firebase-apk-scanner

HIGH W007: Insecure credential handling detected in skill instructions.

• Insecure credential handling detected (high risk: 1.00). The skill explicitly extracts API keys, project IDs, and auth tokens from APKs and instructs the agent to include them verbatim in summaries and curl commands (e.g., "API_KEY", "PROJECT_ID", tokens), which requires the LLM to handle and output secret values directly.

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 1.00). The skill's scanner explicitly fetches and ingests content from public Firebase endpoints (e.g., Realtime Database via https://PROJECT.firebaseio.com/.json, Firestore via firestore.googleapis.com, Storage via firebasestorage.googleapis.com, Cloud Functions URLs, and Remote Config) as part of its required workflow in SKILL.md, so untrusted/user-generated data from those third-party sources can be read and used to drive subsequent tests and findings.