Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Benign
medium confidencePurpose & Capability
Name/description describe Xiaohongshu research; required binaries (python3, git), local scripts, QR login flow, and an MCP binary are all consistent with implementing a local search engine + report synthesis. No unrelated credentials or surprising permissions are requested.
Instruction Scope
SKILL.md instructs the agent to generate search keywords, run the included Python scripts, perform a QR login (via a downloaded xiaohongshu-login binary), run a local MCP server, and save reports/cookies to ~/.local/share/xhs-research and ~/Documents/XHS-Research. These actions match the stated task but include storing login cookies and launching a local service and Chrome for QR login (user interaction required).
Install Mechanism
setup.py downloads a release tarball from GitHub (xpzouying/xiaohongshu-mcp) and extracts binaries into ~/.local/share/xhs-research/bin. Downloading release assets from GitHub is standard practice but still executes third‑party binaries on your machine — verify the upstream repo and release integrity before running.
Credentials
No required environment variables or external credentials are declared. The skill will create local files (cookies.json) containing login/session data — this is necessary for its function but is sensitive. Note: the scripts respect an optional XIAOHONGSHU_API_BASE env var which, if set, can change the backend endpoint used by the client.
Persistence & Privilege
always is false and the skill does not request platform-global privileges. It writes files under the user's home directory and runs a local binary server; it does not modify other skills or system-wide agent configs.
Assessment
This skill appears to do what it says: it runs a local MCP service, asks you to scan a Xiaohongshu QR code, and uses downloaded binaries to perform searches and produce reports. Before installing:
- Inspect and verify the upstream GitHub project (xpzouying/xiaohongshu-mcp) and its releases; malicious actors can publish binaries to a release asset.
- If you don't trust those binaries, don't run setup.py; you can audit source or build binaries yourself.
- Be aware the skill saves login cookies (~/.local/share/xhs-research/cookies.json) and will launch Chrome for QR login; treat that file as sensitive and delete it when you no longer need the skill.
- Note the optional XIAOHONGSHU_API_BASE env var can redirect network calls — ensure it is not set to an untrusted remote endpoint.
- Run the skill in a controlled environment (or sandbox) if you want additional safety, and remove the ~/.local/share/xhs-research directory after use.Like a lobster shell, security has layers — review code before you run it.
latestvk97ck8yeffgt7jk9fm9sea6cwn843sa3
License
MIT-0
Free to use, modify, and redistribute. No attribution required.
Runtime requirements
📕 Clawdis
Binspython3, git