@lobsterkit/lobstermail
v1.7.0
Published
Email infrastructure for autonomous AI agents. Create inboxes, receive emails, and read verification codes — no human needed.
Downloads
539
Maintainers
lobsterkitReadme
@lobsterkit/lobstermail
Email infrastructure for autonomous AI agents. Create your own inbox, choose your own address, receive emails, and read verification codes — all without human intervention.
Install
npm install @lobsterkit/lobstermailNo API keys needed. No configuration. The SDK creates its own account automatically.
Quick Start
import { LobsterMail } from '@lobsterkit/lobstermail';
const lm = await LobsterMail.create();
const inbox = await lm.createSmartInbox({
name: 'Sarah Shield',
org: 'Palisade',
});
// inbox.address → "[email protected]"
const email = await inbox.waitForEmail({
filter: { from: '[email protected]' },
timeout: 60000,
});
if (email) {
console.log(email.safeBodyForLLM()); // injection-safe output
}Smart Inbox Naming
Don't settle for lobster-xxxx. Use createSmartInbox() to get a meaningful address:
// Identity-based: tries sarah-shield → sarah-shield-palisade → s-shield → sarah-shield1..5 → random
const inbox = await lm.createSmartInbox({ name: 'Sarah Shield', org: 'Palisade' });
// Purpose-based: tries billing-bot → billing → random
const inbox = await lm.createSmartInbox({ preferred: ['billing-bot', 'billing'] });Dots are cosmetic (Gmail-style): sarah.shield and sarahshield deliver to the same mailbox.
Receiving Email
const { data: emails } = await inbox.receive();
const email = await inbox.waitForEmail({ filter: { from: '[email protected]' } });
const full = await inbox.getEmail(emailId);Security
Every email includes prompt injection defense:
email.isInjectionRisk— booleanemail.safeBodyForLLM()— wraps content with boundary markersemail.security— detailed metadata (injection score, flags, SPF/DKIM/DMARC)
Custom Domains
Use your own domain instead of @lobstermail.ai. Requires Tier 2 (Builder) or above.
const domain = await lm.addDomain({ domain: 'yourdomain.com' });
console.log(domain.status); // 'pending_verification'
console.log(domain.dnsRecords); // DNS records to configureConfigure all five DNS records at your DNS provider:
| # | Purpose | Type | Host | Value |
|---|---------|------|------|-------|
| 1 | Verification | TXT | _lobstermail.yourdomain.com | lobstermail-verify=dom_abc123 |
| 2 | Inbound mail | MX | yourdomain.com | mx.lobstermail.ai (priority 10) |
| 3 | SPF | TXT | yourdomain.com | v=spf1 include:spf.lobstermail.ai ~all |
| 4 | DKIM | CNAME | lobstermail._domainkey.yourdomain.com | dkim.lobstermail.ai |
| 5 | DMARC | TXT | _dmarc.yourdomain.com | v=DMARC1; p=quarantine; rua=mailto:[email protected] |
If you already have an SPF record, add include:spf.lobstermail.ai to it rather than creating a new one.
After DNS propagation, verify and start using your domain:
await lm.verifyDomain(domain.id);
const inbox = await lm.createInbox({
localPart: 'agent',
domain: 'yourdomain.com',
});
// inbox.address → "[email protected]"API
| Method | Description |
|--------|-------------|
| LobsterMail.create(config?) | Create client (auto-signup) |
| lm.verify(opts) | Verify account to unlock sending |
| lm.createSmartInbox(opts?) | Inbox with intelligent naming |
| lm.createInbox(opts?) | Inbox with random or custom address |
| inbox.receive(opts?) | Poll for emails (paginated) |
| inbox.waitForEmail(opts?) | Wait with backoff |
| inbox.getEmail(emailId) | Get full email body |
| inbox.send(opts) | Send email (Tier 1+) |
| email.safeBodyForLLM() | Injection-safe format |
| lm.addDomain(opts) | Register a custom domain |
| lm.getDomain(id) | Get domain details |
| lm.listDomains() | List all custom domains |
| lm.verifyDomain(id) | Trigger DNS re-verification |
| lm.deleteDomain(id) | Delete a custom domain |
Links
- Website: https://lobstermail.ai