Skills
skills/vm0-ai/vm0-skills/resend/Gen Agent Trust Hub

resend

Pass

Audited by Gen Agent Trust Hub on Apr 17, 2026

Risk Level: SAFECOMMAND_EXECUTIONDATA_EXFILTRATIONPROMPT_INJECTION
Full Analysis
  • [COMMAND_EXECUTION]: The skill utilizes curl to interact with the Resend REST API endpoints for operations like sending emails and managing resources.
  • [DATA_EXFILTRATION]: Performs network requests to api.resend.com to deliver emails and manage service resources. This targets a well-known email service provider and is an intended function of the skill.
  • [PROMPT_INJECTION]: The skill exhibits an attack surface for indirect prompt injection as it processes untrusted user input into email payloads.
  • Ingestion points: User-provided values for email fields including 'to', 'subject', 'html', and 'text' in SKILL.md.
  • Boundary markers: Delimiters or instructional guards to separate untrusted user content from the request structure are absent.
  • Capability inventory: The skill has the capability to trigger outbound emails and modify API resources via curl as defined in SKILL.md.
  • Sanitization: There is no evidence of input validation, escaping, or filtering for the data interpolated into the API requests.
Audit Metadata
Risk Level
SAFE
Analyzed
Apr 17, 2026, 04:44 PM