Security checks across malware telemetry and agentic risk
This skill installs the intended Xiaohongshu MCP service, but it also makes persistent system changes, can kill unrelated local processes, and handles browser cookies with weak safeguards.
Install only if you trust the upstream xiaohongshu-mcp project and are comfortable with a persistent local background service. Review the installer before running it, avoid the cookie-import path unless you understand that pasted cookies can grant account access, confirm what is using port 18060 before allowing any kill behavior, and prefer a low-privilege or user-level service instead of a root/system-wide systemd setup.
WantedBy=multi-user.target EOFSYSTEMD sudo systemctl daemon-reload sudo systemctl enable xhs-mcp sudo systemctl start xhs-mcp echo "✅ systemd 服务已启动"
launchctl load ~/Library/LaunchAgents/com.openclaw.xhs-mcp.plist # 重启服务(Linux) sudo systemctl restart xhs-mcp # 卸载服务 launchctl unload ~/Library/LaunchAgents/com.openclaw.xhs-mcp.plist 2>/dev/null
EOFWATCHDOG chmod +x ~/xiaohongshu-mcp/watchdog.sh # macOS: 添加定期检查到 crontab (crontab -l 2>/dev/null | grep -v watchdog; echo "*/5 * * * * ~/xiaohongshu-mcp/watchdog.sh") | crontab - echo "✅ 看门狗已配置(每5分钟检查一次)" ```
EOFSYSTEMD sudo systemctl daemon-reload sudo systemctl enable xhs-mcp sudo systemctl start xhs-mcp echo "✅ systemd 服务已启动" ```
sleep 1 # 启动 nohup ./xhs-mcp server --port 18060 > ~/xiaohongshu-mcp/mcp.log 2>&1 & sleep 3 # 验证
lsof -ti :$PORT | xargs kill -9 2>/dev/null
sleep 2
cd ~/xiaohongshu-mcp
nohup ./xhs-mcp server --port $PORT >> ~/xiaohongshu-mcp/mcp.log 2>&1 &
sleep 3
if check; then
echo "$(date '+%Y-%m-%d %H:%M:%S') 重启成功" >> "$LOG"#### macOS — launchd plist ```bash XHS_PLIST="$HOME/Library/LaunchAgents/com.openclaw.xhs-mcp.plist" mkdir -p "$HOME/Library/LaunchAgents" cat > "$XHS_PLIST" << 'EOFPLIST'
#### macOS — launchd plist ```bash XHS_PLIST="$HOME/Library/LaunchAgents/com.openclaw.xhs-mcp.plist" mkdir -p "$HOME/Library/LaunchAgents" cat > "$XHS_PLIST" << 'EOFPLIST'
XHS_PLIST="$HOME/Library/LaunchAgents/com.openclaw.xhs-mcp.plist" mkdir -p "$HOME/Library/LaunchAgents" cat > "$XHS_PLIST" << 'EOFPLIST' <?xml version="1.0" encoding="UTF-8"?> <!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd"> <plist version="1.0">
XHS_PLIST="$HOME/Library/LaunchAgents/com.openclaw.xhs-mcp.plist" mkdir -p "$HOME/Library/LaunchAgents" cat > "$XHS_PLIST" << 'EOFPLIST' <?xml version="1.0" encoding="UTF-8"?> <!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd"> <plist version="1.0">
cat > "$XHS_PLIST" << 'EOFPLIST'
<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
<plist version="1.0">
<dict>
<key>Label</key>cat > "$XHS_PLIST" << 'EOFPLIST'
<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
<plist version="1.0">
<dict>
<key>Label</key>cat > "$XHS_PLIST" << 'EOFPLIST'
<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
<plist version="1.0">
<dict>
<key>Label</key>
<string>com.openclaw.xhs-mcp</string>65/65 vendors flagged this skill as clean.