Skillv1.0.0

ClawScan security

Japanese Ai Video · ClawHub's context-aware review of the artifact, metadata, and declared behavior.

Scanner verdict

SuspiciousApr 29, 2026, 4:16 PM

Verdict: suspicious
Confidence: medium
Model: gpt-5-mini
Summary: The skill's runtime instructions mostly match its video-localization purpose, but there are internal inconsistencies (declared config path in the skill frontmatter vs registry metadata) and it instructs uploading user video files to an external API — review privacy and the config-path mismatch before installing.
Guidance: This skill appears to do what it says (upload video, request a token, submit jobs, return results) but pay attention before installing: 1) It uploads your video files to https://mega-api-prod.nemovideo.ai — do not upload sensitive or private footage unless you trust that service and its privacy/retention policy. 2) The SKILL.md frontmatter mentions a config path (~/.config/nemovideo/) even though the registry metadata did not — ask the publisher whether the skill will read/write that directory and what it stores there (tokens, session IDs, logs). 3) Provide only a dedicated NEMO_TOKEN with minimal privileges; prefer the anonymous token flow for trial use. 4) If you need stronger assurance, request the publisher/source, privacy policy, and any code or manifest that shows how session data is stored and how uploads are handled. If you cannot verify the config-path behavior or the service's data handling, treat this skill as higher-risk.

Review Dimensions

Purpose & Capability: noteName/description (Japanese video localization) align with the single required credential (NEMO_TOKEN) and the API endpoints in SKILL.md. However, the SKILL.md frontmatter includes a required config path (~/.config/nemovideo/) whereas the registry metadata lists no required config paths — this mismatch is unexplained and could affect where tokens or session data are stored.
Instruction Scope: noteInstructions are specific about creating/using a bearer token, opening a session, uploading files (multipart form or URL), streaming via SSE, exporting, and polling render status. They do not instruct the agent to read unrelated system files or unrelated credentials. Minor scope concerns: the guidance to auto-detect X-Skill-Platform from the install path implies the agent may inspect its install/runtime path; and the SKILL.md frontmatter's configPath suggests the skill may read/write ~/.config/nemovideo/, which is not justified elsewhere.
Install Mechanism: okNo install spec or shipped code (instruction-only) — lowest risk for hidden binaries or remote code downloads.
Credentials: noteOnly one environment credential is declared (NEMO_TOKEN), which is appropriate for a cloud API-based video processing service. The SKILL.md also references storing session data and a config path; if the skill actually reads/writes ~/.config/nemovideo/, that expands its access surface and should be justified. No unrelated credentials are requested.
Persistence & Privilege: okalways is false and there are no install-time scripts or system-wide modifications described. The skill asks the agent to save session_id (expected for a session-based API) but does not request elevated privileges or modify other skills.