技能 firecrawl-web 審計紀錄
📦

審計紀錄

firecrawl-web - 7 審計

審計版本 7

最新 中風險

Jun 28, 2026, 02:55 PM

Static analysis flagged critical combinations of network, filesystem, environment access, and command examples. Review found no confirmed malicious intent or prompt injection, but the skill legitimately sends user-selected URLs to Firecrawl, loads API keys from .env files, and writes files to user-provided paths. Publish only with clear warnings about third-party processing, credential handling, and output path control.

4
已掃描檔案
333
分析行數
12
發現
codex
審計單位
中風險問題 (3)
fc.py:17-22fc.py:28-36fc.py:60-68fc.py:73-79
Third-Party Web Requests to User-Supplied URLs
The script accepts user-provided URLs and sends them to Firecrawl for scraping, screenshots, extraction, search, and crawling. This is expected for the skill, but it can disclose requested URLs and retrieved page content to a third-party service.
fc.py:83-85README.md:27-30
Home Environment File Loaded for Firecrawl Credentials
The script loads environment variables from the current directory and the user home .env file. This supports API key configuration, but broad home .env loading can expose unrelated secrets to process dependencies.
fc.py:35-46fc.py:145-150
User-Controlled Output Paths Can Write Files
The screenshot and crawl commands can write files to paths provided by the caller. This is useful functionality, but it can overwrite files or create many output files if used carelessly.
低風險問題 (4)
README.md:17-24README.md:46-57SKILL.md:20-21SKILL.md:55-62
Documentation Command Blocks Misclassified as Execution
Many external command findings are shell examples in README.md and SKILL.md. They are not executed automatically by the skill, but users should still review installation commands before running them.
fc.py:40-47
Base64 Decode Used for Screenshot Data
The base64 decode operation handles image data returned by Firecrawl screenshots. I found no evidence that decoded content is executed or used to hide program behavior.
fc.py:87-88fc.py:137-139SKILL.md:1-9
Weak Cryptography Static Matches Are False Positives
The weak cryptography findings appear to match unrelated text such as parser descriptions and Markdown content. No cryptographic operation or weak hash usage was found in the reviewed code.
README.md:3README.md:27-30SKILL.md:20-21SKILL.md:83-90
Hardcoded URLs Are Examples and Service References
Hardcoded URLs in documentation are example targets, repository links, or Firecrawl service references. They do not indicate hidden network destinations in the script.

風險因素

⚡ 包含腳本 (3)
fc.py:1 SKILL.md:20-21 README.md:23-24
🌐 網路存取 (6)
fc.py:17-22 fc.py:28-36 fc.py:60-68 fc.py:73-79 README.md:27-30 SKILL.md:20-21
📁 檔案系統存取 (6)
fc.py:35-46 fc.py:129-130 fc.py:145-150 README.md:18 README.md:30 SKILL.md:14
🔑 環境變數 (4)
fc.py:11 fc.py:83-85 README.md:27-30 requirements.txt:2
⚙️ 外部命令 (5)
README.md:17-24 README.md:46-57 SKILL.md:20-21 SKILL.md:55-62 SKILL.md:83-90

偵測到的模式

Broad Bash, Read, and Write Tool PermissionsNetwork Access Combined with Credential LoadingArbitrary File Output Without Path Guardrails

審計版本 6

低風險

Jan 16, 2026, 07:23 PM

This skill provides legitimate web scraping functionality via Firecrawl API. The 120 static findings are overwhelmingly false positives caused by documentation examples showing bash commands, standard dotenv usage for API key management, and base64 decoding of API responses. Network and filesystem access are core intended features, not security risks.

5
已掃描檔案
601
分析行數
4
發現
claude
審計單位
低風險問題 (1)
fc.py:84-85
Reads API key from environment
The skill loads FIRECRAWL_API_KEY from .env files. This is expected behavior for API authentication.

風險因素

🌐 網路存取 (2)
fc.py:8 fc.py:36
📁 檔案系統存取 (2)
fc.py:45-46 fc.py:149-150
🔑 環境變數 (1)
fc.py:84-85

審計版本 5

低風險

Jan 16, 2026, 07:23 PM

This skill provides legitimate web scraping functionality via Firecrawl API. The 120 static findings are overwhelmingly false positives caused by documentation examples showing bash commands, standard dotenv usage for API key management, and base64 decoding of API responses. Network and filesystem access are core intended features, not security risks.

5
已掃描檔案
601
分析行數
4
發現
claude
審計單位
低風險問題 (1)
fc.py:84-85
Reads API key from environment
The skill loads FIRECRAWL_API_KEY from .env files. This is expected behavior for API authentication.

風險因素

🌐 網路存取 (2)
fc.py:8 fc.py:36
📁 檔案系統存取 (2)
fc.py:45-46 fc.py:149-150
🔑 環境變數 (1)
fc.py:84-85

審計版本 4

低風險

Jan 16, 2026, 07:23 PM

This skill provides legitimate web scraping functionality via Firecrawl API. The 120 static findings are overwhelmingly false positives caused by documentation examples showing bash commands, standard dotenv usage for API key management, and base64 decoding of API responses. Network and filesystem access are core intended features, not security risks.

5
已掃描檔案
601
分析行數
4
發現
claude
審計單位
低風險問題 (1)
Reads API key from environment
The skill loads FIRECRAWL_API_KEY from .env files. This is expected behavior for API authentication.

風險因素

🌐 網路存取 (2)
fc.py:8 fc.py:36
📁 檔案系統存取 (2)
fc.py:45-46 fc.py:149-150
🔑 環境變數 (1)
fc.py:84-85

審計版本 3

低風險

Jan 10, 2026, 11:25 AM

This is a legitimate web scraping skill using the official Firecrawl SDK. The code behavior matches its stated purpose. It accesses filesystem to read user-provided schema files and write outputs, and makes network calls exclusively to the Firecrawl API. No obfuscation, credential theft, or persistence mechanisms detected.

5
已掃描檔案
337
分析行數
4
發現
claude
審計單位
未發現安全問題

風險因素

⚡ 包含腳本 (1)
fc.py:1-162
🌐 網路存取 (4)
fc.py:17-23 fc.py:28-29 fc.py:64-68 fc.py:71-79
📁 檔案系統存取 (4)
fc.py:45-47 fc.py:84-85 fc.py:129-130 fc.py:145-150
🔑 環境變數 (2)
fc.py:11 fc.py:83-85

審計版本 2

低風險

Jan 10, 2026, 11:25 AM

This is a legitimate web scraping skill using the official Firecrawl SDK. The code behavior matches its stated purpose. It accesses filesystem to read user-provided schema files and write outputs, and makes network calls exclusively to the Firecrawl API. No obfuscation, credential theft, or persistence mechanisms detected.

5
已掃描檔案
337
分析行數
4
發現
claude
審計單位
未發現安全問題

風險因素

⚡ 包含腳本 (1)
fc.py:1-162
🌐 網路存取 (4)
fc.py:17-23 fc.py:28-29 fc.py:64-68 fc.py:71-79
📁 檔案系統存取 (4)
fc.py:45-47 fc.py:84-85 fc.py:129-130 fc.py:145-150
🔑 環境變數 (2)
fc.py:11 fc.py:83-85

審計版本 1

低風險

Jan 10, 2026, 11:25 AM

This is a legitimate web scraping skill using the official Firecrawl SDK. The code behavior matches its stated purpose. It accesses filesystem to read user-provided schema files and write outputs, and makes network calls exclusively to the Firecrawl API. No obfuscation, credential theft, or persistence mechanisms detected.

5
已掃描檔案
337
分析行數
4
發現
claude
審計單位
未發現安全問題

風險因素

⚡ 包含腳本 (1)
fc.py:1-162
🌐 網路存取 (4)
fc.py:17-23 fc.py:28-29 fc.py:64-68 fc.py:71-79
📁 檔案系統存取 (4)
fc.py:45-47 fc.py:84-85 fc.py:129-130 fc.py:145-150
🔑 環境變數 (2)
fc.py:11 fc.py:83-85
← 回到技能