.png)
Firecrawl Just Killed One of My Custom Pipeline Stages — and I'm Glad
Why Firecrawl's new source-level PII redaction and research index materially change how I would architect evidence-grounded healthcare pipelines.
I've built the same boring thing more than once: a redaction layer that sits between a scraper and a model, scrubbing names, emails, and phone numbers out of content before any of it touches a pipeline. It's tedious, it's fragile, and in a regulated context it's the difference between a demo and a lawsuit. Firecrawl's v2.11.0 release, out June 19, ships a redactPII flag that does the first 80% of that work at the source.
That's the part of this release worth your attention if you build AI in healthcare. The rest is genuinely useful too, and I'll get to it, but the redaction flag and a new research index are the two pieces that change how I'd architect an evidence-grounded healthcare system.
Why redaction-at-the-source actually matters
Most people scraping content for an AI pipeline think about the model first and data hygiene last. In healthcare you can't. The moment you pull third-party clinical content, patient-facing forum posts, or provider directories into a system, you've taken on responsibility for whatever sensitive data rode along with it.
So you build a redaction stage. Mine usually looked like a regex pass for the obvious patterns, an NER model for the names the regex missed, and a manual review queue for the long tail. Three moving parts, each with its own failure mode, all of it living upstream of the work I actually wanted to do.
redactPII collapses that. You set the flag, and Firecrawl strips names, emails, phones, addresses, and secrets out of document.markdown before it ever reaches you. It defaults to mode: "accurate", and it replaced the old experimental pii format, so this isn't a toy bolt-on. It's now a first-class option across /scrape, /crawl, /parse, and /extract.
Here's the thing though: I would not yet trust it as my only line of defense for anything PHI- or HIPAA-grade. "Accurate" is a setting, not a guarantee, and redaction recall is exactly the kind of thing that looks perfect on five test pages and then misses a phone number formatted as words on the sixth. What it does change is the starting point. Instead of building the redaction layer from zero, I'm validating someone else's - running it against a batch of real pages and measuring what slips through. That's a much shorter, much cheaper path to a defensible pipeline.
The research index is the quieter, bigger deal
The headline feature in this release is a Research Index: a dedicated index over 3M+ arXiv papers plus the GitHub code behind them - issues, merged PRs, and READMEs, refreshed daily. You can search papers, pull a paper's details or its related work, and check a claim against the full text.
Firecrawl reports state-of-the-art recall on arXivQA, about 18% better than the next provider at comparable cost. Treat vendor benchmarks as vendor benchmarks. But the capability underneath the number is the thing I care about.
Most of the evidence-grounding work I do in healthcare comes down to one repetitive question: is this claim actually supported, and by what? Pulling the paper, finding the passage that backs a specific assertion, tracing the method back to the code that implemented it - that's the unglamorous core of doing AI work you'd be willing to publish or defend in a regulated room. An index that lets a system check a model's claim against arXiv full text, and then jump to the GitHub PR where the method lives, shortens that loop from "open eleven tabs" to a single grounded query.
For anyone building AI that has to be right rather than just fluent, that's worth more than another point of model benchmark. The failure mode of a confident, unsourced claim is the whole problem in healthcare. A retrieval layer built specifically for primary research is a direct hit on it.
The cost lever: deterministicJson
One more feature deserves a mention because it changes the economics, not just the capability. deterministicJson extracts structured JSON without running an LLM on every request. Firecrawl builds a reusable extractor for your schema, caches it per site, and reuses it, so repeat scrapes get cheaper and, more importantly, consistent.
That last word matters. An LLM extracting the same fields off the same page can give you slightly different answers on Tuesday than it did on Monday. For a pipeline that pulls the same structured data off the same sources on a schedule, non-determinism is a quiet tax. You either tolerate drift or you build a reconciliation step. A cached, deterministic extractor removes the reason that step exists.
Same caveat as the redaction flag: it's new. Before I'd point it at anything that feeds a decision, I'd check extractor accuracy against a handful of real pages and watch what it does when a site changes its layout. New extraction features earn trust on your data, not in a changelog.
What I'm not rushing into
The release has more: keyless access for prototyping, smarter change-monitors with an LLM judging whether a detected change is meaningful, AM/PM scheduling, a video format, and a cdpUrl for driving a live browser session. Useful, and a couple of them matter a lot for the agency side of my work. But for the healthcare lane specifically, the signal is narrow and clear: redaction moved to the source, and primary-research retrieval got a real index.
Two features, both new enough that the responsible move is to test them on real pages before they touch anything compliance-sensitive. That's not hedging. It's the actual job. The difference between a vendor's "accurate" and a redaction layer you'd stake a HIPAA audit on is a week of validation - and that week is now the work, instead of the month it used to take to build the thing from scratch.
I'll take that trade.