Bocha Search (Momo优化版)

Security checks across malware telemetry and agentic risk

Overview

This is a straightforward Bocha web-search skill that sends user searches to Bocha and stores a local API key as disclosed.

Install only if you are comfortable sending search terms to Bocha. Use a dedicated Bocha API key, avoid searching for secrets or sensitive private text, and protect the local config file that stores the key.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (3)

Missing User Warnings

Medium

Confidence: 84% confidence
Finding: The script sends the user's raw search query to a third-party service at api.bocha.cn without any explicit notice at execution time about external data transmission. This can leak sensitive prompts, internal terms, or personal data if users assume the query is handled locally or by the platform's built-in search.

External Transmission

Medium

Category: Data Exfiltration
Content: ~/.openclaw/skills/bocha-search/scripts/search.sh "关键词" ``` ### 直接用 curl ```bash curl -s "https://api.bocha.cn/v1/web-search" \
Confidence: 87% confidence
Finding: curl ```bash curl -s "https://api.bocha.cn/v1/web-search" \ -H "Authorization: Bearer $BOCHA_API_KEY" \ -H "Content-Type: application/json" \ -d

External Transmission

Medium

Category: Data Exfiltration
Content: ### 直接用 curl ```bash curl -s "https://api.bocha.cn/v1/web-search" \ -H "Authorization: Bearer $BOCHA_API_KEY" \ -H "Content-Type: application/json" \ -d '{
Confidence: 89% confidence
Finding: https://api.bocha.cn/

VirusTotal

66/66 vendors flagged this skill as clean.

View on VirusTotal