
Security News
PolinRider: North Korea-Linked Supply Chain Campaign Expands Across Open Source Ecosystems
PolinRider expands across npm, Packagist, Go modules, and Chrome extensions, using hidden loaders to target developer environments.
rednote-mcp
Advanced tools
A friendly tool to help you access and interact with Xiaohongshu (RedNote) content through Model Context Protocol.
小红书内容访问的MCP服务
https://github.com/user-attachments/assets/06b2c67f-d9ed-4a30-8f1d-9743f3edaa3a
开始前确保安装了 playwright 环境:
npx playwright install
# 全局安装
npm install -g rednote-mcp
# 初始化登录,会自动记录cookie到 ~/.mcp/rednote/cookies.json
rednote-mcp init
# 克隆项目
git clone https://github.com/ifuryst/rednote-mcp.git
cd rednote-mcp
# 安装依赖
npm install
# 全局安装(可选,方便命令行调用)
npm install -g .
# 或者直接运行,如初始化登录
npm run dev -- init
首次使用需要先进行登录初始化:
rednote-mcp init
# 或者直接从源码run
npm run dev -- init
# 或者mcp-client里选择login
执行此命令后:
~/.mcp/rednote/cookies.json 文件在 Cursor 的 settings.json 中添加以下配置:
{
"mcpServers": {
"RedNote MCP": {
"command": "rednote-mcp",
"args": [
"--stdio"
]
}
}
}
或者使用 npx 方式:
{
"mcpServers": {
"RedNote MCP": {
"command": "npx",
"args": [
"rednote-mcp",
"--stdio"
]
}
}
}
配置说明:
command: 可以是全局安装后的 rednote-mcp 命令,或使用 npx 直接运行args: 必须包含 --stdio 参数以支持 Cursor 的通信方式# 安装依赖
npm install
# 构建项目
npm run build
# 开发模式运行
npm run dev
# 运行测试
npm test
MCP Inspector 是一个用于调试 MCP 服务器的工具,可以帮助开发者检查和验证 MCP 服务器的行为。使用以下命令启动:
npx @modelcontextprotocol/inspector npx rednote-mcp --stdio
这个命令会:
init 命令进行登录git checkout -b feature/AmazingFeature)git commit -m 'Add some AmazingFeature')git push origin feature/AmazingFeature)MIT License - 详见 LICENSE 文件
FAQs
A friendly tool to help you access and interact with Xiaohongshu (RedNote) content through Model Context Protocol.
The npm package rednote-mcp receives a total of 85 weekly downloads. As such, rednote-mcp popularity was classified as not popular.
We found that rednote-mcp demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Security News
PolinRider expands across npm, Packagist, Go modules, and Chrome extensions, using hidden loaders to target developer environments.

Security News
Open source attacks are accelerating as AI coding agents pull in dependencies faster, with less human review.

Research
/Security News
Malicious Chrome and Firefox extensions posed as free VPNs while stealing clipboard data through later extension updates.