postmark-automation

SUSPICIOUS: the skill is purpose-aligned and uses an official same-org Rube/Composio integration, but it routes Postmark access through a third-party MCP intermediary and enables high-impact actions like sending emails and editing server settings. Main risk is intermediary trust and autonomous external actions, not confirmed malware.