[notjustanymike]

You'd be shocked at how easy Supabase makes these things. You can describe your data needs and it'll use AI to generate the table and RLS policies. You can even go a step further and have Replit do both front and backend. I had chats with multiple PMs who have entire functioning products without understanding a lick of code. Powerful, and although scary from a security perspective, not so scary if it's a personal app.

[fragmede]

Supabase scans customer setups and throws up loud warnings for insecure setups aka RLS is disabled on $table, and unless the PM is totally irresponsible, they can throw that email at their LLM of choice and ask it "is this a problem, will I get hacked?" and the LLM will do a fairly competent review of the issue. So it's scary from a security perspective in so far as you do or don't trust AI to find issues.