Seedance 2.0 Al Video Generator
AdvisoryAudited by Static analysis on Apr 30, 2026.
Overview
No suspicious patterns detected.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
The skill can use the configured Loova account/API key, which may consume quota or incur provider-side costs.
The skill uses an API key from the environment to authenticate to Loova. This is expected for the stated API integration, though the fallback LOOAI_API_KEY name is not documented in the main metadata.
key = os.environ.get("LOOVA_API_KEY", "").strip() or os.environ.get("LOOAI_API_KEY", "").strip()Use a dedicated Loova API key where possible, keep it in environment variables or .env only, and rotate it if it may have been exposed.
Any selected images, videos, audio, prompts, or referenced URLs may be transmitted to Loova for processing.
The workflow sends user-selected local media or media URLs to the external Loova API. This is central to the video-generation purpose, but it crosses a data boundary.
When users upload files in chat (images, videos, or audio), save them locally in the OpenClaw workspace ... and pass the file paths via --files.
Only provide media you intend to send to Loova, and review Loova’s privacy and retention terms before uploading sensitive content.
Installing dependencies may pull newer package versions than the skill author originally tested.
The setup relies on PyPI packages with lower-bound version constraints rather than exact pinned versions. This is common and purpose-aligned, but it means future dependency versions may vary.
requests>=2.28.0 python-dotenv>=1.0.0
Install in a virtual environment and consider pinning exact dependency versions if you need reproducible or higher-assurance execution.
A video job may keep a local process running for a long time while it waits for completion.
The script can keep polling for up to 180 minutes. This is disclosed and bounded, and no background persistence is shown.
POLL_INTERVAL_SEC = 60 # Poll once per minute MAX_POLL_COUNT = 180
Expect long-running jobs; stop the process manually if you no longer want to wait for the result.