70High
This skill risks credential theft, data exfiltration via
Behavior Analysis
Description verified — behavior matches claim
Claims to do
firecrawl interact: Interact with scraped pages in a live browser session. Scrape a page first, then use natural language prompts or code to click, fill forms, navigate, and extract data.
Actually does
This skill executes `firecrawl` commands, either directly or via `npx`, to interact with web pages. It initiates a live browser session based on a prior `firecrawl scrape` command, allowing users to send natural language prompts or specific `agent-browser` code commands (e.g., click, fill forms, extract data) to manipulate the page. It supports persistent browser profiles for authenticated sessions and terminates sessions with `firecrawl interact stop`.
Skill Info
Namefirecrawl/cli/firecrawl-interact
Registrygithub
Version3193905aa40d
PURLpkg:github/firecrawl/cli@3193905aa40d?skill=firecrawl-interact
Stars298
Installs455,628
Source
SHA-256f6ddfc4b857a...
SHA-11dc20aa1130c...
MD56e0940d329cc...
TLSH1a8182013ecf...
Size3,934 bytes
Install
Assessments (1)
AI Agent Traps ↗Handling and persistence of sensitive credentialshighcredential harvesting
The skill is designed to handle user logins and persist browser state (cookies, localStorage) via profiles, which could be exploited to harvest or steal credentials if the agent is manipulated.
100% confidence
description: ...logging into a site... authenticated scraping via profiles. firecrawl interact --prompt "Fill in email with user@example.com and click login" --profile my-app
Data extraction with output to filemediumdata exfiltration
The skill's primary function is to extract data from web pages, and it provides an option to save this data to a specified file path, creating a vector for exfiltration of sensitive information.
90% confidenceline 50
description: ...extract data using natural language prompts or code. -o, --output <path>
Potential for resource exhaustion via browser sessionslowresource abuse
The skill manages live browser sessions, which if not properly terminated, could lead to excessive resource consumption (CPU, memory) on the host system.
80% confidence
description: Control and interact with a live browser session... firecrawl interact stop
Version History (2)
Dependencies (1)
firecrawl.claude-plugin/marketplace.jsonnot scanned
Badge
Markdown
[](https://mondoo.com/ai-agent-security/skills/github/firecrawl/cli/firecrawl-interact)HTML
<a href="https://mondoo.com/ai-agent-security/skills/github/firecrawl/cli/firecrawl-interact"><img src="https://mondoo.com/ai-agent-security/api/badge/github/firecrawl/cli/firecrawl-interact.svg" alt="Mondoo Skill Check" /></a>Image URL
https://mondoo.com/ai-agent-security/api/badge/github/firecrawl/cli/firecrawl-interact.svgSecure your AI agents
Skills can read files, run commands, and access credentials. Mondoo helps organizations manage the security risks of AI agent skills across their entire fleet.
- Continuous scanning of skills across all registries
- Policy enforcement before skills reach your agents
- Integration with your existing security workflow