you browse

Paste any URL and get a full security report in 30 seconds. Find exposed Supabase URLs, anon keys, and service role keys.

Result: Full security report with exact file locations

Connect your Supabase project directly. See exactly which tables lack RLS, which are publicly readable, and what data is exposed.

Result: Complete table inventory with RLS status

Security Checklist

Interactive checklist covering all Supabase security best practices. Track your progress as you audit your project.

Generate Row Level Security policies with a visual builder. Select patterns, configure options, copy SQL.

25+ copy-paste RLS policy patterns for common use cases. Search, filter, and find the exact pattern you need.

Decode and inspect Supabase JWT tokens. View claims, check expiration, identify roles, get security tips.

Identify what type of API key you have. Detect Supabase, AWS, Stripe, OpenAI, and 10+ other services.

Decode common Supabase error messages. Get plain English explanations and copy-paste fixes.