Firecrawl Search
中风险
作者:ashwingupy | 审计时间:2026-02-26T09:59:20.936Z | 规则集:0.2.0
技能介绍
通过 Firecrawl API 进行网页搜索和抓取。当您需要搜索网页、抓取网站(包括 JS-heavy 页面)、爬取整个站点或从网页中提取结构化数据时使用。需要 FIRECRAWL_API_KEY 环境变量。
使用场景
文档(原文)
来源:SKILL.md 以下为作者原文(通常为英文)。安装请以页面顶部“快速安装”为准。
name: firecrawl
description: Web search and scraping via Firecrawl API. Use when you need to search the web, scrape websites (including JS-heavy pages), crawl entire sites, or extract structured data from web pages. Requires FIRECRAWL_API_KEY environment variable.
Firecrawl
Web search and scraping via Firecrawl API.
Prerequisites
Set FIRECRAWL_API_KEY in your environment or .env file:
export FIRECRAWL_API_KEY=fc-xxxxxxxxxx
Quick Start
Search the web
firecrawl_search "your search query" --limit 10
Scrape a single page
firecrawl_scrape "https://example.com"
Crawl an entire site
firecrawl_crawl "https://example.com" --max-pages 50
API Reference
See references/api.md for detailed API documentation and advanced options.
Scripts
scripts/search.py- Search the web with Firecrawlscripts/scrape.py- Scrape a single URLscripts/crawl.py- Crawl an entire website
安全审计
中风险
摘要
通过 Firecrawl API 进行网页搜索和抓取。当您需要搜索网页、抓取网站(包括 JS-heavy 页面)、爬取整个站点或从网页中提取结构化数据时使用。需要 FIRECRAWL_API_KEY 环境变量。
风险画像
ToxicSkills 分析
黑名单
未命中
提示词注入
未检测到
Toxic 标签
exfiltrationcredential-access
当前静态检测未发现 Toxic 信号。
关键风险 0 项
暂无 LLM 风险要点(LLM 未启用或无缓存)。
确定性发现(证据)
| 规则 | 严重性 | 文件 | 片段 |
|---|---|---|---|
| NET_HTTP_REQUEST | 中 | skills/ashwingupy/firecrawl-search/scripts/crawl.py 行 8 | import urllib.request |
| SENSITIVE_ENV | 中 | skills/ashwingupy/firecrawl-search/scripts/crawl.py 行 14 | api_key = os.environ.get("FIRECRAWL_API_KEY") |
| NET_HTTP_REQUEST | 中 | skills/ashwingupy/firecrawl-search/scripts/crawl.py 行 35 | req = urllib.request.Request( |
| NET_HTTP_REQUEST | 中 | skills/ashwingupy/firecrawl-search/scripts/crawl.py 行 46 | with urllib.request.urlopen(req, timeout=30) as resp: |
| SENSITIVE_ENV | 中 | skills/ashwingupy/firecrawl-search/scripts/crawl.py 行 55 | api_key = os.environ.get("FIRECRAWL_API_KEY") |
| NET_HTTP_REQUEST | 中 | skills/ashwingupy/firecrawl-search/scripts/crawl.py 行 58 | req = urllib.request.Request( |
| NET_HTTP_REQUEST | 中 | skills/ashwingupy/firecrawl-search/scripts/crawl.py 行 63 | with urllib.request.urlopen(req, timeout=30) as resp: |
| NET_HTTP_REQUEST | 中 | skills/ashwingupy/firecrawl-search/scripts/scrape.py 行 7 | import urllib.request |
| SENSITIVE_ENV | 中 | skills/ashwingupy/firecrawl-search/scripts/scrape.py 行 13 | api_key = os.environ.get("FIRECRAWL_API_KEY") |
| NET_HTTP_REQUEST | 中 | skills/ashwingupy/firecrawl-search/scripts/scrape.py 行 28 | req = urllib.request.Request( |
| NET_HTTP_REQUEST | 中 | skills/ashwingupy/firecrawl-search/scripts/scrape.py 行 39 | with urllib.request.urlopen(req, timeout=60) as resp: |
| NET_HTTP_REQUEST | 中 | skills/ashwingupy/firecrawl-search/scripts/search.py 行 7 | import urllib.request |
| SENSITIVE_ENV | 中 | skills/ashwingupy/firecrawl-search/scripts/search.py 行 13 | api_key = os.environ.get("FIRECRAWL_API_KEY") |
| NET_HTTP_REQUEST | 中 | skills/ashwingupy/firecrawl-search/scripts/search.py 行 27 | req = urllib.request.Request( |
| NET_HTTP_REQUEST | 中 | skills/ashwingupy/firecrawl-search/scripts/search.py 行 38 | with urllib.request.urlopen(req, timeout=30) as resp: |
评分标准
每个技能从 5 个维度评分,加权总分决定星级。
代码毒性 100/100 (权重 30%)
隐私风险 0/100 (权重 25%)
权限范围 80/100 (权重 20%)
作者声誉 75/100 (权重 15%)
代码质量 70/100 (权重 10%)
星级说明
5★ 安全 — 总分 ≥ 80
4★ 良好 — 总分 70–79
3★ 注意 — 总分 60–69
2★ 有风险 — 总分 40–59
1★ 危险 — 总分 < 40
为何是这个评分?
以下维度评分低于 60 分,拉低了整体评级:
- 隐私风险: 0/100