小红书 AI 副业指南
Security checks across malware telemetry and agentic risk
Overview
This skill does not request credentials or system access, but it encourages AI-generated public posts with unverified earnings claims and references a missing local generator script.
Use this only as a drafting aid. Verify any income claims before publishing, avoid fake screenshots or fabricated success stories, and do not run any missing generator script unless the actual source code is supplied and reviewed.
VirusTotal
66/66 vendors flagged this skill as clean.
Risk analysis
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
A user could publish AI-generated posts that appear to claim real earnings or results, risking misleading readers, platform enforcement, and reputational harm.
The skill instructs generation of public social posts optimized around income claims, personal proof, and engagement bait, but does not require the claims to be real or disclosed as examples.
标题含数字:点击率 +23% ... 提及收益:收藏率 +45% ... 我的成果(数字+截图) ... 行动号召("评论区领工具包")
Only use real, documented earnings and screenshots; clearly label examples or hypothetical content; avoid fabricated financial claims and misleading calls-to-action.
The reviewed package cannot substantiate the documented command-line behavior, and users might be tempted to run an unreviewed script from elsewhere.
The documentation references a runnable generator script, but the provided file manifest contains no such code file, so any separately obtained script would be outside this review.
├── xiaohongshu-gen # 主脚本(Python/bash)
Do not run any missing or separately downloaded xiaohongshu-gen executable unless its source is included, reviewed, and matches the package documentation.