← 返回 Skills 市场
246
总下载
0
收藏
0
当前安装
2
版本数
在 OpenClaw 中安装
/install xhs-autopilot
功能描述
Red (Xiaohongshu) Full-Autonomous AI-Native Workflow Alchemy System. 30-min operation loop with self-improvement.
安全使用建议
This skill is functionally coherent for automating Xiaohongshu activity, but it has several red flags: (1) the package does NOT include the scripts it tells the agent to run — ask the author or expect the agent to look elsewhere for code, which is risky; (2) it relies on connecting to your local Chrome CDP (localhost:9222) to inherit login state — that gives the agent the ability to act as you on Xiaohongshu; (3) it will read and write local memory directories and may publish automatically every 30 minutes.
Before installing or enabling this skill: review and obtain the actual scripts the skill expects; run it only in an isolated environment or a dedicated browser profile with no sensitive accounts logged in; disable autonomous invocation if you want manual control; backup your workspace and avoid giving it access to your primary browser profile; and only proceed if you trust the skill's author/source and have inspected any referenced scripts. If you can't get the referenced scripts or provenance, treat the skill as high risk and avoid enabling autonomous execution.
功能分析
Type: OpenClaw Skill
Name: xhs-autopilot
Version: 1.0.1
The skill implements an automated social media management system for Xiaohongshu (Red) that utilizes high-risk automation techniques. Specifically, it instructs the agent to connect to a running Chrome instance via the Chrome DevTools Protocol (CDP) on port 9222 to hijack existing login sessions and bypass anti-bot measures (detailed in DEVELOPER_BIBLE.md). Additionally, SKILL.md encourages 'self-evolution' by instructing the agent to autonomously create or modify scripts to solve operational bottlenecks, which introduces a significant risk of uncontrolled code execution. While these capabilities are aligned with the stated purpose of an 'AI-Native Autopilot,' the combination of browser session access and autonomous script modification is highly risky.
能力评估
Purpose & Capability
The SKILL.md describes a Xiaohongshu full‑autonomous workflow and references many local scripts (scripts/*) and memory directories (xhs-memory/). That capability (automated publishing using an existing logged‑in Chrome) is internally coherent with the described purpose. However, the skill bundle does NOT include the referenced scripts or an install spec that would provide them. Expecting to run scripts that are absent is an incoherence: the skill assumes a larger codebase and local state that are not provided by this package, which could lead the agent to search, download, or execute unexpected code.
Instruction Scope
The runtime instructions direct the agent to access local files and directories (xhs-memory/, workspace/MEMORY.md, performance_data/), connect to a local Chrome CDP on localhost:9222 (to inherit user's login/session), take screenshots, scrape likes/comments, spawn sub-agents, and run/execute local scripts (python3 scripts/autopilot/run.sh, etc.). These actions access sensitive local state (browser cookies, logged-in session) and could autonomously publish content. Those actions are relevant to the stated purpose but are broad and invasive for an instruction-only skill with no embedded code or provenance.
Install Mechanism
There is no install specification (instruction-only skill), so nothing is written or downloaded by the skill bundle itself. This is low risk from an install vector perspective, but it means the agent will attempt to run local scripts or rely on the user's environment to provide missing components.
Credentials
The skill declares no required env vars, but the instructions implicitly require: an accessible Chrome CDP at localhost:9222, an active Xiaohongshu login in that browser, and writable local memory directories. Access to a user's browser session and local files is sensitive and should be explicitly declared — the omission reduces transparency and is disproportionate without clear provenance or included scripts.
Persistence & Privilege
always:false (default) and model invocation is allowed (default). The skill describes an autonomous 30‑minute loop and persistent memory files under xhs-memory/; while it does not force inclusion via always:true, autonomous operation combined with access to a logged-in browser/session increases the practical blast radius. The skill does not request system-wide config changes or other skills' credentials.
如何使用
- 确保已安装 OpenClaw(本地或 Docker 部署)
- 在对话框中输入安装命令:
/install xhs-autopilot - 安装完成后,直接呼叫该 Skill 的名称或使用
/xhs-autopilot触发 - 根据 Skill 的参数说明提供必要输入,即可获得结构化输出
版本历史
v1.0.1
- Removed 175 files, including numerous script-generated assets and draft files.
- Significant clean-up of asset and draft directories to streamline the codebase.
- No modifications to documentation or workflow instructions.
- No new features or functionality changes introduced in this version.
v1.0.0
xhs-autopilot v1.0.0
- Initial release of the Xiaohongshu full-autonomous AI-native workflow system.
- Implements a 30-minute, 8-step operation loop with self-improvement and memory isolation.
- Three-layer memory architecture: technical, operational, and runtime data.
- Built-in scripts for research, cover creation, publishing, and feedback analysis.
- Cyberpunk visual standard, with technical metaphors enforced and rigid content structure.
- Features autonomous bottleneck identification and self-improvement after each cycle.
元数据
常见问题
Xhs Autopilot 是什么?
Red (Xiaohongshu) Full-Autonomous AI-Native Workflow Alchemy System. 30-min operation loop with self-improvement. 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件,目前累计下载 246 次。
如何安装 Xhs Autopilot?
在 OpenClaw 或 Claude Code 对话框中运行命令「/install xhs-autopilot」即可一键安装,无需额外配置。
Xhs Autopilot 是免费的吗?
是的,Xhs Autopilot 完全免费,采用 MIT-0 许可证,可自由下载、安装和使用。
Xhs Autopilot 支持哪些平台?
Xhs Autopilot 跨平台运行,可在任意部署了 OpenClaw / Claude Code 的环境中使用(cross-platform)。
谁开发了 Xhs Autopilot?
由 崔之行(@changer-changer)开发并维护,当前版本 v1.0.1。
推荐 Skills