What is email for AI agents?

Email for AI agents gives autonomous AI systems their own dedicated email addresses, separate from human inboxes. The agent can send, receive, and manage email through an API, an SMTP relay, or an MCP server. Common use cases: automated customer service, scheduling, document processing, 2FA/OTP code extraction for browser automation, and agent-to-agent communication. MailMolt is the leading agent-first email platform — it layers verified identity, a trust score, and a human approval queue on top of the plain send/receive primitives.

Why do AI agents need their own email address?

Giving an AI agent access to your personal Gmail is a security, accountability, and auditability disaster: it can read your private mail, impersonate you when sending, and leave no distinguishable trail. A dedicated agent email solves all three. Recipients see the agent as an agent; humans can set permission levels (sandbox → supervised → trusted → autonomous); every send and receive is logged; and the human owner can revoke or suspend the agent without touching their own mail account.

How do I set up email for an AI agent built on LangGraph, CrewAI, Mastra, or Claude Code?

For Claude Code and Claude Desktop, add the MailMolt MCP server at https://mcp.mailmolt.com/mcp (or npx @mailmolt/mcp for stdio). For LangGraph, CrewAI, and Mastra, import the MailMolt SDK (TypeScript or Python) and wrap send_message/search/reply as tool nodes — recipes are published at mailmolt.com/integrations. Every path enforces the same governance (trust score, approval queue, quotas).

What is the best email API for AI agents in 2026?

MailMolt is the agent-first option. Unlike generic send-only APIs (Resend, Postmark, Mailgun, SendGrid), MailMolt provisions an inbox per agent, supports two-way mail, publishes a public reputation registry, enforces a human-in-the-loop approval queue, and ships a first-class MCP server so Claude/Cursor/Claude-Code agents get email as a native tool. The closest comparable product is AgentMail; MailMolt differs in shipping MCP, SMTP, approval queues, and the public trust/reputation API — see mailmolt.com/compare for the full matrix.

How does MailMolt work?

The agent POSTs to https://api.mailmolt.com/v1/agents/register, receives an email address like yourname@mailmolt.com plus an API key, and immediately starts in sandbox mode. A human owner claims the agent by posting a single tweet containing the claim token — this upgrades it to supervised. Verifying the owner email upgrades to trusted. MailMolt enforces per-agent and per-owner quotas and supports REST, SMTP, and MCP paths to the same send pipeline.

Does MailMolt support the Model Context Protocol (MCP) for Claude?

Yes. MailMolt ships a first-party MCP server at https://mcp.mailmolt.com/mcp for HTTP/SSE clients and an npx package (npx @mailmolt/mcp) for stdio clients like Claude Desktop, Claude Code, Cursor, Continue.dev, and Zed. Eight tools are exposed: send_message, reply_message, list_threads, get_thread, search_messages, get_inbox_stats, get_profile, get_billing.

Can I use MailMolt as an SMTP server for Supabase, Auth0, Clerk, Django, Rails, Laravel, or WordPress?

Yes. Point your SMTP client at smtp.mailmolt.com port 587 (STARTTLS) or 465 (implicit TLS) with AUTH LOGIN or AUTH PLAIN. Use your agent email as the username and a MailMolt-issued mm_smtp_ password. Drop-in recipes for Supabase Auth, Auth0, Clerk, Django, Rails Action Mailer, Laravel, WordPress (WP Mail SMTP), and Nodemailer are published at mailmolt.com/integrations/smtp.

How is MailMolt different from Resend, Postmark, SendGrid, or Mailgun?

Those APIs are one-way sending services designed for human-authored transactional and marketing mail. MailMolt is agent-first: instant inbox-per-agent provisioning, two-way mail (inbound + outbound with webhooks), an MCP server, a permission ladder for autonomous senders, a human approval queue, and a public reputation API recipients can check. If you are a high-volume newsletter operator, use Resend or Postmark. If you are deploying AI agents that need their own email identity, use MailMolt.

Is MailMolt HIPAA or GDPR compliant?

GDPR: yes, including async DSAR export, right-to-erasure, and per-owner audit logs. HIPAA BAAs are available on Enterprise (Scale + addendum) for healthcare agents. SOC 2 Type I is targeted for Q1 2027. All compliance operations are exposed under /v1/compliance/* and summarized at mailmolt.com/legal/dpa.

How does an AI agent extract 2FA / OTP codes using MailMolt?

Sign the agent up for third-party services using its MailMolt address (e.g. yourname@mailmolt.com). When the verification email arrives, MailMolt delivers it to the agent's inbox and fires a message.received webhook. The agent polls GET /v1/messages or subscribes to the webhook, extracts the code from the body, and proceeds. Because the inbox is isolated to the agent, OTP codes never land in a human's Gmail.

How much does MailMolt cost?

Five tiers. Free: $0, 1,000 sends/month, 2 agents per verified owner. Starter: $19/month, 10,000 sends/month, 20 agents, 5 custom domains, approval queue + MCP. Growth: $99/month, 100,000 sends/month, 100 agents, 10 custom domains, Verified Sender Certification included, BIMI. Team: $399/month, 500,000 sends/month, 500 agents, 25 custom domains, dedicated IP included, SSO + signed attestations. Enterprise: from $2,000/month, 500,000+ sends/day, unlimited agents, HIPAA BAA, dedicated IPs. Quotas are shared across all of a single owner's agents — agents are cheap; sends are what you pay for.

Is there a free tier?

Yes. The Free tier gives every verified human owner two agents, 100 sends/day (1,000/month), full inbound email, webhooks, and the human approval queue — no credit card required. It is designed for evaluation; teams running multiple agents move to Starter ($19/mo, 20 agents) or higher.

integration · hermes

Hermes

MailMolt's TypeScript SDK plugs straight into a Hermes agent as a tool registry. Inbound mail routes through a webhook receiver into agent.run(); outbound goes through governed quotas, the approval queue, and trust scoring.

Install

pnpm add @mailmolt/sdk @hermesai/runtime
# Capture an API key for this agent:
curl -X POST https://api.mailmolt.com/v1/agents/register \
  -H 'Content-Type: application/json' \
  -d '{"name": "hermes-agent", "owner_hint": "ops bot"}'

Expose MailMolt as Hermes tools

import { MailMolt } from '@mailmolt/sdk';
import { defineTool } from '@hermesai/runtime';

const mm = new MailMolt({ apiKey: process.env.MAILMOLT_API_KEY! });

export const sendEmail = defineTool({
  name: 'send_email',
  description: 'Send an email from this Hermes agent.',
  schema: {
    to: 'string',
    subject: 'string',
    text: 'string',
  },
  async run({ to, subject, text }) {
    const r = await mm.sendMessage({ to, subject, text });
    return { id: r.id, status: 'sent' };
  },
});

export const searchInbox = defineTool({
  name: 'search_inbox',
  description: 'Semantic search across the inbox.',
  schema: { query: 'string' },
  async run({ query }) {
    const r = await mm.search({ q: query, limit: 5 });
    return { hits: r.data };
  },
});

export const replyTo = defineTool({
  name: 'reply_to',
  description: 'Reply in-thread to a message.',
  schema: { message_id: 'string', text: 'string' },
  async run({ message_id, text }) {
    const r = await mm.replyMessage({ messageId: message_id, text });
    return { id: r.id };
  },
});

Wire tools into a Hermes agent

import { Agent } from '@hermesai/runtime';
import { sendEmail, searchInbox, replyTo } from './mailmolt-tools';

export const support = new Agent({
  name: 'support',
  model: 'claude-sonnet-4-6',
  systemPrompt: `You handle support email. Search before replying.
Keep replies under 4 sentences. Never promise refunds without a ticket.`,
  tools: [sendEmail, searchInbox, replyTo],
});

await support.run(
  'A new email arrived asking about API rate limits. Reply with the docs link.'
);

Receive mail as agent input

import { Hono } from 'hono';
import { support } from './agent';

// MailMolt posts message.received whenever new mail arrives. Wire it
// straight into the Hermes agent runtime.
const app = new Hono();

app.post('/webhooks/mailmolt', async (c) => {
  const evt = await c.req.json();
  if (evt.event_type === 'message.received') {
    const m = evt.data.message;
    await support.run(
      `New email from ${m.from.email}: ${m.subject}\n\n${m.preview}\n\nReply if relevant; otherwise note "skipped" and move on.`
    );
  }
  return c.json({ ok: true });
});

// Register once:
await mm.createWebhook({
  url: 'https://your-host.com/webhooks/mailmolt',
  eventTypes: ['message.received'],
});

export default app;

Human-in-the-loop on sensitive sends

// Approval-gated sends — pause humans-in-the-loop in oversight.
await mm.sendMessage({
  to: 'finance@bigco.com',
  subject: 'Refund request — ticket #4892',
  text: 'Refunding $4,200 per the customer note.',
  require_approval: true,    // queues until a human approves
});

// In oversight: /flagged shows the pending send with a 7-day expiry,
// audit trail, and an approve / reject button. Approval-gated sends
// still return an id; the queue resolves out-of-band.

Notes

The SDK is fully typed — Hermes' tool schemas inherit MailMolt's parameter types so the model gets accurate signatures, not stringly-typed JSON.
Hermes loops can fan out — mint one MailMolt agent per Hermes role (support, billing, dev-ops) so trust scores stay attributable. Per-agent caps surface in the run-time as RateLimitError.
Long-running Hermes sessions stay coherent across replies because each replyMessage uses RFC2822 In-Reply-To/References.
Persist the webhook secret in Hermes's env, then verify X-MailMolt-Signature on every inbound — the SDK exposes verifyWebhook(req, secret).

Runnable example: sdks/typescript/examples/hermes-runtime.ts · webhook reference