v1.1.1

Xiaohongshu Comic Creator

ReviewClawScan verdict for this skill. Analyzed May 1, 2026, 6:34 AM.

Analysis

The skill is coherent for creating Xiaohongshu comics, but it asks for account cookies and can publish publicly through external tools without a clear final approval step.

GuidanceBefore installing, verify the external xiaohongshu-mcp, image-generation, search, and browser tools. Do not provide Xiaohongshu cookies unless you are comfortable granting posting access, and require the agent to show the full post and images for approval before publishing.

Findings (4)

Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.

Abnormal behavior control

Checks for instructions or behavior that redirect the agent, misuse tools, execute unexpected code, cascade across systems, exploit user trust, or continue outside the intended task.

Tool Misuse and Exploitation

SeverityHighConfidenceHighStatusConcern

references/workflow.md

# Step 7 — Publish

Upload images.

Create post using MCP tool.

Publishing is part of the default pipeline, and the artifact does not require a final user preview or approval before creating a public Xiaohongshu post.

User impactThe agent could publish generated content to the user's Xiaohongshu account before the user has explicitly approved the final title, text, images, and hashtags.

RecommendationRequire an explicit final confirmation step with a preview of the post and image list before calling the publishing tool.

Agentic Supply Chain Vulnerabilities

SeverityLowConfidenceHighStatusNote

SKILL.md

npx clawhub@latest --workdir {your_agent_workspace_dir} install xiaohongshu-mcp

The skill depends on installing external latest-version skills, including the MCP tool used for account publishing; this is purpose-aligned but unpinned.

User impactA future or unexpected version of an external dependency could change how credentials, browser automation, or publishing are handled.

RecommendationPin trusted dependency versions where possible and review the external skills, especially xiaohongshu-mcp, before providing cookies or allowing publishing.

Permission boundary

Checks whether tool use, credentials, dependencies, identity, account access, or inter-agent boundaries are broader than the stated purpose.

Identity and Privilege Abuse

SeverityHighConfidenceHighStatusConcern

SKILL.md

- xiaohongshu_cookies_path: path to Xiaohongshu login cookies JSON (for publishing)

The skill requires local session cookies for a third-party account; this is high-impact account access and is not reflected in the registry's declared credential requirements.

User impactXiaohongshu cookies can grant account-level posting access, so misuse or overbroad handling could affect the user's public account.

RecommendationClearly declare the credential requirement in metadata, use the least-privileged authentication method available, document where cookies are read and retained, and avoid using cookies until the user approves publishing.

Sensitive data protection

Checks for exposed credentials, poisoned memory or context, unclear communication boundaries, or sensitive data that could leave the user's control.

Insecure Inter-Agent Communication

SeverityMediumConfidenceHighStatusNote

references/xhs_posting.md

For publishing posts use the feed creation API provided by the MCP server.

The skill sends post content, image paths, and account-authenticated publishing actions through an MCP server; this is expected for the purpose but creates a sensitive tool boundary.

User impactPost content, images, and account actions depend on the MCP server's handling of identity and permissions.

RecommendationUse only a trusted MCP server, understand what account permissions it has, and avoid sharing cookies with unreviewed or unpinned tooling.