Skillv1.0.0

ClawScan security

Car Wash Promo Video · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

SuspiciousApr 5, 2026, 9:56 AM

Verdict: suspicious
Confidence: medium
Model: gpt-5-mini
Summary: The skill's stated purpose (making promo videos) is plausible, but the instructions are vague and the metadata asks for an external token and a config path without explaining how they'll be used or what 'NEMO_TOKEN' is; combined with an unknown source, this mismatch warrants caution.
Guidance: This skill is plausible for generating/exporting marketing videos, but it lacks technical details and has no homepage or known publisher. Before installing: (1) verify what 'NEMO_TOKEN' is and whether it is scoped to only video creation/upload; do not provide broad or long‑lived credentials without confirming scope; (2) ask the publisher for documentation or a homepage describing the NemoVideo service and exact runtime behavior (what APIs are called, what data is uploaded, and whether Google Business Profile exports require additional credentials); (3) be cautious about placing a config path in the skill metadata — confirm whether the skill will read sensitive local config; and (4) if you cannot validate the vendor or token usage, avoid installing or test in an isolated environment/account first.

Purpose & Capability: noteThe declared requirement (NEMO_TOKEN and ~/.config/nemovideo/) is consistent with a third‑party video service named 'NemoVideo' and is plausible for a video-exporting skill, but the skill has no homepage or source details to validate that dependency.
Instruction Scope: concernSKILL.md contains only marketing/use-case prose and a single high-level instruction ('Specify your service menu and target customer'); it does not document what runtime actions the agent will take, what APIs will be called, or what files will be read/written — this vagueness grants the agent broad discretion and could hide unexpected data access or network calls (e.g., exporting to Google Business Profile) without indicating how credentials for those exports are handled.
Install Mechanism: okInstruction-only skill with no install spec and no code files; nothing is written to disk by an installer — lowest install risk.
Credentials: noteOnly one credential (NEMO_TOKEN) and one config path are declared, which is proportionate if the skill calls a NemoVideo API. However, the SKILL.md does not explain what NEMO_TOKEN is, why the config path is needed, or what permissions the token requires; the lack of documentation and unknown vendor reduces confidence.
Persistence & Privilege: okalways is false and the skill does not request persistent/system-wide modification; autonomous invocation is allowed by default but is not combined with other high privileges here.