(www.generalanalysis.com)

786 points rexpository | 1 comments | 08 Jul 25 17:46 UTC | HN request time: 0.198s | source

1. sgt101 ◴[09 Jul 25 08:12 UTC] No.44507440[source]▶

Why does the MCP server or cursor have service_role?

I don't see why that's necessary for the application... so how about the default is for service_role not to be given to something that's insecure?

Supabase MCP can leak your entire SQL database