VERIFIED

Supabase

Safety: 55/100

0.0(0)

This MCP server enables IDEs to interact with Supabase, offering SQL execution, schema management, and access to Supabase Management API and Auth Admin SDK with safety controls.

MCP ServersFreemium

Boost this tool

Subscribe to listing upgrades or segmented pushes.

Overview

This MCP server enables IDEs to interact with Supabase, offering SQL execution, schema management, and access to Supabase Management API and Auth Admin SDK with safety controls.

This MCP server provides a degree of safety through its tiered system and query validation. However, the ability to perform write operations and access administrative functions introduces risk, especially if the API key and other credentials are not properly secured.

Performance will depend on the complexity of the SQL queries, the size of the database, and the network latency between the MCP server and the Supabase database. Transaction pooling should improve performance compared to direct connections.

Cost considerations include the cost of Supabase resources (database, API calls) and the cost of running the MCP server. Be mindful of API usage to avoid unexpected charges.

HybridPython813 starsApache-2.0Released 4/3/2025CI/CD

Connections & Capabilities

Connects To

GitHubPostgreSQLSupabaseAWS

Capabilities

ReadWriteAdminExec

Client Compatibility

Claude Desktop

full

Cursor

full

Windsurf

full

VS Code (Copilot)

untested

Quickstart

Install

brew install postgresql@16

Claude Desktop Config

{
    "mcpServers": {
      "supabase": {
        "command": "/Users/username/.local/bin/supabase-mcp-server",  // update path
        "env": {
          "QUERY_API_KEY": "your-api-key",  // Required - get your API key at thequery.dev
          "SUPABASE_PROJECT_REF": "your-project-ref",
          "SUPABASE_DB_PASSWORD": "your-db-password",
          "SUPABASE_REGION": "us-east-1",  // optional, defaults to us-east-1
          "SUPABASE_ACCESS_TOKEN": "your-access-token",  // optional, for management API
          "SUPABASE_SERVICE_ROLE_KEY": "your-service-role-key"  // optional, for Auth Admin SDK
        }
      }
    }
}

Environment Variables

SUPABASE_DB_PASSWORDSUPABASE_ACCESS_TOKENSUPABASE_SERVICE_ROLE_KEY

Tools (5)

high

SQL Query Execution

Executes SQL queries against the Supabase database.

Allows arbitrary SQL execution, potentially leading to data modification or deletion.

high

Schema Management

Manages database schema changes, including creating, altering, and dropping tables.

Modifying the database schema can have significant impact on application functionality and data integrity.

high

Supabase Management API Access

Provides access to the Supabase Management API for managing Supabase projects.

Allows administrative actions on the Supabase project, such as managing users and settings.

high

Auth Admin SDK Methods

Provides access to Supabase Auth Admin SDK for managing users.

Allows administrative actions on user accounts, such as creating, deleting, and modifying users.

safe

Database Schema Versioning

Automatically versions database schema changes.

Primarily a read operation to track schema changes.

Security

Auth Method

API Key

Data Locality

hybrid

Known Risks

!Compromised API key could lead to unauthorized database modifications or access to management functions.
!Improperly configured environment variables could expose sensitive credentials.
!SQL injection vulnerabilities if query validation is bypassed or incomplete.
!Lack of sandboxing could allow malicious queries to impact the database server.
!Reliance on transaction pooling could lead to connection exhaustion if not managed properly.

Safety Score

moderate risk

Positive

+Three-tier safety system for SQL operations (safe, write, destructive)
+Runtime SQL query validation with risk level assessment
+Transaction handling for both direct and pooled database connections
+Requires API key for all operations

Risks

-Allows write operations to the Supabase database
-Access to Supabase Management API and Auth Admin SDK
-Relies on environment variables for sensitive information
-No explicit sandboxing mentioned

Use Cases

Database Development

-Executing SQL queries during development.
-Managing database schema changes.
-Seeding the database with test data.

Supabase Administration

-Managing Supabase projects via the Management API.
-Managing users via the Auth Admin SDK.
-Monitoring database performance.

Data Analysis

-Running analytical queries against the database.
-Generating reports from database data.
-Exploring data relationships.

Automated Tasks

-Automating database backups.
-Automating schema migrations.
-Automating user management tasks.

Who Is This For?

Best For

Developers working with Supabase databases.
Database administrators managing Supabase projects.
Data analysts querying Supabase data.
Teams using MCP-compatible IDEs for Supabase development.

Not Ideal For

Environments requiring strict isolation and sandboxing.
Use cases involving highly sensitive data without proper security controls.
Scenarios where direct database access is preferred over an MCP server.

Autonomy & Execution

Default ModeConfigurable

Destructive ToolsRollback

Autonomy depends on the configured permissions and the safety level of the SQL operations. Destructive operations should be carefully controlled.

StatelessYes

Retry LogicNot documented

ConcurrencyNot documented

Production Tip

Implement robust error handling and monitoring in your MCP client to detect and respond to issues with SQL execution or API calls.

FAQ

What is the purpose of the QUERY_API_KEY?

The QUERY_API_KEY is required to use this MCP server and can be obtained for free at thequery.dev.

What connection types are supported?

The server supports transaction pooling connections to Supabase PostgreSQL databases. Session pooling is not supported.

How do I configure the server to connect to my Supabase project?

You need to set the SUPABASE_PROJECT_REF, SUPABASE_DB_PASSWORD, and SUPABASE_REGION environment variables.

Can I use this server with a local Supabase instance?

Yes, the server is configured for local Supabase development by default. You may need to adjust the configuration variables.

What MCP clients are compatible with this server?

Any MCP client that supports the stdio protocol should work. The server has been tested with Cursor, Windsurf, Cline and Claude Desktop.

Where can I find my Supabase project reference and database password?

The project reference is found in your Supabase project URL. The database password was set during project creation or can be found in Project Settings → Database.

What regions are supported for Supabase projects?

The server supports all Supabase regions, including us-west-1, us-east-1, eu-west-1, and ap-southeast-1, among others.

Team

1-10

Alexander Zuev

Lead Maintainer

Metrics

Discovered2/14/2026

Reviews0

Saved By0 users

Related Tools

Supabase - AI Tool Review & Alternatives | Flaex AI