lark-mail

SUSPICIOUS. The functional scope matches an email skill and the prompt-injection safeguards are strong, but the required `lark-cli` binary is not provenance-verified in the skill and the dependency on another skill file adds transitive trust. Main concern is install/execution trust, not obvious credential theft or malicious data exfiltration.