firecrawl
Pass
Audited by Gen Agent Trust Hub on Apr 4, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill installs the firecrawl-cli package from the official npm registry. Firecrawl is a well-known service used for web scraping and data extraction.
- [COMMAND_EXECUTION]: It uses the Bash tool to run the firecrawl CLI for searching, scraping, and browser automation tasks.
- [DATA_EXFILTRATION]: The skill performs web requests as part of its core functionality. It encourages security best practices by directing output to a local, gitignored directory named .firecrawl/ to isolate external data from the project context.
- [PROMPT_INJECTION]: The skill provides structured mitigations for indirect prompt injection risks associated with processed web content. Ingestion points: Web pages fetched via firecrawl commands. Boundary markers: Mandatory use of the -o flag for file-based isolation and recommendations for incremental reading (grep/head) to limit content exposure. Capability inventory: Uses the Bash tool for shell operations and file system writes. Sanitization: Recommends extracting only specific data and explicitly ignoring any instructions found within the scraped content.
Audit Metadata