Skills
skills/firecrawl/cli/firecrawl-download/Gen Agent Trust Hub

firecrawl-download

Pass

Audited by Gen Agent Trust Hub on Mar 10, 2026

Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
  • [EXTERNAL_DOWNLOADS]: The skill uses npx firecrawl, which downloads the firecrawl package from the npm registry at runtime. This is consistent with the author's official tooling.
  • [COMMAND_EXECUTION]: The skill executes firecrawl and npx firecrawl commands via the Bash tool to perform site mapping and content downloading.
  • [PROMPT_INJECTION]: The skill is susceptible to indirect prompt injection as it processes untrusted content from external websites.
  • Ingestion points: Website content scraped from user-provided or discovered URLs.
  • Boundary markers: No explicit boundary markers or 'ignore' instructions are provided in the prompt templates.
  • Capability inventory: The skill has access to shell command execution via the Bash tool.
  • Sanitization: No sanitization or filtering of the scraped content is specified in the skill instructions.
Audit Metadata
Risk Level
SAFE
Analyzed
Mar 10, 2026, 09:49 PM