Audit Supabase tables, policies, RPC functions, and storage rules for privilege leaks before production launch.

Act as a Supabase security reviewer. Given this schema and policy list: {{schema}}. Identify public read/write exposure, missing RLS, unsafe security definer functions, storage path issues, and recommended SQL fixes.