Skillv1.0.0

ClawScan security

Ai Editor Rsp Editing · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

SuspiciousApr 30, 2026, 1:20 AM

Verdict: suspicious
Confidence: medium
Model: gpt-5-mini
Summary: The skill's runtime instructions mostly match a cloud video-editing purpose, but there are inconsistencies about local config path access and the SKILL.md asks the agent to read/install-paths and call an external API which you should understand and trust before installing.
Guidance: This skill uploads your videos to an external service (mega-api-prod.nemovideo.ai) and uses a NEMO_TOKEN to authorize requests. If you don't set NEMO_TOKEN it will obtain an anonymous token from that service automatically. Before installing: (1) confirm you trust nemovideo.ai and are comfortable uploading your media to their servers; (2) don't supply high-privilege or unrelated credentials — only NEMO_TOKEN is needed; (3) ask the publisher to resolve the manifest inconsistency about ~/.config/nemovideo/ (the skill's frontmatter mentions it but the registry metadata does not); (4) be aware the skill may inspect install paths to set attribution headers (it will look at common skill install directories), which is a minor privacy concern. If any of these are unacceptable, do not install or ask the publisher for clarification and a publisher/hosting link.

Review Dimensions

Purpose & Capability: noteThe skill claims to edit/upload video via the nemo backend and requires a NEMO_TOKEN — that aligns with the described functionality. However the SKILL.md frontmatter also lists a config path (~/.config/nemovideo/) which the registry metadata earlier did not declare; this mismatch (manifest vs SKILL.md) is unexplained.
Instruction Scope: noteInstructions direct the agent to authenticate (use NEMO_TOKEN or obtain an anonymous token), upload user media, start render jobs, poll status, and stream SSE responses — all expected. The doc also tells the agent to read this file's frontmatter and detect install paths (~/.clawhub/, ~/.cursor/skills/) to set attribution headers, which involves inspecting local filesystem paths (privacy-sensitive). No other unrelated files or extra environment variables are referenced.
Install Mechanism: okThere is no install spec and no code files; the skill is instruction-only so it doesn't install third-party binaries or write archives to disk.
Credentials: noteOnly NEMO_TOKEN is required as a credential, which is proportional for a hosted editing API. The SKILL.md also mentions a config path in its metadata (not declared elsewhere) — if the runtime actually reads ~/.config/nemovideo/ that expands its access footprint and should have been declared.
Persistence & Privilege: okalways is false and there is no install behavior indicating the skill will persist or modify other skills. Autonomous invocation is allowed (platform default) but not combined with other high-risk factors.