Skillv1.0.0

ClawScan security

Ai Subtitle Editor · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

SuspiciousApr 26, 2026, 5:15 PM

Verdict: suspicious
Confidence: medium
Model: gpt-5-mini
Summary: The skill's behavior is largely coherent with a cloud subtitle/renderer service, but packaging inconsistencies (metadata vs registry), an unknown upstream domain, and a runtime instruction to probe install paths/filesystem make me cautious.
Guidance: This skill appears to do what it claims (upload video, create a session, render on a remote GPU service) and only asks for one token (NEMO_TOKEN). However: - The skill will contact an external domain (mega-api-prod.nemovideo.ai). If you don't recognize this service, verify the vendor/site before sending private videos. - It may probe install paths (~/.clawhub, ~/.cursor/skills) and read its own SKILL.md frontmatter; that can reveal tool installation details — consider if you’re comfortable with that metadata being accessed. - There's a packaging inconsistency: the registry said no config paths, but the SKILL.md lists ~/.config/nemovideo/; ask the author which is correct. - Prefer using ephemeral/anonymous tokens for uploads if you don't want to store a persistent NEMO_TOKEN; avoid placing tokens in global environment variables unless you trust the service. If you want higher confidence before installing: ask the publisher for a homepage/source repo, a privacy policy for uploaded content, and an explanation for the configPath/install-path checks. If the service is unfamiliar, avoid uploading sensitive videos until you confirm ownership and retention/processing guarantees.

Review Dimensions

Purpose & Capability: noteThe name/description (AI Subtitle Editor) match the instructions that call a remote rendering API and upload video files. Requesting a single service token (NEMO_TOKEN) is proportionate. However, the SKILL.md metadata lists a config path (~/.config/nemovideo/) while the registry summary earlier said 'Required config paths: none' — an internal inconsistency in the bundle.
Instruction Scope: noteRuntime instructions focus on connecting to mega-api-prod.nemovideo.ai: creating anonymous tokens, creating sessions, uploading videos, SSE streaming, and polling renders — all expected for this purpose. The instructions also tell the agent to read the SKILL.md YAML frontmatter and to detect install path (~/.clawhub/ or ~/.cursor/skills/) to set X-Skill-Platform; reading those install paths and the skill file is somewhat intrusive (reveals presence of other tooling and local paths) and is unnecessary for basic upload/render operations.
Install Mechanism: okInstruction-only skill with no install spec or code files — lowest install risk. Nothing is downloaded or written by an installer step according to the manifest.
Credentials: noteOnly one required env var (NEMO_TOKEN) is declared and used as bearer auth; that's appropriate. The SKILL.md also describes generating an anonymous token and using it as NEMO_TOKEN when the env var is absent — reasonable but it means the skill will perform network auth on the user's behalf. The mismatch between top-level 'no config paths' and SKILL.md's metadata listing ~/.config/nemovideo/ is unexplained.
Persistence & Privilege: okThe skill is not always-enabled and uses default autonomous invocation. It does not request system-wide privileges or permanent presence beyond using the token/session; no evidence it modifies other skills or global agent configs.