Skills
skills/firecrawl/cli/firecrawl-instruct/Gen Agent Trust Hub

firecrawl-instruct

Pass

Audited by Gen Agent Trust Hub on Apr 2, 2026

Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: Executes the Firecrawl CLI to manage browser sessions and scrape data. It supports a --code flag for running bash, python, or node scripts to precisely control browser interactions.
  • [EXTERNAL_DOWNLOADS]: Uses npx to download and execute the Firecrawl utility from the NPM registry.
  • [PROMPT_INJECTION]: The skill processes untrusted content from external websites, creating a surface for indirect prompt injection.
  • Ingestion points: Scraped content from external URLs via firecrawl scrape.
  • Boundary markers: No specified delimiters or safety instructions for handling embedded web content.
  • Capability inventory: Shell access and browser-based code execution capabilities.
  • Sanitization: No documented methods for sanitizing or escaping scraped content.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 2, 2026, 12:11 AM