← Back to Skills Marketplace
qianduoduo1422608857

Xhs Publish

by qianduoduo8021 · GitHub ↗ · v1.4.5 · MIT-0
cross-platform ⚠ suspicious
471
Downloads
8
Stars
2
Active Installs
7
Versions
Install in OpenClaw
/install xhs-publish
Description
小红书一键发布 — AI 全流程搞定:自动生成标题 → 撰写正文 → 封面/知识卡片/视频(三种形式) → 一键发布。3 分钟从创意到上线,支持多模型自由切换。触发词:发小红书、发布笔记、小红书发布、发笔记、小红书笔记、写小红书、写笔记。
Usage Guidance
What to check before installing: - Source trust: the package has no homepage and an unknown owner; prefer skills from known repositories. If you don't trust the author, don't install. - Credentials: the metadata says 'no env vars' but scripts require many API keys and secret keys (Gemini/OpenAI/Tencent/MD2Card/XHS AI). Only set credentials you control and understand; never paste high‑privilege keys without auditing code. - Audit the code: review scripts (cover.sh, generate.sh, check_env.sh) for any unexpected network endpoints or file reads. Pay attention to places where user input could be used to read arbitrary local files (the __USER_IMAGE__ path mode uses a provided path). - Sandbox/least privilege: run the skill in an isolated VM/container and avoid running as root. If you must run on a host, restrict network access and API keys to minimal scopes. - MCP binary: README suggests downloading a third‑party MCP binary from GitHub; verify the release URL, checksum, and author before running executables. - System actions: scripts attempt to start system services (Xvfb, xhs-mcp) and write to ~/xiaohongshu-mcp and /root/.openclaw/media — decide whether you want a skill that manipulates services and these paths. - If unsure: treat as suspicious. Request the author's identity, full provenance (homepage, source repo), or run a manual code review and test in a safe environment before trusting with real API keys or persistent deployment.
Capability Analysis
Type: OpenClaw Skill Name: xhs-publish Version: 1.4.5 The skill bundle provides extensive automation for Xiaohongshu posting but contains several high-risk security indicators. Most critically, SKILL.md contains a hardcoded, functional 'DOUBAO_API_KEY' (919ec537-6d4d-43c4-a5ce-a90a17673bbb), which is a major credential leak. The instructions in SKILL.md also include 'Content Taboos' that explicitly direct the AI agent to use prompt injection techniques to hide its automated nature and the tool's identity to evade platform detection. Additionally, the installation scripts (check_env.sh) and documentation encourage downloading and executing external binaries from GitHub (xpzouying/xiaohongshu-mcp) and managing sensitive session cookies locally. While these features support the stated purpose, the combination of hardcoded secrets, platform-evasion instructions, and external binary execution makes the bundle highly risky.
Capability Assessment
Purpose & Capability
Name/description (小红书一键发布) align with the included scripts (cover.sh, generate.sh, check_env.sh) that generate assets and call an MCP to publish. However the skill metadata declares no required environment variables while the scripts clearly expect many API keys and secrets (GEMINI_API_KEY, IMG_API_KEY, HUNYUAN_SECRET_ID/KEY, MD2CARD_API_KEY, XHS_AI_API_KEY, etc.). That mismatch is unexplained and disproportionate.
Instruction Scope
SKILL.md and scripts instruct the agent to: generate titles/content/images, call external image/AI APIs, start or check system services (Xvfb, xhs-mcp via systemctl or manual spawn), copy files into /root/.openclaw/media/inbound and use a local MCP service. Instructions reference system paths, systemctl and spawning background services — actions beyond mere text generation and that affect host state. The SKILL.md also prescribes strict Feishu media handling rules and automatic keyword replacement, which is platform-specific but plausible.
Install Mechanism
No formal install spec is provided (instruction-only), which reduces explicit installer risk, but README suggests downloading a third‑party MCP binary from a GitHub releases URL. The code will write to ~/xiaohongshu-mcp, /tmp and /root/.openclaw/media; scripts create and execute helper Python snippets. No use of obscure shorteners was found; content embedding (e.g., base64 font in flow.svg) is present but typical for documentation assets.
Credentials
Declared 'Required env vars: none' is inconsistent with multiple environment variables referenced across scripts and check_env.sh (GEMINI_API_KEY, IMG_API_KEY, HUNYUAN_SECRET_ID/KEY, DOUBAO_API_KEY, MD2CARD_API_KEY, XHS_AI_API_KEY, XHS_AI_API_URL, etc.). Those are sensitive credentials (API keys/secret keys). The skill's primary function (generate/publish content) does justify some API keys, but the omission from metadata and the breadth of keys requested (multiple providers and cloud secrets) is disproportionate without clearer justification.
Persistence & Privilege
The skill does not request always:true and is user-invocable. However its scripts attempt to start/check system services (systemctl start xvfb, start/launch xiaohongshu-mcp), create ~/xiaohongshu-mcp, and instruct use of /root/.openclaw/media/inbound. Those behaviors require the runtime to allow process spawning and filesystem writes in user/home (and references /root). This is more than ephemeral processing but not automatically permanent; still review required.
How to Use
  1. Make sure OpenClaw is installed (local or Docker)
  2. Run the install command in chat: /install xhs-publish
  3. After installation, invoke the skill by name or use /xhs-publish
  4. Provide required inputs per the skill's parameter spec and get structured output
Version History
v1.4.5
优化知识卡片流程
v1.4.4
支持小红书二次扫码登录;优化登录流程文档
v1.4.3
新增 Cookie 登录方式(备选方案),优化登录流程:优先尝试扫码,失败后提示 Cookie 登录
v1.4.2
补充触发词描述:发小红书、发布笔记、小红书发布、发笔记、小红书笔记
v1.4.1
优化文档结构:标题加粗、章节隔行、列表有序号、表格简化、常见错误改为列表形式
v1.4.0
新增视频笔记发布支持、优化发布流程、改进封面/视频生成逻辑
v1.3.0
重构:移除队列/监控功能,专注发布;支持视频笔记;增加检测博主回复功能
Metadata
Slug xhs-publish
Version 1.4.5
License MIT-0
All-time Installs 2
Active Installs 2
Total Versions 7
Frequently Asked Questions

What is Xhs Publish?

小红书一键发布 — AI 全流程搞定:自动生成标题 → 撰写正文 → 封面/知识卡片/视频(三种形式) → 一键发布。3 分钟从创意到上线,支持多模型自由切换。触发词:发小红书、发布笔记、小红书发布、发笔记、小红书笔记、写小红书、写笔记。 It is an AI Agent Skill for Claude Code / OpenClaw, with 471 downloads so far.

How do I install Xhs Publish?

Run "/install xhs-publish" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.

Is Xhs Publish free?

Yes, Xhs Publish is completely free, licensed under MIT-0. You can download, install and use it at no cost.

Which platforms does Xhs Publish support?

Xhs Publish is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).

Who created Xhs Publish?

It is built and maintained by qianduoduo8021 (@qianduoduo1422608857); the current version is v1.4.5.

More Skills
self-improving agent
Captures learnings, errors, and corrections to enable continuous improvement. Use when: (1) A command or operation fails unexpectedly, (2) User corrects Clau...
⬇ 463556 · by pskoett
Skill Vetter
Security-first skill vetting for AI agents. Use before installing any skill from ClawdHub, GitHub, or other sources. Checks for red flags, permission scope, and suspicious patterns.
⬇ 259610 · by spclaudehome
Polymarket
Query Polymarket prediction markets. Check odds, find trending markets, search events, track price movements.
⬇ 232503 · by joelchance
Self-Improving + Proactive Agent
Self-reflection + Self-criticism + Self-learning + Self-organizing memory. Agent evaluates its own work, catches mistakes, and improves permanently. Use when...
⬇ 200551 · by ivangdavila
Github
Interact with GitHub using the `gh` CLI. Use `gh issue`, `gh pr`, `gh run`, and `gh api` for issues, PRs, CI runs, and advanced queries.
⬇ 191226 · by steipete
ontology
Typed knowledge graph for structured agent memory and composable skills. Use when creating/querying entities (Person, Project, Task, Event, Document), linkin...
⬇ 190235 · by oswalpalash

💬 Comments