Skillv1.0.0

ClawScan security

Bing Video Generator Free · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

SuspiciousApr 25, 2026, 8:06 AM

Verdict: suspicious
Confidence: medium
Model: gpt-5-mini
Summary: The skill behaves like a remote video-generation client and mostly matches its stated purpose, but several inconsistencies (name vs backend, declared vs described auth flow, missing provenance) and instructions that read agent filesystem state raise moderate concerns.
Guidance: This skill appears to implement a remote video-generation client, but please consider the following before installing: 1) Name/provenance: the skill is called 'Bing Video Generator Free' yet all API traffic is to nemovideo.ai and there is no homepage or source — verify the developer and that this is not impersonating another service. 2) Data exposure: using the skill will upload any files and prompts you provide to an external service (mega-api-prod.nemovideo.ai). Don't send private or sensitive data unless you trust that backend and have reviewed its privacy/terms. 3) Auth inconsistency: the registry marks NEMO_TOKEN required but the instructions say the agent will obtain an anonymous token if none is present — ask the publisher which behavior is intended and whether tokens are scoped. 4) Filesystem reads: the skill instructs detecting install paths and reading its frontmatter for headers; if you need stronger isolation, require a version that does not read local paths. 5) Ask for provenance: request the skill's source code or a homepage, clarification on ownership, and confirmation that the backend domain is official; if the publisher cannot provide reasonable answers, treat the skill as untrusted. If you proceed, avoid uploading PII or secrets and consider using a throwaway NEMO_TOKEN with minimal privileges.

Review Dimensions

Purpose & Capability: noteThe skill's declared purpose (generate videos from text) aligns with the API endpoints and workflows described in SKILL.md (session creation, SSE generation, upload, export). However the skill name 'Bing Video Generator Free' implies Microsoft/Bing while every API endpoint and domain referenced is mega-api-prod.nemovideo.ai (a different provider) and the registry lists no homepage or source — this naming mismatch could be trademark confusion or intentional misdirection.
Instruction Scope: concernRuntime instructions include network calls to an external API (expected) and file uploads (expected for video creation). They also direct the agent to read the skill file's YAML frontmatter for attribution and to detect an install path (~/.clawhub/ or ~/.cursor/skills/) in order to set X-Skill-Platform — these require reading the agent filesystem and grant the skill discretion to inspect local paths. The SKILL.md also instructs the agent to obtain an anonymous token if NEMO_TOKEN is not present, which expands the agent's network behavior beyond simply using a supplied credential. The instruction 'Keep the technical details out of the chat' is vague and reduces transparency of actions performed on behalf of the user.
Install Mechanism: okNo install spec or code files are present — this is instruction-only, so nothing is written to disk by an installer. That minimizes install-time risk.
Credentials: noteThe skill declares a single required environment variable (NEMO_TOKEN) which is appropriate for an API-backed service. However SKILL.md explicitly describes a fallback flow that requests an anonymous token if NEMO_TOKEN is absent (generate UUID and POST to an auth endpoint). Declaring NEMO_TOKEN as required while documenting an automatic anonymous-token acquisition is an inconsistency worth noting. No unrelated credentials are requested.
Persistence & Privilege: okThe skill does not request always:true and does not indicate it will modify other skills or system-wide settings. It does instruct detection of install path and to include attribution headers, but that is limited in scope and does not request elevated persistent privileges.