seo-firecrawl
Pass
Audited by Gen Agent Trust Hub on Apr 16, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: No malicious patterns, prompt injections, or unauthorized data access patterns were detected in the skill instructions or metadata.
- [COMMAND_EXECUTION]: The skill references a local installation script (
./extensions/firecrawl/install.sh) to set up the required MCP server environment. This is a standard setup procedure for this type of extension. - [EXTERNAL_DOWNLOADS]: The skill's primary purpose is to interact with the Firecrawl service to crawl and scrape external websites. These network operations are necessary for the skill's stated functionality.
- [INDIRECT_PROMPT_INJECTION]: The skill provides tools for ingesting content from external websites (via
firecrawl_crawlandfirecrawl_scrape). This constitutes an attack surface where instructions embedded in external web content could potentially influence the agent, although this is inherent to the tool's purpose of site-wide analysis.
Audit Metadata