resend
Warn
Audited by Snyk on Mar 1, 2026
Risk Level: MEDIUM
Full Analysis
MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).
- Third-party content exposure detected (high risk: 0.90). The skill's SKILL.md shows it fetches and displays received inbound emails and attachments via the Resend API (commands like "resend email list" and "resend email get "), which are untrusted, user-generated third-party messages that the agent would read and could materially influence actions.
Audit Metadata