add-resend
Pass
Audited by Gen Agent Trust Hub on Apr 26, 2026
Risk Level: SAFE
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill installs the official
@resend/chat-sdk-adapterpackage. Resend is a well-known service provider, and the installation of their SDK is a standard requirement for this integration. - [COMMAND_EXECUTION]: The instructions utilize standard Git and package management commands (
git fetch,pnpm install) to incorporate the channel adapter into the local environment. These operations are transparent and consistent with the skill's description. - [CREDENTIALS_UNSAFE]: The skill correctly advises users to store sensitive information like
RESEND_API_KEYandRESEND_WEBHOOK_SECRETin a.envfile, which is a standard and recommended practice for secret management in development environments. - [PROMPT_INJECTION]: As a channel integration, this skill creates a surface for indirect prompt injection by ingesting external email content. However, this is an inherent property of communication channels and the skill itself does not contain malicious instructions or bypass attempts.
Audit Metadata