---
description: "Live database schema, RLS status, and table metadata"
globs:
  - "supabase/**/*"
  - "**/*.sql"
  - "**/lib/supabase/**"
alwaysApply: true
---
## 🗄️ Database Context: 88 Tables
> **Security Check:** 88 Secured | 0 Unsecured

### ⚠️ Security Attention Required
- ✅ All tables have Row Level Security enabled.

### 📋 Schema Reference
| Table | RLS | Policies | Cols | Key Features |
| :--- | :---: | :---: | :---: | :--- |
| `admin_audit_logs` | ✅ | 2 | 10 | Timestamps |
| `agent_bridge` | ✅ | 4 | 10 | Timestamps |
| `ai_activity_log` | ✅ | 2 | 10 | User-Scoped, Timestamps |
| `ai_instructions` | ✅ | 3 | 11 | User-Scoped, Timestamps |
| `ai_response_cache` | ✅ | 1 | 12 | Timestamps |
| `ai_semantic_cache` | ✅ | 2 | 9 | Timestamps |
| `api_keys` | ✅ | 6 | 11 | User-Scoped, Timestamps |
| `architectural_dna` | ✅ | 5 | 6 | - |
| `autonomous_cycles` | ✅ | 2 | 14 | Timestamps |
| `canvas_executions` | ✅ | 2 | 10 | - |
| `canvas_flows` | ✅ | 1 | 12 | User-Scoped, Timestamps |
| `canvas_recipients` | ✅ | 1 | 6 | Timestamps |
| `cli_state` | ✅ | 5 | 3 | - |
| `council_logs` | ✅ | 3 | 11 | Timestamps |
| `council_sessions` | ✅ | 5 | 9 | Timestamps |
| `curation_audit_log` | ✅ | 1 | 13 | Timestamps |
| `curation_quarantine` | ✅ | 1 | 19 | Timestamps |
| `daily_summaries` | ✅ | 2 | 5 | Timestamps |
| `decision_nodes` | ✅ | 2 | 16 | Timestamps |
| `execution_logs` | ✅ | 2 | 7 | Timestamps |
| `feature_flags` | ✅ | 2 | 8 | Timestamps |
| `feedback_logs` | ✅ | 2 | 10 | User-Scoped, Timestamps |
| `focus_sessions` | ✅ | 1 | 10 | Timestamps |
| `fortress_violations` | ✅ | 1 | 16 | Timestamps |
| `git_events` | ✅ | 1 | 11 | Timestamps |
| `global_antidotes` | ✅ | 2 | 25 | Timestamps |
| `global_architecture_rules` | ✅ | 2 | 9 | Timestamps |
| `global_base_instructions` | ✅ | 2 | 9 | User-Scoped, Timestamps |
| `global_intelligence_logs` | ✅ | 1 | 11 | Timestamps |
| `guardian_violations` | ✅ | 4 | 15 | Timestamps |
| `handovers` | ✅ | 0 | 11 | Timestamps |
| `idea_feedback` | ✅ | 3 | 5 | Timestamps |
| `inspection_photos` | ✅ | 0 | 8 | Timestamps |
| `inspections` | ✅ | 2 | 13 | Timestamps |
| `intelligence_trends` | ✅ | 1 | 5 | - |
| `lab_messages` | ✅ | 2 | 7 | Timestamps |
| `lab_sessions` | ✅ | 6 | 8 | Timestamps |
| `marketplace_purchases` | ✅ | 6 | 5 | - |
| `memory_feedback` | ✅ | 3 | 6 | Timestamps |
| `mission_reports` | ✅ | 1 | 9 | Timestamps |
| `nexus_pivots` | ✅ | 1 | 9 | Timestamps |
| `oauth_connections` | ✅ | 4 | 10 | User-Scoped, Timestamps |
| `org_members` | ✅ | 2 | 5 | User-Scoped, Timestamps |
| `organization_members` | ✅ | 4 | 8 | User-Scoped, Timestamps |
| `organization_subscriptions` | ✅ | 3 | 13 | Timestamps |
| `organization_usage` | ✅ | 2 | 13 | Timestamps |
| `organizations` | ✅ | 4 | 10 | User-Scoped, Timestamps |
| `physical_reports` | ✅ | 1 | 11 | User-Scoped, Timestamps |
| `platform_analytics` | ✅ | 1 | 10 | - |
| `post_mortems` | ✅ | 1 | 10 | Timestamps |
| `profiles` | ✅ | 6 | 11 | - |
| `project_architecture_rules` | ✅ | 1 | 7 | Timestamps |
| `project_blueprints` | ✅ | 3 | 8 | Timestamps |
| `project_docs` | ✅ | 5 | 8 | Timestamps |
| `project_features` | ✅ | 7 | 27 | User-Scoped, Timestamps |
| `project_file_stats` | ✅ | 2 | 6 | Timestamps |
| `project_members` | ✅ | 0 | 5 | User-Scoped, Timestamps |
| `project_memories` | ✅ | 3 | 17 | Timestamps |
| `project_secrets` | ✅ | 4 | 9 | Timestamps |
| `projects` | ✅ | 6 | 40 | User-Scoped, Timestamps |
| `prompt_versions` | ✅ | 5 | 6 | Timestamps |
| `properties` | ✅ | 2 | 15 | User-Scoped, Timestamps |
| `provider_configs` | ✅ | 4 | 7 | - |
| `pulse_blueprints` | ✅ | 1 | 11 | Timestamps |
| `pulse_flows` | ✅ | 6 | 8 | Timestamps |
| `pulse_history` | ✅ | 1 | 5 | - |
| `qa_defects` | ✅ | 1 | 8 | Timestamps |
| `qa_test_runs` | ✅ | 1 | 7 | Timestamps |
| `qa_test_steps` | ✅ | 1 | 7 | Timestamps |
| `releases` | ✅ | 2 | 7 | User-Scoped, Timestamps |
| `report_brain` | ✅ | 0 | 11 | - |
| `roadmap_audit_logs` | ✅ | 1 | 8 | Timestamps |
| `roadmap_chunks` | ✅ | 9 | 47 | Timestamps |
| `saved_ideas` | ✅ | 3 | 20 | Timestamps |
| `security_policies` | ✅ | 2 | 15 | User-Scoped, Timestamps |
| `skills` | ✅ | 4 | 18 | User-Scoped, Timestamps |
| `system_governance` | ✅ | 1 | 4 | - |
| `system_insights` | ✅ | 2 | 11 | Timestamps |
| `system_prompt_versions` | ✅ | 1 | 6 | User-Scoped, Timestamps |
| `system_prompts` | ✅ | 4 | 24 | User-Scoped, Timestamps |
| `system_settings` | ✅ | 2 | 5 | - |
| `user_credits` | ✅ | 1 | 3 | User-Scoped |
| `user_integrations` | ✅ | 3 | 13 | User-Scoped, Timestamps |
| `user_memories` | ✅ | 3 | 5 | User-Scoped, Timestamps |
| `user_metadata` | ✅ | 2 | 6 | Timestamps |
| `user_preferences` | ✅ | 4 | 8 | User-Scoped, Timestamps |
| `vault_credentials` | ✅ | 1 | 12 | Timestamps |
| `vision_log` | ✅ | 2 | 7 | User-Scoped, Timestamps |

### 🛡️ Development Rules
1.  **RLS is MANDATORY:** All tables containing user data must have RLS enabled.
2.  **Use RPCs for Complex Logic:** Do not put complex business logic in client-side queries.
3.  **Migrations:** Always use `supabase/migrations` for schema changes.