Supabase connector — schema-aware integration with multi-account support. Read-only access via dedicated PG user, no data mirror, sqlglot validation.
Project description
piilot-pack-supabase
Supabase connector — schema-aware integration with multi-account support. Read-only access via dedicated PG user, no data mirror, sqlglot validation.
🧩 This repo is both a template and a working "hello" plugin.
Just want to demo / dogfood? Install it as-is, it loads as plugin
hellowith one module and one migration — no edits required.Want to start your own plugin? Fork via
gh repo create --template, then rename everything to your namespace in one go:./init-plugin.sh <namespace> "<description>" <category>See the Piilot plugin development guide for the full workflow.
What it does
TODO: one-paragraph summary of this plugin's purpose and the problem it solves for a Piilot company.
What this template demonstrates (SDK v0.3)
The hello plugin is a functional showcase of the Piilot SDK v0.2+
primitives, pinned to piilot-sdk>=0.3.0. Fork the template and
start from a plugin that already wires:
| File | SDK primitive | What it illustrates |
|---|---|---|
piilot_pack_supabase/handlers.py |
ctx.handlers.register |
Module handlers dispatched by the module runtime |
piilot_pack_supabase/migrations/ + __init__.py |
ctx.migrations.register_schema |
Idempotent per-plugin SQL schema + RLS policies |
piilot_pack_supabase/locales/ + __init__.py |
ctx.i18n.register_locales |
Per-namespace locale catalogs merged into /i18n/catalog |
piilot_pack_supabase/repo.py + migrations/002_*.sql |
piilot.sdk.db |
cursor(), run_in_thread, Json — direct SQL with RLS propagation |
piilot_pack_supabase/routes.py |
piilot.sdk.http |
register_router + Depends(require_user) + get_real_ip |
piilot_pack_supabase/tools.py |
piilot.sdk.tools + piilot.sdk.session |
Agent StructuredTool with system_prompt_builder + session read |
piilot_pack_supabase/seeds.py |
piilot.sdk.modules + piilot.sdk.templates |
Idempotent register_module + register_template upserts |
piilot_pack_supabase/connector.py |
piilot.sdk.connectors |
Commented out — pattern for declaring an external API connector |
piilot_pack_supabase/jobs.py |
piilot.sdk.scheduler |
Commented out — pattern for a periodic sync handler |
frontend/src/index.ts |
core.registerModuleView + registerI18nBundle |
Plugin UI entry — ships as piilot-pack-supabase-ui on npm |
frontend/src/HelloModuleView.tsx |
React component rendered by the host ModuleViewShell |
URL-backed sub-routing via useSearchParams, imports from @plugin-host/* |
.github/workflows/release-ui.yml |
npm publish on ui-v* tag |
Mirrors the PyPI workflow for the backend |
Full reference: see the Piilot plugin development guide.
Dual distribution
- Backend —
piilot-pack-supabaseon PyPI, taggedv<version>. - Frontend —
piilot-pack-supabase-uion npm, taggedui-v<version>.
Both ship from this single repo; the two release workflows publish independently so a backend hot-fix doesn't force a frontend release and vice-versa.
Install
Self-hosted Piilot (docker-compose.selfhost.yml)
# Drop the package into /app/plugins/
pip install piilot-pack-supabase
# or for a git-based install while the SDK is still pre-PyPI:
pip install git+https://github.com/Kinetics-Consulting-V2/piilot-pack-supabase.git@v0.1.0
# Restart the backend
docker compose restart backend
Piilot Cloud (SaaS)
Add the dependency to the core's requirements.txt:
piilot-pack-supabase @ git+https://github.com/Kinetics-Consulting-V2/piilot-pack-supabase.git@v0.1.0
Coolify rebuilds the backend image; the loader picks up the plugin at startup and applies migrations. Enable for a given company via:
curl -X PUT \
-H "Authorization: Bearer $ADMIN_TOKEN" \
-H "X-Company-Id: $COMPANY_ID" \
https://api.piilot.ai/admin/plugins/hello/activations/$COMPANY_ID
Usage
TODO: how a user interacts with the plugin (module screens, agent tools, integrations…).
Development
Local setup
# Clone next to the Piilot core
cd /opt/factory/projects
git clone https://github.com/Kinetics-Consulting-V2/piilot-pack-supabase.git
# Install in editable mode with dev extras
cd piilot-pack-supabase
pip install -e .[dev]
Then add the plugin as a bind mount in the core's
docker-compose.override.yml (gitignored):
services:
backend:
volumes:
- ../piilot-pack-supabase:/app/plugins/piilot-pack-supabase
Restart the backend and watch for:
[plugins] Loaded: hello v0.1.0 (handlers=1, tools=0)
Run the tests
pytest
SQL validator — what's allowed, what's blocked
Every tool that runs SQL on the customer's Supabase project goes
through validator.validate(sql, allowed_tables=…) (see
piilot_pack_supabase/validator.py). The gate parses the SQL with
sqlglot, walks the AST, and refuses anything that's not a strict
SELECT against the admin's whitelisted tables.
Allowed at the top level: SELECT, WITH … SELECT, UNION,
INTERSECT, EXCEPT, parenthesized subqueries.
Blocked everywhere in the tree (DML/DDL gate, even inside CTEs):
INSERT, UPDATE, DELETE, MERGE, TRUNCATE, CREATE, DROP,
ALTER, GRANT, REVOKE, COPY FROM/TO PROGRAM, SET SESSION.
Refused functions: pg_read_file, lo_export, dblink,
pg_terminate_backend, pg_advisory_lock, pg_ls_dir, plus
pg_sleep with a non-literal argument or a literal > 1 second.
Whitelist: every table referenced in the SQL must be in the
connection's selected_tables config (set via the TablePicker UI).
Schema-qualified references are matched case-insensitively. Tables
in auth, storage, vault, pg_catalog, information_schema
and other internal Supabase schemas are filtered out of the snapshot
upstream and can never land in the whitelist.
Known limitations
The corpus at tests/fixtures/known_false_positives.sql lists the
patterns the validator refuses on purpose (pg_catalog access,
multi-statement payloads, CTEs wrapping DML, pg_sleep with a
runtime arg) along with the workarounds. Two false positives
(INTERSECT / EXCEPT at the top level) were fixed in v0.1
during the Phase 10 red-teaming pass — both queries now pass.
tests/fixtures/known_legitimate_selects.sql is the regression
corpus (50+ legitimate SELECTs) the validator is asserted to accept
in CI; add a new case there before assuming a refusal is a bug.
Versioning
This plugin follows Semantic Versioning. The
sdk_compat range in pyproject.toml pins the Piilot SDK versions
we build against. Watch the core's
docs/SDK_CHANGELOG.md for breaking changes.
License
Apache-2.0. See LICENSE.
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
Filter files by name, interpreter, ABI, and platform.
If you're not sure about the file name format, learn more about wheel file names.
Copy a direct link to the current filters
File details
Details for the file piilot_pack_supabase-0.1.0.tar.gz.
File metadata
- Download URL: piilot_pack_supabase-0.1.0.tar.gz
- Upload date:
- Size: 93.8 kB
- Tags: Source
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.2.0 CPython/3.12.3
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
c909fa0bd8114c7d09bff748cbbf91c3ca385f0478028cbd473afb619983fe1b
|
|
| MD5 |
07d5e420f6e3b9e3840b5ef3192e1818
|
|
| BLAKE2b-256 |
efc49b7f313d8b29f0022f4b11d3bfb4d63ca5b88403ec0469d05233340ac0c8
|
File details
Details for the file piilot_pack_supabase-0.1.0-py3-none-any.whl.
File metadata
- Download URL: piilot_pack_supabase-0.1.0-py3-none-any.whl
- Upload date:
- Size: 79.4 kB
- Tags: Python 3
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/6.2.0 CPython/3.12.3
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
8e2a8ac2c6757b7ddfa142cd3571a56d6b2b2c8bf5a781e32173b6703844b3f3
|
|
| MD5 |
455bd320e09d321a268c2792c443ce5d
|
|
| BLAKE2b-256 |
55006a4c4f7de00d6d28e83fabd42fe3490bbdf1795681e4ae834bf00a7fd1dc
|
