← Back to Skills Marketplace
小红书
by
ChocomintX
· GitHub ↗
· v0.1.0
6853
Downloads
11
Stars
44
Active Installs
1
Versions
Install in OpenClaw
/install xiaohongshutools
Description
XiaoHongShu (Little Red Book) data collection and interaction toolkit. Use when working with XiaoHongShu (小红书) platform for: (1) Searching and scraping notes/posts, (2) Getting user profiles and details, (3) Extracting comments and likes, (4) Following users and liking posts, (5) Fetching home feed and trending content. Automatically handles all encryption parameters (cookies, headers) including a1, webId, x-s, x-s-common, x-t, sec_poison_id, websectiga, gid, x-b3-traceid, x-xray-traceid. Supports guest mode and authenticated sessions via web_session cookie.
Usage Guidance
Install only if you understand that this can use a XiaoHongShu session cookie to act as your account. Avoid important accounts, do not paste cookies into shared logs or chats, and review or remove the read-count metrics workflow, comment mutation APIs, session-cookie logging, and eval-based config parser before using it in production.
Capability Analysis
Type: OpenClaw Skill
Name: xiaohongshutools
Version: 0.1.0
The skill is designed for web scraping and interaction with XiaoHongShu, employing sophisticated reverse-engineering techniques to bypass anti-bot measures. While its functionality aligns with the stated purpose, the nature of web scraping, anti-bot bypass, and the capability to handle security challenges (like QR code logins) without clear malicious intent, classifies it as suspicious. There is no evidence of data exfiltration to unauthorized endpoints, persistence, or unauthorized remote control. The hardcoded path in SKILL.md and a hardcoded fingerprint example in scripts/request/web/encrypt/other/XhsFpGenerator.py are minor concerns but do not indicate malicious intent.
Capability Assessment
Purpose & Capability
Scraping, authenticated XiaoHongShu requests, generated anti-bot headers, likes, and follows are broadly disclosed and coherent with the stated toolkit purpose. However, the code also exposes comment posting/replying/deletion/likes and an add_note_readnum workflow that sends entry/exit metrics with randomized dwell time to increase read counts; those capabilities are not clearly presented in the user-facing API list and create platform-manipulation risk.
Instruction Scope
The instructions disclose web_session cookie use, proxies, encryption handling, rate-limit caution, and basic follow/like calls, but they do not require explicit confirmation for account-mutating actions, do not document the hidden comment mutation and read-count workflows, and do not provide adequate secret-handling guidance for session cookies.
Install Mechanism
Installation is a simple dependency list with unpinned pip packages and a hard-coded local sys.path example. No installer persistence or startup behavior was found, but reproducibility and provenance are weak.
Credentials
Outbound requests to XiaoHongShu endpoints and anti-bot fingerprint/header generation are expected for the stated scraping purpose, but the skill handles authenticated session cookies, sends fingerprint/profile data, and can transmit phone numbers for SMS login without clear consent boundaries.
Persistence & Privilege
No background persistence, privilege escalation, or unauthorized remote-control mechanism was found. The concern is runtime privilege: an authenticated web_session can be used for public account actions and is logged in several error paths, and config values are evaluated as Python code if the local INI is modified.
How to Use
- Make sure OpenClaw is installed (local or Docker)
- Run the install command in chat:
/install xiaohongshutools - After installation, invoke the skill by name or use
/xiaohongshutools - Provide required inputs per the skill's parameter spec and get structured output
Version History
v0.1.0
Initial release of the XiaoHongShu (Little Red Book) data collection and interaction toolkit.
- Search and scrape notes/posts by keyword
- Fetch user profiles, note details, comments, likes, and trending content
- Support for following users and liking posts
- Handles all required XiaoHongShu encryption parameters (no browser/JS required)
- Allows operation in both guest mode and authenticated mode (via web_session cookie)
- Proxy support for bypassing platform restrictions and rate limits
- Provides detailed usage instructions, example workflows, and troubleshooting tips
Metadata
Frequently Asked Questions
What is 小红书?
XiaoHongShu (Little Red Book) data collection and interaction toolkit. Use when working with XiaoHongShu (小红书) platform for: (1) Searching and scraping notes/posts, (2) Getting user profiles and details, (3) Extracting comments and likes, (4) Following users and liking posts, (5) Fetching home feed and trending content. Automatically handles all encryption parameters (cookies, headers) including a1, webId, x-s, x-s-common, x-t, sec_poison_id, websectiga, gid, x-b3-traceid, x-xray-traceid. Supports guest mode and authenticated sessions via web_session cookie. It is an AI Agent Skill for Claude Code / OpenClaw, with 6853 downloads so far.
How do I install 小红书?
Run "/install xiaohongshutools" in the OpenClaw or Claude Code chat to install it in one step — no extra setup required.
Is 小红书 free?
Yes, 小红书 is completely free (open-source). You can download, install and use it at no cost.
Which platforms does 小红书 support?
小红书 is cross-platform and runs anywhere OpenClaw / Claude Code is available (cross-platform).
Who created 小红书?
It is built and maintained by ChocomintX (@chocomintx); the current version is v0.1.0.
More Skills