firecrawl-scraper
Warn
Audited by Gen Agent Trust Hub on Feb 28, 2026
Risk Level: MEDIUMNO_CODEEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [NO_CODE]: The provided skill package contains only a SKILL.md file with documentation and metadata. No executable scripts, source code, or configuration files were included for a security audit.
- [EXTERNAL_DOWNLOADS]: The installation instructions guide the user to download a package from an unverified external source (BenedictKing/firecrawl-scraper). This source is not associated with the skill's author context or recognized as a trusted organization.
- [PROMPT_INJECTION]: The skill facilitates the scraping of external websites and PDF parsing, which creates a surface for indirect prompt injection. 1. Ingestion points: Web content, screenshots, and PDF data fetched via the Firecrawl API. 2. Boundary markers: No boundary markers or 'ignore' instructions for retrieved content are documented. 3. Capability inventory: The skill is capable of page interactions such as clicking and scrolling. 4. Sanitization: No sanitization or filtering logic for ingested data is provided in the documentation.
Audit Metadata