Supabase vs Merge: Comparison & Alternatives (2026)

Supabase vs Merge: at a glance

Feature	Supabase	Merge
Sector	Infra & APIs, DevOps	Infra & APIs
Velocity score	6.3	5.0
Sparks · 30d	0	0
Top themes	security-defaults, rls-testing, breaking-changes, oauth-compliance	unified-api, accounting-integrations, multi-tenant-identity, object-urls
Last editorial update	1mo ago	10d ago
Website	Visit →	—

What is Supabase?

Supabase is reversing its biggest security default - public-schema tables no longer auto-exposed via PostgREST.

The headline shipping move is a deliberate change to Supabase's security posture: new projects can opt out of automatic Data API and GraphQL exposure for public-schema tables, with broader defaults flipping in May. Around it: an OAuth 2.1 compliance fix, an RLS Tester preview to make policy verification possible from the UI, and a steady drumbeat of platform improvements summarized in the monthly developer update.

Read the full Supabase trajectory →

What is Merge?

Merge raises the floor on integration fidelity — object URLs and per-tenant identity, week after week.

Merge ships a weekly changelog rhythm across Accounting, ATS, CRM, File Storage, and Chat. Recent weeks emphasize two motifs: making cross-system object URLs first-class in unified responses (Xero, NetSuite, Oracle Fusion) and exposing per-tenant identification on linked accounts so B2B SaaS customers can disambiguate multi-org installs (HubSpot, Dynamics, Zoho, Pipedrive). The cadence is dense and field-level, weighted toward mapping enhancements, webhook fidelity, and edge-case fixes per integration.

Read the full Merge trajectory →

Supabase vs Merge: editorial side-by-side

Supabase

INFRA · APISDEVOPS

6.3

Supabase is reversing its biggest security default - public-schema tables no longer auto-exposed via PostgREST.

◆ Current state

The headline shipping move is a deliberate change to Supabase's security posture: new projects can opt out of automatic Data API and GraphQL exposure for public-schema tables, with broader defaults flipping in May. Around it: an OAuth 2.1 compliance fix, an RLS Tester preview to make policy verification possible from the UI, and a steady drumbeat of platform improvements summarized in the monthly developer update.

◆ Where it's heading

Supabase is rebuilding the security defaults that made it fast to start with but easy to misconfigure. Combine the no-auto-expose change with the RLS Tester preview and the direction is clear: the platform is moving from convention-based exposure to explicit, testable access control. The OAuth compliance fix and developer updates suggest steady investment in standards conformance rather than new product surface this window.

◆ Prediction

Expect the no-auto-expose default to apply to existing projects (with a long opt-out runway), and the RLS Tester to graduate from preview into the dashboard as a first-class panel. Continued breaking-change drumbeat tied to OAuth/OIDC compliance is likely.

M

Merge

INFRA · APIS

5.0

Merge raises the floor on integration fidelity — object URLs and per-tenant identity, week after week.

◆ Current state

Merge ships a weekly changelog rhythm across Accounting, ATS, CRM, File Storage, and Chat. Recent weeks emphasize two motifs: making cross-system object URLs first-class in unified responses (Xero, NetSuite, Oracle Fusion) and exposing per-tenant identification on linked accounts so B2B SaaS customers can disambiguate multi-org installs (HubSpot, Dynamics, Zoho, Pipedrive). The cadence is dense and field-level, weighted toward mapping enhancements, webhook fidelity, and edge-case fixes per integration.

◆ Where it's heading

Two clear pulls. First, raising the floor on data fidelity — every endpoint should surface an object URL, every linked account should expose tenant identity. Second, expanding Accounting Unified API coverage in both directions, with Oracle Fusion Cloud ERP joining in beta alongside continued NetSuite and QuickBooks polish. Merge is treating the unified API less as a thin translation layer and more as a normalization product where the parity bar keeps moving up.

◆ Prediction

Expect Oracle Fusion Cloud ERP to graduate from beta with broader endpoint coverage, more tenant-identification rollouts to less-mature CRM connectors, and continued webhook-parity work for write operations across Accounting providers.

Alternatives to Supabase and Merge

Other Infra & APIs products tracked by Sparkpulse, ranked by recent ship velocity. Each card links to a full editorial trajectory and lets you pivot into a head-to-head comparison with either Supabase or Merge.

Vercel

Vercel keeps stacking the deployment platform for the agent era

Velocity 10.01 ⚡ · 30d

Compare with Supabase →Compare with Merge →

Auth0

Auth0 is re-tooling identity for AI agents and B2B multi-tenancy

Velocity 7.51 ⚡ · 30d

Compare with Supabase →Compare with Merge →

GitHub

GitHub bends its security stack toward governing the coding agents now writing the code.

Velocity 10.01 ⚡ · 30d

Compare with Supabase →Compare with Merge →

B

Buildkite

Buildkite goes agent-native and secretless while easing the path off GitHub Actions

Velocity 5.0

Compare with Supabase →Compare with Merge →

A

Ably

Ably is rebuilding its realtime stack around AI agents: transport SDK and agent-native CLI

Velocity 6.31 ⚡ · 30d

Compare with Supabase →Compare with Merge →

C

Cohere

Cohere is widening from chat into a full enterprise model suite: code, audio, and retrieval.

Velocity 7.52 ⚡ · 30d

Compare with Supabase →Compare with Merge →

See all Supabase alternatives → · See all Merge alternatives →

Recent activity from Supabase and Merge

Latest ship moves from both products, interleaved chronologically. ⚡ = editorial spark.

12d agoMergeQuickBooks invoice webhooks fixed; object URLs land across Xero and Oracle Fusion
14d agoMergePer-tenant identification on linked accounts across four CRM integrations
26d agoMergeObject URLs land across ten Xero endpoints; OAuth scopes get a granular refresh
1mo agoMergeObject URLs roll out across sixteen NetSuite accounting endpoints
1mo agoSupabaseDeveloper Update - May 2026
1mo agoSupabaseDeprecation Notice: Dropping Support for Node.js 20
1mo agoSupabaseBreaking Change: OAuth token endpoint will return HTTP 200 instead of 201
1mo agoMergeOracle Fusion Cloud ERP joins Accounting Unified API in beta
1mo agoSupabaseBreaking Change: Tables not exposed to Data and GraphQL API automatically ⚡
1mo agoSupabaseFragment of no-auto-expose announcement
1mo agoSupabaseFeature Preview: RLS Tester
1mo agoMergeOracle Fusion adds expense and employee endpoints; broad accounting reliability pass

Frequently asked questions

What is the difference between Supabase and Merge?

They serve adjacent needs but don't currently overlap on shipped themes. Supabase is currently shipping more aggressively (velocity 6.3 vs 5.0), with 0 editorial sparks in the last 30 days against 0. See the at-a-glance table above for a side-by-side breakdown of velocity, recent sparks, and editorial themes.

Is Supabase better than Merge?

Sparkpulse doesn't pick a winner — we score release velocity, not feature parity. Supabase is currently shipping more aggressively (velocity 6.3 vs 5.0), with 0 editorial sparks in the last 30 days against 0. For your specific use case, the alternatives sections above list other Infra & APIs products to evaluate alongside.

What are the best alternatives to Supabase?

Top Supabase alternatives in Infra & APIs are ranked by recent ship velocity. Browse the "Supabase alternatives" section above for the current picks, or visit /alternatives/supabase for the full list with editorial commentary on each.

What are the best alternatives to Merge?

Top Merge alternatives in Infra & APIs are ranked by recent ship velocity. Browse the "Merge alternatives" section above for the current picks, or visit /alternatives/merge-dev for the full list with editorial commentary on each.