Skillv1.0.0

ClawScan security

Music Video Generator · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

SuspiciousFeb 27, 2026, 7:32 PM

Verdict: suspicious
Confidence: medium
Model: gpt-5-mini
Summary: The skill is mostly coherent for a mock/local MCP wrapper, but there are mismatches about required credentials and origin (no homepage/source), plus potential impersonation (package scope) that you should verify before installing or providing an API key.
Guidance: Before installing or running this skill: (1) note the inconsistency — the registry metadata says no env vars, but SKILL.md and code require FREEBEAT_API_KEY. Ask the publisher to clarify. (2) The shipped code is a mock that returns fake URLs; if you expect real video generation, confirm whether this package contacts a real backend or is only a demo. (3) The package.json uses the @anthropic-ai scope while the registry owner is an opaque ID and there's no homepage/source — verify the package identity on npm and the domain freebeat.ai before providing any API key. (4) If you must test it, avoid giving high-privilege or production API keys; create a throwaway key or test account. (5) If you plan to run via npx, inspect the exact npm package and its published source to ensure it matches the code you reviewed.

Review Dimensions

Purpose & Capability: noteThe name/description claim an AI music-video generator that uses a FREEBEAT API key. The shipped code implements a local/mock MCP server that returns fake job IDs and URLs rather than performing real video generation. This could be legitimate (a mock/demo), but the registry metadata claims no required env vars while the SKILL.md and code clearly expect FREEBEAT_API_KEY — an inconsistency.
Instruction Scope: okSKILL.md only instructs the agent to set FREEBEAT_API_KEY and use the listed tools (generate_music_video, check_generation_status, list_styles, get_account_info). The instructions do not request unrelated file reads or system state. The runtime code likewise only reads process.env.FREEBEAT_API_KEY and does not access other system paths or external endpoints (it fabricates URLs).
Install Mechanism: okThere is no install spec in the registry (instruction-only skill), and the package contains source files only. Nothing in the skill attempts to download or extract arbitrary archives. Note: README suggests usage via `npx @anthropic-ai/freebeat-mcp` — invoking npx would fetch a package from npm if used externally, so verify package provenance before running npx.
Credentials: noteThe skill requests a single API key (FREEBEAT_API_KEY) which is proportionate for an API-backed service. However, the registry metadata lists no required env vars while SKILL.md and code require this key — this mismatch is suspicious. In this code the key is only presence-checked and masked, not transmitted, but that behavior may differ in a production implementation.
Persistence & Privilege: okThe skill does not request elevated privileges, does not set always: true, and does not modify other skills or system-wide configuration. It runs as an MCP server over stdio which is normal for MCP skills.