社媒数据助手小红书 MCP | Xiaohongshu XHS RedNote MCP

Security checks across malware telemetry and agentic risk

Overview

This plugin is a disclosed, read-only forwarding shim for Xiaohongshu research tools that sends tool requests to a fixed hosted SocialDataX MCP service.

Install this only if you are comfortable sending Xiaohongshu search terms, note/profile URLs or IDs, and related research inputs to SocialDataX's hosted MCP service. Avoid using it with confidential campaign plans, private investigations, or personal data unless you trust that service's privacy and retention practices.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 94% confidence
Finding: The manifest clearly declares a hosted endpoint and API-key-based authentication, but the user-facing description and auth hint do not explicitly warn that prompts, search queries, note URLs/IDs, and other research inputs will be transmitted to an external third-party service. In a research assistant context, users may submit sensitive campaign, investigative, or personal data, so the lack of explicit disclosure creates a real privacy and data-handling risk even if the service is legitimate.

VirusTotal

56/56 vendors flagged this plugin as clean.

View on VirusTotal