mailpit-integration
Pass
Audited by Gen Agent Trust Hub on Mar 7, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill references the
axllent/mailpitcontainer andMailKitNuGet package. These are standard, well-known tools for SMTP testing and email handling in the .NET ecosystem. - [COMMAND_EXECUTION]: Includes a diagnostic
curlcommand to verify local API connectivity. This is a common and safe troubleshooting step for developers. - [PROMPT_INJECTION]: The integration test examples include patterns for extracting and following links from email bodies. This represents an Indirect Prompt Injection surface:
- Ingestion points: Email message content retrieved via
MailpitClient.GetMessagesAsync(). - Boundary markers: Not present, which is typical for programmatic test assertions.
- Capability inventory: Test execution involves making HTTP GET requests to extracted URLs via
HttpClient. - Sanitization: Employs regex to selectively extract URLs matching specific patterns. This functionality is restricted to local testing environments and reflects the intended use case for verifying email-driven workflows.
Audit Metadata