Index live · v1.3.0 · MAY 26 2026
173+ skills indexed200+ MCP servers18+ platforms tracked
Firecrawl
OfficialAdvanced web scraping with JS rendering, PDF extraction, and structured data.
SSETypeScriptAPI Key Required
SSE, widely popular
Configuration
{
"mcpServers": {
"firecrawl": {
"url": "https://firecrawl.dev",
"headers": {
"Authorization": "Bearer your-api-key-here"
}
}
}
}Add this to your claude_desktop_config.json file.
Related Servers
Quick Stats
Trust LevelOfficial
TransportSSE
API KeyRequired
LanguageTypeScript
CategoryWeb Search & Browsing
Author
F
Firecrawl
Official
Tags
scrapingcrawlingextractionpdf
AgenticSkills Audit
Automated framework checks. Deep code review tracked separately. Read the methodology →
1/2
1 of 2 automated checks passed
Audited May 11, 2026
Hosted endpoint
TLS-only (HTTPS) endpoint
Mitigates: Plaintext credential interceptionResponded 200 over HTTPS
OAuth 2.1 metadata (RFC 9728)
Mitigates: Token mismanagement, audience confusionNo /.well-known/oauth-protected-resource (status 404)
Repo-level checks
SECURITY.md published
Mitigates: Coordinated disclosure pathHosted server — repo-level check not applicable
Commit in last 90 days
Mitigates: Maintainer abandonmentHosted server — no public commit log
≥2 active contributors
Mitigates: Bus-factor of oneHosted server — no public contributor list
CI pipeline configured
Mitigates: Code health regressionHosted server — no public CI
Dependency lockfile committed
Mitigates: Dependency confusionHosted server — repo-level check not applicable
Signed releases (npm provenance)
Mitigates: Supply-chain backdoorHosted server — supply chain via vendor
Software Bill of Materials (SBOM)
Mitigates: Audit trailHosted server — repo-level check not applicable
License declared
Mitigates: Legal ambiguityHosted server — vendor terms of service apply
Deep framework checks (OAuth 2.1 / PKCE implementation, input validation, sandboxing) require human source review and are tracked separately. This scorecard covers programmatically verifiable signals only.