lobsterMail.ai - instant email for your agent
v1.0.1Email for AI agents. Create inboxes, receive and send email. No API keys, no human signup.
⭐ 0· 357·0 current·0 all-time
bysamuel_chenard@samuelchenardlovesboards
MIT-0
Download zip
LicenseMIT-0 · Free to use, modify, and redistribute. No attribution required.
Security Scan
OpenClaw
Benign
medium confidencePurpose & Capability
Name/description (email inboxes, send/receive) align with the runtime instructions: the skill expects an MCP server (lobstermail-mcp) invoked via npx to provide create_inbox, get_email, send_email, etc. No unrelated credentials, binaries, or paths are requested.
Instruction Scope
SKILL.md keeps to email-related actions (create_inbox, wait_for_email, get_email, send_email, list/delete). It asks the agent to add an MCP server entry and run npm commands (npm outdated as a heartbeat) and to call the provider's REST endpoints for verification/billing — all consistent with an email service. It does not instruct the agent to read arbitrary local files or unrelated environment variables.
Install Mechanism
There is no bundled code in the skill; runtime behavior relies on running an npm package via npx (lobstermail-mcp@1.4.0). npx will fetch and execute third‑party code from the npm registry which is a moderate supply‑chain risk (no checksum or signed artifact provided). This is expected for an MCP-style skill but worth caution.
Credentials
The skill requires no environment variables or credentials and declares none. It uses external services (api.lobstermail.ai and npm) which is appropriate for an email provider. Requests for verification/billing are described and justified by send‑capability limits.
Persistence & Privilege
always:false and normal model invocation. The skill does not request persistent system‑wide changes beyond adding an MCP server entry (local process run). No modifications to other skills or system credentials are described.
Scan Findings in Context
[no_code_files] expected: The repository is instruction-only (SKILL.md/README.md). The regex scanner had no code to analyze; runtime behavior depends on fetching the lobstermail-mcp npm package.
Assessment
This skill is internally consistent with being an email provider for agents, but it runs a remote npm package (npx lobstermail-mcp@1.4.0) as a local MCP server. Running arbitrary npm packages means code from the npm registry will execute on your system and can access network and local resources. Before installing: (1) review the lobstermail-mcp npm package source (repo, maintainers, recent releases); (2) consider pinning the exact version (already suggested @1.4.0) and auditing its code or running it in a sandbox/container; (3) avoid using generated inboxes for highly sensitive accounts or secrets unless you trust the provider; (4) be aware that sending mail requires account verification (tweet or card flow) which involves external services and potential account/payment info; and (5) if you cannot audit the npm package, run the skill with restricted privileges or in an isolated environment.Like a lobster shell, security has layers — review code before you run it.
agent-emailvk9728chrv62ayfw8e8yz7f313s8235vgagent-inboxvk9728chrv62ayfw8e8yz7f313s8235vgai-agent-emailvk9728chrv62ayfw8e8yz7f313s8235vgai-emailvk9728chrv62ayfw8e8yz7f313s8235vgcustom-domainvk9728chrv62ayfw8e8yz7f313s8235vgemailvk9728chrv62ayfw8e8yz7f313s8235vgemail-apivk9728chrv62ayfw8e8yz7f313s8235vgemail-for-agentsvk9728chrv62ayfw8e8yz7f313s8235vgemail-securityvk9728chrv62ayfw8e8yz7f313s8235vginboxvk9728chrv62ayfw8e8yz7f313s8235vglatestvk975jw2xbe4x7fbxb1eh7wjyjs8227mdllm-safetyvk9728chrv62ayfw8e8yz7f313s8235vglobstermailvk9728chrv62ayfw8e8yz7f313s8235vgmcp-emailvk9728chrv62ayfw8e8yz7f313s8235vgmcp-servervk9728chrv62ayfw8e8yz7f313s8235vgprompt-injectionvk9728chrv62ayfw8e8yz7f313s8235vgreceive-emailvk9728chrv62ayfw8e8yz7f313s8235vgsdkvk9728chrv62ayfw8e8yz7f313s8235vgsend-emailvk9728chrv62ayfw8e8yz7f313s8235vgtypescriptvk9728chrv62ayfw8e8yz7f313s8235vgwebhooksvk9728chrv62ayfw8e8yz7f313s8235vg
License
MIT-0
Free to use, modify, and redistribute. No attribution required.
Runtime requirements
🦞 Clawdis
Any binnpx