Back to skill
Skillv1.0.1
VirusTotal security
Xiaohongshu Ops · External malware reputation and Code Insight signals for this exact artifact hash.
Scanner verdict
ReviewMay 1, 2026, 8:44 AM
- Hash
- b1c07b81a2a7e675c246a79c0f90d0f9d2aed76daeb5ccc769bd17f63a957af2
- Source
- palm
- Verdict
- suspicious
- Code Insight
- Type: OpenClaw Skill Name: xhs-ops Version: 1.0.1 The xhs-ops bundle is a comprehensive toolkit for Xiaohongshu (XHS) account management, including content generation, account auditing, and automated interaction. It is classified as suspicious because it contains functional JavaScript snippets for scraping user and post data (references/xhs-eval-patterns.md) and explicitly directs the agent to execute external Python and shell scripts (style-observe.py, generate-image.sh) for style tracking and image generation that are not provided in the bundle. While these features align with the stated purpose of the skill, the combination of scraping capabilities and external script execution without providing the source code for those scripts poses a potential risk for unauthorized data collection or local code execution.
- External report
- View on VirusTotal