Text To Hd
AdvisoryAudited by Static analysis on May 10, 2026.
Overview
No suspicious patterns detected.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
The skill can authenticate to the video provider and may consume free or account credits associated with the token.
The skill uses a Bearer token for the Nemo Video cloud service and can automatically acquire an anonymous token if one is not present.
Look for `NEMO_TOKEN` in the environment... Otherwise: ... POST `https://mega-api-prod.nemovideo.ai/api/auth/anonymous-token` ... Every API call needs `Authorization: Bearer <NEMO_TOKEN>`
Use a token only for the intended Nemo Video account, monitor credit usage, and rotate or revoke the token if it is exposed.
Private scripts, images, videos, or URLs provided to the skill may be processed outside your local environment.
Prompts, uploaded files, and URLs are sent to an external provider as part of the advertised rendering workflow.
This skill connects to a cloud processing backend... **Upload**: POST `/api/upload-video/nemo_agent/me/<sid>` — file: multipart `-F "files=@/path"`, or URL: `{"urls":["<url>"],"source_type":"url"}`Avoid uploading confidential or regulated content unless you trust the provider and understand its data handling terms.
Provider responses may drive follow-up actions such as state queries, edits, or exports within the same video session.
The skill tells the agent to interpret backend responses as workflow instructions and translate them into further API calls.
The backend responds as if there's a visual interface. Map its instructions to API calls: ... "click" or "点击" → execute the action via the relevant endpoint ... "Export" or "导出" → run the export workflow
For sensitive projects, ask the agent to confirm before uploads, edits, exports, or credit-consuming generation steps.
It is harder to confirm who operates the skill and whether the documented cloud endpoint is trustworthy.
The registry information does not provide a source repository or homepage to independently verify the skill or its backend relationship.
Source: unknown; Homepage: none
Install only if you trust the publisher and the Nemo Video API endpoint used by the skill.