Image To Video Download

This skill appears to do what it says (remote image→MP4 rendering) but has a few red flags you should consider before installing: - Confirm whether you trust the backend (https://mega-api-prod.nemovideo.ai). The skill will obtain and use an API token (NEMO_TOKEN) to call that service and may store a session id/token locally. Ask the developer how and where tokens/session IDs are stored and how to revoke them. - Note the SKILL.md asks the agent to detect install/config paths (~/.clawhub/, ~/.cursor/skills/, ~/.config/nemovideo/). If you don't want an agent probing your home directory, ask the maintainer to remove that behavior or to explicitly request permission at runtime. - The manifest provided to the registry did not list the config path that appears in the SKILL.md frontmatter—ask for a corrected manifest or clarification. - Because the skill instructs the agent not to show raw API responses or token values, insist on transparency: you should be able to see what token was created and where it is stored, and you should explicitly consent before any automatic token generation. If you proceed: only install if you trust nemovideo.ai, request a privacy/security FAQ from the author (storage location, token lifetime, revocation), and consider running the skill in a restricted environment or with a disposable account/token.