ClawHub

Ai Free Video Editor

v1.0.0

Tell me what you need and I'll help you edit your videos without relying on AI-generated effects or automated processing. This ai-free-video-editor skill giv...

0· 29·0 current·0 all-time
bypeandrover adam@peand-rover
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
VirusTotalVirusTotal
Benign
View report →
OpenClawOpenClaw
Benign
high confidence
Purpose & Capability
Name/description, declared env var (NEMO_TOKEN), and the instructions consistently point to using the NemoVideo backend for deterministic editing. Requiring a service token and optional ~/.config/nemovideo/ client id fits the described purpose.
Instruction Scope
Instructions direct the agent to create/read ~/.config/nemovideo/client_id if no token exists, request an anonymous token from the NemoVideo API, create sessions, upload user-provided video files (multipart or by URL), stream SSE responses, and poll render endpoints. This is appropriate for a remote editing service, but the runtime also instructs creating a claim link that embeds the token as a query parameter (https://nemovideo.com/workspace/claim?token=$TOKEN&...), which can expose the token in logs, browser histories, or to anyone with the URL. Also note that uploading user videos transmits potentially sensitive content off-device to an external service.
Install Mechanism
The skill is instruction-only with no install spec or code files, so nothing is written to disk by an installer. This is low-risk from an installation perspective.
Credentials
Only a single credential (NEMO_TOKEN) is required and declared as the primary credential. The optional config path (~/.config/nemovideo/) is used to store or derive a client_id for anonymous token acquisition. These requirements match the described remote service; no unrelated secrets or broad access are requested.
Persistence & Privilege
The skill is not always-enabled and does not request elevated or persistent platform-wide privileges. It does instruct the agent to use tokens and session IDs for API calls, but it doesn't modify other skills or system-wide config.
Assessment
This skill appears to be what it claims (a front-end to the NemoVideo editing API), but consider the following before installing: - The skill will upload any video files you give it to https://mega-api-prod.nemovideo.ai for server-side processing — do not upload private/sensitive footage unless you trust the service and its privacy policy. - The runtime constructs a claim link that embeds the token in the URL (token query parameter). URLs can be logged, stored in browser history, or shared accidentally; prefer revocable/short-lived tokens and avoid sharing claim links publicly. - If you don't provide NEMO_TOKEN, the skill will request an anonymous token and create a client_id under ~/.config/nemovideo/; check that behavior and file permissions if you are concerned about local artifacts. - Verify the NemoVideo homepage/repository and its privacy/terms before sending sensitive data. The registry metadata lists a GitHub repo, but the skill source is marked unknown — you may want to inspect that repo/manual docs if available. - Remember the agent can call the external API autonomously (this is platform default). If you want to restrict networked operations, run the skill in a constrained environment or avoid installing it. If these trade-offs are acceptable (remote processing, token use, and possible link/token exposure), the skill's behavior is coherent with its stated purpose.

Like a lobster shell, security has layers — review code before you run it.

latestvk97a4tp838jt2a2hf5afs3n9gd840a3s

License

MIT-0
Free to use, modify, and redistribute. No attribution required.
Termshttps://spdx.org/licenses/MIT-0.html

Runtime requirements

🎬 Clawdis
EnvNEMO_TOKEN
Primary envNEMO_TOKEN

Comments