Skillv1.0.0

ClawScan security

From Video · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

SuspiciousApr 28, 2026, 4:45 PM

Verdict: suspicious
Confidence: medium
Model: gpt-5-mini
Summary: The skill appears to do what it says (remote AI video editing using a service token) but has small inconsistencies and privacy/operational gaps you should understand before installing or providing a token.
Guidance: This skill reasonably describes a remote AI video-editing integration and only requests one credential (NEMO_TOKEN), but take these precautions before using it: 1) Confirm the service domain and owner (no homepage provided) and read its privacy/retention policy — your uploaded videos are sent to mega-api-prod.nemovideo.ai. 2) Prefer using the anonymous short-lived token flow rather than supplying a long-lived personal token. 3) Be aware the instructions ask the agent to detect install paths and may access filesystem paths (e.g., to derive X-Skill-Platform); avoid granting broader filesystem access unless you trust the skill. 4) Ask the publisher for a homepage, documentation, and a published privacy/terms link; a maintained public repo or verified publisher reduces risk. If you cannot verify the service identity or data handling, treat the skill as untrusted and do not upload sensitive videos or provide a persistent NEMO_TOKEN.

Review Dimensions

Purpose & Capability: okName and description match the declared requirement for a single service credential (NEMO_TOKEN) and the instructions all target a remote video-processing API — asking for a service token is proportionate for this purpose.
Instruction Scope: concernSKILL.md instructs the agent to obtain/save session tokens, upload user video files, and to detect an install path to populate X-Skill-Platform (by checking ~/.clawhub, ~/.cursor/skills, etc.). That implies the agent may read filesystem paths and store session state; the registry metadata at the top of the report lists no required config paths, but the SKILL.md frontmatter includes ~/.config/nemovideo/ — this mismatch and the filesystem probing instruction increases scope beyond the simple API usage and should be noted.
Install Mechanism: okThis is instruction-only with no install spec or downloaded artifacts; nothing is written to disk by an installer step, which is the lowest-risk pattern for supply-chain installs.
Credentials: noteOnly NEMO_TOKEN is required (primaryEnv). That is reasonable for a remote editing service, and the skill supports generating a short-lived anonymous token if none exists. However: the skill transmits user video files and session tokens to an external domain (mega-api-prod.nemovideo.ai). The package has no homepage or owner information in the manifest, so you should confirm the service's identity and privacy/retention policy before providing sensitive content or a long-lived token.
Persistence & Privilege: okalways:false and agent-invocable defaults are normal. The skill asks to save a session_id for job tracking — that's expected for remote jobs and does not request elevated agent-wide privileges or always-on presence.