seo-firecrawl
Pass
Audited by Gen Agent Trust Hub on May 16, 2026
Risk Level: SAFECOMMAND_EXECUTION
Full Analysis
- [COMMAND_EXECUTION]: The skill instructs the user or agent to execute a local installation script (
./extensions/firecrawl/install.sh) to initialize the Firecrawl extension environment. - [DATA_EXPOSURE]: The skill utilizes a local directory (
.seo-cache/) to store and retrieve metadata, audit scores, and page analysis, facilitating context sharing between SEO-related tasks. - [PROMPT_INJECTION]: The skill is identified as having an indirect prompt injection surface due to its core function of scraping and processing external web content.
- Ingestion points: Data is ingested through the
firecrawl_crawl,firecrawl_scrape, andfirecrawl_searchtools which fetch content from arbitrary URLs (SKILL.md). - Boundary markers: No specific boundary markers or 'ignore' instructions for the ingested content are present in the skill definitions.
- Capability inventory: The skill has the capability to write to the local file system (
.seo-cache/) and execute a local shell script (./extensions/firecrawl/install.sh). - Sanitization: No sanitization or filtering logic for the scraped HTML or markdown content is described.
Audit Metadata