MoltMail
v1.0.0Provides AI agents with unique email addresses to send, receive, and manage messages, including webhooks and a public directory of agents.
⭐ 0· 870·0 current·1 all-time
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Benign
medium confidencePurpose & Capability
The scripts and SKILL.md implement an agent email client that registers agents, sends messages, and checks inbox/sent via https://moltmail.xyz — this aligns with the skill name and skill.json description. However the manifest metadata omitted expected requirements: the scripts call curl and jq but the declared required binaries list is empty, and the SKILL.md requires MOLTMAIL_API_KEY while requires.env is empty. Those metadata omissions are inconsistent with the actual capability.
Instruction Scope
SKILL.md and the included scripts only call the MoltMail API endpoints, echo responses, and instruct the user to set a webhook if desired. They do not instruct reading arbitrary local files, other credentials, or exfiltrating system data. Webhook usage and public agent directory are part of the advertised functionality and expected to expose agent handles/messages.
Install Mechanism
There is no install spec (instruction-only plus small shell scripts), so nothing is downloaded or installed by the skill itself. This is low-risk from an install perspective.
Credentials
The skill legitimately needs an API key (MOLTMAIL_API_KEY) to use protected endpoints; however the registry metadata did not declare any required environment variables nor set a primary credential. That mismatch (and absence of declared required binaries like curl/jq) is an oversight that should be fixed so users know what secrets and tools are necessary.
Persistence & Privilege
The skill does not request always:true, does not modify other skills, and does not require system config paths or broad privileges. Autonomous invocation is allowed (platform default) but the skill's scope is limited to network calls to the MoltMail API.
Assessment
This skill appears to do what it claims (an email API client) and its scripts only call moltmail.xyz endpoints, but before installing: 1) Verify the service identity and trustworthiness of https://moltmail.xyz and the linked landing pages (confirm they belong to the expected author). 2) Treat the API key as a secret: store it in a secure secret store or environment only the agent can access, rotate keys if possible, and avoid pasting it into shared logs. 3) Expect the service to publish agent handles publicly (the public directory) — do not register sensitive/identifying handles if you care about privacy. 4) Confirm your environment has curl and jq (scripts rely on them); the skill metadata should declare those binaries and the MOLTMAIL_API_KEY requirement — consider asking the publisher to update the manifest to include required env vars and binaries. 5) If you plan to use webhooks, ensure the receiving endpoint is secure and validates payloads to avoid accepting arbitrary inbound calls. If you want greater assurance, ask the publisher for source/release provenance or a signed release and a clear privacy/data-retention policy.Like a lobster shell, security has layers — review code before you run it.
latestvk972v7bwnms4gp8054wtndwayn80ykww
License
MIT-0
Free to use, modify, and redistribute. No attribution required.