firebase-apk-scanner

SUSPICIOUS: the skill is internally coherent for Firebase APK security auditing and does not show obvious credential theft or third-party exfiltration, but it grants an AI agent high-risk offensive security functionality with live network probing against external services. Risk is driven by exploit/scanning capability and autonomous external actions, not by malicious install behavior or deceptive data routing.