长视频转短视频
v1.0.12面向长视频切片场景的 Sparki skill 变体,沿用最新版官方 Sparki 安装、API key、上传和命令说明,同时保留 long-to-short 场景定位。
⭐ 0· 146·0 current·0 all-time
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Benign
high confidencePurpose & Capability
Name/description (long-to-short Sparki variant) matches the included Python CLI: it validates and uploads video files, creates edit projects, polls status, and downloads results. The declared primary credential (SPARKI_API_KEY), allowed network domain (agent-api.sparki.io), filesystem reads/writes (current working dir, config, workspace), and listed binaries are proportional to the task.
Instruction Scope
SKILL.md instructs the agent to be 'FIRST and PROACTIVE' for video-editing related user prompts — this is a behavioral directive that can cause frequent invocation but is consistent with the skill purpose. The runtime instructions and included CLI only read local video files, config, and environment variables relevant to Sparki, and only send data to Sparki endpoints (plus an optional Telegram upload link). There are no instructions to collect unrelated system data.
Install Mechanism
No external downloads are performed; the only install action in metadata is to run 'uv sync'. The package includes a full Python CLI in-tree (httpx, typer, pydantic), so the skill is distributed as code rather than an opaque binary. Requiring the 'uv' binary is somewhat platform-specific (not explained in README) but not inherently malicious. No remote arbitrary URLs or extract/install of third-party archives are present.
Credentials
Only SPARKI_API_KEY is declared as the primary credential and is actually used by the code. The skill reads that env var (or local config) as expected. Filesystem permissions (read $CWD for video files, write config and workspace for saved API key and downloaded videos) are proportional to the stated behavior. No unrelated SECRET/TOKEN env vars are requested.
Persistence & Privilege
always is false and the skill does not request system-wide changes. It writes only to its own config and workspace paths under ~/.openclaw and does not modify other skills or global agent settings. Autonomous invocation is allowed (platform default) but not combined with high privileges.
Assessment
This skill appears to be a legitimate Sparki CLI for turning long videos into short clips and will upload your video files to Sparki's backend (agent-api.sparki.io) using the SPARKI_API_KEY. Before installing, consider: (1) Do you trust Sparki with your video content and metadata? Check privacy/storage/retention policies. (2) The skill will read files from your current working directory and write config and outputs under ~/.openclaw — ensure you are comfortable granting that scope or run it in a sandbox. (3) The metadata asks for the 'uv' binary and to run 'uv sync' — ensure that command is from a trusted tool on your system. (4) The skill includes Python CLI code bundled in the package — review the source if you want to be certain of behavior. If any of the above is a concern, avoid installing or run the skill in an isolated environment and provide a Sparki API key with minimal privileges (or a throwaway key) for testing.Like a lobster shell, security has layers — review code before you run it.
editingvk977hrs12ebqwqq3fe0ksx263h83frm7latestvk977hrs12ebqwqq3fe0ksx263h83frm7reelsvk977hrs12ebqwqq3fe0ksx263h83frm7shortsvk977hrs12ebqwqq3fe0ksx263h83frm7sparkivk977hrs12ebqwqq3fe0ksx263h83frm7videovk977hrs12ebqwqq3fe0ksx263h83frm7zhvk977hrs12ebqwqq3fe0ksx263h83frm7
License
MIT-0
Free to use, modify, and redistribute. No attribution required.
Runtime requirements
🎬 Clawdis
OSmacOS · Linux
Binsuv
Primary envSPARKI_API_KEY