If the user mistypes their password or cancels the agent operation then aerc will send an empty email before bouncing back to the review screen for another attempt. It shouldn't do that.