Skillv1.0.0

ClawScan security

Editor Edimakor · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

SuspiciousApr 22, 2026, 6:21 AM

Verdict: suspicious
Confidence: medium
Model: gpt-5-mini
Summary: The skill's behavior mostly matches a cloud video-editing integration, but there are small inconsistencies and filesystem/attribution steps that warrant caution before installing.
Guidance: This skill appears to implement a cloud video-editing integration and will upload any files you give it to mega-api-prod.nemovideo.ai and use a NEMO_TOKEN to authenticate. Before installing or using it: (1) Confirm you are comfortable uploading potentially sensitive video content to that third-party domain and review their privacy/terms if possible; (2) Be aware the skill may read its own SKILL.md and probe common install paths (~/.clawhub, ~/.cursor/skills/) to set attribution headers — this requires filesystem access; (3) Note the SKILL.md also references a local config path (~/.config/nemovideo/) even though the registry listed none — ask the publisher why that differs; (4) Prefer providing your own NEMO_TOKEN (if you trust the service) rather than allowing automatic anonymous token creation, and check how/where any tokens or session IDs are stored; (5) If you need stronger assurances, ask the publisher for an official homepage/privacy policy and for clarity on what exactly is written to or read from your filesystem. These inconsistencies and filesystem access are the reason for a cautious (suspicious) rating.

Review Dimensions

Purpose & Capability: noteName/description align with a cloud video-editing service and the single required env var (NEMO_TOKEN) fits that purpose. However, the SKILL.md metadata lists a config path (~/.config/nemovideo/) while the registry metadata reported no required config paths — an inconsistency in declared requirements.
Instruction Scope: noteInstructions are focused on uploading videos and managing render sessions on mega-api-prod.nemovideo.ai, which fits the stated purpose. The runtime instructions also tell the agent to read the skill's frontmatter version and to detect the agent install path (e.g., ~/.clawhub/ or ~/.cursor/skills/) to set X-Skill-Platform — this requires accessing the agent filesystem and is broader than a pure API-only flow.
Install Mechanism: okNo install spec and no code files (instruction-only) — nothing is written to disk by an installer. This is the lowest-risk install mechanism.
Credentials: noteOnly one credential is required (NEMO_TOKEN), which is appropriate for a third-party editing API. The skill will auto-obtain an anonymous token if none is present, which is a legitimate flow but means the agent will make outbound authentication calls and store session tokens. The earlier-mentioned config path could imply additional local file access; that's not justified by the registry metadata.
Persistence & Privilege: okalways:false (no forced inclusion), no install-time persistence requested, and the skill does not request broader system or other-skills configuration changes.