Your First Supabase RLS Policy, Without Exposing Your Whole Database
Every week I audit a handful of AI-generated apps (VibeScan is the service behind this). The single most common "how is this in production" finding is a broken Row Level Security policy. Usually it's one of:
RLS is disabled and the table is just pub...
systag.hashnode.dev6 min read