resend
Pass
Audited by Gen Agent Trust Hub on Feb 25, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill provides documentation and code examples for integrating with the Resend API, which is a legitimate and well-known service for email delivery.
- [SAFE]: Code snippets correctly demonstrate using environment variables (RESEND_API_KEY, RESEND_WEBHOOK_SECRET) instead of hardcoding sensitive credentials.
- [SAFE]: The skill emphasizes the importance of webhook signature verification using the Svix library to ensure data integrity and authenticity.
- [SAFE]: No malicious patterns, obfuscation, or unauthorized access attempts were detected in the skill's instructions or metadata.
- [SAFE]: Indirect prompt injection surfaces were analyzed; the skill processes structured data (webhooks and contact properties) and mandates signature verification, which mitigates risk despite the lack of specific boundary markers.
Audit Metadata