Skip to main content
D
Dioni.dev
Back to home
Indie1 min read

Day 6: Security Day 馃敀

Today I didn't ship sexy features... today was a security day.Reviewed and applied full security on Supabase for Mushin:RLS (Row Level Security) enabled on ALL...

Dioni avatar

Dioni

Updated:

Share:
Day 6: Security Day 馃敀

Today I didn't ship sexy features... today was a security day.

Reviewed and applied full security on Supabase for Mushin:

  • RLS (Row Level Security) enabled on ALL tables

  • Policies applied to views (epics, projects, tasks)

  • Gaps identified - several tables were exposed

  • Auth flow validated

Why spend my full Mushin day on this?

Because nobody wants to be the indie hacker who launches without security and then cries on X when they leak user data 馃槗

Founding Members will trust Mushin with their tasks, their projects, their daily workflow... Their data MUST be protected from day 1 and they will. Multi-tenant security is non-negotiable.

It's not sexy work. No pretty screenshots. But it's critical.

The struggle: Finding out several tables had NO RLS was a wake-up call. Would've been easy to skip this "for later". Didn't.

The win: Mushin 鐒″績 is now Fort Knox... each user only sees THEIR data. Zero exceptions

Launch: 1 Dec 馃殌
Waitlist: mushin.work

#30DayChallenge#BuildInPublic#Mushin#ShipMushin30

If this resonated, let me know

Dioni avatar

Dioni

Solo developer documenting the journey of building products as an indie hacker. Focused on productivity, applied AI, and sustainable development practices.

Related Posts