小红书图文自动发布引擎 Pro
AdvisoryAudited by Static analysis on May 10, 2026.
Overview
No suspicious patterns detected.
Findings (0)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
The agent could publish or submit content on your Xiaohongshu account at a scheduled time, and mistakes could become public or affect your brand/account.
The skill instructs the agent to use scheduled browser automation to fill and submit public social-media content, which is a high-impact action without a clearly enforced user approval step.
用 cron 创建定时任务,到发布时间: 1. 用 `browser open` 打开小红书创作中心 2. 自动填入标题、正文、标签、图片 3. 定稿或提交审核
Require an explicit user confirmation immediately before every submit/publish action, default to saving drafts only, and include clear limits for which account, post, and time window the agent may act on.
If your browser is logged in, the agent may act with your Xiaohongshu account permissions, including submitting content publicly.
Operating Xiaohongshu Creator Center implies use of the user's logged-in browser session or account authority, but the artifacts do not define which account/session may be used or how that authority is constrained.
用 `browser open` 打开小红书创作中心 ... 自动填入标题、正文、标签、图片 ... 定稿或提交审核
Declare the account/session requirements clearly, restrict operation to a user-selected account, and require confirmation before any action that changes account state or publishes content.
Old, incorrect, or modified scheduled content could later be used for an automated public post.
The persistent schedule file can control future posting behavior, but the skill does not describe validation, review, retention, or protection against stale or altered scheduled content.
将生成的笔记加入排期表 `memory/xhs-schedule.json` ... "scheduledTime": "2026-05-11T20:00:00+08:00", "status": "scheduled"
Treat scheduled items as drafts, show the exact stored content before posting, validate the schedule file before use, and provide a simple way to list, edit, and cancel scheduled posts.
The skill may keep acting later after the initial conversation, including checking data or attempting to publish according to stored schedules.
The skill explicitly creates recurring or delayed autonomous behavior for publishing and analytics checks, but does not define a stop condition, expiration, or user-visible control for the background schedule.
`cron` — 定时发布和定时检查数据
Add explicit start/stop controls, expiration times, schedule review, and notifications before each background action, especially before publication.