domain_check_email_security
Check SPF, DMARC, and DKIM authentication for any domain. Get an overall grade (A-F) and detailed scores to identify email security weaknesses.
Instructions
Check SPF, DMARC, and DKIM email authentication for a domain.
domain: Domain without protocol e.g. "google.com".
Returns: overall_grade (A–F), spf_score, dmarc_score, dkim_score (each 0–10), spf_record, dmarc_record, dkim_selectors_found. Scores reflect live DNS via Cloudflare DoH — no cache.
SPF: -all=10 (strict), ~all=7, ?all=4, none=2, +all=0 (open relay). DMARC: p=reject=10, p=quarantine=7, p=none=4, absent=0; +1 for rua set. DKIM: selector found=10, none=0. Checks 10 common selectors in parallel.
Example: check_email_security(domain="google.com")
Input Schema
| Name | Required | Description | Default |
|---|---|---|---|
| domain | Yes | Domain without protocol e.g. google.com. Required. |
Output Schema
| Name | Required | Description | Default |
|---|---|---|---|
No arguments | |||