pp-sendgrid
Facilitates SendGrid tasks via CLI, enabling efficient email management, suppression syncing, and detailed analytics reporting.
Install this skill
Security score
The pp-sendgrid skill was audited on Jun 6, 2026 and we found 18 security issues across 3 threat categories. Review the findings below before installing.
Categories Tested
Security Issues
Webhook reference - potential data exfiltration
| 513 | - `sendgrid-pp-cli user create-event-webhook` — **This endpoint allows you to create a new Event Webhook.** When creating a webhook, you will provide a URL where... |
Webhook reference - potential data exfiltration
| 516 | - `sendgrid-pp-cli user create-security-policy` — Create a new webhook security policy. Note: One of signature or oauth must be given to have a valid security policy. |
Webhook reference - potential data exfiltration
| 517 | - `sendgrid-pp-cli user delete-event-webhook` — **This endpoint allows you to delete a single Event Webhook by ID.** Unlike the [**Get an Event... |
Webhook reference - potential data exfiltration
| 520 | - `sendgrid-pp-cli user delete-security-policy` — Permanently delete a webhook security policy by its ID. |
Webhook reference - potential data exfiltration
| 521 | - `sendgrid-pp-cli user get-event-webhook` — **This endpoint allows you to retrieve a single Event Webhook by ID.** If you do not pass a webhook ID to this... |
Webhook reference - potential data exfiltration
| 524 | - `sendgrid-pp-cli user get-security-policy` — Retrieve the details of a specific webhook security policy by its ID. |
Webhook reference - potential data exfiltration
| 525 | - `sendgrid-pp-cli user get-signed-event-webhook` — **This endpoint allows you to retrieve the public key for a single Event Webhook by ID.** If you do not pass a... |
Webhook reference - potential data exfiltration
| 527 | - `sendgrid-pp-cli user list-all-security-policies` — Returns a list of all webhook security policies configured for your account, including their IDs, names, and... |
Webhook reference - potential data exfiltration
| 531 | - `sendgrid-pp-cli user list-event-webhook` — **This endpoint allows you to retrieve all of your Event Webhooks.** Each webhook will be returned as an object in... |
Webhook reference - potential data exfiltration
| 533 | - `sendgrid-pp-cli user list-parse-static` — **This endpoint allows you to retrieve the statistics for your Parse Webhook usage.** SendGrid's Inbound Parse... |
Webhook reference - potential data exfiltration
| 537 | - `sendgrid-pp-cli user test-event-webhook` — **This endpoint allows you to test an Event Webhook.** Retry logic for this endpoint differs from other endpoints,... |
Webhook reference - potential data exfiltration
| 540 | - `sendgrid-pp-cli user update-event-webhook` — **This endpoint allows you to update a single Event Webhook by ID.** If you do not pass a webhook ID to this... |
Webhook reference - potential data exfiltration
| 545 | - `sendgrid-pp-cli user update-security-policy` — Update an existing webhook security policy with new configuration values. |
Webhook reference - potential data exfiltration
| 546 | - `sendgrid-pp-cli user update-signed-event-webhook` — **This endpoint allows you to enable or disable signature verification for a single Event Webhook by ID.** If you do... |
Webhook reference - potential data exfiltration
| 703 | | `webhook:<url>` | POST the output body to the URL (`application/json` or `application/x-ndjson` when `--compact`) | |
Webhook reference - potential data exfiltration
| 705 | Unknown schemes are refused with a structured error naming the supported set. Webhook failures return non-zero and log the URL + HTTP status on stderr. |
Access to hidden dotfiles in home directory
| 691 | Entries are stored locally at `~/.sendgrid-pp-cli/feedback.jsonl`. They are never POSTed unless `SENDGRID_FEEDBACK_ENDPOINT` is set AND either `--send` is passed or `SENDGRID_FEEDBACK_AUTO_SEND=true`. |
External URL reference
| 359 | - `sendgrid-pp-cli marketing update-contact` — **This endpoint allows the [upsert](https://en.wiktionary.org/wiki/upsert) (insert or update) of up to 30,000... |