Control your self-hosted Supabase from your development environment. Browse schemas, run SQL, manage migrations and auth users, inspect stats, and work with storage and realtime. Generate TypeScript types to keep your code in sync.
Claim it to get a verified publisher badge, a free copy of our full audit findings, and direct contact for any high-priority issues we find.
Install from
M8ven verifies MCPs across every public registry — install directly from whichever one you prefer.
Disclosed vulnerabilities in this server's declared npm dependencies (via OSV). Whether each is reachable depends on the installed versions.
express vulnerable to XSS via response.redirect()
Express.js Open Redirect in malformed URLs
process.env. You'll be asked to provide them before it can run.DATABASE_URL— Direct Database Access: Tools interacting directly with privileged schemas (auth, storage) or system catalogs (pg_catalog) generally require the to be configured for a direct pg connection.PORTSUPABASE_ANON_KEY— anon-key <key> or =<key>: Your Supabase project's anonymous key.SUPABASE_AUTH_JWT_SECRET— jwt-secret <secret> or =<secret>: Your Supabase project's JWT secret. Needed for tools like verify_jwt_secret.SUPABASE_SERVICE_ROLE_KEY— export =<your-service-key>SUPABASE_URL— url <url> or =<url>: The main HTTP URL of your Supabase project (e.g., http://localhost:8000).TRANSPORT[](https://m8ven.ai/mcp/freebreaker-selfhosted-supabase-yu62r2)