Ai Video Generation Free

This skill appears to be a thin client for nemovideo.ai and asks only for NEMO_TOKEN — that's expected — but there are a few things to check before installing: - Provenance: the skill has no homepage and the source is unknown. Prefer packages with a clear owner, website, and docs. Ask the publisher where the service is hosted and verify the domain (mega-api-prod.nemovideo.ai) is legitimate. - Config path mismatch: SKILL.md mentions ~/.config/nemovideo/ while the registry says no config paths. Confirm whether the skill will read or write that directory and what it stores there (session IDs, tokens, logs). - Filesystem probing: the instructions say to detect platform from install paths (~/.clawhub/, ~/.cursor/skills/). If you want to avoid exposing your agent install layout, ask the publisher to remove or justify this behavior. It's not needed to call the video API. - Token handling: NEMO_TOKEN is the only credential requested. If you must set it, prefer a short-lived or scoped token. The skill also documents an anonymous-token flow; you can prefer that to avoid placing a long-lived token in your environment. - Network calls: the skill will make outbound HTTPS requests to the documented API and will send headers derived from the skill metadata. If you have strict data policies, confirm what user content is uploaded and retained. If you decide to proceed, request clearer documentation from the publisher about where session tokens are stored and why the skill needs to detect install paths. If you cannot verify the publisher or behavior, treat this as untrusted and avoid setting a long-lived NEMO_TOKEN in global environment variables.