agentmail-cli
PassAudited by ClawScan on May 1, 2026.
Overview
This is a coherent AgentMail email-management skill, but it gives the agent API-key-based ability to create inboxes, send/read/delete messages, and optionally store the key persistently.
This skill appears purpose-aligned for managing AgentMail. Before installing, be comfortable giving the agent an AgentMail API key, and require confirmation for outbound emails and deletions because those actions can affect other people or remove message threads.
Findings (3)
Artifact-based informational review of SKILL.md, metadata, install specs, static scan signals, and capability signals. ClawScan does not execute the skill or run runtime probes.
If invoked with the wrong arguments, the agent could send an unintended email or delete an AgentMail thread.
The skill exposes commands that send email externally and delete message threads. These actions are purpose-aligned and disclosed, but they can affect third parties or remove data.
agentmail message send --from <inbox-id> --to recipient@example.com ... ; Delete a message (deletes entire thread): agentmail message delete <inbox-id> <message-id>
Before allowing send or delete operations, confirm the sender inbox, recipients, subject/body, and exact message or inbox to be removed.
Anyone or any process able to use that configured CLI may be able to access the associated AgentMail account until the key is removed or revoked.
The skill requires an AgentMail API key and documents a persistent local storage path for it. This is expected for the service, but it grants continuing account access to the CLI.
agentmail config set-key YOUR_API_KEY ... This stores the key at `~/.agentmail/config.json` and persists across sessions.
Use a least-privilege AgentMail key if available, protect the config file, and revoke or remove the key when the skill no longer needs access.
The installed npm package will be the code actually handling the API key and email operations.
The skill depends on an external npm-installed CLI, while the provided file manifest contains only SKILL.md. Installing the package is purpose-aligned, but users are trusting that package as the implementation.
node | package: @stepandel/agentmail-cli | creates binaries: agentmail
Install from the expected npm package source, review the linked project or package provenance if needed, and keep the package updated.