Video Short
ReviewAudited by ClawScan on May 11, 2026.
Overview
The skill appears purpose-aligned for cloud video editing, but it sends selected media to a third-party NemoVideo API using a token and server-side render sessions.
Install this only if you are comfortable sending selected video/audio/image files to mega-api-prod.nemovideo.ai, using or generating a NEMO_TOKEN, and potentially consuming render credits. Avoid sensitive footage unless you trust the provider.
Findings (5)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
You have less external information to verify who operates or maintains the integration before trusting it with media files.
The skill has limited publisher/service provenance information, although there is no install script or executable code in the artifact set.
Source: unknown Homepage: none
Verify the service domain and publisher before uploading sensitive footage.
The agent can use your NemoVideo token or generated anonymous token to create sessions, upload media, render videos, and consume available credits.
The skill uses a provider bearer token for all NemoVideo API calls. This is expected for the service, and the instructions also say not to print tokens.
Every API call needs `Authorization: Bearer <NEMO_TOKEN>` ... If `NEMO_TOKEN` environment variable is already set, use it
Use a token intended only for this service, avoid pasting unrelated secrets, and monitor account credits.
Private videos, images, audio, or prompts you provide may be uploaded to a third-party service.
The workflow sends user-selected raw media to the external NemoVideo API for cloud processing.
Share your raw video footage ... All rendering happens server-side. ... `POST /api/upload-video/nemo_agent/me/<sid>`
Only upload files you intend to process with NemoVideo, and avoid sensitive footage unless you trust the provider and its data handling.
The agent may perform editing or export actions inside the NemoVideo session based on the provider workflow, potentially using credits.
The skill tells the agent to convert backend GUI-style messages into API actions. This is purpose-aligned, but it means service responses can drive edits or exports.
| "click [button]" / "点击" | Execute via API | ... | "Export button" / "导出" | Execute export workflow |
Keep exports and other credit-consuming actions user-confirmed, and ignore backend instructions unrelated to the requested video task.
A render may continue or become harder to recover after you leave, and credits or resources may remain tied up.
Remote render jobs can outlive the immediate user interaction if the session is closed before completion.
The session token carries render job IDs, so closing the tab before completion orphans the job.
Wait for renders to finish when possible and check credit balance or session state if a job is interrupted.