firebase-cloud-firestore
Pass
Audited by Gen Agent Trust Hub on Mar 11, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill references a pre-compiled framework for iOS/macOS from the Invertase GitHub repository (github.com/invertase/firestore-ios-sdk-frameworks.git). Invertase is a well-known maintainer within the Flutter ecosystem, and this download is used to optimize development build times.\n- [PROMPT_INJECTION]: The skill identifies a surface for indirect prompt injection via data ingestion from Firestore collections. 1. Ingestion points: Data is retrieved using 'get()' and 'snapshots()' methods in SKILL.md. 2. Boundary markers: No explicit delimiters or boundary warnings are present in the provided snippets. 3. Capability inventory: The skill does not include any dangerous capabilities such as subprocess execution, dynamic evaluation, or unauthorized network operations. 4. Sanitization: The skill explicitly recommends validating user input and implementing Security Rules in Section 8 to mitigate injection risks.
Audit Metadata