Back to skill
Skillv1.0.0
ClawScan security
Free Image Text · ClawHub's context-aware review of the artifact, metadata, and declared behavior.
Scanner verdict
BenignApr 22, 2026, 3:31 AM
- Verdict
- benign
- Confidence
- high
- Model
- gpt-5-mini
- Summary
- The skill's requirements and runtime instructions are consistent with its stated purpose: it uploads user images to a nemovideo backend to extract text and produce captioned videos and only needs a NEMO_TOKEN (or an anonymous token) to operate.
- Guidance
- This skill uploads any images you provide to an external service (mega-api-prod.nemovideo.ai) to extract text and render videos. Before installing/use: (1) confirm you trust that external service with the image content (avoid sending sensitive PII or credentials in images); (2) provide a NEMO_TOKEN only if you trust the provider, otherwise the skill will request an anonymous 7‑day token from the public endpoint; (3) note the skill may read its install path to set an attribution header (minor metadata mismatch with the declared config path), and it will make network calls and store session tokens for rendering — revoke tokens if you suspect misuse. If you need stronger guarantees about where data is stored or retention, contact the service owner or avoid sending sensitive images.
Review Dimensions
- Purpose & Capability
- okName/description (extract text from images and overlay as video captions) align with required credentials (NEMO_TOKEN) and the API endpoints described; no unrelated credentials or binaries are requested.
- Instruction Scope
- noteSKILL.md confines actions to the nemovideo API (session creation, upload, render, SSE polling). It will upload user files to the external service and may obtain an anonymous token if NEMO_TOKEN is not present. A minor mismatch: metadata advertises a config path (~/.config/nemovideo/) and X-Skill-Platform detection based on install paths, but the instructions do not explicitly describe reading that config path — this is plausible (for cached tokens) but worth noting.
- Install Mechanism
- okInstruction-only skill with no install spec and no code files — nothing is written to disk by an installer; lowest install risk.
- Credentials
- okOnly NEMO_TOKEN is required (primaryEnv). The instructions explain using an anonymous-token endpoint when no token is present. No other unrelated secrets or credentials are requested.
- Persistence & Privilege
- okalways is false, model invocation is allowed (normal). The skill does not request elevated or persistent system privileges and does not modify other skills' configurations.