Firebase Data Connect

Name: agent-skills/firebase-data-connect-basics
Author: firebase

Share on X Share on LinkedIn Share on Bluesky

70High

The skill allows raw SQL string literals, enabling SQL injection and data exfiltration, posing a significant security risk.

ThreatsCI SM CS BC S HITL

Behavior Analysis

Description verified — behavior matches claim

Claims to do

Firebase Data Connect: Firebase Data Connect is a relational database service using Cloud SQL for PostgreSQL with GraphQL schema, auto-generated queries/mutations, and type-safe SDKs.

Actually does

This skill utilizes `npx firebase-tools` to initialize, emulate, generate SDKs, and deploy Firebase SQL Connect backends. It defines a data model using GraphQL schema files and configures services via YAML files, interacting with a PostgreSQL database (Cloud SQL) through auto-generated GraphQL operations or raw SQL.

Threat Analysis

AI Agent Traps ↗Scanned 4/15/2026

Content InjectionPerceptionclean

Semantic ManipulationReasoningclean

Cognitive StateMemory & Learningclean

Behavioural ControlAction1 finding

SystemicMulti-Agent Dynamicsclean

Human-in-the-LoopHuman Overseerclean

Skill Info

Namefirebase/agent-skills/firebase-data-connect-basics

Registrygithub

Version4679fc8dd31f

PURLpkg:github/firebase/agent-skills@4679fc8dd31f?skill=firebase-data-connect-basics

Stars224

Installs455,628

Source

Repository ↗SKILL.md ↗

SHA-256e687844d97c2...

SHA-10c95ae9047ce...

MD5d725a78cd576...

TLSHc4b185c16a60...

ssdeep96:YBy5SLo9i...

Size5,492 bytes

Install

This skill has been flagged as potentially malicious. Review the findings below before installing.

GitHub

https://github.com/firebase/agent-skills/tree/main/skills/firebase-data-connect-basics

455,628 installs

Claude CodeDocs

/plugin marketplace add firebase/agent-skills

/plugin install firebase-data-connect-basics@firebase/agent-skills

Gemini CLIDocs

gemini extensions install https://github.com/firebase/agent-skills.git --consent

CursorDocs

Skills.shDocs

npx skills add https://github.com/firebase/agent-skills --skill firebase-data-connect-basics

Assessments (1)

AI Agent Traps ↗

Raw SQL execution with no type safetyhighcommand execution

The skill explicitly allows the use of 'Native SQL' with 'raw SQL string literals' via `_select`, `_execute`, etc., noting 'No type safety.' This capability can be abused to perform SQL injection, exfiltrate data, or execute arbitrary database commands if the underlying database user has sufficient privileges.

100% confidenceline 30

Raw SQL string literals via _select, _execute, etc. Requires strict positional parameters ($1). No type safety.

Version History (2)

4679fc8dd31fcurrent70High4/15/2026 bfd90c4c5ec570High4/13/2026

Dependencies (1)

firebase.claude-plugin/marketplace.jsonnot scanned

Badge

Markdown

[![Mondoo Skill Check](https://mondoo.com/ai-agent-security/api/badge/github/firebase/agent-skills/firebase-data-connect-basics.svg)](https://mondoo.com/ai-agent-security/skills/github/firebase/agent-skills/firebase-data-connect-basics)

HTML

<a href="https://mondoo.com/ai-agent-security/skills/github/firebase/agent-skills/firebase-data-connect-basics"><img src="https://mondoo.com/ai-agent-security/api/badge/github/firebase/agent-skills/firebase-data-connect-basics.svg" alt="Mondoo Skill Check" /></a>

Image URL

https://mondoo.com/ai-agent-security/api/badge/github/firebase/agent-skills/firebase-data-connect-basics.svg

Secure your AI agents

Skills can read files, run commands, and access credentials. Mondoo helps organizations manage the security risks of AI agent skills across their entire fleet.

Continuous scanning of skills across all registries
Policy enforcement before skills reach your agents
Integration with your existing security workflow