xiaohongshu-mcp-skill
Operate Xiaohongshu (小红书/RED) via local MCP service. Use when user wants to search notes, publish content (image/video), interact with posts (like/comment/fa...
MIT-0 · Free to use, modify, and redistribute. No attribution required.
⭐ 1 · 1.4k · 12 current installs · 12 all-time installs
byAndy Xie@PalmPalm7
MIT-0
Security Scan
OpenClaw
Benign
high confidencePurpose & Capability
Name/description say it operates Xiaohongshu via a local MCP service; all declared instructions and references target a localhost MCP server and local login binaries (xpzouying/xiaohongshu-mcp). No unrelated cloud credentials, exotic binaries, or hidden external endpoints are requested.
Instruction Scope
SKILL.md and references only instruct contacting http://localhost:18060/mcp, starting local binaries, and using local cookies and files for publishing — which is within scope. Minor issues: instructions include an author-specific absolute path (/Users/handi7/...) that won't apply to most users and the workflow expects running a local login binary that will download Chromium and store cookies.json (session data).
Install Mechanism
No automated install spec in the skill bundle; deploy docs instruct downloading prebuilt binaries from the GitHub Releases of xpzouying/xiaohongshu-mcp (a reasonable, traceable source). The deploy step extracts archives and runs binaries locally — standard but users should verify release integrity before running.
Credentials
The skill requests no environment variables, no external credentials, and only uses local files like cookies.json and local media files for publishing — proportional to its stated function of controlling a local MCP service and posting on the user's Xiaohongshu account.
Persistence & Privilege
Skill is instruction-only, not always:true, and does not modify other skills or system-wide settings. It does rely on a local long-running service (MCP) that, once running, can perform account actions — which is expected given its purpose.
Assessment
This skill controls a local service that can post, like, and comment using your Xiaohongshu account, so only install it if you trust the xpzouying project and the prebuilt binaries. Before running: (1) verify the GitHub release you download (check checksums/signatures if available), (2) inspect binaries or run them in a sandbox or VM if you are unsure, (3) protect the cookies.json file (it contains session credentials), and (4) be cautious about granting the agent autonomous invocation — an agent using this skill could post or interact on your behalf. Also update file paths in the docs to match your system rather than running commands with the hardcoded author path.Like a lobster shell, security has layers — review code before you run it.
Current versionv1.0.0
Download ziplatest
License
MIT-0
Free to use, modify, and redistribute. No attribution required.
SKILL.md
xiaohongshu-mcp
小红书 MCP 服务操作。
快速开始
-
检查服务状态
curl -s -X POST http://localhost:18060/mcp \ -H "Content-Type: application/json" \ -d '{"jsonrpc":"2.0","method":"initialize","params":{},"id":1}' -
服务未运行时启动
cd /Users/handi7/Documents/agentic-coding-projects/projects/xiaohongshu-mcp nohup ./bin/xiaohongshu-mcp-darwin-arm64 > mcp.log 2>&1 &
可用工具
| 工具 | 说明 |
|---|---|
check_login_status | 检查登录状态 |
get_login_qrcode | 获取登录二维码 |
list_feeds | 首页推荐 |
search_feeds | 搜索内容 |
get_feed_detail | 笔记详情 |
user_profile | 用户主页 |
publish_content | 发布图文 |
publish_with_video | 发布视频 |
post_comment_to_feed | 发表评论 |
reply_comment_in_feed | 回复评论 |
like_feed | 点赞 |
favorite_feed | 收藏 |
delete_cookies | 重置登录 |
内容限制
- 标题 ≤20 字
- 正文 ≤1000 字
- 每日 ≤50 篇
- 图文流量优于视频
References
- 首次部署: references/deploy.md — 下载、登录、启动服务
- 使用指南: references/usage.md — 工具详解、工作流、运营知识
Credits
Based on xpzouying/xiaohongshu-mcp by @xpzouying
Files
3 totalSelect a file
Select a file to preview.
Comments
Loading comments…