Skillv1.0.0

ClawScan security

Ai Image To Video Haiper · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

BenignApr 16, 2026, 4:01 PM

Verdict: benign
Confidence: medium
Model: gpt-5-mini
Summary: The skill's declared purpose (convert still images to short videos) lines up with its runtime instructions and requested credential; nothing requested appears disproportionate, but a few minor attribution/config-path behaviors deserve attention before install.
Guidance: This skill appears to do what it says: it uploads images to a remote rendering API and returns video files, and it needs a NEMO_TOKEN to authorize those requests. Before installing/use, consider: (1) If you do not supply NEMO_TOKEN, the skill will obtain an anonymous token itself — be aware uploads will go to the external service (mega-api-prod.nemovideo.ai). (2) The skill may check a couple of local paths for attribution info (~/.clawhub, ~/.cursor/skills, and ~/.config/nemovideo/) — avoid installing if you do not want the skill probing those locations. (3) Do not send sensitive or private images unless you trust the service; review the service's privacy/terms if possible. If you want higher assurance, ask the publisher/source, a homepage or privacy policy, or the skill's code/manifest so you can verify exactly what local files are read and how tokens are used.

Review Dimensions

Purpose & Capability: okName/description match the runtime instructions: the skill calls a remote rendering API, uploads user images, and returns MP4s. Requesting a single service token (NEMO_TOKEN) is consistent with a hosted rendering backend.
Instruction Scope: noteInstructions stay within the declared purpose (session creation, SSE for streaming responses, file upload, polling renders). The skill will generate an anonymous token if NEMO_TOKEN is not present and will check install/config paths and the skill's YAML frontmatter to build attribution headers — reading those local paths is minor scope creep but is used for attribution rather than unrelated data collection.
Install Mechanism: okInstruction-only skill with no install spec or code files; nothing is downloaded or written to disk by an installer step, which minimizes install-time risk.
Credentials: noteOnly NEMO_TOKEN is required (declared as primaryEnv) which is appropriate. Metadata also lists a config path (~/.config/nemovideo/) and the runtime asks the agent to probe install locations (~/.clawhub, ~/.cursor/skills) for attribution — this grants the skill visibility into a couple of local paths. That is plausible for attribution but could reveal local layout/config; it is not strictly necessary for core functionality.
Persistence & Privilege: okalways is false and there is no install-time persistence. The skill can be invoked autonomously (platform default), which is expected for skills and is not by itself a risk here.