← 返回 Skills 市场

smtp-sender

Name: smtp-sender
Author: xlbbb-cn

作者 leonard.w · GitHub ↗ · v1.0.2

cross-platform ⚠ suspicious

1137

总下载

当前安装

版本数

在 OpenClaw 中安装

/install smtp-sender

功能描述

A skill to send emails with support for markdown, HTML text, and attachments, leveraging existing SMTP configuration in `{skill~}/smtp-config.json`. Includes...

安全使用建议

What to consider before installing: - The script does send email via SMTP using credentials stored in smtp-config.json next to the skill; those credentials are plaintext in that file. Consider storing SMTP credentials in a secret manager or environment variables rather than a repo file. - SKILL.md promises markdown-to-HTML conversion, retry logic, and logging — none of these are implemented. If you need those features, review and update the code (add a markdown library, add retry/error-handling and persistent logging) before relying on it. - The script will attach any file paths you supply. If you allow automatic or autonomous invocation, be careful: an agent could be instructed to attach and send arbitrary local files (risk of data exfiltration). Restrict autonomous use or add path whitelisting and validation. - The example config contains placeholder credentials and an internal IP — treat it as an example only. Ensure file permissions (chmod 600) and that the skill directory is not world-readable. - If you want to use this skill safely: audit the code, implement missing features properly (markdown conversion, retries, logging), move credentials to a secret store or environment variables, add explicit input validation for attachment paths, and restrict autonomous invocation or require explicit user confirmation before sending. Confidence note: high — the code is small and the mismatches between documentation and implementation are clear. There are no signs of network C2 endpoints or obfuscated code, but the feature/documentation inconsistencies and plaintext credential handling are noteworthy.

功能分析

Type: OpenClaw Skill Name: smtp-sender Version: 1.0.2 The `email_sender.py` script is vulnerable to Local File Inclusion (LFI) via its `--body-file` and `--attachments` arguments. An AI agent, if subjected to prompt injection, could be instructed to provide paths to sensitive local files (e.g., credentials, system configuration) for these arguments, leading to their unauthorized reading and exfiltration via email. While the code itself does not exhibit explicit malicious intent, this capability presents a significant security risk that could be leveraged for data theft.

能力评估

⚠ Purpose & Capability

Name/description (SMTP email sender) aligns with the included Python script which sends email via SMTP. However the SKILL.md and description claim additional capabilities — markdown -> HTML conversion, retry logic, and logging — that are not present in the code. That mismatch indicates the documentation overstates functionality.

⚠ Instruction Scope

SKILL.md instructs running the included script and points to a local smtp-config.json for credentials, which matches the code's CONFIG_PATH (script directory). But the doc promises automatic markdown conversion, retries and logging which the script does not perform. The script will read any files passed as attachments or body_file and will send them via the configured SMTP server; if invoked autonomously or with user-supplied paths this could be used to exfiltrate files. The usage examples assume the config file is stored alongside the skill and recommends chmod 600, which is reasonable, but there's no built-in secret protection or validation of attachments.

✓ Install Mechanism

No install spec — instruction-only with a small Python script. Nothing is downloaded or written to disk by an installer. This is the lowest install risk.

ℹ Credentials

The skill requests no environment variables. SMTP credentials are expected in a local smtp-config.json file (username/password in plaintext). That is proportionate to sending mail but has security implications: secrets are stored in cleartext within the skill directory instead of a secret store or env var. No unrelated credentials are requested.

✓ Persistence & Privilege

always:false and default agent-invocation behavior. The skill does not request persistent system-wide privileges or modify other skills. The main risk relates to what the script can send if invoked autonomously (it can read and attach arbitrary file paths passed to it).

如何使用

确保已安装 OpenClaw（本地或 Docker 部署）
在对话框中输入安装命令：/install smtp-sender
安装完成后，直接呼叫该 Skill 的名称或使用 /smtp-sender 触发
根据 Skill 的参数说明提供必要输入，即可获得结构化输出

版本历史

v1.0.2

- Added smtp-config.example.json to provide a reference SMTP configuration file. - Removed sample and metadata files: .clawhub/origin.json, _meta.json, and smtp-config.json. - No changes to functionality; configuration and documentation remain the same.

v1.0.1

- Skill name updated from "custom-smtp-sender" to "smtp-sender". - No file changes detected; documentation updated only. - All previous features, usage, and descriptions remain unchanged.

v1.0.0

Initial release of custom-smtp-sender. - Send emails using existing SMTP configuration from smtp-config.json. - Supports HTML and Markdown email bodies. - Allows file attachments. - Built-in retry logic on temporary failures. - Email send attempts and errors are logged for auditing and troubleshooting.

元数据

Slug smtp-sender

版本 1.0.2

许可证 —

累计安装 2

当前安装数 2

历史版本数 3

常见问题

smtp-sender 是什么？

A skill to send emails with support for markdown, HTML text, and attachments, leveraging existing SMTP configuration in `{skill~}/smtp-config.json`. Includes... 它是一个面向 Claude Code / OpenClaw 的 AI Agent Skill 插件，目前累计下载 1137 次。

如何安装 smtp-sender？

在 OpenClaw 或 Claude Code 对话框中运行命令「/install smtp-sender」即可一键安装，无需额外配置。

smtp-sender 是免费的吗？

是的，smtp-sender 完全免费（开源免费），可自由下载、安装和使用。

smtp-sender 支持哪些平台？

smtp-sender 跨平台运行，可在任意部署了 OpenClaw / Claude Code 的环境中使用（cross-platform）。

谁开发了 smtp-sender？

由 leonard.w（@xlbbb-cn）开发并维护，当前版本 v1.0.2。