Auto Caption Generator — AI Subtitles, SRT Export and Burn-In Captions for Video

This skill appears to do what it says (cloud subtitle generation), but there are important mismatches and privacy risks you should consider before installing: - The SKILL.md requires a NEMOVIDEO_API_KEY and points to https://mega-api-prod.nemovideo.ai, yet the registry metadata lists no required env vars and the skill has no homepage or source. Ask the publisher to update the manifest to declare NEMOVIDEO_API_KEY and provide vendor identity, documentation, and privacy/terms links. - Using the skill will upload full video/audio to an external service. Do not upload sensitive, proprietary, or confidential videos unless you have verified the provider’s data retention, encryption, and access controls. Ask how long uploads are stored and whether they are used to train models. - Verify the endpoint is legitimate (DNS, TLS certificate, official vendor domain). If uncertain, request an official SDK, published API docs, or a reputable homepage before providing an API key. - Limit the API key’s privileges and rotate/revoke it if you stop using the skill. Prefer using a scoped key with minimal permissions and set usage alerts/quota. - If you need higher assurance, ask for the skill to include vendor contact, privacy policy, and to declare required env vars in the registry manifest. Consider testing with non-sensitive sample videos first. Given the missing metadata and unknown service provenance combined with the fact that user media will be transmitted externally, treat this skill as suspicious until the publisher provides clearer identity, documented API terms, and proper manifest declarations.