小红书自动发布工具包 (Xiaohongshu Publish Kit)

Complete toolkit for publishing content to Xiaohongshu (小红书). Includes automated browser control, image generation, content formatting, and full publishing p...

What to consider before installing or enabling this skill: - Verify OpenClaw/browser availability: The code expects a browser CLI (openclaw / browser) though the registry only lists python3. Do not install or run until you confirm you have a trusted OpenClaw/browser binary and understand what it controls. - Session data is accessed and backed up: login_keeper.py and publish.py copy your browser user-data (~/.openclaw/browser/openclaw/user-data) to /tmp/xiaohongshu_session_backup and can restore it. That directory contains cookies and authentication data; treat it as sensitive. If you enable backups, secure or delete backups when not needed. - Persistent operation is optional but powerful: setup_keepalive.sh can add a crontab or run a daemon that periodically drives your browser and backups. Only enable this if you trust the code and accept long-lived automation operating on your account. - Command injection / shell usage: The scripts run subprocesses with shell=True and interpolate strings into shell commands (e.g., cover generation and example runner). If you ever pass untrusted input into titles, content, file paths, or other arguments, it could be abused. Consider hardening code (avoid shell=True, use list args) or sanitize inputs before use. - Review and test locally / sandboxed: Inspect scripts (especially login_keeper.py, publish.py, cover_generator.py, setup_keepalive.sh). Run them in an isolated environment or VM with a throwaway browser profile to confirm behavior before using them with your real account. - Least privilege and file permissions: Do not run as root. Restrict access to /tmp backups (chmod) if you enable backups. Manually inspect and remove any backup files after testing. - Notifications and extensions: The code has placeholder hooks for sending notifications to external services; do not wire any remote endpoints (Telegram, email, webhooks) until you audit any code you add. If you want, I can point out the exact lines/functions that perform session copying, subprocess shell execution, and crontab modification so you can review them more quickly.

Type: OpenClaw Skill Name: xiaohongshu-publish-kit Version: 1.2.0 The toolkit provides automated Xiaohongshu publishing but contains significant security vulnerabilities. Multiple scripts, including publish.py, cover_generator.py, and daily_news.py, use subprocess.run(shell=True) with string interpolation for user-provided inputs like titles and file paths, creating a high risk of shell injection. Furthermore, login_keeper.py backs up sensitive browser session data (including authentication cookies) to the world-readable /tmp/xiaohongshu_session_backup directory, posing a credential theft risk. While these behaviors align with the stated automation goals, the lack of input sanitization and insecure storage of session data are critical flaws.