Sendook Email (Restricted)

Security checks across malware telemetry and agentic risk

Overview

This is a disclosed Sendook email integration that reads and sends messages from one configured inbox, with no hidden executable code or unrelated behavior found.

Install this only if you want an agent to access the configured Sendook inbox. Use a least-privileged API key, restrict SENDOOK_INBOX_ID to the intended inbox, review important outbound emails before sending, and only allow attachments that you explicitly selected.

SkillSpector

By NVIDIA

Vulnerability Patterns

Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep

Findings (1)

Missing User Warnings

Medium

Confidence: 91% confidence
Finding: The skill enables reading inbox contents and sending outbound email, both of which inherently involve sensitive data handling and external transmission. The documentation includes some operational limits but omits a clear upfront warning that using the skill may expose private message contents, attachments, contacts, and other confidential information to the configured third-party email service and recipients.

VirusTotal

64/64 vendors flagged this skill as clean.

View on VirusTotal