Firebase
Security checks across malware telemetry and agentic risk
Overview
This is a disclosed Firebase management skill that uses Maton as an OAuth/API gateway, with the main risk being that Maton can act on the connected Firebase account.
Install only if you trust Maton with access to the connected Firebase projects. Use the least-privileged connection available, confirm write/delete actions before execution, and periodically review or revoke Maton OAuth connections you no longer need.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
64/64 vendors flagged this skill as clean.