AIDevToolsHack
Verified Safeby RuslanLat
Overview
An AI agent for managing emails and calendar events by integrating with Large Language Models (LLMs) via the Model Context Protocol (MCP).
Installation
docker compose up --buildEnvironment Variables
- LLM_MODEL
- LLM_API_BASE
- LLM_API_KEY
- MCP_SERVER_URL
- MCP_API_KEY
- EMAIL_ADDRESS
- EMAIL_PASSWORD
- SMTP_HOST
- SMTP_PORT
- IMAP_HOST
- IMAP_PORT
- CALDAV_URL
- CALDAV_USERNAME
- CALDAV_PASSWORD
- CALDAV_CALENDAR_NAME
- MCP_HOST
- MCP_PORT
Security Notes
The server uses environment variables for sensitive credentials (email, CalDAV, API keys), which is a good practice. It relies on standard, well-maintained libraries for network interactions (IMAP, SMTP, CalDAV). The email body cleaning function `_clean_email_body` is complex with multiple regex operations, which can be prone to edge cases, but aims to reduce the amount of data sent to the LLM. The primary security consideration lies in giving an LLM access to email and calendar actions; misconfigured or unconstrained prompts could lead to unintended email sending or event creation. No direct `eval` or blatant malicious patterns were found. However, interaction with external LLMs and their data handling policies should be considered for privacy.
Similar Servers
MCP-Agent
An AI agent designed to autonomously discover, download, connect to, and interact with Model Context Protocol (MCP) servers, using their exposed tools, prompts, and resources to solve user tasks.
gmail-mcp
Enables AI systems to manage Gmail, providing capabilities to read, send, archive, and organize emails for various productivity and automation workflows such as flight check-ins, expense tracking, package monitoring, attachment retrieval, and vacation auto-response setup.
Troj-MCP
A versatile Model Context Protocol (MCP) server for integrating AI models with system operations, file management, calendar, and email tools.
stateful-auth-for-mcp-servers
Integrates Google Gmail and Calendar APIs to enable an AI agent to read emails and manage calendar events with stateful authorization for event deletions.