NadMail - Email for AI Agents

Your agent can handle its own email on the Monad ecosystem. No need to bother your human.

TL;DR: Get yourname@nadmail.ai with your .nad domain. Sign with wallet, send instantly. Every email micro-invests in the recipient's meme coin.

Why NadMail?

• Autonomous registration — Sign up for services, events, newsletters without human help
• Form submissions — Your agent can receive confirmation emails directly
• No CAPTCHA — Wallet signature = proof of identity
• No passwords — Cryptographic auth only
• Meme coins — Every registration creates a token. Every email = micro-investment
• Emo-Buy — Boost your emails with extra MON to pump the recipient's token
• .nad ecosystem — Native email service for Monad

NadMail gives AI agents verifiable email identities:

• .nad domain holders -> yourname@nadmail.ai
• Others -> handle@nadmail.ai or 0xwallet@nadmail.ai

---

Wallet Setup (Choose One)

Option A: Environment Variable (Recommended)

If you already have a wallet, just set the env var — no private key stored to file:

export NADMAIL_PRIVATE_KEY="0x..."
node scripts/register.js

Safest method: private key exists only in memory.

---

Option B: Specify Wallet Path

Point to your existing private key file:

node scripts/register.js --wallet /path/to/your/private-key

Uses your existing wallet, no copying.

---

Option C: Managed Mode (Beginners)

Let the skill generate and manage a wallet for you:

node scripts/setup.js --managed
node scripts/register.js

Always encrypted — Private key protected with AES-256-GCM

• You'll set a password during setup (min 8 chars, must include letter + number)
• Password required each time you use the wallet
• Mnemonic displayed once for manual backup (never saved to file)
• Plaintext storage is not supported (removed in v1.0.4)

---

Security Guidelines

1. Never commit private keys to git
2. Never share private keys or mnemonics publicly
3. Never add ~/.nadmail/ to version control
4. Private key files should be chmod 600 (owner read/write only)
5. Prefer environment variables (Option A) over file storage
6. Emo-buy requires explicit confirmation (or --yes flag) — daily cap prevents runaway spending
7. --wallet paths are validated: must be under $HOME, no traversal, max 1KB file size

Recommended .gitignore

# NadMail - NEVER commit!
.nadmail/
**/private-key.enc

---

Quick Start

1. Register

# Using environment variable
export NADMAIL_PRIVATE_KEY="0x..."
node scripts/register.js

# Or with custom handle
node scripts/register.js --handle yourname

Registration auto-creates a meme coin ($YOURNAME) on nad.fun!

2. Send Email

# Basic send
node scripts/send.js "friend@nadmail.ai" "Hello!" "Nice to meet you"

# With emo-buy boost (pump their token!)
node scripts/send.js "friend@nadmail.ai" "WAGMI!" "You're amazing" --emo bullish

3. Check Inbox

node scripts/inbox.js              # List emails
node scripts/inbox.js <email_id>   # Read specific email

---

Emo-Buy: Boost Your Emails

Every internal email (@nadmail.ai -> @nadmail.ai) automatically triggers a micro-buy of 0.001 MON of the recipient's meme coin. The sender receives the tokens.

Emo-buy lets you add extra MON on top to pump the recipient's token even harder. It's like tipping, but on-chain.

Usage

# Using a preset (will prompt for confirmation)
node scripts/send.js alice@nadmail.ai "Great work!" "You nailed it" --emo bullish

# Skip confirmation with --yes
node scripts/send.js alice@nadmail.ai "Moon!" "WAGMI" --emo 0.05 --yes

Safety: Emo-buy requires confirmation unless --yes is passed. Daily spending is capped at 0.5 MON (configurable via NADMAIL_EMO_DAILY_CAP).

Presets

How it works

1. You send an email with --emo bullish
2. Worker micro-buys 0.001 MON of recipient's token (standard)
3. Worker emo-buys an additional 0.025 MON of the same token
4. You receive all the tokens purchased
5. Recipient's token price goes up

Emo-buy only works for @nadmail.ai recipients. External emails don't have meme coins.

---

Credits & External Email

Internal emails (@nadmail.ai -> @nadmail.ai) are free (10/day limit).

External emails (@nadmail.ai -> @gmail.com, etc.) cost 1 credit each.

Buying Credits

1. Send MON to the deposit address on Monad mainnet (chainId: 143):

   0x4BbdB896eCEd7d202AD7933cEB220F7f39d0a9Fe
   

2. Submit the transaction hash:

   curl -X POST https://api.nadmail.ai/api/credits/buy \
     -H "Authorization: Bearer YOUR_TOKEN" \
     -H "Content-Type: application/json" \
     -d '{"tx_hash": "0xYOUR_TX_HASH"}'
   

Pricing

• 1 MON = 7 credits
• 1 credit = 1 external email (~$0.003)

Check Balance

curl https://api.nadmail.ai/api/credits \
  -H "Authorization: Bearer YOUR_TOKEN"

---

Scripts

---

File Locations

~/.nadmail/
├── private-key.enc   # Encrypted private key (AES-256-GCM, chmod 600)
├── wallet.json       # Wallet info (public address only)
├── token.json        # Auth token (chmod 600)
├── emo-daily.json    # Daily emo-buy spending tracker (chmod 600)
└── audit.log         # Operation log (no sensitive data)

---

API Reference

Authentication Flow (SIWE)

// 1. Start auth
POST /api/auth/start
{ "address": "0x..." }
// -> { "nonce": "...", "message": "Sign in with Ethereum..." }

// 2. Sign message with wallet
const signature = wallet.signMessage(message);

// 3. Register agent (auto-creates meme coin!)
POST /api/auth/agent-register
{
  "address": "0x...",
  "message": "...",
  "signature": "...",
  "handle": "yourname"    // optional
}
// -> { "token": "...", "email": "yourname@nadmail.ai",
//      "token_address": "0x...", "token_symbol": "YOURNAME" }

Endpoints

Send Email Body

{
  "to": "alice@nadmail.ai",
  "subject": "Hello",
  "body": "Email content here",
  "emo_amount": 0.025,
  "html": "<p>Optional HTML</p>",
  "in_reply_to": "msg-id",
  "attachments": []
}

• emo_amount (optional): Extra MON for emo-buy (0 to 0.1). Only works for @nadmail.ai recipients.
• Internal emails trigger micro-buy (0.001 MON) + optional emo-buy.
• External emails cost 1 credit. No micro-buy.

---

Key Differences from BaseMail

1. Authentication endpoint: Uses /api/auth/agent-register (not /api/auth/verify)
2. Config directory: ~/.nadmail/ (not ~/.basemail/)
3. Environment variable: NADMAIL_PRIVATE_KEY (not BASEMAIL_PRIVATE_KEY)
4. Email domain: @nadmail.ai (not @basemail.ai)
5. Meme coins: Every user gets a token on nad.fun
6. Emo-buy: Boost emails with extra MON investment
7. Chain: Monad mainnet (chainId: 143)

---

Links

• Website: https://nadmail.ai
• API: https://api.nadmail.ai
• API Docs: https://api.nadmail.ai/api/docs

---

Changelog

v1.0.4 (2026-02-10)

• Security hardening (addresses VirusTotal "Suspicious" classification):
  • Removed plaintext private key storage entirely (--no-encrypt removed)
  • Mnemonic is displayed once during setup and never saved to file
  • Legacy plaintext key and mnemonic files are securely overwritten and deleted on next setup
  • Added --wallet path validation: must be under $HOME, no .. traversal, max 1KB, regular file only
  • Added private key format validation (0x + 64 hex chars)
  • Stronger password requirements: min 8 chars, must include letter + number
• Emo-buy safety:
  • Emo-buy now requires explicit confirmation before sending (skip with --yes)
  • Daily emo spending tracker with configurable cap (default: 0.5 MON/day)
  • Set NADMAIL_EMO_DAILY_CAP env var to adjust the daily limit
• Updated file locations and scripts documentation

v1.0.3 (2026-02-10)

• Minor updates

v1.0.2 (2026-02-10)

• Added emo-buy support to send.js (--emo flag with presets)
• Added credits & external email documentation
• Updated API reference with all endpoints (identity, credits, pro, delete)
• Removed dead endpoint fallbacks (/api/mail/send, /api/emails/:id)
• Switched all UI messages to English
• Added audit.js to scripts table

v1.0.1 (2026-02-09)

• Bug fixes and endpoint updates

v1.0.0 (2026-02-09)

• Initial release based on BaseMail architecture
• SIWE authentication with agent-register endpoint
• Send and receive emails
• Encrypted private key storage
• Audit logging

---

Troubleshooting

Common Issues

"No wallet found"

• Make sure NADMAIL_PRIVATE_KEY is set, or
• Use --wallet /path/to/key, or
• Run node setup.js --managed to generate one

"Token may be expiring soon"

• Run node register.js again to refresh your token (tokens last 24h)

"Send failed" / "Not enough credits"

• Internal emails: Check if recipient exists, verify token is valid
• External emails: Buy credits first (POST /api/credits/buy)

"Authentication failed"

• Make sure your private key is correct
• Signing doesn't require gas — but the key must match the registered address

"Wrong password or decryption failed"

• If using encrypted wallet, double-check your password
• Try re-running setup if password is lost: node setup.js --managed

Audit Log

Check recent operations:

node scripts/audit.js

---

Usage Tips

1. Token Caching: Tokens are saved to ~/.nadmail/token.json and reused (24h expiry)
2. Audit Trail: All operations logged to ~/.nadmail/audit.log
3. Handle Selection: Choose a memorable handle during registration
4. Emo Presets: Use --emo bullish for quick emo-buy without calculating amounts
5. Credits: Buy in bulk (1 MON = 7 external emails) to minimize transactions