imap-smtp-email

Functionally, the skill's capabilities (IMAP fetch, search, download attachments; SMTP send) match its stated purpose and are expected for an email automation tool. The primary security concerns are not covert code execution or obfuscated payloads, but rather misuse and poor configuration practices: (1) sensitive credentials read from a local .env file and the README's language that discourages user oversight of that file, (2) explicit encouragement to disable TLS certificate validation for self-signed certs, and (3) the ability to read local files and forward them as email attachments which permits straightforward data exfiltration if the agent has broad filesystem access. These behaviors make the skill a medium-risk tool in contexts where the agent or runtime has access to sensitive files or runs without strict human oversight. Mitigations: require explicit user confirmation before sending emails or attaching files, avoid disabling TLS verification, surface the exact .env path and require operator approval for credential use, and run the skill with least privilege access to the filesystem.