← Back to Skills Marketplace
weznai

小红书 MCP 服务

by wezn · GitHub ↗ · v1.1.0 · MIT-0
cross-platform ⚠ suspicious
276
Downloads
0
Stars
1
Active Installs
2
Versions
Install in OpenClaw
/install skill-xhs-mcp-service
Description
小红书(XHS/RED)自动化助手。完整的小红书操作能力,包含 MCP 服务端。 当用户提到小红书、红书、XHS、RED、发笔记、搜笔记、小红书运营等任何与小红书相关的操作时使用此技能。
Usage Guidance
This skill appears to implement the stated Xiaohongshu automation features, but it ships with data/cookies.json that contains session tokens (access-token-*, id_token, web_session, etc.). Those are effectively credentials and let anyone running the skill act as that account. Before installing or running: 1) Do not run the service with the bundled cookies.json; inspect data/cookies.json and remove or replace it with your own cookies only after you understand the contents. 2) Prefer to run 'npm run login' yourself (the provided login.js opens a browser for QR login) to generate fresh cookies tied to your account, and then delete the included cookies file. 3) If the included cookies belong to you and you intentionally want to use them, rotate those session tokens/passwords after distributing code publicly. 4) Run the skill in an isolated environment (VM or container) if you must test it. 5) Review the code (browser.js, xhs-tools.js, ensure-service.js) for any additional endpoints or logging you don't expect; while no obvious exfiltration endpoints are present, the presence of embedded credentials is already a serious privacy/risk issue. If you don't control the account represented by the cookies, treat the package as unsafe and prefer a version that does not ship credentials.
Capability Analysis
Type: OpenClaw Skill Name: skill-xhs-mcp-service Version: 1.1.0 The skill bundle provides comprehensive XiaoHongShu automation but contains a highly irregular 'data/cookies.json' file pre-populated with active session tokens (including 'access-token' and 'web_session'), which is a significant security risk and irregular for a skill distribution. Additionally, 'scripts/browser.js' initializes Puppeteer with high-risk flags such as '--disable-web-security' and '--no-sandbox', and 'scripts/ensure-service.js' uses 'child_process.exec' for process management. While these elements are functionally related to the skill's purpose, the inclusion of hardcoded session data and the reduction of browser security boundaries are characteristic of high-risk or poorly secured automation tools.
Capability Assessment
Purpose & Capability
Name, description, and code (puppeteer-based browser automation + MCP server) are coherent for a Xiaohongshu automation skill. However, the package includes data/cookies.json with many cookie entries (including access-token-*, id_token, web_session, customer-sso-sid, etc.). Bundling live session cookies with the skill is not required by the stated purpose and is disproportionate — it effectively embeds credentials for an account into the distributed package.
Instruction Scope
SKILL.md tells users to run 'npm run login' to scan a QR and save cookies, and otherwise describes normal MCP usage. The runtime code (browser.js) automatically loads cookies.json if present without requiring explicit user action. The SKILL.md does not call out or warn that a prepopulated cookies.json exists; that mismatch creates a risk the skill will silently use embedded session cookies rather than requiring the user's own login.
Install Mechanism
There is no external download/install script; dependencies are standard (express, puppeteer, @modelcontextprotocol/sdk, qrcode, zod). No remote arbitrary URL downloads or obscure install channels are used. This is an instruction-and-code package that relies on npm for dependencies.
Credentials
The skill declares no required secrets/env vars (only XHS_PORT/XHS_HOST/XHS_PROXY), which is appropriate. However, the presence of baked-in cookies.json with session tokens is equivalent to shipping credentials in the package — this is disproportionate and inconsistent with 'no credentials required'. The skill will use those cookies automatically (via BrowserManager.loadCookies), giving anyone running it access as the embedded account. There is no mechanism in SKILL.md requiring users to inspect or remove those cookies prior to use.
Persistence & Privilege
The skill does not request elevated platform privileges or set always:true. It can spawn a detached node process to run the MCP service (ensure-service.js uses spawn with detached: true) which will run in background — normal for a service but means the process can persist after the invoking shell exits. The stop method uses a Windows taskkill command that could be imprecise on some systems. Autonomous invocation remains enabled (default) but is not combined with any other broad privileges in the package.
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install skill-xhs-mcp-service
  3. After installation, invoke the skill by name or use /skill-xhs-mcp-service
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.1.0
v1.1.0: 重构为独立技能包,包含完整服务端代码,新增服务管理脚本
v1.0.0
Initial release of skill-xhs-mcp-service: - Provides a complete set of automation tools for Xiaohongshu (RED/XHS) via local xhs-mcp-service. - Supports login, feed retrieval, note search, liking, favoriting, commenting, profile access, and content publishing (text/image/video). - Includes detailed deployment instructions and environment variable support. - Notes on MCPorter usage and Windows limitations for array parameters. - Highlights best practices and important usage restrictions (posting limits, login session, etc.).
Metadata
Slug skill-xhs-mcp-service
Version 1.1.0
License MIT-0
All-time Installs 1
Active Installs 1
Total Versions 2
Frequently Asked Questions

What is 小红书 MCP 服务?

小红书(XHS/RED)自动化助手。完整的小红书操作能力,包含 MCP 服务端。 当用户提到小红书、红书、XHS、RED、发笔记、搜笔记、小红书运营等任何与小红书相关的操作时使用此技能。 It is an AI Agent Skill for Claude Code / OpenClaw, with 276 downloads so far.

How do I install 小红书 MCP 服务?

Run "/install skill-xhs-mcp-service" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is 小红书 MCP 服务 free?

Yes, 小红书 MCP 服务 is completely free, licensed under MIT-0. You can download, install and use it at no cost.

Which platforms does 小红书 MCP 服务 support?

小红书 MCP 服务 is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created 小红书 MCP 服务?

It is built and maintained by wezn (@weznai); the current version is v1.1.0.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463815 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259802 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200680 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191345 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190333 · by oswalpalash

💬 Comments