Back to skill
Skillv1.0.1
VirusTotal security
小红书MCP增强版 by Chaceclaw · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
SuspiciousApr 23, 2026, 9:41 AM
- Hash
- bed0c33c5319877ceb2b7018707ce79b3ca7729cc8fa6eaa298b77d477f5dee9
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: chaceclaw-xiaohongshu-enhanced Version: 1.0.1 The skill bundle provides a comprehensive automation framework for Xiaohongshu (RED) that requires high-risk system access and credential handling. Key indicators include instructions for executing shell commands to install third-party software via npx and Docker in 'setup-xhs-mcp/SKILL.md', and the management of sensitive authentication cookies stored in the user's home directory (~/.config/xiaohongshu/config.json) as detailed in 'xhs-login/SKILL.md'. While the bundle includes extensive safety documentation such as 'xhs-rate-limits.md' and 'xhs-compliance.md', the inherent risks of automated credential management and system-level configuration changes without sandboxing warrant a suspicious classification despite the lack of clear malicious intent.
- External report
- View on VirusTotal