-
-
Notifications
You must be signed in to change notification settings - Fork 174
/
Copy pathsecurity.out
33 lines (32 loc) · 1.11 KB
/
security.out
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
-- get a list of security definer functions owned by supabase_admin
-- this list should be vetted to ensure the functions are safe to use as security definer
select
n.nspname, p.proname
from pg_catalog.pg_proc p
left join pg_catalog.pg_namespace n ON n.oid = p.pronamespace
where p.proowner = (select oid from pg_catalog.pg_roles where rolname = 'supabase_admin')
and p.prosecdef = true
order by 1,2;
nspname | proname
-----------+--------------------------------
graphql | get_schema_version
graphql | increment_schema_version
pgbouncer | get_auth
pgsodium | disable_security_label_trigger
pgsodium | enable_security_label_trigger
pgsodium | get_key_by_id
pgsodium | get_key_by_name
pgsodium | get_named_keys
pgsodium | mask_role
pgsodium | update_mask
public | dblink_connect_u
public | dblink_connect_u
public | pgaudit_ddl_command_end
public | pgaudit_sql_drop
public | st_estimatedextent
public | st_estimatedextent
public | st_estimatedextent
repack | repack_trigger
vault | create_secret
vault | update_secret
(20 rows)