supabase
⚡ Lightweight Firebase alternative built to run anywhere.
Experience the power of a lightweight, feature-rich backend that seamlessly integrates into your framework of choice. Start building smarter today.
bknd simplifies app development by providing fully functional backend for data management, authentication, workflows and media. Since it's lightweight and built on Web Standards, it can be deployed nearly anywhere, including running inside your framework of choice. No more deploying multiple separate services!
The Open-Source CRM Toolkit for Personalized Solutions.
Build the CRM that matches your company's vision. Designed for developers, loved by end users. A full-featured CRM built with React, react-admin, and Supabase.
Bookmark manager for the modern web.
Bookmark It. is an open-source bookmark manager to organize, discover and personalize your bookmarking experience.
Scan websites for exposed Supabase JWTs, enumerate accessible tables, and detect sensitive data exposure automatically.
A Python script that scans websites for exposed Supabase JWT tokens, enumerates accessible database tables, and analyzes them for sensitive data exposure. The script automatically detects sensitive information (emails, passwords, API keys, PII, financial data, etc.) and classifies vulnerability levels to identify which tables pose security risks.
Security auditing CLI for web applications.
VICE is a security auditing CLI tool that finds vulnerabilities in your web applications. It has two modes:
Remote scan gives it a URL. It crawls your site with a real browser, extracts secrets from JS bundles, tests your login for brute force and SQL injection, scans your VPS ports, checks your Supabase RLS, and more. Like an attacker would, but on your own systems.
Local audit points it at your project directory. It reads your source code, checks your .env files, runs npm audit, analyzes your Supabase migrations for missing RLS, finds SQL injections and XSS in your code, and tells you exactly what to fix.
Isolated databases for every AI agent branch. Build, test, and migrate in parallel. Production stays untouched.
Database safety infrastructure for AFK agentic development.
SafeAgentDB is built for serious vibe coders shipping real products with a team — whether your teammates are people, AI agents, or both. Once you have many branches in flight at the same time, one shared database becomes the thing everyone breaks. SafeAgentDB gives every branch and PR a live preview URL backed by its own isolated database, so agents can run migrations, hydrate realistic data, and test real app behavior without risking production, corrupting shared development data, or stepping on each other.
Built first for Supabase + Vercel + GitHub Actions, with guidance for adapting the same infrastructure pattern to other stacks.