Skillv1.0.0

ClawScan security

Json Prompt Video Generator Free · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

SuspiciousApr 23, 2026, 2:16 AM

Verdict: suspicious
Confidence: medium
Model: gpt-5-mini
Summary: The skill’s network calls and token use match its stated purpose, but there are inconsistencies (declared vs in-file config paths) and instructions to read local paths that could access tokens/configs — clarify before installing.
Guidance: This skill appears to be a straightforward API client for a third-party video service, but check a few things before installing: 1) Understand that calls (including token exchange) go to https://mega-api-prod.nemovideo.ai — your uploads and any provided NEMO_TOKEN will be sent there. 2) The SKILL.md references a local config path (~/.config/nemovideo/) and asks the agent to detect install paths; confirm whether the skill will read those directories and whether any sensitive tokens live there. 3) If you supply your own NEMO_TOKEN, ensure it is scoped and revocable; otherwise the skill will create an anonymous token automatically. 4) Ask the publisher to resolve the metadata mismatch (registry says no required config paths but SKILL.md lists one) and to document exactly what local files (if any) the agent will access. If you cannot confirm those points, treat this skill as risky for use with sensitive data.

Review Dimensions

Purpose & Capability: noteThe name/description (generate videos from JSON prompts) align with the skill's API calls (session creation, upload, render/export). Requiring a NEMO_TOKEN is expected. However, the SKILL.md frontmatter declares a config path (~/.config/nemovideo/) while the registry metadata listed no required config paths — this mismatch is unexplained and needs clarification.
Instruction Scope: noteThe runtime instructions are focused on the video-generation API (auth, session, SSE, upload, export). They do instruct the agent to read the skill's YAML frontmatter and to detect the install path (e.g., ~/.clawhub, ~/.cursor/skills/) to set X-Skill-Platform; that requires filesystem access. This is plausible for attribution but is scope-expanding compared with a pure API client and could cause accidental exposure if code also attempted to read other local config files.
Install Mechanism: okThis is an instruction-only skill with no install spec and no code files — nothing is written to disk by the skill itself. That minimizes install-time risk.
Credentials: noteOnly NEMO_TOKEN is declared as required which is proportionate to calling the remote API. But the SKILL.md frontmatter mentions a config path (~/.config/nemovideo/) that could contain additional credentials; the registry metadata did not list this. The skill also implements an anonymous-token flow (POST to the vendor endpoint) when NEMO_TOKEN is absent — expected but means the agent will reach out to the vendor automatically.
Persistence & Privilege: okalways:false and default autonomous invocation are used. The skill does not request persistent 'always' presence or claim to modify other skills or global agent config.