PigBun RedNote
WarnAudited by ClawScan on May 10, 2026.
Overview
This RedNote automation skill is purpose-aligned, but it asks for account/API access and enables public posting, deleting, commenting, liking, and following without reviewed implementation or clear safety boundaries.
Install only if you trust PigBun and are comfortable delegating RedNote/Xiaohongshu account operations. Use a dedicated account where possible, verify the source of the `openclaw rednote init` command, keep the API key revocable, and require manual approval before any post, delete, reply, like, follow, or other public action.
Findings (4)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
If invoked too broadly or from an ambiguous prompt, the agent could change public content or interact from the user's account in ways that affect reputation or business operations.
These are public, account-mutating social-media actions. The documentation does not require user confirmation, content preview, rate limits, or safe rollback before publishing, deleting, replying, liking, or following.
`publish_note`, `publish_note_video`, `edit_note`, `delete_note`, `comment_note`, `reply_comment`, `like_note`, `collect_note`, `follow_author`; example: `筛选出提问类评论并逐一回复`
Require explicit confirmation and a preview before every publish, edit, delete, follow, like, or comment action; add limits for bulk replies and make destructive actions opt-in.
Installing or using the skill may delegate access to a social-media account and related analytics, notifications, and content-management powers.
The skill asks for both a PigBun API key and a logged-in Xiaohongshu account session, but the artifacts do not describe credential scope, storage, revocation, or which account permissions will be exercised.
从 [pigbunai.com](https://pigbunai.com) 获取免费 API Key ... 首次使用前运行 `openclaw rednote init` 扫码登录小红书 ... `"apiKey": "pb_live_your_key_here"`
Use a dedicated or least-privileged account if possible, verify the provider, store the API key only in the intended config, and revoke the key/session if the skill is no longer needed.
Users cannot verify from the supplied artifacts how the account automation is implemented, what component handles credentials, or whether the command path is trustworthy.
The package claims many RedNote tools and references setup commands, but no reviewed code, install spec, required binary declaration, or capability metadata is present to show what will run or provide those tools.
No install spec — this is an instruction-only skill. No code files present — this is an instruction-only skill. Capability signals: No capability tags were derived.
Publish a complete manifest, install spec, source/provenance information, declared credentials, and reviewed implementation for the claimed tools before relying on it for account operations.
Operational content and account analytics may be processed through a third-party service, depending on the unprovided implementation.
The skill discloses a third-party PigBun API key and account-data features, but does not explain the data boundary for content, analytics, notifications, or account actions sent through that provider.
从 [pigbunai.com](https://pigbunai.com) 获取免费 API Key ... 数据分析 ... `get_dashboard_overview`, `get_content_analytics`, `get_fans_analytics`, `get_notifications`
Review PigBun's privacy and security documentation and avoid sending sensitive account data unless the provider and data-handling terms are acceptable.