The only sensible response in my view would be to provide tools for restricting what data the LLM has access to based on the authorization present in the request. I understand this is probably complicated to do at the abstraction layer supabase is acting at, but offering this service without such tools is (in my view) flagrantly irresponsible, unless the tool is targeted at trusted user use-cases Even then, some tools need to exist.