firebase-app-hosting-basics
Pass
Audited by Gen Agent Trust Hub on Feb 17, 2026
Risk Level: SAFE
Full Analysis
- [DATA_EXPOSURE] (SAFE): The skill correctly identifies the need for secret management and directs users to use
firebase apphosting:secretsinstead of hardcoding sensitive values. It provides clear guidance on using Cloud Secret Manager to protect API keys and environment variables. - [COMMAND_EXECUTION] (SAFE): All commands listed in
references/cli_commands.mdare standardfirebase-toolsCLI commands for App Hosting management. No suspicious flags, shell escapes, or piped execution patterns (e.g., curl|bash) were found. - [EXTERNAL_DOWNLOADS] (SAFE): No external scripts, remote binaries, or unauthorized third-party packages are downloaded or executed by the skill instructions.
- [PROMPT_INJECTION] (SAFE): No instructions attempting to bypass safety filters, extract system prompts, or override agent behavior were detected in the markdown files or metadata.
Audit Metadata