Registry/Firebase MCP Server

Firebase MCP Server

v0.4.4
Verified

MCP server that exposes Firebase Firestore to AI agents (Cursor, Claude Desktop, etc.)

By CommunityMIT
typescript
database
980stars
25.0Kdownloads
130forks
Scanned Jul 13, 2026
WebsiteRepositoryGITHUB
F0%
Scanned 6d ago

Critical Issues

Vulnerabilities Found
23Crit
20High
106Med
0Low
0Info

Security ScoreF

0
out of 100

Vulnerabilities Found

23
Crit
20
High
106
Medi
0
Low
0
Info
Last scanned: 7/13/2026

Quality ScoreB

70
out of 100
62
Maint.
80
Popular
68
Docs
73
Compat
Maintenance62%
Popularity80%
Documentation68%
Compatibility73%

Maintenance62

Unknown
Commit Frequency65%
Release Frequency70%
Issue Response45%

Popularity80

980
Stars
25.0K
Downloads
130
Forks
Stars Score84%
Downloads Score79%
Forks Score74%

Documentation68

README Quality70%

Available Documentation

API DocsExamplesChangelog

Compatibility73

MCP Spec Compliance80%
Transport Support50%

Features

TypeScript

Supported Transports

STDIO

Agentic MCP Risk Intelligence

MCPSafe checks risks unique to AI-connected MCP servers — prompt surfaces, model-controlled tools, credentials, filesystems, and network reachability.

1
agentic findings
Agentic risk detected

This server has at least one issue specific to AI-agent/MCP execution flows.

Prompt Injection Surface
0

Tool metadata can steer or hijack AI clients before a user invokes the tool.

AI → Command Execution
0

Model-selected tool arguments can reach shell/process execution.

Secret Exfiltration Path
0

Tool context combines credential access with outbound network capability.

Unbounded Filesystem
1

AI-controlled paths may access files outside the intended workspace.

Agent SSRF
0

AI-controlled URLs may reach local, metadata, or internal network services.

Vulnerabilities(149)

23Critical
20High
106Medium
Filter:

READMEFirebase MCP Server

View source

Firebase MCP

⚠️ INSECURE DEFAULT CONFIGURATION ⚠️

Issue

Documentation and examples show insecure security rules:

plaintext
rules_version = '2';
service cloud.firestore {
  match /{document=**} {
    allow read, write: if true;
  }
}

Impact

  • Anyone can read all data
  • Anyone can write/delete data
  • Data breach and loss

Mitigation

Always configure proper security rules before deployment.

Embed Security Badge

Add this badge to your README or documentation

Firebase MCP Server MCPSafe Security
[![Firebase MCP Server MCPSafe Security](https://api.mcpsafe.org
/api/badge/firebase-mcp-insecure.svg)](https://mcpsafe.org/registry/firebase-mcp-insecure)
Need more customization options?Badge Documentation

Server Information

Source
GITHUB
Package
firebase-mcp
Version
0.4.4
Language
typescript
License
MIT
Transport
STDIO
Added
Jan 20, 2026
Updated
Jul 13, 2026