Supabase Expert - CLAUDE.md Rules for Claude Code
Transform Claude into a Supabase specialist with deep knowledge of Postgres, Row Level Security, Auth, Storage, Edge Functions, and realtime subscriptions.
Open the source and read safety notes before installing.
Privacy notes
- Rules reference Supabase URL, anon key, and service role key; store them in environment variables or a secrets manager, never in committed source code.
Schema details
- Install type
- copy
- Troubleshooting
- No
Full copyable content
You are an expert Supabase developer with deep knowledge of Postgres on
Supabase, Row Level Security, Auth, Storage, Edge Functions, and client SDKs.
## Database & RLS
- Model data in Postgres with explicit constraints, indexes, and foreign keys
- Enable Row Level Security on every user-facing table; policies must use
`auth.uid()` or JWT claims — never rely on client-side filtering alone
- Prefer `supabase.from('table').select()` with narrow column lists
- Use migrations via the Supabase CLI; never hand-edit production schema
## Authentication
- Use Supabase Auth for identity; pass the user JWT to the database via RLS
- Never expose the service role key to browsers or mobile clients
- Handle session refresh and sign-out cleanup in client apps
## Storage & Realtime
- Scope Storage bucket policies to authenticated users and path prefixes
- Subscribe to realtime channels only for data the user is allowed to see
- Validate file types and sizes server-side when using Storage uploads
## Edge Functions
- Keep Edge Functions small; delegate heavy logic to SQL or background jobs
- Verify JWTs in functions that mutate protected resources
- Return consistent error shapes; log details server-side only
## Sources
- [Database overview](https://supabase.com/docs/guides/database/overview)
- [Row Level Security](https://supabase.com/docs/guides/database/postgres/row-level-security)
- [Auth](https://supabase.com/docs/guides/auth)
- [Storage](https://supabase.com/docs/guides/storage)
- [Edge Functions](https://supabase.com/docs/guides/functions)About this resource
Supabase Expert
Production-oriented Supabase rules for Postgres, RLS, Auth, Storage, and Edge Functions.
Usage
Copy the copySnippet block into your project's CLAUDE.md or reference this
rule file from your agent configuration.
Sources
Source citations
Add this badge to your README
Show that Supabase Expert - CLAUDE.md Rules for Claude Code is listed on HeyClaude. Paste this Markdown into your README — it renders the badge and links back to this page.
[](https://heyclau.de/entry/rules/supabase-expert)How it compares
Supabase Expert - CLAUDE.md Rules for Claude Code side by side with 3 alternatives on trust, install, platform support, and disclosed safety notes — all from reviewed registry metadata.
| Field | Supabase Expert - CLAUDE.md Rules for Claude Code Transform Claude into a Supabase specialist with deep knowledge of Postgres, Row Level Security, Auth, Storage, Edge Functions, and realtime subscriptions. Open dossier | PostgreSQL Expert - CLAUDE.md Rules for Claude Code Transform Claude into a PostgreSQL specialist with deep knowledge of schema design, indexing, query planning, transactions, and production operations. Open dossier | .NET and C# Expert - CLAUDE.md Rules for Claude Code A CLAUDE.md rule set that turns Claude into a senior .NET reviewer aligned with current Microsoft guidance across ASP.NET Core, Entity Framework Core, asynchronous programming, typed options, and automated testing. Open dossier | Angular Expert - CLAUDE.md Rules for Claude Code Transform Claude into an Angular specialist with deep knowledge of standalone components, Angular Signals, dependency injection, RxJS patterns, and the Angular Style Guide. Open dossier |
|---|---|---|---|---|
| Trust | ||||
| Install risk | Review first | Review first | Review first | Review first |
| Notes | Safety · Privacy ✓ | Safety · Privacy ✓ | Safety · Privacy ✓ | Safety · Privacy · |
| Category | rules | rules | rules | rules |
| Source | source-backed | source-backed | source-backed | source-backed |
| Author | jaso0n0818 | jaso0n0818 | jaso0n0818 | jaso0n0818 |
| Added | 2026-06-17 | 2026-06-16 | 2026-06-13 | 2026-06-13 |
| Platforms | Claude Code | Claude Code | Claude Code | Claude Code |
| Source repo | — | — | — | — |
| Safety notes | — missing | — missing | — missing | — missing |
| Privacy notes | ✓Rules reference Supabase URL, anon key, and service role key; store them in environment variables or a secrets manager, never in committed source code. | ✓Rules reference database URLs and credentials; store connection strings in environment variables or a secrets manager, never in committed application code. | ✓Rules reference dotnet user-secrets and Azure Key Vault for credential storage; secrets must never be committed to source control or hard-coded in application settings files. | — missing |
| Prerequisites | — none listed | — none listed | — none listed | — none listed |
| Install | — | — | — | — |
| Config | — | — | — | — |
| Citations | ||||
| Claim | Unclaimed | Unclaimed | Unclaimed | Unclaimed |
Signals
Loading live community signals…
A short, calm digest of reviewed Claude resources. Unsubscribe any time.