email-best-practices
Pass
Audited by Gen Agent Trust Hub on Feb 19, 2026
Risk Level: SAFENO_CODE
Full Analysis
- [Documentation Only] (SAFE): The skill consists entirely of Markdown files providing guidance and code snippets for email systems. No executable scripts (.py, .js, .sh) are present.
- [Prompt Injection] (SAFE): A review of the instructions and descriptions found no attempts to override agent behavior, bypass safety filters, or extract system prompts.
- [Data Exposure] (SAFE): No hardcoded credentials, API keys, or sensitive file paths were detected. Code snippets use environment variables (e.g.,
RESEND_WEBHOOK_SECRET) as placeholders, which is a security best practice. - [Command Execution] (SAFE): While the documentation mentions the
digcommand for DNS verification, it is provided as educational guidance and does not represent an automated or malicious execution vector. - [External Links] (SAFE): Links to external resources point to legitimate documentation and blog posts from resend.com and github.com/resend, which are reputable sources.
Audit Metadata