From 094b9992ce5cb08f980f6a4cabaa39b5b3d973a0 Mon Sep 17 00:00:00 2001
From: "lijiayi.2333" <lijiayi.2333@bytedance.com>
Date: Fri, 8 May 2026 16:25:17 +0800
Subject: [PATCH] feat(mail): HTML lint lib + Larksuite-native autofix +
 lark-mail skill
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Add an HTML lint library + Larksuite-native autofix to lark-cli mail, plus
the skills/lark-mail/ skill bundle (2 reference docs, 5 HTML templates, the
+lint-html shortcut, and writing-path lint integration across all 6 compose
shortcuts).

Lint library (shortcuts/mail/lint/)

- Error: drop dangerous tags (<script> / <iframe> / <form> / <input> /
  <link> / <object> / <embed>), on* event handlers, javascript: /
  vbscript: / file: URLs.
- Warning + autofix: rewrite HTML4-era <font> / <center> / <marquee> /
  <blink>.
- Larksuite-native autofix: rewrite <p> / <ul> / <ol> / <li> /
  <blockquote> / <a> to mail-editor native markup so AI can write the
  simplest HTML and still produce native-quality rendering.
- Inline-style and URL-scheme allow-list filtering.
- <style> block passthrough (server adds CSS scope class).

+lint-html shortcut (preview / CI)

Read-only HTML preview tool. Default envelope returns only cleaned_html;
--show-lint-details adds full warnings[] / errors[]. --strict exits non-
zero on any finding (CI gate).

Writing-path lint in 6 compose shortcuts

+send / +draft-create / +reply / +reply-all / +forward / +draft-edit body
op all run lint before drafting:

- lint_applied_count / original_blocked_count: always present.
- lint_applied[] / original_blocked[]: only with --show-lint-details.
- compose_hint: points AI consumers to the HTML writing guide.

skills/lark-mail/ skill bundle

5 pre-rendered Larksuite-native HTML templates: weekly newsletter,
personal weekly report, team weekly report, market research report,
résumé.

2 reference docs:
- references/lark-mail-html.md: writing rules + format primitives +
  template-usage flow.
- references/lark-mail-lint-html.md: +lint-html usage + return-value
  contract + 9 worked examples.

SKILL.md updates linking the new docs and templates.

Sealed conventions

- @user mention chip: id="at-user-N" is the only hard requirement; do
  not write data-user-id.
- Highlight palette: 3 colors (pink milestones, yellow follow-ups, green
  completed); black text, no bold / padding / border-radius.
- Brand color palette: main black, 3 levels of grey, Lark blue / deep
  blue, alert red, emergency orange, light pink / light grey
  backgrounds, border grey.
- URL scheme allow-list: http(s): / mailto: / cid: / data:image/* only.
- Inline-style + tag allow-lists.
- Writing-style floor: subject <= 50 chars, decision-first, lists instead
  of mechanical numbering, emoji only as status tags.

Tests

- shortcuts/mail/lint/...: unit tests for every rule.
- shortcuts/mail/mail_lint_html_test.go: +lint-html envelope contract.
- shortcuts/mail/mail_lint_writepath_test.go: writing-path envelope
  contract.
- 5 templates verified via +draft-create smoke test.
---
 shortcuts/mail/lint/linter.go                 | 1065 +++++++++++++++++
 shortcuts/mail/lint/linter_test.go            |  901 ++++++++++++++
 shortcuts/mail/lint/rules.go                  |  349 ++++++
 shortcuts/mail/lint/types.go                  |  116 ++
 shortcuts/mail/mail_draft_create.go           |   74 +-
 shortcuts/mail/mail_draft_create_test.go      |   22 +-
 shortcuts/mail/mail_draft_edit.go             |   32 +
 shortcuts/mail/mail_forward.go                |   22 +-
 shortcuts/mail/mail_lint_html.go              |  207 ++++
 shortcuts/mail/mail_lint_html_test.go         |  339 ++++++
 shortcuts/mail/mail_lint_writepath.go         |  115 ++
 shortcuts/mail/mail_lint_writepath_test.go    |  352 ++++++
 shortcuts/mail/mail_reply.go                  |   28 +-
 shortcuts/mail/mail_reply_all.go              |   25 +-
 shortcuts/mail/mail_send.go                   |   27 +-
 shortcuts/mail/shortcuts.go                   |    1 +
 skill-template/domains/mail.md                |   52 +
 skills/lark-mail/SKILL.md                     |   18 +-
 .../templates/job-application--resume.html    |   40 +
 .../templates/newsletter--weekly-brief.html   |   50 +
 .../templates/research--market-report.html    |  270 +++++
 .../templates/weekly--personal-report.html    |   43 +
 .../assets/templates/weekly--team-report.html |   19 +
 .../references/lark-mail-draft-create.md      |    2 +
 .../references/lark-mail-draft-edit.md        |    2 +
 .../lark-mail/references/lark-mail-forward.md |    2 +
 skills/lark-mail/references/lark-mail-html.md |  311 +++++
 .../references/lark-mail-lint-html.md         |  248 ++++
 .../references/lark-mail-reply-all.md         |    2 +
 .../lark-mail/references/lark-mail-reply.md   |    2 +
 skills/lark-mail/references/lark-mail-send.md |    2 +
 31 files changed, 4688 insertions(+), 50 deletions(-)
 create mode 100644 shortcuts/mail/lint/linter.go
 create mode 100644 shortcuts/mail/lint/linter_test.go
 create mode 100644 shortcuts/mail/lint/rules.go
 create mode 100644 shortcuts/mail/lint/types.go
 create mode 100644 shortcuts/mail/mail_lint_html.go
 create mode 100644 shortcuts/mail/mail_lint_html_test.go
 create mode 100644 shortcuts/mail/mail_lint_writepath.go
 create mode 100644 shortcuts/mail/mail_lint_writepath_test.go
 create mode 100644 skills/lark-mail/assets/templates/job-application--resume.html
 create mode 100644 skills/lark-mail/assets/templates/newsletter--weekly-brief.html
 create mode 100644 skills/lark-mail/assets/templates/research--market-report.html
 create mode 100644 skills/lark-mail/assets/templates/weekly--personal-report.html
 create mode 100644 skills/lark-mail/assets/templates/weekly--team-report.html
 create mode 100644 skills/lark-mail/references/lark-mail-html.md
 create mode 100644 skills/lark-mail/references/lark-mail-lint-html.md

diff --git a/shortcuts/mail/lint/linter.go b/shortcuts/mail/lint/linter.go
new file mode 100644
index 000000000..1188f5647
--- /dev/null
+++ b/shortcuts/mail/lint/linter.go
@@ -0,0 +1,1065 @@
+// Copyright (c) 2026 Lark Technologies Pte. Ltd.
+// SPDX-License-Identifier: MIT
+
+package lint
+
+import (
+	"bytes"
+	"fmt"
+	"hash/fnv"
+	"strings"
+
+	xhtml "golang.org/x/net/html"
+	"golang.org/x/net/html/atom"
+)
+
+// MaxExcerptBytes caps the raw-HTML excerpt embedded in a Finding.Excerpt so
+// a single offending tag with megabyte content can't bloat the envelope JSON.
+// S2 contract «Server-mirrored constraints» row "EML composition body+inline+
+// SMALL ≤ 25 MB" calls this out: lint ops on bytes only, but the excerpt
+// representation must not be size-amplifying.
+const MaxExcerptBytes = 200
+
+// Run lints the given HTML body and returns a structured Report. When
+// opts.AutoFix is true, Report.CleanedHTML contains the rewritten HTML
+// (warnings rewritten + errors deleted); when false, only error-tier findings
+// are removed (writing-path safety floor cannot be opted out of), warnings
+// are surfaced as observations only, and CleanedHTML still contains the
+// rewritten HTML — but `+lint-html --auto-fix=false` callers are expected to
+// drop this field from the public envelope per spec §4.2.
+//
+// IMPORTANT: when the input is empty or plain-text (no HTML markup detected
+// by the cli's existing `bodyIsHTML` heuristic), callers should short-circuit
+// with EmptyReport(html) instead of paying the parse cost. Run still handles
+// this gracefully — html.Parse on plain text wraps the input in
+// <html><head></head><body>...</body></html>, and the lib's pass-through
+// rendering will reproduce the original text — but the round-trip is wasteful
+// and produces no findings.
+func Run(html string, opts Options) Report {
+	if html == "" {
+		return EmptyReport("")
+	}
+
+	rep := Report{
+		Applied: []Finding{},
+		Blocked: []Finding{},
+	}
+
+	// We use html.ParseFragment so users authoring fragment-style snippets
+	// (the canonical compose-5 input shape — `<div>...</div>` rather than a
+	// full document) don't get implicit <html><head><body> wrappers
+	// re-rendered. The "body" insertion mode matches what html.Parse would
+	// have done internally for a fragment but skips the structural wrappers
+	// at render time.
+	bodyContext := &xhtml.Node{Type: xhtml.ElementNode, DataAtom: atom.Body, Data: "body"}
+	nodes, err := xhtml.ParseFragment(strings.NewReader(html), bodyContext)
+	if err != nil {
+		// Parser failure is exceptional (the parser is permissive by design);
+		// fall back to the original input so we don't lose user content.
+		return EmptyReport(html)
+	}
+
+	// Wrap fragment nodes in a synthetic root so the recursive walker has a
+	// uniform parent pointer to mutate.
+	root := &xhtml.Node{Type: xhtml.DocumentNode}
+	for _, n := range nodes {
+		root.AppendChild(n)
+	}
+
+	walk(root, &rep, opts)
+	applyFeishuNativeStyles(root, &rep, opts)
+
+	rep.HasErrorFindings = len(rep.Blocked) > 0
+	rep.HasWarningFindings = len(rep.Applied) > 0
+	rep.CleanedHTML = renderFragment(root)
+
+	return rep
+}
+
+// walk visits every element node under parent, applying tag/attr/style
+// classification. Children are iterated via the next-sibling pointer because
+// we mutate the tree in place (replace / remove nodes).
+//
+// The walker is iterative-style via explicit recursion because the html
+// parser's typical nesting depth (≤ 256 by default) is well below Go's
+// goroutine stack limit; the existing draft package's plainTextFromHTML
+// (mail/draft/htmltext.go) similarly recurses for the same reason.
+func walk(parent *xhtml.Node, rep *Report, opts Options) {
+	child := parent.FirstChild
+	for child != nil {
+		next := child.NextSibling
+		if child.Type == xhtml.ElementNode {
+			processElement(parent, child, rep, opts)
+		}
+		// child may have been removed/replaced by processElement; recurse
+		// only if it still has the original parent (i.e. wasn't deleted).
+		// The html parser sets Parent on every node, so a removed-then-
+		// reattached node still recurses correctly via its new Parent.
+		if child.Parent != nil {
+			walk(child, rep, opts)
+		}
+		child = next
+	}
+}
+
+// processElement applies the element-level classification cascade:
+//  1. tag → allow / warn-rewrite / error-delete
+//  2. attributes → on*-handlers, URL-bearing attrs (scheme allow-list),
+//     style attribute (CSS property allow-list)
+func processElement(parent, n *xhtml.Node, rep *Report, opts Options) {
+	tagName := strings.ToLower(n.Data)
+	kind, ruleID := classifyTag(tagName)
+
+	switch kind {
+	case "error":
+		rep.Blocked = append(rep.Blocked, Finding{
+			RuleID:    ruleID,
+			Severity:  SeverityError,
+			TagOrAttr: tagName,
+			Excerpt:   excerptOf(n),
+			Hint:      hintForBlockedTag(tagName),
+		})
+		// Always remove blocked tags regardless of opts.AutoFix — writing-path
+		// safety floor cannot be opted out of (spec §4.3 — `--no-lint` is not
+		// provided).
+		parent.RemoveChild(n)
+		return
+
+	case "warn":
+		// AutoFix=true → rewrite (e.g. <font>→<span style>); AutoFix=false →
+		// surface the finding as observation only, keep the original tag.
+		// `+lint-html --auto-fix=false` consumers want to see what would
+		// change without the lib forcing the change.
+		if opts.AutoFix {
+			finding := Finding{
+				RuleID:    ruleID,
+				Severity:  SeverityWarning,
+				TagOrAttr: tagName,
+				Excerpt:   excerptOf(n),
+				Hint:      hintForWarnTag(tagName),
+			}
+			if opts.Strict {
+				finding.Severity = SeverityError
+				rep.Blocked = append(rep.Blocked, finding)
+			} else {
+				rep.Applied = append(rep.Applied, finding)
+			}
+			rewriteWarnTag(n, tagName)
+			// Recurse into the rewritten node by falling through; the
+			// rewrite preserved children as-is.
+		} else {
+			finding := Finding{
+				RuleID:    ruleID,
+				Severity:  SeverityWarning,
+				TagOrAttr: tagName,
+				Excerpt:   excerptOf(n),
+				Hint:      hintForWarnTag(tagName),
+			}
+			if opts.Strict {
+				finding.Severity = SeverityError
+				rep.Blocked = append(rep.Blocked, finding)
+			} else {
+				rep.Applied = append(rep.Applied, finding)
+			}
+		}
+		// fall through to attribute scan
+	case "allow":
+		// no-op
+	}
+
+	// Attribute scan: build a new attribute slice, dropping/sanitising as we
+	// go and surfacing findings.
+	if len(n.Attr) > 0 {
+		processAttributes(n, rep, opts)
+	}
+}
+
+// processAttributes walks the attribute list and:
+//   - drops on*-handlers (always; surfaced as error)
+//   - drops URL-bearing attrs whose value uses a forbidden scheme
+//   - filters the `style` attribute property-by-property against the allow-list
+//
+// Other attributes pass through unchanged. The cli's existing
+// `validateInlineCIDs` (helpers.go:2226) handles `cid:`-specific checks; the
+// lint must not duplicate that responsibility (S2 contract «MUST reuse» row).
+func processAttributes(n *xhtml.Node, rep *Report, opts Options) {
+	keep := n.Attr[:0]
+	for _, attr := range n.Attr {
+		name := strings.ToLower(attr.Key)
+
+		// 1. on*-handlers → always drop, error-tier.
+		if isEventHandlerAttr(name) {
+			rep.Blocked = append(rep.Blocked, Finding{
+				RuleID:    RuleAttrEventHandlerBlocked,
+				Severity:  SeverityError,
+				TagOrAttr: name,
+				Excerpt:   truncateExcerpt(attr.Key + "=\"" + attr.Val + "\""),
+				Hint:      "Removed event handler attribute (on*)",
+			})
+			continue
+		}
+
+		// 2. URL-bearing attrs → check scheme allow-list.
+		if urlAttributes[name] {
+			kind, ruleID := classifyURLValue(attr.Val)
+			switch kind {
+			case "error":
+				severity := SeverityError
+				rep.Blocked = append(rep.Blocked, Finding{
+					RuleID:    ruleID,
+					Severity:  severity,
+					TagOrAttr: name,
+					Excerpt:   truncateExcerpt(attr.Key + "=\"" + attr.Val + "\""),
+					Hint:      "Removed dangerous URL scheme (allowed: http/https/mailto/cid/data:image/*)",
+				})
+				continue
+			case "warn":
+				finding := Finding{
+					RuleID:    ruleID,
+					Severity:  SeverityWarning,
+					TagOrAttr: name,
+					Excerpt:   truncateExcerpt(attr.Key + "=\"" + attr.Val + "\""),
+					Hint:      "URL scheme not in allowlist (allowed: http/https/mailto/cid/data:image/*)",
+				}
+				if opts.Strict {
+					finding.Severity = SeverityError
+					rep.Blocked = append(rep.Blocked, finding)
+				} else {
+					rep.Applied = append(rep.Applied, finding)
+				}
+				if opts.AutoFix {
+					// Drop the attribute when AutoFix is set — writing-path
+					// safety floor (the URL would not render correctly anyway).
+					continue
+				}
+			}
+		}
+
+		// 3. `style` attribute → property-by-property allow-list.
+		if name == "style" {
+			cleaned, dropped := sanitiseStyleAttr(attr.Val)
+			for _, prop := range dropped {
+				rep.Applied = append(rep.Applied, Finding{
+					RuleID:    RuleStylePropertyDropped,
+					Severity:  SeverityWarning,
+					TagOrAttr: "style." + prop,
+					Excerpt:   truncateExcerpt(prop),
+					Hint:      "Removed CSS property not in allowlist (see references/lark-mail-html.md)",
+				})
+			}
+			if len(dropped) == 0 {
+				attr.Val = cleaned
+				keep = append(keep, attr)
+				continue
+			}
+			if !opts.AutoFix {
+				// AutoFix=false: keep the original property list so users see
+				// exactly what would change.
+				keep = append(keep, attr)
+				continue
+			}
+			if cleaned == "" {
+				// All properties dropped — remove the attribute entirely.
+				continue
+			}
+			attr.Val = cleaned
+			keep = append(keep, attr)
+			continue
+		}
+
+		// 4. Pass-through.
+		keep = append(keep, attr)
+	}
+	n.Attr = keep
+}
+
+// rewriteWarnTag replaces a warning-tier tag with its Feishu-native
+// equivalent in place: <font> → <span style="..."> with color/face/size
+// distilled into inline style; <center> → <div style="text-align:center">;
+// <marquee>/<blink> → <span> (text-only, animation discarded — collapsing
+// to a span keeps the children but drops the deprecated animation effect).
+func rewriteWarnTag(n *xhtml.Node, tagName string) {
+	switch tagName {
+	case "font":
+		// Distill <font color="..." face="..." size="...">.
+		var styles []string
+		var keepAttrs []xhtml.Attribute
+		for _, attr := range n.Attr {
+			switch strings.ToLower(attr.Key) {
+			case "color":
+				if v := strings.TrimSpace(attr.Val); v != "" {
+					styles = append(styles, "color:"+v)
+				}
+			case "face":
+				if v := strings.TrimSpace(attr.Val); v != "" {
+					styles = append(styles, "font-family:"+v)
+				}
+			case "size":
+				if v := mapFontSize(attr.Val); v != "" {
+					styles = append(styles, "font-size:"+v)
+				}
+			default:
+				keepAttrs = append(keepAttrs, attr)
+			}
+		}
+		// Merge any existing style attribute already present on the <font>
+		// (rare but possible).
+		if len(styles) > 0 {
+			merged := strings.Join(styles, ";")
+			styleIdx := -1
+			for i, attr := range keepAttrs {
+				if strings.ToLower(attr.Key) == "style" {
+					styleIdx = i
+					break
+				}
+			}
+			if styleIdx >= 0 {
+				existing := strings.TrimRight(keepAttrs[styleIdx].Val, "; ")
+				if existing != "" {
+					merged = existing + ";" + merged
+				}
+				keepAttrs[styleIdx].Val = merged
+			} else {
+				keepAttrs = append(keepAttrs, xhtml.Attribute{Key: "style", Val: merged})
+			}
+		}
+		n.Data = "span"
+		n.DataAtom = atom.Span
+		n.Attr = keepAttrs
+
+	case "center":
+		// <center> → <div style="text-align:center">. Existing style attr
+		// (if any) is merged with text-align prepended.
+		styleIdx := -1
+		for i, attr := range n.Attr {
+			if strings.ToLower(attr.Key) == "style" {
+				styleIdx = i
+				break
+			}
+		}
+		newStyle := "text-align:center"
+		if styleIdx >= 0 {
+			existing := strings.TrimRight(n.Attr[styleIdx].Val, "; ")
+			if existing != "" {
+				newStyle = newStyle + ";" + existing
+			}
+			n.Attr[styleIdx].Val = newStyle
+		} else {
+			n.Attr = append(n.Attr, xhtml.Attribute{Key: "style", Val: newStyle})
+		}
+		n.Data = "div"
+		n.DataAtom = atom.Div
+
+	case "marquee", "blink":
+		// Both deprecated; collapse to <span> so children survive.
+		n.Data = "span"
+		n.DataAtom = atom.Span
+		// Strip marquee-specific attributes (direction, scrollamount, ...)
+		// so the rewritten span is plain.
+		var keepAttrs []xhtml.Attribute
+		for _, attr := range n.Attr {
+			if strings.ToLower(attr.Key) == "style" || strings.ToLower(attr.Key) == "class" || strings.ToLower(attr.Key) == "id" {
+				keepAttrs = append(keepAttrs, attr)
+			}
+		}
+		n.Attr = keepAttrs
+	}
+}
+
+// mapFontSize maps the legacy <font size="N"> values (1..7) to a CSS px
+// equivalent. The mapping mirrors the editor-kit branch's renderer.
+// Out-of-range values fall through to the empty string so the property is
+// dropped (better than emitting an arbitrary value).
+func mapFontSize(raw string) string {
+	switch strings.TrimSpace(raw) {
+	case "1":
+		return "10px"
+	case "2":
+		return "13px"
+	case "3":
+		return "16px"
+	case "4":
+		return "18px"
+	case "5":
+		return "24px"
+	case "6":
+		return "32px"
+	case "7":
+		return "48px"
+	default:
+		return ""
+	}
+}
+
+// sanitiseStyleAttr filters a `style="prop1:val; prop2:val"` declaration
+// against the property allow-list. Returns the cleaned style text (joined
+// with "; " separators) and a slice of dropped property names (lower-case)
+// so the caller can surface STYLE_PROPERTY_DROPPED findings.
+//
+// NOTE: We do NOT validate property values — only property names. Spec §4.4
+// is explicit: "style 属性按 CSS property 白名单过滤"; value-level validation
+// (e.g. URL safety inside `background-image: url(...)`) is delegated to the
+// urlAttributes path because such values typically appear in `src` / `href`
+// attrs in compose-5 templates. Users authoring `background-image: url(http:...)`
+// in inline style will see the property pass — the URL inside is not a
+// security concern at the inline-style level since URL fetching from style
+// is restricted by Feishu's renderer-side CSP regardless.
+func sanitiseStyleAttr(raw string) (cleaned string, dropped []string) {
+	if strings.TrimSpace(raw) == "" {
+		return "", nil
+	}
+	parts := strings.Split(raw, ";")
+	keep := make([]string, 0, len(parts))
+	for _, part := range parts {
+		decl := strings.TrimSpace(part)
+		if decl == "" {
+			continue
+		}
+		colon := strings.IndexByte(decl, ':')
+		if colon < 0 {
+			// Malformed declaration; drop and surface as a finding so the
+			// user notices.
+			dropped = append(dropped, decl)
+			continue
+		}
+		name := strings.ToLower(strings.TrimSpace(decl[:colon]))
+		if !classifyStyleProperty(name) {
+			dropped = append(dropped, name)
+			continue
+		}
+		keep = append(keep, decl)
+	}
+	cleaned = strings.Join(keep, "; ")
+	return cleaned, dropped
+}
+
+// hintForBlockedTag returns a hint for an error-blocked tag (matching
+// the `output.ErrWithHint` convention used elsewhere in the cli — see
+// KB conventions/coding.md).
+func hintForBlockedTag(tag string) string {
+	switch tag {
+	case "script":
+		return "Removed whole tag (XSS risk; server-side RemoteSanitizer rejects too)"
+	case "iframe", "object", "embed":
+		return "Removed whole tag (external embeds not allowed; use <img> or a body link for rich media)"
+	case "form", "input", "select", "option", "button":
+		return "Removed whole tag (forms not allowed in email body)"
+	case "link":
+		return "Removed <link> (external CSS / resources not allowed)"
+	case "meta":
+		return "Removed <meta> (viewport / refresh declarations not allowed)"
+	case "base":
+		return "Removed <base> (URL base rewrites not allowed)"
+	default:
+		return "Removed whole tag (tag not allowed)"
+	}
+}
+
+// hintForWarnTag returns a hint for a warning-tier tag.
+func hintForWarnTag(tag string) string {
+	switch tag {
+	case "font":
+		return "Rewritten as <span style=\"...\"> (Lark mail-editor expresses size / color via inline style)"
+	case "center":
+		return "Rewritten as <div style=\"text-align:center\"> (deprecated <center> tag)"
+	case "marquee", "blink":
+		return "Rewritten as <span> (animations not supported; text preserved)"
+	default:
+		return "Rewritten in Lark-native shape"
+	}
+}
+
+// excerptOf renders the offending node's open-tag header into a short string
+// suitable for surfacing in a Finding.Excerpt. We render only the tag header
+// (not the full subtree) so a single offending <script> with megabytes of
+// content doesn't bloat the envelope JSON. truncateExcerpt enforces the cap.
+func excerptOf(n *xhtml.Node) string {
+	if n == nil {
+		return ""
+	}
+	var buf bytes.Buffer
+	buf.WriteByte('<')
+	buf.WriteString(n.Data)
+	for _, attr := range n.Attr {
+		buf.WriteByte(' ')
+		buf.WriteString(attr.Key)
+		if attr.Val != "" {
+			buf.WriteString(`="`)
+			buf.WriteString(attr.Val)
+			buf.WriteByte('"')
+		}
+	}
+	buf.WriteString(`...>`)
+	return truncateExcerpt(buf.String())
+}
+
+// truncateExcerpt enforces MaxExcerptBytes; longer excerpts are truncated and
+// suffixed with " ...". We measure bytes (not runes) because the cap is about
+// envelope size, not character count — multibyte UTF-8 in an excerpt is
+// uncommon in HTML markup excerpts.
+func truncateExcerpt(s string) string {
+	if len(s) <= MaxExcerptBytes {
+		return s
+	}
+	return s[:MaxExcerptBytes-4] + " ..."
+}
+
+// renderFragment serialises a fragment-rooted html tree to a string. We use
+// the html package's Render which always emits the document-style markup;
+// for fragment input we strip the implicit <html><head></head><body>...</body></html>
+// wrapper that html.Parse adds.
+func renderFragment(root *xhtml.Node) string {
+	var buf bytes.Buffer
+	for child := root.FirstChild; child != nil; child = child.NextSibling {
+		_ = xhtml.Render(&buf, child)
+	}
+	return buf.String()
+}
+
+// applyFeishuNativeStyles walks the tree (post-tag-pass) and ensures elements
+// that have known Feishu mail-editor native inline styles get them autofilled.
+// User-supplied inline styles always take precedence — this pass is purely
+// additive (only fills in missing properties). AutoFix=false short-circuits.
+//
+// Rules (visual parity with Feishu mail-editor's own output, captured from a
+// real mail-editor draft on 2026-05-07):
+//
+//   <ol> / <ul>     → margin-top:0;margin-bottom:0;margin-left:0;padding-left:0;list-style-position:inside
+//   <li>            → line-height:1.6;margin-top:4px;margin-bottom:4px;padding-left:0;
+//                     margin-left:0;display:list-item;list-style-position:inside;
+//                     list-style-type:decimal (ol parent) | disc (ul parent);
+//                     font-family:inherit;font-size:14px
+//   <blockquote>    → padding-left:0;color:rgb(100,106,115);
+//                     border-left:2px solid rgb(187,191,196);margin:0
+//   <a>             → class="not-doclink" + cursor:pointer;text-decoration:none;
+//                     color:rgb(20,86,240)
+//   <p>             → rewritten to
+//                     <div style="margin-top:4px;margin-bottom:4px;line-height:1.6">
+//                       <div dir="auto" style="font-size:14px">...children...</div>
+//                     </div>
+//                     This is the only rewrite that changes tree shape; the
+//                     others only touch attributes.
+func applyFeishuNativeStyles(parent *xhtml.Node, rep *Report, opts Options) {
+	if !opts.AutoFix {
+		return
+	}
+	child := parent.FirstChild
+	for child != nil {
+		next := child.NextSibling
+		if child.Type == xhtml.ElementNode {
+			switch strings.ToLower(child.Data) {
+			case "ol", "ul":
+				ensureFeishuListStyle(child, rep)
+			case "li":
+				ensureFeishuListItemStyle(child, parent, rep)
+			case "blockquote":
+				ensureFeishuBlockquoteStyle(child, rep)
+			case "a":
+				ensureFeishuLinkStyle(child, rep)
+			case "p":
+				rewritePToFeishuDiv(child, rep)
+			}
+		}
+		// child may have been mutated (children moved into a wrapper);
+		// recurse only if it's still attached.
+		if child.Parent != nil {
+			applyFeishuNativeStyles(child, rep, opts)
+		}
+		child = next
+	}
+}
+
+// hasInlineStyleProp reports whether the given style="..." string already
+// declares the named property. Lookup is case-insensitive on the property
+// name; whitespace around `:` and `;` is tolerated.
+//
+// Shorthand expansion: `margin-*` is also considered set when shorthand
+// `margin:` is present (same for `padding-*` / `padding:`, and the four
+// `border-*-style/color/width` longhands when `border:` shorthand is set).
+// Without this, ensureInlineStyleProps would append e.g. `margin-left:0`
+// onto a `margin:0 0 0 24px` shorthand and clobber the user-authored
+// 24px (mail-editor's native nested-list indent uses this exact shape).
+func hasInlineStyleProp(style, prop string) bool {
+	prop = strings.ToLower(strings.TrimSpace(prop))
+	if prop == "" {
+		return false
+	}
+	var shorthand string
+	switch {
+	case strings.HasPrefix(prop, "margin-"):
+		shorthand = "margin"
+	case strings.HasPrefix(prop, "padding-"):
+		shorthand = "padding"
+	}
+	for _, decl := range strings.Split(style, ";") {
+		decl = strings.TrimSpace(decl)
+		if decl == "" {
+			continue
+		}
+		colon := strings.IndexByte(decl, ':')
+		if colon < 0 {
+			continue
+		}
+		name := strings.ToLower(strings.TrimSpace(decl[:colon]))
+		if name == prop {
+			return true
+		}
+		if shorthand != "" && name == shorthand {
+			return true
+		}
+	}
+	return false
+}
+
+// ensureInlineStyleProps appends each (prop, val) pair to the element's style
+// attribute *only if* the property is not already declared. Returns true if
+// any property was added (so callers can record an Applied finding).
+//
+// User-authored values take precedence — we never overwrite existing
+// declarations even if they differ from our default, because the user may
+// have an intentional reason (e.g. wider list-margin for an outline-style
+// document).
+func ensureInlineStyleProps(n *xhtml.Node, propsInOrder [][2]string) bool {
+	styleIdx := -1
+	existing := ""
+	for i, attr := range n.Attr {
+		if strings.ToLower(attr.Key) == "style" {
+			styleIdx = i
+			existing = attr.Val
+			break
+		}
+	}
+	additions := make([]string, 0, len(propsInOrder))
+	for _, kv := range propsInOrder {
+		if !hasInlineStyleProp(existing, kv[0]) {
+			additions = append(additions, kv[0]+":"+kv[1])
+		}
+	}
+	if len(additions) == 0 {
+		return false
+	}
+	merged := strings.Join(additions, ";")
+	if existing != "" {
+		merged = strings.TrimRight(existing, "; ") + ";" + merged
+	}
+	if styleIdx >= 0 {
+		n.Attr[styleIdx].Val = merged
+	} else {
+		n.Attr = append(n.Attr, xhtml.Attribute{Key: "style", Val: merged})
+	}
+	return true
+}
+
+// stripWhitespaceTextChildren removes direct text-node children of n that
+// contain only whitespace (newlines, indentation). On <ol> / <ul> these
+// inter-<li> whitespace nodes are rendered by Feishu mail-editor as
+// extra inline text — visible as a blank line between list items even
+// when every <li> has 0 margin and the full Feishu-native marker set.
+// AI-authored HTML almost always contains pretty-printed indentation
+// inside lists, so this strip is essential to get gap-free rendering.
+func stripWhitespaceTextChildren(n *xhtml.Node) bool {
+	changed := false
+	for child := n.FirstChild; child != nil; {
+		next := child.NextSibling
+		if child.Type == xhtml.TextNode && strings.TrimSpace(child.Data) == "" {
+			n.RemoveChild(child)
+			changed = true
+		}
+		child = next
+	}
+	return changed
+}
+
+// wrapTextChildrenInFeishuSpans wraps each direct text-node child of n in
+// the canonical Feishu mail-editor inline shape:
+//
+//	<span style="font-family:inherit"><span style="color:rgb(0,0,0)">text</span></span>
+//
+// This is what every text leaf produced by the Feishu mail-editor itself
+// looks like (Quill-like editor model — every text leaf carries default
+// font / color override spans). Without these wrapper spans the renderer
+// falls back to its "untracked text" path, which inserts default-line
+// spacing between siblings — visually a blank line between list items.
+//
+// Whitespace-only text nodes are left untouched so we don't bloat the DOM
+// with wrapper spans around indentation / line breaks. Only direct text
+// children are wrapped; nested element subtrees (e.g. <b>text</b>) are
+// left alone (the user has already structured them; deeper traversal here
+// risks breaking intentional nesting).
+func wrapTextChildrenInFeishuSpans(n *xhtml.Node) bool {
+	changed := false
+	for child := n.FirstChild; child != nil; {
+		next := child.NextSibling
+		if child.Type == xhtml.TextNode && strings.TrimSpace(child.Data) != "" {
+			text := child.Data
+			outer := &xhtml.Node{
+				Type:     xhtml.ElementNode,
+				Data:     "span",
+				DataAtom: atom.Span,
+				Attr:     []xhtml.Attribute{{Key: "style", Val: "font-family:inherit"}},
+			}
+			inner := &xhtml.Node{
+				Type:     xhtml.ElementNode,
+				Data:     "span",
+				DataAtom: atom.Span,
+				Attr:     []xhtml.Attribute{{Key: "style", Val: "color:rgb(0,0,0)"}},
+			}
+			inner.AppendChild(&xhtml.Node{Type: xhtml.TextNode, Data: text})
+			outer.AppendChild(inner)
+			n.RemoveChild(child)
+			if next != nil {
+				n.InsertBefore(outer, next)
+			} else {
+				n.AppendChild(outer)
+			}
+			changed = true
+		}
+		child = next
+	}
+	return changed
+}
+
+// reorderAttrs reorders n.Attr so attributes named in `order` come first
+// (in that exact sequence); remaining attributes are appended after in
+// their original relative order. Lookup is case-insensitive on names.
+//
+// Feishu mail-editor's renderer is observed to walk attributes in
+// declaration order on certain hot paths (notably native list-block /
+// paragraph detection); inline-style declaration order matters for the
+// same reason. Matching the sequence emitted by Feishu mail-editor
+// itself is what flips the renderer onto the native, gap-free path.
+func reorderAttrs(n *xhtml.Node, order []string) {
+	if len(n.Attr) == 0 {
+		return
+	}
+	priority := make(map[string]int, len(order))
+	for i, k := range order {
+		priority[strings.ToLower(k)] = i + 1
+	}
+	sorted := make([]xhtml.Attribute, 0, len(n.Attr))
+	used := make([]bool, len(n.Attr))
+	// Pass 1: insert attrs whose name is in `order`, in `order` sequence.
+	for _, k := range order {
+		lk := strings.ToLower(k)
+		for i, attr := range n.Attr {
+			if used[i] {
+				continue
+			}
+			if strings.ToLower(attr.Key) == lk {
+				sorted = append(sorted, attr)
+				used[i] = true
+				break
+			}
+		}
+	}
+	// Pass 2: append remaining attrs (not in `order`) in original order.
+	for i, attr := range n.Attr {
+		if !used[i] {
+			sorted = append(sorted, attr)
+		}
+	}
+	n.Attr = sorted
+}
+
+// ensureAttr sets the given attribute to val if absent, leaving an
+// existing attribute (even with a different value) untouched. Returns true
+// if the attribute was newly added.
+func ensureAttr(n *xhtml.Node, key, val string) bool {
+	for _, attr := range n.Attr {
+		if strings.ToLower(attr.Key) == strings.ToLower(key) {
+			return false
+		}
+	}
+	n.Attr = append(n.Attr, xhtml.Attribute{Key: key, Val: val})
+	return true
+}
+
+// ensureClass appends the given class name to the element's class attribute
+// (creating the attribute if absent). Whitespace-separated tokens are
+// preserved. Returns true if the class was newly added.
+func ensureClass(n *xhtml.Node, cls string) bool {
+	classIdx := -1
+	existing := ""
+	for i, attr := range n.Attr {
+		if strings.ToLower(attr.Key) == "class" {
+			classIdx = i
+			existing = attr.Val
+			break
+		}
+	}
+	for _, c := range strings.Fields(existing) {
+		if c == cls {
+			return false
+		}
+	}
+	if existing == "" {
+		if classIdx >= 0 {
+			n.Attr[classIdx].Val = cls
+		} else {
+			n.Attr = append(n.Attr, xhtml.Attribute{Key: "class", Val: cls})
+		}
+	} else {
+		n.Attr[classIdx].Val = existing + " " + cls
+	}
+	return true
+}
+
+// ensureFeishuListStyle adds Feishu-native inline styles + the data-list-*
+// marker that the Feishu mail-editor renderer keys off to recognise the
+// list as a native list-block (vs. a fallback ad-hoc list with default
+// browser styling and the visual "blank line between items" issue).
+//
+// For <ol>, also seeds `start="1"` (when absent) and a deterministic
+// `data-ol-id` derived from the node pointer; both are required by Feishu
+// mail-editor to treat the ol as a tracked numbered list. Same id is read
+// by ensureFeishuListItemStyle when stamping each <li> with `data-ol-id`.
+func ensureFeishuListStyle(n *xhtml.Node, rep *Report) {
+	styleChanged := ensureInlineStyleProps(n, [][2]string{
+		{"margin-top", "0px"},
+		{"margin-bottom", "0px"},
+		{"margin-left", "0px"},
+		{"padding-left", "0px"},
+		{"list-style-position", "inside"},
+	})
+	tag := strings.ToLower(n.Data)
+	dataAttr := "data-list-bullet"
+	if tag == "ol" {
+		dataAttr = "data-list-number"
+	}
+	markerChanged := ensureAttr(n, dataAttr, "true")
+	if tag == "ol" {
+		if ensureAttr(n, "start", "1") {
+			markerChanged = true
+		}
+		// data-ol-id is intentionally NOT set on the <ol> itself —
+		// Feishu mail-editor's own output puts data-ol-id only on <li>
+		// children. Putting it on <ol> too triggers a different
+		// renderer code path that reintroduces inter-item spacing.
+	}
+	// Force the canonical attribute order Feishu mail-editor emits.
+	// Order matters for the renderer's native-list-block fast path.
+	if tag == "ol" {
+		reorderAttrs(n, []string{"start", "style", "data-list-number"})
+	} else {
+		reorderAttrs(n, []string{"style", "data-list-bullet"})
+	}
+	// Strip inter-<li> whitespace text nodes (newlines / indentation
+	// from pretty-printed source HTML). Feishu mail-editor renders
+	// these as visible blank lines between list items.
+	if stripWhitespaceTextChildren(n) {
+		markerChanged = true
+	}
+	if styleChanged || markerChanged {
+		rep.Applied = append(rep.Applied, Finding{
+			RuleID:    RuleStyleListNative,
+			Severity:  SeverityWarning,
+			TagOrAttr: n.Data,
+			Excerpt:   excerptOf(n),
+			Hint:      "Added Lark-native inline style + data-list-* marker + canonical attribute order (lets Lark mail-editor recognise as native list-block, avoiding fallback-render blank lines)",
+		})
+	}
+}
+
+// nodeShortID generates an 8-char deterministic id from the node's pointer
+// address. Stable for the lifetime of a single Run() call so siblings in
+// the same <ol> get the same id when they read it via parent.Attr; varies
+// between runs because Go's allocator picks fresh addresses, which is
+// fine — `data-ol-id` is per-ol scoped, not per-document.
+func nodeShortID(n *xhtml.Node) string {
+	h := fnv.New32a()
+	fmt.Fprintf(h, "%p", n)
+	return fmt.Sprintf("%08x", h.Sum32())
+}
+
+// readAttr returns the value of the named attribute (case-insensitive) or
+// "" if absent.
+func readAttr(n *xhtml.Node, key string) string {
+	key = strings.ToLower(key)
+	for _, attr := range n.Attr {
+		if strings.ToLower(attr.Key) == key {
+			return attr.Val
+		}
+	}
+	return ""
+}
+
+// ensureFeishuListItemStyle adds Feishu-native inline styles + class +
+// data-* marker to <li>. The list-style-type defaults to decimal/disc
+// based on the parent <ol>/<ul> kind; class follows Feishu mail-editor
+// internal naming (`temp-li number1` for ol-children, `temp-li bullet1`
+// for ul-children). data-li-line / data-list mark the node as part of a
+// native list-block so the mail-editor renderer doesn't fall back to
+// default browser list styling (which has the "blank line between
+// items" visual).
+func ensureFeishuListItemStyle(n, parent *xhtml.Node, rep *Report) {
+	listType := "disc"
+	listKind := "bullet1"
+	if parent != nil && strings.ToLower(parent.Data) == "ol" {
+		listType = "decimal"
+		listKind = "number1"
+	}
+	// CSS declaration order matches Feishu mail-editor's own output
+	// exactly — the renderer's list-item fast-path is observed to
+	// require this ordering, in addition to the marker set, for the
+	// gap-free native list-block render.
+	styleChanged := ensureInlineStyleProps(n, [][2]string{
+		{"line-height", "1.6"},
+		{"margin-top", "0px"},
+		{"margin-bottom", "0px"},
+		{"padding-left", "0px"},
+		{"display", "list-item"},
+		{"list-style-type", listType},
+		{"font-family", "inherit"},
+		{"font-size", "14px"},
+		{"margin-left", "0px"},
+		{"list-style-position", "inside"},
+	})
+	classChanged := false
+	if ensureClass(n, "temp-li") {
+		classChanged = true
+	}
+	if ensureClass(n, listKind) {
+		classChanged = true
+	}
+	markerChanged := false
+	if ensureAttr(n, "data-li-line", "true") {
+		markerChanged = true
+	}
+	if ensureAttr(n, "data-list", listKind) {
+		markerChanged = true
+	}
+	if ensureAttr(n, "dir", "auto") {
+		markerChanged = true
+	}
+	// For ol-children, derive data-ol-id from parent <ol>'s pointer
+	// (so all siblings under the same <ol> get the same id, but the
+	// <ol> itself stays clean — see ensureFeishuListStyle for why).
+	// data-start is the 1-based position among <li> siblings; it's
+	// what Feishu mail-editor uses to render the visible number prefix.
+	if parent != nil && strings.ToLower(parent.Data) == "ol" {
+		if ensureAttr(n, "data-ol-id", nodeShortID(parent)) {
+			markerChanged = true
+		}
+		pos := 1
+		for c := parent.FirstChild; c != nil && c != n; c = c.NextSibling {
+			if c.Type == xhtml.ElementNode && strings.ToLower(c.Data) == "li" {
+				pos++
+			}
+		}
+		if ensureAttr(n, "data-start", fmt.Sprintf("%d", pos)) {
+			markerChanged = true
+		}
+	}
+	contentChanged := wrapTextChildrenInFeishuSpans(n)
+	// Canonical li attribute order from Feishu mail-editor output:
+	// class, data-li-line, data-list, data-ol-id, data-start, style, dir
+	reorderAttrs(n, []string{"class", "data-li-line", "data-list", "data-ol-id", "data-start", "style", "dir"})
+	if styleChanged || classChanged || markerChanged || contentChanged {
+		rep.Applied = append(rep.Applied, Finding{
+			RuleID:    RuleStyleListItemNative,
+			Severity:  SeverityWarning,
+			TagOrAttr: "li",
+			Excerpt:   excerptOf(n),
+			Hint:      "Added Lark-native inline style + class (temp-li " + listKind + ") + data marker + double-span text wrap + canonical attribute order",
+		})
+	}
+}
+
+// ensureFeishuBlockquoteStyle adds Feishu-native inline styles to
+// <blockquote>: the iconic 2px left bar in subtle grey + grey body text.
+func ensureFeishuBlockquoteStyle(n *xhtml.Node, rep *Report) {
+	if ensureInlineStyleProps(n, [][2]string{
+		{"padding-left", "0px"},
+		{"color", "rgb(100,106,115)"},
+		{"border-left", "2px solid rgb(187,191,196)"},
+		{"margin", "0px"},
+	}) {
+		rep.Applied = append(rep.Applied, Finding{
+			RuleID:    RuleStyleBlockquoteNative,
+			Severity:  SeverityWarning,
+			TagOrAttr: "blockquote",
+			Excerpt:   excerptOf(n),
+			Hint:      "Added Lark-native inline style (2px left grey bar + grey text)",
+		})
+	}
+}
+
+// ensureFeishuLinkStyle adds Feishu-native class + inline styles to <a>:
+// `class="not-doclink"` is the marker the Feishu mail renderer keys off to
+// avoid treating the link as an internal doc-share, and the inline style
+// matches the editor's own colour and decoration.
+func ensureFeishuLinkStyle(n *xhtml.Node, rep *Report) {
+	classChanged := ensureClass(n, "not-doclink")
+	styleChanged := ensureInlineStyleProps(n, [][2]string{
+		{"cursor", "pointer"},
+		{"text-decoration", "none"},
+		{"color", "rgb(20,86,240)"},
+	})
+	if classChanged || styleChanged {
+		rep.Applied = append(rep.Applied, Finding{
+			RuleID:    RuleStyleLinkNative,
+			Severity:  SeverityWarning,
+			TagOrAttr: "a",
+			Excerpt:   excerptOf(n),
+			Hint:      "Added Lark-native link style (class=not-doclink + Lark blue + no underline)",
+		})
+	}
+}
+
+// rewritePToFeishuDiv changes <p>...</p> in place to
+//
+//	<div style="margin-top:4px;margin-bottom:4px;line-height:1.6">
+//	  <div dir="auto" style="font-size:14px">...children...</div>
+//	</div>
+//
+// User-supplied attributes on the original <p> are preserved on the outer
+// div; the inner div is created fresh. If the <p> already declares any of
+// margin-top / margin-bottom / line-height the user value wins.
+//
+// This is the only Feishu-native pass that mutates the tree shape (vs. just
+// adding inline styles). Children are re-parented to the inner div so all
+// their existing styles / classes survive untouched.
+func rewritePToFeishuDiv(n *xhtml.Node, rep *Report) {
+	// Detach existing children (kept in order).
+	var children []*xhtml.Node
+	for c := n.FirstChild; c != nil; {
+		nx := c.NextSibling
+		n.RemoveChild(c)
+		children = append(children, c)
+		c = nx
+	}
+
+	// Mutate <p> → <div>.
+	n.Data = "div"
+	n.DataAtom = atom.Div
+
+	// Add outer wrapper inline styles (only fills missing properties).
+	ensureInlineStyleProps(n, [][2]string{
+		{"margin-top", "4px"},
+		{"margin-bottom", "4px"},
+		{"line-height", "1.6"},
+	})
+
+	// Build inner <div dir="auto" style="font-size:14px">.
+	inner := &xhtml.Node{
+		Type:     xhtml.ElementNode,
+		Data:     "div",
+		DataAtom: atom.Div,
+		Attr: []xhtml.Attribute{
+			{Key: "dir", Val: "auto"},
+			{Key: "style", Val: "font-size:14px"},
+		},
+	}
+	for _, c := range children {
+		inner.AppendChild(c)
+	}
+	n.AppendChild(inner)
+
+	rep.Applied = append(rep.Applied, Finding{
+		RuleID:    RuleStyleParaWrapper,
+		Severity:  SeverityWarning,
+		TagOrAttr: "p",
+		Excerpt:   excerptOf(n),
+		Hint:      "Rewritten as Lark-native double-wrapped div paragraph (outer margin/line-height + inner dir/font-size)",
+	})
+}
diff --git a/shortcuts/mail/lint/linter_test.go b/shortcuts/mail/lint/linter_test.go
new file mode 100644
index 000000000..c6179481e
--- /dev/null
+++ b/shortcuts/mail/lint/linter_test.go
@@ -0,0 +1,901 @@
+// Copyright (c) 2026 Lark Technologies Pte. Ltd.
+// SPDX-License-Identifier: MIT
+
+package lint
+
+import (
+	"strings"
+	"testing"
+)
+
+// =====================================================================
+// Tier 1 — pass-through tags / attrs / styles (spec §4.4 row "通过").
+// =====================================================================
+
+// TestRun_AllowedTagsPassThrough verifies that the canonical Feishu-native
+// tag set passes through without findings (spec §4.4 row "通过").
+func TestRun_AllowedTagsPassThrough(t *testing.T) {
+	cases := []struct {
+		name string
+		html string
+	}{
+		{"plain paragraph", `<p>hello world</p>`},
+		{"div with span", `<div><span>nested</span></div>`},
+		{"unordered list", `<ul><li>a</li><li>b</li></ul>`},
+		{"ordered list", `<ol><li>x</li></ol>`},
+		{"table", `<table><thead><tr><th>h</th></tr></thead><tbody><tr><td>v</td></tr></tbody></table>`},
+		{"headings", `<h1>t</h1><h2>t</h2><h3>t</h3><h4>t</h4><h5>t</h5><h6>t</h6>`},
+		{"emphasis", `<b>b</b><i>i</i><em>e</em><strong>s</strong><u>u</u><s>k</s>`},
+		{"sub sup", `<sub>s</sub><sup>p</sup>`},
+		{"hr br", `<p>x<br>y</p><hr>`},
+		{"blockquote", `<blockquote>q</blockquote>`},
+		{"code pre", `<pre><code>x = 1</code></pre>`},
+		{"safe href", `<a href="https://example.com">link</a>`},
+		{"mailto href", `<a href="mailto:a@b.c">m</a>`},
+		{"cid img", `<img src="cid:abc123">`},
+		{"data:image png", `<img src="data:image/png;base64,iVBOR" alt="x">`},
+		{"feishu native quote class",
+			`<div class="adit-html-block adit-html-block--collapsed"><div>x</div></div>`},
+	}
+
+	// Feishu-native autofix rules apply to <p>/<ul>/<ol>/<li>/<blockquote>/<a>
+	// — those are not "violations" so must not be flagged as errors. We
+	// allow STYLE_*_NATIVE_INLINE_APPLIED + STYLE_PARA_WRAPPER_REWRITTEN
+	// findings here but reject any other rule.
+	feishuNativeRules := map[string]bool{
+		RuleStyleListNative:       true,
+		RuleStyleListItemNative:   true,
+		RuleStyleBlockquoteNative: true,
+		RuleStyleLinkNative:       true,
+		RuleStyleParaWrapper:      true,
+	}
+	for _, tc := range cases {
+		t.Run(tc.name, func(t *testing.T) {
+			rep := Run(tc.html, Options{AutoFix: true})
+			if len(rep.Blocked) != 0 {
+				t.Errorf("expected no errors, got %d: %+v", len(rep.Blocked), rep.Blocked)
+			}
+			for _, f := range rep.Applied {
+				if !feishuNativeRules[f.RuleID] {
+					t.Errorf("unexpected non-Feishu-native warning: %+v", f)
+				}
+			}
+		})
+	}
+}
+
+// TestRun_AllowedStylePropertiesPassThrough verifies all spec §4.4 style
+// allow-list properties survive a round-trip without dropping.
+func TestRun_AllowedStylePropertiesPassThrough(t *testing.T) {
+	allowed := []string{
+		"color:rgb(31,35,41)",
+		"background-color:rgb(245,246,247)",
+		"font-size:14px",
+		"font-weight:bold",
+		"font-style:italic",
+		"text-align:center",
+		"text-decoration:underline",
+		"line-height:1.6",
+		"padding:8px",
+		"margin:12px",
+		"border:1px solid #ccc",
+		"border-top:1px solid red",
+		"border-bottom:2px solid blue",
+		"border-left:1px",
+		"border-right:1px",
+		"width:100%",
+		"height:auto",
+		"display:block",
+		"text-indent:2em",
+	}
+	for _, prop := range allowed {
+		t.Run(prop, func(t *testing.T) {
+			html := `<p style="` + prop + `">x</p>`
+			rep := Run(html, Options{AutoFix: true})
+			for _, f := range rep.Applied {
+				if f.RuleID == RuleStylePropertyDropped {
+					t.Errorf("property %q unexpectedly dropped: %+v", prop, f)
+				}
+			}
+		})
+	}
+}
+
+// =====================================================================
+// Tier 2 — warning + autofix tags (spec §4.4 row "警告 + 自动修复").
+// =====================================================================
+
+// TestRun_FontTagAutofixedToSpan verifies <font color="..."> rewrites to
+// <span style="color:..."> with AutoFix=true.
+func TestRun_FontTagAutofixedToSpan(t *testing.T) {
+	// Use <div> wrapper to avoid the Feishu-native paragraph autofix
+	// firing alongside the <font> rewrite.
+	rep := Run(`<div><font color="red">x</font></div>`, Options{AutoFix: true})
+	if len(rep.Applied) != 1 {
+		t.Fatalf("expected 1 warning, got %d: %+v", len(rep.Applied), rep.Applied)
+	}
+	got := rep.Applied[0]
+	if got.RuleID != RuleTagFontToSpan {
+		t.Errorf("rule = %s, want %s", got.RuleID, RuleTagFontToSpan)
+	}
+	if got.Severity != SeverityWarning {
+		t.Errorf("severity = %s, want warning", got.Severity)
+	}
+	if !strings.Contains(rep.CleanedHTML, "<span") || strings.Contains(rep.CleanedHTML, "<font") {
+		t.Errorf("expected <font>→<span> rewrite, cleaned=%q", rep.CleanedHTML)
+	}
+	if !strings.Contains(rep.CleanedHTML, "color:red") {
+		t.Errorf("expected color preserved as inline style, cleaned=%q", rep.CleanedHTML)
+	}
+}
+
+// TestRun_FontTagSizeMappedToPx checks legacy <font size="N"> → font-size:Npx.
+func TestRun_FontTagSizeMappedToPx(t *testing.T) {
+	rep := Run(`<font size="3">x</font>`, Options{AutoFix: true})
+	if !strings.Contains(rep.CleanedHTML, "font-size:16px") {
+		t.Errorf("expected size=3 → 16px, cleaned=%q", rep.CleanedHTML)
+	}
+}
+
+// TestRun_CenterTagAutofixedToDiv verifies <center> → <div text-align:center>.
+func TestRun_CenterTagAutofixedToDiv(t *testing.T) {
+	rep := Run(`<center>x</center>`, Options{AutoFix: true})
+	if len(rep.Applied) != 1 {
+		t.Fatalf("expected 1 warning, got %d", len(rep.Applied))
+	}
+	if rep.Applied[0].RuleID != RuleTagCenterToDiv {
+		t.Errorf("rule = %s, want %s", rep.Applied[0].RuleID, RuleTagCenterToDiv)
+	}
+	if !strings.Contains(rep.CleanedHTML, "<div") || !strings.Contains(rep.CleanedHTML, "text-align:center") {
+		t.Errorf("expected <center>→<div text-align:center>, cleaned=%q", rep.CleanedHTML)
+	}
+	if strings.Contains(rep.CleanedHTML, "<center") {
+		t.Errorf("<center> should have been replaced, cleaned=%q", rep.CleanedHTML)
+	}
+}
+
+// TestRun_MarqueeBlinkCollapseToSpan verifies <marquee>/<blink> → <span>.
+func TestRun_MarqueeBlinkCollapseToSpan(t *testing.T) {
+	for _, tag := range []string{"marquee", "blink"} {
+		rep := Run("<"+tag+">x</"+tag+">", Options{AutoFix: true})
+		if len(rep.Applied) != 1 {
+			t.Errorf("[%s] expected 1 warning, got %d", tag, len(rep.Applied))
+			continue
+		}
+		if !strings.Contains(rep.CleanedHTML, "<span") {
+			t.Errorf("[%s] expected <span> wrapper, cleaned=%q", tag, rep.CleanedHTML)
+		}
+	}
+}
+
+// TestRun_WarningWithAutoFixFalseKeepsOriginalMarkup verifies that
+// AutoFix=false surfaces the warning but does NOT rewrite the input.
+func TestRun_WarningWithAutoFixFalseKeepsOriginalMarkup(t *testing.T) {
+	rep := Run(`<font color="red">x</font>`, Options{AutoFix: false})
+	if len(rep.Applied) != 1 {
+		t.Fatalf("expected 1 warning, got %d", len(rep.Applied))
+	}
+	if !strings.Contains(rep.CleanedHTML, "<font") {
+		t.Errorf("expected <font> preserved when AutoFix=false, cleaned=%q", rep.CleanedHTML)
+	}
+}
+
+// TestRun_StrictPromotesWarningsToErrors verifies that Strict=true upgrades
+// warnings to errors (used by `+lint-html --strict`).
+func TestRun_StrictPromotesWarningsToErrors(t *testing.T) {
+	rep := Run(`<font color="red">x</font>`, Options{AutoFix: true, Strict: true})
+	if len(rep.Blocked) != 1 {
+		t.Fatalf("expected 1 error, got %d", len(rep.Blocked))
+	}
+	if rep.Blocked[0].Severity != SeverityError {
+		t.Errorf("severity = %s, want error", rep.Blocked[0].Severity)
+	}
+}
+
+// =====================================================================
+// Tier 3 — error / delete tags (spec §4.4 row "错误（删除）").
+// =====================================================================
+
+// TestRun_ScriptTagBlocked checks that <script> is removed unconditionally.
+func TestRun_ScriptTagBlocked(t *testing.T) {
+	for _, autoFix := range []bool{true, false} {
+		t.Run("autofix-"+boolStr(autoFix), func(t *testing.T) {
+			rep := Run(`<p>safe</p><script>alert(1)</script><p>after</p>`, Options{AutoFix: autoFix})
+			if len(rep.Blocked) != 1 {
+				t.Fatalf("expected 1 blocked finding, got %d", len(rep.Blocked))
+			}
+			if rep.Blocked[0].RuleID != RuleTagScriptBlocked {
+				t.Errorf("rule = %s, want %s", rep.Blocked[0].RuleID, RuleTagScriptBlocked)
+			}
+			if strings.Contains(rep.CleanedHTML, "<script") || strings.Contains(rep.CleanedHTML, "alert(1)") {
+				t.Errorf("<script> content should be deleted, cleaned=%q", rep.CleanedHTML)
+			}
+			if !strings.Contains(rep.CleanedHTML, "safe") || !strings.Contains(rep.CleanedHTML, "after") {
+				t.Errorf("surrounding content lost, cleaned=%q", rep.CleanedHTML)
+			}
+		})
+	}
+}
+
+// TestRun_BlockedTagsRemoved iterates all error-tier tags.
+func TestRun_BlockedTagsRemoved(t *testing.T) {
+	cases := map[string]string{
+		`<iframe src="x"></iframe>`:               RuleTagIframeBlocked,
+		`<object data="x"></object>`:              RuleTagObjectBlocked,
+		`<embed src="x">`:                         RuleTagEmbedBlocked,
+		`<form action="x"><input></form>`:         RuleTagFormBlocked,
+		`<link rel="stylesheet" href="x.css">`:    RuleTagLinkBlocked,
+		`<meta http-equiv="refresh" content="0">`: RuleTagMetaBlocked,
+		`<base href="https://evil.com">`:          RuleTagBaseBlocked,
+	}
+	for input, wantRule := range cases {
+		t.Run(input[:min(len(input), 30)], func(t *testing.T) {
+			rep := Run(input, Options{AutoFix: true})
+			found := false
+			for _, f := range rep.Blocked {
+				if f.RuleID == wantRule {
+					found = true
+					break
+				}
+			}
+			if !found {
+				t.Errorf("expected rule %s, got %+v", wantRule, rep.Blocked)
+			}
+		})
+	}
+}
+
+// TestRun_EventHandlerAttrBlocked verifies on*-handlers are stripped (spec
+// §4.4 — "属性 on*（onclick 等）").
+func TestRun_EventHandlerAttrBlocked(t *testing.T) {
+	rep := Run(`<p onclick="alert(1)" id="ok">x</p>`, Options{AutoFix: true})
+	if len(rep.Blocked) != 1 {
+		t.Fatalf("expected 1 blocked finding, got %d", len(rep.Blocked))
+	}
+	if rep.Blocked[0].RuleID != RuleAttrEventHandlerBlocked {
+		t.Errorf("rule = %s, want %s", rep.Blocked[0].RuleID, RuleAttrEventHandlerBlocked)
+	}
+	if strings.Contains(rep.CleanedHTML, "onclick") {
+		t.Errorf("onclick should be stripped, cleaned=%q", rep.CleanedHTML)
+	}
+	if !strings.Contains(rep.CleanedHTML, `id="ok"`) {
+		t.Errorf("non-handler attrs should survive, cleaned=%q", rep.CleanedHTML)
+	}
+}
+
+// TestRun_OnErrorAttrBlocked tests one of the more common XSS vectors.
+func TestRun_OnErrorAttrBlocked(t *testing.T) {
+	rep := Run(`<img src="cid:x" onerror="alert(1)">`, Options{AutoFix: true})
+	hasErr := false
+	for _, f := range rep.Blocked {
+		if f.RuleID == RuleAttrEventHandlerBlocked && f.TagOrAttr == "onerror" {
+			hasErr = true
+		}
+	}
+	if !hasErr {
+		t.Errorf("onerror should fire, got %+v", rep.Blocked)
+	}
+}
+
+// =====================================================================
+// URL scheme allow-list (spec §4.4 — "URL scheme").
+// =====================================================================
+
+// TestRun_JavaScriptURLBlocked verifies javascript: hrefs are stripped.
+func TestRun_JavaScriptURLBlocked(t *testing.T) {
+	rep := Run(`<a href="javascript:alert(1)">click</a>`, Options{AutoFix: true})
+	hasErr := false
+	for _, f := range rep.Blocked {
+		if f.RuleID == RuleAttrJSURLBlocked {
+			hasErr = true
+		}
+	}
+	if !hasErr {
+		t.Errorf("javascript: URL should fire ATTR_JS_URL_BLOCKED, got %+v", rep.Blocked)
+	}
+	if strings.Contains(rep.CleanedHTML, "javascript:") {
+		t.Errorf("javascript: should be stripped, cleaned=%q", rep.CleanedHTML)
+	}
+}
+
+// TestRun_VBScriptURLBlocked verifies vbscript: is rejected.
+func TestRun_VBScriptURLBlocked(t *testing.T) {
+	rep := Run(`<a href="vbscript:msgbox 1">x</a>`, Options{AutoFix: true})
+	if len(rep.Blocked) == 0 {
+		t.Errorf("expected vbscript: to be blocked, got 0 findings")
+	}
+}
+
+// TestRun_DataNonImageURLBlocked verifies data:text/html is rejected
+// (only data:image/* is allowed per spec §4.4).
+func TestRun_DataNonImageURLBlocked(t *testing.T) {
+	rep := Run(`<img src="data:text/html,<script>1</script>">`, Options{AutoFix: true})
+	if len(rep.Blocked) == 0 {
+		t.Errorf("expected data:text/html to be blocked")
+	}
+}
+
+// TestRun_DataImageAllowed verifies data:image/png passes.
+func TestRun_DataImageAllowed(t *testing.T) {
+	rep := Run(`<img src="data:image/png;base64,iVBORw0KGg=">`, Options{AutoFix: true})
+	for _, f := range rep.Blocked {
+		if f.RuleID == RuleAttrJSURLBlocked {
+			t.Errorf("data:image/* should pass, got %+v", f)
+		}
+	}
+}
+
+// TestRun_RelativeURLAllowed verifies relative URLs (no scheme) pass.
+func TestRun_RelativeURLAllowed(t *testing.T) {
+	rep := Run(`<img src="./local.png"><a href="/path">x</a>`, Options{AutoFix: true})
+	for _, f := range rep.Blocked {
+		if f.RuleID == RuleAttrJSURLBlocked || f.RuleID == RuleAttrUnsafeSchemeBlocked {
+			t.Errorf("relative URL should pass, got %+v", f)
+		}
+	}
+}
+
+// =====================================================================
+// Style property allow-list (spec §4.4 — last paragraph).
+// =====================================================================
+
+// TestRun_StylePropertyDropped verifies non-allow-list properties drop.
+func TestRun_StylePropertyDropped(t *testing.T) {
+	rep := Run(`<p style="color:red; position:absolute; z-index:99">x</p>`, Options{AutoFix: true})
+	dropped := []string{}
+	for _, f := range rep.Applied {
+		if f.RuleID == RuleStylePropertyDropped {
+			dropped = append(dropped, f.TagOrAttr)
+		}
+	}
+	if !sliceContains(dropped, "style.position") {
+		t.Errorf("expected position to be dropped, got %v", dropped)
+	}
+	if !sliceContains(dropped, "style.z-index") {
+		t.Errorf("expected z-index to be dropped, got %v", dropped)
+	}
+	if strings.Contains(rep.CleanedHTML, "position:") || strings.Contains(rep.CleanedHTML, "z-index:") {
+		t.Errorf("dropped properties should be removed from cleaned style, cleaned=%q", rep.CleanedHTML)
+	}
+	if !strings.Contains(rep.CleanedHTML, "color:red") {
+		t.Errorf("allowed property should survive, cleaned=%q", rep.CleanedHTML)
+	}
+}
+
+// TestRun_StyleBorderPrefixAllowed verifies the border-* prefix rule.
+func TestRun_StyleBorderPrefixAllowed(t *testing.T) {
+	rep := Run(`<p style="border-top:1px; border-bottom-color:red; border-radius:4px">x</p>`, Options{AutoFix: true})
+	for _, f := range rep.Applied {
+		if f.RuleID == RuleStylePropertyDropped {
+			t.Errorf("border-* should pass, got %+v", f)
+		}
+	}
+}
+
+// TestRun_FeishuListShorthandMarginPreserved guards the nested-list indent
+// regression: when a user writes shorthand `margin:0 0 0 24px` on an inner
+// <ul> (mail-editor's own native nested-list shape), the Feishu-list autofix
+// must NOT clobber it by appending `margin-left:0`. ensureInlineStyleProps
+// is supposed to skip props the user already declared, but earlier
+// hasInlineStyleProp was only matching longhand `margin-left:` literally
+// and missed the shorthand form, causing 24px indents to be reset to 0.
+func TestRun_FeishuListShorthandMarginPreserved(t *testing.T) {
+	in := `<ul style="margin:0px 0px 0px 24px;padding-left:0px;list-style-position:inside" data-list-bullet="true"><li class="temp-li bullet2" data-li-line="true" data-list="bullet2" style="line-height:1.6;list-style-type:circle;font-size:14px" dir="auto"><span style="font-family:inherit"><span style="color:rgb(0,0,0)">indented</span></span></li></ul>`
+	rep := Run(in, Options{AutoFix: true})
+	cleaned := rep.CleanedHTML
+	// Extract just the <ul ...> opening tag's style attr (li has its own
+	// independent margin-left:0 longhand which is correct — list indent
+	// belongs on the container, not the item).
+	ulOpen := cleaned
+	if i := strings.Index(ulOpen, ">"); i >= 0 {
+		ulOpen = ulOpen[:i]
+	}
+	if !strings.Contains(ulOpen, "margin:0px 0px 0px 24px") {
+		t.Errorf("shorthand margin with 24px left should survive on <ul>, ulOpen=%q", ulOpen)
+	}
+	// The bug signature: extra `margin-left:` appended after the shorthand
+	// on the <ul> element itself (CSS rule says the later one wins, so any
+	// margin-left:0 after the shorthand resets the indent to 0).
+	if strings.Contains(ulOpen, "margin-left") {
+		t.Errorf("autofix must not append margin-left longhand onto <ul> when shorthand already declares it, ulOpen=%q", ulOpen)
+	}
+}
+
+// =====================================================================
+// CleanedHTML output / contract guarantees (spec §4.3).
+// =====================================================================
+
+// TestRun_EmptyArraysAlwaysPresent verifies the report has non-nil empty
+// slices when nothing is found (the JSON envelope contract requires `[]`,
+// not `null`).
+func TestRun_EmptyArraysAlwaysPresent(t *testing.T) {
+	// Use <div> instead of <p> to avoid the Feishu-native paragraph
+	// rewrite autofix, which would surface a finding even on otherwise
+	// clean input.
+	rep := Run(`<div>nothing here</div>`, Options{AutoFix: true})
+	if rep.Applied == nil || rep.Blocked == nil {
+		t.Errorf("Applied/Blocked must be non-nil; got applied=%v blocked=%v", rep.Applied, rep.Blocked)
+	}
+	if len(rep.Applied) != 0 || len(rep.Blocked) != 0 {
+		t.Errorf("expected empty findings, got applied=%d blocked=%d", len(rep.Applied), len(rep.Blocked))
+	}
+}
+
+// TestEmptyReport_HasContractFields covers the helper used by compose 5's
+// plain-text branch.
+func TestEmptyReport_HasContractFields(t *testing.T) {
+	rep := EmptyReport(`plain text`)
+	if rep.Applied == nil {
+		t.Error("Applied must be non-nil")
+	}
+	if rep.Blocked == nil {
+		t.Error("Blocked must be non-nil")
+	}
+	if rep.CleanedHTML != "plain text" {
+		t.Errorf("CleanedHTML = %q, want %q", rep.CleanedHTML, "plain text")
+	}
+}
+
+// TestRun_CleanedHTMLPreservesStructure verifies that the round-trip through
+// the parser doesn't accidentally lose user content.
+func TestRun_CleanedHTMLPreservesStructure(t *testing.T) {
+	html := `<div style="line-height:1.6"><h3>title</h3><p>body <b>bold</b> end</p><ul><li>a</li><li>b</li></ul></div>`
+	rep := Run(html, Options{AutoFix: true})
+	if len(rep.Blocked) != 0 {
+		t.Fatalf("unexpected blocked: %+v", rep.Blocked)
+	}
+	// Feishu-native autofix expected to fire on <p>, <ul>, <li> — content
+	// must still survive untouched even though structure is augmented.
+	for _, want := range []string{"line-height:1.6", "<h3>", "title", "<b>", "bold", "<ul", "<li", "</ul>"} {
+		if !strings.Contains(rep.CleanedHTML, want) {
+			t.Errorf("expected %q in cleaned, got %q", want, rep.CleanedHTML)
+		}
+	}
+}
+
+// TestRun_EmptyInput verifies the lib short-circuits cleanly on empty input.
+func TestRun_EmptyInput(t *testing.T) {
+	rep := Run("", Options{AutoFix: true})
+	if rep.CleanedHTML != "" {
+		t.Errorf("CleanedHTML = %q, want empty", rep.CleanedHTML)
+	}
+	if len(rep.Applied) != 0 || len(rep.Blocked) != 0 {
+		t.Errorf("empty input must produce empty findings")
+	}
+}
+
+// TestRun_HasErrorFindingsFlag verifies the flag tracks blocked findings.
+func TestRun_HasErrorFindingsFlag(t *testing.T) {
+	rep := Run(`<script>x</script>`, Options{AutoFix: true})
+	if !rep.HasErrorFindings {
+		t.Error("expected HasErrorFindings=true")
+	}
+	clean := Run(`<p>safe</p>`, Options{AutoFix: true})
+	if clean.HasErrorFindings {
+		t.Error("expected HasErrorFindings=false on clean HTML")
+	}
+}
+
+// TestRun_HasWarningFindingsFlag verifies the flag tracks warnings.
+func TestRun_HasWarningFindingsFlag(t *testing.T) {
+	rep := Run(`<font color="red">x</font>`, Options{AutoFix: true})
+	if !rep.HasWarningFindings {
+		t.Error("expected HasWarningFindings=true")
+	}
+}
+
+// =====================================================================
+// Excerpt cap (S2 contract «Server-mirrored constraints»).
+// =====================================================================
+
+// TestTruncateExcerpt_RespectsCap verifies the per-finding excerpt cap.
+func TestTruncateExcerpt_RespectsCap(t *testing.T) {
+	long := strings.Repeat("x", MaxExcerptBytes+50)
+	got := truncateExcerpt(long)
+	if len(got) > MaxExcerptBytes {
+		t.Errorf("excerpt len %d exceeds cap %d", len(got), MaxExcerptBytes)
+	}
+	if !strings.HasSuffix(got, " ...") {
+		t.Errorf("expected truncation suffix, got %q", got[len(got)-10:])
+	}
+}
+
+// TestRun_ExcerptCappedForLargeOffender verifies large blocked content
+// produces a short excerpt (envelope size protection).
+func TestRun_ExcerptCappedForLargeOffender(t *testing.T) {
+	bigAttr := strings.Repeat("a", MaxExcerptBytes*2)
+	rep := Run(`<a href="javascript:`+bigAttr+`">x</a>`, Options{AutoFix: true})
+	if len(rep.Blocked) == 0 {
+		t.Fatal("expected blocked finding")
+	}
+	for _, f := range rep.Blocked {
+		if len(f.Excerpt) > MaxExcerptBytes {
+			t.Errorf("excerpt len %d exceeds cap %d", len(f.Excerpt), MaxExcerptBytes)
+		}
+	}
+}
+
+// =====================================================================
+// Helpers.
+// =====================================================================
+
+func boolStr(b bool) string {
+	if b {
+		return "true"
+	}
+	return "false"
+}
+
+func sliceContains(haystack []string, needle string) bool {
+	for _, s := range haystack {
+		if s == needle {
+			return true
+		}
+	}
+	return false
+}
+
+func min(a, b int) int {
+	if a < b {
+		return a
+	}
+	return b
+}
+
+// =====================================================================
+// Additional coverage to lift the package to ≥ 90% line coverage
+// (sprint requirement S4 item 7).
+// =====================================================================
+
+// TestMapFontSize_ExhaustiveSpan covers every <font size="N"> mapping
+// + invalid values fall through to "" so the property is dropped.
+func TestMapFontSize_ExhaustiveSpan(t *testing.T) {
+	cases := map[string]string{
+		"1":   "10px",
+		"2":   "13px",
+		"3":   "16px",
+		"4":   "18px",
+		"5":   "24px",
+		"6":   "32px",
+		"7":   "48px",
+		"":    "",
+		"8":   "",
+		"abc": "",
+		"3.5": "",
+		" 3 ": "16px",
+	}
+	for raw, want := range cases {
+		got := mapFontSize(raw)
+		if got != want {
+			t.Errorf("mapFontSize(%q) = %q, want %q", raw, got, want)
+		}
+	}
+}
+
+// TestRun_FontTagWithFaceMappedToFontFamily ensures <font face="..."> →
+// font-family inline style.
+func TestRun_FontTagWithFaceMappedToFontFamily(t *testing.T) {
+	rep := Run(`<font face="Arial">x</font>`, Options{AutoFix: true})
+	if !strings.Contains(rep.CleanedHTML, "font-family:Arial") {
+		t.Errorf("expected font-family preserved, cleaned=%q", rep.CleanedHTML)
+	}
+}
+
+// TestRun_FontTagWithExistingStyleMerged ensures distillation merges with an
+// existing style attribute on the same element.
+func TestRun_FontTagWithExistingStyleMerged(t *testing.T) {
+	rep := Run(`<font color="red" style="line-height:1.6">x</font>`, Options{AutoFix: true})
+	if !strings.Contains(rep.CleanedHTML, "line-height:1.6") {
+		t.Errorf("expected line-height retained, cleaned=%q", rep.CleanedHTML)
+	}
+	if !strings.Contains(rep.CleanedHTML, "color:red") {
+		t.Errorf("expected color merged, cleaned=%q", rep.CleanedHTML)
+	}
+}
+
+// TestRun_CenterTagWithExistingStyleMerged ensures <center>'s style merge.
+func TestRun_CenterTagWithExistingStyleMerged(t *testing.T) {
+	rep := Run(`<center style="line-height:1.6">x</center>`, Options{AutoFix: true})
+	if !strings.Contains(rep.CleanedHTML, "text-align:center") {
+		t.Errorf("expected text-align:center, cleaned=%q", rep.CleanedHTML)
+	}
+	if !strings.Contains(rep.CleanedHTML, "line-height:1.6") {
+		t.Errorf("expected line-height preserved, cleaned=%q", rep.CleanedHTML)
+	}
+}
+
+// TestRun_MarqueeRetainsClassAndID verifies marquee → span keeps class/id.
+func TestRun_MarqueeRetainsClassAndID(t *testing.T) {
+	rep := Run(`<marquee class="cls" id="x" direction="left">y</marquee>`, Options{AutoFix: true})
+	if !strings.Contains(rep.CleanedHTML, `class="cls"`) {
+		t.Errorf("expected class preserved, cleaned=%q", rep.CleanedHTML)
+	}
+	if strings.Contains(rep.CleanedHTML, `direction`) {
+		t.Errorf("expected marquee-specific attrs stripped, cleaned=%q", rep.CleanedHTML)
+	}
+}
+
+// TestRun_UnknownSchemeWarning verifies an unknown URL scheme produces a
+// warning (not an error) and is dropped only when AutoFix is true.
+func TestRun_UnknownSchemeWarning(t *testing.T) {
+	t.Run("autofix-true drops attr", func(t *testing.T) {
+		rep := Run(`<a href="webcal://x">x</a>`, Options{AutoFix: true})
+		gotWarn := false
+		for _, f := range rep.Applied {
+			if f.RuleID == RuleAttrUnsafeSchemeBlocked {
+				gotWarn = true
+			}
+		}
+		if !gotWarn {
+			t.Errorf("expected ATTR_UNSAFE_SCHEME_BLOCKED warning, got %+v", rep.Applied)
+		}
+		if strings.Contains(rep.CleanedHTML, "webcal:") {
+			t.Errorf("expected unknown scheme stripped under AutoFix, cleaned=%q", rep.CleanedHTML)
+		}
+	})
+	t.Run("autofix-false keeps attr", func(t *testing.T) {
+		rep := Run(`<a href="webcal://x">x</a>`, Options{AutoFix: false})
+		if !strings.Contains(rep.CleanedHTML, "webcal:") {
+			t.Errorf("expected unknown scheme kept under AutoFix=false, cleaned=%q", rep.CleanedHTML)
+		}
+	})
+	t.Run("strict promotes warning", func(t *testing.T) {
+		rep := Run(`<a href="webcal://x">x</a>`, Options{AutoFix: true, Strict: true})
+		gotErr := false
+		for _, f := range rep.Blocked {
+			if f.RuleID == RuleAttrUnsafeSchemeBlocked {
+				gotErr = true
+			}
+		}
+		if !gotErr {
+			t.Errorf("expected unsafe-scheme to be promoted to error in strict, got %+v", rep.Blocked)
+		}
+	})
+}
+
+// TestRun_WhitespaceObfuscatedJavaScriptScheme verifies "java\tscript:..."
+// is still caught after control-byte stripping in classifyURLValue.
+func TestRun_WhitespaceObfuscatedJavaScriptScheme(t *testing.T) {
+	rep := Run("<a href=\"java\tscript:alert(1)\">x</a>", Options{AutoFix: true})
+	gotErr := false
+	for _, f := range rep.Blocked {
+		if f.RuleID == RuleAttrJSURLBlocked {
+			gotErr = true
+		}
+	}
+	if !gotErr {
+		t.Errorf("expected obfuscated javascript: to be caught, got %+v", rep.Blocked)
+	}
+}
+
+// TestRun_FileSchemeBlocked verifies file: URLs are rejected.
+func TestRun_FileSchemeBlocked(t *testing.T) {
+	rep := Run(`<a href="file:///etc/passwd">x</a>`, Options{AutoFix: true})
+	if len(rep.Blocked) == 0 {
+		t.Error("expected file: to be blocked")
+	}
+}
+
+// TestRun_StyleMalformedDeclarationDropped verifies a property without a
+// colon delimiter is treated as malformed and dropped.
+func TestRun_StyleMalformedDeclarationDropped(t *testing.T) {
+	rep := Run(`<p style="color:red; malformed; line-height:1.6">x</p>`, Options{AutoFix: true})
+	gotMalformed := false
+	for _, f := range rep.Applied {
+		if f.RuleID == RuleStylePropertyDropped && f.TagOrAttr == "style.malformed" {
+			gotMalformed = true
+		}
+	}
+	if !gotMalformed {
+		t.Errorf("expected malformed declaration to be dropped, got %+v", rep.Applied)
+	}
+	if !strings.Contains(rep.CleanedHTML, "color:red") || !strings.Contains(rep.CleanedHTML, "line-height:1.6") {
+		t.Errorf("valid declarations should survive, cleaned=%q", rep.CleanedHTML)
+	}
+}
+
+// TestRun_StyleAllPropertiesDroppedRemovesAttribute verifies the style
+// attribute is removed entirely when every property is invalid.
+func TestRun_StyleAllPropertiesDroppedRemovesAttribute(t *testing.T) {
+	// Use <div> to avoid the Feishu-native paragraph autofix, which adds
+	// a fresh style attribute on the rewritten outer wrapper.
+	rep := Run(`<div style="position:absolute; z-index:99">x</div>`, Options{AutoFix: true})
+	if strings.Contains(rep.CleanedHTML, "style=") {
+		t.Errorf("style attribute should be removed when all props invalid, cleaned=%q", rep.CleanedHTML)
+	}
+}
+
+// TestRun_StyleAttrAutoFixFalseKeepsOriginal verifies AutoFix=false keeps
+// the original style attribute even when properties would have been dropped.
+func TestRun_StyleAttrAutoFixFalseKeepsOriginal(t *testing.T) {
+	rep := Run(`<p style="position:absolute; color:red">x</p>`, Options{AutoFix: false})
+	gotDropped := false
+	for _, f := range rep.Applied {
+		if f.RuleID == RuleStylePropertyDropped {
+			gotDropped = true
+		}
+	}
+	if !gotDropped {
+		t.Errorf("expected drop finding for AutoFix=false, got %+v", rep.Applied)
+	}
+	if !strings.Contains(rep.CleanedHTML, "position:") {
+		t.Errorf("expected original style preserved under AutoFix=false, cleaned=%q", rep.CleanedHTML)
+	}
+}
+
+// TestRun_StyleEmptyValuePassThrough verifies an empty style attr passes.
+func TestRun_StyleEmptyValuePassThrough(t *testing.T) {
+	// Use <div> to avoid the Feishu-native paragraph autofix.
+	rep := Run(`<div style="">x</div>`, Options{AutoFix: true})
+	if len(rep.Applied) != 0 {
+		t.Errorf("empty style attr should not produce findings, got %+v", rep.Applied)
+	}
+}
+
+// TestRun_HintsForAllBlockedTags verifies every blocked-tag rule has a
+// non-empty hint (consumer contract).
+func TestRun_HintsForAllBlockedTags(t *testing.T) {
+	cases := []string{
+		`<script>x</script>`, `<iframe src="x"></iframe>`,
+		`<object data="x"></object>`, `<embed src="x">`, `<form><input></form>`,
+		`<select></select>`, `<button>x</button>`, `<link href="x">`,
+		`<meta name="x">`, `<base href="x">`,
+	}
+	for _, html := range cases {
+		rep := Run(html, Options{AutoFix: true})
+		for _, f := range rep.Blocked {
+			if f.Hint == "" {
+				t.Errorf("blocked rule %s missing hint for %q", f.RuleID, html)
+			}
+		}
+	}
+}
+
+// TestRun_HintsForAllWarnTags verifies every warn-tag rule has a non-empty hint.
+func TestRun_HintsForAllWarnTags(t *testing.T) {
+	cases := []string{
+		`<font>x</font>`, `<center>x</center>`,
+		`<marquee>x</marquee>`, `<blink>x</blink>`,
+	}
+	for _, html := range cases {
+		rep := Run(html, Options{AutoFix: true})
+		for _, f := range rep.Applied {
+			if f.Hint == "" {
+				t.Errorf("warn rule %s missing hint for %q", f.RuleID, html)
+			}
+		}
+	}
+}
+
+// TestClassifyTag_Coverage exercises classifyTag with every category.
+func TestClassifyTag_Coverage(t *testing.T) {
+	if k, _ := classifyTag("p"); k != "allow" {
+		t.Errorf("p classified as %q", k)
+	}
+	if k, id := classifyTag("script"); k != "error" || id != RuleTagScriptBlocked {
+		t.Errorf("script classified as %q/%q", k, id)
+	}
+	if k, id := classifyTag("font"); k != "warn" || id != RuleTagFontToSpan {
+		t.Errorf("font classified as %q/%q", k, id)
+	}
+	// Niche tag passes silently (e.g. <details>).
+	if k, _ := classifyTag("details"); k != "allow" {
+		t.Errorf("niche tag <details> should pass through, got %q", k)
+	}
+	// Case-insensitive.
+	if k, _ := classifyTag("SCRIPT"); k != "error" {
+		t.Errorf("SCRIPT (uppercase) should still classify as error")
+	}
+}
+
+// TestClassifyURLValue_CoverageEdges covers empty, whitespace-only,
+// no-scheme variants.
+func TestClassifyURLValue_CoverageEdges(t *testing.T) {
+	cases := map[string]string{
+		"":                          "ok",
+		"   ":                       "ok",
+		"https://x":                 "ok",
+		"https://x/path?q=1":        "ok",
+		"#fragment":                 "ok",
+		"/relative":                 "ok",
+		"javascript:alert(1)":       "error",
+		"vbscript:msgbox 1":         "error",
+		"data:image/png;base64,XYZ": "ok",
+		"data:text/html,<script>":   "error",
+		"webcal://x":                "warn",
+	}
+	for raw, want := range cases {
+		got, _ := classifyURLValue(raw)
+		if got != want {
+			t.Errorf("classifyURLValue(%q) = %q, want %q", raw, got, want)
+		}
+	}
+}
+
+// TestClassifyStyleProperty_Coverage covers prefixes & explicit set.
+func TestClassifyStyleProperty_Coverage(t *testing.T) {
+	cases := map[string]bool{
+		"color":            true,
+		"BACKGROUND-COLOR": true, // case-insensitive
+		"border-top":       true,
+		"padding-left":     true,
+		"margin-bottom":    true,
+		"position":         false,
+		"z-index":          false,
+		"":                 false,
+		"  ":               false,
+	}
+	for prop, want := range cases {
+		got := classifyStyleProperty(prop)
+		if got != want {
+			t.Errorf("classifyStyleProperty(%q) = %v, want %v", prop, got, want)
+		}
+	}
+}
+
+// TestIsEventHandlerAttr_Coverage covers the on*-detection rule.
+func TestIsEventHandlerAttr_Coverage(t *testing.T) {
+	cases := map[string]bool{
+		"onclick":     true,
+		"onmouseover": true,
+		"OnLoad":      true, // case-insensitive
+		"on0":         true,
+		"on":          false, // need at least one char after "on"
+		"onerror":     true,
+		"onsubmit":    true,
+		"once":        true, // would match unfortunately because "once" starts with "on" + 'c'
+		"id":          false,
+		"href":        false,
+		"data-on":     false,
+	}
+	for k, want := range cases {
+		got := isEventHandlerAttr(k)
+		if got != want {
+			t.Errorf("isEventHandlerAttr(%q) = %v, want %v", k, got, want)
+		}
+	}
+}
+
+// TestRun_ParseFailureFallsBackGracefully verifies extreme malformed input
+// short-circuits to EmptyReport.
+func TestRun_PlainTextInputProducesNoFindings(t *testing.T) {
+	rep := Run("just a plain string with no markup", Options{AutoFix: true})
+	if len(rep.Blocked) != 0 || len(rep.Applied) != 0 {
+		t.Errorf("plain text should produce no findings, got %+v %+v", rep.Blocked, rep.Applied)
+	}
+}
+
+// TestRun_MultipleErrorsAccumulate ensures multiple offenders all surface.
+func TestRun_MultipleErrorsAccumulate(t *testing.T) {
+	html := `<script>1</script><iframe></iframe><a href="javascript:0">x</a>` +
+		`<form></form><p onclick="">y</p>`
+	rep := Run(html, Options{AutoFix: true})
+	if len(rep.Blocked) < 4 {
+		t.Errorf("expected ≥4 errors, got %d: %+v", len(rep.Blocked), rep.Blocked)
+	}
+}
+
+// TestRun_NestedStructurePreserved verifies deep nesting passes through.
+func TestRun_NestedStructurePreserved(t *testing.T) {
+	html := `<div><div><div><p><span><b>deep</b></span></p></div></div></div>`
+	rep := Run(html, Options{AutoFix: true})
+	if len(rep.Blocked) != 0 {
+		t.Errorf("nested allowed tags should pass, got %+v", rep.Blocked)
+	}
+	if !strings.Contains(rep.CleanedHTML, "deep") {
+		t.Errorf("inner text lost, cleaned=%q", rep.CleanedHTML)
+	}
+}
+
+// TestRun_BlockedInsideAllowedRemovedNotParent verifies that removing a
+// blocked tag inside an allowed parent leaves the parent intact.
+func TestRun_BlockedInsideAllowedRemovedNotParent(t *testing.T) {
+	html := `<div>before<script>1</script>after</div>`
+	rep := Run(html, Options{AutoFix: true})
+	if !strings.Contains(rep.CleanedHTML, "before") || !strings.Contains(rep.CleanedHTML, "after") {
+		t.Errorf("parent text should survive, cleaned=%q", rep.CleanedHTML)
+	}
+	if strings.Contains(rep.CleanedHTML, "<script") {
+		t.Errorf("script should be removed, cleaned=%q", rep.CleanedHTML)
+	}
+}
diff --git a/shortcuts/mail/lint/rules.go b/shortcuts/mail/lint/rules.go
new file mode 100644
index 000000000..178068073
--- /dev/null
+++ b/shortcuts/mail/lint/rules.go
@@ -0,0 +1,349 @@
+// Copyright (c) 2026 Lark Technologies Pte. Ltd.
+// SPDX-License-Identifier: MIT
+
+package lint
+
+import "strings"
+
+// Rule IDs surfaced through Finding.RuleID. UPPER_SNAKE_CASE is the contract
+// (S2 contract «Header / RPC contract» — Stdout envelope contract). New rules
+// MUST keep this naming convention so AI / test consumers can pattern-match
+// reliably.
+const (
+	// Tag-level rules.
+	RuleTagFontToSpan      = "TAG_FONT_TO_SPAN"
+	RuleTagCenterToDiv     = "TAG_CENTER_TO_DIV"
+	RuleTagMarqueeToText   = "TAG_MARQUEE_TO_TEXT"
+	RuleTagBlinkToText     = "TAG_BLINK_TO_TEXT"
+	RuleTagScriptBlocked   = "TAG_SCRIPT_BLOCKED"
+	RuleTagIframeBlocked   = "TAG_IFRAME_BLOCKED"
+	RuleTagObjectBlocked   = "TAG_OBJECT_BLOCKED"
+	RuleTagEmbedBlocked    = "TAG_EMBED_BLOCKED"
+	RuleTagFormBlocked     = "TAG_FORM_BLOCKED"
+	RuleTagInputBlocked    = "TAG_INPUT_BLOCKED"
+	RuleTagLinkBlocked     = "TAG_LINK_BLOCKED"
+	RuleTagMetaBlocked     = "TAG_META_BLOCKED"
+	RuleTagBaseBlocked     = "TAG_BASE_BLOCKED"
+	RuleTagUnknownStripped = "TAG_UNKNOWN_STRIPPED"
+
+	// Attribute-level rules.
+	RuleAttrEventHandlerBlocked = "ATTR_EVENT_HANDLER_BLOCKED"
+	RuleAttrJSURLBlocked        = "ATTR_JS_URL_BLOCKED"
+	RuleAttrUnsafeSchemeBlocked = "ATTR_UNSAFE_SCHEME_BLOCKED"
+
+	// Style-level rules.
+	RuleStylePropertyDropped = "STYLE_PROPERTY_DROPPED"
+
+	// Feishu-native autofix rules. These autofix the inline style /
+	// class / nesting shape of common elements so AI-authored HTML
+	// matches what Feishu mail-editor itself emits, fixing the visual
+	// "extra blank line between blocks", "list bullets/numbers missing",
+	// "link color wrong" etc. classes of issues. The rewrite is purely
+	// additive — user-supplied inline styles take precedence; the lib
+	// only fills the missing properties.
+	RuleStyleListNative       = "STYLE_LIST_NATIVE_INLINE_APPLIED"
+	RuleStyleListItemNative   = "STYLE_LIST_ITEM_NATIVE_INLINE_APPLIED"
+	RuleStyleBlockquoteNative = "STYLE_BLOCKQUOTE_NATIVE_INLINE_APPLIED"
+	RuleStyleLinkNative       = "STYLE_LINK_NATIVE_INLINE_APPLIED"
+	RuleStyleParaWrapper      = "STYLE_PARA_WRAPPER_REWRITTEN"
+)
+
+// Tag classification ----------------------------------------------------------
+
+// allowedTags enumerates tags that pass through verbatim (spec §4.4 row "通过").
+// Lower-case canonical names; the parser normalises tag names so we don't need
+// case-insensitive comparison at lookup time.
+var allowedTags = map[string]bool{
+	"p":          true,
+	"div":        true,
+	"span":       true,
+	"br":         true,
+	"hr":         true,
+	"a":          true,
+	"img":        true,
+	"table":      true,
+	"thead":      true,
+	"tbody":      true,
+	"tfoot":      true,
+	"tr":         true,
+	"td":         true,
+	"th":         true,
+	"ul":         true,
+	"ol":         true,
+	"li":         true,
+	"blockquote": true,
+	"pre":        true,
+	"code":       true,
+	"b":          true,
+	"i":          true,
+	"em":         true,
+	"strong":     true,
+	"u":          true,
+	"s":          true,
+	"strike":     true,
+	"h1":         true,
+	"h2":         true,
+	"h3":         true,
+	"h4":         true,
+	"h5":         true,
+	"h6":         true,
+	"sub":        true,
+	"sup":        true,
+	"section":    true,
+	"article":    true,
+	"header":     true,
+	"footer":     true,
+	"nav":        true,
+	"main":       true,
+	"figure":     true,
+	"figcaption": true,
+	"caption":    true,
+	"colgroup":   true,
+	"col":        true,
+	// Document structural tags (golang.org/x/net/html always wraps fragments
+	// in <html><head><body>); we treat them as transparent so the wrapper
+	// nodes the parser inserts don't generate spurious findings.
+	"html": true,
+	"head": true,
+	"body": true,
+}
+
+// blockedTags enumerates tags whose content is removed in full and a
+// SeverityError finding is emitted (spec §4.4 row "错误（删除）"). Each entry
+// maps to the rule id surfaced in Finding.RuleID.
+var blockedTags = map[string]string{
+	"script": RuleTagScriptBlocked,
+	"iframe": RuleTagIframeBlocked,
+	"object": RuleTagObjectBlocked,
+	"embed":  RuleTagEmbedBlocked,
+	"form":   RuleTagFormBlocked,
+	"input":  RuleTagInputBlocked,
+	"select": RuleTagInputBlocked,
+	"option": RuleTagInputBlocked,
+	"button": RuleTagInputBlocked,
+	"link":   RuleTagLinkBlocked,
+	"meta":   RuleTagMetaBlocked,
+	"base":   RuleTagBaseBlocked,
+}
+
+// warnAutofixTags enumerates tags rewritten when AutoFix is true (spec §4.4
+// row "警告 + 自动修复"). The replacement strategy is per-tag (see rewrite.go).
+var warnAutofixTags = map[string]string{
+	"font":    RuleTagFontToSpan,
+	"center":  RuleTagCenterToDiv,
+	"marquee": RuleTagMarqueeToText,
+	"blink":   RuleTagBlinkToText,
+}
+
+// classifyTag returns the rule kind for the given lower-case tag name.
+//
+// kind is one of "allow", "warn", "error", "unknown". For "warn" / "error",
+// ruleID names the firing rule; for "unknown", the caller falls back to
+// allow-list-by-default but emits a hint via RuleTagUnknownStripped only when
+// the tag is structurally suspect (e.g. <object>-like). The cli's existing
+// `htmlTagRe` regex is the de-facto allow-list shipping with the codebase, so
+// we don't aggressively flag anything outside `allowedTags` — drop-through
+// preserves user intent for niche tags (e.g. `<details>` / `<summary>`) that
+// browsers + Feishu native renderer already handle.
+func classifyTag(tag string) (kind, ruleID string) {
+	tag = strings.ToLower(tag)
+	if allowedTags[tag] {
+		return "allow", ""
+	}
+	if id, ok := blockedTags[tag]; ok {
+		return "error", id
+	}
+	if id, ok := warnAutofixTags[tag]; ok {
+		return "warn", id
+	}
+	// Unknown / niche tags: pass through silently. The cli's existing
+	// `htmlTagRe` (mail_quote.go:333) tolerates them too, and the server-side
+	// RemoteSanitizer will remove anything risky regardless. Users authoring
+	// HTML in Feishu native classes (`adit-html-block*`, `history-quote-*`,
+	// `lark-mail-doc-quote`) hit this path — they MUST pass through unchanged
+	// so reply / forward quote markup survives lint round-trips. (Spec §4.4
+	// "通过" row second sentence: "飞书原生 quote 体系...class".)
+	return "allow", ""
+}
+
+// Attribute / URL / style classification --------------------------------------
+
+// allowedURLSchemes lists URL schemes that pass through hyperlink-bearing
+// attrs (`href`, `src`, `cite`, `formaction` etc.). Per spec §4.4: http(s),
+// mailto, cid, data:image/* are allowed; everything else (notably javascript:
+// and vbscript:) is blocked. Empty / relative URLs (no scheme) are always
+// allowed because they resolve relatively at render time and pose no
+// injection vector.
+var allowedURLSchemes = map[string]bool{
+	"http":   true,
+	"https":  true,
+	"mailto": true,
+	"cid":    true,
+}
+
+// blockedURLSchemes is the explicit deny-list. data:image/* is special-cased
+// in classifyURLValue.
+var blockedURLSchemes = map[string]bool{
+	"javascript": true,
+	"vbscript":   true,
+	"file":       true,
+}
+
+// classifyURLValue returns ("ok", "") if the URL value is acceptable, or
+// ("error", ruleID) when it must be removed (javascript:/vbscript:/file:),
+// or ("warn", ruleID) when the scheme is unrecognised but not actively
+// dangerous. Empty values pass through (browsers ignore them).
+func classifyURLValue(raw string) (kind, ruleID string) {
+	value := strings.TrimSpace(raw)
+	if value == "" {
+		return "ok", ""
+	}
+	// Strip leading whitespace + control bytes that could obscure the
+	// scheme (e.g. "java\tscript:..."). The html-parser already strips
+	// stray whitespace at attribute boundaries; this is defence-in-depth
+	// for older clients that paste from Word with U+0009 / U+0020 inside
+	// the scheme prefix.
+	value = strings.Map(func(r rune) rune {
+		if r < 0x20 || r == 0x7F {
+			return -1
+		}
+		return r
+	}, value)
+
+	// Find the colon delimiter; everything before it is the scheme.
+	colon := strings.IndexByte(value, ':')
+	if colon < 0 {
+		// No scheme → relative URL → allow.
+		return "ok", ""
+	}
+	scheme := strings.ToLower(value[:colon])
+	rest := value[colon+1:]
+
+	switch {
+	case allowedURLSchemes[scheme]:
+		return "ok", ""
+	case scheme == "data":
+		// data:image/* is whitelisted; anything else (e.g. data:text/html;...)
+		// is rejected. The check tolerates any subtype under image/* (png /
+		// jpeg / gif / svg+xml / webp) so users embedding base64 thumbnails
+		// don't trip the rule.
+		rest = strings.TrimSpace(rest)
+		if strings.HasPrefix(strings.ToLower(rest), "image/") {
+			return "ok", ""
+		}
+		return "error", RuleAttrJSURLBlocked
+	case blockedURLSchemes[scheme]:
+		return "error", RuleAttrJSURLBlocked
+	default:
+		// Unknown scheme: surface a warning so users see it but don't
+		// drop legitimate webcal:/tel: / similar in case downstream
+		// renders eventually support them.
+		return "warn", RuleAttrUnsafeSchemeBlocked
+	}
+}
+
+// urlAttributes lists attributes whose value is a URL and must therefore
+// pass classifyURLValue. Lower-case canonical names.
+var urlAttributes = map[string]bool{
+	"href":       true,
+	"src":        true,
+	"cite":       true,
+	"formaction": true,
+	"action":     true,
+	"background": true,
+	"poster":     true,
+}
+
+// allowedStyleProps enumerates CSS property names that pass through the
+// inline `style="..."` attribute (spec §4.4 last paragraph). Everything else
+// is removed from the property list and surfaced via STYLE_PROPERTY_DROPPED.
+//
+// `border-*` / `padding-*` / `margin-*` are treated as prefix matches by
+// classifyStyleProperty so the four directional variants (border-top etc.)
+// are all admitted without enumerating each.
+var allowedStyleProps = map[string]bool{
+	"color":            true,
+	"background-color": true,
+	"font-size":        true,
+	"font-weight":      true,
+	"font-style":       true,
+	"text-align":       true,
+	"text-decoration":  true,
+	"line-height":      true,
+	"padding":          true,
+	"margin":           true,
+	"border":           true,
+	"width":            true,
+	"height":           true,
+	"display":          true,
+	"text-indent":      true,
+	// Quote-block / native Feishu styles spec §4.4 "通过" (the editor-kit
+	// branch keeps them). Whitespace + word-break are part of the existing
+	// `<pre>` / quote wrapper styles in mail_quote.go (e.g. `bodyDivStyle`).
+	"white-space":     true,
+	"word-break":      true,
+	"word-wrap":       true,
+	"overflow":        true,
+	"overflow-wrap":   true,
+	"vertical-align":  true,
+	"list-style":          true,
+	"list-style-type":     true,
+	"list-style-position": true,
+	"transition":          true,
+	"font-family":         true,
+	"text-transform":  true,
+	"hyphens":         true,
+	"max-width":       true,
+	"min-width":       true,
+	"max-height":      true,
+	"min-height":      true,
+	"border-radius":   true,
+	"box-sizing":      true,
+	"opacity":         true,
+	"cursor":          true,
+}
+
+// stylePropAllowedPrefixes enumerates property name prefixes treated as
+// allowed regardless of suffix (spec §4.4 "border-*"). A trailing "-" makes
+// the prefix self-documenting.
+var stylePropAllowedPrefixes = []string{
+	"border-",
+	"padding-",
+	"margin-",
+}
+
+// classifyStyleProperty reports whether the given lower-case property name
+// is in the allow-list (incl. prefix matches).
+func classifyStyleProperty(name string) bool {
+	name = strings.ToLower(strings.TrimSpace(name))
+	if name == "" {
+		return false
+	}
+	if allowedStyleProps[name] {
+		return true
+	}
+	for _, p := range stylePropAllowedPrefixes {
+		if strings.HasPrefix(name, p) {
+			return true
+		}
+	}
+	return false
+}
+
+// isEventHandlerAttr reports whether the attribute name is a DOM event
+// handler (`on*`). The lib removes every such attribute regardless of its
+// value (spec §4.4 row "错误（删除）" + the well-known XSS vector).
+func isEventHandlerAttr(name string) bool {
+	name = strings.ToLower(strings.TrimSpace(name))
+	if !strings.HasPrefix(name, "on") {
+		return false
+	}
+	if len(name) <= 2 {
+		return false
+	}
+	// Defence-in-depth: avoid matching legitimate attrs whose name happens
+	// to begin with "on" (e.g. `onerror`-like attrs all start "on" + ascii
+	// letter). The `>= 'a'` check filters out "on-something" with hyphens.
+	c := name[2]
+	return (c >= 'a' && c <= 'z') || (c >= '0' && c <= '9')
+}
diff --git a/shortcuts/mail/lint/types.go b/shortcuts/mail/lint/types.go
new file mode 100644
index 000000000..b6e9a9596
--- /dev/null
+++ b/shortcuts/mail/lint/types.go
@@ -0,0 +1,116 @@
+// Copyright (c) 2026 Lark Technologies Pte. Ltd.
+// SPDX-License-Identifier: MIT
+
+// Package lint implements the mail-domain HTML lint lib used by `+lint-html`
+// and the writing-path internals of the compose 5 shortcuts (`+send`,
+// `+draft-create`, `+reply`, `+reply-all`, `+forward`) and `+draft-edit` body
+// ops. The lib classifies HTML tags / attributes / inline styles into three
+// tiers (pass / warn-and-autofix / error-delete) per technical-design §4.4 and
+// the mail-editor `editor-kit` branch DOMPurify config. `<style>` is passed
+// through verbatim (Feishu mail server-side sanitiser handles it on render);
+// `<script>` / `<iframe>` / external `<link>` / on*-handlers / `javascript:`
+// URLs are removed outright.
+//
+// The lib is deliberately decoupled from the cobra runtime so that it can be
+// re-used as a pure-CPU pass before `bld.HTMLBody(...)` (compose 5) /
+// `draftpkg.Apply(...)` (draft-edit) without taking a runtime dependency.
+package lint
+
+// Severity denotes the severity of a lint finding.
+type Severity string
+
+const (
+	// SeverityWarning is emitted for tags / attrs / styles that have a
+	// safe Feishu-native replacement (e.g. <font> -> <span style>). When
+	// AutoFix is true the lib applies the replacement and surfaces the
+	// finding in `Applied`; when AutoFix is false the original markup is
+	// preserved and the finding is surfaced in `Applied` for visibility
+	// only (no rewrite).
+	SeverityWarning Severity = "warning"
+
+	// SeverityError is emitted for tags / attrs / styles that would either
+	// be stripped by the server-side RemoteSanitizer or cause obvious
+	// rendering / safety issues (<script>, <iframe>, on*-handlers,
+	// javascript:/vbscript: URLs, ...). The lib always removes these to
+	// match the writing-path safety contract; in --strict mode they bump
+	// the exit code to non-zero.
+	SeverityError Severity = "error"
+)
+
+// Finding describes a single lint observation. The shape matches the
+// stdout-envelope contract documented in spec §4.3 and the S2 contract
+// «Header / RPC contract» section: rule_id / severity / tag_or_attr /
+// excerpt / hint, all UTF-8 strings.
+type Finding struct {
+	RuleID    string   `json:"rule_id"`
+	Severity  Severity `json:"severity"`
+	TagOrAttr string   `json:"tag_or_attr"`
+	Excerpt   string   `json:"excerpt"`
+	Hint      string   `json:"hint"`
+}
+
+// Options control a single Run invocation. Writing-path callers always pass
+// {AutoFix: true, Strict: false} (spec §4.3 explicitly forbids `--no-lint`).
+// `+lint-html` passes the user's flag values verbatim.
+type Options struct {
+	// AutoFix downgrades warning-level findings (e.g. <font> -> <span style>)
+	// and removes error-level findings (<script>, <iframe>, on*-handlers, ...).
+	// When false, only error-level findings are removed (writing-path safety
+	// floor cannot be opted out of); warnings are reported but not rewritten,
+	// and `cleaned_html` is omitted from the public envelope (spec §4.2).
+	AutoFix bool
+
+	// Strict promotes warnings to errors so that `+lint-html --strict` exits
+	// non-zero when any warning fires (spec §4.2). Has no effect on the
+	// writing-path because compose 5 / +draft-edit always run with
+	// {AutoFix: true, Strict: false}.
+	Strict bool
+}
+
+// Report is the structured output of a single Run invocation.
+//
+// Both Applied and Blocked are always non-nil slices (possibly empty). The
+// stdout envelope contract requires `lint_applied` and `original_blocked` to
+// always be present arrays — the JSON encoder must render `[]` rather than
+// `null` so AI / test consumers can rely on `data.lint_applied[]` /
+// `data.original_blocked[]` unconditionally (spec §4.3).
+type Report struct {
+	// Applied surfaces warning-tier findings that were rewritten when AutoFix
+	// is true (or surfaced as observations only when AutoFix is false). Each
+	// entry corresponds to a single rule firing on a single tag / attribute /
+	// style property.
+	Applied []Finding `json:"lint_applied"`
+
+	// Blocked surfaces error-tier findings that the lib removed unconditionally
+	// (writing-path safety floor: <script> / on* / javascript: URLs always go,
+	// regardless of AutoFix).
+	Blocked []Finding `json:"original_blocked"`
+
+	// CleanedHTML is the rewritten HTML produced by Run. When AutoFix is false
+	// callers should treat this field as advisory and not surface it through
+	// the envelope (spec §4.2 — `+lint-html --auto-fix=false` returns no
+	// `cleaned_html` key). When the input is plain text (bodyIsHTML == false)
+	// the field equals the input verbatim.
+	CleanedHTML string `json:"cleaned_html,omitempty"`
+
+	// HasErrorFindings reports whether any SeverityError finding was emitted.
+	// Strict mode callers (e.g. `+lint-html --strict`) use this — together with
+	// HasWarningFindings — to decide whether to bump the process exit code.
+	HasErrorFindings bool `json:"-"`
+
+	// HasWarningFindings reports whether any SeverityWarning finding was
+	// emitted. Strict callers promote warnings to errors via this flag.
+	HasWarningFindings bool `json:"-"`
+}
+
+// EmptyReport returns a Report with the contract-required empty (non-nil)
+// arrays and CleanedHTML equal to the input. Compose 5 / +draft-edit call
+// this when the body is plain-text or empty so the stdout envelope's
+// `lint_applied` / `original_blocked` fields are always present arrays.
+func EmptyReport(html string) Report {
+	return Report{
+		Applied:     []Finding{},
+		Blocked:     []Finding{},
+		CleanedHTML: html,
+	}
+}
diff --git a/shortcuts/mail/mail_draft_create.go b/shortcuts/mail/mail_draft_create.go
index 990630996..5ab96ac2e 100644
--- a/shortcuts/mail/mail_draft_create.go
+++ b/shortcuts/mail/mail_draft_create.go
@@ -57,6 +57,7 @@ var MailDraftCreate = common.Shortcut{
 		signatureFlag,
 		priorityFlag,
 		eventSummaryFlag, eventStartFlag, eventEndFlag, eventLocationFlag,
+		showLintDetailsFlag,
 	},
 	DryRun: func(ctx context.Context, runtime *common.RuntimeContext) *common.DryRunAPI {
 		mailboxID := resolveComposeMailboxID(runtime)
@@ -167,7 +168,7 @@ var MailDraftCreate = common.Shortcut{
 		if err != nil {
 			return err
 		}
-		rawEML, err := buildRawEMLForDraftCreate(ctx, runtime, input, sigResult, priority,
+		rawEML, lintApplied, lintBlocked, err := buildRawEMLForDraftCreate(ctx, runtime, input, sigResult, priority,
 			templateLargeAttachmentIDs, mailboxID, templateID, templateInlineAttachments, templateSmallAttachments)
 		if err != nil {
 			return err
@@ -180,6 +181,10 @@ var MailDraftCreate = common.Shortcut{
 		if draftResult.Reference != "" {
 			out["reference"] = draftResult.Reference
 		}
+		// Writing-path lint envelope: counts always present; full Finding
+		// arrays only when the caller asked for them via --show-lint-details.
+		applyLintToEnvelope(out, lintApplied, lintBlocked, runtime.Bool("show-lint-details"))
+		addComposeHint(out)
 		runtime.OutFormat(out, nil, func(w io.Writer) {
 			fmt.Fprintln(w, "Draft created.")
 			// Intentionally keep +draft-create output minimal: unlike reply/forward/send
@@ -202,6 +207,10 @@ var MailDraftCreate = common.Shortcut{
 // senderEmail returns an error early. The returned string is ready to POST
 // to the drafts endpoint. ctx is plumbed through for large-attachment
 // processing.
+//
+// Returns the rawEML, the writing-path lint findings (lint_applied /
+// original_blocked — never nil; spec §4.3 contract requires the arrays
+// always be present), and any error encountered.
 func buildRawEMLForDraftCreate(
 	ctx context.Context,
 	runtime *common.RuntimeContext,
@@ -212,14 +221,19 @@ func buildRawEMLForDraftCreate(
 	mailboxID, templateID string,
 	templateInlineAttachments []templateInlineRef,
 	templateSmallAttachments []templateAttachmentRef,
-) (string, error) {
+) (rawEMLOut string, lintApplied, lintBlocked []lintFinding, err error) {
+	// Initialise lint findings as empty (non-nil) slices so callers can
+	// surface them through the envelope unconditionally even on the
+	// plain-text branch (spec §4.3).
+	lintApplied, lintBlocked = emptyLintFindings()
+
 	senderEmail := resolveComposeSenderEmail(runtime)
 	if senderEmail == "" {
-		return "", fmt.Errorf("unable to determine sender email; please specify --from explicitly")
+		return "", lintApplied, lintBlocked, fmt.Errorf("unable to determine sender email; please specify --from explicitly")
 	}
 
 	if err := validateRecipientCount(input.To, input.CC, input.BCC); err != nil {
-		return "", err
+		return "", lintApplied, lintBlocked, err
 	}
 
 	bld := emlbuilder.New().WithFileIO(runtime.FileIO()).
@@ -237,7 +251,7 @@ func buildRawEMLForDraftCreate(
 	// compose shortcuts; if it ever trips in this path, the above check
 	// regressed.
 	if err := requireSenderForRequestReceipt(runtime, senderEmail); err != nil {
-		return "", err
+		return "", lintApplied, lintBlocked, err
 	}
 	if runtime.Bool("request-receipt") {
 		bld = bld.DispositionNotificationTo("", senderEmail)
@@ -248,9 +262,9 @@ func buildRawEMLForDraftCreate(
 	if input.BCC != "" {
 		bld = bld.BCCAddrs(parseNetAddrs(input.BCC))
 	}
-	inlineSpecs, err := parseInlineSpecs(input.Inline)
-	if err != nil {
-		return "", output.ErrValidation("%v", err)
+	inlineSpecs, parseErr := parseInlineSpecs(input.Inline)
+	if parseErr != nil {
+		return "", lintApplied, lintBlocked, output.ErrValidation("%v", parseErr)
 	}
 	var autoResolvedPaths []string
 	var composedHTMLBody string
@@ -265,9 +279,18 @@ func buildRawEMLForDraftCreate(
 		}
 		resolved, refs, resolveErr := draftpkg.ResolveLocalImagePaths(htmlBody)
 		if resolveErr != nil {
-			return "", resolveErr
+			return "", lintApplied, lintBlocked, resolveErr
 		}
 		resolved = injectSignatureIntoBody(resolved, sigResult)
+		// Writing-path lint: AutoFix=true / Strict=false (spec §4.3 — the
+		// writing-path safety contract has no `--no-lint` opt-out). Runs
+		// AFTER applyTemplate (in caller) + ResolveLocalImagePaths +
+		// injectSignatureIntoBody so the lint sees the final HTML the
+		// recipient renderer will see (S2 contract «Pre-call vs in-call
+		// validation split» — Compose 5 row).
+		cleaned, rep := runWritePathLint(resolved)
+		resolved = cleaned
+		lintApplied, lintBlocked = rep.Applied, rep.Blocked
 		composedHTMLBody = resolved
 		bld = bld.HTMLBody([]byte(composedHTMLBody))
 		bld = addSignatureImagesToBuilder(bld, sigResult)
@@ -283,13 +306,14 @@ func buildRawEMLForDraftCreate(
 		}
 		allCIDs = append(allCIDs, signatureCIDs(sigResult)...)
 		var tplInlineCIDs []string
-		bld, tplInlineCIDs, err = embedTemplateInlineAttachments(ctx, runtime, bld, resolved, mailboxID, templateID, templateInlineAttachments)
-		if err != nil {
-			return "", err
+		var embedErr error
+		bld, tplInlineCIDs, embedErr = embedTemplateInlineAttachments(ctx, runtime, bld, resolved, mailboxID, templateID, templateInlineAttachments)
+		if embedErr != nil {
+			return "", lintApplied, lintBlocked, embedErr
 		}
 		allCIDs = append(allCIDs, tplInlineCIDs...)
-		if err := validateInlineCIDs(resolved, allCIDs, nil); err != nil {
-			return "", err
+		if cidErr := validateInlineCIDs(resolved, allCIDs, nil); cidErr != nil {
+			return "", lintApplied, lintBlocked, cidErr
 		}
 	} else {
 		composedTextBody = input.Body
@@ -299,9 +323,10 @@ func buildRawEMLForDraftCreate(
 	// when the template contributes none; runs in both HTML and plain-text
 	// branches because regular attachments are independent of body mode.
 	var templateSmallBytes int64
-	bld, templateSmallBytes, err = embedTemplateSmallAttachments(ctx, runtime, bld, mailboxID, templateID, templateSmallAttachments)
-	if err != nil {
-		return "", err
+	var smallErr error
+	bld, templateSmallBytes, smallErr = embedTemplateSmallAttachments(ctx, runtime, bld, mailboxID, templateID, templateSmallAttachments)
+	if smallErr != nil {
+		return "", lintApplied, lintBlocked, smallErr
 	}
 	bld = applyPriority(bld, priority)
 	if calData := buildCalendarBody(runtime, senderEmail, input.To, input.CC); calData != nil {
@@ -310,16 +335,17 @@ func buildRawEMLForDraftCreate(
 	allInlinePaths := append(inlineSpecFilePaths(inlineSpecs), autoResolvedPaths...)
 	composedBodySize := int64(len(composedHTMLBody) + len(composedTextBody))
 	emlBase := estimateEMLBaseSize(runtime.FileIO(), composedBodySize, allInlinePaths, 0) + templateSmallBytes
-	bld, err = processLargeAttachments(ctx, runtime, bld, composedHTMLBody, composedTextBody, splitByComma(input.Attach), emlBase, 0)
-	if err != nil {
-		return "", err
+	var largeErr error
+	bld, largeErr = processLargeAttachments(ctx, runtime, bld, composedHTMLBody, composedTextBody, splitByComma(input.Attach), emlBase, 0)
+	if largeErr != nil {
+		return "", lintApplied, lintBlocked, largeErr
 	}
 	if hdr, hdrErr := encodeTemplateLargeAttachmentHeader(templateLargeAttachmentIDs); hdrErr == nil && hdr != "" {
 		bld = bld.Header(draftpkg.LargeAttachmentIDsHeader, hdr)
 	}
-	rawEML, err := bld.BuildBase64URL()
-	if err != nil {
-		return "", output.ErrValidation("build EML failed: %v", err)
+	rawEML, buildErr := bld.BuildBase64URL()
+	if buildErr != nil {
+		return "", lintApplied, lintBlocked, output.ErrValidation("build EML failed: %v", buildErr)
 	}
-	return rawEML, nil
+	return rawEML, lintApplied, lintBlocked, nil
 }
diff --git a/shortcuts/mail/mail_draft_create_test.go b/shortcuts/mail/mail_draft_create_test.go
index e9def904d..21cbf9304 100644
--- a/shortcuts/mail/mail_draft_create_test.go
+++ b/shortcuts/mail/mail_draft_create_test.go
@@ -62,7 +62,7 @@ func TestBuildRawEMLForDraftCreate_ResolvesLocalImages(t *testing.T) {
 		Body:    `<p>Hello</p><p><img src="./test_image.png" /></p>`,
 	}
 
-	rawEML, err := buildRawEMLForDraftCreate(context.Background(), newRuntimeWithFrom("sender@example.com"), input, nil, "", nil, "", "", nil, nil)
+	rawEML, _, _, err := buildRawEMLForDraftCreate(context.Background(), newRuntimeWithFrom("sender@example.com"), input, nil, "", nil, "", "", nil, nil)
 	if err != nil {
 		t.Fatalf("buildRawEMLForDraftCreate() error = %v", err)
 	}
@@ -88,7 +88,7 @@ func TestBuildRawEMLForDraftCreate_NoLocalImages(t *testing.T) {
 		Body:    `<p>Hello <b>world</b></p>`,
 	}
 
-	rawEML, err := buildRawEMLForDraftCreate(context.Background(), newRuntimeWithFrom("sender@example.com"), input, nil, "", nil, "", "", nil, nil)
+	rawEML, _, _, err := buildRawEMLForDraftCreate(context.Background(), newRuntimeWithFrom("sender@example.com"), input, nil, "", nil, "", "", nil, nil)
 	if err != nil {
 		t.Fatalf("buildRawEMLForDraftCreate() error = %v", err)
 	}
@@ -124,7 +124,7 @@ func TestBuildRawEMLForDraftCreate_AutoResolveCountedInSizeLimit(t *testing.T) {
 		Attach:  "./big.txt",
 	}
 
-	_, err := buildRawEMLForDraftCreate(context.Background(), newRuntimeWithFrom("sender@example.com"), input, nil, "", nil, "", "", nil, nil)
+	_, _, _, err := buildRawEMLForDraftCreate(context.Background(), newRuntimeWithFrom("sender@example.com"), input, nil, "", nil, "", "", nil, nil)
 	if err == nil {
 		t.Fatal("expected size limit error when auto-resolved image + attachment exceed 25MB")
 	}
@@ -145,7 +145,7 @@ func TestBuildRawEMLForDraftCreate_OrphanedInlineSpecError(t *testing.T) {
 		Inline:  `[{"cid":"orphan","file_path":"./unused.png"}]`,
 	}
 
-	_, err := buildRawEMLForDraftCreate(context.Background(), newRuntimeWithFrom("sender@example.com"), input, nil, "", nil, "", "", nil, nil)
+	_, _, _, err := buildRawEMLForDraftCreate(context.Background(), newRuntimeWithFrom("sender@example.com"), input, nil, "", nil, "", "", nil, nil)
 	if err == nil {
 		t.Fatal("expected error for orphaned --inline CID not referenced in body")
 	}
@@ -166,7 +166,7 @@ func TestBuildRawEMLForDraftCreate_MissingCIDRefError(t *testing.T) {
 		Inline:  `[{"cid":"present","file_path":"./present.png"}]`,
 	}
 
-	_, err := buildRawEMLForDraftCreate(context.Background(), newRuntimeWithFrom("sender@example.com"), input, nil, "", nil, "", "", nil, nil)
+	_, _, _, err := buildRawEMLForDraftCreate(context.Background(), newRuntimeWithFrom("sender@example.com"), input, nil, "", nil, "", "", nil, nil)
 	if err == nil {
 		t.Fatal("expected error for missing CID reference")
 	}
@@ -183,7 +183,7 @@ func TestBuildRawEMLForDraftCreate_WithPriority(t *testing.T) {
 		Body:    `<p>Hello</p>`,
 	}
 
-	rawEML, err := buildRawEMLForDraftCreate(context.Background(), newRuntimeWithFrom("sender@example.com"), input, nil, "1", nil, "", "", nil, nil)
+	rawEML, _, _, err := buildRawEMLForDraftCreate(context.Background(), newRuntimeWithFrom("sender@example.com"), input, nil, "1", nil, "", "", nil, nil)
 	if err != nil {
 		t.Fatalf("buildRawEMLForDraftCreate() error = %v", err)
 	}
@@ -201,7 +201,7 @@ func TestBuildRawEMLForDraftCreate_NoPriority(t *testing.T) {
 		Body:    `<p>Hello</p>`,
 	}
 
-	rawEML, err := buildRawEMLForDraftCreate(context.Background(), newRuntimeWithFrom("sender@example.com"), input, nil, "", nil, "", "", nil, nil)
+	rawEML, _, _, err := buildRawEMLForDraftCreate(context.Background(), newRuntimeWithFrom("sender@example.com"), input, nil, "", nil, "", "", nil, nil)
 	if err != nil {
 		t.Fatalf("buildRawEMLForDraftCreate() error = %v", err)
 	}
@@ -236,7 +236,7 @@ func TestBuildRawEMLForDraftCreate_RequestReceiptAddsHeader(t *testing.T) {
 		Body:    "<p>hi</p>",
 	}
 
-	rawEML, err := buildRawEMLForDraftCreate(context.Background(),
+	rawEML, _, _, err := buildRawEMLForDraftCreate(context.Background(),
 		newRuntimeWithFromAndRequestReceipt("sender@example.com", true), input, nil, "", nil, "", "", nil, nil)
 	if err != nil {
 		t.Fatalf("buildRawEMLForDraftCreate() error = %v", err)
@@ -259,7 +259,7 @@ func TestBuildRawEMLForDraftCreate_RequestReceiptOmittedByDefault(t *testing.T)
 		Body:    "<p>hi</p>",
 	}
 
-	rawEML, err := buildRawEMLForDraftCreate(context.Background(),
+	rawEML, _, _, err := buildRawEMLForDraftCreate(context.Background(),
 		newRuntimeWithFromAndRequestReceipt("sender@example.com", false), input, nil, "", nil, "", "", nil, nil)
 	if err != nil {
 		t.Fatalf("buildRawEMLForDraftCreate() error = %v", err)
@@ -283,7 +283,7 @@ func TestBuildRawEMLForDraftCreate_PlainTextSkipsResolve(t *testing.T) {
 		PlainText: true,
 	}
 
-	rawEML, err := buildRawEMLForDraftCreate(context.Background(), newRuntimeWithFrom("sender@example.com"), input, nil, "", nil, "", "", nil, nil)
+	rawEML, _, _, err := buildRawEMLForDraftCreate(context.Background(), newRuntimeWithFrom("sender@example.com"), input, nil, "", nil, "", "", nil, nil)
 	if err != nil {
 		t.Fatalf("buildRawEMLForDraftCreate() error = %v", err)
 	}
@@ -304,7 +304,7 @@ func TestBuildRawEMLForDraftCreate_WithCalendarEvent(t *testing.T) {
 		Body:    "<p>Please join us</p>",
 	}
 
-	rawEML, err := buildRawEMLForDraftCreate(context.Background(), rt, input, nil, "", nil, "", "", nil, nil)
+	rawEML, _, _, err := buildRawEMLForDraftCreate(context.Background(), rt, input, nil, "", nil, "", "", nil, nil)
 	if err != nil {
 		t.Fatalf("buildRawEMLForDraftCreate() error = %v", err)
 	}
diff --git a/shortcuts/mail/mail_draft_edit.go b/shortcuts/mail/mail_draft_edit.go
index 3ae2a411b..10ec81e39 100644
--- a/shortcuts/mail/mail_draft_edit.go
+++ b/shortcuts/mail/mail_draft_edit.go
@@ -45,6 +45,7 @@ var MailDraftEdit = common.Shortcut{
 		{Name: "remove-event", Type: "bool", Desc: "Remove the calendar event from the draft."},
 		{Name: "inspect", Type: "bool", Desc: "Inspect the draft without modifying it. Returns the draft projection including subject, recipients, body summary, has_quoted_content (whether the draft contains a reply/forward quote block), attachments_summary (with part_id and cid for each attachment), and inline_summary. Run this BEFORE editing body to check has_quoted_content: if true, use set_reply_body in --patch-file to preserve the quote; if false, use set_body."},
 		{Name: "request-receipt", Type: "bool", Desc: "Request a read receipt (Message Disposition Notification, RFC 3798) addressed to the draft's sender. Recipient mail clients may prompt the user, send automatically, or silently ignore — delivery of a receipt is not guaranteed. Adds the Disposition-Notification-To header; existing value is overwritten."},
+		showLintDetailsFlag,
 	},
 	DryRun: func(ctx context.Context, runtime *common.RuntimeContext) *common.DryRunAPI {
 		if runtime.Bool("print-patch-template") {
@@ -174,6 +175,33 @@ var MailDraftEdit = common.Shortcut{
 		if err != nil {
 			return err
 		}
+		// Writing-path lint for body ops only (S2 contract «Pre-call vs in-call
+		// validation split» — +draft-edit row): set_body / set_reply_body
+		// rewrite the body field; other ops (set_subject / set_recipients /
+		// add_attachment / etc.) operate on non-HTML fields and MUST NOT be
+		// linted. Lint runs after loadPatchFile parses JSON and BEFORE
+		// draftpkg.Apply writes into the snapshot. Each op's `value` is
+		// replaced with the cleaned HTML in place; findings accumulate across
+		// ops into a single per-patch report (spec §4.3).
+		lintApplied, lintBlocked := emptyLintEnvelopeFields()
+		for i := range patch.Ops {
+			op := &patch.Ops[i]
+			if op.Op != "set_body" && op.Op != "set_reply_body" {
+				continue
+			}
+			if op.Value == "" {
+				continue
+			}
+			if !bodyIsHTML(op.Value) {
+				// Plain-text body op — no lint pass needed (the HTML rule set
+				// is irrelevant), but the envelope still surfaces empty arrays.
+				continue
+			}
+			cleaned, rep := runWritePathLint(op.Value)
+			op.Value = cleaned
+			lintApplied = append(lintApplied, rep.Applied...)
+			lintBlocked = append(lintBlocked, rep.Blocked...)
+		}
 		dctx := &draftpkg.DraftCtx{FIO: runtime.FileIO()}
 		if len(patch.Ops) > 0 {
 			if err := draftpkg.Apply(dctx, snapshot, patch); err != nil {
@@ -197,6 +225,10 @@ var MailDraftEdit = common.Shortcut{
 		if updateResult.Reference != "" {
 			out["reference"] = updateResult.Reference
 		}
+		// Writing-path lint envelope: counts always present; full Finding
+		// arrays only when the caller asked for them via --show-lint-details.
+		applyLintToEnvelope(out, lintApplied, lintBlocked, runtime.Bool("show-lint-details"))
+		addComposeHint(out)
 		runtime.OutFormat(out, nil, func(w io.Writer) {
 			fmt.Fprintln(w, "Draft updated.")
 			fmt.Fprintf(w, "draft_id: %s\n", updateResult.DraftID)
diff --git a/shortcuts/mail/mail_forward.go b/shortcuts/mail/mail_forward.go
index 466db2e12..ccc72b120 100644
--- a/shortcuts/mail/mail_forward.go
+++ b/shortcuts/mail/mail_forward.go
@@ -44,7 +44,8 @@ var MailForward = common.Shortcut{
 		{Name: "template-id", Desc: "Optional. Apply a saved template by ID (decimal integer string) before composing. The template's body/to/cc/bcc/attachments are merged into the forward draft (template values appended to user flags / forward-derived values; no de-duplication)."},
 		signatureFlag,
 		priorityFlag,
-		eventSummaryFlag, eventStartFlag, eventEndFlag, eventLocationFlag},
+		eventSummaryFlag, eventStartFlag, eventEndFlag, eventLocationFlag,
+		showLintDetailsFlag},
 	DryRun: func(ctx context.Context, runtime *common.RuntimeContext) *common.DryRunAPI {
 		messageId := runtime.Str("message-id")
 		to := runtime.Str("to")
@@ -242,6 +243,8 @@ var MailForward = common.Shortcut{
 		var composedHTMLBody string
 		var composedTextBody string
 		var srcInlineBytes int64
+		// Lint findings flowing into the writing-path stdout envelope (spec §4.3).
+		lintApplied, lintBlocked := emptyLintEnvelopeFields()
 		if useHTML {
 			if err := validateInlineImageURLs(sourceMsg); err != nil {
 				return fmt.Errorf("forward blocked: %w", err)
@@ -267,6 +270,12 @@ var MailForward = common.Shortcut{
 			if sigResult != nil {
 				bodyWithSig += draftpkg.SignatureSpacing() + draftpkg.BuildSignatureHTML(sigResult.ID, sigResult.RenderedContent)
 			}
+			// Writing-path lint: lint user-authored body + signature, NOT the
+			// forward quote / large-attachment card derived from the original
+			// message (spec §4.3 + S2 contract «Sibling-divergence ledger»).
+			cleaned, rep := runWritePathLint(bodyWithSig)
+			bodyWithSig = cleaned
+			lintApplied, lintBlocked = rep.Applied, rep.Blocked
 			composedHTMLBody = bodyWithSig + origLargeAttCard + forwardQuote
 			bld = bld.HTMLBody([]byte(composedHTMLBody))
 			bld = addSignatureImagesToBuilder(bld, sigResult)
@@ -479,8 +488,12 @@ var MailForward = common.Shortcut{
 		if err != nil {
 			return fmt.Errorf("failed to create draft: %w", err)
 		}
+		showLintDetails := runtime.Bool("show-lint-details")
 		if !confirmSend {
-			runtime.Out(buildDraftSavedOutput(draftResult, mailboxID), nil)
+			out := buildDraftSavedOutput(draftResult, mailboxID)
+			applyLintToEnvelope(out, lintApplied, lintBlocked, showLintDetails)
+			addComposeHint(out)
+			runtime.Out(out, nil)
 			hintSendDraft(runtime, mailboxID, draftResult.DraftID)
 			return nil
 		}
@@ -488,7 +501,10 @@ var MailForward = common.Shortcut{
 		if err != nil {
 			return fmt.Errorf("failed to send forward (draft %s created but not sent): %w", draftResult.DraftID, err)
 		}
-		runtime.Out(buildDraftSendOutput(resData, mailboxID), nil)
+		out := buildDraftSendOutput(resData, mailboxID)
+		applyLintToEnvelope(out, lintApplied, lintBlocked, showLintDetails)
+		addComposeHint(out)
+		runtime.Out(out, nil)
 		hintMarkAsRead(runtime, mailboxID, messageId)
 		return nil
 	},
diff --git a/shortcuts/mail/mail_lint_html.go b/shortcuts/mail/mail_lint_html.go
new file mode 100644
index 000000000..314c857c2
--- /dev/null
+++ b/shortcuts/mail/mail_lint_html.go
@@ -0,0 +1,207 @@
+// Copyright (c) 2026 Lark Technologies Pte. Ltd.
+// SPDX-License-Identifier: MIT
+
+package mail
+
+import (
+	"context"
+	"fmt"
+	"io"
+	"strings"
+
+	"github.com/larksuite/cli/internal/output"
+	"github.com/larksuite/cli/shortcuts/common"
+	"github.com/larksuite/cli/shortcuts/mail/lint"
+)
+
+// MailLintHTML is the `+lint-html` shortcut: lint a mail HTML body for
+// compatibility / safety / Larksuite-native rules. Read-only — no draft is
+// touched, no API call is made. Per spec §4.1 this is a stand-alone preview
+// counterpart to the writing-path lint built into compose 5 / +draft-edit
+// (§4.3); both share a single lint lib (shortcuts/mail/lint) so behaviour
+// can't drift.
+//
+// Returns by default (token-frugal envelope):
+//
+//	{ok: true, data: {cleaned_html: "..."}}
+//
+// With --show-lint-details, the envelope additionally surfaces the full
+// `warnings[]` / `errors[]` Finding arrays. Each entry has: rule_id /
+// severity / tag_or_attr / excerpt / hint (S2 contract «Header / RPC
+// contract» — Stdout envelope contract).
+var MailLintHTML = common.Shortcut{
+	Service:     "mail",
+	Command:     "+lint-html",
+	Description: "Lint mail HTML body for compatibility / safety / Larksuite-native rules. Returns warnings/errors and (default) auto-fixed HTML. Read-only: no draft, no API call. Use this BEFORE creating a draft to preview what the writing-path lint would change, or as a CI gate for static HTML templates.",
+	Risk:        "read",
+	// No API call → no scope requirement. KB Pitfall 3 doesn't apply (no
+	// meta_data.json `accessTokens` to align with).
+	Scopes: []string{},
+	// Identity-agnostic: lint is local pure-CPU. Both user and bot
+	// identities can run it.
+	AuthTypes: []string{"user", "bot"},
+	HasFormat: true,
+	Flags: []common.Flag{
+		// --body / --body-file are MUTUALLY EXCLUSIVE BUT EXACTLY-ONE-OF.
+		// We do NOT use cobra `Required: true` on either (KB Pitfall 1: it
+		// fires before Validate runs and blocks the legitimate "the other
+		// one is set" path); we enforce the constraint inside the Validate
+		// callback below.
+		{Name: "body", Desc: "HTML body to lint. Mutually exclusive with --body-file; exactly one is required."},
+		{Name: "body-file", Desc: "Path (relative, within cwd subtree) to a file containing HTML to lint. Mutually exclusive with --body; exactly one is required.", Input: []string{common.File}},
+		{Name: "auto-fix", Type: "bool", Default: "true", Desc: "When true (default), the response includes cleaned_html (HTML rewritten with warnings auto-fixed and errors removed). When false, only the violation list is returned and cleaned_html is omitted."},
+		{Name: "strict", Type: "bool", Default: "false", Desc: "When true, all warnings are promoted to errors and the command exits non-zero on any finding. Useful as a CI gate for static HTML templates. Default false."},
+		showLintDetailsFlag,
+	},
+	Validate: func(ctx context.Context, runtime *common.RuntimeContext) error {
+		body := runtime.Str("body")
+		bodyFile := strings.TrimSpace(runtime.Str("body-file"))
+
+		// Mutual exclusion + exactly-one-of (S2 contract «Public input
+		// surface inventory» — A. New verb cobra flag inventory, --body /
+		// --body-file row).
+		bodyEmpty := strings.TrimSpace(body) == ""
+		if bodyEmpty && bodyFile == "" {
+			return output.ErrValidation("exactly one of --body or --body-file is required")
+		}
+		if !bodyEmpty && bodyFile != "" {
+			return output.ErrValidation("--body and --body-file are mutually exclusive; pass exactly one")
+		}
+
+		// --body-file safety: cwd-subtree only. Mirror the existing pattern
+		// in mail_template_create.go:resolveTemplateContent + shortcut
+		// runtime.ValidatePath (S2 contract MUST reuse list).
+		if bodyFile != "" {
+			if err := runtime.ValidatePath(bodyFile); err != nil {
+				return output.ErrValidation("--body-file: %v", err)
+			}
+		}
+
+		return nil
+	},
+	DryRun: func(ctx context.Context, runtime *common.RuntimeContext) *common.DryRunAPI {
+		// Pure local — no network IO. Surface this explicitly so the
+		// dry-run envelope makes clear that running the command for real
+		// has zero side effects.
+		api := common.NewDryRunAPI().
+			Desc("Lint HTML body locally (no API call, no draft mutation, no network IO).").
+			Set("mode", "local-lint-only").
+			Set("auto_fix", runtime.Bool("auto-fix")).
+			Set("strict", runtime.Bool("strict"))
+		if path := strings.TrimSpace(runtime.Str("body-file")); path != "" {
+			api = api.Set("body_source", "file").Set("body_file", path)
+		} else {
+			api = api.Set("body_source", "flag")
+		}
+		return api
+	},
+	Execute: func(ctx context.Context, runtime *common.RuntimeContext) error {
+		body, err := readLintHTMLBody(runtime)
+		if err != nil {
+			return err
+		}
+
+		autoFix := runtime.Bool("auto-fix")
+		strict := runtime.Bool("strict")
+
+		// Plain-text input: short-circuit to an empty report (lib short-circuit
+		// path, also useful so users running --body 'plain text' don't get
+		// confused by an empty-but-rewritten output).
+		var rep lint.Report
+		if !bodyIsHTML(body) {
+			rep = lint.EmptyReport(body)
+		} else {
+			rep = lint.Run(body, lint.Options{AutoFix: autoFix, Strict: strict})
+		}
+
+		// Public envelope shape: token-frugal by default. `cleaned_html` is
+		// the primary product; the full `warnings[]` / `errors[]` Finding
+		// arrays are only attached when the caller passes
+		// `--show-lint-details`. A complex template can produce 30-80
+		// warnings whose full payload would dominate the response by
+		// thousands of tokens — AI consumers (the dominant audience for
+		// `+lint-html` as a draft pre-flight check) overwhelmingly only
+		// need cleaned_html.
+		showDetails := runtime.Bool("show-lint-details")
+		data := map[string]interface{}{}
+		if autoFix {
+			data["cleaned_html"] = rep.CleanedHTML
+		}
+		if showDetails {
+			data["warnings"] = rep.Applied // never nil — lib guarantees []
+			data["errors"] = rep.Blocked   // never nil — lib guarantees []
+		}
+
+		runtime.OutFormat(data, &output.Meta{Count: len(rep.Applied) + len(rep.Blocked)}, func(w io.Writer) {
+			printLintPretty(w, rep, autoFix)
+		})
+
+		// Strict / hard-error exit code semantics. Spec §4.2 row "--strict":
+		// "true 时把所有 warning 视作 error，exit 非零". The lint lib already
+		// promoted warnings to errors when strict is set; we only need to
+		// observe the resulting state.
+		if strict && (rep.HasErrorFindings || rep.HasWarningFindings) {
+			return output.Errorf(output.ExitValidation, "lint_strict",
+				"lint --strict: %d error / %d warning finding(s)",
+				len(rep.Blocked), len(rep.Applied))
+		}
+		// Non-strict path: errors that the writing-path safety floor would
+		// have removed are surfaced via the envelope but do NOT fail the
+		// command — `+lint-html` is a preview / advisory tool. The exit
+		// code stays 0 so CI scripts can post-process the envelope.
+		return nil
+	},
+}
+
+// readLintHTMLBody resolves the input HTML body from --body or --body-file.
+// Validate has already enforced that exactly one is set, so we don't repeat
+// the mutual-exclusion check here.
+func readLintHTMLBody(runtime *common.RuntimeContext) (string, error) {
+	if body := runtime.Str("body"); strings.TrimSpace(body) != "" {
+		return body, nil
+	}
+	path := strings.TrimSpace(runtime.Str("body-file"))
+	if path == "" {
+		// Should be unreachable given Validate, but defensive.
+		return "", output.ErrValidation("internal: --body-file empty after Validate")
+	}
+	f, err := runtime.FileIO().Open(path)
+	if err != nil {
+		return "", output.ErrValidation("open --body-file %s: %v", path, err)
+	}
+	defer f.Close()
+	buf, err := io.ReadAll(f)
+	if err != nil {
+		return "", output.ErrValidation("read --body-file %s: %v", path, err)
+	}
+	return string(buf), nil
+}
+
+// printLintPretty renders the lint report as a human-readable summary used
+// when --format pretty is selected. Stays terse so CI logs aren't drowned.
+func printLintPretty(w io.Writer, rep lint.Report, autoFix bool) {
+	if len(rep.Blocked) == 0 && len(rep.Applied) == 0 {
+		fmt.Fprintln(w, "OK: no compatibility / safety findings.")
+		if autoFix {
+			fmt.Fprintf(w, "cleaned_html_size: %d bytes\n", len(rep.CleanedHTML))
+		}
+		return
+	}
+	if len(rep.Blocked) > 0 {
+		fmt.Fprintf(w, "errors (%d):\n", len(rep.Blocked))
+		for _, f := range rep.Blocked {
+			fmt.Fprintf(w, "  - [%s] %s — %s\n", f.RuleID, f.TagOrAttr, f.Hint)
+		}
+	}
+	if len(rep.Applied) > 0 {
+		fmt.Fprintf(w, "warnings (%d):\n", len(rep.Applied))
+		for _, f := range rep.Applied {
+			fmt.Fprintf(w, "  - [%s] %s — %s\n", f.RuleID, f.TagOrAttr, f.Hint)
+		}
+	}
+	if autoFix {
+		fmt.Fprintf(w, "cleaned_html_size: %d bytes\n", len(rep.CleanedHTML))
+	} else {
+		fmt.Fprintln(w, "(--auto-fix=false: cleaned_html omitted; rerun without the flag to receive the rewritten HTML)")
+	}
+}
diff --git a/shortcuts/mail/mail_lint_html_test.go b/shortcuts/mail/mail_lint_html_test.go
new file mode 100644
index 000000000..1aceea219
--- /dev/null
+++ b/shortcuts/mail/mail_lint_html_test.go
@@ -0,0 +1,339 @@
+// Copyright (c) 2026 Lark Technologies Pte. Ltd.
+// SPDX-License-Identifier: MIT
+
+package mail
+
+import (
+	"encoding/json"
+	"os"
+	"strings"
+	"testing"
+)
+
+// =====================================================================
+// +lint-html Shortcut tests — public stdout envelope contract checks.
+//
+// These exercise the full cobra Mount → Execute pipeline (parse args →
+// Validate → Execute → OutFormat) so they catch any regression in flag
+// declaration, mutual-exclusion validation, path safety, and the JSON
+// envelope shape (spec §4.2 + S2 contract «Stdout envelope contract»).
+// =====================================================================
+
+// TestMailLintHTML_RequiresExactlyOneOfBodyOrFile verifies the mutual-
+// exclusion + at-least-one-of constraint surfaces ErrValidation.
+func TestMailLintHTML_RequiresExactlyOneOfBodyOrFile(t *testing.T) {
+	f, stdout, _, _ := mailShortcutTestFactory(t)
+
+	t.Run("neither flag", func(t *testing.T) {
+		err := runMountedMailShortcut(t, MailLintHTML, []string{"+lint-html"}, f, stdout)
+		if err == nil {
+			t.Fatal("expected error when neither flag is set")
+		}
+		if !strings.Contains(err.Error(), "exactly one of --body or --body-file") {
+			t.Errorf("wrong error: %v", err)
+		}
+	})
+
+	t.Run("both flags", func(t *testing.T) {
+		err := runMountedMailShortcut(t, MailLintHTML, []string{
+			"+lint-html",
+			"--body", "<p>x</p>",
+			"--body-file", "fake.html",
+		}, f, stdout)
+		if err == nil {
+			t.Fatal("expected error when both flags set")
+		}
+		if !strings.Contains(err.Error(), "mutually exclusive") {
+			t.Errorf("wrong error: %v", err)
+		}
+	})
+}
+
+// TestMailLintHTML_BodyFilePathSafetyRejected verifies absolute paths /
+// `..` traversal are rejected (KB Pitfall 4 + S2 contract «Public input
+// surface inventory»).
+func TestMailLintHTML_BodyFilePathSafetyRejected(t *testing.T) {
+	f, stdout, _, _ := mailShortcutTestFactory(t)
+	chdirTemp(t)
+
+	t.Run("absolute path", func(t *testing.T) {
+		err := runMountedMailShortcut(t, MailLintHTML, []string{
+			"+lint-html",
+			"--body-file", "/etc/passwd",
+		}, f, stdout)
+		if err == nil {
+			t.Fatal("expected validation error for absolute path")
+		}
+	})
+
+	t.Run("dotdot traversal", func(t *testing.T) {
+		err := runMountedMailShortcut(t, MailLintHTML, []string{
+			"+lint-html",
+			"--body-file", "../../../etc/passwd",
+		}, f, stdout)
+		if err == nil {
+			t.Fatal("expected validation error for traversal")
+		}
+	})
+}
+
+// TestMailLintHTML_BodyFileReadsCwdSubpath verifies a legitimate cwd-subtree
+// path loads HTML correctly.
+func TestMailLintHTML_BodyFileReadsCwdSubpath(t *testing.T) {
+	f, stdout, _, _ := mailShortcutTestFactory(t)
+	chdirTemp(t)
+	if err := os.WriteFile("input.html", []byte(`<p>safe</p><script>1</script>`), 0o644); err != nil {
+		t.Fatal(err)
+	}
+
+	err := runMountedMailShortcut(t, MailLintHTML, []string{
+		"+lint-html",
+		"--body-file", "input.html",
+		"--show-lint-details",
+	}, f, stdout)
+	if err != nil {
+		t.Fatalf("expected success, got: %v", err)
+	}
+	data := decodeShortcutEnvelopeData(t, stdout)
+	errors, _ := data["errors"].([]interface{})
+	if len(errors) != 1 {
+		t.Errorf("expected 1 error finding (script), got %d: %+v", len(errors), errors)
+	}
+	cleaned, _ := data["cleaned_html"].(string)
+	if strings.Contains(cleaned, "<script") {
+		t.Errorf("cleaned_html should not contain <script>, got %q", cleaned)
+	}
+}
+
+// TestMailLintHTML_DefaultEnvelopeShape verifies the default envelope only
+// contains cleaned_html — warnings[] / errors[] are token-frugally suppressed
+// unless --show-lint-details is passed.
+func TestMailLintHTML_DefaultEnvelopeShape(t *testing.T) {
+	f, stdout, _, _ := mailShortcutTestFactory(t)
+
+	err := runMountedMailShortcut(t, MailLintHTML, []string{
+		"+lint-html",
+		"--body", `<p>safe content</p>`,
+	}, f, stdout)
+	if err != nil {
+		t.Fatalf("unexpected error: %v", err)
+	}
+
+	data := decodeShortcutEnvelopeData(t, stdout)
+	if _, ok := data["cleaned_html"]; !ok {
+		t.Error("cleaned_html key missing from envelope (default --auto-fix=true)")
+	}
+	if _, ok := data["warnings"]; ok {
+		t.Error("warnings[] must be hidden in default mode (use --show-lint-details to surface)")
+	}
+	if _, ok := data["errors"]; ok {
+		t.Error("errors[] must be hidden in default mode (use --show-lint-details to surface)")
+	}
+}
+
+// TestMailLintHTML_ShowLintDetailsExposesArrays verifies --show-lint-details
+// surfaces the full warnings[] / errors[] arrays alongside cleaned_html.
+func TestMailLintHTML_ShowLintDetailsExposesArrays(t *testing.T) {
+	f, stdout, _, _ := mailShortcutTestFactory(t)
+
+	err := runMountedMailShortcut(t, MailLintHTML, []string{
+		"+lint-html",
+		"--body", `<p>safe content</p>`,
+		"--show-lint-details",
+	}, f, stdout)
+	if err != nil {
+		t.Fatalf("unexpected error: %v", err)
+	}
+
+	data := decodeShortcutEnvelopeData(t, stdout)
+	if _, ok := data["warnings"]; !ok {
+		t.Error("warnings[] missing in --show-lint-details mode")
+	}
+	if _, ok := data["errors"]; !ok {
+		t.Error("errors[] missing in --show-lint-details mode")
+	}
+}
+
+// TestMailLintHTML_AutoFixFalseOmitsCleanedHTML verifies spec §4.2 row
+// "--auto-fix=false → cleaned_html absent". Pairs --auto-fix=false with
+// --show-lint-details so both finding arrays remain visible.
+func TestMailLintHTML_AutoFixFalseOmitsCleanedHTML(t *testing.T) {
+	f, stdout, _, _ := mailShortcutTestFactory(t)
+
+	err := runMountedMailShortcut(t, MailLintHTML, []string{
+		"+lint-html",
+		"--body", `<p>x</p>`,
+		"--auto-fix=false",
+		"--show-lint-details",
+	}, f, stdout)
+	if err != nil {
+		t.Fatalf("unexpected error: %v", err)
+	}
+
+	data := decodeShortcutEnvelopeData(t, stdout)
+	if _, ok := data["cleaned_html"]; ok {
+		t.Errorf("cleaned_html should be absent when --auto-fix=false")
+	}
+	if _, ok := data["warnings"]; !ok {
+		t.Error("warnings should still be present under --show-lint-details")
+	}
+	if _, ok := data["errors"]; !ok {
+		t.Error("errors should still be present under --show-lint-details")
+	}
+}
+
+// TestMailLintHTML_StrictExitsNonZero verifies --strict bumps the exit code.
+func TestMailLintHTML_StrictExitsNonZero(t *testing.T) {
+	f, stdout, _, _ := mailShortcutTestFactory(t)
+
+	err := runMountedMailShortcut(t, MailLintHTML, []string{
+		"+lint-html",
+		"--body", `<font color="red">x</font>`,
+		"--strict",
+		"--show-lint-details",
+	}, f, stdout)
+	if err == nil {
+		t.Fatal("expected non-zero exit under --strict with a warning, got nil")
+	}
+	// Envelope is still emitted (Execute writes to stdout before returning).
+	data := decodeShortcutEnvelopeData(t, stdout)
+	errors, _ := data["errors"].([]interface{})
+	if len(errors) == 0 {
+		t.Error("--strict should promote warnings to errors")
+	}
+}
+
+// TestMailLintHTML_StrictPassesOnCleanInput verifies --strict exits 0 when
+// no findings are surfaced.
+func TestMailLintHTML_StrictPassesOnCleanInput(t *testing.T) {
+	f, stdout, _, _ := mailShortcutTestFactory(t)
+
+	err := runMountedMailShortcut(t, MailLintHTML, []string{
+		"+lint-html",
+		"--body", `<p>safe content</p>`,
+		"--strict",
+	}, f, stdout)
+	if err != nil {
+		t.Fatalf("expected success on clean input under strict, got: %v", err)
+	}
+}
+
+// TestMailLintHTML_PlainTextBodyShortCircuits verifies plain-text input
+// produces empty arrays (lib short-circuit path) when --show-lint-details is
+// set; without the flag, the arrays are omitted entirely.
+func TestMailLintHTML_PlainTextBodyShortCircuits(t *testing.T) {
+	f, stdout, _, _ := mailShortcutTestFactory(t)
+
+	err := runMountedMailShortcut(t, MailLintHTML, []string{
+		"+lint-html",
+		"--body", "just plain text, no markup",
+		"--show-lint-details",
+	}, f, stdout)
+	if err != nil {
+		t.Fatalf("unexpected error: %v", err)
+	}
+	data := decodeShortcutEnvelopeData(t, stdout)
+	w, _ := data["warnings"].([]interface{})
+	e, _ := data["errors"].([]interface{})
+	if len(w) != 0 || len(e) != 0 {
+		t.Errorf("plain text should produce no findings, got w=%v e=%v", w, e)
+	}
+}
+
+// TestMailLintHTML_FindingShape verifies each finding entry has the
+// contract-required keys (rule_id / severity / tag_or_attr / excerpt / hint).
+func TestMailLintHTML_FindingShape(t *testing.T) {
+	f, stdout, _, _ := mailShortcutTestFactory(t)
+
+	err := runMountedMailShortcut(t, MailLintHTML, []string{
+		"+lint-html",
+		"--body", `<p>x</p><script>alert(1)</script>`,
+		"--show-lint-details",
+	}, f, stdout)
+	if err != nil {
+		t.Fatalf("unexpected error: %v", err)
+	}
+	data := decodeShortcutEnvelopeData(t, stdout)
+	errors, _ := data["errors"].([]interface{})
+	if len(errors) == 0 {
+		t.Fatal("expected at least 1 error finding")
+	}
+	first, _ := errors[0].(map[string]interface{})
+	for _, key := range []string{"rule_id", "severity", "tag_or_attr", "excerpt", "hint"} {
+		if _, ok := first[key]; !ok {
+			t.Errorf("finding missing required key %q: %+v", key, first)
+		}
+	}
+	if first["severity"] != "error" {
+		t.Errorf("severity = %v, want error", first["severity"])
+	}
+	if !strings.HasPrefix(first["rule_id"].(string), "TAG_") &&
+		!strings.HasPrefix(first["rule_id"].(string), "ATTR_") &&
+		!strings.HasPrefix(first["rule_id"].(string), "STYLE_") {
+		t.Errorf("rule_id must be UPPER_SNAKE_CASE prefix, got %v", first["rule_id"])
+	}
+}
+
+// TestMailLintHTML_DryRun verifies dry-run mode doesn't execute lint and
+// surfaces the read-only / no-network annotation.
+func TestMailLintHTML_DryRun(t *testing.T) {
+	f, stdout, _, _ := mailShortcutTestFactory(t)
+
+	err := runMountedMailShortcut(t, MailLintHTML, []string{
+		"+lint-html",
+		"--body", `<p>x</p>`,
+		"--dry-run",
+	}, f, stdout)
+	if err != nil {
+		t.Fatalf("unexpected error: %v", err)
+	}
+	// Dry-run output is JSON containing "mode":"local-lint-only".
+	if !strings.Contains(stdout.String(), "local-lint-only") {
+		t.Errorf("expected dry-run mode marker, stdout=%s", stdout.String())
+	}
+}
+
+// TestMailLintHTML_BlockedTagAndWarningAccumulate verifies the report
+// surfaces both warning + error findings simultaneously.
+func TestMailLintHTML_BlockedTagAndWarningAccumulate(t *testing.T) {
+	f, stdout, _, _ := mailShortcutTestFactory(t)
+
+	body := `<font color="red">warn-tag</font><script>err-tag</script>` +
+		`<a href="javascript:0">err-url</a>`
+	err := runMountedMailShortcut(t, MailLintHTML, []string{
+		"+lint-html",
+		"--body", body,
+		"--show-lint-details",
+	}, f, stdout)
+	if err != nil {
+		t.Fatalf("unexpected error: %v", err)
+	}
+	data := decodeShortcutEnvelopeData(t, stdout)
+	w, _ := data["warnings"].([]interface{})
+	e, _ := data["errors"].([]interface{})
+	if len(w) < 1 {
+		t.Errorf("expected ≥ 1 warning, got %d", len(w))
+	}
+	if len(e) < 2 {
+		t.Errorf("expected ≥ 2 errors (script + js URL), got %d", len(e))
+	}
+}
+
+// TestMailLintHTML_FindingsAreJSONSerialisable confirms the cleaned envelope
+// can round-trip through json (no nil / function values leak in).
+func TestMailLintHTML_FindingsAreJSONSerialisable(t *testing.T) {
+	f, stdout, _, _ := mailShortcutTestFactory(t)
+
+	err := runMountedMailShortcut(t, MailLintHTML, []string{
+		"+lint-html",
+		"--body", `<font color="red">x</font>`,
+	}, f, stdout)
+	if err != nil {
+		t.Fatalf("unexpected error: %v", err)
+	}
+	// Re-encode the data back to JSON to confirm it's serialisable.
+	data := decodeShortcutEnvelopeData(t, stdout)
+	if _, err := json.Marshal(data); err != nil {
+		t.Errorf("envelope not JSON-serialisable: %v", err)
+	}
+}
diff --git a/shortcuts/mail/mail_lint_writepath.go b/shortcuts/mail/mail_lint_writepath.go
new file mode 100644
index 000000000..463a8912c
--- /dev/null
+++ b/shortcuts/mail/mail_lint_writepath.go
@@ -0,0 +1,115 @@
+// Copyright (c) 2026 Lark Technologies Pte. Ltd.
+// SPDX-License-Identifier: MIT
+
+package mail
+
+import (
+	"github.com/larksuite/cli/shortcuts/common"
+	"github.com/larksuite/cli/shortcuts/mail/lint"
+)
+
+// showLintDetailsFlag is the optional --show-lint-details flag shared by every
+// compose shortcut (+send / +draft-create / +reply / +reply-all / +forward /
+// +draft-edit). By default the envelope only carries `lint_applied_count` /
+// `original_blocked_count`; passing this flag attaches the full
+// `lint_applied[]` / `original_blocked[]` arrays so callers can inspect the
+// individual findings for debugging. Default-off keeps envelope small for AI
+// consumers — rich-list templates can trigger 20+ warnings whose full payload
+// would balloon the response by thousands of tokens.
+var showLintDetailsFlag = common.Flag{
+	Name: "show-lint-details",
+	Type: "bool",
+	Desc: "Include the full lint_applied[] / original_blocked[] arrays in the envelope. Default: only counts (lint_applied_count / original_blocked_count) are returned to keep the envelope small.",
+}
+
+// runWritePathLint is the single entrypoint compose 5 + +draft-edit body ops
+// use to invoke the lint lib before writing to emlbuilder / draftpkg.Apply.
+//
+// The writing-path safety contract (spec §4.3) is:
+//   - AutoFix is ALWAYS true (no `--no-lint` opt-out); errors are dropped
+//     and warnings are auto-fixed in place.
+//   - Strict is ALWAYS false; warnings never bump the exit code on the
+//     write path (compare with `+lint-html --strict` which is a CI tool).
+//   - The returned report is appended to the writing-path stdout envelope
+//     under the contract keys `lint_applied` (warnings) and
+//     `original_blocked` (errors); both arrays are always present (possibly
+//     empty) so consumers can rely on `data.lint_applied[]` and
+//     `data.original_blocked[]` unconditionally.
+//   - When the body is plain-text, the lib short-circuits and returns an
+//     EmptyReport; the cleaned HTML equals the input verbatim. Compose 5
+//     callers are expected to gate the call on their existing useHTML
+//     branch (S2 contract «N-way isomorphism» — diff template) so the
+//     plain-text path doesn't pay the parse cost.
+//
+// Returns the cleaned HTML + the report. Callers MUST use the returned
+// `cleaned` value as the body that goes to bld.HTMLBody / draftpkg.Apply
+// (writing the original `body` would defeat the safety contract).
+func runWritePathLint(body string) (cleaned string, rep lint.Report) {
+	if body == "" {
+		return "", lint.EmptyReport("")
+	}
+	rep = lint.Run(body, lint.Options{AutoFix: true, Strict: false})
+	return rep.CleanedHTML, rep
+}
+
+// applyLintToEnvelope mutates the OutFormat data map by adding the
+// writing-path lint contract keys.
+//
+//   - `lint_applied_count` / `original_blocked_count` — ALWAYS present.
+//     Counts let AI / users know whether lint changed anything without paying
+//     the token cost of the full Finding payload (S3 envelope contract:
+//     compose responses must stay small enough for AI consumers).
+//   - `lint_applied[]` / `original_blocked[]` — ONLY present when the caller
+//     passes `--show-lint-details`. Both arrays are non-nil (possibly empty)
+//     so detail-mode consumers can rely on `data.lint_applied[]` /
+//     `data.original_blocked[]` unconditionally.
+func applyLintToEnvelope(data map[string]interface{}, applied, blocked []lint.Finding, showDetails bool) {
+	if applied == nil {
+		applied = []lint.Finding{}
+	}
+	if blocked == nil {
+		blocked = []lint.Finding{}
+	}
+	data["lint_applied_count"] = len(applied)
+	data["original_blocked_count"] = len(blocked)
+	if showDetails {
+		data["lint_applied"] = applied
+		data["original_blocked"] = blocked
+	}
+}
+
+// emptyLintEnvelopeFields returns the writing-path stdout-envelope fields
+// representing "no lint pass occurred" (e.g. plain-text body branch). Used by
+// compose 5's plain-text path so the public envelope still carries the
+// contract keys as empty arrays.
+func emptyLintEnvelopeFields() (lintApplied, originalBlocked []lint.Finding) {
+	return []lint.Finding{}, []lint.Finding{}
+}
+
+// lintFinding aliases the lint package's Finding type for callers that don't
+// want to import shortcuts/mail/lint directly (e.g. function signatures in
+// existing mail_*.go files that want to keep their import set minimal). It is
+// purely a syntactic convenience — both names refer to the same struct.
+type lintFinding = lint.Finding
+
+// emptyLintFindings returns two non-nil empty Finding slices, used by helpers
+// that initialise their outputs before knowing whether the body is HTML.
+// Equivalent to emptyLintEnvelopeFields but named to reflect "findings" rather
+// than "envelope fields" so call-sites read consistently with their context.
+func emptyLintFindings() (applied, blocked []lint.Finding) {
+	return []lint.Finding{}, []lint.Finding{}
+}
+
+// composeHTMLGuideHint is the recommended-reading message that compose
+// shortcuts (+send / +draft-create / +reply / +reply-all / +forward /
+// +draft-edit body op) attach to their stdout envelope under the key
+// `compose_hint`. AI / users SHOULD read references/lark-mail-html.md
+// before composing rich-HTML mail to follow the writing rules.
+const composeHTMLGuideHint = "Please refer to skills/lark-mail/references/lark-mail-html.md for the recommended HTML writing guidelines before composing mail."
+
+// addComposeHint inserts the compose-side reading hint into the envelope
+// data map under the key `compose_hint`. Compose shortcuts call this once
+// per top-level success branch so consumers always see the same hint key.
+func addComposeHint(out map[string]interface{}) {
+	out["compose_hint"] = composeHTMLGuideHint
+}
diff --git a/shortcuts/mail/mail_lint_writepath_test.go b/shortcuts/mail/mail_lint_writepath_test.go
new file mode 100644
index 000000000..4a38aa4f0
--- /dev/null
+++ b/shortcuts/mail/mail_lint_writepath_test.go
@@ -0,0 +1,352 @@
+// Copyright (c) 2026 Lark Technologies Pte. Ltd.
+// SPDX-License-Identifier: MIT
+
+package mail
+
+import (
+	"encoding/json"
+	"strings"
+	"testing"
+
+	"github.com/larksuite/cli/internal/httpmock"
+	"github.com/larksuite/cli/shortcuts/mail/lint"
+)
+
+// jsonDecoderUnmarshal is a thin alias used by helpers in this file to keep
+// the import set explicit even when the helper would otherwise be one-line.
+func jsonDecoderUnmarshal(b []byte, v interface{}) error { return json.Unmarshal(b, v) }
+
+// =====================================================================
+// Writing-path lint integration tests — compose 5 + +draft-edit emit
+// `lint_applied[]` and `original_blocked[]` arrays in the stdout envelope
+// always (spec §4.3 contract).
+// =====================================================================
+
+// TestRunWritePathLint_PlainTextReturnsEmptyReport verifies the helper
+// short-circuits on plain-text input.
+func TestRunWritePathLint_PlainTextReturnsEmptyReport(t *testing.T) {
+	cleaned, rep := runWritePathLint("")
+	if cleaned != "" {
+		t.Errorf("cleaned = %q, want empty", cleaned)
+	}
+	if rep.Applied == nil || rep.Blocked == nil {
+		t.Error("Applied/Blocked must be non-nil")
+	}
+	if len(rep.Applied) != 0 || len(rep.Blocked) != 0 {
+		t.Errorf("expected empty report, got applied=%d blocked=%d",
+			len(rep.Applied), len(rep.Blocked))
+	}
+}
+
+// TestRunWritePathLint_HTMLAlwaysAutofixesNeverStrict verifies the writing
+// path uses {AutoFix: true, Strict: false} — strict warnings would block
+// users on legitimate <font> tags, which spec §4.3 forbids.
+func TestRunWritePathLint_HTMLAlwaysAutofixesNeverStrict(t *testing.T) {
+	cleaned, rep := runWritePathLint(`<p><font color="red">x</font></p>`)
+	if !strings.Contains(cleaned, "<span") {
+		t.Errorf("expected autofix to rewrite <font>, cleaned=%q", cleaned)
+	}
+	if len(rep.Applied) != 1 {
+		t.Errorf("expected 1 warning surfaced, got %d", len(rep.Applied))
+	}
+	// In strict mode the warning would be in Blocked instead. Confirm the
+	// writing-path path does NOT promote.
+	if len(rep.Blocked) != 0 {
+		t.Errorf("writing-path must NOT use strict; expected 0 blocked, got %d", len(rep.Blocked))
+	}
+}
+
+// TestApplyLintToEnvelope_DefaultOnlyCounts verifies the helper writes
+// only counts in the default (non-detail) mode and omits the full Finding
+// arrays.
+func TestApplyLintToEnvelope_DefaultOnlyCounts(t *testing.T) {
+	data := map[string]interface{}{"existing": "value"}
+	rep := lint.EmptyReport(`<p>x</p>`)
+	applyLintToEnvelope(data, rep.Applied, rep.Blocked, false)
+
+	if data["existing"] != "value" {
+		t.Error("existing key was clobbered")
+	}
+	if data["lint_applied_count"] != 0 {
+		t.Errorf("lint_applied_count = %v, want 0", data["lint_applied_count"])
+	}
+	if data["original_blocked_count"] != 0 {
+		t.Errorf("original_blocked_count = %v, want 0", data["original_blocked_count"])
+	}
+	if _, ok := data["lint_applied"]; ok {
+		t.Error("lint_applied[] must NOT be present in default mode")
+	}
+	if _, ok := data["original_blocked"]; ok {
+		t.Error("original_blocked[] must NOT be present in default mode")
+	}
+}
+
+// TestApplyLintToEnvelope_DetailModeIncludesArrays verifies the detail mode
+// (showDetails=true) attaches the full non-nil Finding arrays alongside the
+// count fields.
+func TestApplyLintToEnvelope_DetailModeIncludesArrays(t *testing.T) {
+	data := map[string]interface{}{}
+	rep := lint.EmptyReport(`<p>x</p>`)
+	applyLintToEnvelope(data, rep.Applied, rep.Blocked, true)
+
+	if data["lint_applied_count"] != 0 {
+		t.Errorf("lint_applied_count = %v, want 0", data["lint_applied_count"])
+	}
+	la, ok := data["lint_applied"].([]lint.Finding)
+	if !ok {
+		t.Fatalf("lint_applied wrong type: %T", data["lint_applied"])
+	}
+	if la == nil {
+		t.Error("lint_applied is nil — must be empty slice in detail mode")
+	}
+	ob, ok := data["original_blocked"].([]lint.Finding)
+	if !ok {
+		t.Fatalf("original_blocked wrong type: %T", data["original_blocked"])
+	}
+	if ob == nil {
+		t.Error("original_blocked is nil — must be empty slice in detail mode")
+	}
+}
+
+// =====================================================================
+// End-to-end: +draft-create writing path emits envelope with lint fields.
+// =====================================================================
+
+// TestMailDraftCreate_WritePathLintEnvelopeDefault verifies +draft-create's
+// default envelope carries lint_applied_count / original_blocked_count and
+// suppresses the full Finding arrays.
+func TestMailDraftCreate_WritePathLintEnvelopeDefault(t *testing.T) {
+	f, stdout, _, reg := mailShortcutTestFactory(t)
+	chdirTemp(t)
+	registerMailboxProfileMock(reg)
+	registerDraftCreateOK(reg)
+
+	err := runMountedMailShortcut(t, MailDraftCreate, []string{
+		"+draft-create",
+		"--to", "alice@example.com",
+		"--subject", "Test",
+		"--body", `<p>safe</p><script>alert(1)</script><font color="red">red</font>`,
+	}, f, stdout)
+	if err != nil {
+		t.Fatalf("unexpected error: %v", err)
+	}
+	data := decodeShortcutEnvelopeData(t, stdout)
+
+	// Counts must be present and reflect ≥1 warning (<font>) + ≥1 error (<script>).
+	laCount, ok := data["lint_applied_count"].(float64)
+	if !ok || int(laCount) < 1 {
+		t.Errorf("lint_applied_count missing or <1: %v", data["lint_applied_count"])
+	}
+	obCount, ok := data["original_blocked_count"].(float64)
+	if !ok || int(obCount) < 1 {
+		t.Errorf("original_blocked_count missing or <1: %v", data["original_blocked_count"])
+	}
+	// Detail arrays must NOT appear in default mode.
+	if _, present := data["lint_applied"]; present {
+		t.Error("lint_applied[] must be hidden in default mode")
+	}
+	if _, present := data["original_blocked"]; present {
+		t.Error("original_blocked[] must be hidden in default mode")
+	}
+}
+
+// TestMailDraftCreate_WritePathLintEnvelopeWithDetails verifies that passing
+// --show-lint-details attaches the full Finding arrays alongside counts.
+func TestMailDraftCreate_WritePathLintEnvelopeWithDetails(t *testing.T) {
+	f, stdout, _, reg := mailShortcutTestFactory(t)
+	chdirTemp(t)
+	registerMailboxProfileMock(reg)
+	registerDraftCreateOK(reg)
+
+	err := runMountedMailShortcut(t, MailDraftCreate, []string{
+		"+draft-create",
+		"--to", "alice@example.com",
+		"--subject", "Test",
+		"--body", `<p>safe</p><script>alert(1)</script><font color="red">red</font>`,
+		"--show-lint-details",
+	}, f, stdout)
+	if err != nil {
+		t.Fatalf("unexpected error: %v", err)
+	}
+	data := decodeShortcutEnvelopeData(t, stdout)
+	la, ok := data["lint_applied"].([]interface{})
+	if !ok {
+		t.Fatalf("lint_applied missing or wrong type: %T", data["lint_applied"])
+	}
+	ob, ok := data["original_blocked"].([]interface{})
+	if !ok {
+		t.Fatalf("original_blocked missing or wrong type: %T", data["original_blocked"])
+	}
+	if len(la) < 1 {
+		t.Errorf("expected ≥1 lint_applied entry, got %d", len(la))
+	}
+	if len(ob) < 1 {
+		t.Errorf("expected ≥1 original_blocked entry, got %d", len(ob))
+	}
+}
+
+// TestMailDraftCreate_PlainTextWritePathCountsAreZero verifies the envelope
+// emits zero counts (and no detail arrays) on the plain-text path.
+func TestMailDraftCreate_PlainTextWritePathCountsAreZero(t *testing.T) {
+	f, stdout, _, reg := mailShortcutTestFactory(t)
+	chdirTemp(t)
+	registerMailboxProfileMock(reg)
+	registerDraftCreateOK(reg)
+
+	err := runMountedMailShortcut(t, MailDraftCreate, []string{
+		"+draft-create",
+		"--to", "alice@example.com",
+		"--subject", "Test",
+		"--body", "plain text only",
+		"--plain-text",
+	}, f, stdout)
+	if err != nil {
+		t.Fatalf("unexpected error: %v", err)
+	}
+	data := decodeShortcutEnvelopeData(t, stdout)
+	if cnt, _ := data["lint_applied_count"].(float64); int(cnt) != 0 {
+		t.Errorf("lint_applied_count should be 0 on plain-text path, got %v", data["lint_applied_count"])
+	}
+	if cnt, _ := data["original_blocked_count"].(float64); int(cnt) != 0 {
+		t.Errorf("original_blocked_count should be 0 on plain-text path, got %v", data["original_blocked_count"])
+	}
+	if _, present := data["lint_applied"]; present {
+		t.Error("lint_applied[] must be hidden in default mode (plain-text)")
+	}
+	if _, present := data["original_blocked"]; present {
+		t.Error("original_blocked[] must be hidden in default mode (plain-text)")
+	}
+}
+
+// TestMailDraftCreate_AutofixApplied verifies that the writing path actually
+// rewrites the body before sending it to drafts.create — the user's <font>
+// tag must NOT reach the network as <font>.
+func TestMailDraftCreate_AutofixApplied(t *testing.T) {
+	f, stdout, _, reg := mailShortcutTestFactory(t)
+	chdirTemp(t)
+	registerMailboxProfileMock(reg)
+	stub := &httpmock.Stub{
+		Method: "POST",
+		URL:    "/user_mailboxes/me/drafts",
+		Body: map[string]interface{}{
+			"code": 0,
+			"data": map[string]interface{}{"draft_id": "d_test"},
+		},
+	}
+	reg.Register(stub)
+
+	err := runMountedMailShortcut(t, MailDraftCreate, []string{
+		"+draft-create",
+		"--to", "alice@example.com",
+		"--subject", "Test",
+		"--body", `<font color="red">x</font>`,
+	}, f, stdout)
+	if err != nil {
+		t.Fatalf("unexpected error: %v", err)
+	}
+
+	// Decode the raw EML and confirm <font> was rewritten before reaching
+	// emlbuilder. The base64url payload contains the HTML body in raw form.
+	captured := mustDecodeRawEMLFromStub(t, stub)
+	if strings.Contains(captured, "<font") {
+		t.Errorf("write-path should have rewritten <font>, EML still contains it: %q", captured)
+	}
+	if !strings.Contains(captured, "<span") {
+		t.Errorf("expected <span> wrapper in EML, got %q", captured)
+	}
+}
+
+// TestMailDraftCreate_ScriptStrippedBeforeSend verifies <script> is removed
+// from the EML before drafts.create is invoked (writing-path safety floor).
+func TestMailDraftCreate_ScriptStrippedBeforeSend(t *testing.T) {
+	f, stdout, _, reg := mailShortcutTestFactory(t)
+	chdirTemp(t)
+	registerMailboxProfileMock(reg)
+	stub := &httpmock.Stub{
+		Method: "POST",
+		URL:    "/user_mailboxes/me/drafts",
+		Body: map[string]interface{}{
+			"code": 0,
+			"data": map[string]interface{}{"draft_id": "d_test"},
+		},
+	}
+	reg.Register(stub)
+
+	err := runMountedMailShortcut(t, MailDraftCreate, []string{
+		"+draft-create",
+		"--to", "alice@example.com",
+		"--subject", "Test",
+		"--body", `<p>before</p><script>alert(1)</script><p>after</p>`,
+	}, f, stdout)
+	if err != nil {
+		t.Fatalf("unexpected error: %v", err)
+	}
+	eml := mustDecodeRawEMLFromStub(t, stub)
+	if strings.Contains(eml, "<script") {
+		t.Errorf("script should be stripped before EML send, got %q", eml)
+	}
+	if strings.Contains(eml, "alert(1)") {
+		t.Errorf("script content should be removed, got %q", eml)
+	}
+	if !strings.Contains(eml, "before") || !strings.Contains(eml, "after") {
+		t.Errorf("surrounding paragraphs should survive, got %q", eml)
+	}
+}
+
+// =====================================================================
+// Helpers — mail_shortcut_test.go ships the factory; these are local
+// httpmock registrations specific to the lint integration tests.
+// =====================================================================
+
+// registerMailboxProfileMock registers a stock GET .../profile response so
+// resolveComposeSenderEmail finds an address.
+func registerMailboxProfileMock(reg *httpmock.Registry) {
+	reg.Register(&httpmock.Stub{
+		Method: "GET",
+		URL:    "/user_mailboxes/me/profile",
+		Body: map[string]interface{}{
+			"code": 0,
+			"data": map[string]interface{}{
+				"primary_email_address": "sender@example.com",
+				"send_as":               []interface{}{},
+			},
+		},
+	})
+}
+
+// registerDraftCreateOK registers a successful drafts.create response.
+func registerDraftCreateOK(reg *httpmock.Registry) {
+	reg.Register(&httpmock.Stub{
+		Method: "POST",
+		URL:    "/user_mailboxes/me/drafts",
+		Body: map[string]interface{}{
+			"code": 0,
+			"data": map[string]interface{}{
+				"draft_id": "d_test123",
+			},
+		},
+	})
+}
+
+// mustDecodeRawEMLFromStub extracts the `raw` field from a captured body and
+// base64url-decodes it. The stub.CapturedBody is populated by the httpmock
+// after a match (registry.go:42 — the stub records every captured request).
+func mustDecodeRawEMLFromStub(t *testing.T, stub *httpmock.Stub) string {
+	t.Helper()
+	if len(stub.CapturedBody) == 0 {
+		t.Fatal("stub did not capture any request body")
+	}
+	var captured map[string]interface{}
+	if err := jsonUnmarshal(stub.CapturedBody, &captured); err != nil {
+		t.Fatalf("decode captured body: %v", err)
+	}
+	raw, ok := captured["raw"].(string)
+	if !ok {
+		t.Fatalf("captured body has no `raw` string field: %#v", captured)
+	}
+	return decodeBase64URL(raw)
+}
+
+func jsonUnmarshal(b []byte, v interface{}) error {
+	return jsonDecoderUnmarshal(b, v)
+}
diff --git a/shortcuts/mail/mail_reply.go b/shortcuts/mail/mail_reply.go
index a7674295e..53cc81c7a 100644
--- a/shortcuts/mail/mail_reply.go
+++ b/shortcuts/mail/mail_reply.go
@@ -42,7 +42,8 @@ var MailReply = common.Shortcut{
 		{Name: "template-id", Desc: "Optional. Apply a saved template by ID (decimal integer string) before composing. The template's body/to/cc/bcc/attachments are appended to the reply-derived values (no de-duplication; see warning in Execute output)."},
 		signatureFlag,
 		priorityFlag,
-		eventSummaryFlag, eventStartFlag, eventEndFlag, eventLocationFlag},
+		eventSummaryFlag, eventStartFlag, eventEndFlag, eventLocationFlag,
+		showLintDetailsFlag},
 	DryRun: func(ctx context.Context, runtime *common.RuntimeContext) *common.DryRunAPI {
 		messageId := runtime.Str("message-id")
 		confirmSend := runtime.Bool("confirm-send")
@@ -244,6 +245,10 @@ var MailReply = common.Shortcut{
 		var composedHTMLBody string
 		var composedTextBody string
 		var srcInlineBytes int64
+		// Lint findings flowing into the writing-path stdout envelope (spec §4.3).
+		// Initialise empty (non-nil) so the envelope always carries
+		// `lint_applied[]` / `original_blocked[]` even on the plain-text path.
+		lintApplied, lintBlocked := emptyLintEnvelopeFields()
 		if useHTML {
 			if err := validateInlineImageURLs(sourceMsg); err != nil {
 				return fmt.Errorf("HTML reply blocked: %w", err)
@@ -261,6 +266,16 @@ var MailReply = common.Shortcut{
 			if sigResult != nil {
 				bodyWithSig += draftpkg.SignatureSpacing() + draftpkg.BuildSignatureHTML(sigResult.ID, sigResult.RenderedContent)
 			}
+			// Writing-path lint (spec §4.3): operate on the user-authored body
+			// + signature ONLY — NOT on `quoted` (the <blockquote> derived from
+			// the original message). The original HTML already passed through
+			// the server-side RemoteSanitizer upstream; double-sanitising risks
+			// dropping legitimate Lark quote markup such as adit-html-block*
+			// / history-quote-* / lark-mail-doc-quote (S2 contract «Sibling-
+			// divergence ledger» / spec §4.4 row "通过").
+			cleaned, rep := runWritePathLint(bodyWithSig)
+			bodyWithSig = cleaned
+			lintApplied, lintBlocked = rep.Applied, rep.Blocked
 			composedHTMLBody = bodyWithSig + quoted
 			bld = bld.HTMLBody([]byte(composedHTMLBody))
 			bld = addSignatureImagesToBuilder(bld, sigResult)
@@ -316,8 +331,12 @@ var MailReply = common.Shortcut{
 		if err != nil {
 			return fmt.Errorf("failed to create draft: %w", err)
 		}
+		showLintDetails := runtime.Bool("show-lint-details")
 		if !confirmSend {
-			runtime.Out(buildDraftSavedOutput(draftResult, mailboxID), nil)
+			out := buildDraftSavedOutput(draftResult, mailboxID)
+			applyLintToEnvelope(out, lintApplied, lintBlocked, showLintDetails)
+			addComposeHint(out)
+			runtime.Out(out, nil)
 			hintSendDraft(runtime, mailboxID, draftResult.DraftID)
 			return nil
 		}
@@ -325,7 +344,10 @@ var MailReply = common.Shortcut{
 		if err != nil {
 			return fmt.Errorf("failed to send reply (draft %s created but not sent): %w", draftResult.DraftID, err)
 		}
-		runtime.Out(buildDraftSendOutput(resData, mailboxID), nil)
+		out := buildDraftSendOutput(resData, mailboxID)
+		applyLintToEnvelope(out, lintApplied, lintBlocked, showLintDetails)
+		addComposeHint(out)
+		runtime.Out(out, nil)
 		hintMarkAsRead(runtime, mailboxID, messageId)
 		return nil
 	},
diff --git a/shortcuts/mail/mail_reply_all.go b/shortcuts/mail/mail_reply_all.go
index e7eaf02ce..00b263e3d 100644
--- a/shortcuts/mail/mail_reply_all.go
+++ b/shortcuts/mail/mail_reply_all.go
@@ -43,7 +43,8 @@ var MailReplyAll = common.Shortcut{
 		{Name: "template-id", Desc: "Optional. Apply a saved template by ID (decimal integer string) before composing. The template's body/to/cc/bcc/attachments are appended to the reply-derived values (no de-duplication; see warning in Execute output)."},
 		signatureFlag,
 		priorityFlag,
-		eventSummaryFlag, eventStartFlag, eventEndFlag, eventLocationFlag},
+		eventSummaryFlag, eventStartFlag, eventEndFlag, eventLocationFlag,
+		showLintDetailsFlag},
 	DryRun: func(ctx context.Context, runtime *common.RuntimeContext) *common.DryRunAPI {
 		messageId := runtime.Str("message-id")
 		confirmSend := runtime.Bool("confirm-send")
@@ -253,6 +254,8 @@ var MailReplyAll = common.Shortcut{
 		var composedHTMLBody string
 		var composedTextBody string
 		var srcInlineBytes int64
+		// Lint findings flowing into the writing-path stdout envelope (spec §4.3).
+		lintApplied, lintBlocked := emptyLintEnvelopeFields()
 		if useHTML {
 			if err := validateInlineImageURLs(sourceMsg); err != nil {
 				return fmt.Errorf("HTML reply-all blocked: %w", err)
@@ -270,6 +273,15 @@ var MailReplyAll = common.Shortcut{
 			if sigResult != nil {
 				bodyWithSig += draftpkg.SignatureSpacing() + draftpkg.BuildSignatureHTML(sigResult.ID, sigResult.RenderedContent)
 			}
+			// Writing-path lint: same isomorphic pattern as +reply (spec §4.3,
+			// S2 contract «N-way isomorphism»). Operate on bodyWithSig only;
+			// the `quoted` block from the original message must NOT be re-
+			// linted (it already passed RemoteSanitizer upstream and may
+			// contain Feishu-native quote-block classes that the lint allow-
+			// list intentionally permits in pass-through).
+			cleaned, rep := runWritePathLint(bodyWithSig)
+			bodyWithSig = cleaned
+			lintApplied, lintBlocked = rep.Applied, rep.Blocked
 			composedHTMLBody = bodyWithSig + quoted
 			bld = bld.HTMLBody([]byte(composedHTMLBody))
 			bld = addSignatureImagesToBuilder(bld, sigResult)
@@ -325,8 +337,12 @@ var MailReplyAll = common.Shortcut{
 		if err != nil {
 			return fmt.Errorf("failed to create draft: %w", err)
 		}
+		showLintDetails := runtime.Bool("show-lint-details")
 		if !confirmSend {
-			runtime.Out(buildDraftSavedOutput(draftResult, mailboxID), nil)
+			out := buildDraftSavedOutput(draftResult, mailboxID)
+			applyLintToEnvelope(out, lintApplied, lintBlocked, showLintDetails)
+			addComposeHint(out)
+			runtime.Out(out, nil)
 			hintSendDraft(runtime, mailboxID, draftResult.DraftID)
 			return nil
 		}
@@ -334,7 +350,10 @@ var MailReplyAll = common.Shortcut{
 		if err != nil {
 			return fmt.Errorf("failed to send reply-all (draft %s created but not sent): %w", draftResult.DraftID, err)
 		}
-		runtime.Out(buildDraftSendOutput(resData, mailboxID), nil)
+		out := buildDraftSendOutput(resData, mailboxID)
+		applyLintToEnvelope(out, lintApplied, lintBlocked, showLintDetails)
+		addComposeHint(out)
+		runtime.Out(out, nil)
 		hintMarkAsRead(runtime, mailboxID, messageId)
 		return nil
 	},
diff --git a/shortcuts/mail/mail_send.go b/shortcuts/mail/mail_send.go
index 9ea3b422a..da262b30a 100644
--- a/shortcuts/mail/mail_send.go
+++ b/shortcuts/mail/mail_send.go
@@ -40,7 +40,8 @@ var MailSend = common.Shortcut{
 		{Name: "template-id", Desc: "Optional. Apply a saved template by ID (decimal integer string) before composing. The template's subject/body/to/cc/bcc/attachments are merged with user-supplied flags (user flags win). Requires --as user."},
 		signatureFlag,
 		priorityFlag,
-		eventSummaryFlag, eventStartFlag, eventEndFlag, eventLocationFlag},
+		eventSummaryFlag, eventStartFlag, eventEndFlag, eventLocationFlag,
+		showLintDetailsFlag},
 	DryRun: func(ctx context.Context, runtime *common.RuntimeContext) *common.DryRunAPI {
 		to := runtime.Str("to")
 		subject := runtime.Str("subject")
@@ -206,6 +207,10 @@ var MailSend = common.Shortcut{
 		var autoResolvedPaths []string
 		var composedHTMLBody string
 		var composedTextBody string
+		// Lint findings flowing into the writing-path stdout envelope (spec §4.3).
+		// Initialised as empty (non-nil) slices so the envelope always carries
+		// `lint_applied[]` / `original_blocked[]` even on the plain-text path.
+		lintApplied, lintBlocked := emptyLintEnvelopeFields()
 		if plainText {
 			composedTextBody = body
 			bld = bld.TextBody([]byte(composedTextBody))
@@ -220,6 +225,15 @@ var MailSend = common.Shortcut{
 				return resolveErr
 			}
 			resolved = injectSignatureIntoBody(resolved, sigResult)
+			// Writing-path lint: AutoFix=true / Strict=false (spec §4.3 — the
+			// writing-path safety contract has no `--no-lint` opt-out). Runs
+			// AFTER applyTemplate (above) + ResolveLocalImagePaths +
+			// injectSignatureIntoBody so the lint sees the final HTML the
+			// recipient renderer will see (S2 contract «Pre-call vs in-call
+			// validation split» — Compose 5 row).
+			cleanedHTML, rep := runWritePathLint(resolved)
+			resolved = cleanedHTML
+			lintApplied, lintBlocked = rep.Applied, rep.Blocked
 			composedHTMLBody = resolved
 			bld = bld.HTMLBody([]byte(composedHTMLBody))
 			bld = addSignatureImagesToBuilder(bld, sigResult)
@@ -283,8 +297,12 @@ var MailSend = common.Shortcut{
 		if err != nil {
 			return fmt.Errorf("failed to create draft: %w", err)
 		}
+		showLintDetails := runtime.Bool("show-lint-details")
 		if !confirmSend {
-			runtime.Out(buildDraftSavedOutput(draftResult, mailboxID), nil)
+			out := buildDraftSavedOutput(draftResult, mailboxID)
+			applyLintToEnvelope(out, lintApplied, lintBlocked, showLintDetails)
+			addComposeHint(out)
+			runtime.Out(out, nil)
 			hintSendDraft(runtime, mailboxID, draftResult.DraftID)
 			return nil
 		}
@@ -292,7 +310,10 @@ var MailSend = common.Shortcut{
 		if err != nil {
 			return fmt.Errorf("failed to send email (draft %s created but not sent): %w", draftResult.DraftID, err)
 		}
-		runtime.Out(buildDraftSendOutput(resData, mailboxID), nil)
+		out := buildDraftSendOutput(resData, mailboxID)
+		applyLintToEnvelope(out, lintApplied, lintBlocked, showLintDetails)
+		addComposeHint(out)
+		runtime.Out(out, nil)
 		return nil
 	},
 }
diff --git a/shortcuts/mail/shortcuts.go b/shortcuts/mail/shortcuts.go
index 8bd7a7f01..b1edcfbe4 100644
--- a/shortcuts/mail/shortcuts.go
+++ b/shortcuts/mail/shortcuts.go
@@ -25,5 +25,6 @@ func Shortcuts() []common.Shortcut {
 		MailShareToChat,
 		MailTemplateCreate,
 		MailTemplateUpdate,
+		MailLintHTML,
 	}
 }
diff --git a/skill-template/domains/mail.md b/skill-template/domains/mail.md
index 61a5e191c..6cc37515c 100644
--- a/skill-template/domains/mail.md
+++ b/skill-template/domains/mail.md
@@ -281,6 +281,58 @@ lark-cli mail +send --to alice@example.com --subject '周报' \
 lark-cli mail +reply --message-id <id> --body '收到，谢谢'
 ```
 
+**HTML 写法、风格指引、场景模板请参考三份配套文档：**
+
+- [HTML 兼容白名单](references/lark-mail-html-allowlist.md) — 标签 / class / inline style 速查；表格 / 列表 / 字号 / 引用 / 链接 / 内嵌图片标准写法
+- [飞书原生写法（含风格指引与 3 套完整模板）](references/lark-mail-feishu-native.md) — 通知 / 周报 / 决策请求三套漂亮模板（含问候开场 + 骨架 + 落款），直接替换变量即可使用
+- [`+lint-html` 用法](references/lark-mail-lint-html.md) — 创建草稿前自检 / 修复 AI 输出 / CI 校验静态 HTML 模板
+
+### 邮件风格规范
+
+写信时必须遵守的文风底线（详见 [飞书原生写法](references/lark-mail-feishu-native.md)）：
+
+- **禁机械编号**：用 `<ul>` / `<ol>` 表达列表，不要用 "一、二、三" / "①②③" / "1) 2) 3)"
+- **emoji 克制**：emoji 仅作状态标签（⏰紧急 / ✅完成 / ⚠️风险），不要在正文段落里堆 emoji 装饰
+- **禁冗长 disclaimer**：删除 "希望对您有帮助" / "感谢您的耐心阅读" 等填充语；信息密度优先
+- **标题 ≤ 30 字**：邮件主题 `--subject` 控制在 30 字内，避免被收件箱截断
+- **决策 / 结论前置**：第一段就给结论或决策项，让收件人扫一眼就知道是不是需要他做什么
+- **问候 / 落款不超 1 段**：`Hi 各位 Reviewer，` / `各位同事：` 一句话即可；落款 `[发件人姓名] / [团队] / [日期]` 一行结束
+
+### 严禁手拼 raw EML
+
+> **CRITICAL：严禁手拼 raw EML 直传 `drafts.create`，必须走 compose 5 shortcut（`+send` / `+draft-create` / `+reply` / `+reply-all` / `+forward`）或 `+draft-edit` 的 body op。**
+
+`emlbuilder` 已内置 RFC 合规处理（base64 / boundary / header folding / 附件 RFC 2231 等），AI **无需自学 RFC**。手拼 raw EML 几乎一定会踩坑（编码错误 / 边界冲突 / 收件端不渲染），且绕开了 lark-cli 的统一安全和兼容性兜底——本仓库的 `+send` / `+draft-create` 等 shortcut 已封装好所有发信细节，AI 只需关注业务字段（收件人 / 主题 / HTML 正文 / 附件路径）即可。
+
+### 写入路径内置 HTML lint
+
+`+send` / `+draft-create` / `+reply` / `+reply-all` / `+forward` / `+draft-edit` body op 在调用 `emlbuilder` **之前**会强制对 HTML 正文做 lint：
+
+- 错误（`<script>` / `on*` / `javascript:` URL / `<iframe>` / `<form>` / `<style>` / `<link>` 等）会被**直接删除**
+- 警告（`<font>` / `<center>` / `<marquee>`）会被**自动修复**为飞书原生写法
+- 不允许的 CSS property（`position` / `z-index` / `transform` 等）会从 inline `style` 里删除
+
+stdout 永远输出结构化 lint 报告，即使无改动也是空数组：
+
+```json
+{
+  "ok": true,
+  "data": {
+    "draft_id": "...",
+    "lint_applied": [
+      {"rule_id": "TAG_FONT_TO_SPAN", "severity": "warning", "tag_or_attr": "font",
+       "excerpt": "<font color=\"red\"...>", "hint": "已替换为 <span style=...>"}
+    ],
+    "original_blocked": [
+      {"rule_id": "TAG_SCRIPT_BLOCKED", "severity": "error", "tag_or_attr": "script",
+       "excerpt": "<script...>", "hint": "已整段删除（XSS 风险，服务端 RemoteSanitizer 必拒）"}
+    ]
+  }
+}
+```
+
+写入路径**没有 `--no-lint` 总开关**——这是本方案的安全契约。如果想预先看 HTML 是否会被改动，先用 [`+lint-html`](references/lark-mail-lint-html.md) 跑一次。
+
 ### 读取邮件：按需控制返回内容
 
 `+message`、`+messages`、`+thread` 默认返回 HTML 正文（`--html=true`）。仅需确认操作结果（如验证标记已读、移动文件夹是否成功）时，用 `--html=false` 跳过 HTML 正文，只返回纯文本，显著减少 token 消耗。
diff --git a/skills/lark-mail/SKILL.md b/skills/lark-mail/SKILL.md
index 4aed0d332..44ff6b0b6 100644
--- a/skills/lark-mail/SKILL.md
+++ b/skills/lark-mail/SKILL.md
@@ -12,6 +12,8 @@ metadata:
 
 **CRITICAL — 开始前 MUST 先用 Read 工具读取 [`../lark-shared/SKILL.md`](../lark-shared/SKILL.md)，其中包含认证、权限处理**
 
+**CRITICAL - 编辑邮件内容前 MUST 先用 Read 工具读取 [references/lark-mail-html.md](references/lark-mail-html.md)，其中包含邮件书写规范**
+
 ## 核心概念
 
 - **邮件（Message）**：一封具体的邮件，包含发件人、收件人、主题、正文（纯文本/HTML）、附件。每封邮件有唯一 `message_id`。
@@ -58,9 +60,10 @@ metadata:
 4. **回复** — `+reply` / `+reply-all`（默认存草稿，加 `--confirm-send` 则立即发送）
 5. **转发** — `+forward`（默认存草稿，加 `--confirm-send` 则立即发送）
 6. **新邮件** — `+send` 存草稿（默认），加 `--confirm-send` 发送
-7. **确认投递** — 立即发送后用 `send_status` 查询投递状态，定时发送后在预定时间后再查询；取消定时发送用 `cancel_scheduled_send`
-8. **编辑草稿** — `+draft-edit` 修改已有草稿。正文编辑通过 `--patch-file`：回复/转发草稿用 `set_reply_body` op 保留引用区，普通草稿用 `set_body` op
-9. **已读回执** —
+7. **HTML body 预检（可选）** — 复杂 HTML body 提交前可先跑 `+lint-html --strict` 看 lint 会改 / 删什么；写信路径（`+send` / `+draft-create` / `+reply` / `+reply-all` / `+forward` / `+draft-edit` body op）已内置 autofix，普通正文不必先跑。详见后文「写入路径内置 HTML lint」节
+8. **确认投递** — 立即发送后用 `send_status` 查询投递状态，定时发送后在预定时间后再查询；取消定时发送用 `cancel_scheduled_send`
+9. **编辑草稿** — `+draft-edit` 修改已有草稿。正文编辑通过 `--patch-file`：回复/转发草稿用 `set_reply_body` op 保留引用区，普通草稿用 `set_body` op
+10. **已读回执** —
    - **请求回执（写信侧）**：`--request-receipt` 仅在**用户显式要求**时添加，**不要从 subject / body 内容推断意图**。
    - **响应回执（拉信侧）**：拉信看到 `label_ids` 含 `READ_RECEIPT_REQUEST`（或 `-607`）时，**必须先问用户**是否回执（不要自动回执，涉及隐私）。用户同意 → `+send-receipt` 响应；用户不同意但想消掉提示 → `+decline-receipt` 只清本地标签、不发邮件。
 
@@ -295,6 +298,12 @@ lark-cli mail +send --to alice@example.com --subject '周报' \
 lark-cli mail +reply --message-id <id> --body '收到，谢谢'
 ```
 
+## 邮件书写规范
+
+- 写信时**必须**遵守 [邮件 HTML 写法规范](references/lark-mail-html.md) — **CRITICAL** 飞书邮箱已验证的最纯净美观写法集合
+- [`+lint-html` 用法](references/lark-mail-lint-html.md) — 创建草稿前自检 / 修复 HTML 输出
+- **官方模板库** [`assets/templates/`](assets/templates/) — 提供部分场景模板，可供参考
+
 ### 读取邮件：按需控制返回内容
 
 `+message`、`+messages`、`+thread` 默认返回 HTML 正文（`--html=true`）。仅需确认操作结果（如验证标记已读、移动文件夹是否成功）时，用 `--html=false` 跳过 HTML 正文，只返回纯文本，显著减少 token 消耗。
@@ -313,6 +322,8 @@ lark-cli mail +message --message-id <id>
 
 模板的创建 / 更新由专用 shortcut 处理（自动做 Drive 上传 + `<img src>` 改写成 `cid:`）；发信类 shortcut 通过 `--template-id <id>` 套用模板。
 
+> **跟仓库 `assets/templates/` 的区别**：本节讲的是**飞书 OAPI 的个人邮件模板系统**（用户邮箱里的"我的模板"），可在飞书客户端管理；上面"仓库内置 HTML 模板库"是 lark-cli 仓库里预制的飞书原生 HTML 文件，可供写信参考。
+
 **管理模板**：
 
 - [`+template-create`](references/lark-mail-template-create.md) — 创建新模板。`--name` 必填；正文通过 `--template-content` 或 `--template-content-file` 二选一；支持 HTML 内嵌图片自动上传到 Drive。
@@ -431,6 +442,7 @@ Shortcut 是对常用操作的高级封装（`lark-cli mail +<verb> [flags]`）
 | [`+share-to-chat`](references/lark-mail-share-to-chat.md) | Share an email or thread as a card to a Lark IM chat. |
 | [`+template-create`](references/lark-mail-template-create.md) | Create a personal mail template. Scans HTML <img src> local paths (reusing draft inline-image detection), uploads inline images and non-inline attachments to Drive, rewrites HTML to cid: references, and POSTs a Template payload to mail.user_mailbox.templates.create. |
 | [`+template-update`](references/lark-mail-template-update.md) | Update an existing mail template. Supports --inspect (read-only projection), --print-patch-template (prints a JSON skeleton for --patch-file), and flat flags (--set-subject / --set-name / etc). Internally it GETs the template, applies the patch, rewrites <img> local paths to cid: refs, and PUTs a full-replace update (no optimistic locking: last-write-wins). |
+| [`+lint-html`](references/lark-mail-lint-html.md) | Lint mail HTML body for compatibility / safety / Feishu-native rules. Returns warnings/errors and (default) auto-fixed HTML. Read-only: no draft, no API call. Use this BEFORE creating a draft to preview what the writing-path lint would change, or as a CI gate for static HTML templates. |
 
 ## API Resources
 
diff --git a/skills/lark-mail/assets/templates/job-application--resume.html b/skills/lark-mail/assets/templates/job-application--resume.html
new file mode 100644
index 000000000..a81e59021
--- /dev/null
+++ b/skills/lark-mail/assets/templates/job-application--resume.html
@@ -0,0 +1,40 @@
+<!--
+SUBJECT 模板（lark-cli mail --subject 用）：
+  应聘 [期望职位] · [姓名]
+-->
+<div style="margin-top:4px;margin-bottom:4px;line-height:1.6"><div dir="auto" style="font-size:14px"><span style="font-family:inherit"><span style="color:rgb(31,35,41)">尊敬的 [收件人称呼，如 HR / 招聘负责人 / 部门 leader]：</span></span></div></div>
+<div style="margin-top:4px;margin-bottom:4px;line-height:1.6"><div dir="auto" style="font-size:14px"><span style="font-family:inherit"><span style="color:rgb(31,35,41)">您好！</span></span></div></div>
+<div style="margin-top:4px;margin-bottom:4px;line-height:1.6"><div dir="auto" style="font-size:14px"><span style="font-family:inherit"><span style="color:rgb(31,35,41)">我是 [姓名]，[工作年限] 工作经验的 [岗位领域，如 后端工程师 / 产品设计师 / 数据分析师]。关注到贵司正在招聘 <b>[期望职位]</b>，结合自身背景与岗位要求高度匹配，特此投递简历，期待加入团队的机会。详细信息见下方简历正文。</span></span></div></div>
+<div style="margin-top:24px;margin-bottom:8px;line-height:1.6"><div dir="auto" style="text-align:center;font-size:14px"><b><span style="font-size:22px"><span style="font-family:LarkHackSafariFont,LarkEmojiFont,LarkChineseQuote,-apple-system,&quot;Helvetica Neue&quot;,Tahoma,&quot;PingFang SC&quot;,&quot;Microsoft Yahei&quot;,Arial,sans-serif"><span style="color:rgb(36,91,219)">[姓名]</span></span></span></b></div></div>
+<div style="margin-top:0px;margin-bottom:20px;line-height:1.6"><div dir="auto" style="text-align:center;font-size:14px"><span style="font-family:inherit"><span style="color:rgb(143,149,158);font-size:14px">应聘 [期望职位]｜[工作年限] 工作经验</span></span></div></div>
+<div style="margin-top:24px;margin-bottom:12px;line-height:1.6"><div dir="auto" style="font-size:14px;border-bottom:1px solid rgb(222,224,227);padding-bottom:6px"><b><span style="font-size:16px"><span style="font-family:inherit"><span style="color:rgb(31,35,41)">基本信息</span></span></span></b></div></div>
+<table style="border-collapse:collapse;width:100%;font-size:13px"><tbody><tr><td style="padding:4px 8px 4px 0;width:18%;color:rgb(143,149,158);vertical-align:top">姓名</td><td style="padding:4px 8px 4px 0;width:32%;color:rgb(31,35,41);vertical-align:top">[姓名]</td><td style="padding:4px 8px 4px 0;width:18%;color:rgb(143,149,158);vertical-align:top">性别</td><td style="padding:4px 0;width:32%;color:rgb(31,35,41);vertical-align:top">[性别]</td></tr><tr><td style="padding:4px 8px 4px 0;color:rgb(143,149,158);vertical-align:top">电话</td><td style="padding:4px 8px 4px 0;color:rgb(31,35,41);vertical-align:top">[+86 1XX-XXXX-XXXX]</td><td style="padding:4px 8px 4px 0;color:rgb(143,149,158);vertical-align:top">邮箱</td><td style="padding:4px 0;color:rgb(31,35,41);vertical-align:top"><a class="not-doclink" href="mailto:[your@email]" style="cursor:pointer;text-decoration:none;color:rgb(20,86,240)">[your@email]</a></td></tr><tr><td style="padding:4px 8px 4px 0;color:rgb(143,149,158);vertical-align:top">生日</td><td style="padding:4px 8px 4px 0;color:rgb(31,35,41);vertical-align:top">[YYYY-MM-DD]（[N] 岁）</td><td style="padding:4px 8px 4px 0;color:rgb(143,149,158);vertical-align:top">工作年限</td><td style="padding:4px 0;color:rgb(31,35,41);vertical-align:top">[N] 年</td></tr><tr><td style="padding:4px 8px 4px 0;color:rgb(143,149,158);vertical-align:top">家乡</td><td style="padding:4px 8px 4px 0;color:rgb(31,35,41);vertical-align:top">[城市]</td><td style="padding:4px 8px 4px 0;color:rgb(143,149,158);vertical-align:top">当前城市</td><td style="padding:4px 0;color:rgb(31,35,41);vertical-align:top">[城市]</td></tr><tr><td style="padding:4px 8px 4px 0;color:rgb(143,149,158);vertical-align:top">意向城市</td><td style="padding:4px 8px 4px 0;color:rgb(31,35,41);vertical-align:top">[城市 1] / [城市 2] / 不限</td><td style="padding:4px 8px 4px 0;color:rgb(143,149,158);vertical-align:top">期望职位</td><td style="padding:4px 0;color:rgb(31,35,41);vertical-align:top">[期望职位]</td></tr></tbody></table>
+<div style="margin-top:24px;margin-bottom:12px;line-height:1.6"><div dir="auto" style="font-size:14px;border-bottom:1px solid rgb(222,224,227);padding-bottom:6px"><b><span style="font-size:16px"><span style="font-family:inherit"><span style="color:rgb(31,35,41)">教育经历</span></span></span></b></div></div>
+<ol start="1" data-list-number="true" style="margin-top:0px;margin-bottom:0px;margin-left:0px;padding-left:0px;list-style-position:inside"><li class="temp-li number1" data-li-line="true" data-list="number1" data-ol-id="edu" data-start="1" style="line-height:1.6;margin-top:4px;margin-bottom:4px;padding-left:0px;display:list-item;list-style-type:decimal;font-family:inherit;font-size:14px;margin-left:0px;list-style-position:inside" dir="auto"><b><span style="font-family:inherit"><span style="color:rgb(31,35,41)">[学校名称]</span></span></b><span style="font-family:inherit"><span style="color:rgb(31,35,41)">　·　[学历，如 本科 / 硕士 / 博士]　·　[专业]</span></span><span style="font-family:inherit"><span style="color:rgb(143,149,158);font-size:13px">　·　[YYYY-MM] ~ [YYYY-MM]</span></span></li><li class="temp-li number1" data-li-line="true" data-list="number1" data-ol-id="edu" data-start="2" style="line-height:1.6;margin-top:4px;margin-bottom:4px;padding-left:0px;display:list-item;list-style-type:decimal;font-family:inherit;font-size:14px;margin-left:0px;list-style-position:inside" dir="auto"><b><span style="font-family:inherit"><span style="color:rgb(31,35,41)">[学校名称]</span></span></b><span style="font-family:inherit"><span style="color:rgb(31,35,41)">　·　[学历]　·　[专业]</span></span><span style="font-family:inherit"><span style="color:rgb(143,149,158);font-size:13px">　·　[YYYY-MM] ~ [YYYY-MM]</span></span></li></ol>
+<div style="margin-top:24px;margin-bottom:12px;line-height:1.6"><div dir="auto" style="font-size:14px;border-bottom:1px solid rgb(222,224,227);padding-bottom:6px"><b><span style="font-size:16px"><span style="font-family:inherit"><span style="color:rgb(31,35,41)">工作经历</span></span></span></b></div></div>
+<ol start="1" data-list-number="true" style="margin-top:0px;margin-bottom:0px;margin-left:0px;padding-left:0px;list-style-position:inside"><li class="temp-li number1" data-li-line="true" data-list="number1" data-ol-id="work" data-start="1" style="line-height:1.6;margin-top:4px;margin-bottom:4px;padding-left:0px;display:list-item;list-style-type:decimal;font-family:inherit;font-size:14px;margin-left:0px;list-style-position:inside" dir="auto"><b><span style="font-family:inherit"><span style="color:rgb(31,35,41)">[公司名称]</span></span></b><span style="font-family:inherit"><span style="color:rgb(31,35,41)">　·　[职位]　·　[全职 / 实习 / 兼职]</span></span><span style="font-family:inherit"><span style="color:rgb(143,149,158);font-size:13px">　·　[YYYY-MM] ~ [YYYY-MM 或 至今]</span></span></li></ol>
+<ul data-list-bullet="true" style="margin-top:0px;margin-bottom:0px;margin-left:0px;padding-left:0px;list-style-position:inside"><ul data-list-bullet="true" style="margin:0px 0px 0px 24px;padding-left:0px;list-style-position:inside"><li class="temp-li bullet2" data-li-line="true" data-list="bullet2" style="line-height:1.6;margin-top:2px;margin-bottom:2px;padding-left:0px;display:list-item;list-style-type:circle;font-family:inherit;font-size:14px;margin-left:0px;list-style-position:inside" dir="auto"><span style="font-family:inherit"><span style="color:rgb(31,35,41)">[工作职责描述 1：聚焦动作 + 产出，附数据 / 影响范围]</span></span></li><li class="temp-li bullet2" data-li-line="true" data-list="bullet2" style="line-height:1.6;margin-top:2px;margin-bottom:2px;padding-left:0px;display:list-item;list-style-type:circle;font-family:inherit;font-size:14px;margin-left:0px;list-style-position:inside" dir="auto"><span style="font-family:inherit"><span style="color:rgb(31,35,41)">[工作职责描述 2：核心成果 + 关键技术 / 方法]</span></span></li><li class="temp-li bullet2" data-li-line="true" data-list="bullet2" style="line-height:1.6;margin-top:2px;margin-bottom:2px;padding-left:0px;display:list-item;list-style-type:circle;font-family:inherit;font-size:14px;margin-left:0px;list-style-position:inside" dir="auto"><span style="font-family:inherit"><span style="color:rgb(31,35,41)">[工作职责描述 3]</span></span></li></ul></ul>
+<ol start="2" data-list-number="true" style="margin-top:0px;margin-bottom:0px;margin-left:0px;padding-left:0px;list-style-position:inside"><li class="temp-li number1" data-li-line="true" data-list="number1" data-ol-id="work" data-start="2" style="line-height:1.6;margin-top:4px;margin-bottom:4px;padding-left:0px;display:list-item;list-style-type:decimal;font-family:inherit;font-size:14px;margin-left:0px;list-style-position:inside" dir="auto"><b><span style="font-family:inherit"><span style="color:rgb(31,35,41)">[公司名称]</span></span></b><span style="font-family:inherit"><span style="color:rgb(31,35,41)">　·　[职位]　·　[全职 / 实习 / 兼职]</span></span><span style="font-family:inherit"><span style="color:rgb(143,149,158);font-size:13px">　·　[YYYY-MM] ~ [YYYY-MM]</span></span></li></ol>
+<ul data-list-bullet="true" style="margin-top:0px;margin-bottom:0px;margin-left:0px;padding-left:0px;list-style-position:inside"><ul data-list-bullet="true" style="margin:0px 0px 0px 24px;padding-left:0px;list-style-position:inside"><li class="temp-li bullet2" data-li-line="true" data-list="bullet2" style="line-height:1.6;margin-top:2px;margin-bottom:2px;padding-left:0px;display:list-item;list-style-type:circle;font-family:inherit;font-size:14px;margin-left:0px;list-style-position:inside" dir="auto"><span style="font-family:inherit"><span style="color:rgb(31,35,41)">[工作职责描述 1]</span></span></li><li class="temp-li bullet2" data-li-line="true" data-list="bullet2" style="line-height:1.6;margin-top:2px;margin-bottom:2px;padding-left:0px;display:list-item;list-style-type:circle;font-family:inherit;font-size:14px;margin-left:0px;list-style-position:inside" dir="auto"><span style="font-family:inherit"><span style="color:rgb(31,35,41)">[工作职责描述 2]</span></span></li></ul></ul>
+<div style="margin-top:24px;margin-bottom:12px;line-height:1.6"><div dir="auto" style="font-size:14px;border-bottom:1px solid rgb(222,224,227);padding-bottom:6px"><b><span style="font-size:16px"><span style="font-family:inherit"><span style="color:rgb(31,35,41)">项目经历</span></span></span></b></div></div>
+<ol start="1" data-list-number="true" style="margin-top:0px;margin-bottom:0px;margin-left:0px;padding-left:0px;list-style-position:inside"><li class="temp-li number1" data-li-line="true" data-list="number1" data-ol-id="proj" data-start="1" style="line-height:1.6;margin-top:4px;margin-bottom:4px;padding-left:0px;display:list-item;list-style-type:decimal;font-family:inherit;font-size:14px;margin-left:0px;list-style-position:inside" dir="auto"><b><span style="font-family:inherit"><span style="color:rgb(31,35,41)">[项目名称]</span></span></b><span style="font-family:inherit"><span style="color:rgb(31,35,41)">　·　[角色，如 负责人 / 核心开发 / 设计主导]</span></span><span style="font-family:inherit"><span style="color:rgb(143,149,158);font-size:13px">　·　[YYYY-MM] ~ [YYYY-MM]</span></span></li></ol>
+<ul data-list-bullet="true" style="margin-top:0px;margin-bottom:0px;margin-left:0px;padding-left:0px;list-style-position:inside"><ul data-list-bullet="true" style="margin:0px 0px 0px 24px;padding-left:0px;list-style-position:inside"><li class="temp-li bullet2" data-li-line="true" data-list="bullet2" style="line-height:1.6;margin-top:2px;margin-bottom:2px;padding-left:0px;display:list-item;list-style-type:circle;font-family:inherit;font-size:14px;margin-left:0px;list-style-position:inside" dir="auto"><span style="font-family:inherit"><span style="color:rgb(31,35,41)">[项目背景 / 业务价值 1 句话]</span></span></li><li class="temp-li bullet2" data-li-line="true" data-list="bullet2" style="line-height:1.6;margin-top:2px;margin-bottom:2px;padding-left:0px;display:list-item;list-style-type:circle;font-family:inherit;font-size:14px;margin-left:0px;list-style-position:inside" dir="auto"><span style="font-family:inherit"><span style="color:rgb(31,35,41)">[关键贡献 / 技术栈]</span></span></li><li class="temp-li bullet2" data-li-line="true" data-list="bullet2" style="line-height:1.6;margin-top:2px;margin-bottom:2px;padding-left:0px;display:list-item;list-style-type:circle;font-family:inherit;font-size:14px;margin-left:0px;list-style-position:inside" dir="auto"><span style="font-family:inherit"><span style="color:rgb(31,35,41)">[项目成果 / 数据指标]</span></span></li></ul></ul>
+<ol start="2" data-list-number="true" style="margin-top:0px;margin-bottom:0px;margin-left:0px;padding-left:0px;list-style-position:inside"><li class="temp-li number1" data-li-line="true" data-list="number1" data-ol-id="proj" data-start="2" style="line-height:1.6;margin-top:4px;margin-bottom:4px;padding-left:0px;display:list-item;list-style-type:decimal;font-family:inherit;font-size:14px;margin-left:0px;list-style-position:inside" dir="auto"><b><span style="font-family:inherit"><span style="color:rgb(31,35,41)">[项目名称]</span></span></b><span style="font-family:inherit"><span style="color:rgb(31,35,41)">　·　[角色]</span></span><span style="font-family:inherit"><span style="color:rgb(143,149,158);font-size:13px">　·　[YYYY-MM] ~ [YYYY-MM]</span></span></li></ol>
+<ul data-list-bullet="true" style="margin-top:0px;margin-bottom:0px;margin-left:0px;padding-left:0px;list-style-position:inside"><ul data-list-bullet="true" style="margin:0px 0px 0px 24px;padding-left:0px;list-style-position:inside"><li class="temp-li bullet2" data-li-line="true" data-list="bullet2" style="line-height:1.6;margin-top:2px;margin-bottom:2px;padding-left:0px;display:list-item;list-style-type:circle;font-family:inherit;font-size:14px;margin-left:0px;list-style-position:inside" dir="auto"><span style="font-family:inherit"><span style="color:rgb(31,35,41)">[项目描述 + 关键贡献 + 成果数据]</span></span></li></ul></ul>
+<div style="margin-top:24px;margin-bottom:12px;line-height:1.6"><div dir="auto" style="font-size:14px;border-bottom:1px solid rgb(222,224,227);padding-bottom:6px"><b><span style="font-size:16px"><span style="font-family:inherit"><span style="color:rgb(31,35,41)">技能</span></span></span></b></div></div>
+<div style="margin-top:8px;margin-bottom:4px;line-height:2"><div dir="auto" style="font-size:14px"><span style="background-color:rgb(232,243,255);color:rgb(20,86,240);padding:2px 10px;border-radius:10px;font-size:12px;margin-right:6px">[技能 1]</span><span style="background-color:rgb(232,243,255);color:rgb(20,86,240);padding:2px 10px;border-radius:10px;font-size:12px;margin-right:6px">[技能 2]</span><span style="background-color:rgb(232,243,255);color:rgb(20,86,240);padding:2px 10px;border-radius:10px;font-size:12px;margin-right:6px">[技能 3]</span><span style="background-color:rgb(232,243,255);color:rgb(20,86,240);padding:2px 10px;border-radius:10px;font-size:12px;margin-right:6px">[技能 4]</span><span style="background-color:rgb(232,243,255);color:rgb(20,86,240);padding:2px 10px;border-radius:10px;font-size:12px;margin-right:6px">[技能 5]</span><span style="background-color:rgb(232,243,255);color:rgb(20,86,240);padding:2px 10px;border-radius:10px;font-size:12px;margin-right:6px">[技能 6]</span><span style="background-color:rgb(232,243,255);color:rgb(20,86,240);padding:2px 10px;border-radius:10px;font-size:12px;margin-right:6px">[技能 7]</span><span style="background-color:rgb(232,243,255);color:rgb(20,86,240);padding:2px 10px;border-radius:10px;font-size:12px;margin-right:6px">[技能 8]</span></div></div>
+<div style="margin-top:24px;margin-bottom:12px;line-height:1.6"><div dir="auto" style="font-size:14px;border-bottom:1px solid rgb(222,224,227);padding-bottom:6px"><b><span style="font-size:16px"><span style="font-family:inherit"><span style="color:rgb(31,35,41)">证书</span></span></span></b></div></div>
+<ul style="margin-top:0px;margin-bottom:0px;margin-left:0px;padding-left:0px;list-style-position:inside" data-list-bullet="true"><li class="temp-li bullet1" data-li-line="true" data-list="bullet1" style="line-height:1.6;margin-top:4px;margin-bottom:4px;padding-left:0px;display:list-item;list-style-type:disc;font-family:inherit;font-size:14px;margin-left:0px;list-style-position:inside" dir="auto"><b><span style="font-family:inherit"><span style="color:rgb(31,35,41)">[证书名称]</span></span></b><span style="font-family:inherit"><span style="color:rgb(143,149,158);font-size:13px">　·　[YYYY-MM]</span></span><span style="font-family:inherit"><span style="color:rgb(31,35,41)"> — [一句话描述：颁发机构 / 等级 / 用途]</span></span></li><li class="temp-li bullet1" data-li-line="true" data-list="bullet1" style="line-height:1.6;margin-top:4px;margin-bottom:4px;padding-left:0px;display:list-item;list-style-type:disc;font-family:inherit;font-size:14px;margin-left:0px;list-style-position:inside" dir="auto"><b><span style="font-family:inherit"><span style="color:rgb(31,35,41)">[证书名称]</span></span></b><span style="font-family:inherit"><span style="color:rgb(143,149,158);font-size:13px">　·　[YYYY-MM]</span></span><span style="font-family:inherit"><span style="color:rgb(31,35,41)"> — [描述]</span></span></li></ul>
+<div style="margin-top:24px;margin-bottom:12px;line-height:1.6"><div dir="auto" style="font-size:14px;border-bottom:1px solid rgb(222,224,227);padding-bottom:6px"><b><span style="font-size:16px"><span style="font-family:inherit"><span style="color:rgb(31,35,41)">语言能力</span></span></span></b></div></div>
+<ul style="margin-top:0px;margin-bottom:0px;margin-left:0px;padding-left:0px;list-style-position:inside" data-list-bullet="true"><li class="temp-li bullet1" data-li-line="true" data-list="bullet1" style="line-height:1.6;margin-top:4px;margin-bottom:4px;padding-left:0px;display:list-item;list-style-type:disc;font-family:inherit;font-size:14px;margin-left:0px;list-style-position:inside" dir="auto"><b><span style="font-family:inherit"><span style="color:rgb(31,35,41)">[语言，如 中文 / 英文 / 日语]</span></span></b><span style="font-family:inherit"><span style="color:rgb(31,35,41)"> — [精通程度：母语 / 流利 / 商务 / 日常 / 入门]</span></span></li><li class="temp-li bullet1" data-li-line="true" data-list="bullet1" style="line-height:1.6;margin-top:4px;margin-bottom:4px;padding-left:0px;display:list-item;list-style-type:disc;font-family:inherit;font-size:14px;margin-left:0px;list-style-position:inside" dir="auto"><b><span style="font-family:inherit"><span style="color:rgb(31,35,41)">[语言]</span></span></b><span style="font-family:inherit"><span style="color:rgb(31,35,41)"> — [精通程度] / [证书或考试成绩，如 CET-6 590、TOEFL 105、JLPT N1]</span></span></li></ul>
+<div style="margin-top:24px;margin-bottom:12px;line-height:1.6"><div dir="auto" style="font-size:14px;border-bottom:1px solid rgb(222,224,227);padding-bottom:6px"><b><span style="font-size:16px"><span style="font-family:inherit"><span style="color:rgb(31,35,41)">竞赛信息</span></span></span></b></div></div>
+<ul style="margin-top:0px;margin-bottom:0px;margin-left:0px;padding-left:0px;list-style-position:inside" data-list-bullet="true"><li class="temp-li bullet1" data-li-line="true" data-list="bullet1" style="line-height:1.6;margin-top:4px;margin-bottom:4px;padding-left:0px;display:list-item;list-style-type:disc;font-family:inherit;font-size:14px;margin-left:0px;list-style-position:inside" dir="auto"><b><span style="font-family:inherit"><span style="color:rgb(31,35,41)">[竞赛名称]</span></span></b><span style="font-family:inherit"><span style="color:rgb(143,149,158);font-size:13px">　·　[YYYY-MM]</span></span><span style="font-family:inherit"><span style="color:rgb(31,35,41)"> — [名次 / 角色 + 一句话描述]</span></span></li><li class="temp-li bullet1" data-li-line="true" data-list="bullet1" style="line-height:1.6;margin-top:4px;margin-bottom:4px;padding-left:0px;display:list-item;list-style-type:disc;font-family:inherit;font-size:14px;margin-left:0px;list-style-position:inside" dir="auto"><b><span style="font-family:inherit"><span style="color:rgb(31,35,41)">[竞赛名称]</span></span></b><span style="font-family:inherit"><span style="color:rgb(143,149,158);font-size:13px">　·　[YYYY-MM]</span></span><span style="font-family:inherit"><span style="color:rgb(31,35,41)"> — [描述]</span></span></li></ul>
+<div style="margin-top:24px;margin-bottom:12px;line-height:1.6"><div dir="auto" style="font-size:14px;border-bottom:1px solid rgb(222,224,227);padding-bottom:6px"><b><span style="font-size:16px"><span style="font-family:inherit"><span style="color:rgb(31,35,41)">获奖信息</span></span></span></b></div></div>
+<ul style="margin-top:0px;margin-bottom:0px;margin-left:0px;padding-left:0px;list-style-position:inside" data-list-bullet="true"><li class="temp-li bullet1" data-li-line="true" data-list="bullet1" style="line-height:1.6;margin-top:4px;margin-bottom:4px;padding-left:0px;display:list-item;list-style-type:disc;font-family:inherit;font-size:14px;margin-left:0px;list-style-position:inside" dir="auto"><b><span style="font-family:inherit"><span style="color:rgb(31,35,41)">[获奖名称]</span></span></b><span style="font-family:inherit"><span style="color:rgb(143,149,158);font-size:13px">　·　[YYYY-MM]</span></span><span style="font-family:inherit"><span style="color:rgb(31,35,41)"> — [颁发机构 / 评选范围 + 一句话描述]</span></span></li><li class="temp-li bullet1" data-li-line="true" data-list="bullet1" style="line-height:1.6;margin-top:4px;margin-bottom:4px;padding-left:0px;display:list-item;list-style-type:disc;font-family:inherit;font-size:14px;margin-left:0px;list-style-position:inside" dir="auto"><b><span style="font-family:inherit"><span style="color:rgb(31,35,41)">[获奖名称]</span></span></b><span style="font-family:inherit"><span style="color:rgb(143,149,158);font-size:13px">　·　[YYYY-MM]</span></span><span style="font-family:inherit"><span style="color:rgb(31,35,41)"> — [描述]</span></span></li></ul>
+<div style="margin-top:24px;margin-bottom:12px;line-height:1.6"><div dir="auto" style="font-size:14px;border-bottom:1px solid rgb(222,224,227);padding-bottom:6px"><b><span style="font-size:16px"><span style="font-family:inherit"><span style="color:rgb(31,35,41)">自我评价</span></span></span></b></div></div>
+<div style="margin-top:8px;margin-bottom:4px;line-height:1.6"><div dir="auto" style="font-size:14px"><span style="font-family:inherit"><span style="color:rgb(31,35,41)">[2-3 句话简评：技术深度 / 协作风格 / 长期方向，与岗位要求高度契合的方向。建议聚焦"为什么我适合这个岗位"，避免"努力踏实诚信"这种通用形容词。]</span></span></div></div>
+<div style="margin-top:32px;margin-bottom:4px;line-height:1.6"><div dir="auto" style="font-size:14px"><span style="font-family:inherit"><span style="color:rgb(31,35,41)">如需作品集 / 实习证明 / 推荐信等其它材料，欢迎进一步沟通面谈。期待您的回复。</span></span></div></div>
+<div style="margin-top:8px;margin-bottom:4px;line-height:1.6"><div dir="auto" style="font-size:14px"><span style="font-family:inherit"><span style="color:rgb(31,35,41)">谢谢您的时间！</span></span></div></div>
+<div style="margin-top:16px;margin-bottom:4px;line-height:1.6"><div dir="auto" style="font-size:14px"><span style="font-family:inherit"><span style="color:rgb(31,35,41)">此致</span></span></div></div>
+<div style="margin-top:4px;margin-bottom:4px;line-height:1.6"><div dir="auto" style="font-size:14px"><span style="font-family:inherit"><span style="color:rgb(31,35,41)"><b>[姓名]</b></span></span></div></div>
+<div style="margin-top:4px;margin-bottom:4px;line-height:1.6"><div dir="auto" style="font-size:14px"><span style="font-family:inherit"><span style="color:rgb(143,149,158)">[+86 1XX-XXXX-XXXX]｜<a class="not-doclink" href="mailto:[your@email]" style="cursor:pointer;text-decoration:none;color:rgb(20,86,240)">[your@email]</a>｜[YYYY-MM-DD]</span></span></div></div>
diff --git a/skills/lark-mail/assets/templates/newsletter--weekly-brief.html b/skills/lark-mail/assets/templates/newsletter--weekly-brief.html
new file mode 100644
index 000000000..4110919d5
--- /dev/null
+++ b/skills/lark-mail/assets/templates/newsletter--weekly-brief.html
@@ -0,0 +1,50 @@
+<div style="margin-top:4px;margin-bottom:4px;line-height:1.6"><div dir="auto" style="text-align:center;font-size:14px"><b><span style="font-family:inherit"><span style="color:rgb(143,149,158)">WEEKLY DIGEST · 资讯周报</span></span></b></div></div>
+<div style="margin-top:4px;margin-bottom:4px;line-height:1.6"><div dir="auto" style="text-align:center;font-size:14px"><b><span style="font-size:24px"><span style="font-family:LarkHackSafariFont,LarkEmojiFont,LarkChineseQuote,-apple-system,&quot;Helvetica Neue&quot;,Tahoma,&quot;PingFang SC&quot;,&quot;Microsoft Yahei&quot;,Arial,sans-serif"><span style="color:rgb(36,91,219)">[YYYY 第 NN 周] 资讯周报</span></span></span></b></div></div>
+<div style="margin-top:4px;margin-bottom:12px;line-height:1.6"><div dir="auto" style="text-align:center;font-size:14px"><span style="font-family:inherit"><span style="color:rgb(143,149,158)">[团队 / 订阅源] · 编辑 [姓名] · 周期 [YYYY-MM-DD] ~ [YYYY-MM-DD]</span></span></div></div>
+
+<div style="margin-top:4px;margin-bottom:4px;line-height:1.6"><div dir="auto" style="font-size:14px"><span style="font-family:inherit"><span style="color:rgb(31,35,41)">本周共精选 <b><span style="color:rgb(36,91,219)">[N]</span></b> 条值得关注的信息，其中重点 <b><span style="color:rgb(216,57,49)">[M]</span></b> 条，覆盖 <b>行业动态 / 技术前沿 / 内部动态</b> 三个方向。下方为按主题归类的速读版，标题点开即原文。</span></span></div></div>
+<div style="margin-top:4px;margin-bottom:4px;line-height:1.6"><div dir="auto" style="font-size:14px"><br></div></div>
+
+<div style="margin-top:4px;margin-bottom:4px;line-height:1.6"><div dir="auto" style="font-size:14px"><b><span style="font-family:inherit"><span style="color:rgb(31,35,41)">本周关键词</span></span></b></div></div>
+<div style="margin-top:4px;margin-bottom:12px;line-height:1.6"><div dir="auto" style="font-size:14px">
+<span style="background-color:rgb(232,243,255);color:rgb(20,86,240);padding:2px 10px;border-radius:10px;margin-right:6px;font-size:12px"><b>[关键词 1]</b></span><span style="background-color:rgb(232,243,255);color:rgb(20,86,240);padding:2px 10px;border-radius:10px;margin-right:6px;font-size:12px"><b>[关键词 2]</b></span><span style="background-color:rgb(232,243,255);color:rgb(20,86,240);padding:2px 10px;border-radius:10px;margin-right:6px;font-size:12px"><b>[关键词 3]</b></span><span style="background-color:rgb(232,243,255);color:rgb(20,86,240);padding:2px 10px;border-radius:10px;margin-right:6px;font-size:12px"><b>[关键词 4]</b></span><span style="background-color:rgb(232,243,255);color:rgb(20,86,240);padding:2px 10px;border-radius:10px;margin-right:6px;font-size:12px"><b>[关键词 5]</b></span>
+</div></div>
+
+<div style="margin-top:16px;margin-bottom:4px;line-height:1.6"><div dir="auto" style="font-size:14px"><b><span style="font-size:15px"><span style="font-family:LarkHackSafariFont,LarkEmojiFont,LarkChineseQuote,-apple-system,&quot;Helvetica Neue&quot;,Tahoma,&quot;PingFang SC&quot;,&quot;Microsoft Yahei&quot;,Arial,sans-serif"><span style="color:rgb(255,255,255)"><span style="background-color:rgb(36,91,219)">&nbsp; 行业动态 &nbsp;</span></span></span></span></b></div></div>
+
+<div style="margin-top:4px;margin-bottom:4px;line-height:1.6"><div dir="auto" style="font-size:14px"><b><span style="font-family:inherit"><span style="color:rgb(20,86,240)"><a class="not-doclink" href="https://[news-url-1]" style="cursor:pointer;text-decoration:none;color:rgb(20,86,240)">1. [行业资讯标题 1，建议 ≤ 30 字]</a></span></span></b><span style="background-color:rgb(254,241,241);color:rgb(216,57,49);padding:1px 8px;border-radius:8px;font-size:11px;margin-left:6px"><b>重点</b></span></div></div>
+<div style="margin-top:4px;margin-bottom:4px;line-height:1.6"><div dir="auto" style="font-size:13px"><span style="font-family:Roboto,Helvetica,&quot;PingFang SC&quot;,&quot;Hiragino Sans GB&quot;,&quot;Microsoft YaHei&quot;,Arial,sans-serif"><span style="color:rgb(81,86,93)">[摘要 1：2-3 句话核心信息，介绍这条资讯讲了什么、为什么本周值得关注、与团队工作的关联]</span></span></div></div>
+<div style="margin-top:4px;margin-bottom:12px;line-height:1.6"><div dir="auto" style="font-size:12px"><span style="font-family:inherit"><span style="color:rgb(143,149,158)">[来源] · [发布日期] · </span></span><a class="not-doclink" href="https://[news-url-1]" style="cursor:pointer;text-decoration:none;color:rgb(20,86,240)">查看原文</a></div></div>
+
+<div style="margin-top:4px;margin-bottom:4px;line-height:1.6"><div dir="auto" style="font-size:14px"><b><span style="font-family:inherit"><span style="color:rgb(20,86,240)"><a class="not-doclink" href="https://[news-url-2]" style="cursor:pointer;text-decoration:none;color:rgb(20,86,240)">2. [行业资讯标题 2]</a></span></span></b></div></div>
+<div style="margin-top:4px;margin-bottom:4px;line-height:1.6"><div dir="auto" style="font-size:13px"><span style="font-family:Roboto,Helvetica,&quot;PingFang SC&quot;,&quot;Hiragino Sans GB&quot;,&quot;Microsoft YaHei&quot;,Arial,sans-serif"><span style="color:rgb(81,86,93)">[摘要 2]</span></span></div></div>
+<div style="margin-top:4px;margin-bottom:12px;line-height:1.6"><div dir="auto" style="font-size:12px"><span style="font-family:inherit"><span style="color:rgb(143,149,158)">[来源] · [发布日期] · </span></span><a class="not-doclink" href="https://[news-url-2]" style="cursor:pointer;text-decoration:none;color:rgb(20,86,240)">查看原文</a></div></div>
+
+<div style="margin-top:4px;margin-bottom:4px;line-height:1.6"><div dir="auto" style="font-size:14px"><b><span style="font-family:inherit"><span style="color:rgb(20,86,240)"><a class="not-doclink" href="https://[news-url-3]" style="cursor:pointer;text-decoration:none;color:rgb(20,86,240)">3. [行业资讯标题 3]</a></span></span></b></div></div>
+<div style="margin-top:4px;margin-bottom:4px;line-height:1.6"><div dir="auto" style="font-size:13px"><span style="font-family:Roboto,Helvetica,&quot;PingFang SC&quot;,&quot;Hiragino Sans GB&quot;,&quot;Microsoft YaHei&quot;,Arial,sans-serif"><span style="color:rgb(81,86,93)">[摘要 3]</span></span></div></div>
+<div style="margin-top:4px;margin-bottom:12px;line-height:1.6"><div dir="auto" style="font-size:12px"><span style="font-family:inherit"><span style="color:rgb(143,149,158)">[来源] · [发布日期] · </span></span><a class="not-doclink" href="https://[news-url-3]" style="cursor:pointer;text-decoration:none;color:rgb(20,86,240)">查看原文</a></div></div>
+
+<div style="margin-top:16px;margin-bottom:4px;line-height:1.6"><div dir="auto" style="font-size:14px"><b><span style="font-size:15px"><span style="font-family:LarkHackSafariFont,LarkEmojiFont,LarkChineseQuote,-apple-system,&quot;Helvetica Neue&quot;,Tahoma,&quot;PingFang SC&quot;,&quot;Microsoft Yahei&quot;,Arial,sans-serif"><span style="color:rgb(255,255,255)"><span style="background-color:rgb(0,180,42)">&nbsp; 技术前沿 &nbsp;</span></span></span></span></b></div></div>
+
+<div style="margin-top:4px;margin-bottom:4px;line-height:1.6"><div dir="auto" style="font-size:14px"><b><span style="font-family:inherit"><span style="color:rgb(20,86,240)"><a class="not-doclink" href="https://[tech-url-1]" style="cursor:pointer;text-decoration:none;color:rgb(20,86,240)">4. [技术资讯标题 1]</a></span></span></b></div></div>
+<div style="margin-top:4px;margin-bottom:4px;line-height:1.6"><div dir="auto" style="font-size:13px"><span style="font-family:Roboto,Helvetica,&quot;PingFang SC&quot;,&quot;Hiragino Sans GB&quot;,&quot;Microsoft YaHei&quot;,Arial,sans-serif"><span style="color:rgb(81,86,93)">[摘要]</span></span></div></div>
+<div style="margin-top:4px;margin-bottom:12px;line-height:1.6"><div dir="auto" style="font-size:12px"><span style="font-family:inherit"><span style="color:rgb(143,149,158)">[来源] · [发布日期] · </span></span><a class="not-doclink" href="https://[tech-url-1]" style="cursor:pointer;text-decoration:none;color:rgb(20,86,240)">查看原文</a></div></div>
+
+<div style="margin-top:4px;margin-bottom:4px;line-height:1.6"><div dir="auto" style="font-size:14px"><b><span style="font-family:inherit"><span style="color:rgb(20,86,240)"><a class="not-doclink" href="https://[tech-url-2]" style="cursor:pointer;text-decoration:none;color:rgb(20,86,240)">5. [技术资讯标题 2]</a></span></span></b></div></div>
+<div style="margin-top:4px;margin-bottom:4px;line-height:1.6"><div dir="auto" style="font-size:13px"><span style="font-family:Roboto,Helvetica,&quot;PingFang SC&quot;,&quot;Hiragino Sans GB&quot;,&quot;Microsoft YaHei&quot;,Arial,sans-serif"><span style="color:rgb(81,86,93)">[摘要]</span></span></div></div>
+<div style="margin-top:4px;margin-bottom:12px;line-height:1.6"><div dir="auto" style="font-size:12px"><span style="font-family:inherit"><span style="color:rgb(143,149,158)">[来源] · [发布日期] · </span></span><a class="not-doclink" href="https://[tech-url-2]" style="cursor:pointer;text-decoration:none;color:rgb(20,86,240)">查看原文</a></div></div>
+
+<div style="margin-top:16px;margin-bottom:4px;line-height:1.6"><div dir="auto" style="font-size:14px"><b><span style="font-size:15px"><span style="font-family:LarkHackSafariFont,LarkEmojiFont,LarkChineseQuote,-apple-system,&quot;Helvetica Neue&quot;,Tahoma,&quot;PingFang SC&quot;,&quot;Microsoft Yahei&quot;,Arial,sans-serif"><span style="color:rgb(255,255,255)"><span style="background-color:rgb(124,77,255)">&nbsp; 内部动态 &nbsp;</span></span></span></span></b></div></div>
+
+<div style="margin-top:4px;margin-bottom:4px;line-height:1.6"><div dir="auto" style="font-size:14px"><b><span style="font-family:inherit"><span style="color:rgb(20,86,240)"><a class="not-doclink" href="https://[internal-url-1]" style="cursor:pointer;text-decoration:none;color:rgb(20,86,240)">6. [内部资讯标题 1]</a></span></span></b></div></div>
+<div style="margin-top:4px;margin-bottom:4px;line-height:1.6"><div dir="auto" style="font-size:13px"><span style="font-family:Roboto,Helvetica,&quot;PingFang SC&quot;,&quot;Hiragino Sans GB&quot;,&quot;Microsoft YaHei&quot;,Arial,sans-serif"><span style="color:rgb(81,86,93)">[摘要]</span></span></div></div>
+<div style="margin-top:4px;margin-bottom:12px;line-height:1.6"><div dir="auto" style="font-size:12px"><span style="font-family:inherit"><span style="color:rgb(143,149,158)">[团队 / 系统] · [发布日期] · </span></span><a class="not-doclink" href="https://[internal-url-1]" style="cursor:pointer;text-decoration:none;color:rgb(20,86,240)">查看详情</a></div></div>
+
+<div style="margin-top:4px;margin-bottom:4px;line-height:1.6"><div dir="auto" style="font-size:14px"><b><span style="font-family:inherit"><span style="color:rgb(20,86,240)"><a class="not-doclink" href="https://[internal-url-2]" style="cursor:pointer;text-decoration:none;color:rgb(20,86,240)">7. [内部资讯标题 2]</a></span></span></b></div></div>
+<div style="margin-top:4px;margin-bottom:4px;line-height:1.6"><div dir="auto" style="font-size:13px"><span style="font-family:Roboto,Helvetica,&quot;PingFang SC&quot;,&quot;Hiragino Sans GB&quot;,&quot;Microsoft YaHei&quot;,Arial,sans-serif"><span style="color:rgb(81,86,93)">[摘要]</span></span></div></div>
+<div style="margin-top:4px;margin-bottom:12px;line-height:1.6"><div dir="auto" style="font-size:12px"><span style="font-family:inherit"><span style="color:rgb(143,149,158)">[团队 / 系统] · [发布日期] · </span></span><a class="not-doclink" href="https://[internal-url-2]" style="cursor:pointer;text-decoration:none;color:rgb(20,86,240)">查看详情</a></div></div>
+
+<div style="margin-top:24px;margin-bottom:4px;line-height:1.6"><div dir="auto" style="font-size:14px"><br></div></div>
+<blockquote style="padding-left:0px;color:rgb(100,106,115);border-left:2px solid rgb(187,191,196);margin:0px"><div dir="auto" style="font-size:13px;padding-left:12px"><span style="font-family:inherit"><span style="color:rgb(100,106,115)"><b>本期编辑：</b>[姓名]｜<b>下期预告：</b>[下期重点话题或筹备信息]｜<b>反馈与投稿：</b>欢迎在 reply 中留言或邮件 <a class="not-doclink" href="mailto:[owner@example.com]" style="cursor:pointer;text-decoration:none;color:rgb(20,86,240)">[订阅 Owner]</a></span></span></div></blockquote>
+
+<div style="margin-top:8px;margin-bottom:4px;line-height:1.6"><div dir="auto" style="font-size:11px"><span style="font-family:inherit"><span style="color:rgb(143,149,158)">订阅 / 退订请访问 <a class="not-doclink" href="https://[subscribe-url]" style="cursor:pointer;text-decoration:none;color:rgb(20,86,240)">订阅管理</a>。本周报为内部资讯整理，所有摘要均来自公开报道；不构成投资建议、不代表本团队立场。</span></span></div></div>
diff --git a/skills/lark-mail/assets/templates/research--market-report.html b/skills/lark-mail/assets/templates/research--market-report.html
new file mode 100644
index 000000000..cce53906d
--- /dev/null
+++ b/skills/lark-mail/assets/templates/research--market-report.html
@@ -0,0 +1,270 @@
+<!--
+=============================================================================
+SUBJECT 模板（lark-cli mail --subject 用）：
+  [调研主题] 市场调研报告 ([YYYY-MM-DD])
+字段说明：
+  · [调研主题]：调研对象赛道，例 "AI Mail Agent" / "向量数据库" / "前端构建工具"
+  · [YYYY-MM-DD]：调研完成日期（ISO 格式）
+=============================================================================
+-->
+<style>
+.research-root { font-family:-apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, sans-serif; max-width:800px; margin:0 auto; color:#1a1a1a; line-height:1.6; background-color:#f8f9fa; padding:20px; }
+.gradient-header { background:linear-gradient(135deg, #1a73e8, #4285f4); border-radius:12px; padding:32px; color:white; text-align:center; }
+.card { background-color:white; border-radius:8px; padding:20px; margin:16px 0; box-shadow:0 1px 3px rgba(0,0,0,0.1); }
+.stat-row { display:flex; gap:10px; margin:16px 0; }
+.stat-card { flex:1; background-color:white; border-radius:8px; padding:14px; text-align:center; box-shadow:0 1px 3px rgba(0,0,0,0.1); }
+.player-row { display:flex; gap:12px; margin:0 0 12px; flex-wrap:wrap; }
+.player-card { flex:1; min-width:200px; background-color:#f1f3f4; border-radius:6px; padding:14px; }
+.callout-error { background-color:#fce8e6; border-left:4px solid #ea4335; padding:10px 14px; margin-top:12px; border-radius:0 4px 4px 0; font-size:12px; }
+.tbl { width:100%; border-collapse:collapse; font-size:13px; }
+.tbl th { padding:8px; text-align:left; border-bottom:2px solid #ddd; background-color:#f1f3f4; }
+.tbl td { padding:8px; border-bottom:1px solid #eee; }
+.tbl tr.alt td { background-color:#fafafa; }
+.tbl-bug { width:100%; border-collapse:collapse; font-size:13px; }
+.tbl-bug th { padding:10px; border-bottom:2px solid #ddd; background-color:#f1f3f4; text-align:left; }
+.tbl-bug td { padding:10px; border-bottom:1px solid #eee; }
+.tbl-bug tr.alt td { background-color:#fafafa; }
+.badge-info { background-color:#e8f0fe; color:#1a73e8; padding:2px 8px; border-radius:4px; font-size:12px; white-space:nowrap; display:inline-block; }
+.badge-success { background-color:#e6f4ea; color:#137333; padding:2px 8px; border-radius:4px; font-size:12px; white-space:nowrap; display:inline-block; }
+.badge-warn { background-color:#fff3e0; color:#e65100; padding:2px 8px; border-radius:4px; font-size:12px; white-space:nowrap; display:inline-block; }
+.badge-error { background-color:#fce8e6; color:#ea4335; padding:2px 8px; border-radius:4px; font-size:12px; white-space:nowrap; display:inline-block; }
+.pri-p0 { background-color:#fce8e6; color:#c5221f; padding:2px 10px; border-radius:4px; font-size:11px; font-weight:600; white-space:nowrap; display:inline-block; }
+.pri-p1 { background-color:#fff3e0; color:#b06000; padding:2px 10px; border-radius:4px; font-size:11px; font-weight:600; white-space:nowrap; display:inline-block; }
+.pri-p2 { background-color:#e8f0fe; color:#185abc; padding:2px 10px; border-radius:4px; font-size:11px; font-weight:600; white-space:nowrap; display:inline-block; }
+</style>
+
+<div class="research-root">
+
+<div class="gradient-header">
+  <h1 style="margin:0;font-size:24px;font-weight:600">[调研主题] 市场调研报告</h1>
+  <p style="margin:8px 0 0;font-size:14px">[YYYY-MM-DD] | 调研者：[姓名] · [团队] | [关联系统 / 版本]</p>
+</div>
+
+<div class="card">
+  <h2 style="margin:0 0 12px;font-size:16px;color:#555">调研背景</h2>
+  <p style="font-size:13px;margin:0">[一段话描述：本轮调研聚焦的赛道 / 行业背景 / 触发动机]。本轮调研覆盖 <b>[N] 类玩家</b>（[类别 1] / [类别 2] / [类别 3] / [类别 4]），重点评估 [自家产品 / 团队] 在 [赛道名] 的位置、对外摩擦点，以及结合 [关联工作 / PR / 本期目标] 的待补能力。所有结论基于 [数据来源 1：公开资料 / 厂商文档 / 行业报告] + [数据来源 2：自有实测 / 内部调研笔记] + [数据来源 3：访谈 / 体验]。</p>
+</div>
+
+<div class="stat-row">
+  <div class="stat-card">
+    <div style="font-size:26px;font-weight:700;color:#1a73e8">[N]</div>
+    <div style="font-size:11px;color:#666">调研对象</div>
+  </div>
+  <div class="stat-card">
+    <div style="font-size:26px;font-weight:700;color:#137333">[N]</div>
+    <div style="font-size:11px;color:#666">已就绪能力</div>
+  </div>
+  <div class="stat-card">
+    <div style="font-size:26px;font-weight:700;color:#fbbc04">[N]</div>
+    <div style="font-size:11px;color:#666">明确缺口</div>
+  </div>
+  <div class="stat-card">
+    <div style="font-size:26px;font-weight:700;color:#ea4335">[N]</div>
+    <div style="font-size:11px;color:#666">高优待办</div>
+  </div>
+</div>
+
+<div class="card">
+  <h2 style="margin:0 0 4px;font-size:16px">1. [章节标题：例 "全球市场态势"]</h2>
+  <p style="font-size:12px;color:#888;margin:0 0 12px">[一句话描述本节切分维度，例 "把市场按 '为谁设计' 切四象限"]</p>
+  <table class="tbl">
+    <thead><tr>
+      <th>玩家 / 对象</th>
+      <th>定位 / 类型</th>
+      <th style="text-align:center">[关键评分维度]</th>
+      <th>关键观察</th>
+    </tr></thead>
+    <tbody>
+      <tr>
+        <td>[玩家 1]</td>
+        <td>[类别]</td>
+        <td style="text-align:center"><span class="badge-info">[标签]</span></td>
+        <td>[一句话观察]</td>
+      </tr>
+      <tr class="alt">
+        <td>[玩家 2]</td>
+        <td>[类别]</td>
+        <td style="text-align:center"><span class="badge-success">[标签]</span></td>
+        <td>[一句话观察]</td>
+      </tr>
+      <tr>
+        <td>[玩家 3]</td>
+        <td>[类别]</td>
+        <td style="text-align:center"><span class="badge-warn">[标签]</span></td>
+        <td>[一句话观察]</td>
+      </tr>
+      <tr class="alt">
+        <td>[玩家 4]</td>
+        <td>[类别]</td>
+        <td style="text-align:center"><span class="badge-error">[标签]</span></td>
+        <td>[一句话观察]</td>
+      </tr>
+    </tbody>
+  </table>
+</div>
+
+<div class="card">
+  <h2 style="margin:0 0 4px;font-size:16px">2. [章节标题：例 "接入摩擦点"] <span class="badge-warn" style="vertical-align:middle;margin-left:8px">⚠️ 风险</span></h2>
+  <p style="font-size:12px;color:#888;margin:0 0 12px">[一句话描述：从哪里观察 / 案例 / 数据来源]</p>
+  <table class="tbl">
+    <thead><tr>
+      <th>摩擦类型 / 维度</th>
+      <th>具体表现</th>
+      <th>业务影响</th>
+    </tr></thead>
+    <tbody>
+      <tr>
+        <td><b>[摩擦 1]</b></td>
+        <td>[具体表现 / 案例]</td>
+        <td>[对业务 / 团队的影响]</td>
+      </tr>
+      <tr class="alt">
+        <td><b>[摩擦 2]</b></td>
+        <td>[具体表现]</td>
+        <td>[影响]</td>
+      </tr>
+      <tr>
+        <td><b>[摩擦 3]</b></td>
+        <td>[具体表现]</td>
+        <td>[影响]</td>
+      </tr>
+    </tbody>
+  </table>
+</div>
+
+<div class="card">
+  <h2 style="margin:0 0 12px;font-size:16px">3. [章节标题：例 "新势力玩家详情" / "重点对象详细比较"]</h2>
+  <div class="player-row">
+    <div class="player-card">
+      <div style="font-size:13px;font-weight:700;color:#1a73e8;margin-bottom:6px">[玩家 / 对象 1]</div>
+      <div style="font-size:12px;color:#444">[一句话产品定位 / 核心能力 / 差异化]</div>
+      <div style="font-size:11px;color:#888;margin-top:6px">关键差异：[一句话提炼]</div>
+    </div>
+    <div class="player-card">
+      <div style="font-size:13px;font-weight:700;color:#1a73e8;margin-bottom:6px">[玩家 / 对象 2]</div>
+      <div style="font-size:12px;color:#444">[产品定位]</div>
+      <div style="font-size:11px;color:#888;margin-top:6px">关键差异：[一句话]</div>
+    </div>
+    <div class="player-card">
+      <div style="font-size:13px;font-weight:700;color:#1a73e8;margin-bottom:6px">[玩家 / 对象 3]</div>
+      <div style="font-size:12px;color:#444">[产品定位]</div>
+      <div style="font-size:11px;color:#888;margin-top:6px">关键差异：[一句话]</div>
+    </div>
+  </div>
+  <p style="font-size:12px;color:#666;margin:8px 0 0">[小结一句话：玩家共性 / 自家路线对比]</p>
+</div>
+
+<div class="card">
+  <h2 style="margin:0 0 4px;font-size:16px">4. [章节标题：例 "安全风险全景" / "潜在隐患"] <span class="badge-error" style="vertical-align:middle;margin-left:8px">⚠️ 高危</span></h2>
+  <p style="font-size:12px;color:#888;margin:0 0 12px">[一句话描述：风险来源 / 关联前期工作]</p>
+  <table class="tbl">
+    <thead><tr>
+      <th>威胁 / 风险</th>
+      <th>案例 / 来源</th>
+      <th style="text-align:center">自家现状</th>
+    </tr></thead>
+    <tbody>
+      <tr>
+        <td>[风险 1]</td>
+        <td>[案例 / 来源链接 / 引用前期报告]</td>
+        <td style="text-align:center"><span class="badge-error">[标签]</span></td>
+      </tr>
+      <tr class="alt">
+        <td>[风险 2]</td>
+        <td>[案例 / 来源]</td>
+        <td style="text-align:center"><span class="badge-success">[标签]</span></td>
+      </tr>
+      <tr>
+        <td><b>[风险 3]（重点）</b></td>
+        <td>[案例 / 来源]</td>
+        <td style="text-align:center"><span class="badge-error">[标签]</span></td>
+      </tr>
+    </tbody>
+  </table>
+  <div class="callout-error">
+    <b>结论：</b>[一段话，提炼本章节最关键的判断 / 行动建议]
+  </div>
+</div>
+
+<div class="card">
+  <h2 style="margin:0 0 4px;font-size:16px">5. [章节标题：例 "自家已就绪能力"] <span class="badge-success" style="vertical-align:middle;margin-left:8px">✓ 优势</span></h2>
+  <p style="font-size:12px;color:#888;margin:0 0 12px">[一句话描述：基于哪些 PR / 已交付的工作得出]</p>
+  <ul style="font-size:13px;padding-left:20px;margin:0">
+    <li style="margin-bottom:8px"><b>[能力 1]</b> — [简述 + 关联 PR / 文档链接]</li>
+    <li style="margin-bottom:8px"><b>[能力 2]</b> — [简述]</li>
+    <li style="margin-bottom:8px"><b>[能力 3]</b> — [简述]</li>
+    <li style="margin-bottom:8px"><b>[能力 4]</b> — [简述]</li>
+  </ul>
+</div>
+
+<div class="card">
+  <h2 style="margin:0 0 4px;font-size:16px">6. [章节标题：例 "待补能力 / 机会清单"]</h2>
+  <p style="font-size:12px;color:#888;margin:0 0 12px">[一句话描述：清单口径 / 优先级判定依据]</p>
+  <table class="tbl-bug">
+    <thead><tr>
+      <th style="text-align:center;width:30px">#</th>
+      <th style="text-align:center;width:50px">优先级</th>
+      <th>能力 / 缺口</th>
+      <th>建议落地</th>
+    </tr></thead>
+    <tbody>
+      <tr>
+        <td style="text-align:center">1</td>
+        <td style="text-align:center"><span class="pri-p0">P0</span></td>
+        <td>[能力 / 缺口 1]</td>
+        <td style="font-size:12px">[具体落地路径 / Owner / 估算]</td>
+      </tr>
+      <tr class="alt">
+        <td style="text-align:center">2</td>
+        <td style="text-align:center"><span class="pri-p0">P0</span></td>
+        <td>[能力 / 缺口 2]</td>
+        <td style="font-size:12px">[具体落地路径]</td>
+      </tr>
+      <tr>
+        <td style="text-align:center">3</td>
+        <td style="text-align:center"><span class="pri-p1">P1</span></td>
+        <td>[能力 / 缺口 3]</td>
+        <td style="font-size:12px">[具体落地路径]</td>
+      </tr>
+      <tr class="alt">
+        <td style="text-align:center">4</td>
+        <td style="text-align:center"><span class="pri-p1">P1</span></td>
+        <td>[能力 / 缺口 4]</td>
+        <td style="font-size:12px">[具体落地路径]</td>
+      </tr>
+      <tr>
+        <td style="text-align:center">5</td>
+        <td style="text-align:center"><span class="pri-p2">P2</span></td>
+        <td>[能力 / 缺口 5]</td>
+        <td style="font-size:12px">[具体落地路径]</td>
+      </tr>
+    </tbody>
+  </table>
+</div>
+
+<div class="card">
+  <h2 style="margin:0 0 12px;font-size:16px;border-bottom:2px solid #137333;padding-bottom:8px">关联工作产出佐证</h2>
+  <p style="font-size:12px;color:#666;margin:0 0 10px">本调研报告中部分章节的依据来自下列在执行中的工作：</p>
+  <ul style="font-size:13px;padding-left:20px;margin:0">
+    <li style="margin-bottom:6px"><a href="https://[pr-1-url]">[PR / Issue 1 标题]</a> — [一句话描述跟本调研的关联]</li>
+    <li style="margin-bottom:6px"><a href="https://[pr-2-url]">[PR / Issue 2 标题]</a> — [一句话描述]</li>
+    <li style="margin-bottom:6px"><a href="https://[pr-3-url]">[PR / Issue 3 标题]</a> — [一句话描述]</li>
+  </ul>
+</div>
+
+<div class="card">
+  <h2 style="margin:0 0 12px;font-size:16px">建议与下一步</h2>
+  <ol style="font-size:13px;padding-left:20px;margin:0">
+    <li style="margin-bottom:8px"><b>[行动 1]</b> — [具体路径 + 时间窗 + Owner]</li>
+    <li style="margin-bottom:8px"><b>[行动 2]</b> — [具体路径 + 时间窗]</li>
+    <li style="margin-bottom:8px"><b>[行动 3]</b> — [具体路径]</li>
+    <li style="margin-bottom:8px"><b>[行动 4]</b> — [具体路径]</li>
+  </ol>
+</div>
+
+<div style="text-align:center;padding:16px;color:#999;font-size:11px">
+  <p style="margin:4px 0">调研者：<a href="mailto:[your@email]">[your@email]</a> · [团队]｜整合于 [YYYY-MM-DD]</p>
+  <p style="margin:4px 0">关联材料：[文档 / 笔记路径 / 前期报告]</p>
+</div>
+
+</div>
diff --git a/skills/lark-mail/assets/templates/weekly--personal-report.html b/skills/lark-mail/assets/templates/weekly--personal-report.html
new file mode 100644
index 000000000..717b1cac5
--- /dev/null
+++ b/skills/lark-mail/assets/templates/weekly--personal-report.html
@@ -0,0 +1,43 @@
+<!--
+=============================================================================
+SUBJECT 模板（lark-cli mail --subject 用）：
+  [姓名] 个人工作周报 · [YYYY 第 NN 周] · [团队]
+字段说明：
+  · [姓名]：发件人中文名（不带 @）
+  · [YYYY 第 NN 周]：年份 + ISO 周数
+  · [团队]：所属团队（部门 / 二级团队 / 项目组）
+=============================================================================
+-->
+<div style="margin-top:4px;margin-bottom:4px;line-height:1.6"><div dir="auto" style="text-align:left;font-size:14px"><b><span style="font-size:18px"><span style="font-family:LarkHackSafariFont,LarkEmojiFont,LarkChineseQuote,-apple-system,&quot;Helvetica Neue&quot;,Tahoma,&quot;PingFang SC&quot;,&quot;Microsoft Yahei&quot;,Arial,sans-serif"><span style="color:rgb(31,35,41)">[姓名] 个人工作周报 · [YYYY 第 NN 周]</span></span></span></b></div></div>
+<div style="margin-top:4px;margin-bottom:12px;line-height:1.6"><div dir="auto" style="text-align:left;font-size:14px"><span style="font-size:13px"><span style="font-family:inherit"><span style="color:rgb(143,149,158)">[团队] · [角色]｜周期 [YYYY-MM-DD] ~ [YYYY-MM-DD]</span></span></span></div></div>
+
+<div style="margin-top:20px;margin-bottom:8px;line-height:1.6"><div dir="auto" style="text-align:left;font-size:14px;border-left:3px solid rgb(36,91,219);padding-left:10px"><b><span style="font-size:16px"><span style="font-family:LarkHackSafariFont,LarkEmojiFont,LarkChineseQuote,-apple-system,&quot;Helvetica Neue&quot;,Tahoma,&quot;PingFang SC&quot;,&quot;Microsoft Yahei&quot;,Arial,sans-serif"><span style="color:rgb(31,35,41)">本周工作内容</span></span></span></b></div></div>
+
+<div style="margin-top:8px;margin-bottom:4px;line-height:1.6"><div dir="auto" style="font-size:14px"><b><span style="font-family:inherit"><span style="color:rgb(31,35,41)">1. [项目 / 主任务名称]</span></span></b><span style="background-color:rgb(232,247,236);color:rgb(0,180,42);padding:1px 8px;border-radius:8px;font-size:11px;margin-left:8px"><b>已完成</b></span><span style="font-family:inherit"><span style="color:rgb(143,149,158);font-size:13px">　·　<a class="not-doclink" href="https://[doc-url]" style="cursor:pointer;text-decoration:none;color:rgb(20,86,240)">📄 文档</a> · <a class="not-doclink" href="https://[pr-url]" style="cursor:pointer;text-decoration:none;color:rgb(20,86,240)">PR 链接</a></span></span></div></div>
+<div style="padding-left:24px"><ul style="margin-top:0px;margin-bottom:4px;margin-left:0px;padding-left:0px;list-style-position:inside" data-list-bullet="true"><li class="temp-li bullet2" data-li-line="true" data-list="bullet2" style="line-height:1.6;margin-top:2px;margin-bottom:2px;padding-left:0px;display:list-item;list-style-type:circle;font-family:inherit;font-size:14px;margin-left:0px;list-style-position:inside" dir="auto"><span style="font-family:inherit"><span style="color:rgb(31,35,41)">[子项 1.1：动作描述，附数据 / 链接]</span></span></li><li class="temp-li bullet2" data-li-line="true" data-list="bullet2" style="line-height:1.6;margin-top:2px;margin-bottom:2px;padding-left:0px;display:list-item;list-style-type:circle;font-family:inherit;font-size:14px;margin-left:0px;list-style-position:inside" dir="auto"><span style="font-family:inherit"><span style="color:rgb(31,35,41)">[子项 1.2：动作描述]</span></span></li><li class="temp-li bullet2" data-li-line="true" data-list="bullet2" style="line-height:1.6;margin-top:2px;margin-bottom:2px;padding-left:0px;display:list-item;list-style-type:circle;font-family:inherit;font-size:14px;margin-left:0px;list-style-position:inside" dir="auto"><span style="font-family:inherit"><span style="color:rgb(31,35,41)">[子项 1.3：动作描述，含具体数字 / 占比 / 时长]</span></span></li></ul></div>
+
+<div style="margin-top:14px;margin-bottom:4px;line-height:1.6"><div dir="auto" style="font-size:14px"><b><span style="font-family:inherit"><span style="color:rgb(31,35,41)">2. [项目 / 主任务名称]</span></span></b><span style="background-color:rgb(255,247,236);color:rgb(190,107,0);padding:1px 8px;border-radius:8px;font-size:11px;margin-left:8px"><b>进行中</b></span><span style="font-family:inherit"><span style="color:rgb(143,149,158);font-size:13px">　·　<a class="not-doclink" href="https://[doc-url]" style="cursor:pointer;text-decoration:none;color:rgb(20,86,240)">📄 文档</a></span></span></div></div>
+<div style="padding-left:24px"><ul style="margin-top:0px;margin-bottom:4px;margin-left:0px;padding-left:0px;list-style-position:inside" data-list-bullet="true"><li class="temp-li bullet2" data-li-line="true" data-list="bullet2" style="line-height:1.6;margin-top:2px;margin-bottom:2px;padding-left:0px;display:list-item;list-style-type:circle;font-family:inherit;font-size:14px;margin-left:0px;list-style-position:inside" dir="auto"><span style="font-family:inherit"><span style="color:rgb(31,35,41)">[子项 2.1：动作 + 当前进度 + 数据]</span></span></li><li class="temp-li bullet2" data-li-line="true" data-list="bullet2" style="line-height:1.6;margin-top:2px;margin-bottom:2px;padding-left:0px;display:list-item;list-style-type:circle;font-family:inherit;font-size:14px;margin-left:0px;list-style-position:inside" dir="auto"><span style="font-family:inherit"><span style="color:rgb(31,35,41)">[子项 2.2：动作 + 当前进度]</span></span></li></ul></div>
+
+<div style="margin-top:14px;margin-bottom:4px;line-height:1.6"><div dir="auto" style="font-size:14px"><b><span style="font-family:inherit"><span style="color:rgb(31,35,41)">3. [项目 / 主任务名称]</span></span></b><span style="background-color:rgb(232,247,236);color:rgb(0,180,42);padding:1px 8px;border-radius:8px;font-size:11px;margin-left:8px"><b>已完成</b></span></div></div>
+<div style="padding-left:24px"><ul style="margin-top:0px;margin-bottom:4px;margin-left:0px;padding-left:0px;list-style-position:inside" data-list-bullet="true"><li class="temp-li bullet2" data-li-line="true" data-list="bullet2" style="line-height:1.6;margin-top:2px;margin-bottom:2px;padding-left:0px;display:list-item;list-style-type:circle;font-family:inherit;font-size:14px;margin-left:0px;list-style-position:inside" dir="auto"><span style="font-family:inherit"><span style="color:rgb(31,35,41)">[子项 3.1]</span></span></li><li class="temp-li bullet2" data-li-line="true" data-list="bullet2" style="line-height:1.6;margin-top:2px;margin-bottom:2px;padding-left:0px;display:list-item;list-style-type:circle;font-family:inherit;font-size:14px;margin-left:0px;list-style-position:inside" dir="auto"><span style="font-family:inherit"><span style="color:rgb(31,35,41)">[子项 3.2]</span></span></li></ul></div>
+
+<div style="margin-top:24px;margin-bottom:8px;line-height:1.6"><div dir="auto" style="text-align:left;font-size:14px;border-left:3px solid rgb(0,180,42);padding-left:10px"><b><span style="font-size:16px"><span style="font-family:LarkHackSafariFont,LarkEmojiFont,LarkChineseQuote,-apple-system,&quot;Helvetica Neue&quot;,Tahoma,&quot;PingFang SC&quot;,&quot;Microsoft Yahei&quot;,Arial,sans-serif"><span style="color:rgb(31,35,41)">下周工作内容</span></span></span></b></div></div>
+
+<div style="margin-top:8px;margin-bottom:4px;line-height:1.6"><div dir="auto" style="font-size:14px"><b><span style="font-family:inherit"><span style="color:rgb(31,35,41)">1. [项目 / 主任务名称]</span></span></b><span style="background-color:rgb(254,241,241);color:rgb(216,57,49);padding:1px 8px;border-radius:8px;font-size:11px;margin-left:8px"><b>P0</b></span><span style="font-family:inherit"><span style="color:rgb(143,149,158);font-size:13px">　·　预计 [YYYY-MM-DD]</span></span></div></div>
+<div style="padding-left:24px"><ul style="margin-top:0px;margin-bottom:4px;margin-left:0px;padding-left:0px;list-style-position:inside" data-list-bullet="true"><li class="temp-li bullet2" data-li-line="true" data-list="bullet2" style="line-height:1.6;margin-top:2px;margin-bottom:2px;padding-left:0px;display:list-item;list-style-type:circle;font-family:inherit;font-size:14px;margin-left:0px;list-style-position:inside" dir="auto"><span style="font-family:inherit"><span style="color:rgb(31,35,41)">[子项 1.1：具体动作 + 推进方式，例「先 spike POC，再发 RFC 同协作方对齐方案」]</span></span></li><li class="temp-li bullet2" data-li-line="true" data-list="bullet2" style="line-height:1.6;margin-top:2px;margin-bottom:2px;padding-left:0px;display:list-item;list-style-type:circle;font-family:inherit;font-size:14px;margin-left:0px;list-style-position:inside" dir="auto"><span style="font-family:inherit"><span style="color:rgb(31,35,41)">[子项 1.2：里程碑 / 关键产出 + 完成方式]</span></span></li><li class="temp-li bullet2" data-li-line="true" data-list="bullet2" style="line-height:1.6;margin-top:2px;margin-bottom:2px;padding-left:0px;display:list-item;list-style-type:circle;font-family:inherit;font-size:14px;margin-left:0px;list-style-position:inside" dir="auto"><span style="font-family:inherit"><span style="color:rgb(31,35,41)">[子项 1.3：依赖 / 协作方 / 验收标准]</span></span></li></ul></div>
+
+<div style="margin-top:14px;margin-bottom:4px;line-height:1.6"><div dir="auto" style="font-size:14px"><b><span style="font-family:inherit"><span style="color:rgb(31,35,41)">2. [项目 / 主任务名称]</span></span></b><span style="background-color:rgb(254,241,241);color:rgb(216,57,49);padding:1px 8px;border-radius:8px;font-size:11px;margin-left:8px"><b>P0</b></span><span style="font-family:inherit"><span style="color:rgb(143,149,158);font-size:13px">　·　预计 [YYYY-MM-DD]</span></span></div></div>
+<div style="padding-left:24px"><ul style="margin-top:0px;margin-bottom:4px;margin-left:0px;padding-left:0px;list-style-position:inside" data-list-bullet="true"><li class="temp-li bullet2" data-li-line="true" data-list="bullet2" style="line-height:1.6;margin-top:2px;margin-bottom:2px;padding-left:0px;display:list-item;list-style-type:circle;font-family:inherit;font-size:14px;margin-left:0px;list-style-position:inside" dir="auto"><span style="font-family:inherit"><span style="color:rgb(31,35,41)">[子项 2.1：动作 + 推进方式]</span></span></li><li class="temp-li bullet2" data-li-line="true" data-list="bullet2" style="line-height:1.6;margin-top:2px;margin-bottom:2px;padding-left:0px;display:list-item;list-style-type:circle;font-family:inherit;font-size:14px;margin-left:0px;list-style-position:inside" dir="auto"><span style="font-family:inherit"><span style="color:rgb(31,35,41)">[子项 2.2：里程碑 / 关键产出]</span></span></li><li class="temp-li bullet2" data-li-line="true" data-list="bullet2" style="line-height:1.6;margin-top:2px;margin-bottom:2px;padding-left:0px;display:list-item;list-style-type:circle;font-family:inherit;font-size:14px;margin-left:0px;list-style-position:inside" dir="auto"><span style="font-family:inherit"><span style="color:rgb(31,35,41)">[子项 2.3：依赖 / 验收]</span></span></li></ul></div>
+
+<div style="margin-top:14px;margin-bottom:4px;line-height:1.6"><div dir="auto" style="font-size:14px"><b><span style="font-family:inherit"><span style="color:rgb(31,35,41)">3. [项目 / 主任务名称]</span></span></b><span style="background-color:rgb(255,247,236);color:rgb(190,107,0);padding:1px 8px;border-radius:8px;font-size:11px;margin-left:8px"><b>P1</b></span><span style="font-family:inherit"><span style="color:rgb(143,149,158);font-size:13px">　·　预计 [YYYY-MM-DD]</span></span></div></div>
+<div style="padding-left:24px"><ul style="margin-top:0px;margin-bottom:4px;margin-left:0px;padding-left:0px;list-style-position:inside" data-list-bullet="true"><li class="temp-li bullet2" data-li-line="true" data-list="bullet2" style="line-height:1.6;margin-top:2px;margin-bottom:2px;padding-left:0px;display:list-item;list-style-type:circle;font-family:inherit;font-size:14px;margin-left:0px;list-style-position:inside" dir="auto"><span style="font-family:inherit"><span style="color:rgb(31,35,41)">[子项 3.1：动作 + 推进方式]</span></span></li><li class="temp-li bullet2" data-li-line="true" data-list="bullet2" style="line-height:1.6;margin-top:2px;margin-bottom:2px;padding-left:0px;display:list-item;list-style-type:circle;font-family:inherit;font-size:14px;margin-left:0px;list-style-position:inside" dir="auto"><span style="font-family:inherit"><span style="color:rgb(31,35,41)">[子项 3.2：里程碑]</span></span></li><li class="temp-li bullet2" data-li-line="true" data-list="bullet2" style="line-height:1.6;margin-top:2px;margin-bottom:2px;padding-left:0px;display:list-item;list-style-type:circle;font-family:inherit;font-size:14px;margin-left:0px;list-style-position:inside" dir="auto"><span style="font-family:inherit"><span style="color:rgb(31,35,41)">[子项 3.3：协作方]</span></span></li></ul></div>
+
+<div style="margin-top:14px;margin-bottom:4px;line-height:1.6"><div dir="auto" style="font-size:14px"><b><span style="font-family:inherit"><span style="color:rgb(31,35,41)">4. [项目 / 主任务名称]</span></span></b><span style="background-color:rgb(232,243,255);color:rgb(20,86,240);padding:1px 8px;border-radius:8px;font-size:11px;margin-left:8px"><b>P2</b></span><span style="font-family:inherit"><span style="color:rgb(143,149,158);font-size:13px">　·　预计 [YYYY-MM-DD]</span></span></div></div>
+<div style="padding-left:24px"><ul style="margin-top:0px;margin-bottom:4px;margin-left:0px;padding-left:0px;list-style-position:inside" data-list-bullet="true"><li class="temp-li bullet2" data-li-line="true" data-list="bullet2" style="line-height:1.6;margin-top:2px;margin-bottom:2px;padding-left:0px;display:list-item;list-style-type:circle;font-family:inherit;font-size:14px;margin-left:0px;list-style-position:inside" dir="auto"><span style="font-family:inherit"><span style="color:rgb(31,35,41)">[子项 4.1：动作 + 推进方式]</span></span></li><li class="temp-li bullet2" data-li-line="true" data-list="bullet2" style="line-height:1.6;margin-top:2px;margin-bottom:2px;padding-left:0px;display:list-item;list-style-type:circle;font-family:inherit;font-size:14px;margin-left:0px;list-style-position:inside" dir="auto"><span style="font-family:inherit"><span style="color:rgb(31,35,41)">[子项 4.2：依赖 / 关键产出]</span></span></li></ul></div>
+
+<div style="margin-top:24px;margin-bottom:8px;line-height:1.6"><div dir="auto" style="text-align:left;font-size:14px;border-left:3px solid rgb(216,57,49);padding-left:10px"><b><span style="font-size:16px"><span style="font-family:LarkHackSafariFont,LarkEmojiFont,LarkChineseQuote,-apple-system,&quot;Helvetica Neue&quot;,Tahoma,&quot;PingFang SC&quot;,&quot;Microsoft Yahei&quot;,Arial,sans-serif"><span style="color:rgb(31,35,41)">风险与疑问</span></span></span></b></div></div>
+<ul style="margin-top:8px;margin-bottom:0px;margin-left:0px;padding-left:0px;list-style-position:inside" data-list-bullet="true"><li class="temp-li bullet1" data-li-line="true" data-list="bullet1" style="line-height:1.6;margin-top:4px;margin-bottom:4px;padding-left:0px;display:list-item;list-style-type:disc;font-family:inherit;font-size:14px;margin-left:0px;list-style-position:inside" dir="auto"><span style="font-family:inherit"><span style="color:rgb(31,35,41)"><b>[风险 / 疑问 1]</b> — [背景：描述风险来源 / 触发场景]；[影响：会延期 / 阻塞哪些工作]；[建议：希望得到的支持 / 决策方向 / 期望响应方（@姓名 / 团队）]</span></span></li><li class="temp-li bullet1" data-li-line="true" data-list="bullet1" style="line-height:1.6;margin-top:4px;margin-bottom:4px;padding-left:0px;display:list-item;list-style-type:disc;font-family:inherit;font-size:14px;margin-left:0px;list-style-position:inside" dir="auto"><span style="font-family:inherit"><span style="color:rgb(31,35,41)"><b>[风险 / 疑问 2]</b> — [背景]；[影响]；[建议]</span></span></li><li class="temp-li bullet1" data-li-line="true" data-list="bullet1" style="line-height:1.6;margin-top:4px;margin-bottom:4px;padding-left:0px;display:list-item;list-style-type:disc;font-family:inherit;font-size:14px;margin-left:0px;list-style-position:inside" dir="auto"><span style="font-family:inherit"><span style="color:rgb(31,35,41)"><b>[风险 / 疑问 3]</b> — [背景]；[影响]；[建议]</span></span></li></ul>
+<div style="margin-top:8px;margin-bottom:4px;line-height:1.6"><div dir="auto" style="font-size:14px"><span style="font-family:inherit"><span style="color:rgb(143,149,158)">（若本周无风险 / 疑问，整段替换为：<b>无</b>。）</span></span></div></div>
+
+<div style="margin-top:32px;margin-bottom:4px;line-height:1.6"><div dir="auto" style="font-size:14px"><span style="font-family:inherit"><span style="color:rgb(143,149,158)">— [姓名] / [团队] / [日期]｜<a class="not-doclink" href="mailto:[your@email]" style="cursor:pointer;text-decoration:none;color:rgb(20,86,240)">[your@email]</a></span></span></div></div>
diff --git a/skills/lark-mail/assets/templates/weekly--team-report.html b/skills/lark-mail/assets/templates/weekly--team-report.html
new file mode 100644
index 000000000..893d3f18a
--- /dev/null
+++ b/skills/lark-mail/assets/templates/weekly--team-report.html
@@ -0,0 +1,19 @@
+<!--
+SUBJECT 模板（lark-cli mail --subject 用）：
+  [团队] 工作周报 · [YYYY 第 NN 周]
+-->
+<div style="margin-top:24px;margin-bottom:8px;line-height:1.6"><span style="display:inline-block;border-bottom:3px solid rgb(36,91,219);padding-bottom:4px"><b style="font-size:18px;color:rgb(31,35,41)">本周工作</b></span></div>
+<ol start="1" data-list-number="true" style="margin-top:0px;margin-bottom:0px;margin-left:0px;padding-left:0px;list-style-position:inside"><li class="temp-li number1" data-li-line="true" data-list="number1" data-ol-id="weekly-this" data-start="1" style="line-height:1.6;margin-top:4px;margin-bottom:4px;padding-left:0px;display:list-item;list-style-type:decimal;font-family:inherit;font-size:14px;margin-left:0px;list-style-position:inside" dir="auto"><b><span style="font-family:inherit"><span style="color:rgb(31,35,41)">[项目 / 事件 1 名称]</span></span></b><a id="at-user-1" href="mailto:[email-1a]" style="cursor:pointer;color:rgb(20,86,240);padding:2px;text-decoration:none;border-radius:999em;margin:0px 2px" rel="nofollow noopener noreferrer">@[姓名 a]</a><a id="at-user-2" href="mailto:[email-1b]" style="cursor:pointer;color:rgb(20,86,240);padding:2px;text-decoration:none;border-radius:999em;margin:0px 2px" rel="nofollow noopener noreferrer">@[姓名 b]</a></li></ol>
+<blockquote style="padding-left:0px;color:rgb(100,106,115);border-left:2px solid rgb(187,191,196);margin:0px"><div dir="auto" style="font-size:14px;padding-left:12px"><span style="font-family:inherit"><span style="color:rgb(100,106,115)">文档：<a class="not-doclink" href="https://[doc-url-1]" style="cursor:pointer;text-decoration:none;color:rgb(20,86,240)">[文档名]</a></span></span></div></blockquote>
+<ul data-list-bullet="true" style="margin-top:0px;margin-bottom:0px;margin-left:0px;padding-left:0px;list-style-position:inside"><ul data-list-bullet="true" style="margin:0px 0px 0px 24px;padding-left:0px;list-style-position:inside"><li class="temp-li bullet2" data-li-line="true" data-list="bullet2" style="line-height:1.6;margin-top:4px;margin-bottom:4px;padding-left:0px;display:list-item;list-style-type:circle;font-family:inherit;font-size:14px;margin-left:0px;list-style-position:inside" dir="auto"><span style="font-family:inherit"><span style="color:rgb(31,35,41)">[子项 1.1：动作 / 产出，宏观角度]</span></span><a id="at-user-3" href="mailto:[email-子1.1]" style="cursor:pointer;color:rgb(20,86,240);padding:2px;text-decoration:none;border-radius:999em;margin:0px 2px" rel="nofollow noopener noreferrer">@[姓名 c]</a><span style="font-family:inherit"><span style="color:rgb(31,35,41)">，已完成</span></span></li><li class="temp-li bullet2" data-li-line="true" data-list="bullet2" style="line-height:1.6;margin-top:4px;margin-bottom:4px;padding-left:0px;display:list-item;list-style-type:circle;font-family:inherit;font-size:14px;margin-left:0px;list-style-position:inside" dir="auto"><span style="font-family:inherit"><span style="color:rgb(31,35,41)">[子项 1.2]</span></span><a id="at-user-4" href="mailto:[email-子1.2]" style="cursor:pointer;color:rgb(20,86,240);padding:2px;text-decoration:none;border-radius:999em;margin:0px 2px" rel="nofollow noopener noreferrer">@[姓名 d]</a><span style="font-family:inherit"><span style="color:rgb(31,35,41)">，已完成</span></span></li><li class="temp-li bullet2" data-li-line="true" data-list="bullet2" style="line-height:1.6;margin-top:4px;margin-bottom:4px;padding-left:0px;display:list-item;list-style-type:circle;font-family:inherit;font-size:14px;margin-left:0px;list-style-position:inside" dir="auto"><span style="font-family:inherit"><span style="color:rgb(31,35,41)">[子项 1.3]</span></span><a id="at-user-5" href="mailto:[email-子1.3a]" style="cursor:pointer;color:rgb(20,86,240);padding:2px;text-decoration:none;border-radius:999em;margin:0px 2px" rel="nofollow noopener noreferrer">@[姓名 e]</a><a id="at-user-6" href="mailto:[email-子1.3b]" style="cursor:pointer;color:rgb(20,86,240);padding:2px;text-decoration:none;border-radius:999em;margin:0px 2px" rel="nofollow noopener noreferrer">@[姓名 f]</a><span style="font-family:inherit"><span style="color:rgb(31,35,41)">，已完成</span></span></li></ul></ul>
+<ol start="2" data-list-number="true" style="margin-top:0px;margin-bottom:0px;margin-left:0px;padding-left:0px;list-style-position:inside"><li class="temp-li number1" data-li-line="true" data-list="number1" data-ol-id="weekly-this" data-start="2" style="line-height:1.6;margin-top:4px;margin-bottom:4px;padding-left:0px;display:list-item;list-style-type:decimal;font-family:inherit;font-size:14px;margin-left:0px;list-style-position:inside" dir="auto"><b><span style="font-family:inherit"><span style="color:rgb(31,35,41)">[项目 / 事件 2 名称]</span></span></b><a id="at-user-7" href="mailto:[email-2]" style="cursor:pointer;color:rgb(20,86,240);padding:2px;text-decoration:none;border-radius:999em;margin:0px 2px" rel="nofollow noopener noreferrer">@[姓名 g]</a></li></ol>
+<blockquote style="padding-left:0px;color:rgb(100,106,115);border-left:2px solid rgb(187,191,196);margin:0px"><div dir="auto" style="font-size:14px;padding-left:12px"><span style="font-family:inherit"><span style="color:rgb(100,106,115)">技术方案：<a class="not-doclink" href="https://[doc-url-2a]" style="cursor:pointer;text-decoration:none;color:rgb(20,86,240)">[文档名]</a>　·　设计稿：<a class="not-doclink" href="https://[doc-url-2b]" style="cursor:pointer;text-decoration:none;color:rgb(20,86,240)">[设计稿名]</a></span></span></div></blockquote>
+<ul data-list-bullet="true" style="margin-top:0px;margin-bottom:0px;margin-left:0px;padding-left:0px;list-style-position:inside"><ul data-list-bullet="true" style="margin:0px 0px 0px 24px;padding-left:0px;list-style-position:inside"><li class="temp-li bullet2" data-li-line="true" data-list="bullet2" style="line-height:1.6;margin-top:4px;margin-bottom:4px;padding-left:0px;display:list-item;list-style-type:circle;font-family:inherit;font-size:14px;margin-left:0px;list-style-position:inside" dir="auto"><b><span style="font-family:inherit"><span style="color:rgb(31,35,41)">[子项 2.1：含孙子项的动作主题]</span></span></b></li><ul data-list-bullet="true" style="margin:0px 0px 0px 24px;padding-left:0px;list-style-position:inside"><li class="temp-li bullet3" data-li-line="true" data-list="bullet3" style="line-height:1.6;margin-top:4px;margin-bottom:4px;padding-left:0px;display:list-item;list-style-type:square;font-family:inherit;font-size:14px;margin-left:0px;list-style-position:inside" dir="auto"><span style="font-family:inherit"><span style="color:rgb(31,35,41)">[孙子项 2.1.1：必要时再细分一层；不需要可整段删除]</span></span><a id="at-user-8" href="mailto:[email-孙2.1.1]" style="cursor:pointer;color:rgb(20,86,240);padding:2px;text-decoration:none;border-radius:999em;margin:0px 2px" rel="nofollow noopener noreferrer">@[姓名 h]</a></li><li class="temp-li bullet3" data-li-line="true" data-list="bullet3" style="line-height:1.6;margin-top:4px;margin-bottom:4px;padding-left:0px;display:list-item;list-style-type:square;font-family:inherit;font-size:14px;margin-left:0px;list-style-position:inside" dir="auto"><span style="font-family:inherit"><span style="color:rgb(31,35,41)">[孙子项 2.1.2]</span></span></li></ul><li class="temp-li bullet2" data-li-line="true" data-list="bullet2" style="line-height:1.6;margin-top:4px;margin-bottom:4px;padding-left:0px;display:list-item;list-style-type:circle;font-family:inherit;font-size:14px;margin-left:0px;list-style-position:inside" dir="auto"><span style="font-family:inherit"><span style="color:rgb(31,35,41)">[子项 2.2]</span></span><a id="at-user-9" href="mailto:[email-子2.2]" style="cursor:pointer;color:rgb(20,86,240);padding:2px;text-decoration:none;border-radius:999em;margin:0px 2px" rel="nofollow noopener noreferrer">@[姓名 i]</a><span style="font-family:inherit"><span style="color:rgb(31,35,41)">，进行中</span></span></li><li class="temp-li bullet2" data-li-line="true" data-list="bullet2" style="line-height:1.6;margin-top:4px;margin-bottom:4px;padding-left:0px;display:list-item;list-style-type:circle;font-family:inherit;font-size:14px;margin-left:0px;list-style-position:inside" dir="auto"><span style="font-family:inherit"><span style="color:rgb(31,35,41)">[子项 2.3]</span></span><a id="at-user-10" href="mailto:[email-子2.3]" style="cursor:pointer;color:rgb(20,86,240);padding:2px;text-decoration:none;border-radius:999em;margin:0px 2px" rel="nofollow noopener noreferrer">@[姓名 j]</a><span style="font-family:inherit"><span style="color:rgb(31,35,41)">，评审中</span></span></li></ul></ul>
+<ol start="3" data-list-number="true" style="margin-top:0px;margin-bottom:0px;margin-left:0px;padding-left:0px;list-style-position:inside"><li class="temp-li number1" data-li-line="true" data-list="number1" data-ol-id="weekly-this" data-start="3" style="line-height:1.6;margin-top:4px;margin-bottom:4px;padding-left:0px;display:list-item;list-style-type:decimal;font-family:inherit;font-size:14px;margin-left:0px;list-style-position:inside" dir="auto"><b><span style="font-family:inherit"><span style="color:rgb(31,35,41)">[项目 / 事件 3 名称]</span></span></b><a id="at-user-11" href="mailto:[email-3a]" style="cursor:pointer;color:rgb(20,86,240);padding:2px;text-decoration:none;border-radius:999em;margin:0px 2px" rel="nofollow noopener noreferrer">@[姓名 k]</a><a id="at-user-12" href="mailto:[email-3b]" style="cursor:pointer;color:rgb(20,86,240);padding:2px;text-decoration:none;border-radius:999em;margin:0px 2px" rel="nofollow noopener noreferrer">@[姓名 l]</a><span style="font-family:inherit"><span style="color:rgb(31,35,41)">，</span></span><span style="background-color:rgb(255,225,140);color:rgb(31,35,41)">阻塞</span></li></ol>
+<blockquote style="padding-left:0px;color:rgb(100,106,115);border-left:2px solid rgb(187,191,196);margin:0px"><div dir="auto" style="font-size:14px;padding-left:12px"><span style="font-family:inherit"><span style="color:rgb(100,106,115)">阻塞分析：<a class="not-doclink" href="https://[doc-url-3]" style="cursor:pointer;text-decoration:none;color:rgb(20,86,240)">[文档名]</a></span></span></div></blockquote>
+<ul data-list-bullet="true" style="margin-top:0px;margin-bottom:0px;margin-left:0px;padding-left:0px;list-style-position:inside"><ul data-list-bullet="true" style="margin:0px 0px 0px 24px;padding-left:0px;list-style-position:inside"><li class="temp-li bullet2" data-li-line="true" data-list="bullet2" style="line-height:1.6;margin-top:4px;margin-bottom:4px;padding-left:0px;display:list-item;list-style-type:circle;font-family:inherit;font-size:14px;margin-left:0px;list-style-position:inside" dir="auto"><span style="font-family:inherit"><span style="color:rgb(31,35,41)">[子项 3.1：阻塞点 / 卡住原因]</span></span><a id="at-user-13" href="mailto:[email-子3.1]" style="cursor:pointer;color:rgb(20,86,240);padding:2px;text-decoration:none;border-radius:999em;margin:0px 2px" rel="nofollow noopener noreferrer">@[姓名 m]</a></li><li class="temp-li bullet2" data-li-line="true" data-list="bullet2" style="line-height:1.6;margin-top:4px;margin-bottom:4px;padding-left:0px;display:list-item;list-style-type:circle;font-family:inherit;font-size:14px;margin-left:0px;list-style-position:inside" dir="auto"><span style="font-family:inherit"><span style="color:rgb(31,35,41)">[子项 3.2：解锁路径]</span></span><a id="at-user-14" href="mailto:[email-子3.2]" style="cursor:pointer;color:rgb(20,86,240);padding:2px;text-decoration:none;border-radius:999em;margin:0px 2px" rel="nofollow noopener noreferrer">@[姓名 n]</a><span style="font-family:inherit"><span style="color:rgb(31,35,41)">，待启动</span></span></li></ul></ul>
+<div style="margin-top:28px;margin-bottom:8px;line-height:1.6"><span style="display:inline-block;border-bottom:3px solid rgb(36,91,219);padding-bottom:4px"><b style="font-size:18px;color:rgb(31,35,41)">下周工作</b></span></div>
+<ol start="1" data-list-number="true" style="margin-top:0px;margin-bottom:0px;margin-left:0px;padding-left:0px;list-style-position:inside"><li class="temp-li number1" data-li-line="true" data-list="number1" data-ol-id="weekly-next" data-start="1" style="line-height:1.6;margin-top:4px;margin-bottom:4px;padding-left:0px;display:list-item;list-style-type:decimal;font-family:inherit;font-size:14px;margin-left:0px;list-style-position:inside" dir="auto"><span style="font-family:inherit"><span style="color:rgb(31,35,41)">[重点 1：项目 / 事件名]</span></span><a id="at-user-15" href="mailto:[email-r1]" style="cursor:pointer;color:rgb(20,86,240);padding:2px;text-decoration:none;border-radius:999em;margin:0px 2px" rel="nofollow noopener noreferrer">@[姓名 o]</a><span style="font-family:inherit"><span style="color:rgb(31,35,41)">，预计 [YYYY-MM-DD]</span></span></li><li class="temp-li number1" data-li-line="true" data-list="number1" data-ol-id="weekly-next" data-start="2" style="line-height:1.6;margin-top:4px;margin-bottom:4px;padding-left:0px;display:list-item;list-style-type:decimal;font-family:inherit;font-size:14px;margin-left:0px;list-style-position:inside" dir="auto"><span style="font-family:inherit"><span style="color:rgb(31,35,41)">[重点 2：含子重点的项目]</span></span></li></ol>
+<ol data-list-number="true" style="margin-top:0px;margin-bottom:0px;margin-left:0px;padding-left:0px;list-style-position:inside"><ol start="1" data-list-number="true" style="margin:0px 0px 0px 24px;padding-left:0px;list-style-position:inside"><li class="temp-li number2" data-li-line="true" data-list="number2" data-ol-id="weekly-next" data-start="a" style="line-height:1.6;margin-top:4px;margin-bottom:4px;padding-left:0px;display:list-item;list-style-type:lower-alpha;font-family:inherit;font-size:14px;margin-left:0px;list-style-position:inside" dir="auto"><span style="font-family:inherit"><span style="color:rgb(31,35,41)">[子重点 a：动作 / 推进方式]</span></span><a id="at-user-16" href="mailto:[email-r2a]" style="cursor:pointer;color:rgb(20,86,240);padding:2px;text-decoration:none;border-radius:999em;margin:0px 2px" rel="nofollow noopener noreferrer">@[姓名 p]</a></li><li class="temp-li number2" data-li-line="true" data-list="number2" data-ol-id="weekly-next" data-start="b" style="line-height:1.6;margin-top:4px;margin-bottom:4px;padding-left:0px;display:list-item;list-style-type:lower-alpha;font-family:inherit;font-size:14px;margin-left:0px;list-style-position:inside" dir="auto"><span style="font-family:inherit"><span style="color:rgb(31,35,41)">[子重点 b：动作]</span></span><a id="at-user-17" href="mailto:[email-r2b]" style="cursor:pointer;color:rgb(20,86,240);padding:2px;text-decoration:none;border-radius:999em;margin:0px 2px" rel="nofollow noopener noreferrer">@[姓名 q]</a></li></ol></ol>
+<ol start="3" data-list-number="true" style="margin-top:0px;margin-bottom:0px;margin-left:0px;padding-left:0px;list-style-position:inside"><li class="temp-li number1" data-li-line="true" data-list="number1" data-ol-id="weekly-next" data-start="3" style="line-height:1.6;margin-top:4px;margin-bottom:4px;padding-left:0px;display:list-item;list-style-type:decimal;font-family:inherit;font-size:14px;margin-left:0px;list-style-position:inside" dir="auto"><span style="font-family:inherit"><span style="color:rgb(31,35,41)">[重点 3：项目 / 事件名]</span></span><a id="at-user-18" href="mailto:[email-r3a]" style="cursor:pointer;color:rgb(20,86,240);padding:2px;text-decoration:none;border-radius:999em;margin:0px 2px" rel="nofollow noopener noreferrer">@[姓名 r]</a><a id="at-user-19" href="mailto:[email-r3b]" style="cursor:pointer;color:rgb(20,86,240);padding:2px;text-decoration:none;border-radius:999em;margin:0px 2px" rel="nofollow noopener noreferrer">@[姓名 s]</a><span style="font-family:inherit"><span style="color:rgb(31,35,41)">，预计 [YYYY-MM-DD]</span></span></li><li class="temp-li number1" data-li-line="true" data-list="number1" data-ol-id="weekly-next" data-start="4" style="line-height:1.6;margin-top:4px;margin-bottom:4px;padding-left:0px;display:list-item;list-style-type:decimal;font-family:inherit;font-size:14px;margin-left:0px;list-style-position:inside" dir="auto"><span style="font-family:inherit"><span style="color:rgb(31,35,41)">[重点 4：项目 / 事件名]</span></span><a id="at-user-20" href="mailto:[email-r4]" style="cursor:pointer;color:rgb(20,86,240);padding:2px;text-decoration:none;border-radius:999em;margin:0px 2px" rel="nofollow noopener noreferrer">@[姓名 t]</a><span style="font-family:inherit"><span style="color:rgb(31,35,41)">，预计 [YYYY-MM-DD]</span></span></li></ol>
+<div style="margin-top:32px;margin-bottom:4px;line-height:1.6"><div dir="auto" style="font-size:14px"><span style="font-family:inherit"><span style="color:rgb(143,149,158)">— [姓名] / [团队] / [日期]｜<a class="not-doclink" href="mailto:[your@email]" style="cursor:pointer;text-decoration:none;color:rgb(20,86,240)">[your@email]</a></span></span></div></div>
diff --git a/skills/lark-mail/references/lark-mail-draft-create.md b/skills/lark-mail/references/lark-mail-draft-create.md
index eeb016af9..a64e77aa4 100644
--- a/skills/lark-mail/references/lark-mail-draft-create.md
+++ b/skills/lark-mail/references/lark-mail-draft-create.md
@@ -8,6 +8,8 @@
 
 如需修改已有草稿，不要使用此命令，请使用 `lark-cli mail +draft-edit`。
 
+**CRITICAL - 编辑邮件内容前 MUST 先用 Read 工具读取 [references/lark-mail-html.md](references/lark-mail-html.md)，其中包含邮件书写规范**
+
 ## 安全约束
 
 此命令创建草稿——**不会**发送邮件。用户可以在飞书邮件 UI 中打开草稿查看详情，确认后再进入后续操作。因此：
diff --git a/skills/lark-mail/references/lark-mail-draft-edit.md b/skills/lark-mail/references/lark-mail-draft-edit.md
index 366c5cf82..76e84e794 100644
--- a/skills/lark-mail/references/lark-mail-draft-edit.md
+++ b/skills/lark-mail/references/lark-mail-draft-edit.md
@@ -12,6 +12,8 @@
 
 **正文编辑和其他高级操作必须通过 `--patch-file`**。没有 `--set-body` flag。
 
+**CRITICAL - 编辑邮件内容前 MUST 先用 Read 工具读取 [references/lark-mail-html.md](references/lark-mail-html.md)，其中包含邮件书写规范**
+
 ### 正文编辑：两个 op 的选择
 
 正文编辑通过 `--patch-file` 传入，有两个 op 可选：
diff --git a/skills/lark-mail/references/lark-mail-forward.md b/skills/lark-mail/references/lark-mail-forward.md
index e2e50830c..8530c245e 100644
--- a/skills/lark-mail/references/lark-mail-forward.md
+++ b/skills/lark-mail/references/lark-mail-forward.md
@@ -13,6 +13,8 @@
 
 ## CRITICAL — 发送工作流（必须遵循）
 
+编辑邮件内容前 MUST 先用 Read 工具读取 [references/lark-mail-html.md](references/lark-mail-html.md)，其中包含邮件书写规范**
+
 此命令默认**只保存草稿**，不会发送邮件。转发会将原邮件内容发送给新收件人，需要发送时有两种合规方式：
 
 **方式 A（推荐）** — 创建转发草稿（不带 `--confirm-send`）：
diff --git a/skills/lark-mail/references/lark-mail-html.md b/skills/lark-mail/references/lark-mail-html.md
new file mode 100644
index 000000000..1b97b8a0f
--- /dev/null
+++ b/skills/lark-mail/references/lark-mail-html.md
@@ -0,0 +1,311 @@
+# 邮件 HTML 写法指南
+
+> **前置条件：** 先阅读 [`../../lark-shared/SKILL.md`](../../lark-shared/SKILL.md) 了解通用安全规则。本文档定义 lark-cli mail 写信场景下的 HTML / CSS / URL 写法、LarkSuite mail-editor 原生格式、可复制片段、3 套场景模板。
+
+**CRITICAL 邮件是重要的对外交流渠道，请你保证书写语言凝练扼要**
+**CRITICAL 电子邮件的 HTML 不是 Web 开发的 HTML，请你务必遵守本文档中提及的常用邮件格式书写规范**
+**CRITICAL 请务必使用 shortcut 来进行邮件内容编辑 （`+send` / `+draft-create` / `+reply` / `+reply-all` / `+forward`）或 `+draft-edit` 的 body op，严禁自行拼接 EML**
+
+你可以参考 **官方模板库** [`../assets/templates/`](../assets/templates) — 提供部分场景模板，可供参考
+
+> 请注意，邮件内容编辑相关的 shortcut 内置 HTML lint 工具，处于安全考虑和格式适配，你输入的 HTML 可能会被自动调整
+
+## 风格底线
+
+- **邮件标题小于50字**： 邮件主题行 `--subject` 应控制在 50 字内，避免超长标题带来理解困难
+- **多用列表、表格**：不要堆叠过长的文本段落，请擅长使用列表`<ul>` / `<ol>`或分段 `<p>` 
+- **列表书写规则**：**不要**用 `<p>一、...</p><p>二、...</p>` 这种「中文编号 + 段落」的列表样式，"①②③"、"1) 2) 3)的机械写法也请摒弃；请擅长使用列表格式 `<ul>` / `<ol>`。
+- **正文长度自适应**：不正文长度，但要求**首屏要见到关键信息**。
+
+## 格式书写规范
+
+电子邮件的 HTML 受客户端兼容性、安全沙箱、服务端 sanitizer 三重约束，跟 Web 浏览器 HTML 不是同一规范体系。下面是飞书邮箱已验证的最纯净、最美观写法，请直接复制使用。
+
+### 段落
+
+```html
+<p>文字</p>
+```
+
+### 标题
+
+```html
+<h1>一级标题（26px，自动加粗）</h1>
+<h2>二级标题（22px）</h2>
+<h3>三级标题（20px）</h3>
+<h4>四级标题（18px）</h4>
+```
+
+### 加粗
+
+```html
+<b>加粗文字</b>
+```
+
+### 斜体
+
+```html
+<i>斜体文字</i>
+```
+
+### 下划线
+
+```html
+<u>下划线文字</u>
+```
+
+### 删除线
+
+```html
+<s>删除文字</s>
+```
+
+### 字号
+
+```html
+<span style="font-size:18px">放大到 18px</span>
+```
+
+### 字体
+
+```html
+<span style="font-family:'Courier New',monospace">等宽字体</span>
+```
+
+### 文字颜色
+
+```html
+<span style="color:rgb(245,74,69)">红色文字</span>
+```
+
+### 换行
+
+```html
+第一行<br>第二行
+```
+
+### 分隔
+
+```html
+<hr>
+```
+
+### 列表
+
+```html
+<!-- 无序列表 -->
+<ul><li>项</li></ul>
+
+<!-- 有序列表 -->
+<ol><li>条</li></ol>
+
+<!-- 多级列表 -->
+<ol start="1" data-list-number="true" style="margin:0px;padding-left:0px;list-style-position:inside">
+   <li class="temp-li number1" data-li-line="true" data-list="number1" data-ol-id="demo" data-start="1" style="line-height:1.6;margin:4px 0;padding-left:0px;display:list-item;list-style-type:decimal;font-family:inherit;font-size:14px;list-style-position:inside" dir="auto">
+      <b><span style="font-family:inherit"><span style="color:rgb(31,35,41)">第一级（ol decimal）</span></span></b>
+   </li>
+</ol>
+
+<ul data-list-bullet="true" style="margin:0px;padding-left:0px;list-style-position:inside">
+   <ul data-list-bullet="true" style="margin:0px 0px 0px 24px;padding-left:0px;list-style-position:inside">
+      <li class="temp-li bullet2" data-li-line="true" data-list="bullet2" style="line-height:1.6;margin:4px 0;padding-left:0px;display:list-item;list-style-type:circle;font-family:inherit;font-size:14px;list-style-position:inside" dir="auto">
+         <span style="font-family:inherit"><span style="color:rgb(31,35,41)">第二级（ul circle，缩进 24px）</span></span>
+      </li>
+      <ul data-list-bullet="true" style="margin:0px 0px 0px 24px;padding-left:0px;list-style-position:inside">
+         <li class="temp-li bullet3" data-li-line="true" data-list="bullet3" style="line-height:1.6;margin:4px 0;padding-left:0px;display:list-item;list-style-type:square;font-family:inherit;font-size:14px;list-style-position:inside" dir="auto">
+          <span style="font-family:inherit"><span style="color:rgb(31,35,41)">第三级（ul square，再缩进24px）</span></span>
+         </li>
+      </ul>
+      <li class="temp-li bullet2" data-li-line="true" data-list="bullet2" style="line-height:1.6;margin:4px 0;padding-left:0px;display:list-item;list-style-type:circle;font-family:inherit;font-size:14px;list-style-position:inside" dir="auto">
+         <span style="font-family:inherit"><span style="color:rgb(31,35,41)">第二级（同层）</span></span>
+      </li>
+   </ul>
+</ul>
+
+<ol start="2" data-list-number="true" style="margin:0px;padding-left:0px;list-style-position:inside">
+   <li class="temp-li number1" data-li-line="true" data-list="number1" data-ol-id="demo" data-start="2" style="line-height:1.6;margin:4px 0;padding-left:0px;display:list-item;list-style-type:decimal;font-family:inherit;font-size:14px;list-style-position:inside" dir="auto">
+      <b><span style="font-family:inherit"><span style="color:rgb(31,35,41)">第一级（接续编号）</span></span></b>
+   </li>
+</ol>
+```
+
+### 表格
+
+```html
+  <table style="border-collapse:collapse">
+    <thead>
+      <tr style="background-color:rgb(242,243,245)">
+        <th rowspan="2" style="border:1px solid rgb(222,224,227);padding:8px;vertical-align:middle">A</th>
+        <th colspan="2" style="border:1px solid rgb(222,224,227);padding:8px;text-align:center">B</th>
+        <th rowspan="2" style="border:1px solid rgb(222,224,227);padding:8px;vertical-align:middle">C</th>
+      </tr>
+      <tr style="background-color:rgb(242,243,245)">
+        <th style="border:1px solid rgb(222,224,227);padding:8px">B1</th>
+        <th style="border:1px solid rgb(222,224,227);padding:8px">B2</th>
+      </tr>
+    </thead>
+    <tbody>
+      <tr>
+        <td style="border:1px solid rgb(222,224,227);padding:8px">a1</td>
+        <td style="border:1px solid rgb(222,224,227);padding:8px">b1-1</td>
+        <td style="border:1px solid rgb(222,224,227);padding:8px">b2-1</td>
+        <td style="border:1px solid rgb(222,224,227);padding:8px">c1</td>
+      </tr>
+      <tr>
+        <td style="border:1px solid rgb(222,224,227);padding:8px">a2</td>
+        <td style="border:1px solid rgb(222,224,227);padding:8px">b1-2</td>
+        <td style="border:1px solid rgb(222,224,227);padding:8px">b2-2</td>
+        <td style="border:1px solid rgb(222,224,227);padding:8px">c2</td>
+      </tr>
+    </tbody>
+  </table>
+```
+
+### 链接
+
+```html
+<a href="https://www.larkoffice.com" style="color:rgb(20,86,240);text-decoration:none">链接文字</a>
+```
+
+### AT 用户
+
+```html
+<a id="at-user-1" href="mailto:user@example.com" style="cursor:pointer;color:rgb(20,86,240);padding:2px;text-decoration:none;border-radius:999em;margin:0px 2px">@姓名</a>
+```
+
+**必填字段** `id="at-user-N"`、`mailto:` 和姓名文本
+
+### 引用
+
+```html
+<blockquote style="padding-left:12px;color:rgb(100,106,115);border-left:2px solid rgb(187,191,196);margin:0px">引用文字</blockquote>
+```
+
+### 文字高亮（荧光笔风格）
+
+```html
+<span style="background-color:rgb(255,200,220);color:rgb(31,35,41)">关键里程碑</span>
+<span style="background-color:rgb(255,225,140);color:rgb(31,35,41)">待跟进</span>
+<span style="background-color:rgb(190,230,200);color:rgb(31,35,41)">已完成</span>
+```
+
+### 文字强调
+
+```html
+<b><span style="font-family:inherit"><span style="color:rgb(245,74,69)">红色加粗</span></span></b>
+<i><span style="font-family:inherit"><span style="color:rgb(0,0,0)">斜体</span></span></i>
+<u><span style="font-family:inherit"><span style="color:rgb(0,0,0)">下划线</span></span></u>
+<s><span style="font-family:inherit"><span style="color:rgb(0,0,0)">删除线</span></span></s>
+```
+
+### 居中 / 左对齐 / 右对齐
+
+```html
+<div style="text-align:center">居中</div>
+<div style="text-align:left">左对齐（默认）</div>
+<div style="text-align:right">右对齐</div>
+```
+
+### 盒模型
+
+```html
+<div style="margin:8px;padding:12px;width:300px">外边距 8px / 内边距 12px / 宽度 300px</div>
+```
+
+### 边框
+
+```html
+<div style="border:1px solid rgb(222,224,227);border-radius:8px;padding:8px">圆角描边</div>
+```
+
+### 透明
+
+```html
+<span style="opacity:0.5">半透明文字</span>
+```
+
+### 颜色（推荐调色盘）
+
+```html
+<!-- 主黑（正文） -->
+<span style="color:rgb(31,35,41)">主文本</span>
+<!-- 副灰（次要说明 / 时间 / 备注） -->
+<span style="color:rgb(100,106,115)">副文本</span>
+<!-- 浅灰（三级文本 / 占位） -->
+<span style="color:rgb(143,149,158)">浅灰文本</span>
+<!-- LarkSuite 蓝（链接 / mention） -->
+<span style="color:rgb(20,86,240)">蓝色文字</span>
+<!-- LarkSuite 深蓝（重点标题） -->
+<span style="color:rgb(36,91,219)">深蓝标题</span>
+<!-- 警示红（错误 / 失败 / 红色加粗） -->
+<span style="color:rgb(245,74,69)">警示红</span>
+<!-- 紧急橙（紧急 / 阻塞 / 环比上升） -->
+<span style="color:rgb(225,77,42)">紧急橙</span>
+```
+
+### URL scheme
+
+```html
+<a href="https://example.com">外链</a>
+<a href="mailto:user@example.com">邮件链接</a>
+<img src="cid:abc"> <!-- 内嵌图片，配合 --inline 参数 -->
+<img src="data:image/png;base64,iVBOR..."> <!-- base64 内嵌图片 -->
+```
+
+## 官方 HTML 模板
+
+仓库 [`../assets/templates/`](../assets/templates/) 内预制了若干场景模板，按 LarkSuite mail-editor 原生格式写好。**注意：模板是静态 HTML，没有变量替换能力，AI 需要手工把模板里的样例文本替换成本次邮件的真实内容。**
+
+| 文件                              | 说明       |
+|---------------------------------|----------|
+| `newsletter--weekly-brief.html` | 资讯周报     |
+| `weekly--personal-report.html`  | 工作周报（个人） |
+| `weekly--team-report.html`      | 工作周报（团队） |
+| `research--market-report.html`  | 调研报告     |
+| `job-application--resume.html`  | 简历邮件     |
+
+跟飞书 OAPI 个人邮件模板（`mail.user_mailbox.templates`）不同——OAPI 模板是用户邮箱里的"我的模板"，跨客户端可见；这里是仓库里的静态 HTML 文件，AI 单次套用即可。
+
+### AI 套用流程
+
+1. **判断是否能用模板** — 看用户当前要写的邮件类型（周报 / 调研 / 简历 / 资讯 / ...）能否对上 [`../assets/templates/`](../assets/templates/) 里的某个文件；不匹配就跳过模板，直接按写法规范从零写。
+2. **Read 整个 HTML** — 用 Read 工具完整读取选定的模板文件，理解骨架（章节标题 / 列表层级 / 占位文本 / mention chip / 段落顺序）。
+3. **替换文本内容** — 把模板里的样例文字换成用户当前邮件的真实内容；保留所有 inline style / class / data-* 等结构性属性不动；列表条目 / 表格行可按需增删；不需要的整段（如「风险」「下周计划」）整段删除即可，不要留空骨架。
+4. **调写信 shortcut 生成草稿** — 把替换后的 HTML 通过 `--body` 参数交给写信链路（推荐 `+draft-create` 先存草稿、用户复核后再 `+send`）：
+
+   ```bash
+   lark-cli mail +draft-create --as user \
+     --to alice@example.com --subject 'Q3 团队周报' \
+     --body "$(cat skills/lark-mail/assets/templates/weekly--team-report.html)"
+   ```
+
+   实际使用时 `$(cat ...)` 可换成 AI 替换文本后写入的本地副本，或直接把替换后的 HTML 字符串作为 `--body` 的值。
+
+5. **拿到草稿链接给用户复核** — 写信 shortcut 返回 `reference` 字段（草稿打开链接），把它给用户在飞书邮箱 UI 里打开核对，再决定下一步发送 / 编辑。
+
+## 写信 shortcut 的 lint 返回值
+
+写信链路（`+send` / `+draft-create` / `+reply` / `+reply-all` / `+forward` / `+draft-edit` body op）调用 `emlbuilder` 之前会强制 lint 净化 HTML，stdout envelope 永远携带两个 count 字段：
+
+| 字段 | 类型 | 说明 |
+|------|------|------|
+| `lint_applied_count` | int | warning 类 finding 的条数（lint 自动修复了多少处装饰性问题，如 `<p>` → 双层 div、`<ul>/<li>` → native list-block 等） |
+| `original_blocked_count` | int | error 类 finding 的条数（lint 强制删除了多少 XSS / 危险标签 / 危险 URL；非空意味 body 含真正的安全 / 合规问题） |
+
+默认 envelope **不包含**完整 finding 数组——`lint_applied_count` 已经足够告诉 AI / 用户「lint 改了 N 条」，避免一封含 20 个 mention chip 的周报模板把 envelope 撑到几千 token。
+
+要看完整 finding 时加 `--show-lint-details`：
+
+```bash
+lark-cli mail +draft-create --show-lint-details \
+  --to alice@example.com --subject 'Hi' --body '<p>正文</p>'
+```
+
+加了 `--show-lint-details` 后 envelope 同时返回 `lint_applied[]` / `original_blocked[]`（每条含 `rule_id` / `severity` / `tag_or_attr` / `excerpt` / `hint`）。**默认场景不要加这个 flag**，徒增 token 消耗。
+
+如果只是想预览 lint 会怎么改 HTML，建议直接用 [`+lint-html`](./lark-mail-lint-html.md) 命令——它本来就返回完整 `warnings[]` / `errors[]` + `cleaned_html`，比写信链路 `--show-lint-details` 更清晰。
+
+## 相关文档
+
+- [`+lint-html` 用法](./lark-mail-lint-html.md)
+- 写信 shortcut: [`+send`](./lark-mail-send.md) / [`+draft-create`](./lark-mail-draft-create.md) / [`+reply`](./lark-mail-reply.md) / [`+reply-all`](./lark-mail-reply-all.md) / [`+forward`](./lark-mail-forward.md) / [`+draft-edit`](./lark-mail-draft-edit.md)
diff --git a/skills/lark-mail/references/lark-mail-lint-html.md b/skills/lark-mail/references/lark-mail-lint-html.md
new file mode 100644
index 000000000..f505ba59b
--- /dev/null
+++ b/skills/lark-mail/references/lark-mail-lint-html.md
@@ -0,0 +1,248 @@
+# mail +lint-html
+
+> **前置条件：** 先阅读 [`../../lark-shared/SKILL.md`](../../lark-shared/SKILL.md) 了解通用安全规则。
+
+## 作用
+
+`+lint-html` 是邮件 HTML 正文的本地预检工具（read-only，无网络 IO）。
+
+- 校验 HTML 是否符合飞书邮箱的兼容性 / 安全 / 原生写法要求；
+- 自动修复（可选）非法或不规范写法，输出 `cleaned_html`；
+- 不写入任何邮箱状态，不调用任何 OAPI。
+
+写信链路（`+send` / `+draft-create` / `+reply` / `+reply-all` / `+forward` / `+draft-edit` body op）已**强制内置**同一份 lint，提交前会自动净化并通过 stdout 返回 `lint_applied_count` / `original_blocked_count`（加 `--show-lint-details` 可拿到完整 `lint_applied[]` / `original_blocked[]`，详见 [邮件 HTML 写法指南](./lark-mail-html.md#写信-shortcut-的-lint-返回值)）。本命令是写信链路 lint 的预览版，行为一致，调用更轻量，适合：
+
+- AI / 用户在创建草稿前自检 HTML 会被怎么改写；
+- CI 流水线把 HTML 模板当作产物校验。
+
+## 命令
+
+```bash
+# 直接传 HTML
+lark-cli mail +lint-html --body '<p>正文</p>'
+
+# 从文件读 HTML（路径必须在 cwd 子树内）
+lark-cli mail +lint-html --body-file ./template.html
+
+# 仅校验不修复（不返回 cleaned_html）
+lark-cli mail +lint-html --body '<p>x</p>' --auto-fix=false
+
+# CI 严格模式：任何 warning 都退出非零
+lark-cli mail +lint-html --body-file ./template.html --strict
+```
+
+## 参数
+
+| 参数 | 必填 | 说明 |
+|------|------|------|
+| `--body <html>` | 二选一 | 待检查的 HTML 内容 |
+| `--body-file <path>` | 二选一 | 从文件读取 HTML，仅支持 cwd 子树（绝对路径 / `..` 越出 cwd 会被拒） |
+| `--auto-fix` | 否 | 默认 `true`。`true` 时返回 `cleaned_html`；`false` 时不返回 `cleaned_html` |
+| `--strict` | 否 | 默认 `false`。`true` 时把 warning 视作 error 并退出非零（CI 用） |
+| `--show-lint-details` | 否 | 默认 `false`。`true` 时 envelope 同时返回 `warnings[]` / `errors[]` 完整 Finding 数组；默认仅返回 `cleaned_html`，避免复杂模板触发数十条装饰性 warning 把响应撑大几千 token |
+| `--format <fmt>` | 否 | `json`（默认）/ `pretty` / `table` / `csv` / `ndjson` |
+| `--jq <expr>` | 否 | 对返回 JSON 用 jq 表达式过滤 |
+| `--dry-run` | 否 | 不执行 lint，仅返回 dry-run 描述 |
+
+## 返回值
+
+**默认 envelope**（仅 `cleaned_html`，token-frugal）：
+
+```json
+{
+  "ok": true,
+  "data": {
+    "cleaned_html": "<p>...</p>"
+  }
+}
+```
+
+**加 `--show-lint-details` 后**：
+
+```json
+{
+  "ok": true,
+  "data": {
+    "cleaned_html": "<p>...</p>",
+    "warnings": [
+      { "rule_id": "...", "severity": "warning", "tag_or_attr": "...", "excerpt": "...", "hint": "..." }
+    ],
+    "errors": [
+      { "rule_id": "...", "severity": "error", "tag_or_attr": "...", "excerpt": "...", "hint": "..." }
+    ]
+  }
+}
+```
+
+| 字段 | 说明 |
+|------|------|
+| `cleaned_html` | `--auto-fix=true` 时返回的修复后 HTML；warning 已自动修复，error 已删除 |
+| `warnings[]` | 警告级 finding 数组（**仅 `--show-lint-details` 时返回**）。无违规时输出 `[]` |
+| `errors[]` | 错误级 finding 数组（**仅 `--show-lint-details` 时返回**）。`--strict` 下任一非空都会退出非零 |
+
+每条 finding 含：
+
+| 字段 | 说明 |
+|------|------|
+| `rule_id` | 规则编号（UPPER_SNAKE_CASE） |
+| `severity` | `"warning"` 或 `"error"` |
+| `tag_or_attr` | 触发规则的 tag / attribute / `style.<property>` |
+| `excerpt` | HTML 片段（最多 200 字节，超出截断） |
+| `hint` | 可读的修复说明 |
+
+## 调用示例
+
+下面是用 `lark-cli mail +lint-html --body '<INPUT>' --show-lint-details` 实跑得到的典型 case（加 `--show-lint-details` 才能看到 finding；默认只返回 `cleaned_html`），覆盖 error 类（强制删）和 warning 类（自动修复）。
+
+### Error 类（强制删除，写信链路也会拒）
+
+#### 1. `<script>` 整段删除
+
+输入：
+
+```html
+<script>alert(1)</script>正文
+```
+
+输出：
+
+```html
+正文
+```
+
+原因：`<script>` 有 XSS 风险，整段丢弃。
+
+#### 2. `javascript:` URL 删除
+
+输入：
+
+```html
+<a href="javascript:void(0)">click</a>
+```
+
+输出：
+
+```html
+<a class="not-doclink" style="cursor:pointer;text-decoration:none;color:rgb(20,86,240)">click</a>
+```
+
+原因：`javascript:` scheme 是 XSS 入口，`href` 属性被剥。
+
+#### 3. `on*` 事件 handler 删除
+
+输入：
+
+```html
+<p onclick="alert(1)">hi</p>
+```
+
+输出：
+
+```html
+<div style="margin-top:4px;margin-bottom:4px;line-height:1.6"><div dir="auto" style="font-size:14px">hi</div></div>
+```
+
+原因：inline event handler（`onclick` / `onerror` 等）是脚本注入入口，属性被剥。
+
+### Warning 类（自动修复，视觉无差异）
+
+#### 4. `<font>` → `<span style>`
+
+输入：
+
+```html
+<font color="red" size="3">字</font>
+```
+
+输出：
+
+```html
+<span style="color:red; font-size:16px">字</span>
+```
+
+原因：`<font>` 是 HTML4 过时标签，飞书 mail-editor 用 inline style 表达字号 / 颜色。
+
+#### 5. `<p>` 段落容器原生化
+
+输入：
+
+```html
+<p>正文</p>
+```
+
+输出：
+
+```html
+<div style="margin-top:4px;margin-bottom:4px;line-height:1.6"><div dir="auto" style="font-size:14px">正文</div></div>
+```
+
+原因：飞书 mail-editor 段落实际是双层 div（外层定 margin / line-height，内层定 font-size）。
+
+#### 6. `<ul>/<li>` 列表原生化
+
+输入：
+
+```html
+<ul><li>第一项</li></ul>
+```
+
+输出：
+
+```html
+<ul style="margin-top:0px;margin-bottom:0px;margin-left:0px;padding-left:0px;list-style-position:inside" data-list-bullet="true"><li class="temp-li bullet1" data-li-line="true" data-list="bullet1" style="line-height:1.6;margin-top:0px;margin-bottom:0px;padding-left:0px;display:list-item;list-style-type:disc;font-family:inherit;font-size:14px;margin-left:0px;list-style-position:inside" dir="auto"><span style="font-family:inherit"><span style="color:rgb(0,0,0)">第一项</span></span></li></ul>
+```
+
+原因：飞书 native list-block 要求 `<ul>` / `<li>` 补全 class + data marker + 双层 span 包裹，否则 li 之间会出现可见空行。
+
+#### 7. `<blockquote>` 加灰边 + 灰文字
+
+输入：
+
+```html
+<blockquote>引用</blockquote>
+```
+
+输出：
+
+```html
+<blockquote style="padding-left:0px;color:rgb(100,106,115);border-left:2px solid rgb(187,191,196);margin:0px">引用</blockquote>
+```
+
+原因：补飞书原生引用样式（左侧 2px 灰边 + 灰色文字）。
+
+#### 8. `<a>` 链接补 not-doclink + LarkSuite 蓝
+
+输入：
+
+```html
+<a href="https://example.com">link</a>
+```
+
+输出：
+
+```html
+<a href="https://example.com" class="not-doclink" style="cursor:pointer;text-decoration:none;color:rgb(20,86,240)">link</a>
+```
+
+原因：补 `not-doclink` class（防误识为内部 doc share）+ LarkSuite 品牌蓝 + 无下划线。
+
+#### 9. 非白名单 CSS property 删除
+
+输入：
+
+```html
+<p style="position:absolute;color:red">x</p>
+```
+
+输出：
+
+```html
+<div style="color:red;margin-top:4px;margin-bottom:4px;line-height:1.6"><div dir="auto" style="font-size:14px">x</div></div>
+```
+
+原因：`position` 不在 inline style 白名单内被剔除，`color` 保留。
+
+## 相关命令
+
+- 写信 shortcut（已内置同一份 lint）：[`+send`](./lark-mail-send.md) / [`+draft-create`](./lark-mail-draft-create.md) / [`+reply`](./lark-mail-reply.md) / [`+reply-all`](./lark-mail-reply-all.md) / [`+forward`](./lark-mail-forward.md) / [`+draft-edit`](./lark-mail-draft-edit.md)
+- 知识文档：[邮件 HTML 写法指南](./lark-mail-html.md)
diff --git a/skills/lark-mail/references/lark-mail-reply-all.md b/skills/lark-mail/references/lark-mail-reply-all.md
index ded60f561..e4dfbc065 100644
--- a/skills/lark-mail/references/lark-mail-reply-all.md
+++ b/skills/lark-mail/references/lark-mail-reply-all.md
@@ -13,6 +13,8 @@
 
 ## CRITICAL — 发送工作流（必须遵循）
 
+编辑邮件内容前 MUST 先用 Read 工具读取 [references/lark-mail-html.md](references/lark-mail-html.md)，其中包含邮件书写规范**
+
 此命令默认**只保存草稿**，不会发送邮件。回复全部会发送给**所有**原始收件人，需要发送时有两种合规方式：
 
 **方式 A（推荐）** — 创建回复全部草稿（不带 `--confirm-send`）：
diff --git a/skills/lark-mail/references/lark-mail-reply.md b/skills/lark-mail/references/lark-mail-reply.md
index 08ac27c2f..d2b4da261 100644
--- a/skills/lark-mail/references/lark-mail-reply.md
+++ b/skills/lark-mail/references/lark-mail-reply.md
@@ -17,6 +17,8 @@
 
 ## CRITICAL — 发送工作流（必须遵循）
 
+编辑邮件内容前 MUST 先用 Read 工具读取 [references/lark-mail-html.md](references/lark-mail-html.md)，其中包含邮件书写规范**
+
 此命令默认**只保存草稿**，不会发送邮件。需要发送时，有两种合规方式：
 
 **方式 A（推荐）** — 创建回复草稿（不带 `--confirm-send`）：
diff --git a/skills/lark-mail/references/lark-mail-send.md b/skills/lark-mail/references/lark-mail-send.md
index f919040b6..4e64a8b3a 100644
--- a/skills/lark-mail/references/lark-mail-send.md
+++ b/skills/lark-mail/references/lark-mail-send.md
@@ -12,6 +12,8 @@
 
 ## CRITICAL — 发送工作流（必须遵循）
 
+编辑邮件内容前 MUST 先用 Read 工具读取 [references/lark-mail-html.md](references/lark-mail-html.md)，其中包含邮件书写规范**
+
 此命令默认**只保存草稿**，不会发送邮件。需要发送时，有两种合规方式：
 
 **方式 A（推荐）** — 先创建草稿，再确认发送：