100Critical
The skill introduces supply chain risks via `curl | bash` installation and prompt injection vulnerabilities by directly interpolating user input into AI prompts.
Behavior Analysis
Description verified — behavior matches claim
Claims to do
Genkit Go: Genkit Go is an AI SDK for Go that provides generation, structured output, streaming, tool calling, prompts, and flows with a unified interface across model providers.
Actually does
This skill provides instructions and commands for developing AI applications using the Genkit Go SDK. It details how to install the `genkit` CLI tool via `curl` from `cli.genkit.dev`, run Go applications, and interact with Genkit flows and documentation using `genkit` CLI commands. It also shows how to start a local server on `127.0.0.1:8080` and access a Developer UI on `http://localhost:4000`.
Skill Info
Namefirebase/agent-skills/developing-genkit-go
Registrygithub
Version4679fc8dd31f
PURLpkg:github/firebase/agent-skills@4679fc8dd31f?skill=developing-genkit-go
Stars224
Installs455,628
Source
SHA-256f4b0322ec0a9...
SHA-17f2d9be3c387...
MD581e9c40e9c15...
TLSHd991f757d820...
ssdeep96:ikV5Wd3wS...
Size4,307 bytes
Install
This skill has been flagged as potentially malicious. Review the findings below before installing.
GitHub
https://github.com/firebase/agent-skills/tree/main/skills/developing-genkit-go455,628 installs
Claude CodeDocs
/plugin marketplace add firebase/agent-skills/plugin install developing-genkit-go@firebase/agent-skills
Gemini CLIDocs
gemini extensions install https://github.com/firebase/agent-skills.git --consent
CursorDocs
Skills.shDocs
npx skills add https://github.com/firebase/agent-skills --skill developing-genkit-goAssessments (2)
AI Agent Traps ↗Supply Chain Risk via Remote Script Executioncriticalcommand execution
The skill instructs users to install the Genkit CLI by piping a script downloaded from an external URL directly to `bash`. This introduces a significant supply chain risk, as a compromise of the `cli.genkit.dev` domain could lead to arbitrary code execution on the user's system.
100% confidenceline 67
curl -sL cli.genkit.dev | bash
Prompt Injection Vulnerability in Example Flowhighprompt injection
The example `jokeFlow` directly interpolates user-provided `topic` into the `ai.WithPrompt` instruction. This creates a prompt injection vulnerability, allowing an attacker to manipulate the model's behavior or extract sensitive information if the `topic` input is untrusted.
100% confidenceline 36
ai.WithPrompt("Tell me a joke about %s", topic)Version History (2)
Dependencies (1)
firebase.claude-plugin/marketplace.jsonnot scanned
Badge
Markdown
[](https://mondoo.com/ai-agent-security/skills/github/firebase/agent-skills/developing-genkit-go)HTML
<a href="https://mondoo.com/ai-agent-security/skills/github/firebase/agent-skills/developing-genkit-go"><img src="https://mondoo.com/ai-agent-security/api/badge/github/firebase/agent-skills/developing-genkit-go.svg" alt="Mondoo Skill Check" /></a>Image URL
https://mondoo.com/ai-agent-security/api/badge/github/firebase/agent-skills/developing-genkit-go.svgSecure your AI agents
Skills can read files, run commands, and access credentials. Mondoo helps organizations manage the security risks of AI agent skills across their entire fleet.
- Continuous scanning of skills across all registries
- Policy enforcement before skills reach your agents
- Integration with your existing security workflow