Bocha Web Search

Security checks across malware telemetry and agentic risk

Overview

This is a straightforward Bocha web-search skill with disclosed API-key and query-sending behavior, but users should avoid using it for sensitive searches.

Install only if you are comfortable providing a Bocha API key and having search terms sent to Bocha’s external API. Do not use it for secrets, credentials, private identifiers, regulated data, or confidential business content unless that external lookup is intended.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code

Findings (2)

Vague Triggers

Medium

Confidence: 90% confidence
Finding: The instruction to perform a web search whenever there is uncertainty creates an overly broad trigger that can cause unnecessary or unintended external requests. In practice, this increases the chance that sensitive or unnecessary user content is sent to the search provider even when the task could be answered locally or should first require clarification.

Missing User Warnings

Medium

Confidence: 94% confidence
Finding: The skill describes web search behavior but does not clearly warn that user query content will be transmitted to an external third-party API. This lack of disclosure can lead to privacy and data-handling issues, especially if users include personal, confidential, or regulated information in their requests.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal