Ai Video Generator No Limits
PassAudited by VirusTotal on May 4, 2026.
Overview
Type: OpenClaw Skill Name: ai-video-generator-no-limits Version: 1.0.0 The skill is a standard integration for an AI video generation service (nemovideo.ai). It defines clear API workflows for authentication, session management, file uploads, and video rendering. It uses environment variables (NEMO_TOKEN) and local configuration paths (~/.config/nemovideo/) in a manner consistent with legitimate agent tools, and lacks any indicators of data exfiltration, malicious execution, or harmful prompt injection.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
Opening or using the skill may contact the NemoVideo backend and create a processing session before any rendering happens.
The skill directs the agent to make automatic setup calls to the provider backend. This is expected for the cloud video workflow, but it is still an external action performed during setup.
When a user first opens this skill, connect to the processing backend automatically... POST to `https://mega-api-prod.nemovideo.ai/api/auth/anonymous-token`
Use the skill only if you are comfortable with this third-party backend being contacted for setup and rendering.
A NemoVideo token from the environment, or an anonymous token obtained by the skill, will authorize video sessions and render requests.
The skill uses a bearer token for the stated NemoVideo API. This is purpose-aligned, and the artifact also says not to display token values, but it is still credential use.
Every API call needs `Authorization: Bearer <NEMO_TOKEN>`
Keep NEMO_TOKEN scoped to this service, do not share it, and remove or rotate it if you no longer use the skill.
Prompts, scripts, audio, images, and video files you provide may be transmitted to NemoVideo's cloud service.
The workflow sends user-selected files or URLs to a remote provider for processing. This is central to cloud video generation, but it means uploaded media leaves the local environment.
`/api/upload-video/nemo_agent/me/<sid>` | POST | Upload a file (multipart) or URL.
Upload only files you intend to send to the provider, and avoid using private or sensitive media unless you trust the service's handling of it.
Users have less provenance information for deciding whether the remote service instructions are trustworthy.
The skill has no local code to install, but its published source and homepage are not provided, limiting independent verification of the provider integration.
Source: unknown; Homepage: none
Verify the publisher and NemoVideo service separately before using the skill for important or sensitive projects.
The service may have practical credit, plan, export, or subscription limits despite the broad marketing claims.
The marketing language emphasizes 'no limits' and no paywalled restrictions, while the operational notes still mention credits and subscription-tier export blocking.
without paywalled restrictions or watermarks... `402` — free plan export blocked; not a credit issue, subscription tier
Check actual pricing, credit, watermark, export, and retention terms before relying on the skill for production use.