Skillv1.0.0

ClawScan security

Veo 3 Ai · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

SuspiciousApr 17, 2026, 5:44 PM

Verdict: suspicious
Confidence: medium
Model: gpt-5-mini
Summary: The skill's declared purpose (AI video generation) matches most of its instructions, but there are small inconsistencies and a few instructions that could cause the agent to read local paths or send uploads to an unknown external API — verify provenance and token usage before installing.
Guidance: This skill appears to do what it says (cloud video generation) but comes from an unknown source and will send your uploaded media to mega-api-prod.nemovideo.ai. Before installing, consider the following: (1) Confirm the skill publisher and a privacy/terms page for the nemovideo API — ask who runs mega-api-prod.nemovideo.ai and whether uploaded media may be retained or used for model training. (2) Prefer using the anonymous token flow if you don’t want to expose a long-lived NEMO_TOKEN; verify what scopes NEMO_TOKEN grants. (3) Clarify whether the skill will read local paths like ~/.config/nemovideo/, ~/.clawhub, or ~/.cursor/skills — if you don’t want the agent to inspect local files, do not grant filesystem access. (4) Only upload media you’re comfortable sharing with an external service. If you need higher assurance (less risk), ask for the skill’s source code or an official homepage and a privacy/security statement; that information would raise confidence.

Review Dimensions

Purpose & Capability: noteName/description (generate videos) aligns with the runtime instructions and the single required credential (NEMO_TOKEN). However the SKILL.md metadata declares a configPaths entry (~/.config/nemovideo/) that the registry summary did not list — this inconsistency should be clarified (does the skill need to access that local config?).
Instruction Scope: noteInstructions are focused on calling the external nemovideo API, uploading media, streaming SSE events, and polling render status — all consistent with video generation. Two items to watch: (1) it instructs deriving an X-Skill-Platform header by inspecting install paths (mentions ~/.clawhub and ~/.cursor/skills), which implies reading local filesystem paths; (2) it will upload user media to an external domain (mega-api-prod.nemovideo.ai). Both behaviors are explainable for this skill but increase the sensitivity of what the agent may access or transmit.
Install Mechanism: okNo install spec or code files — instruction-only skill. This limits disk persistence and makes install risk low.
Credentials: noteOnly one credential is declared (NEMO_TOKEN), which is proportionate. The runtime also supports acquiring an anonymous token by calling the API if NEMO_TOKEN is absent. The SKILL.md metadata's configPaths mention of ~/.config/nemovideo/ (not reflected in registry requirements) is an unexplained request for local config access and should be clarified.
Persistence & Privilege: okalways is false and there is no install; the skill does not request permanent presence or system-wide changes. Autonomous invocation is allowed (platform default) but not combined with other high privileges.