litestar-email
Pass
Audited by Gen Agent Trust Hub on May 18, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill manages the installation of
litestar-emailand its optional components for Resend, SendGrid, and Mailgun backends. These are legitimate vendor packages provided by the skill author. - [DATA_EXFILTRATION]: Facilitates network communication with well-known email service providers and SMTP servers. This behavior is consistent with the skill's intended purpose of delivering transactional emails.
- [PROMPT_INJECTION]: Identifies a surface for indirect prompt injection where user-supplied data from API requests is used to populate email content.
- Ingestion points:
NotificationRequestandAccountCreatedata models inSKILL.md. - Boundary markers: None identified in the provided code snippets.
- Capability inventory:
EmailService.send_messageacross multiple files for network delivery. - Sanitization: Suggests the use of template engines for rendering, which provides a level of separation, though explicit input sanitization is not detailed in the examples.
Audit Metadata