for Supabase · free & open source

Ship Supabase apps
that don't leak.

The #1 Supabase footgun is shipping a table with Row-Level Security off. These tools make the safe path the default — scaffold it, gate it in CI, and prove tenant isolation with tests that run against a real database.

Get the free tools →
3 tools live on npm & GitHub · MIT · no signup to start
bash
# scaffold a secure Next.js + Supabase app in one command
$ npx supabase-saas-kit new my-app
auth · Row-Level Security · a test that proves tenant isolation

# gate RLS in CI — fails the build if a table ships exposed
$ npx airlock-rls
payments: RLS DISABLED → exit 1 · this migration does not merge
proven, not hopedTenant isolation is asserted by tests against a real Supabase/Postgres — not mocked.
on every pull requestThe gate fails the build before an exposed table can merge to production.
green in CIEvery tool runs its own test suite against a live database on each commit.

The free tools

Open source, MIT, no signup. Each one makes RLS the default instead of the thing you forgot.

Who it's for

Built for you if…

  • You ship a Supabase app and can't afford a silent data leak
  • You're an indie hacker or small team moving fast
  • You want RLS proven by a test, not hoped for
  • You'd rather steal a secure setup than roll your own

Not for you if…

  • You're not on Supabase / Postgres RLS
  • You don't use migrations or CI at all
  • You enjoy debugging a tenant-isolation breach in prod

Reserve founding pricing

The free tools are yours today. When the paid boilerplate's checkout opens, the list locks in the founding discount — for life. Plus a free Supabase RLS cheat sheet now.

No charge today. You're reserving the price, not buying — we email your checkout once it's live.