Skip to main content
The Security section of database settings lets you identify vulnerabilities, such as missing RLS policies and insecure permissions.

View Security settings

To open the security settings for your project’s database, follow these steps:
The Security page in the Bolt database settings.
  1. Log in to your Bolt project.
  2. Click the database icon in the top center of your screen.
  3. Click Security.

Fix security issues

Any security issues Bolt identifies are listed in the Security Audit screen. In the example screenshot below, the RLS Policy Always True warning shows:
The Security page with an RLS Policy Always True warning showing and the Ask Bolt to fix button highlighted.
Examples of other warnings include:
  • Function Search Path Mutable
  • Leaked Password Protection Disabled
    If you see this warning, the Prevent Leaked Passwords setting is turned off for your database. It’s on by default for Bolt databases, so this usually means it was turned off or your database is managed in Supabase using a free Supabase plan, where the setting isn’t available. To learn more see Leaked Password Protection.
To automatically correct security issues, click the Ask Bolt to fix button.