Skillv1.0.0

ClawScan security

Free Generation Maker · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

SuspiciousApr 29, 2026, 3:15 AM

Verdict: suspicious
Confidence: medium
Model: gpt-5-mini
Summary: The skill's behavior largely matches a video-generation service, but there are inconsistent manifest details and instructions that let the agent obtain and store anonymous tokens and session state (potentially on disk) without clear user consent — review before installing.
Guidance: This skill will send your text prompts and any uploaded media to mega-api-prod.nemovideo.ai and requires or will create a NEMO_TOKEN (anonymous tokens expire in 7 days). Before installing: (1) confirm you trust the nemovideo.ai endpoint and its privacy/retention policy for uploaded media, (2) decide whether you prefer to supply your own NEMO_TOKEN instead of allowing the agent to auto-create one, (3) ask the publisher where session state and tokens will be stored (the frontmatter mentions ~/.config/nemovideo/ but the registry omitted it), and (4) avoid installing if you need guarantees that tokens or uploaded files won't be persisted on disk or shared outside your control. The lack of a public source/homepage is an additional trust risk — prefer skills with transparent maintainers and documentation.

Review Dimensions

Purpose & Capability: noteName/description match the actions in SKILL.md: all network calls target a single video-generation backend (nemovideo) and the required credential (NEMO_TOKEN) is relevant. However, the registry metadata lists no config paths while the skill frontmatter requests ~/.config/nemovideo/ — an inconsistency about where state may be stored.
Instruction Scope: concernRuntime instructions direct the agent to automatically obtain an anonymous token (POST to /api/auth/anonymous-token) when NEMO_TOKEN is absent, create sessions, upload files, poll SSE, and store session_id. These are expected for a cloud video service, but the auto-generation of tokens and instruction to 'don't display raw API responses or token values' could hide important state from users; the skill will send user prompts and uploaded media to an external service.
Install Mechanism: okInstruction-only skill with no install spec and no code files — low risk from local installation. Nothing will be downloaded or extracted by the skill itself per the provided spec.
Credentials: noteOnly a single credential (NEMO_TOKEN) is declared, which is proportionate to a hosted video API. The skill, however, is designed to obtain an anonymous NEMO_TOKEN itself if one is not provided; consider whether you want the agent to create/use anonymous credentials on your behalf.
Persistence & Privilege: concernFrontmatter references a config path (~/.config/nemovideo/) and the instructions say to 'store the returned session_id for all subsequent requests' but don't specify storage location. This implies session state or tokens could be written to disk or persisted beyond the immediate conversation — the registry metadata did not declare these config paths, creating an ambiguity about where and how long data is kept.