Tiktok Image To Video

This skill appears to do what it says: it talks to a single third‑party API (nemovideo.ai) and uses one credential (NEMO_TOKEN). Before installing, consider: - Trust and privacy: You will be uploading images to a third‑party rendering service. Confirm the service's privacy/data-retention policy and whether sensitive images are acceptable to send. - Token handling and persistence: The skill will auto-create an anonymous token if NEMO_TOKEN is not provided and asks the agent to 'store' session state. Ask where tokens and session IDs are stored (memory only, agent config, or a file under ~/.config/nemovideo/). If persistent storage is used, prefer a location you control and review file permissions. - Metadata mismatch: The SKILL.md includes a configPaths entry (~/.config/nemovideo/) but the registry summary said none — ask the publisher to clarify whether the skill will read/write that path. - Attribution headers: The skill requires adding X-Skill-* headers and derives X-Skill-Platform by inspecting install paths; this requires reading the agent environment. If you prefer a stricter isolation model, ask for an alternative that accepts the platform as an explicit parameter instead of autodetection. - Least privilege: If you have concerns, run the skill in a restricted environment or sandbox, or provide a short‑lived NEMO_TOKEN and test with non-sensitive images first. If the publisher/source is unknown (registry shows unknown/none), consider contacting them for clarification about token persistence and the configPath usage before granting it access to your environment.