Security audit

Resend CLI

Security checks across malware telemetry and agentic risk

Overview

This is a coherent Resend CLI helper, but it can send emails and change Resend account resources when given credentials.

Install this only if you want an agent to operate the Resend CLI. Use the least-privileged Resend API key available, verify recipients before any send or broadcast, and require explicit confirmation before deletes, API-key changes, webhook changes, scheduled-email changes, or bulk operations.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (2)

Missing User Warnings

Medium

Confidence: 82% confidence
Finding: The skill provides ready-to-run email sending and contact management commands but does not include explicit guidance about consent, recipient verification, handling personal data, or avoiding unintended bulk sends. In an agent context, this increases the risk of privacy violations, spam, or unauthorized outreach because the examples normalize operational use without safety guardrails.

Missing User Warnings

Medium

Confidence: 88% confidence
Finding: The skill includes destructive commands using `--yes` to bypass confirmation for deleting domains, contacts, segments, broadcasts, templates, topics, webhooks, and API keys, but it does not clearly warn that these actions are immediate and may be irreversible. In an automated agent setting, this lowers friction for accidental or unauthorized deletion of production resources.

VirusTotal

65/65 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.