spark-recipe-newsletter-cleanup

SUSPICIOUS: The recipe's capabilities mostly match its stated purpose, but its trust chain is incomplete because it relies on an unseen `use-spark` skill and an unverified `spark` CLI command surface. Data flows are broadly consistent with Spark's official product features, including AI summaries, yet enabling summaries can send email content to Spark and an external AI provider. Overall this looks more like a legitimate-but-underverified mailbox automation recipe than malware, with medium risk driven by undocumented execution trust and real mailbox actions.