firecrawl-map
Pass
Audited by Gen Agent Trust Hub on Apr 15, 2026
Risk Level: SAFECOMMAND_EXECUTIONEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [COMMAND_EXECUTION]: The skill uses bash commands to execute the Firecrawl CLI (
firecrawl map). This is the intended behavior for this utility. - [EXTERNAL_DOWNLOADS]: The skill utilizes
npx firecrawl, which downloads the package from the NPM registry. As Firecrawl is the author and vendor, this is a standard distribution channel for their software. - [PROMPT_INJECTION]: The skill contains an indirect prompt injection surface due to processing external URLs.
- Ingestion points: The
<url>argument in thefirecrawl mapcommand inSKILL.mdreceives external input. - Boundary markers: No specific delimiters or instructions to ignore embedded content are used in the command examples.
- Capability inventory: The skill utilizes the
Bashtool for command execution as specified in the YAML frontmatter. - Sanitization: There is no evidence of input validation or sanitization for the URLs processed by the CLI tool in the provided instructions.
Audit Metadata