xiaohongshu-dailytop
Pass
Audited by Gen Agent Trust Hub on Jun 12, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill communicates with the developer's official domain (
redfox.hk) to retrieve data, which is standard behavior for vendor-provided services. - [SAFE]: Credentials (API keys) are handled via environment variables, and the documentation provides clear, safe instructions for users to configure their own keys without hardcoding.
- [SAFE]: The scripts include sanitization logic (
clean_text) to strip potentially problematic characters and URLs from the retrieved external content before display. - [SAFE]: External dependencies for the HTML visualization (such as
html2canvasandjsPDF) are loaded from a well-known, trusted CDN (Cloudflare).
Audit Metadata