Xiaohongshu (小红书) Automation
Automate Xiaohongshu (RedNote) content operations using a Python client for the xiaohongshu-mcp server. Use for: (1) Publishing image, text, and video content, (2) Searching for notes and trends, (3) Analyzing post details and comments, (4) Managing user profiles and content feeds. Triggers: xiaohongshu automation, rednote content, publish to xiaohongshu, xiaohongshu search, social media management.
scripts/xhs_client.py
text/plain · 10169 字节
SKILL.md
text/markdown · 3843 字节
skill-card.md
text/markdown · 2046 字节
Security Scan
状态
suspicious
OpenClaw
gpt-5.5
OpenClaw 分析
This skill is coherent for Xiaohongshu automation, but it asks users to run third-party local binaries tied to a logged-in account and includes a publish command without built-in confirmation.
置信度: high
VirusTotal
Type: OpenClaw Skill Name: xiaohongshu-mcp Version: 1.0.0 The skill is classified as suspicious due to its reliance on external, third-party binaries for core functionality. The `SKILL.md` explicitly instructs the user to download and execute `xiaohongshu-mcp` and `xiaohongshu-login` binaries from a GitHub repository, which then run a local server. While the bundled Python client (`scripts/xhs_client.py`) only communicates with this local server (`http://localhost:18060`) and does not exhibit direct malicious behavior (e.g., data exfiltration, remote execution), the requirement to run untrusted external executables introduces a significant supply chain risk and places a high trust burden on the user for a component outside the skill bundle's direct control.