Skip to main content

onyx

Onyx is an AI knowledge base API that enables searching internal documents, chatting, and content ingestion for enhanced information retrieval.

Install this skill

or
66/100

Security score

The onyx skill was audited on May 16, 2026 and we found 14 security issues across 2 threat categories. Review the findings below before installing.

Categories Tested

Security Issues

medium line 51

Curl to non-GitHub URL

SourceSKILL.md
51curl -s -X POST "https://cloud.onyx.app/api/search/handle-search-request" --header "Authorization: Bearer $ONYX_TOKEN" --header "Content-Type: application/json" -d @/tmp/onyx_search.json | jq '.top_do
medium line 67

Curl to non-GitHub URL

SourceSKILL.md
67curl -s -X POST "https://cloud.onyx.app/api/chat/create-chat-session" --header "Authorization: Bearer $ONYX_TOKEN" --header "Content-Type: application/json" -d @/tmp/onyx_session.json | jq '.chat_sess
medium line 89

Curl to non-GitHub URL

SourceSKILL.md
89curl -s -X POST "https://cloud.onyx.app/api/chat/send-chat-message" --header "Authorization: Bearer $ONYX_TOKEN" --header "Content-Type: application/json" -d @/tmp/onyx_message.json | jq '.answer'
medium line 95

Curl to non-GitHub URL

SourceSKILL.md
95curl -s "https://cloud.onyx.app/api/chat/get-user-chat-sessions" --header "Authorization: Bearer $ONYX_TOKEN" | jq '.sessions[] | {id: .id, description: .description}'
medium line 125

Curl to non-GitHub URL

SourceSKILL.md
125curl -s -X POST "https://cloud.onyx.app/api/onyx-api/ingestion" --header "Authorization: Bearer $ONYX_TOKEN" --header "Content-Type: application/json" -d @/tmp/onyx_ingest.json
low line 27

External URL reference

SourceSKILL.md
27Connect the **Onyx** connector at [app.vm0.ai/connectors](https://app.vm0.ai/connectors).
low line 29

External URL reference

SourceSKILL.md
29> **Troubleshooting:** If requests fail, run `zero doctor check-connector --env-name ONYX_TOKEN` or `zero doctor check-connector --url https://cloud.onyx.app/api/chat/get-user-chat-sessions --method G
low line 51

External URL reference

SourceSKILL.md
51curl -s -X POST "https://cloud.onyx.app/api/search/handle-search-request" --header "Authorization: Bearer $ONYX_TOKEN" --header "Content-Type: application/json" -d @/tmp/onyx_search.json | jq '.top_do
low line 67

External URL reference

SourceSKILL.md
67curl -s -X POST "https://cloud.onyx.app/api/chat/create-chat-session" --header "Authorization: Bearer $ONYX_TOKEN" --header "Content-Type: application/json" -d @/tmp/onyx_session.json | jq '.chat_sess
low line 89

External URL reference

SourceSKILL.md
89curl -s -X POST "https://cloud.onyx.app/api/chat/send-chat-message" --header "Authorization: Bearer $ONYX_TOKEN" --header "Content-Type: application/json" -d @/tmp/onyx_message.json | jq '.answer'
low line 95

External URL reference

SourceSKILL.md
95curl -s "https://cloud.onyx.app/api/chat/get-user-chat-sessions" --header "Authorization: Bearer $ONYX_TOKEN" | jq '.sessions[] | {id: .id, description: .description}'
low line 102

External URL reference

SourceSKILL.md
102Replace `<cc-pair-id>` with your connector pair ID (visible in the Admin Panel URL, e.g. `https://cloud.onyx.app/admin/connector/308`).
low line 112

External URL reference

SourceSKILL.md
112"link": "https://example.com/doc"
low line 125

External URL reference

SourceSKILL.md
125curl -s -X POST "https://cloud.onyx.app/api/onyx-api/ingestion" --header "Authorization: Bearer $ONYX_TOKEN" --header "Content-Type: application/json" -d @/tmp/onyx_ingest.json
Scanned on May 16, 2026
View Security Dashboard
Installation guide →
GitHub Stars 60
Rate this skill
Categorysales
UpdatedMay 20, 2026
openclawapicustomer-success-managersupport-agentproduct-managerdata-analystbusiness-developmentslacknotionconfluencesalessupportproductdata analytics
vm0-ai/vm0-skills