Send Email Tool
PassAudited by ClawScan on May 10, 2026.
Overview
This skill appears to do what it advertises—send SMTP email—but users should verify recipients, attachments, and credential storage settings before use.
This skill is reasonable for sending email through your SMTP account. Before installing, make sure you trust the account configuration, use keyring rather than the base64 fallback, and confirm recipients and attachments before sending messages.
Findings (4)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
If used with the wrong recipient or attachment, private information could be emailed out.
The skill can send emails with attachments and additional recipients. This is expected for an email tool, but it is still an outbound action that can disclose files or message content.
支持附件(文档、图片等)... 支持抄送(CC)和密送(BCC)
Review the recipient list, subject, body, CC/BCC fields, and attachments before allowing the skill to send.
The skill can use the configured SMTP account to send mail.
The script stores and retrieves SMTP credentials through keyring, with a local backup file path if keyring is unavailable. This is purpose-aligned but gives the skill access to an email account.
keyring.set_password(self.service_name, username, password) ... self.password_backup_file = Path.home() / ".send_email_password"
Use an app-specific SMTP password where possible, install keyring, and delete stored credentials if you stop using the skill.
A user may believe credentials are always protected by the OS keyring when they may instead be stored in a local encoded file.
The documentation discloses the fallback, but the phrase 'forced keyring' could make users underestimate that a weaker base64 local-file storage mode may be used.
本技能**强制使用 keyring**... 如果 keyring 未安装,脚本会自动使用备用存储方案(base64 编码的本地文件)。
Install keyring before saving credentials and avoid relying on the fallback for sensitive accounts.
Dependency versions and provenance are left to the user’s Python environment.
The skill has no install spec, so these dependency installs are documented as manual setup rather than being pinned or managed by the package metadata.
pip install markdown keyring
Install dependencies from trusted package indexes and consider pinning versions in your environment.