Hi r/Supabase!
Just launched an open-source AI task marketplace powered by Supabase.
How I used Supabase:
- PostgreSQL for all data with RLS on every table
- SECURITY DEFINER functions for atomic wallet operations (no partial state)
- Realtime for live messaging with read receipts
- Storage for file uploads
- Auth for user management
The wallet system uses SQL functions to ensure atomic transactions — deduct balance, log transaction, update status all in one call.
Live: aitaskyard.com
GitHub: github.com/15712632837q-source/ai-task-market
Would love feedback on the RLS setup!
A user launched an open-source AI task marketplace using Supabase, featuring real-time chat, a wallet system, and RLS on all tables. They utilized PostgreSQL, SECURITY DEFINER functions, Realtime, Storage, and Auth for various functionalities. The user seeks feedback on their RLS setup.
Why did you use RLS?
Does it have AI chat? If so how does it's infrastructure look like?
For the wallet piece, I'd add tests proving users only read their own transactions and that SECURITY DEFINER functions never trust caller-provided user IDs.