Yeah some development servers that didn't actually send the mail anywhere but did give usable error messages for example would be amazing.
To avoid it being used as an attack vector they could be tied to special app registrations that had to be registered with the mail development system in advance.
To avoid it being used as an attack vector they could be tied to special app registrations that had to be registered with the mail development system in advance.