小红书发布
Security checks across malware telemetry and agentic risk
Overview
This skill is meant to publish to Xiaohongshu, but it depends on a manually run external Windows executable that becomes the real posting component.
Install only if you trust the source of the Xiaohongshu MCP executable and are comfortable giving it access to your Xiaohongshu session. Test with a non-production account first, review every title/content/image path before running publish commands, and avoid running the bundled example publishing scripts unless you intend to post that content.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
64/64 vendors flagged this skill as clean.