Lovable Cloud Migration Risk Report

A fixed-scope 24-hour second pass for one redacted Lovable Cloud to Supabase migration packet: auth transfer, RLS, Storage object paths, explicit grants, frontend target switch, MCP handoff, and launch smoke tests.

Build free packet first Read sample report Scoped checkout

Buy this when

  • A Lovable Cloud app is moving to an owned Supabase project and the migration guide stops at row counts or login checks.
  • The app has auth users, profiles, memberships, tenant ownership, avatars, documents, uploads, or generated migrations.
  • Supabase MCP, Lovable MCP, Cursor, Codex, Claude Code, Bolt, or v0 helped write SQL and you need a launch evidence pass.
  • A new project may be affected by the May 30, 2026 Data API grants default, or local replay already produced 42501.
Do not send secrets, service-role values, connection strings, private rows, private screenshots, payment records, full names, private handles, or full transaction identifiers.
$25

What comes back within 24 hours

  • Top migration launch risks, grouped as BLOCK / CAUTION / REVIEW.
  • Auth transfer and first-login smoke-test gaps.
  • RLS owner, wrong-owner, wrong-tenant, and anonymous-session checks.
  • Storage upload, overwrite/upsert, list, download, delete, and wrong-path checks.
  • Explicit grant, RPC/function/view reachability, and local replay notes.
  • Three prioritized fixes or evidence steps for launch readiness.
Open scoped checkout Read sample report

Send

  • Redacted table and flow names.
  • Generated migration notes.
  • Policy snippets with identifiers replaced.
  • Smoke-test results or missing tests.

Do not send

  • Service-role values or connection strings.
  • Private user rows or private files.
  • Payment, tax, bank, card, or payout data.
  • Private dashboards or account screenshots.

Scope edge

  • This is one migration packet, not a broad audit.
  • No production access is needed.
  • No penetration test or compliance certification.
  • No support for unredacted private data.

Packet shape

# Lovable Cloud to Supabase migration packet

## App flows
- profiles, memberships, avatars bucket, onboarding insert

## Cutover notes
- Auth users migrated; first-login behavior still needs smoke tests.
- Frontend target switch points to the owned Supabase project.
- Generated migration includes public tables and RLS policies.

## Evidence gaps
- Storage upsert SELECT/UPDATE policy evidence missing.
- Wrong-tenant membership read test missing.
- Local supabase db reset replay not tested after dashboard edits.
Generate packet Run generated-app check Run grants checker Read sample report