rednote summarize
v1.0.0根据用户提供的小红书帖子链接,提取并总结该帖主贴内容和评论区主要观点,生成中文综合报告。
⭐ 0· 76·0 current·0 all-time
by@xiwei26
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Benign
high confidencePurpose & Capability
Name/description (summarize a Xiaohongshu post and comments) align with the SKILL.md: it instructs the agent to open a provided Xiaohongshu URL, extract the post and representative comments, and produce Chinese summaries. No unrelated binaries, env vars, or installs are requested.
Instruction Scope
Instructions are narrowly focused on using a browser_subagent to load the URL, handle login popups (QR), scroll to load comments, extract text, and summarize. This is within scope. The only notable element is the explicit suggestion to ask the user for Cookies or other assistance if login cannot be automated — that is sensitive and should be handled cautiously (see guidance).
Install Mechanism
No install specification or code files are present; this is instruction-only, which minimizes on-disk risk. Nothing is downloaded or installed by the skill itself.
Credentials
The skill declares no required environment variables or credentials (good). However, SKILL.md advises requesting Cookies or other user-provided auth when login is needed — that is not a declared requirement and is sensitive. The need to obtain auth is explainable (site requires login) but users should avoid sharing persistent secrets.
Persistence & Privilege
always:false and no install/persistence behavior is present. The skill does not request permanent presence or modification of other skills/configs.
Assessment
This skill appears to do what it says: open a Xiaohongshu (小红书) post in a browser agent, extract post text and representative comments, and produce Chinese summaries. It does not install code or require environment credentials. However, the skill may prompt you to authenticate to Xiaohongshu (QR scan) or to supply Cookies if the agent cannot view content otherwise. Do NOT share passwords or long-lived account tokens/credentials with the skill; prefer one of these safer options: (1) use the browser_subagent to perform an interactive QR-based login yourself (scan and keep auth in your browser session), (2) provide access via a temporary/throwaway account if necessary, or (3) decline to provide cookies and instead paste the post text you want summarized. Also consider Xiaohongshu's terms and privacy implications before scraping/comment-summarizing content that may contain personal data.Like a lobster shell, security has layers — review code before you run it.
latestvk97fry912ny7p6x1840f48f8mh83fba4
License
MIT-0
Free to use, modify, and redistribute. No attribution required.