resend
Pass
Audited by Gen Agent Trust Hub on Mar 10, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSCOMMAND_EXECUTIONPROMPT_INJECTION
Full Analysis
- [SAFE]: The skill documentation correctly identifies and instructs the use of environment variables for API keys and webhook secrets, preventing hardcoded credentials.
- [EXTERNAL_DOWNLOADS]: The skill references standard, well-known packages from the official NPM registry: resend, svix, and @react-email/components. These are required for the service integration.
- [COMMAND_EXECUTION]: Provides standard instructions for package installation and running the React Email development server using npm.
- [PROMPT_INJECTION]: The skill provides an interface for sending emails based on external content, representing a surface for indirect prompt injection.
- Ingestion points: Data enters the agent context through email fields (to, subject, html) and React component props (SKILL.md, references/react_email.md).
- Boundary markers: Examples do not show the use of delimiters or 'ignore embedded instructions' warnings for user-provided content.
- Capability inventory: The skill uses the official resend client to perform network operations against api.resend.com for email delivery.
- Sanitization: Code snippets demonstrate direct interpolation of data into templates without explicit sanitization or filtering steps.
Audit Metadata