Closed kiwicopple closed 3 months ago
Every table in the public schema (or a schema which is exposed to PostgREST) should have RLS enabled. IMO this would be a CRITICAL bug
public
CRITICAL
It's slightly at odds with this one: https://supabase.github.io/splinter/0008_rls_enabled_no_policy/
But this one should take precedence so that users don't leak private data with the anon key
Every table in the
publicschema (or a schema which is exposed to PostgREST) should have RLS enabled. IMO this would be aCRITICALbugIt's slightly at odds with this one: https://supabase.github.io/splinter/0008_rls_enabled_no_policy/
But this one should take precedence so that users don't leak private data with the anon key