firebase-messaging
Warn
Audited by Snyk on Mar 11, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W012: Unverifiable external dependency detected (runtime URL that controls agent).
- Potentially malicious external URL detected (high risk: 1.00). The web service worker uses importScripts to load and execute remote code at runtime from https://www.gstatic.com/firebasejs/10.7.0/firebase-app-compat.js and https://www.gstatic.com/firebasejs/10.7.0/firebase-messaging-compat.js, which are required dependencies for the skill and therefore constitute executing external code at runtime.
Issues (1)
W012
MEDIUMUnverifiable external dependency detected (runtime URL that controls agent).
Audit Metadata