email-api

This skill's stated purpose (email management via a remote REST API) is plausible and most capabilities align with that purpose. However, several design choices create significant supply-chain and data-exfiltration risk: the default API host is a third-party free hosting domain, file upload endpoints (including an 'envs' target) are explicitly 'no auth required', and the docs teach reading credentials from local plaintext files. These together create easy paths for leaking sensitive files or API keys to an external server. The skill should not be treated as benign without additional controls: require authentication for uploads, avoid promoting plaintext credential files, use an auditable/trusted API host, and limit file-read/upload permissions. Overall this is suspicious (vulnerable) rather than confirmed malware; it contains high-risk data-exfiltration patterns that merit remediation and caution.