Indie AI Stack
Search
Cursor Rules/Best Cursor Rules for Supabase Projects

Best Cursor Rules for Supabase Projects

Cursor RulesDifficulty: BeginnerUpdated: 2026-05-25

Cursor rules that prevent schema drift and keep Supabase + Next.js changes safe.

Use this rule if you are building:

  • Auth redirects and callback routes
  • Database schema changes and migrations
  • Row-level security reviews
  • Storage uploads and signed URLs

This rule helps Cursor avoid:

  • Modifying unrelated files
  • Leaking env values
  • Breaking API routes and request boundaries
  • Editing database migrations without review

Copy Cursor Rules

Paste into .cursorrules at your repo root.

# Project: Best Cursor Rules for Supabase Projects
# Goal: Ship safely with minimal, reviewable diffs.

You are an AI coding assistant. Follow these rules strictly:

1) Make the smallest change that solves the task.
2) Never modify unrelated files. If you must touch more than 2 files, explain why.
3) Do not change dependencies or configs unless explicitly requested.
4) Preserve existing formatting and code style.
5) Never log secrets. Never print env values.

When asked to implement a feature:
- Ask for the exact acceptance criteria if missing.
- Propose a short plan, then implement.
- Add lightweight validation steps (lint/build/tests) when available.

Repository boundaries:
- Do not edit lockfiles unless dependencies changed.
- Do not edit generated files.

Framework notes:
- Prefer server components for data fetching; keep client components minimal.
- Use environment variables via process.env only; never inline secrets.

Output:
- Provide changes as a patch.
- Include file paths and the key lines changed.
Show full rules
# Project: Best Cursor Rules for Supabase Projects
# Goal: Ship safely with minimal, reviewable diffs.

You are an AI coding assistant. Follow these rules strictly:

1) Make the smallest change that solves the task.
2) Never modify unrelated files. If you must touch more than 2 files, explain why.
3) Do not change dependencies or configs unless explicitly requested.
4) Preserve existing formatting and code style.
5) Never log secrets. Never print env values.

When asked to implement a feature:
- Ask for the exact acceptance criteria if missing.
- Propose a short plan, then implement.
- Add lightweight validation steps (lint/build/tests) when available.

Repository boundaries:
- Do not edit lockfiles unless dependencies changed.
- Do not edit generated files.

Framework notes:
- Prefer server components for data fetching; keep client components minimal.
- Use environment variables via process.env only; never inline secrets.

Output:
- Provide changes as a patch.
- Include file paths and the key lines changed.

Related Ideas

AI PDF SaaS Idea

Build a PDF summarizer, translator, and Q&A SaaS with Cursor, Next.js, Supabase, and PayPal.

View Idea →

Related Build Kits

AI PDF SaaS Build Kit

Build a PDF summarizer, translator, and Q&A SaaS with Cursor, Next.js, Supabase, and PayPal.

View Build Kit →

Related Launch Checklists

Supabase Auth Checklist

A complete checklist for setting up secure Supabase authentication in your micro SaaS.

View Checklist →

Related Playbooks

Add Supabase Auth and Credits System

Guide for auth flows, gated usage, and credit-based feature access in a small SaaS.

Read Playbook →

Build an AI PDF SaaS with Cursor, Next.js, Supabase and PayPal

Practical build guide for shipping an AI PDF product from MVP scope to launch checklist.

Read Playbook →

Related Fixes

Supabase Auth Redirect Not Working — Fix Guide

Fix callback URLs, cookies, site URL mismatches, and redirect handling in Next.js auth flows.

Fix Issue →

Supabase Storage Upload Not Working — Fix Guide

Fix storage bucket policies, signed upload paths, auth state, and object permission issues.

Fix Issue →

What this Cursor rule is for

Keep edits scoped, protect critical files, and enforce safe patterns for Supabase / Auth / PostgreSQL projects.

Who should use it

  • Indie developers shipping production features fast
  • Teams that want predictable AI changes with minimal diff

Copy the Cursor rule

# Project: Best Cursor Rules for Supabase Projects
# Goal: Ship safely with minimal, reviewable diffs.

You are an AI coding assistant. Follow these rules strictly:

1) Make the smallest change that solves the task.
2) Never modify unrelated files. If you must touch more than 2 files, explain why.
3) Do not change dependencies or configs unless explicitly requested.
4) Preserve existing formatting and code style.
5) Never log secrets. Never print env values.

When asked to implement a feature:
- Ask for the exact acceptance criteria if missing.
- Propose a short plan, then implement.
- Add lightweight validation steps (lint/build/tests) when available.

Repository boundaries:
- Do not edit lockfiles unless dependencies changed.
- Do not edit generated files.

Framework notes:
- Prefer server components for data fetching; keep client components minimal.
- Use environment variables via process.env only; never inline secrets.

Output:
- Provide changes as a patch.
- Include file paths and the key lines changed.

Recommended project structure

  • src/app
  • src/components
  • src/lib
  • content/cursor-rules

How to use it in Cursor

  1. Copy the block into your repo root as .cursorrules
  2. Restart Cursor
  3. Test by asking it to change one small file

Common mistakes

  • Rules exist but Cursor uses a different workspace root
  • Rules are too vague and not actionable

Related workflows

  • Use Cursor to Fix Vercel Build Errors
  • Build SEO Landing Pages with Cursor

Related MCP servers

  • Best MCP Servers for Cursor
  • Best File System MCP Servers

FAQ

Should I allow the agent to edit database migrations automatically?

Prefer manual review for any schema change and run migrations locally first.