ClawHub

Free Music Video Ai Generator

Security checks across malware telemetry and agentic risk

Overview

This skill matches its stated cloud music-video purpose, but it starts remote sessions and may send user media or prompts to a third-party backend with broad routing and limited user-facing disclosure.

Install only if you are comfortable with NemoVideo receiving your audio files, prompts, generated project state, and render requests. Before using it with private, unpublished, copyrighted, or client material, confirm when it will connect, which token it will use or create, and when uploads will occur.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (5)

Context-Inappropriate Capability

Low
Confidence
80% confidence
Finding
The skill is instructed to read `NEMO_TOKEN` from the environment or local config paths and otherwise mint anonymous tokens, which expands it into credential and session handling beyond a simple media-generation interaction. This increases the risk of unauthorized use of ambient credentials and opaque account/session creation without informed user consent.

Vague Triggers

Medium
Confidence
85% confidence
Finding
The invocation guidance includes very generic phrases such as 'generate my audio files' and 'export 1080p MP4', which can match ordinary conversation and cause the skill to activate unexpectedly. Overbroad activation is dangerous here because activation leads to backend connection and potentially file upload or token use.

Vague Triggers

Medium
Confidence
91% confidence
Finding
The routing table contains a catch-all rule that sends 'everything else' into the SSE workflow, making the activation boundary ambiguous and overly permissive. In this skill's context, that can turn unrelated user text into remote backend actions, increasing the chance of unintended processing, session creation, or data transmission.

Missing User Warnings

Medium
Confidence
94% confidence
Finding
The skill directs users to share audio files and describes uploading them to a cloud rendering pipeline, but it does not give a clear user-facing warning that files are transmitted to a third-party backend. Audio files may contain sensitive content, copyrighted material, or embedded metadata, so silent upload creates a meaningful privacy and compliance risk.

Missing User Warnings

Medium
Confidence
95% confidence
Finding
The instructions explicitly say to establish a backend connection first, acquire or reuse a token, create a session, and keep those technical details out of the chat. Hiding authentication and session establishment from the user is dangerous because it conceals network activity and account/session creation that may consume credits, process user data, or rely on ambient credentials.

VirusTotal

VirusTotal findings are pending for this skill version.

View on VirusTotal