tools-email
Pass
Audited by Gen Agent Trust Hub on Mar 8, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCREDENTIALS_UNSAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill provides instructions to clone the official Resend MCP server from GitHub. This is a reference to a well-known service's official tooling and is considered a safe external dependency.
- [CREDENTIALS_UNSAFE]: Code examples and configuration guides correctly emphasize the use of environment variables for API keys and include non-sensitive placeholders like 're_xxxxx' for documentation purposes.
- [SAFE]: The skill implements cryptographically secure token generation and hashing using the 'oslo' library, ensuring that sensitive authentication tokens are never stored in plain text in the database.
- [SAFE]: Includes detailed references for configuring SPF, DKIM, and DMARC records, which are essential security measures to prevent domain spoofing and ensure email authenticity.
Audit Metadata