CSRF, XSS and other security features
Firebase Studio Prototyping Tool produces highly insecure app setups. A new userbase that is attracted by this AI feature may not realize that prototyping tool sets up loggers that expose all secrets in client side or that forms need security features like Zod or that cookies and sessions require CSRF implementation. This is insecurity by design. Prototyper needs to be set up correctly similar to how it nearly always comes with preset ui folder.
Thank you so much for taking the time to share your idea with us and for participating in our community.
Because we have officially announced the sunsetting of Firebase Studio and are currently focusing on the migration process, we are no longer accepting or implementing new feature requests for this product.
We appreciate your support and understanding as we transition to our next chapter.