[pull] master from supabase:master#889
Merged
Merged
Conversation
Co-authored-by: supabase-cli-releaser[bot] <246109035+supabase-cli-releaser[bot]@users.noreply.github.com>
Adding myself to humans.txt ## I have read the [CONTRIBUTING.md](https://github.com/supabase/supabase/blob/master/CONTRIBUTING.md) file. YES ## What kind of change does this PR introduce? This adds me to humans.txt ## What is the current behavior? humans.txt currently lacks a line with my name ## What is the new behavior? humans.txt contains a line with my name ## Additional context no, thank you <!-- This is an auto-generated comment: release notes by coderabbit.ai --> ## Summary by CodeRabbit * **Chores** * Updated team contributors information <!-- end of auto-generated comment: release notes by coderabbit.ai -->
Mark provenance of SQL via the branded types SafeSqlFragment and UntrustedSqlFragment. Only SafeSqlFragment should be executed; UntrustedSqlFragments require some kind of implicit user approval (show on screen + user has to click something) before they are promoted to SafeSqlFragment. <!-- This is an auto-generated comment: release notes by coderabbit.ai --> ## Summary by CodeRabbit * **New Features** * Editor and RLS tester show loading states for inferred/generated SQL and include a dedicated user SQL editor for safer edits. * **Refactor** * Platform-wide SQL handling tightened: snippets and AI-generated SQL are treated as untrusted/display-only until promoted, improving safety and consistency. <!-- end of auto-generated comment: release notes by coderabbit.ai -->
…grations pages (#45551) ## Summary Wires the existing `list-page.*` shortcuts up to the Database → Replication and Database → Migrations pages, so they get the same hotkey behavior as Roles, Tables, Publications, etc. No new shortcut IDs were added. **Migrations page** - Shift+F → focus the migration search input (label: "Search migrations") - F C → clear the search filter **Replication / Destinations page** - Shift+F → focus the destinations filter input (label: "Search destinations") - F C → clear the filter - Shift+N → open the Add Destination panel. Wrapped with `<Shortcut>` so the keybind tooltip shows on hover, and gated on `!!newDestinationDefaultType` so it stays disabled when no destination type is available. Closes [FE-3141](https://linear.app/supabase/issue/FE-3141/add-shortcuts-for-database-replication-and-migration-page). ## Test plan - [x] On the Migrations page, press Shift+F → search input focuses & selects existing text. - [x] On the Migrations page, type a query then press F C → search clears. - [x] On the Replication page, press Shift+F → filter input focuses & selects. - [x] On the Replication page, press Shift+N → Add Destination panel opens (when a destination type is available). - [x] Hover the "Add destination" button → keybind tooltip shows Shift+N. - [x] On the Replication page, type a filter then press F C → filter clears. - [x] All four shortcuts appear in Cmd+K under "Shortcuts" while on the respective page. - [ ] Disabling list-page shortcuts in Preferences disables them on these pages too. <!-- This is an auto-generated comment: release notes by coderabbit.ai --> ## Summary by CodeRabbit * **New Features** * Added keyboard shortcuts for search field focus and filter reset in Database Migrations and Destinations pages * Added keyboard shortcut for "Add destination" action in Destinations page <!-- end of auto-generated comment: release notes by coderabbit.ai -->
Closes #45179. ## Summary `generateCreatePolicyQuery` in `PolicyEditorPanel.utils.ts` builds a `CREATE POLICY` statement with raw double-quote interpolation for name/schema/table, then executes it via `useExecuteSqlMutation` from `PolicyEditorPanel/index.tsx:192`. Any of those values containing a `\"` character breaks out of the identifier quoting in the executed statement. Applies `ident()` to the three identifier interpolations. Same pattern as #44555 (queue), #44589 (index), #44721 (view autofix), #44723 (auth hooks). The helper is already used at `Policies.utils.ts:319`. ## Scope The preview-only SQL in `Policies.utils.ts` (`createSQLStatementForCreatePolicy` / `createSQLStatementForUpdatePolicy`) has the same pattern but is not executed. That string is only rendered in the review modal while the mutation uses a structured payload. Tracking separately. ## Test plan - [ ] Create a policy with a name containing a double quote. Verify it applies correctly with the fix (and produces broken SQL without). - [ ] Create a policy on a table/schema name containing a double quote. Same check. - [ ] Regression: create a plain-named policy. Works as before.
<!-- This is an auto-generated comment: release notes by coderabbit.ai --> ## Summary by CodeRabbit * **Refactor** * Enhanced safety of database query generation for publication and table definition operations. <!-- end of auto-generated comment: release notes by coderabbit.ai -->
## I have read the [CONTRIBUTING.md](https://github.com/supabase/supabase/blob/master/CONTRIBUTING.md) file. YES ## What kind of change does this PR introduce? Content update: new blog post and feature page copy refresh for Branching. ## What is the current behavior? - No blog post exists announcing no-Git branching as the default workflow. - The Branching feature page (`/features/branching`) references "Branching 2.0 (currently in public alpha)" and frames dashboard branching as secondary to Git-based branching. ## What is the new behavior? - New blog post: "Branching without Git is now the default" (`apps/www/_blog/2026-04-branching-without-git-is-now-the-default.mdx`) - Updated feature page (`apps/www/data/features.tsx`): - Subtitle: "Test and preview changes using Supabase Branches." → "Test schema changes without touching production." - Intro: removes stale alpha framing; leads with dashboard branching as the default. - New "Two ways to branch" section covering dashboard and Git-based workflows side by side. - "When to use branching" replaces old Benefits/Valuable-for sections; adds AI agents as a use case. ## Additional context N/A <!-- This is an auto-generated comment: release notes by coderabbit.ai --> ## Summary by CodeRabbit * **New Features** * Dashboard-based branching is now the default, letting you create branches, edit schemas, review diffs, and merge to production without Git. * Two branching options offered: Dashboard branching or Git-based branching (both supported). * New pg-delta schema diff engine (alpha) powers automatic migration generation; available in CLI behind a flag. * AI-driven workflows supported for automatic branch creation and merge actions. * **Documentation** * Updated guides and blog post explaining the new branching options, workflow, and getting started links. <!-- end of auto-generated comment: release notes by coderabbit.ai --> --------- Co-authored-by: Ana <ana1337x@users.noreply.github.com>
…#45473) Add new `method` property to existing event to distinguish from server-side emitted events
github-actions
Bot
added
the
documentation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
7 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
See Commits and Changes for more details.
Created by
pull[bot] (v2.0.0-alpha.4)
Can you help keep this open source service alive? 💖 Please sponsor : )