Firecrawl Cli

Security checks across malware telemetry and agentic risk

Overview

This is a purpose-aligned Firecrawl web scraping/search skill, but users should remember that URLs, prompts, and retrieved content may be sent to a third-party service.

Install only if you are comfortable using Firecrawl as a third-party scraping service. Do not use it on confidential, internal, authenticated, personal-data-heavy, or terms-restricted sites unless you have permission, and avoid putting secrets or proprietary research details into prompts or crawl requests.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 92% confidence
Finding: The skill instructs the agent to send user-supplied URLs, prompts, and potentially broad crawl/extract requests to an external Firecrawl service, but it does not warn about privacy, authorization, robots/terms restrictions, or the possibility of exfiltrating sensitive internal URLs or proprietary research targets. This creates a real data-handling and compliance risk, especially because the skill also promotes autonomous and multi-URL extraction modes that can amplify unintended disclosure.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal