Adoption

Agent Skills are supported by leading AI development tools.

VS Code Gemini CLI GitHub Goose Amp Cursor Claude Code Letta OpenCode Claude OpenAI Codex Factory VS Code Gemini CLI GitHub Goose Amp Cursor Claude Code Letta OpenCode Claude OpenAI Codex Factory

ariffazil/email-send-from-arif-fazil

Name: email-send-from-arif-fazil
Author: ariffazil

hermes-skills/communication/email-send-from-arif-fazil/SKILL.md

npx skillsauth add ariffazil/openclaw-workspace email-send-from-arif-fazil

Clean

TrivyContainer and dependency vulnerability scanner

Clean

SemgrepStatic code analysis for vulnerabilities

Clean

mcp-scan (Snyk)Model Context Protocol security validation

Skipped

Snyk (dep)Open source security scanning

Skipped

Socket.devSupply chain security analysis

Skipped

VirusTotalMulti-engine malware detection

Skipped

CrowdStrikeAdvanced threat intelligence

Skipped

OSV-ScannerOpen Source Vulnerability database check

Skipped

OWASP Dep-Check

Email Send — [email protected]

The Gotcha

execute_code (hermes_tools sandbox) CANNOT see env vars set by email.env via source /root/AAA/secrets/email.env. The sandbox has its own environment — os.environ.get('GMAIL_APP_PASSWORD', '') returns empty string inside execute_code, even though terminal() can see it fine.

Always use terminal() Python for email send, not execute_code().

Credentials

File: /root/AAA/secrets/email.env

[email protected]
GMAIL_APP_PASSWORD=<16-char app password>

Send Email (Correct Method)

Use terminal() with inline Python that reads the password file directly:

python3 << 'EOF'
import smtplib, os
from email.message import EmailMessage

# Read password directly from file (bypasses sandbox env-var issue)
password = None
with open('/root/AAA/secrets/email.env') as f:
    for line in f:
        if 'GMAIL_APP_PASSWORD' in line and '=' in line:
            password = line.strip().split('=', 1)[1].strip()
            break

user = "[email protected]"

msg = EmailMessage()
msg["From"] = user
msg["To"] = "[email protected]"
msg["Subject"] = "Subject here"
msg.set_content("Body text here")

with smtplib.SMTP("smtp.gmail.com", 587) as server:
    server.starttls()
    server.login(user, password)
    server.send_message(msg)
print("SENT OK")
EOF

Port / Security

Port 587 with starttls() — works from af-forge VPS
If 587 fails, try port 465 with SMTP_SSL
App password is 16 chars, prefix zclv — if wrong, Gmail returns 535 Username and Password not accepted

[email protected] Alias

Sending FROM [email protected] requires separate SMTP config — currently not set up. All outgoing email via this method only sends FROM [email protected].

⚠️ Critical: Gmail SMTP Silent Failure — Sent Folder ≠ Delivered

The Problem: Gmail SMTP can silently REJECT your email at the auth layer. If your code saves to the Sent folder before calling server.send_message(), a Sent folder entry exists even when the SMTP call throws SMTPAuthenticationError. This creates a false "success" state — you see the email in Sent, but it was NEVER delivered to any recipient.

Error signature:

SMTPAuthenticationError: (535, b'5.7.8 Username and Password not accepted.')

Why it happens:

Wrong or expired app password
Gmail detected untrusted app/device
2FA disabled on the Google Account (app passwords require 2FA)

Correct verification pattern — do BOTH:

all_recipients = to_list + cc_list  # flatten first!

try:
    with smtplib.SMTP("smtp.gmail.com", 587) as server:
        server.starttls()
        server.login(GMAIL_USER, GMAIL_APP_PASSWORD)
        # send_message returns {} on success, dict of failures on partial/total failure
        result = server.send_message(msg, to_addrs=all_recipients)
        if result:
            print(f"⚠️ PARTIAL FAILURES: {result}")
        else:
            print(f"✅ DELIVERED to all {len(all_recipients)} recipients")
except smtplib.SMTPAuthenticationError as e:
    print(f"❌ AUTH FAILED — email NOT sent. Fix app password at: https://myaccount.google.com/apppasswords")
    raise  # re-raise so you see the error
except Exception as e:
    print(f"❌ SMTP ERROR: {e}")
    raise

Key rules:

Do NOT trust Sent folder as proof of delivery — it only proves the MUA saved the message, not that SMTP accepted it
Always flatten to_addrs — send_message(to_addrs=to_list + cc_list), not nested lists
Catch SMTPAuthenticationError specifically — it's the most common Gmail failure mode
send_message() return value — empty dict {} = all delivered; non-empty = failures per recipient

If auth keeps failing, check:

Google Account → Security → 2-Step Verification is ON (required for app passwords)
Google Account → Security → App Passwords → generate new 16-char password
Update /root/AAA/secrets/email.env with the new password

Batch send (TO + CC + BCC):

TO = ["[email protected]", "[email protected]"]
CC = ["[email protected]", "[email protected]"]
BCC = ["[email protected]"]

msg["To"] = ", ".join(TO)
msg["Cc"] = ", ".join(CC)
# BCC goes only to send_message, not in headers
all_recipients = TO + CC + BCC

server.send_message(msg, to_addrs=all_recipients)

ariffazil/email-send-from-arif-fazil

hermes-skills/communication/email-send-from-arif-fazil/SKILL.md

Send email from [email protected] using secrets from /root/AAA/secrets/email.env. Handles the execute_code sandbox env-var visibility issue.

development

Updated May 12, 2026

$ install --global

skillsauth

npx skillsauth add ariffazil/openclaw-workspace email-send-from-arif-fazil

Install this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.

Security Scan Results

3 of 9 scanners reported clean

Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.

Scanners Passed

Scanners in report

Clean

TrivyContainer and dependency vulnerability scanner

95%

Clean

SemgrepStatic code analysis for vulnerabilities

95%

Clean

mcp-scan (Snyk)Model Context Protocol security validation

95%

Skipped

Snyk (dep)Open source security scanning

50%

Skipped

Socket.devSupply chain security analysis

50%

Skipped

VirusTotalMulti-engine malware detection

50%

Skipped

CrowdStrikeAdvanced threat intelligence

50%

Skipped

OSV-ScannerOpen Source Vulnerability database check

50%

Skipped

OWASP Dep-Check

50%

Last scanned: May 12, 2026, 3:29 AM179.6s1 file scanned

SKILL.md

name:: email-send-from-arif-fazil
description:: Send email from [email protected] using secrets from /root/AAA/secrets/email.env. Handles the execute_code sandbox env-var visibility issue.
category:: communication

Email Send — [email protected]

The Gotcha

Always use terminal() Python for email send, not execute_code().

Credentials

File: /root/AAA/secrets/email.env

[email protected]
GMAIL_APP_PASSWORD=<16-char app password>

Send Email (Correct Method)

Use terminal() with inline Python that reads the password file directly:

python3 << 'EOF'
import smtplib, os
from email.message import EmailMessage

# Read password directly from file (bypasses sandbox env-var issue)
password = None
with open('/root/AAA/secrets/email.env') as f:
    for line in f:
        if 'GMAIL_APP_PASSWORD' in line and '=' in line:
            password = line.strip().split('=', 1)[1].strip()
            break

user = "[email protected]"

msg = EmailMessage()
msg["From"] = user
msg["To"] = "[email protected]"
msg["Subject"] = "Subject here"
msg.set_content("Body text here")

with smtplib.SMTP("smtp.gmail.com", 587) as server:
    server.starttls()
    server.login(user, password)
    server.send_message(msg)
print("SENT OK")
EOF

Port / Security

Port 587 with starttls() — works from af-forge VPS
If 587 fails, try port 465 with SMTP_SSL
App password is 16 chars, prefix zclv — if wrong, Gmail returns 535 Username and Password not accepted

[email protected] Alias

Sending FROM [email protected] requires separate SMTP config — currently not set up. All outgoing email via this method only sends FROM [email protected].

⚠️ Critical: Gmail SMTP Silent Failure — Sent Folder ≠ Delivered

Error signature:

SMTPAuthenticationError: (535, b'5.7.8 Username and Password not accepted.')

Why it happens:

Wrong or expired app password
Gmail detected untrusted app/device
2FA disabled on the Google Account (app passwords require 2FA)

Correct verification pattern — do BOTH:

all_recipients = to_list + cc_list  # flatten first!

try:
    with smtplib.SMTP("smtp.gmail.com", 587) as server:
        server.starttls()
        server.login(GMAIL_USER, GMAIL_APP_PASSWORD)
        # send_message returns {} on success, dict of failures on partial/total failure
        result = server.send_message(msg, to_addrs=all_recipients)
        if result:
            print(f"⚠️ PARTIAL FAILURES: {result}")
        else:
            print(f"✅ DELIVERED to all {len(all_recipients)} recipients")
except smtplib.SMTPAuthenticationError as e:
    print(f"❌ AUTH FAILED — email NOT sent. Fix app password at: https://myaccount.google.com/apppasswords")
    raise  # re-raise so you see the error
except Exception as e:
    print(f"❌ SMTP ERROR: {e}")
    raise

Key rules:

Do NOT trust Sent folder as proof of delivery — it only proves the MUA saved the message, not that SMTP accepted it
Always flatten to_addrs — send_message(to_addrs=to_list + cc_list), not nested lists
Catch SMTPAuthenticationError specifically — it's the most common Gmail failure mode
send_message() return value — empty dict {} = all delivered; non-empty = failures per recipient

If auth keeps failing, check:

Google Account → Security → 2-Step Verification is ON (required for app passwords)
Google Account → Security → App Passwords → generate new 16-char password
Update /root/AAA/secrets/email.env with the new password

Batch send (TO + CC + BCC):

TO = ["[email protected]", "[email protected]"]
CC = ["[email protected]", "[email protected]"]
BCC = ["[email protected]"]

msg["To"] = ", ".join(TO)
msg["Cc"] = ", ".join(CC)
# BCC goes only to send_message, not in headers
all_recipients = TO + CC + BCC

server.send_message(msg, to_addrs=all_recipients)

Related Skills

ariffazil/AAA Agentic Governance (AAA-Cockpit, canonical)

development

VerifiedTrustedCommunity

Governed intelligence skill for AAA as the abstraction, attestation, and abduction control plane across arifOS, APEX, A-FORGE, GEOX, WEALTH, WELL, and the ariffazil profile repository. Use when the user asks to explain or design AAA, route agentic work, reduce chaos/entropy in an arifOS federation task, create AREP/task declarations, classify risk, plan multi-repo changes, review governance boundaries, or translate human intent into evidence-backed, authority-safe, recursively agentic workflows. Provides deterministic F1-F13 floor checking, bounded abduction, and FederationReceipt composition.

SKILL.mdUpdated Jun 6, 2026

ariffazil/AAA Agentic Governance (AAA-Cockpit, canonical)

ariffazil/skill-trigger-linter

development

VerifiedTrustedCommunity

Check every skill’s “use when” and “do not use when” clauses for collisions, missing negatives, and vague verbs like “help,” “assist,” or “improve.” Load when linting, reviewing, or validating trigger boundaries.

SKILL.mdUpdated May 27, 2026

ariffazil/skill-trigger-linter

ariffazil/skill-creator

development

VerifiedTrustedCommunity

Bootstrap, design, and package new skills. Load when capturing user intent for a new skill or drafting its initial instruction framework.

SKILL.mdUpdated May 27, 2026

ariffazil/skill-creator

ariffazil/Federation Service Health Triage

content-media

VerifiedTrustedCommunity

Diagnose which federation services are up, down, or drifting. Produce a prioritized remediation plan.

SKILL.mdUpdated May 27, 2026

ariffazil/Federation Service Health Triage

Download

For Claude Desktop. Download once, then upload the file in the app — no terminal needed.

Need help? View full Cowork setup guide →

Install manually

Choose your platform

# Clone the repo
git clone https://github.com/ariffazil/openclaw-workspace.git

# Copy into Claude Code skills folder (global)
cp -r openclaw-workspace/hermes-skills/communication/email-send-from-arif-fazil ~/.claude/skills/

Claude Code Skills — official skills path docs.

Repository

ariffazil/openclaw-workspace

Compatible with

Claude Code

OpenAI Codex CLI

ChatGPT