I want to use the Brevo API to send all the transactional emails that my web app generates. Among those are the “password reset” emails, which include a link for the user to set a new password. My concern is about brevo modifying those links with a tracking brevo url, and mapping that url to the real password reset email in an internal database of the Brevo service. Also with Brevo keeping a copy of those emails, including the url (seen in Brevo ). Any unauthorized access of the Brevo database or platform would allow access to the secret password reset urls, which would allow an attacker to reset the passwords of the users which have not used those links (or of any attacker that may be requesting a password reset email for a user of my website). That could be prevented by not keeping any data about the contents of the email.
To prevent this potential security issue Brevo should provide a way for us to disable the storage in Brevo of any urls in security sensitive messages (like password reset emails), or (ideally) the whole body of the message. One way to do this would be to pass a parameter to the POST /smtp/email endpoint (maybe using a custom flag in the payload or a custom tag would be a simple change and would work with existing clients)