xiaohongshu-user-profile

Warn

Audited by Socket on Jun 13, 2026

1 alert found:

Anomaly
AnomalyLOW
SKILL.md

SUSPICIOUS: the skill’s main behavior matches its stated Xiaohongshu profile-scraping purpose, but it combines authenticated browser automation, shell-evaluated helper scripts, and explicit anti-scraping evasion guidance. Data flow stays primarily to Xiaohongshu and local files, so this is not confirmed malicious, but the execution model and stealth-scraping instructions make the skill medium risk.

Confidence: 100%Severity: 60%
Audit Metadata
Analyzed At
Jun 13, 2026, 04:40 AM
Package URL
pkg:socket/skills-sh/browser-act%2Fskills%2Fxiaohongshu-user-profile%2F@fbe495f2919e265f5e05477f8e5292cc8e8c90ac41584c6f975811200e7dc9f1
Security Audit — socket — xiaohongshu-user-profile